public void InternalUseValidCookieTest() { var internalHandler = new InternalApiManager(); var response = internalHandler.SendRequestWithCookieHeader(InternalAuthRequest, HttpMethod.Post); PrAssert.That(response, PrIs.ErrorResponse().And.HttpCode(System.Net.HttpStatusCode.Forbidden)); }
public void InjectionTest(Fields field, InjectionInput inputType) { var headerValue = string.Empty; var creds = AuthenticationInfoProvider.GetAuthSpecForCurrentTest(); var adminUserPassword = creds.Companies.First().Value.Users.First().Password; var adminUserLogin = creds.Companies.First().Value.Users.First().Login; var adminUserId = creds.Companies.First().Value.Users.First().Metadata["userId"].ToString(); var companyId = creds.Companies.First().Value.Id; var companyName = creds.Companies.First().Value.Name; creds.Dispose(); if (Fields.CID == field) { headerValue = GetFormatIdentityHeader(InjectionInputData.InjectionInputMapper[inputType], adminUserId, DefaultService); } else if (Fields.UID == field) { headerValue = GetFormatIdentityHeader(companyId, InjectionInputData.InjectionInputMapper[inputType], DefaultService); } else { headerValue = GetFormatIdentityHeader(companyId, adminUserId, InjectionInputData.InjectionInputMapper[inputType]); } var internalHandler = new InternalApiManager(InitPrivateApiConnection(companyName, adminUserLogin, adminUserPassword)); var response = internalHandler.SendRequestWithIdentityHeader(InternalAuthRequest, "X-IDENTITY", headerValue, HttpMethod.Post); PrAssert.That(response, PrIs.ErrorResponse().And.HttpCode(System.Net.HttpStatusCode.Unauthorized)); }
public void RequestContainsIdentityAndCookieHeadersTest() { var creds = AuthenticationInfoProvider.GetAuthSpecForCurrentTest(); var adminUserPassword = creds.Companies.First().Value.Users.First().Password; var adminUserLogin = creds.Companies.First().Value.Users.First().Login; var adminUserId = creds.Companies.First().Value.Users.First().Metadata["userId"].ToString(); var companyId = creds.Companies.First().Value.Id; var companyName = creds.Companies.First().Value.Name; creds.Dispose(); var headerValue = GetFormatIdentityHeader(companyId, adminUserId, DefaultService); var internalHandler = new InternalApiManager(InitPrivateApiConnection(companyName, adminUserLogin, adminUserPassword)); var response = internalHandler.SendRequestWithIdentityHeaderAndCookie(InternalAuthRequest, "X-IDENTITY", headerValue, HttpMethod.Post); PrAssert.That(response, PrIs.ErrorResponse().And.HttpCode(System.Net.HttpStatusCode.Unauthorized)); }
public void InternalInvalidTest(InvalidTestCases inputType, Fields field) { var creds = AuthenticationInfoProvider.GetAuthSpecForCurrentTest(); var adminUserPassword = creds.Companies.First().Value.Users.First().Password; var adminUserLogin = creds.Companies.First().Value.Users.First().Login; var companyName = creds.Companies.First().Value.Name; var userInfo = new Dictionary <string, object> { ["companyId"] = creds.Companies.First().Value.Id, ["adminUserId"] = creds.Companies.First().Value.Users.First().Metadata["userId"] }; creds.Dispose(); var headerValue = GetParametersForIdentityHeader(inputType, field, userInfo); var internalHandler = new InternalApiManager(InitPrivateApiConnection(companyName, adminUserLogin, adminUserPassword)); var response = internalHandler.SendRequestWithIdentityHeader(InternalAuthRequest, "X-IDENTITY", headerValue, HttpMethod.Post); PrAssert.That(response, PrIs.ErrorResponse().And.HttpCode(System.Net.HttpStatusCode.Unauthorized)); }
public void InternalValidTest(ValidTestCases inputType) { var creds = AuthenticationInfoProvider.GetAuthSpecForCurrentTest(); var adminUserPassword = creds.Companies.First().Value.Users.First().Password; var adminUserLogin = creds.Companies.First().Value.Users.First().Login; var adminUserId = creds.Companies.First().Value.Users.First().Metadata["userId"]; var companyId = creds.Companies.First().Value.Id; var companyName = creds.Companies.First().Value.Name; creds.Dispose(); var headerValue = inputType == ValidTestCases.ChangeOrderXidentityHeader ? $"SERVICE={DefaultService};CID={companyId};UID={adminUserId}" : $"CID={companyId};UID={adminUserId};SERVICE={ValidMapperValues[inputType]}"; var internalHandler = new InternalApiManager(InitPrivateApiConnection(companyName, adminUserLogin, adminUserPassword)); var response = internalHandler.SendRequestWithIdentityHeader(InternalAuthRequest, "X-IDENTITY", headerValue, HttpMethod.Post); PrAssert.That(response, PrIs.SuccessfulResponse().And.HttpCode(System.Net.HttpStatusCode.OK)); }
public void InternalSpecialCommonTest(InvalidSpecialCommonTestCases inputType) { var creds = AuthenticationInfoProvider.GetAuthSpecForCurrentTest(); var adminUserPassword = creds.Companies.First().Value.Users.First().Password; var adminUserLogin = creds.Companies.First().Value.Users.First().Login; var adminUserId = creds.Companies.First().Value.Users.First().Metadata["userId"].ToString(); var companyId = creds.Companies.First().Value.Id; var companyName = creds.Companies.First().Value.Name; creds.Dispose(); var headerName = inputType == InvalidSpecialCommonTestCases.XIdentityIsLowecase ? "x-identity" : "X-IDENTITY"; var headerValue = inputType == InvalidSpecialCommonTestCases.LoginAdminUserAndUidAsNormalUser ? GetFormatIdentityHeader(companyId, NormalUserId, DefaultService) : GetFormatIdentityHeader(SecondCompanyId, SecondAdminUserId, DefaultService); var internalHandler = new InternalApiManager(InitPrivateApiConnection(companyName, adminUserLogin, adminUserPassword)); var response = internalHandler.SendRequestWithIdentityHeader(InternalAuthRequest, headerName, headerValue, HttpMethod.Post); PrAssert.That(response, inputType == InvalidSpecialCommonTestCases.XIdentityIsLowecase ? PrIs.SuccessfulResponse().And.HttpCode(System.Net.HttpStatusCode.OK) : PrIs.ErrorResponse().And.HttpCode(System.Net.HttpStatusCode.Unauthorized)); }
public void IdentityHeaderJsonWebTokenTest() { var creds = AuthenticationInfoProvider.GetAuthSpecForCurrentTest(); var adminUserPassword = creds.Companies.First().Value.Users.First().Password; var adminUserLogin = creds.Companies.First().Value.Users.First().Login; var adminUserId = creds.Companies.First().Value.Users.First().Metadata["userId"].ToString(); var companyId = creds.Companies.First().Value.Id; var companyName = creds.Companies.First().Value.Name; creds.Dispose(); var headerValue = new Dictionary <string, object> { ["CID"] = companyId, ["UID"] = adminUserId, ["SERVICE"] = DefaultService, }; var internalHandler = new InternalApiManager(InitPrivateApiConnection(companyName, adminUserLogin, adminUserPassword)); var response = internalHandler.SendRequestWithIdentityHeaderConvertJwt <object>(InternalAuthRequest, headerValue, HttpMethod.Post); PrAssert.That(response, PrIs.ErrorResponse().And.HttpCode(System.Net.HttpStatusCode.Unauthorized)); }