public void LogOn_Post_ReturnsViewIfValidateUserFails()
{
// Arrange
AccountController controller = GetAccountController();
LogOnModel model = new LogOnModel()
{
UserName = "******",
Password = "******",
RememberMe = false
};
// Act
ActionResult result = controller.LogOn(model, null);
// Assert
Assert.IsInstanceOfType(result, typeof(ViewResult));
ViewResult viewResult = (ViewResult)result;
Assert.AreEqual(model, viewResult.ViewData.Model);
Assert.AreEqual("The user name or password provided is incorrect.", controller.ModelState[""].Errors[0].ErrorMessage);
}
public void LogOn_Post_ReturnsViewIfModelStateIsInvalid()
{
// Arrange
AccountController controller = GetAccountController();
LogOnModel model = new LogOnModel()
{
UserName = "******",
Password = "******",
RememberMe = false
};
controller.ModelState.AddModelError("", "Dummy error message.");
// Act
ActionResult result = controller.LogOn(model, null);
// Assert
Assert.IsInstanceOfType(result, typeof(ViewResult));
ViewResult viewResult = (ViewResult)result;
Assert.AreEqual(model, viewResult.ViewData.Model);
}
public void LogOn_Post_ReturnsRedirectOnSuccess_WithLocalReturnUrl()
{
// Arrange
AccountController controller = GetAccountController();
LogOnModel model = new LogOnModel()
{
UserName = "******",
Password = "******",
RememberMe = false
};
// Act
ActionResult result = controller.LogOn(model, "/someUrl");
// Assert
Assert.IsInstanceOfType(result, typeof(RedirectResult));
RedirectResult redirectResult = (RedirectResult)result;
Assert.AreEqual("/someUrl", redirectResult.Url);
Assert.IsTrue(((MockFormsAuthenticationService)controller.FormsService).SignIn_WasCalled);
}
public void LogOn_Post_ReturnsRedirectToHomeOnSuccess_WithExternalReturnUrl()
{
// Arrange
AccountController controller = GetAccountController();
LogOnModel model = new LogOnModel()
{
UserName = "******",
Password = "******",
RememberMe = false
};
// Act
ActionResult result = controller.LogOn(model, "http://malicious.example.net");
// Assert
Assert.IsInstanceOfType(result, typeof(RedirectToRouteResult));
RedirectToRouteResult redirectResult = (RedirectToRouteResult)result;
Assert.AreEqual("Home", redirectResult.RouteValues["controller"]);
Assert.AreEqual("Index", redirectResult.RouteValues["action"]);
Assert.IsTrue(((MockFormsAuthenticationService)controller.FormsService).SignIn_WasCalled);
}
public ActionResult LogOn(LogOnModel model, FormCollection collection, string returnUrl)
{
var userType = 0;
var eventKey = "";
var nickName = "";
int.TryParse(collection["userType"], out userType);
if (userType == 0)
{
ModelState.AddModelError("Usertype", "Please select type");
return View();
}
var userFound = false;
if (ModelState.IsValid)
{
var efUnitOfWork = new EFUnitOfWork();
switch (userType)
{
case 1:
var adminRepos = new administratorsRepository(new EFRepository<administrators>(), efUnitOfWork);
var _admin = adminRepos.GetByUsername(model.UserName, model.Password);
userFound = _admin != null;
break;
case 2:
var lecturerRepos = new lecturersRepository(new EFRepository<lecturers>(), efUnitOfWork);
var _lecturerUser = lecturerRepos.GetByUsername(model.UserName, model.Password);
userFound = _lecturerUser != null;
break;
case 3:
eventKey = collection["EventKey"];
nickName = collection["nickname"];
return RedirectToAction("Questions", "Student", new { nickname = nickName, eventkey = eventKey });
}
if (userFound)
{
FormsService.SignIn(model.UserName, model.RememberMe);
if (Url.IsLocalUrl(returnUrl))
{
return Redirect(returnUrl);
}
else
{
return RedirectToAction("Index", "Home");
}
}
else
{
ModelState.AddModelError("", "The user name or password provided is incorrect.");
}
}
// If we got this far, something failed, redisplay form
return View(model);
}