public void InternalUseValidCookieTest()
{
var internalHandler = new InternalApiManager();
var response = internalHandler.SendRequestWithCookieHeader(InternalAuthRequest, HttpMethod.Post);
PrAssert.That(response, PrIs.ErrorResponse().And.HttpCode(System.Net.HttpStatusCode.Forbidden));
}
public void InjectionTest(Fields field, InjectionInput inputType)
{
var headerValue = string.Empty;
var creds = AuthenticationInfoProvider.GetAuthSpecForCurrentTest();
var adminUserPassword = creds.Companies.First().Value.Users.First().Password;
var adminUserLogin = creds.Companies.First().Value.Users.First().Login;
var adminUserId = creds.Companies.First().Value.Users.First().Metadata["userId"].ToString();
var companyId = creds.Companies.First().Value.Id;
var companyName = creds.Companies.First().Value.Name;
creds.Dispose();
if (Fields.CID == field)
{
headerValue = GetFormatIdentityHeader(InjectionInputData.InjectionInputMapper[inputType], adminUserId, DefaultService);
}
else if (Fields.UID == field)
{
headerValue = GetFormatIdentityHeader(companyId, InjectionInputData.InjectionInputMapper[inputType], DefaultService);
}
else
{
headerValue = GetFormatIdentityHeader(companyId, adminUserId, InjectionInputData.InjectionInputMapper[inputType]);
}
var internalHandler = new InternalApiManager(InitPrivateApiConnection(companyName, adminUserLogin, adminUserPassword));
var response = internalHandler.SendRequestWithIdentityHeader(InternalAuthRequest, "X-IDENTITY", headerValue, HttpMethod.Post);
PrAssert.That(response, PrIs.ErrorResponse().And.HttpCode(System.Net.HttpStatusCode.Unauthorized));
}
public void RequestContainsIdentityAndCookieHeadersTest()
{
var creds = AuthenticationInfoProvider.GetAuthSpecForCurrentTest();
var adminUserPassword = creds.Companies.First().Value.Users.First().Password;
var adminUserLogin = creds.Companies.First().Value.Users.First().Login;
var adminUserId = creds.Companies.First().Value.Users.First().Metadata["userId"].ToString();
var companyId = creds.Companies.First().Value.Id;
var companyName = creds.Companies.First().Value.Name;
creds.Dispose();
var headerValue = GetFormatIdentityHeader(companyId, adminUserId, DefaultService);
var internalHandler = new InternalApiManager(InitPrivateApiConnection(companyName, adminUserLogin, adminUserPassword));
var response = internalHandler.SendRequestWithIdentityHeaderAndCookie(InternalAuthRequest, "X-IDENTITY", headerValue, HttpMethod.Post);
PrAssert.That(response, PrIs.ErrorResponse().And.HttpCode(System.Net.HttpStatusCode.Unauthorized));
}
public void InternalInvalidTest(InvalidTestCases inputType, Fields field)
{
var creds = AuthenticationInfoProvider.GetAuthSpecForCurrentTest();
var adminUserPassword = creds.Companies.First().Value.Users.First().Password;
var adminUserLogin = creds.Companies.First().Value.Users.First().Login;
var companyName = creds.Companies.First().Value.Name;
var userInfo = new Dictionary <string, object> {
["companyId"] = creds.Companies.First().Value.Id, ["adminUserId"] = creds.Companies.First().Value.Users.First().Metadata["userId"]
};
creds.Dispose();
var headerValue = GetParametersForIdentityHeader(inputType, field, userInfo);
var internalHandler = new InternalApiManager(InitPrivateApiConnection(companyName, adminUserLogin, adminUserPassword));
var response = internalHandler.SendRequestWithIdentityHeader(InternalAuthRequest, "X-IDENTITY", headerValue, HttpMethod.Post);
