# encoding: UTF-8

require 'spec_helper'

describe Vulnerability do

  describe '#new' do
    subject(:vulnerability) { Vulnerability.new(title, type, references, fixed_version) }
    let(:title)             { 'A vulnerability title' }
    let(:type)              { 'XSS' }
    let(:references)        { {:url => 'example.com', :metasploit => 'm', :exploitdb => 'e'} }

    context 'w/o metasploit and fixed version modules argument' do
      subject(:vulnerability) { Vulnerability.new(title, type, references) }

      its(:title)              { should be title }
      its(:references)         { should be references }
      its(:type)               { should be type }
      its(:fixed_in)           { should be_empty }
    end

    context 'with fixed version argument' do
      let(:fixed_version)  { '1.0' }
      its(:title)              { should be title }
      its(:references)         { should be references }
      its(:type)               { should be type }
      its(:fixed_in)           { should be fixed_version }
    end

  end

  describe '::load_from_xml_node' do
    subject(:vulnerability) { Vulnerability.load_from_xml_node(node) }
    let(:node) {
      xml(MODELS_FIXTURES + '/vulnerability/xml_node.xml').xpath('//vulnerability')
    }

    expected_refs = {
        :url=>['Ref 1', 'Ref 2'],
        :cve=>['2011-001'],
        :secunia=>['secunia'],
        :osvdb=>['osvdb'],
        :metasploit=>['exploit/ex1'],
        :exploitdb=>['exploitdb']
    }

    its(:title)              { should == 'Vuln Title' }
    its(:type)               { should == 'CSRF' }
    its(:references)         { should ==  expected_refs}
    its(:fixed_in)           { should == '1.0'}
  end

end