tsai
/
squidex
mirror of https://github.com/Squidex/squidex.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Headless CMS and Content Managment Hub
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1609 Commits
10 Branches
150 Tags
122 MiB
 
 
 
 
 
Tree: 1823a1cb03
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1823a1cb03'
${ noResults }
squidex/tests/Squidex.Tests/Pipeline/CommandMiddlewares/EnrichWithActorCommandMiddl...

85 lines
3.1 KiB
Raw Blame History

// ==========================================================================
// Squidex Headless CMS
// ==========================================================================
// Copyright (c) Squidex UG (haftungsbeschränkt)
// All rights reserved. Licensed under the MIT license.
// ==========================================================================
using System;
using System.Security;
using System.Security.Claims;
using System.Threading.Tasks;
using FakeItEasy;
using Microsoft.AspNetCore.Http;
using Squidex.Domain.Apps.Entities.Contents.Commands;
using Squidex.Infrastructure.Commands;
using Squidex.Infrastructure.Security;
using Squidex.Pipeline.CommandMiddlewares;
using Xunit;
namespace Squidex.Tests.Pipeline.CommandMiddlewares
{
public class EnrichWithActorCommandMiddlewareTests
{
private readonly IHttpContextAccessor httpContextAccessor = A.Fake<IHttpContextAccessor>();
private readonly ICommandBus commandBus = A.Fake<ICommandBus>();
private readonly CreateContent command = new CreateContent { Actor = null };
[Fact]
public async Task HandleAsync_should_throw_security_exception()
{
var context = new CommandContext(command, commandBus);
var sut = SetupSystem(null, out string claimValue);
await Assert.ThrowsAsync<SecurityException>(() =>
{
return sut.HandleAsync(context);
});
}
[Fact]
public async Task HandleAsync_should_find_actor_from_subject()
{
var context = new CommandContext(command, commandBus);
var sut = SetupSystem("subject", out string claimValue);
await sut.HandleAsync(context);
Assert.Equal(claimValue, command.Actor.Identifier);
}
[Fact]
public async Task HandleAsync_should_find_actor_from_client()
{
var context = new CommandContext(command, commandBus);
var sut = SetupSystem("client", out string claimValue);
await sut.HandleAsync(context);
Assert.Equal(claimValue, command.Actor.Identifier);
}
private EnrichWithActorCommandMiddleware SetupSystem(string refTokenType, out string claimValue)
{
Claim actorClaim;
claimValue = Guid.NewGuid().ToString();
var user = new ClaimsPrincipal();
var claimsIdentity = new ClaimsIdentity();
switch (refTokenType)
{
case "subject":
actorClaim = new Claim(OpenIdClaims.Subject, claimValue);
claimsIdentity.AddClaim(actorClaim);
break;
case "client":
actorClaim = new Claim(OpenIdClaims.ClientId, claimValue);
claimsIdentity.AddClaim(actorClaim);
break;
}
user.AddIdentity(claimsIdentity);
A.CallTo(() => httpContextAccessor.HttpContext.User).Returns(user);
return new EnrichWithActorCommandMiddleware(httpContextAccessor);
}
}
}