tsai
/
squidex
mirror of https://github.com/Squidex/squidex.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Headless CMS and Content Managment Hub
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
5468 Commits
10 Branches
150 Tags
122 MiB
 
 
 
 
 
Tree: 2121dbf546
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '2121dbf546'
${ noResults }
squidex/backend/tests/Squidex.Domain.Apps.Entitie.../Contents/DomainObject/ContentsBulkUpdateCommandMi...

581 lines
21 KiB
Raw Blame History

// ==========================================================================
// Squidex Headless CMS
// ==========================================================================
// Copyright (c) Squidex UG (haftungsbeschraenkt)
// All rights reserved. Licensed under the MIT license.
// ==========================================================================
using System.Security.Claims;
using FakeItEasy;
using Microsoft.Extensions.Logging;
using NodaTime;
using Squidex.Domain.Apps.Core.Contents;
using Squidex.Domain.Apps.Entities.Contents.Commands;
using Squidex.Domain.Apps.Entities.TestHelpers;
using Squidex.Infrastructure;
using Squidex.Infrastructure.Commands;
using Squidex.Infrastructure.Json.Objects;
using Squidex.Infrastructure.Queries;
using Squidex.Shared;
using Squidex.Shared.Identity;
using Xunit;
namespace Squidex.Domain.Apps.Entities.Contents.DomainObject
{
public class ContentsBulkUpdateCommandMiddlewareTests
{
private readonly CancellationTokenSource cts = new CancellationTokenSource();
private readonly CancellationToken ct;
private readonly IContentQueryService contentQuery = A.Fake<IContentQueryService>();
private readonly IContextProvider contextProvider = A.Fake<IContextProvider>();
private readonly ICommandBus commandBus = A.Dummy<ICommandBus>();
private readonly NamedId<DomainId> appId = NamedId.Of(DomainId.NewGuid(), "my-app");
private readonly NamedId<DomainId> schemaId = NamedId.Of(DomainId.NewGuid(), "my-schema");
private readonly NamedId<DomainId> schemaCustomId = NamedId.Of(DomainId.NewGuid(), "my-schema2");
private readonly Instant time = Instant.FromDateTimeUtc(DateTime.UtcNow);
private readonly ContentsBulkUpdateCommandMiddleware sut;
public ContentsBulkUpdateCommandMiddlewareTests()
{
ct = cts.Token;
var log = A.Fake<ILogger<ContentsBulkUpdateCommandMiddleware>>();
sut = new ContentsBulkUpdateCommandMiddleware(contentQuery, contextProvider, log);
}
[Fact]
public async Task Should_do_nothing_if_jobs_is_null()
{
var command = new BulkUpdateContents();
var actual = await PublishAsync(command);
Assert.Empty(actual);
}
[Fact]
public async Task Should_do_nothing_if_jobs_is_empty()
{
var command = new BulkUpdateContents { Jobs = Array.Empty<BulkUpdateJob>() };
var actual = await PublishAsync(command);
Assert.Empty(actual);
}
[Fact]
public async Task Should_throw_exception_if_content_cannot_be_resolved()
{
SetupContext(PermissionIds.AppContentsUpdateOwn);
CreateTestData(true);
var command = BulkCommand(BulkUpdateContentType.ChangeStatus);
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == null && x.Exception is DomainObjectNotFoundException);
A.CallTo(() => commandBus.PublishAsync(A<ICommand>._, A<CancellationToken>._))
.MustNotHaveHappened();
}
[Fact]
public async Task Should_throw_exception_if_query_resolves_multiple_contents()
{
var requestContext = SetupContext(PermissionIds.AppContentsUpdateOwn);
var (id, _, query) = CreateTestData(true);
A.CallTo(() => contentQuery.QueryAsync(
A<Context>.That.Matches(x =>
x.ShouldSkipCleanup() &&
x.ShouldSkipContentEnrichment() &&
x.ShouldSkipTotal()),
schemaId.Name, A<Q>.That.Matches(x => x.JsonQuery == query), ct))
.Returns(ResultList.CreateFrom(2, CreateContent(id), CreateContent(id)));
var command = BulkCommand(BulkUpdateContentType.ChangeStatus, new BulkUpdateJob { Query = query });
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == null && x.Exception is DomainException);
A.CallTo(() => commandBus.PublishAsync(A<ICommand>._, A<CancellationToken>._))
.MustNotHaveHappened();
}
[Fact]
public async Task Should_upsert_content_with_resolved_id()
