public async Task Token_Can_Be_Invalidated_After_Creation() { //Arrange var email = CreateEmail(); var userDto = ObjectCreateHelper.MakeSimpleApiUserDto(email, true); var createdUserId = await HttpApi.CreateOdataUserAsync(userDto, OrganizationRole.User); var loginDto = ObjectCreateHelper.MakeSimpleLoginDto(email, _defaultPassword); var token = await HttpApi.GetTokenAsync(loginDto); using (var requestResponse = await HttpApi.GetWithTokenAsync(TestEnvironment.CreateUrl("api/ItSystem/"), token.Token)) { Assert.NotNull(requestResponse); Assert.Equal(HttpStatusCode.OK, requestResponse.StatusCode); }; //Act await DisableApiAccessForUserAsync(userDto, createdUserId); //Assert using (var requestResponse = await HttpApi.GetWithTokenAsync(TestEnvironment.CreateUrl("api/ItSystem/"), token.Token)) { Assert.NotNull(requestResponse); Assert.Equal(HttpStatusCode.Forbidden, requestResponse.StatusCode); }; await HttpApi.DeleteUserAsync(createdUserId); }
public async Task User_Without_Api_Access_Can_Not_Get_Token() { //Arrange var url = TestEnvironment.CreateUrl("api/authorize/GetToken"); var loginDto = ObjectCreateHelper.MakeSimpleLoginDto(_globalAdmin.Username, _globalAdmin.Password); //Act var tokenResponse = await HttpApi.PostAsync(url, loginDto); //Assert Assert.Equal(HttpStatusCode.Forbidden, tokenResponse.StatusCode); }
public async Task Get_Token_Returns_401_On_Invalid_Username() { //Arrange var loginDto = ObjectCreateHelper.MakeSimpleLoginDto(A <string>(), _regularApiUser.Password); //Act using (var httpResponseMessage = await HttpApi.PostAsync(_getTokenUrl, loginDto)) { //Assert Assert.Equal(HttpStatusCode.Unauthorized, httpResponseMessage.StatusCode); } }
public async Task Api_Access_User_Can_Get_Token() { //Arrange var loginDto = ObjectCreateHelper.MakeSimpleLoginDto(_regularApiUser.Username, _regularApiUser.Password); //Act var tokenResponse = await HttpApi.GetTokenAsync(loginDto); //Assert Assert.NotNull(tokenResponse); Assert.True(tokenResponse.LoginSuccessful); Assert.True(tokenResponse.Expires > DateTime.UtcNow); Assert.False(string.IsNullOrWhiteSpace(tokenResponse.Token)); }