public void RequiresClaims_AuthorizedUser_ReturnsAuthorized()
{
var attr = new RequiresClaimsAttribute("a");
var user = UserSetup.GetUserWithClaims("a:0");
var httpContext = new Fakes.FakeHttpContext();
httpContext.User = user;
var shouldContinue = attr.ShouldContinue(httpContext);
Assert.True(shouldContinue.ShouldContinue);
}
public void RequiresClaims_UnauthenticatedUser_ReturnsUnauthenticated()
{
var attr = new RequiresClaimsAttribute("a");
var user = new ClaimsPrincipal();
var httpContext = new Fakes.FakeHttpContext();
httpContext.User = user;
var shouldContinue = attr.ShouldContinue(httpContext);
Assert.False(shouldContinue.ShouldContinue);
Assert.Equal(ApiFilterRunResult.Unauthenticated.SetResponseCode, shouldContinue.SetResponseCode);
}
