tsai
/
squidex
mirror of https://github.com/Squidex/squidex.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Headless CMS and Content Managment Hub
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4735 Commits
10 Branches
150 Tags
122 MiB
 
 
 
 
 
Tree: 5517fea29c
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5517fea29c'
${ noResults }
squidex/backend/tests/Squidex.Web.Tests/Pipeline/ApiPermissionUnifierTests.cs

61 lines
2.1 KiB
Raw Blame History

// ==========================================================================
// Squidex Headless CMS
// ==========================================================================
// Copyright (c) Squidex UG (haftungsbeschraenkt)
// All rights reserved. Licensed under the MIT license.
// ==========================================================================
using System.Linq;
using System.Security.Claims;
using System.Threading.Tasks;
using Squidex.Shared;
using Squidex.Shared.Identity;
using Xunit;
namespace Squidex.Web.Pipeline
{
public class ApiPermissionUnifierTests
{
private readonly ApiPermissionUnifier sut = new ApiPermissionUnifier();
[Theory]
[InlineData("administrator")]
[InlineData("ADMINISTRATOR")]
public async Task Should_add_admin_permission_if_user_is_in_role(string role)
{
var userIdentity = new ClaimsIdentity();
var userPrinicpal = new ClaimsPrincipal(userIdentity);
userIdentity.AddClaim(new Claim(userIdentity.RoleClaimType, role));
var result = await sut.TransformAsync(userPrinicpal);
Assert.Equal(Permissions.Admin, result.Claims.FirstOrDefault(x => x.Type == SquidexClaimTypes.Permissions)?.Value);
Assert.Equal(role, result.Claims.FirstOrDefault(x => x.Type == userIdentity.RoleClaimType)?.Value);
}
[Fact]
public async Task Should_not_add_admin_persmission_if_user_has_other_role()
{
var userIdentity = new ClaimsIdentity();
var userPrinicpal = new ClaimsPrincipal(userIdentity);
userIdentity.AddClaim(new Claim(userIdentity.RoleClaimType, "Developer"));
var result = await sut.TransformAsync(userPrinicpal);
Assert.Single(result.Claims);
}
[Fact]
public async Task Should_not_add_admin_persmission_if_user_has_no_role()
{
var userIdentity = new ClaimsIdentity();
var userPrinicpal = new ClaimsPrincipal(userIdentity);
var result = await sut.TransformAsync(userPrinicpal);
Assert.Empty(result.Claims);
}
}
}