Move access-related tests to authorizations_spec

We already had tests to check that only Admins could access Mission Control.
But now that the link to "Jobs" is in the sidebar together with other
pages for which we test who has access in authorizations_spec, I think
it's clearer for us to have all these tests in the same file, so I moved
the tests from jobs_spec.rb to authorizations_spec.rb and added tests for
when the user is not authenticated.

Author: Oli0li

spec/requests/authorizations_spec.rb

@@ -1,11 +1,75 @@
 require "rails_helper"
 
 RSpec.describe "Authorizations", type: :request do
-  let(:user) { create(:user) }
+  context "not authenticated" do
+    context "when trying to access the Regions index" do
+      it "redirects to the login page" do
+        get "/regions"
+        expect(response).to redirect_to("/session/new")
+        expect(session[:return_to_after_authenticating]).to eq("/regions")
+      end
+    end
+
+    context "when trying to access the Providers index" do
+      it "redirects to the login page" do
+        get "/providers"
+        expect(response).to redirect_to("/session/new")
+        expect(session[:return_to_after_authenticating]).to eq("/providers")
+      end
+    end
+
+    context "when trying to access the Languages index" do
+      it "redirects to the login page" do
+        get "/languages"
+        expect(response).to redirect_to("/session/new")
+        expect(session[:return_to_after_authenticating]).to eq("/languages")
+      end
+    end
+
+    context "when trying to access the Tags index" do
+      it "redirects to the login page" do
+        get "/tags"
+        expect(response).to redirect_to("/session/new")
+        expect(session[:return_to_after_authenticating]).to eq("/tags")
+      end
+    end
+
+    context "when trying to access the Users index" do
+      it "redirects to the login page" do
+        get "/users"
+        expect(response).to redirect_to("/session/new")
+        expect(session[:return_to_after_authenticating]).to eq("/users")
+      end
+    end
 
-  before { sign_in(user) }
+    context "when trying to access the Import Reports index" do
+      it "redirects to the login page" do
+        get "/import_reports"
+        expect(response).to redirect_to("/session/new")
+        expect(session[:return_to_after_authenticating]).to eq("/import_reports")
+      end
+    end
+
+    context "when trying to access the Jobs interface" do
+      it "redirects to the login page" do
+        get "/jobs"
+        expect(response).to redirect_to("/session/new")
+        expect(session[:return_to_after_authenticating]).to eq("/jobs/")
+      end
+    end
+  end
 
   context "contributor" do
+    let(:user) { create(:user) }
+
+    before { sign_in(user) }
+
+    it "cannot access the Jobs interface" do
+      get "/jobs"
+      expect(response).to have_http_status(:forbidden)
+      expect(response.body).to include("Access denied")
+    end
+
     context "Region-related actions" do
       let!(:region) { create(:region) }
 
@@ -174,7 +238,9 @@
   end
 
   context "administrator" do
-    before { user.update(is_admin: true) }
+    let(:admin) { create(:user, :admin) }
+
+    before { sign_in(admin) }
 
     it "can access the Topics tab" do
       get "/topics"
@@ -200,5 +266,10 @@
       get "/users"
       expect(response).to be_successful
     end
+
+    it "can access the Jobs interface" do
+      get "/jobs"
+      expect(response).to be_successful
+    end
   end
 end