Exemplo n.º 1
0
		protected HttpContextBase GetHttpContext(PrincipalStub principal)
		{
			MvcMockContainer container = new MvcMockContainer();
			HttpContextBase context = MvcMockHelpers.FakeHttpContext(container);
			container.Context.SetupProperty(x => x.User, principal);

			return context;
		}
Exemplo n.º 2
0
        public void Should_Throw_SecurityException_When_AuthorizationProvider_Is_Null()
        {
            // Arrange
            WebApiAdminRequiredAttributeMock attribute = new WebApiAdminRequiredAttributeMock();
            attribute.AuthorizationProvider = null;

            IdentityStub identity = new IdentityStub() { Name = Guid.NewGuid().ToString(), IsAuthenticated = true };
            PrincipalStub principal = new PrincipalStub() { Identity = identity };
            Thread.CurrentPrincipal = principal;

            // Act + Assert
            attribute.CallAuthorize(new HttpActionContext());
        }
Exemplo n.º 3
0
        public void Should_Throw_SecurityException_When_AuthorizationProvider_Is_Null()
        {
            // Arrange
            AdminRequiredAttributeMock attribute = new AdminRequiredAttributeMock();
            attribute.AuthorizationProvider = null;

            IdentityStub identity = new IdentityStub() { Name = Guid.NewGuid().ToString(), IsAuthenticated = true };
            PrincipalStub principal = new PrincipalStub() { Identity = identity };
            HttpContextBase context = GetHttpContext(principal);

            // Act + Assert
            attribute.CallAuthorize(context);
        }
Exemplo n.º 4
0
        public void IsAdmin_Should_Return_False_When_No_Identity_Name_Set()
        {
            // Arrange
            User adminUser = CreateAdminUser();
            IdentityStub identity = new IdentityStub() { Name = "", IsAuthenticated = true };
            PrincipalStub principal = new PrincipalStub() { Identity = identity };
            AuthorizationProvider provider = new AuthorizationProvider(_applicationSettings, _userService);

            // Act
            bool isAuthenticated = provider.IsAdmin(principal);

            // Assert
            Assert.That(isAuthenticated, Is.False);
        }
Exemplo n.º 5
0
		public void IsViewer_Should_Return_True_When_Not_Authenticated()
		{
			// Arrange
			User editorUser = CreateEditorUser();
			IdentityStub identity = new IdentityStub() { IsAuthenticated = false };
			IPrincipal principal = new PrincipalStub() { Identity = identity };
			AuthorizationProvider provider = new AuthorizationProvider(_applicationSettings, _userService);

			// Act
			bool isAuthenticated = provider.IsViewer(principal);

			// Assert
			Assert.That(isAuthenticated, Is.True);
		}
Exemplo n.º 6
0
        public void IsAdmin_Should_Return_False_For_Editor_User()
        {
            // Arrange
            User editorUser = CreateEditorUser();
            IdentityStub identity = new IdentityStub() { Name = editorUser.Id.ToString(), IsAuthenticated = true };
            PrincipalStub principal = new PrincipalStub() { Identity = identity };
            AuthorizationProvider provider = new AuthorizationProvider(_applicationSettings, _userService);

            // Act
            bool isAuthenticated = provider.IsAdmin(principal);

            // Assert
            Assert.That(isAuthenticated, Is.False);
        }
Exemplo n.º 7
0
		public void isadmin_should_return_true_for_admin_user()
		{
			// Arrange
			User adminUser = CreateAdminUser();
			IdentityStub identity = new IdentityStub() { Name = adminUser.Id.ToString(), IsAuthenticated = true };
			PrincipalStub principal = new PrincipalStub() { Identity = identity };
			AuthorizationProvider provider = new AuthorizationProvider(_applicationSettings, _userService);

			// Act
			bool isAuthenticated = provider.IsAdmin(principal);

			// Assert
			Assert.That(isAuthenticated, Is.True);
		}
Exemplo n.º 8
0
        public void Should_Use_AuthorizationProvider()
        {
            // Arrange
            WebApiAdminRequiredAttributeMock attribute = new WebApiAdminRequiredAttributeMock();
            attribute.AuthorizationProvider = new AuthorizationProviderMock() { IsAdminResult = true };
            attribute.ApplicationSettings = _applicationSettings;
            attribute.UserService = _userService;

            IdentityStub identity = new IdentityStub() { Name = Guid.NewGuid().ToString(), IsAuthenticated = true };
            PrincipalStub principal = new PrincipalStub() { Identity = identity };
            Thread.CurrentPrincipal = principal;

            // Act
            bool isAuthorized = attribute.CallAuthorize(new HttpActionContext());

            // Assert
            Assert.That(isAuthorized, Is.True);
        }
Exemplo n.º 9
0
		public void should_use_authorizationprovider()
		{
			// Arrange
			EditorRequiredAttributeMock attribute = new EditorRequiredAttributeMock();
			attribute.AuthorizationProvider = new AuthorizationProviderMock() { IsEditorResult = true };
			attribute.ApplicationSettings = _applicationSettings;
			attribute.UserService = _userService;

