public void CheckRefreshTokenValidity_RefreshTokenExpired_ThrowUnauthorizedException() { var now = DateTime.UtcNow; _dateTime.Setup(x => x.UtcNow).Returns(now); var user = new User("email", "organizationId"); var expiredRefreshToken = new RefreshToken(user, now.AddDays(-1)); Assert.That(() => _sut.CheckRefreshTokenValidity(expiredRefreshToken), Throws.Exception.TypeOf <UnauthorizedException>()); }