public void OnBeAuthorizationShouldNotThrowOnMultipleCalls()
{
var options = new AuthorizationOptions();
var controller = Repository.Create <ControllerBase>();
controller.As <IAuthorizationController>().Setup(x => x.AuthorizationOptions).Returns(options);
var authorizationContext = new System.Web.Mvc.AuthorizationContext
{
HttpContext = SetupHttpContextBase().Object,
ActionDescriptor = SetupAllowAnonymous(false).Object,
Controller = controller.Object
};
var attribute = new ResourceAuthorizeAttribute();
attribute.OnAuthorization(authorizationContext);
// the next line should not throw
attribute.OnAuthorization(authorizationContext);
}
public void UserShouldNotBeAuthorized()
{
var options = new AuthorizationOptions();
var controller = Repository.Create <ControllerBase>();
controller.As <IAuthorizationController>().Setup(x => x.AuthorizationOptions).Returns(options);
var authorizationContext = new System.Web.Mvc.AuthorizationContext
{
HttpContext = SetupHttpContextBase().Object,
ActionDescriptor = SetupAllowAnonymous(false).Object,
Controller = controller.Object
};
var attribute = new ResourceAuthorizeAttribute();
attribute.OnAuthorization(authorizationContext);
Assert.IsInstanceOfType(authorizationContext.Result, typeof(HttpUnauthorizedResult));
}
public void OnAuthorizationShouldThrowWhenFilterContextIsNull()
{
var attribute = new ResourceAuthorizeAttribute();
attribute.OnAuthorization(null);
}
