public async void Returns_Unauthorized_If_User_Doesnt_Have_Perms()
{
var expected = new AuthorizeDecision()
{
Allowed = false, FailureReason = failureReason.Unauthorized
};
// OrganizationManager says the user has access and the org exists
var orgManMock = new Mock <IOrganizationManager>();
orgManMock.Setup(m => m.UserHasAccessAsync(It.IsAny <Guid>(), It.IsAny <Guid>())).ReturnsAsync(true);
orgManMock.Setup(m => m.ExistsAsync(It.IsAny <Guid>())).ReturnsAsync(true);
// but the Permission Service says it does not have permission
var permSvcMock = AlwaysXPermissionService(false);
var evaluator = new RemoteAuthorizationEvaluator(orgManMock.Object, permSvcMock.Object);
var actual = await evaluator.EvaluateAsync(GuidAsStr(), GuidAsStr(), PermissionEnum.All.ToString());
Assert.True(DecisionsAreEqual(expected, actual));
}
public async void Returns_Authorized_If_User_Has_Access_And_No_Perms_Specified()
{
var expected = new AuthorizeDecision()
{
Allowed = true
};
// OrganizationManager says the user has access and the org exists
var orgManMock = new Mock <IOrganizationManager>();
orgManMock.Setup(m => m.UserHasAccessAsync(It.IsAny <Guid>(), It.IsAny <Guid>())).ReturnsAsync(true);
orgManMock.Setup(m => m.ExistsAsync(It.IsAny <Guid>())).ReturnsAsync(true);
// And the PermissionService says it has the given permission
var permSvcMock = AlwaysXPermissionService(true);
var evaluator = new RemoteAuthorizationEvaluator(orgManMock.Object, permSvcMock.Object);
var actual = await evaluator.EvaluateAsync(GuidAsStr(), GuidAsStr());
Assert.True(DecisionsAreEqual(expected, actual));
}
public async void Returns_Unauthorized_If_Perms_Invalid(string invalidPerm)
{
// Enum is not a valid enum, it should be parsed prior and cause an error
var expected = new AuthorizeDecision()
{
Allowed = false, FailureReason = failureReason.Permissionformat
};
// OrganizationManager says that the user has access and the org exists
var orgManMock = new Mock <IOrganizationManager>();
orgManMock.Setup(m => m.UserHasAccessAsync(It.IsAny <Guid>(), It.IsAny <Guid>())).ReturnsAsync(true);
orgManMock.Setup(m => m.ExistsAsync(It.IsAny <Guid>())).ReturnsAsync(true);
// PermissionService says that the user has permission(s)
var permSvcMock = AlwaysXPermissionService(true);
var evaluator = new RemoteAuthorizationEvaluator(orgManMock.Object, permSvcMock.Object);
var actual = await evaluator.EvaluateAsync(GuidAsStr(), GuidAsStr(), invalidPerm);
Assert.True(DecisionsAreEqual(expected, actual));
}