{
var requestContext = SetupContext(PermissionIds.AppContentsUpsert);
var (id, data, query) = CreateTestData(true);
A.CallTo(() => contentQuery.QueryAsync(
A<Context>.That.Matches(x =>
x.ShouldSkipCleanup() &&
x.ShouldSkipContentEnrichment() &&
x.ShouldSkipTotal()),
schemaId.Name, A<Q>.That.Matches(x => x.JsonQuery == query), ct))
.Returns(ResultList.CreateFrom(1, CreateContent(id)));
var command = BulkCommand(BulkUpdateContentType.Upsert, new BulkUpdateJob { Query = query, Data = data });
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == id && x.Exception == null);
A.CallTo(() => commandBus.PublishAsync(
A<UpsertContent>.That.Matches(x => x.Data == data && x.ContentId == id), ct))
.MustHaveHappenedOnceExactly();
}
[Fact]
public async Task Should_upsert_content_with_resolved_ids()
{
var requestContext = SetupContext(PermissionIds.AppContentsUpsert);
var (_, data, query) = CreateTestData(true);
var id1 = DomainId.NewGuid();
var id2 = DomainId.NewGuid();
A.CallTo(() => contentQuery.QueryAsync(
A<Context>.That.Matches(x =>
x.ShouldSkipCleanup() &&
x.ShouldSkipContentEnrichment() &&
x.ShouldSkipTotal()),
schemaId.Name, A<Q>.That.Matches(x => x.JsonQuery == query), ct))
.Returns(ResultList.CreateFrom(2,
CreateContent(id1),
CreateContent(id2)));
var command = BulkCommand(BulkUpdateContentType.Upsert, new BulkUpdateJob { Query = query, Data = data });
command.Jobs![0].ExpectedCount = 2;
var actual = await PublishAsync(command);
Assert.Equal(2, actual.Count);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == id1 && x.Exception == null);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == id2 && x.Exception == null);
A.CallTo(() => commandBus.PublishAsync(
A<UpsertContent>.That.Matches(x => x.Data == data && x.ContentId == id1), ct))
.MustHaveHappenedOnceExactly();
A.CallTo(() => commandBus.PublishAsync(
A<UpsertContent>.That.Matches(x => x.Data == data && x.ContentId == id2), ct))
.MustHaveHappenedOnceExactly();
}
[Fact]
public async Task Should_upsert_content_with_random_id_if_no_query_and_id_defined()
{
SetupContext(PermissionIds.AppContentsUpsert);
var (_, data, _) = CreateTestData(false);
var command = BulkCommand(BulkUpdateContentType.Upsert, new BulkUpdateJob { Data = data });
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id != default && x.Exception == null);
A.CallTo(() => commandBus.PublishAsync(
A<UpsertContent>.That.Matches(x => x.Data == data && x.ContentId != default), ct))
.MustHaveHappenedOnceExactly();
}
[Fact]
public async Task Should_upsert_content_with_random_id_if_query_returns_no_actual()
{
SetupContext(PermissionIds.AppContentsUpsert);
var (_, data, query) = CreateTestData(true);
var command = BulkCommand(BulkUpdateContentType.Upsert, new BulkUpdateJob { Query = query, Data = data });
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id != default && x.Exception == null);
A.CallTo(() => commandBus.PublishAsync(
A<UpsertContent>.That.Matches(x => x.Data == data && x.ContentId != default), ct))
.MustHaveHappenedOnceExactly();
}
[Fact]
public async Task Should_upsert_content_if_id_defined()
{
SetupContext(PermissionIds.AppContentsUpsert);
var (id, data, _) = CreateTestData(false);
var command = BulkCommand(BulkUpdateContentType.Upsert, new BulkUpdateJob { Data = data }, id);
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id != default && x.Exception == null);
A.CallTo(() => commandBus.PublishAsync(
A<UpsertContent>.That.Matches(x => x.Data == data && x.ContentId == id), ct))
.MustHaveHappenedOnceExactly();
}
[Fact]
public async Task Should_upsert_content_with_custom_id()
{
SetupContext(PermissionIds.AppContentsUpsert);
var (id, data, _) = CreateTestData(true);
var command = BulkCommand(BulkUpdateContentType.Upsert, new BulkUpdateJob { Data = data }, id);
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id != default && x.Exception == null);
A.CallTo(() => commandBus.PublishAsync(
A<UpsertContent>.That.Matches(x => x.Data == data && x.ContentId == id), ct))
.MustHaveHappenedOnceExactly();
}
[Fact]
public async Task Should_create_content()
{
