private void RemoveDisabledActionsFromClaimSet(ResourceClaim modelResourceClaim, IEnumerable <ClaimSetResourceClaim> resourceClaimsToEdit) { var recordsToRemove = new List <ClaimSetResourceClaim>(); foreach (var claimSetResourceClaim in resourceClaimsToEdit) { if (claimSetResourceClaim.Action.ActionName == Action.Create.Value && !modelResourceClaim.Create) { recordsToRemove.Add(claimSetResourceClaim); } else if (claimSetResourceClaim.Action.ActionName == Action.Read.Value && !modelResourceClaim.Read) { recordsToRemove.Add(claimSetResourceClaim); } else if (claimSetResourceClaim.Action.ActionName == Action.Update.Value && !modelResourceClaim.Update) { recordsToRemove.Add(claimSetResourceClaim); } else if (claimSetResourceClaim.Action.ActionName == Action.Delete.Value && !modelResourceClaim.Delete) { recordsToRemove.Add(claimSetResourceClaim); } } if (recordsToRemove.Any()) { _context.ClaimSetResourceClaims.RemoveRange(recordsToRemove); } }
public void ShouldEditParentResourcesOnClaimSet() { var testApplication = new Application { ApplicationName = $"Test Application {DateTime.Now:O}" }; Save(testApplication); var testClaimSet = new ClaimSet { ClaimSetName = "TestClaimSet", Application = testApplication }; Save(testClaimSet); var testResources = SetupParentResourceClaimsWithChildren(testClaimSet, testApplication); var testResource1ToEdit = testResources.Select(x => x.ResourceClaim).Single(x => x.ResourceName == "TestParentResourceClaim1"); var testResource2ToNotEdit = testResources.Select(x => x.ResourceClaim).Single(x => x.ResourceName == "TestParentResourceClaim2"); var editedResource = new ResourceClaim { Id = testResource1ToEdit.ResourceClaimId, Name = testResource1ToEdit.ResourceName, Create = false, Read = false, Update = true, Delete = true }; var editResourceOnClaimSetModel = new Mock <IEditResourceOnClaimSetModel>(); editResourceOnClaimSetModel.Setup(x => x.ClaimSetId).Returns(testClaimSet.ClaimSetId); editResourceOnClaimSetModel.Setup(x => x.ResourceClaim).Returns(editedResource); var command = new EditResourceOnClaimSetCommand(TestContext); command.Execute(editResourceOnClaimSetModel.Object); var resourceClaimsForClaimSet = new GetResourcesByClaimSetIdQuery(TestContext, GetMapper()).AllResources(testClaimSet.ClaimSetId).ToList(); var parentResources = testResources.Where(x => x.ClaimSet.ClaimSetId == testClaimSet.ClaimSetId && x.ResourceClaim.ParentResourceClaim == null).Select(x => x.ResourceClaim).ToList(); resourceClaimsForClaimSet.Count().ShouldBe(parentResources.Count); var resultResourceClaim1 = resourceClaimsForClaimSet.Single(x => x.Id == editedResource.Id); resultResourceClaim1.Create.ShouldBe(editedResource.Create); resultResourceClaim1.Read.ShouldBe(editedResource.Read); resultResourceClaim1.Update.ShouldBe(editedResource.Update); resultResourceClaim1.Delete.ShouldBe(editedResource.Delete); var resultResourceClaim2 = resourceClaimsForClaimSet.Single(x => x.Id == testResource2ToNotEdit.ResourceClaimId); resultResourceClaim2.Create.ShouldBe(true); resultResourceClaim2.Read.ShouldBe(false); resultResourceClaim2.Update.ShouldBe(false); resultResourceClaim2.Delete.ShouldBe(false); }
private void AddEnabledActionsToClaimSet(ResourceClaim modelResourceClaim, IReadOnlyCollection <ClaimSetResourceClaim> claimSetResourceClaimsToEdit, Security.DataAccess.Models.ClaimSet claimSetToEdit) { var actionsFromDb = _context.Actions.ToList(); var resourceClaimFromDb = _context.ResourceClaims.Single(x => x.ResourceClaimId == modelResourceClaim.Id); var recordsToAdd = new List <ClaimSetResourceClaim>(); if (modelResourceClaim.Create && claimSetResourceClaimsToEdit.All(x => x.Action.ActionName != Action.Create.Value)) { recordsToAdd.Add(new ClaimSetResourceClaim { Action = actionsFromDb.Single(x => x.ActionName == Action.Create.Value), ClaimSet = claimSetToEdit, ResourceClaim = resourceClaimFromDb }); } if (modelResourceClaim.Read && claimSetResourceClaimsToEdit.All(x => x.Action.ActionName != Action.Read.Value)) { recordsToAdd.Add(new ClaimSetResourceClaim { Action = actionsFromDb.Single(x => x.ActionName == Action.Read.Value), ClaimSet = claimSetToEdit, ResourceClaim = resourceClaimFromDb }); } if (modelResourceClaim.Update && claimSetResourceClaimsToEdit.All(x => x.Action.ActionName != Action.Update.Value)) { recordsToAdd.Add(new ClaimSetResourceClaim { Action = actionsFromDb.Single(x => x.ActionName == Action.Update.Value), ClaimSet = claimSetToEdit, ResourceClaim = resourceClaimFromDb }); } if (modelResourceClaim.Delete && claimSetResourceClaimsToEdit.All(x => x.Action.ActionName != Action.Delete.Value)) { recordsToAdd.Add(new ClaimSetResourceClaim { Action = actionsFromDb.Single(x => x.ActionName == Action.Delete.Value), ClaimSet = claimSetToEdit, ResourceClaim = resourceClaimFromDb }); } if (recordsToAdd.Any()) { _context.ClaimSetResourceClaims.AddRange(recordsToAdd); } }
public void ShouldAddChildResourcesToClaimSet() { var testApplication = new Application { ApplicationName = $"Test Application {DateTime.Now:O}" }; Save(testApplication); var testClaimSet = new ClaimSet { ClaimSetName = "TestClaimSet", Application = testApplication }; Save(testClaimSet); var testResources = SetupResourceClaims(testApplication); var testParentResource1 = testResources.Single(x => x.ResourceName == "TestParentResourceClaim1"); var testChildResource1ToAdd = Transaction(securityContext => securityContext.ResourceClaims.Single(x => x.ResourceName == "TestChildResourceClaim1" && x.ParentResourceClaimId == testParentResource1.ResourceClaimId)); var resourceToAdd = new ResourceClaim() { Id = testChildResource1ToAdd.ResourceClaimId, Name = testChildResource1ToAdd.ResourceName, Create = true, Read = false, Update = true, Delete = false }; var existingResources = ResourceClaimsForClaimSet(testClaimSet.ClaimSetId); var editResourceOnClaimSetModel = new EditClaimSetResourceModel { ClaimSetId = testClaimSet.ClaimSetId, ResourceClaim = resourceToAdd, ExistingResourceClaims = existingResources }; Scoped <ISecurityContext>(securityContext => { var command = new EditResourceOnClaimSetCommand(securityContext); command.Execute(editResourceOnClaimSetModel); }); var resourceClaimsForClaimSet = ResourceClaimsForClaimSet(testClaimSet.ClaimSetId); var resultChildResourceClaim1 = resourceClaimsForClaimSet.Single(x => x.Name == testChildResource1ToAdd.ResourceName); resultChildResourceClaim1.Create.ShouldBe(resourceToAdd.Create); resultChildResourceClaim1.Read.ShouldBe(resourceToAdd.Read); resultChildResourceClaim1.Update.ShouldBe(resourceToAdd.Update); resultChildResourceClaim1.Delete.ShouldBe(resourceToAdd.Delete); }
public void ShouldAddParentResourceToClaimSet() { var testApplication = new Application { ApplicationName = $"Test Application {DateTime.Now:O}" }; Save(testApplication); var testClaimSet = new ClaimSet { ClaimSetName = "TestClaimSet", Application = testApplication }; Save(testClaimSet); var testResources = SetupResourceClaims(testApplication); var testResourceToAdd = testResources.Single(x => x.ResourceName == "TestParentResourceClaim1"); var resourceToAdd = new ResourceClaim() { Id = testResourceToAdd.ResourceClaimId, Name = testResourceToAdd.ResourceName, Create = true, Read = false, Update = true, Delete = false }; var existingResources = new GetResourcesByClaimSetIdQuery(TestContext, GetMapper()).AllResources(testClaimSet.ClaimSetId) .ToList(); var editResourceOnClaimSetModel = new EditClaimSetResourceModel { ClaimSetId = testClaimSet.ClaimSetId, ResourceClaim = resourceToAdd, ExistingResourceClaims = existingResources }; var command = new EditResourceOnClaimSetCommand(TestContext); command.Execute(editResourceOnClaimSetModel); var resourceClaimsForClaimSet = new GetResourcesByClaimSetIdQuery(TestContext, GetMapper()).AllResources(testClaimSet.ClaimSetId).ToList(); var resultResourceClaim1 = resourceClaimsForClaimSet.Single(x => x.Name == testResourceToAdd.ResourceName); resultResourceClaim1.Create.ShouldBe(resourceToAdd.Create); resultResourceClaim1.Read.ShouldBe(resourceToAdd.Read); resultResourceClaim1.Update.ShouldBe(resourceToAdd.Update); resultResourceClaim1.Delete.ShouldBe(resourceToAdd.Delete); }
