public void AllowOnlyTrustedDomainsAttribute_Succeeds_When_HttpContext_Is_Not_Null()
{
// Arrange
var ipToTest = "26.0.45.1";
IPAddress accessingSiteFromIpAddress = IPAddress.Parse(ipToTest);
var httpConnectionFeature = new Mock <IHttpConnectionFeature>();
httpConnectionFeature
.Setup(hcf => hcf.RemoteIpAddress)
.Returns(accessingSiteFromIpAddress);
var httpContext = new DefaultHttpContext();
httpContext.Features.Set(httpConnectionFeature.Object);
var actionContext = new ActionContext {
ActionDescriptor = new ActionDescriptor(), HttpContext = httpContext, RouteData = new RouteData()
};
var context = new ActionExecutingContext(actionContext, new List <IFilterMetadata>(), new Dictionary <string, object>(), null);
ConfigHelpers.SharedOptions.TrustedIpDomains = ipToTest + ",68.91.0.0.1,47.217.217.217";
var AllowOnlyTrustedDomainsAttribute = new AllowOnlyTrustedDomainsAttribute();
// Act
AllowOnlyTrustedDomainsAttribute.OnActionExecuting(context);
// Assert
Assert.Null(context.Result);
}
public void AllowOnlyTrustedDomainsAttribute_Forbids_When_Unable_To_Read_Host_Address_Info()
{
// Arrange
var httpConnectionFeature = new Mock <IHttpConnectionFeature>();
httpConnectionFeature
.Setup(hcf => hcf.RemoteIpAddress)
.Returns(IPAddress.Parse("34.33.33.1"));
string actualLoggedMessage = string.Empty;
var configurableLogger = new Mock <ILogger <AllowOnlyTrustedDomainsAttribute> >();
configurableLogger
.Setup(
x => x.Log(
It.IsAny <LogLevel>(),
It.IsAny <EventId>(),
It.IsAny <object>(),
It.IsAny <Exception>(),
It.IsAny <Func <object, Exception, string> >()))
.Callback(
(LogLevel logLevel,
EventId eventId,
object message,
Exception exception,
Func <object, Exception, string> formatter) => {
// LogLevel myLogLevel = logLevel; // LogLevel.Error
// EventId myEventId = eventId;
actualLoggedMessage = message.ToString(); // Value cannot be null.\nParameter name: filePath
// Exception myException = exception; // System.ArgumentNullException
// loggedExceptionMessage = exception.Message;
// Func<object, Exception, string> myFormatter = formatter;
});
var configurableServiceProvider = new Mock <IServiceProvider>();
configurableServiceProvider
.Setup(x => x.GetService(It.IsAny <Type>()))
.Returns(configurableLogger.Object);
var httpContext = new DefaultHttpContext();
//httpContext.Features.Set(httpConnectionFeature.Object);
httpContext.RequestServices = configurableServiceProvider.Object;
var actionContext = new ActionContext {
ActionDescriptor = new ActionDescriptor(), HttpContext = httpContext, RouteData = new RouteData()
};
var context = new ActionExecutingContext(actionContext, new List <IFilterMetadata>(), new Dictionary <string, object>(), null);
ConfigHelpers.SharedOptions.TrustedIpDomains = "15.0.64.1";
var AllowOnlyTrustedDomainsAttribute = new AllowOnlyTrustedDomainsAttribute();
// Act
AllowOnlyTrustedDomainsAttribute.OnActionExecuting(context);
var expectedHttpStatusCodeResult403 = context.Result as HttpForbiddenResult;
// Assert
Assert.NotNull(expectedHttpStatusCodeResult403);
Assert.AreEqual(HttpStatusCode.Forbidden, (HttpStatusCode)expectedHttpStatusCodeResult403.StatusCode);
Assert.IsNull(expectedHttpStatusCodeResult403.ContentType);
var expectedLoggedMessage =
"Access to an unknown controller was forbidden since it was not possible to read its host address information";
Assert.AreEqual(expectedLoggedMessage, actualLoggedMessage);
}
public void AllowOnlyTrustedDomainsAttribute_Logs_Controller_Name_If_Known()
{
// Arrange
var httpConnectionFeature = new Mock <IHttpConnectionFeature>();
httpConnectionFeature
.Setup(hcf => hcf.RemoteIpAddress)
.Returns(IPAddress.Parse("96.97.98.99")); // address NOT on trusted list
string actualLoggedMessage = string.Empty;
var configurableLogger = new Mock <ILogger <AllowOnlyTrustedDomainsAttribute> >();
configurableLogger
.Setup(
x => x.Log(
It.IsAny <LogLevel>(),
It.IsAny <EventId>(),
It.IsAny <object>(),
It.IsAny <Exception>(),
It.IsAny <Func <object, Exception, string> >()))
.Callback(
(LogLevel logLevel,
EventId eventId,
object message,
Exception exception,
Func <object, Exception, string> formatter) => {
// LogLevel myLogLevel = logLevel; // LogLevel.Error
// EventId myEventId = eventId;
actualLoggedMessage = message.ToString(); // Value cannot be null.\nParameter name: filePath
// Exception myException = exception; // System.ArgumentNullException
// loggedExceptionMessage = exception.Message;
// Func<object, Exception, string> myFormatter = formatter;
});
var configurableServiceProvider = new Mock <IServiceProvider>();
configurableServiceProvider
.Setup(x => x.GetService(It.IsAny <Type>()))
.Returns(configurableLogger.Object);
var httpContext = new DefaultHttpContext();
httpContext.Features.Set(httpConnectionFeature.Object);
httpContext.RequestServices = configurableServiceProvider.Object;
var actionContext = new ActionContext {
ActionDescriptor = new ActionDescriptor(), HttpContext = httpContext, RouteData = new RouteData()
};
var context = new ActionExecutingContext(
actionContext,
new List <IFilterMetadata>(),
new Dictionary <string, object>(),
new OnlyForTestingPleaseIgnoreThisController());
ConfigHelpers.SharedOptions.TrustedIpDomains = "25.26.27.28,31.32.33.34";
var AllowOnlyTrustedDomainsAttribute = new AllowOnlyTrustedDomainsAttribute();
// Act
AllowOnlyTrustedDomainsAttribute.OnActionExecuting(context);
var expectedHttpStatusCodeResult403 = context.Result as HttpForbiddenResult;
// Assert
Assert.NotNull(expectedHttpStatusCodeResult403);
Assert.AreEqual(HttpStatusCode.Forbidden, (HttpStatusCode)expectedHttpStatusCodeResult403.StatusCode);
Assert.IsNull(expectedHttpStatusCodeResult403.ContentType);
var expectedLoggedMessage =
"Access to controller ModernSlavery.API.Tests.Filters.AllowOnlyTrustedDomainsAttributeTests+OnlyForTestingPleaseIgnoreThisController was forbidden for address 96.97.98.99 as it is not part of the configured ips TrustedIPDomains";
Assert.AreEqual(expectedLoggedMessage, actualLoggedMessage);
}