SetupContext(PermissionIds.AppContentsCreate);
var (id, data, _) = CreateTestData(false);
var command = BulkCommand(BulkUpdateContentType.Create, new BulkUpdateJob { Data = data }, id);
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == id && x.Exception == null);
A.CallTo(() => commandBus.PublishAsync(
A<CreateContent>.That.Matches(x => x.ContentId == id && x.Data == data), ct))
.MustHaveHappened();
}
[Fact]
public async Task Should_throw_security_exception_if_user_has_no_permission_for_creating()
{
SetupContext(PermissionIds.AppContentsReadOwn);
var (id, data, _) = CreateTestData(false);
var command = BulkCommand(BulkUpdateContentType.Create, new BulkUpdateJob { Data = data }, id);
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == id && x.Exception is DomainForbiddenException);
A.CallTo(() => commandBus.PublishAsync(A<ICommand>._, A<CancellationToken>._))
.MustNotHaveHappened();
}
[Fact]
public async Task Should_update_content()
{
SetupContext(PermissionIds.AppContentsUpdateOwn);
var (id, data, _) = CreateTestData(false);
var command = BulkCommand(BulkUpdateContentType.Update, new BulkUpdateJob { Data = data }, id);
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == id && x.Exception == null);
A.CallTo(() => commandBus.PublishAsync(
A<UpdateContent>.That.Matches(x => x.ContentId == id && x.Data == data), ct))
.MustHaveHappened();
}
[Fact]
public async Task Should_throw_security_exception_if_user_has_no_permission_for_updating()
{
SetupContext(PermissionIds.AppContentsReadOwn);
var (id, data, _) = CreateTestData(false);
var command = BulkCommand(BulkUpdateContentType.Update, new BulkUpdateJob { Data = data }, id);
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == id && x.Exception is DomainForbiddenException);
A.CallTo(() => commandBus.PublishAsync(A<ICommand>._, A<CancellationToken>._))
.MustNotHaveHappened();
}
[Fact]
public async Task Should_patch_content()
{
SetupContext(PermissionIds.AppContentsUpdateOwn);
var (id, data, _) = CreateTestData(false);
var command = BulkCommand(BulkUpdateContentType.Patch, new BulkUpdateJob { Data = data }, id);
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == id && x.Exception == null);
A.CallTo(() => commandBus.PublishAsync(
A<PatchContent>.That.Matches(x => x.ContentId == id && x.Data == data), ct))
.MustHaveHappened();
}
[Fact]
public async Task Should_throw_security_exception_if_user_has_no_permission_for_patching()
{
SetupContext(PermissionIds.AppContentsReadOwn);
var (id, data, _) = CreateTestData(false);
var command = BulkCommand(BulkUpdateContentType.Delete, new BulkUpdateJob { Data = data }, id);
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == id && x.Exception is DomainForbiddenException);
A.CallTo(() => commandBus.PublishAsync(A<ICommand>._, A<CancellationToken>._))
.MustNotHaveHappened();
}
[Fact]
public async Task Should_change_content_status()
{
SetupContext(PermissionIds.AppContentsChangeStatusOwn);
var (id, _, _) = CreateTestData(false);
var command = BulkCommand(BulkUpdateContentType.ChangeStatus, id: id);
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == id && x.Exception == null);
A.CallTo(() => commandBus.PublishAsync(
A<ChangeContentStatus>.That.Matches(x => x.ContentId == id && x.DueTime == null), ct))
.MustHaveHappened();
}
[Fact]
public async Task Should_change_content_status_with_due_time()
{
SetupContext(PermissionIds.AppContentsChangeStatusOwn);
var (id, _, _) = CreateTestData(false);
var command = BulkCommand(BulkUpdateContentType.ChangeStatus, new BulkUpdateJob { DueTime = time }, id);
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == id && x.Exception == null);
A.CallTo(() => commandBus.PublishAsync(
A<ChangeContentStatus>.That.Matches(x => x.ContentId == id && x.DueTime == time), ct))
.MustHaveHappened();
}
[Fact]
public async Task Should_throw_security_exception_if_user_has_no_permission_for_changing_status()
{
SetupContext(PermissionIds.AppContentsReadOwn);
var (id, _, _) = CreateTestData(false);
var command = BulkCommand(BulkUpdateContentType.ChangeStatus, id: id);
