public async Task GetOrganisationOverviewHandler_NoOrganisationAccess_ThrowsSecurityException()
{
var authorization = AuthorizationBuilder.CreateUserDeniedFromAccessingOrganisation();
var handler = new GetOrganisationOverviewHandler(authorization, A.Dummy <IGetOrganisationOverviewDataAccess>());
await Assert.ThrowsAsync <SecurityException>(() => handler.HandleAsync(A.Dummy <GetOrganisationOverview>()));
}
public async Task VerifyOrganisationExistsHandler_NotOrganisationOrInternalUser_ThrowsSecurityException()
{
var deniedAuthorization = AuthorizationBuilder.CreateUserDeniedFromAccessingOrganisation();
var handler = new VerifyOrganisationExistsHandler(deniedAuthorization, A.Dummy <WeeeContext>());
var message = new VerifyOrganisationExists(Guid.NewGuid());
await Assert.ThrowsAsync <SecurityException>(async() => await handler.HandleAsync(message));
}
public async Task OrganisationByIdHandler_NotOrganisationUser_ThrowsSecurityException()
{
var authorization = AuthorizationBuilder.CreateUserDeniedFromAccessingOrganisation();
var handler = new OrganisationByIdHandler(authorization, context, map);
var message = new GetOrganisationInfo(Guid.NewGuid());
await Assert.ThrowsAsync <SecurityException>(async() => await handler.HandleAsync(message));
}
public async Task UpdateOrganisationTypeDetailsHandler_NotOrganisationUser_ThrowsSecurityException()
{
var authorization = AuthorizationBuilder.CreateUserDeniedFromAccessingOrganisation();
var handler = new UpdateOrganisationTypeDetailsHandler(A <WeeeContext> ._, authorization);
var message = new UpdateOrganisationTypeDetails(Guid.NewGuid(), OrganisationType.RegisteredCompany, A <string> ._, A <string> ._, A <string> ._);
await Assert.ThrowsAsync <SecurityException>(async() => await handler.HandleAsync(message));
}
public async Task GetMemberUploadDataHandler_NotOrganisationUser_ThrowsSecurityException()
{
var denyingAuthorization = AuthorizationBuilder.CreateUserDeniedFromAccessingOrganisation();
var handler = new GetMemberUploadDataHandler(denyingAuthorization, A.Dummy <WeeeContext>(), A.Dummy <MemberUploadErrorMap>());
var message = new GetMemberUploadData(Guid.NewGuid(), Guid.NewGuid());
await Assert.ThrowsAsync <SecurityException>(async() => await handler.HandleAsync(message));
}
public async Task HandleAsync_GivenNotOrganisationUser_ThrowsSecurityException()
{
var localAuthorization = AuthorizationBuilder.CreateUserDeniedFromAccessingOrganisation();
var localHandler = new GetAddressHandler(localAuthorization, dataAccess, mapper);
Func <Task <AddressData> > action = async() => await localHandler.HandleAsync(A.Dummy <GetAddress>());
await action.Should().ThrowAsync <SecurityException>();
}
