public async Task HandleAsync_WithNonInternalAccess_ThrowsSecurityException(AuthorizationBuilder.UserType userType)
{
var authorization = AuthorizationBuilder.CreateFromUserType(userType);
var userManager = A.Fake <UserManager <ApplicationUser> >();
var handler = new DeleteAatfHandler(authorization,
aatfDataAccess,
organisationDataAccess,
weeeContext,
getAatfDeletionStatus);
Func <Task> action = async() => await handler.HandleAsync(A.Dummy <DeleteAnAatf>());
await Assert.ThrowsAsync <SecurityException>(action);
}
public async Task HandleAsync_WithNonInternalAdminRole_ThrowsSecurityException()
{
var authorization = new AuthorizationBuilder()
.AllowInternalAreaAccess()
.DenyRole(Roles.InternalAdmin)
.Build();
var userManager = A.Fake <UserManager <ApplicationUser> >();
var handler = new DeleteAatfHandler(authorization,
aatfDataAccess,
organisationDataAccess,
weeeContext,
getAatfDeletionStatus);
Func <Task> action = async() => await handler.HandleAsync(A.Dummy <DeleteAnAatf>());
await Assert.ThrowsAsync <SecurityException>(action);
}
