public void OnBeAuthorizationShouldNotThrowOnMultipleCalls() { var options = new AuthorizationOptions(); var controller = Repository.Create <ControllerBase>(); controller.As <IAuthorizationController>().Setup(x => x.AuthorizationOptions).Returns(options); var authorizationContext = new System.Web.Mvc.AuthorizationContext { HttpContext = SetupHttpContextBase().Object, ActionDescriptor = SetupAllowAnonymous(false).Object, Controller = controller.Object }; var attribute = new ResourceAuthorizeAttribute(); attribute.OnAuthorization(authorizationContext); // the next line should not throw attribute.OnAuthorization(authorizationContext); }
public void UserShouldNotBeAuthorized() { var options = new AuthorizationOptions(); var controller = Repository.Create <ControllerBase>(); controller.As <IAuthorizationController>().Setup(x => x.AuthorizationOptions).Returns(options); var authorizationContext = new System.Web.Mvc.AuthorizationContext { HttpContext = SetupHttpContextBase().Object, ActionDescriptor = SetupAllowAnonymous(false).Object, Controller = controller.Object }; var attribute = new ResourceAuthorizeAttribute(); attribute.OnAuthorization(authorizationContext); Assert.IsInstanceOfType(authorizationContext.Result, typeof(HttpUnauthorizedResult)); }
public void OnAuthorizationShouldThrowWhenFilterContextIsNull() { var attribute = new ResourceAuthorizeAttribute(); attribute.OnAuthorization(null); }