public async Task ShouldNotAllowTokensWithNoBearerToken()
{
//GIVEN
var driver = new EndpointsAdapterDriver();
//WHEN
var httpResponseMock = await driver.AttemptToAddTodoItem(
request => request.WithoutHeader("Authorization")
);
//THEN
httpResponseMock.ShouldBe400BadRequest();
}
public async Task ShouldNotAllowTokensWithNoBearerInAuthorizationHeader()
{
//GIVEN
var driver = new EndpointsAdapterDriver();
//WHEN
var httpResponseMock = await driver.AttemptToAddTodoItem(
request => request.WithHeader("Authorization", "Bearer lol")
);
//THEN
httpResponseMock.ShouldBeForbidden401();
}
public async Task ShouldNotAllowTokensWithBadIssuerInAddTodoRequest()
{
//GIVEN
var driver = new EndpointsAdapterDriver();
//WHEN
var httpResponseMock = await driver.AttemptToAddTodoItem(
request => request.WithHeader("Authorization", $"Bearer {TestTokens.GenerateTokenFromBadIssuer()}")
);
//THEN
httpResponseMock.ShouldBeForbidden401();
}
