public void TestAnonymousUserIsNotAuthorized() { var clientPrincipal = new ClientPrincipal { IdentityProvider = "google", UserId = "foo", UserDetails = "foo bar", UserRoles = new List <string> { "anonymous", } }; var isAuthorized = StaticWebAppsAuth.IsAuthorized(clientPrincipal, "foo"); Assert.False(isAuthorized); }
public void TestNotAuthorizedToAccessResourceNotOwnedByTheAuthenticatedUser() { var clientPrincipal = new ClientPrincipal { IdentityProvider = "google", UserId = "bar", UserDetails = "foo bar", UserRoles = new List <string> { "anonymous", "user", } }; var isAuthorized = StaticWebAppsAuth.IsAuthorized(clientPrincipal, "foo"); Assert.False(isAuthorized); }