public async Task CreateMembership_ShouldReturnForbiddenResult_WhenUserIsNotAdministrator()
{
// Arrange
CreateMembershipBody body = new CreateMembershipBody {
GroupId = 1, UserId = 1, IsAdmin = false
};
Mock <IMediator> mediatorMock = new Mock <IMediator>();
mediatorMock
.Setup(m => m.Send(It.IsAny <GroupExistsQuery>(), It.IsAny <CancellationToken>()))
.ReturnsAsync(true);
mediatorMock
.Setup(m => m.Send(It.IsAny <UserExistsQuery>(), It.IsAny <CancellationToken>()))
.ReturnsAsync(true);
mediatorMock
.Setup(m => m.Send(It.IsAny <CanCreateMembershipQuery>(), It.IsAny <CancellationToken>()))
.ReturnsAsync(false);
GroupMembershipController controller = new GroupMembershipController(mediatorMock.Object, null);
// Act
ActionResult <GroupMembershipResource> response = await controller.CreateMembership(body);
// Assert
ObjectResult result = Assert.IsType <ObjectResult>(response.Result);
ErrorResource error = Assert.IsType <ErrorResource>(result.Value);
Assert.NotNull(error);
Assert.Equal(StatusCodes.Status403Forbidden, error.StatusCode);
}
public async Task CreateMembership_ShouldReturnCreatedResult_WhenMembershipWasCreated()
{
// Arrange
CreateMembershipBody body = new CreateMembershipBody {
GroupId = 1, UserId = 1, IsAdmin = false
};
GroupMembershipResource expectedMembership = new GroupMembershipResource
{
GroupMembershipId = 1,
GroupId = 1,
UserId = 1
};
Mock <IMediator> mediatorMock = new Mock <IMediator>();
mediatorMock
.Setup(m => m.Send(It.IsAny <GroupExistsQuery>(), It.IsAny <CancellationToken>()))
.ReturnsAsync(true);
mediatorMock
.Setup(m => m.Send(It.IsAny <UserExistsQuery>(), It.IsAny <CancellationToken>()))
.ReturnsAsync(true);
mediatorMock
.Setup(m => m.Send(It.IsAny <CanCreateMembershipQuery>(), It.IsAny <CancellationToken>()))
.ReturnsAsync(true);
mediatorMock
.Setup(m => m.Send(It.IsAny <MembershipCombinationExistsQuery>(), It.IsAny <CancellationToken>()))
.ReturnsAsync(false);
mediatorMock
.Setup(m => m.Send(It.IsAny <CreateMembershipCommand>(), It.IsAny <CancellationToken>()))
.ReturnsAsync(expectedMembership);
MapperConfiguration mapperConfiguration = new MapperConfiguration(config =>
{
config.CreateMap <CreateMembershipBody, CreateMembershipCommand>();
config.CreateMap <CreateMembershipBody, MembershipCombinationExistsQuery>();
});
IMapper mapperMock = mapperConfiguration.CreateMapper();
GroupMembershipController controller = new GroupMembershipController(mediatorMock.Object, mapperMock);
// Act
ActionResult <GroupMembershipResource> response = await controller.CreateMembership(body);
// Assert
CreatedAtActionResult result = Assert.IsType <CreatedAtActionResult>(response.Result);
GroupMembershipResource createdMembership = Assert.IsType <GroupMembershipResource>(result.Value);
Assert.NotNull(createdMembership);
Assert.Equal(expectedMembership, createdMembership);
}
public async Task <ActionResult <GroupMembershipResource> > CreateMembership([FromBody] CreateMembershipBody body, CancellationToken cancellationToken = default)
{
if (!ModelState.IsValid)
{
return(BadRequest(ModelState));
}
// Check if the provided group exists
GroupExistsQuery groupExistsQuery = new GroupExistsQuery {
GroupId = body.GroupId
};
bool groupExists = await _mediator.Send(groupExistsQuery, cancellationToken);
if (!groupExists)
{
return(NotFound(new ErrorResource
{
StatusCode = StatusCodes.Status404NotFound,
Message = $"Group with ID '{body.GroupId}' does not exist"
}));
}
// Check if the provided user exists
UserExistsQuery userExistsQuery = new UserExistsQuery {
UserId = body.UserId
};
bool userExists = await _mediator.Send(userExistsQuery, cancellationToken);
if (!userExists)
{
return(NotFound(new ErrorResource
{
StatusCode = StatusCodes.Status404NotFound,
Message = $"User with ID '{body.UserId}' does not exist"
}));
}
// Check if the current user is permitted to create memberships in this group
CanCreateMembershipQuery canCreateQuery = new CanCreateMembershipQuery {
GroupId = body.GroupId
};
bool canCreate = await _mediator.Send(canCreateQuery, cancellationToken);
if (!canCreate)
{
return(StatusCode(StatusCodes.Status403Forbidden, new ErrorResource
{
StatusCode = StatusCodes.Status403Forbidden,
Message = "You are not permitted to add users to this group. This privilege is only granted to administrators of the group"
}));
}
// Check if such a membership does not already exist
MembershipCombinationExistsQuery membershipExistsQuery = _mapper.Map <CreateMembershipBody, MembershipCombinationExistsQuery>(body);
bool membershipExists = await _mediator.Send(membershipExistsQuery, cancellationToken);
if (membershipExists)
{
return(StatusCode(StatusCodes.Status403Forbidden, new ErrorResource
{
StatusCode = StatusCodes.Status403Forbidden,
Message = "This user is already a member of this group"
}));
}
CreateMembershipCommand createCommand = _mapper.Map <CreateMembershipBody, CreateMembershipCommand>(body);
GroupMembershipResource membership = await _mediator.Send(createCommand, cancellationToken);
return(CreatedAtAction(nameof(GetMembershipById), new { membershipId = membership.GroupMembershipId }, membership));
}
