public ActionResult LogOn(LogOnModel model, string returnUrl) { if (ModelState.IsValid) { if (_membershipService.ValidateUser(model.UserName, model.Password)) { _formsService.SignIn(model.UserName, model.RememberMe); for (int i = 0; i < 5; i++) { User u = new User(); u.Username = model.UserName + " " + i.ToString(); u.DateLastLogin = DateTime.UtcNow; u.DateCreated = DateTime.UtcNow; u.Roles = new List<string>(); UserLoginEvent loginEvent = new UserLoginEvent(); loginEvent.CreationDate = DateTime.Now; loginEvent.User = u; BaseController.ServiceBus.PublishAsync<UserLoginEvent>(loginEvent, (result) => { }); } if (Url.IsLocalUrl(returnUrl)) { return Redirect(returnUrl); } else { return RedirectToAction("Index", "Home"); } } else { ModelState.AddModelError("", "The user name or password provided is incorrect."); } } // If we got this far, something failed, redisplay form return View(model); }
public void LogOn_Post_ReturnsViewIfValidateUserFails() { // Arrange AccountController controller = GetAccountController(); LogOnModel model = new LogOnModel() { UserName = "******", Password = "******", RememberMe = false }; // Act ActionResult result = controller.LogOn(model, null); // Assert Assert.IsInstanceOfType(result, typeof(ViewResult)); ViewResult viewResult = (ViewResult)result; Assert.AreEqual(model, viewResult.ViewData.Model); Assert.AreEqual("The user name or password provided is incorrect.", controller.ModelState[""].Errors[0].ErrorMessage); }
public void LogOn_Post_ReturnsRedirectToHomeOnSuccess_WithExternalReturnUrl() { // Arrange var mockFormsAuthenticationService = new MockFormsAuthenticationService(); var mockMembershipService = new MockMembershipService(); AccountController controller = GetAccountController(mockFormsAuthenticationService, mockMembershipService); LogOnModel model = new LogOnModel() { UserName = "******", Password = "******", RememberMe = false }; // Act ActionResult result = controller.LogOn(model, "http://malicious.example.net"); // Assert Assert.IsInstanceOfType(result, typeof(RedirectToRouteResult)); RedirectToRouteResult redirectResult = (RedirectToRouteResult)result; Assert.AreEqual("Home", redirectResult.RouteValues["controller"]); Assert.AreEqual("Index", redirectResult.RouteValues["action"]); Assert.IsTrue(mockFormsAuthenticationService.SignIn_WasCalled); }
public void LogOn_Post_ReturnsViewIfModelStateIsInvalid() { // Arrange AccountController controller = GetAccountController(); LogOnModel model = new LogOnModel() { UserName = "******", Password = "******", RememberMe = false }; controller.ModelState.AddModelError("", "Dummy error message."); // Act ActionResult result = controller.LogOn(model, null); // Assert Assert.IsInstanceOfType(result, typeof(ViewResult)); ViewResult viewResult = (ViewResult)result; Assert.AreEqual(model, viewResult.ViewData.Model); }
public void LogOn_Post_ReturnsRedirectOnSuccess_WithLocalReturnUrl() { // Arrange var mockFormsAuthenticationService = new MockFormsAuthenticationService(); var mockMembershipService = new MockMembershipService(); AccountController controller = GetAccountController(mockFormsAuthenticationService, mockMembershipService); LogOnModel model = new LogOnModel() { UserName = "******", Password = "******", RememberMe = false }; // Act ActionResult result = controller.LogOn(model, "/someUrl"); // Assert Assert.IsInstanceOfType(result, typeof(RedirectResult)); RedirectResult redirectResult = (RedirectResult)result; Assert.AreEqual("/someUrl", redirectResult.Url); Assert.IsTrue(mockFormsAuthenticationService.SignIn_WasCalled); }