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == id && x.Exception is DomainForbiddenException);
A.CallTo(() => commandBus.PublishAsync(A<ICommand>._, A<CancellationToken>._))
.MustNotHaveHappened();
}
[Fact]
public async Task Should_validate_content()
{
SetupContext(PermissionIds.AppContentsReadOwn);
var (id, _, _) = CreateTestData(false);
var command = BulkCommand(BulkUpdateContentType.Validate, id: id);
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == id && x.Exception == null);
A.CallTo(() => commandBus.PublishAsync(
A<ValidateContent>.That.Matches(x => x.ContentId == id), ct))
.MustHaveHappened();
}
[Fact]
public async Task Should_throw_security_exception_if_user_has_no_permission_for_validation()
{
SetupContext(PermissionIds.AppContentsDeleteOwn);
var (id, _, _) = CreateTestData(false);
var command = BulkCommand(BulkUpdateContentType.Validate, id: id);
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == id && x.Exception is DomainForbiddenException);
A.CallTo(() => commandBus.PublishAsync(A<ICommand>._, A<CancellationToken>._))
.MustNotHaveHappened();
}
[Fact]
public async Task Should_delete_content()
{
SetupContext(PermissionIds.AppContentsDeleteOwn);
var (id, _, _) = CreateTestData(false);
var command = BulkCommand(BulkUpdateContentType.Delete, id: id);
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == id && x.Exception == null);
A.CallTo(() => commandBus.PublishAsync(
A<DeleteContent>.That.Matches(x => x.ContentId == id), ct))
.MustHaveHappened();
}
[Fact]
public async Task Should_throw_security_exception_if_user_has_no_permission_for_deletion()
{
SetupContext(PermissionIds.AppContentsReadOwn);
var (id, _, _) = CreateTestData(false);
var command = BulkCommand(BulkUpdateContentType.Delete, id: id);
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == id && x.Exception is DomainForbiddenException);
A.CallTo(() => commandBus.PublishAsync(A<ICommand>._, A<CancellationToken>._))
.MustNotHaveHappened();
}
[Fact]
public async Task Should_override_schema_name()
{
SetupContext(PermissionIds.AppContentsDeleteOwn);
A.CallTo(() => contentQuery.GetSchemaOrThrowAsync(A<Context>._, schemaCustomId.Name, ct))
.Returns(Mocks.Schema(appId, schemaCustomId));
var (id, _, _) = CreateTestData(false);
var command = BulkCommand(BulkUpdateContentType.Delete, new BulkUpdateJob { Schema = schemaCustomId.Name }, id);
var actual = await PublishAsync(command);
Assert.Single(actual);
Assert.Single(actual, x => x.JobIndex == 0 && x.Id == id && x.Exception == null);
A.CallTo(() => commandBus.PublishAsync(
A<DeleteContent>.That.Matches(x => x.SchemaId == schemaCustomId), ct))
.MustHaveHappened();
}
private async Task<BulkUpdateResult> PublishAsync(ICommand command)
{
var context = new CommandContext(command, commandBus);
await sut.HandleAsync(context, ct);
return (context.PlainResult as BulkUpdateResult)!;
}
private BulkUpdateContents BulkCommand(BulkUpdateContentType type, BulkUpdateJob? job = null, DomainId? id = null)
{
job ??= new BulkUpdateJob();
job.Id = id;
job.Type = type;
return new BulkUpdateContents
{
AppId = appId,
Jobs = new[]
{
job
},
SchemaId = schemaId
};
}
private Context SetupContext(string id)
{
var claimsIdentity = new ClaimsIdentity();
var claimsPrincipal = new ClaimsPrincipal(claimsIdentity);
claimsIdentity.AddClaim(
new Claim(SquidexClaimTypes.Permissions,
PermissionIds.ForApp(id, appId.Name, schemaId.Name).Id));
claimsIdentity.AddClaim(
new Claim(SquidexClaimTypes.Permissions,
PermissionIds.ForApp(id, appId.Name, schemaCustomId.Name).Id));
var requestContext = new Context(claimsPrincipal, Mocks.App(appId));
A.CallTo(() => contextProvider.Context)
.Returns(requestContext);
return requestContext;
}
private static (DomainId Id, ContentData Data, Query<JsonValue>? Query) CreateTestData(bool withQuery)
{
Query<JsonValue>? query = withQuery ? new Query<JsonValue>() : null;
var data =
new ContentData()
.AddField("value",
new ContentFieldData()
.AddInvariant(1));
return (DomainId.NewGuid(), data, query);
}
private static IEnrichedContentEntity CreateContent(DomainId id)
{
return new ContentEntity { Id = id };
}
}
}