PrAssert.That(response, PrIs.ErrorResponse().And.HttpCode(System.Net.HttpStatusCode.Unauthorized));
}
public void InternalValidTest(ValidTestCases inputType)
{
var creds = AuthenticationInfoProvider.GetAuthSpecForCurrentTest();
var adminUserPassword = creds.Companies.First().Value.Users.First().Password;
var adminUserLogin = creds.Companies.First().Value.Users.First().Login;
var adminUserId = creds.Companies.First().Value.Users.First().Metadata["userId"];
var companyId = creds.Companies.First().Value.Id;
var companyName = creds.Companies.First().Value.Name;
creds.Dispose();
var headerValue = inputType == ValidTestCases.ChangeOrderXidentityHeader ? $"SERVICE={DefaultService};CID={companyId};UID={adminUserId}"
: $"CID={companyId};UID={adminUserId};SERVICE={ValidMapperValues[inputType]}";
var internalHandler = new InternalApiManager(InitPrivateApiConnection(companyName, adminUserLogin, adminUserPassword));
var response = internalHandler.SendRequestWithIdentityHeader(InternalAuthRequest, "X-IDENTITY", headerValue, HttpMethod.Post);
PrAssert.That(response, PrIs.SuccessfulResponse().And.HttpCode(System.Net.HttpStatusCode.OK));
}
public void InternalSpecialCommonTest(InvalidSpecialCommonTestCases inputType)
{
var creds = AuthenticationInfoProvider.GetAuthSpecForCurrentTest();
var adminUserPassword = creds.Companies.First().Value.Users.First().Password;
var adminUserLogin = creds.Companies.First().Value.Users.First().Login;
var adminUserId = creds.Companies.First().Value.Users.First().Metadata["userId"].ToString();
var companyId = creds.Companies.First().Value.Id;
var companyName = creds.Companies.First().Value.Name;
creds.Dispose();
var headerName = inputType == InvalidSpecialCommonTestCases.XIdentityIsLowecase ? "x-identity" : "X-IDENTITY";
var headerValue = inputType == InvalidSpecialCommonTestCases.LoginAdminUserAndUidAsNormalUser ? GetFormatIdentityHeader(companyId, NormalUserId, DefaultService) : GetFormatIdentityHeader(SecondCompanyId, SecondAdminUserId, DefaultService);
var internalHandler = new InternalApiManager(InitPrivateApiConnection(companyName, adminUserLogin, adminUserPassword));
var response = internalHandler.SendRequestWithIdentityHeader(InternalAuthRequest, headerName, headerValue, HttpMethod.Post);
PrAssert.That(response, inputType == InvalidSpecialCommonTestCases.XIdentityIsLowecase ? PrIs.SuccessfulResponse().And.HttpCode(System.Net.HttpStatusCode.OK)
: PrIs.ErrorResponse().And.HttpCode(System.Net.HttpStatusCode.Unauthorized));
}
public void IdentityHeaderJsonWebTokenTest()
{
var creds = AuthenticationInfoProvider.GetAuthSpecForCurrentTest();
var adminUserPassword = creds.Companies.First().Value.Users.First().Password;
var adminUserLogin = creds.Companies.First().Value.Users.First().Login;
var adminUserId = creds.Companies.First().Value.Users.First().Metadata["userId"].ToString();
var companyId = creds.Companies.First().Value.Id;
var companyName = creds.Companies.First().Value.Name;
creds.Dispose();
var headerValue = new Dictionary <string, object>
{
["CID"] = companyId,
["UID"] = adminUserId,
["SERVICE"] = DefaultService,
};
var internalHandler = new InternalApiManager(InitPrivateApiConnection(companyName, adminUserLogin, adminUserPassword));
var response = internalHandler.SendRequestWithIdentityHeaderConvertJwt <object>(InternalAuthRequest, headerValue, HttpMethod.Post);
PrAssert.That(response, PrIs.ErrorResponse().And.HttpCode(System.Net.HttpStatusCode.Unauthorized));
}
