public void CancelReturnsRedirect()
{
var loginServiceMock = new Mock<ILoginService>();
var controller = new AuthorizeController(loginServiceMock.Object);
HttpContextBase context = Mocking.FakeHttpContext();
controller.ControllerContext = new ControllerContext(context, new RouteData(), controller);
string client_id = "123";
string response_type = "code";
string redirect_uri = "http://foo.bar.com";
string state = "state";
string username = "******";
string password = "******";
string login = "";
string cancel = "Cancel";
ActionResult result =
controller.Index(username, password, login, cancel, client_id, response_type, redirect_uri, state);
Assert.IsInstanceOf<RedirectResult>(result);
var redirectResult = (RedirectResult)result;
Assert.IsFalse(redirectResult.Permanent);
Assert.AreEqual("http://foo.bar.com?cancel=true&state=state", redirectResult.Url);
}
public void ChangePasswordReturnsView()
{
var loginServiceMock = new Mock<ILoginService>();
var controller = new AuthorizeController(loginServiceMock.Object);
HttpContextBase context = Mocking.FakeHttpContext();
controller.ControllerContext = new ControllerContext(context, new RouteData(), controller);
string client_id = "123";
string response_type = "code";
string redirect_uri = "http://foo.bar.com";
string state = "state";
ActionResult result =
controller.ChangePassword(client_id, response_type, redirect_uri, state);
Assert.IsInstanceOf<ViewResult>(result);
var viewResult = (ViewResult)result;
// TODO: implement change password
}
public void EmptyRedirectUriThrows()
{
HttpContextBase context = Mocking.FakeHttpContext();
var loginServiceMock = new Mock<ILoginService>();
var controller = new AuthorizeController(loginServiceMock.Object);
controller.ControllerContext = new ControllerContext(context, new RouteData(), controller);
string client_id = "123";
string response_type = "code";
string redirect_uri = "";
string state = "";
Assert.Throws(typeof (Exception), () => controller.Index(client_id, response_type, redirect_uri, state),
"invalid response_type");
}
public void ValidCredentialsReturnsRedirect()
{
var loginServiceMock = new Mock<ILoginService>();
loginServiceMock.Setup(m => m.Login(It.IsAny<string>(), It.IsAny<string>())).Returns(
new ApiLogOnResponseDTO
{
AllowedAccountOperator = true,
PasswordChangeRequired = false,
Session = "session"
});
var controller = new AuthorizeController(loginServiceMock.Object);
HttpContextBase context = Mocking.FakeHttpContext();
controller.ControllerContext = new ControllerContext(context, new RouteData(), controller);
string client_id = "123";
string response_type = "code";
string redirect_uri = "http://foo.bar.com";
string state = "state";
string username = "******";
string password = "******";
string login = "******";
string cancel = "";
ActionResult result =
controller.Index(username, password, login, cancel, client_id, response_type, redirect_uri, state);
Assert.IsInstanceOf<RedirectResult>(result);
var redirectResult = (RedirectResult) result;
Assert.IsFalse(redirectResult.Permanent);
Assert.AreEqual("http://foo.bar.com?code=JpstAC9GbwGop5FiEqfs3Q%3d%3d&state=state&client_id=123", redirectResult.Url);
}
public void ValidClientIdShowsClientName()
{
HttpContextBase context = Mocking.FakeHttpContext();
var loginServiceMock = new Mock<ILoginService>();
var controller = new AuthorizeController(loginServiceMock.Object);
controller.ControllerContext = new ControllerContext(context, new RouteData(), controller);
string client_id = "123";
string response_type = "code";
string redirect_uri = "http://foo.bar.com";
string state = "";
var result = (ViewResult) controller.Index(client_id, response_type, redirect_uri, state);
Assert.AreEqual("Demo App", result.ViewBag.SiteName);
}
public void PasswordChangeRequiredReturnsRedirect()
{
var loginServiceMock = new Mock<ILoginService>();
loginServiceMock.Setup(m => m.Login(It.IsAny<string>(), It.IsAny<string>())).Returns(
new ApiLogOnResponseDTO
{
AllowedAccountOperator = true,
PasswordChangeRequired = true,
Session = "session"
});
var controller = new AuthorizeController(loginServiceMock.Object);
HttpContextBase context = Mocking.FakeHttpContext();
controller.ControllerContext = new ControllerContext(context, new RouteData(), controller);
string client_id = "123";
string response_type = "code";
string redirect_uri = "http://foo.bar.com";
string state = "state";
string username = "******";
string password = "******";
string login = "******";
string cancel = "";
ActionResult result =
controller.Index(username, password, login, cancel, client_id, response_type, redirect_uri, state);
Assert.IsInstanceOf<RedirectToRouteResult>(result);
var redirectResult = (RedirectToRouteResult) result;
Assert.AreEqual("ChangePassword", redirectResult.RouteValues["action"]);
Assert.AreEqual("Authorize", redirectResult.RouteValues["controller"]);
Assert.AreEqual(client_id, redirectResult.RouteValues["client_id"]);
Assert.AreEqual(response_type, redirectResult.RouteValues["response_type"]);
Assert.AreEqual(redirect_uri, redirectResult.RouteValues["redirect_uri"]);
Assert.AreEqual(state, redirectResult.RouteValues["state"]);
}
public void InvalidCredentialsShowError()
{
var loginServiceMock = new Mock<ILoginService>();
loginServiceMock.Setup(m => m.Login(It.IsAny<string>(), It.IsAny<string>())).Throws(
new InvalidCredentialsException("Invalid"));
var controller = new AuthorizeController(loginServiceMock.Object);
HttpContextBase context = Mocking.FakeHttpContext();
controller.ControllerContext = new ControllerContext(context, new RouteData(), controller);
string client_id = "123";
string response_type = "code";
string redirect_uri = "http://foo.bar.com";
string state = "";
string username = "******";
string password = "******";
string login = "******";
string cancel = "";
var result =
(ViewResult)
controller.Index(username, password, login, cancel, client_id, response_type, redirect_uri, state);
Assert.AreEqual("Demo App", result.ViewBag.SiteName);
Assert.AreEqual("Invalid Username or Password", result.ViewBag.ErrorMessage);
}
public void FormSubmitShowsRequiredFieldErrors()
{
HttpContextBase context = Mocking.FakeHttpContext();
var loginServiceMock = new Mock<ILoginService>();
var controller = new AuthorizeController(loginServiceMock.Object);
controller.ControllerContext = new ControllerContext(context, new RouteData(), controller);
string client_id = "123";
string response_type = "code";
string redirect_uri = "http://foo.bar.com";
string state = "";
string username = "";
string password = "";
string login = "******";
string cancel = "";
var result =
(ViewResult)
controller.Index(username, password, login, cancel, client_id, response_type, redirect_uri, state);
Assert.AreEqual("Demo App", result.ViewBag.SiteName);
Assert.AreEqual("Required", result.ViewBag.UidLabel);
Assert.AreEqual("Required", result.ViewBag.PwdLabel);
Assert.AreEqual("Required fields missing", result.ViewBag.ErrorMessage);
//ViewBag.ErrorMessage = "Invalid Username or Password";
}
