From d4d0c8b3b62382c62f986f54d2a0c2a121601702 Mon Sep 17 00:00:00 2001
From: Louise Crow <louise.crow@gmail.com>
Date: Tue, 19 Mar 2013 13:39:40 -0700
Subject: Allow the emergency user account to be disabled.

---
 spec/controllers/admin_public_body_controller_spec.rb | 13 +++++++++++++
 1 file changed, 13 insertions(+)

(limited to 'spec/controllers/admin_public_body_controller_spec.rb')

diff --git a/spec/controllers/admin_public_body_controller_spec.rb b/spec/controllers/admin_public_body_controller_spec.rb
index 504ddc5cc..28182a3cd 100644
--- a/spec/controllers/admin_public_body_controller_spec.rb
+++ b/spec/controllers/admin_public_body_controller_spec.rb
@@ -215,6 +215,19 @@ describe AdminPublicBodyController, "when administering public bodies and paying
         PublicBody.count.should == n - 1
     end
 
+    it "doesn't let people with good emergency account credentials log in if the emergency user is disabled" do
+        setup_emergency_credentials('biz', 'fuz')
+        Configuration.stub!(:disable_emergency_user).and_return(true)
+        n = PublicBody.count
+        basic_auth_login(@request, "biz", "fuz")
+        post :show, { :id => public_bodies(:humpadink_public_body).id, :emergency => 1}
+        session[:using_admin].should == nil
+        n = PublicBody.count
+        post :destroy, { :id => public_bodies(:forlorn_public_body).id }
+        session[:using_admin].should == nil
+        PublicBody.count.should == n
+    end
+
     it "allows superusers to do stuff" do
         session[:user_id] = users(:admin_user).id
         @request.env["HTTP_AUTHORIZATION"] = ""
-- 
cgit v1.2.3