public async Task IpClaimInRangeForMultipleAllowedNetworksShouldMarkContextSucceeded()
{
ILogger logger = Logger.None;
var nameValueCollection = new NameValueCollection
{
{ DeployerAppConstants.AllowedIpNetworks, "192.168.0.0/24" },
{ DeployerAppConstants.AllowedIpNetworks, "192.168.0.0/16" }
};
Assert.Equal(2, nameValueCollection.GetValues(DeployerAppConstants.AllowedIpNetworks)?.Length);
var configuration = new InMemoryKeyValueConfiguration(nameValueCollection);
var handler =
new DefaultAuthorizationHandler(configuration,
logger,
ImmutableArray <AllowedEmail> .Empty,
ImmutableArray <AllowedEmailDomain> .Empty);
IEnumerable <Claim> claims = new[] { new Claim(CustomClaimTypes.IpAddress, "192.168.0.2") };
var user = new ClaimsPrincipal(new ClaimsIdentity(claims));
var authorizationHandlerContext = new AuthorizationHandlerContext(
new IAuthorizationRequirement[] { new DefaultAuthorizationRequirement() },
user,
null);
await handler.HandleAsync(authorizationHandlerContext);
Assert.True(authorizationHandlerContext.HasSucceeded);
}
public async Task IpClaimMissingShouldMarkContextSucceeded()
{
ILogger logger = Logger.None;
var nameValueCollection = new NameValueCollection
{
[DeployerAppConstants.AllowedIpNetworks] = "192.168.0.0/24"
};
var configuration = new InMemoryKeyValueConfiguration(nameValueCollection);
var handler =
new DefaultAuthorizationHandler(configuration,
logger,
ImmutableArray <AllowedEmail> .Empty,
ImmutableArray <AllowedEmailDomain> .Empty);
IEnumerable <Claim> claims = ImmutableArray <Claim> .Empty;
var user = new ClaimsPrincipal(new ClaimsIdentity(claims));
var authorizationHandlerContext = new AuthorizationHandlerContext(
new IAuthorizationRequirement[] { new DefaultAuthorizationRequirement() },
user,
null);
await handler.HandleAsync(authorizationHandlerContext);
Assert.False(authorizationHandlerContext.HasSucceeded);
}
public async Task ShouldSucceedOnUser(string userRole)
{
TestHelpers.SetupConfigurationManager(_configurationManagerMock, true);
var claims = TestHelpers.SetupUser(
_userManagerMock,
_httpContextAccessor,
userRole);
var context = new AuthorizationHandlerContext(_requirements, claims, null);
await _sut.HandleAsync(context);
Assert.True(context.HasSucceeded);
}
public async Task IpClaimWithoutNetworksShouldMarkContextNotSucceeded()
{
ILogger logger = Logger.None;
var handler =
new DefaultAuthorizationHandler(NoConfiguration.Empty,
logger,
ImmutableArray <AllowedEmail> .Empty,
ImmutableArray <AllowedEmailDomain> .Empty);
IEnumerable <Claim> claims = new[] { new Claim(CustomClaimTypes.IpAddress, "192.168.1.2") };
var user = new ClaimsPrincipal(new ClaimsIdentity(claims));
var authorizationHandlerContext = new AuthorizationHandlerContext(
new IAuthorizationRequirement[] { new DefaultAuthorizationRequirement() },
user,
null);
await handler.HandleAsync(authorizationHandlerContext);
Assert.False(authorizationHandlerContext.HasSucceeded);
}
