public async Task OrganisationByIdHandler_NotInternalUser_ThrowsSecurityException()
{
var authorization = AuthorizationBuilder.CreateFromUserType(AuthorizationBuilder.UserType.External);
var handler = new OrganisationInternalByIdHandler(authorization, context, map);
var message = new GetInternalOrganisation(Guid.NewGuid());
await Assert.ThrowsAsync <SecurityException>(async() => await handler.HandleAsync(message));
}
public async Task OrganisationByIdHandler_ReturnsFalseForCanEditOrganisation_WhenCurrentUserIsNotInternalAdmin()
{
var weeeAuthorization = new AuthorizationBuilder()
.AllowInternalAreaAccess()
.DenyRole(Roles.InternalAdmin)
.Build();
var handler = new OrganisationInternalByIdHandler(weeeAuthorization, context, map);
var message = new GetInternalOrganisation(organisationId);
var result = await handler.HandleAsync(message);
result.CanEditOrganisation.Should().BeFalse();
}
public OrganisationInternalByIdHandlerTests()
{
map = A.Fake <IMap <Organisation, OrganisationData> >();
context = A.Fake <WeeeContext>();
organisationId = Guid.NewGuid();
A.CallTo(() => context.Organisations).Returns(dbHelper.GetAsyncEnabledDbSet(new List <Organisation>
{
GetOrganisationWithId(organisationId)
}));
handler = new OrganisationInternalByIdHandler(AuthorizationBuilder.CreateUserWithAllRights(),
context,
map);
}