public void ShouldNotAddInvalidResourcesToClaimSetDuringEdit() { var testApplication = new Application { ApplicationName = $"Test Application {DateTime.Now:O}" }; Save(testApplication); var testClaimSet = new ClaimSet { ClaimSetName = "TestClaimSet", Application = testApplication }; Save(testClaimSet); var testResources = SetupParentResourceClaimsWithChildren(testClaimSet, testApplication); var testResource = testResources.Single(x => x.ResourceClaim.ResourceName == "TestParentResourceClaim1").ResourceClaim; var invalidResource = new ResourceClaim { Id = testResource.ResourceClaimId, Name = testResource.ResourceName, Create = false, Read = false, Update = false, Delete = false }; var editResourceOnClaimSetModel = new EditClaimSetResourceModel { ClaimSetId = testClaimSet.ClaimSetId, ResourceClaim = invalidResource, ExistingResourceClaims = new GetResourcesByClaimSetIdQuery(TestContext, GetMapper()).AllResources(testClaimSet.ClaimSetId) .ToList() }; var validator = new EditClaimSetResourceModelValidator(); var validationResults = validator.Validate(editResourceOnClaimSetModel); validationResults.IsValid.ShouldBe(false); validationResults.Errors.Single().ErrorMessage.ShouldBe("Only valid resources can be added. A resource must have at least one action associated with it to be added. The following is an invalid resource:\nTestParentResourceClaim1"); }
public void ShouldEditChildResourcesOnClaimSet() { var testApplication = new Application { ApplicationName = $"Test Application {DateTime.Now:O}" }; Save(testApplication); var testClaimSet = new ClaimSet { ClaimSetName = "TestClaimSet", Application = testApplication }; Save(testClaimSet); var testResources = SetupParentResourceClaimsWithChildren(testClaimSet, testApplication); var testParentResource = testResources.Single(x => x.ResourceClaim.ResourceName == "TestParentResourceClaim1"); var testChildResource1ToEdit = Transaction(securityContext => securityContext.ResourceClaims.Single(x => x.ResourceName == "TestChildResourceClaim1" && x.ParentResourceClaimId == testParentResource.ResourceClaim.ResourceClaimId)); var testChildResource2NotToEdit = Transaction(securityContext => securityContext.ResourceClaims.Single(x => x.ResourceName == "TestChildResourceClaim2" && x.ParentResourceClaimId == testParentResource.ResourceClaim.ResourceClaimId)); var editedResource = new ResourceClaim { Id = testChildResource1ToEdit.ResourceClaimId, Name = testChildResource1ToEdit.ResourceName, Create = false, Read = false, Update = true, Delete = true }; var editResourceOnClaimSetModel = new Mock <IEditResourceOnClaimSetModel>(); editResourceOnClaimSetModel.Setup(x => x.ClaimSetId).Returns(testClaimSet.ClaimSetId); editResourceOnClaimSetModel.Setup(x => x.ResourceClaim).Returns(editedResource); Scoped <ISecurityContext>(securityContext => { var command = new EditResourceOnClaimSetCommand(securityContext); command.Execute(editResourceOnClaimSetModel.Object); }); var resourceClaimsForClaimSet = ResourceClaimsForClaimSet(testClaimSet.ClaimSetId); var parentResources = testResources.Where(x => x.ClaimSet.ClaimSetId == testClaimSet.ClaimSetId && x.ResourceClaim.ParentResourceClaim == null).Select(x => x.ResourceClaim).ToList(); resourceClaimsForClaimSet.Count.ShouldBe(parentResources.Count); var resultParentResourceClaim = resourceClaimsForClaimSet.Single(x => x.Id == testParentResource.ResourceClaim.ResourceClaimId); resultParentResourceClaim.Create.ShouldBe(true); resultParentResourceClaim.Read.ShouldBe(false); resultParentResourceClaim.Update.ShouldBe(false); resultParentResourceClaim.Delete.ShouldBe(false); var resultChildResourceClaim1 = resultParentResourceClaim.Children.Single(x => x.Id == editedResource.Id); resultChildResourceClaim1.Create.ShouldBe(editedResource.Create); resultChildResourceClaim1.Read.ShouldBe(editedResource.Read); resultChildResourceClaim1.Update.ShouldBe(editedResource.Update); resultChildResourceClaim1.Delete.ShouldBe(editedResource.Delete); var resultChildResourceClaim2 = resultParentResourceClaim.Children.Single(x => x.Id == testChildResource2NotToEdit.ResourceClaimId); resultChildResourceClaim2.Create.ShouldBe(true); resultChildResourceClaim2.Read.ShouldBe(false); resultChildResourceClaim2.Update.ShouldBe(false); resultChildResourceClaim2.Delete.ShouldBe(false); }