public void Get_With_Inline_Token_Returns_False()
{
string token = identityManagement.Login("t5734", "Lcii9lvy");
OpmVerificationResult res = httpClient.GetWithInlineToken("859182400741757329", token);
Assert.AreEqual(false, res.Result);
}
public void Get_Returns_401_For_Wrong_Cookie_Token()
{
try {
// set the sso token (mock takes 'valid' as valid)
Controller.Request.Headers.Add("Cookie", SsoCookieName + "=NotValidToken");
OpmVerificationResult result = Controller.Get("invalid");
} catch (HttpResponseException e) {
Assert.AreEqual(HttpStatusCode.Unauthorized, e.Response.StatusCode);
return;
}
Assert.Fail("Test failed. Expected HTTP Status Code 401.");
}
public OpmVerificationResult VerifyOpm(string codeString, string username)
{
EanEicCode code = new EanEicCode(codeString);
if (UserAccessService.TryAccess(username, code))
{
OpmVerificationResult result = VerifyOpm(code);
return(result);
}
throw new UserAccessLimitViolationException();
}
public OpmVerificationResult Get(String id)
{
try
{
OpmVerificationResult result = _opmVerificator.VerifyOpm(id, User.Identity.Name);
_userAccessService.RecordAccess(User.Identity.Name, id, result.Result.ToString());
return(result);
} catch (UnauthorizedAccessException) {
_userAccessService.RecordAccess(User.Identity.Name, id, "Unauthorized.");
ThrowHttpResponseException(HttpStatusCode.Unauthorized, "Access denied due to an invalid token.");
} catch (UserAccessLimitViolationException) {
_userAccessService.RecordAccess(User.Identity.Name, id, "Access limitation violation.");
ThrowHttpResponseException(HttpStatusCode.Forbidden, "Access denied due to access limit violation.");
} catch (EanEicCodeInvalidException) {
_userAccessService.RecordAccess(User.Identity.Name, id, "Invalid code.");
ThrowHttpResponseException(HttpStatusCode.BadRequest, "The supplied code is not valid.");
}
// this return statement is required by compiler; prefer to have it here rather than inline the ThrowHttpResponseException method
return(null);
}