			IdentityStub identity = new IdentityStub() { Name = Guid.NewGuid().ToString(), IsAuthenticated = true };
			PrincipalStub principal = new PrincipalStub() { Identity = identity };
			HttpContextBase context = GetHttpContext(principal);

			// Act
			bool isAuthorized = attribute.CallAuthorize(context);

			// Assert
			Assert.That(isAuthorized, Is.True);
		}
Exemplo n.º 10
0
		public void Should_Return_True_If_UpgradeRequired_Is_True()
		{
			// Arrange
			_applicationSettings.UpgradeRequired = true;

			OptionalAuthorizationAttributeMock attribute = new OptionalAuthorizationAttributeMock();
			attribute.AuthorizationProvider = new AuthorizationProviderMock();
			attribute.ApplicationSettings = _applicationSettings;
			attribute.UserService = _userService;

			IdentityStub identity = new IdentityStub() { Name = Guid.NewGuid().ToString(), IsAuthenticated = true };
			PrincipalStub principal = new PrincipalStub() { Identity = identity };
			HttpContextBase context = GetHttpContext(principal);

			// Act
			bool isAuthorized = attribute.CallAuthorize(context);

			// Assert
			Assert.That(isAuthorized, Is.True);
		}
Exemplo n.º 11
0
		public void Should_Use_AuthorizationProvider_For_Admin_When_PublicSite_Is_False()
		{
			// Arrange
			User adminUser = CreateAdminUser();

			OptionalAuthorizationAttributeMock attribute = new OptionalAuthorizationAttributeMock();
			attribute.AuthorizationProvider = new AuthorizationProviderMock() { IsEditorResult = true };
			attribute.ApplicationSettings = _applicationSettings;
			attribute.UserService = _userService;

			IdentityStub identity = new IdentityStub() { Name = adminUser.Id.ToString(), IsAuthenticated = true };
			PrincipalStub principal = new PrincipalStub() { Identity = identity };
			HttpContextBase context = GetHttpContext(principal);

			// Act
			bool isAuthorized = attribute.CallAuthorize(context);

			// Assert
			Assert.That(isAuthorized, Is.True);
		}
Exemplo n.º 12
0
        public void IsEditor_Should_Return_True_When_No_Editor_Role_Set()
        {
            // Arrange
            _applicationSettings.EditorRoleName = "";

            User editorUser = CreateEditorUser();
            IdentityStub identity = new IdentityStub() { Name = editorUser.Id.ToString(), IsAuthenticated = true };
            PrincipalStub principal = new PrincipalStub() { Identity = identity };
            AuthorizationProvider provider = new AuthorizationProvider(_applicationSettings, _userService);

            // Act
            bool isAuthenticated = provider.IsEditor(principal);

            // Assert
            Assert.That(isAuthenticated, Is.True);
        }
Exemplo n.º 13
0
		public void iseditor_should_return_false_when_user_is_not_admin_or_editor()
		{
			// Arrange
			User user = CreateEditorUser();
			user.IsEditor = false;

			IdentityStub identity = new IdentityStub() { Name = user.Id.ToString(), IsAuthenticated = true };
			PrincipalStub principal = new PrincipalStub() { Identity = identity };
			AuthorizationProvider provider = new AuthorizationProvider(_applicationSettings, _userService);

			// Act
			bool isAuthenticated = provider.IsEditor(principal);

			// Assert
			Assert.That(isAuthenticated, Is.False);
		}
Exemplo n.º 14
0
		public void iseditor_should_return_false_when_no_identity_name_set()
		{
			// Arrange
			User adminUser = CreateAdminUser();
			IdentityStub identity = new IdentityStub() { Name = "", IsAuthenticated = true };
			PrincipalStub principal = new PrincipalStub() { Identity = identity };
			AuthorizationProvider provider = new AuthorizationProvider(_applicationSettings, _userService);

			// Act
			bool isAuthenticated = provider.IsEditor(principal);

			// Assert
			Assert.That(isAuthenticated, Is.False);
		}
Exemplo n.º 15
0
		public void should_use_authorizationprovider_for_editors_when_publicsite_is_false()
		{
			// Arrange
			User editorUser = CreateEditorUser();

			OptionalAuthorizationAttributeMock attribute = new OptionalAuthorizationAttributeMock();
			attribute.AuthorizationProvider = new AuthorizationProviderMock() { IsEditorResult = true };
			attribute.ApplicationSettings = _applicationSettings;
			attribute.UserService = _userService;

			IdentityStub identity = new IdentityStub() { Name = editorUser.Id.ToString(), IsAuthenticated = true };
			PrincipalStub principal = new PrincipalStub() { Identity = identity };
			HttpContextBase context = GetHttpContext(principal);

			// Act
			bool isAuthorized = attribute.CallAuthorize(context);

			// Assert
			Assert.That(isAuthorized, Is.True);
		}