2020-12-06 09:13:29 +01:00
|
|
|
// Copyright (c) Umbraco.
|
|
|
|
|
// See LICENSE for more details.
|
|
|
|
|
|
2020-12-03 12:22:31 +01:00
|
|
|
using System.Collections.Generic;
|
2020-12-02 17:21:32 +01:00
|
|
|
using System.Security.Claims;
|
|
|
|
|
using System.Threading.Tasks;
|
|
|
|
|
using Microsoft.AspNetCore.Authorization;
|
|
|
|
|
using Moq;
|
|
|
|
|
using NUnit.Framework;
|
2021-02-18 11:06:02 +01:00
|
|
|
using Umbraco.Cms.Core;
|
|
|
|
|
using Umbraco.Cms.Core.Security;
|
|
|
|
|
using Umbraco.Cms.Core.Services;
|
|
|
|
|
using Umbraco.Cms.Tests.Common.Builders;
|
|
|
|
|
using Umbraco.Cms.Tests.Common.Builders.Extensions;
|
|
|
|
|
using Umbraco.Cms.Web.BackOffice.Authorization;
|
|
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
namespace Umbraco.Cms.Tests.UnitTests.Umbraco.Web.BackOffice.Authorization;
|
|
|
|
|
|
|
|
|
|
public class BackOfficeHandlerTests
|
2020-12-02 17:21:32 +01:00
|
|
|
{
|
2022-06-21 08:09:38 +02:00
|
|
|
[Test]
|
|
|
|
|
public async Task Runtime_State_Install_Is_Authorized()
|
2020-12-02 17:21:32 +01:00
|
|
|
{
|
2022-06-21 08:09:38 +02:00
|
|
|
var authHandlerContext = CreateAuthorizationHandlerContext();
|
|
|
|
|
var sut = CreateHandler(RuntimeLevel.Install);
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
await sut.HandleAsync(authHandlerContext);
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
Assert.IsTrue(authHandlerContext.HasSucceeded);
|
|
|
|
|
}
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
[Test]
|
|
|
|
|
public async Task Runtime_State_Upgrade_Is_Authorized()
|
|
|
|
|
{
|
|
|
|
|
var authHandlerContext = CreateAuthorizationHandlerContext();
|
|
|
|
|
var sut = CreateHandler(RuntimeLevel.Upgrade);
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
await sut.HandleAsync(authHandlerContext);
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
Assert.IsTrue(authHandlerContext.HasSucceeded);
|
|
|
|
|
}
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
[Test]
|
|
|
|
|
public async Task Unauthenticated_User_Is_Not_Authorized()
|
|
|
|
|
{
|
|
|
|
|
var authHandlerContext = CreateAuthorizationHandlerContext();
|
|
|
|
|
var sut = CreateHandler();
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
await sut.HandleAsync(authHandlerContext);
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
Assert.IsFalse(authHandlerContext.HasSucceeded);
|
|
|
|
|
}
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
[Test]
|
|
|
|
|
public async Task Authenticated_User_Is_Not_Authorized_When_Not_Approved_And_Approval_Required()
|
|
|
|
|
{
|
|
|
|
|
var authHandlerContext = CreateAuthorizationHandlerContext(true);
|
|
|
|
|
var sut = CreateHandler(currentUserIsAuthenticated: true);
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
await sut.HandleAsync(authHandlerContext);
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
Assert.IsFalse(authHandlerContext.HasSucceeded);
|
|
|
|
|
}
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
[Test]
|
|
|
|
|
public async Task Authenticated_User_Is_Authorized_When_Not_Approved_And_Approval_Not_Required()
|
|
|
|
|
{
|
|
|
|
|
var authHandlerContext = CreateAuthorizationHandlerContext();
|
|
|
|
|
var sut = CreateHandler(currentUserIsAuthenticated: true);
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
await sut.HandleAsync(authHandlerContext);
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
Assert.IsTrue(authHandlerContext.HasSucceeded);
|
|
|
|
|
}
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
[Test]
|
|
|
|
|
public async Task Authenticated_User_Is_Authorized_When_Approved_And_Approval_Required()
|
|
|
|
|
{
|
|
|
|
|
var authHandlerContext = CreateAuthorizationHandlerContext(true);
|
|
|
|
|
var sut = CreateHandler(currentUserIsAuthenticated: true, currentUserIsApproved: true);
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
await sut.HandleAsync(authHandlerContext);
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
Assert.IsTrue(authHandlerContext.HasSucceeded);
|
|
|
|
|
}
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
private static AuthorizationHandlerContext CreateAuthorizationHandlerContext(bool requireApproval = false)
|
|
|
|
|
{
|
|
|
|
|
var requirement = new BackOfficeRequirement(requireApproval);
|
|
|
|
|
var user = new ClaimsPrincipal(new ClaimsIdentity(new List<Claim>()));
|
|
|
|
|
var resource = new object();
|
|
|
|
|
return new AuthorizationHandlerContext(new List<IAuthorizationRequirement> { requirement }, user, resource);
|
|
|
|
|
}
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
private BackOfficeHandler CreateHandler(
|
|
|
|
|
RuntimeLevel runtimeLevel = RuntimeLevel.Run,
|
|
|
|
|
bool currentUserIsAuthenticated = false,
|
|
|
|
|
bool currentUserIsApproved = false)
|
|
|
|
|
{
|
|
|
|
|
var mockBackOfficeSecurityAccessor =
|
|
|
|
|
CreateMockBackOfficeSecurityAccessor(currentUserIsAuthenticated, currentUserIsApproved);
|
|
|
|
|
var mockRuntimeState = CreateMockRuntimeState(runtimeLevel);
|
|
|
|
|
return new BackOfficeHandler(mockBackOfficeSecurityAccessor.Object, mockRuntimeState.Object);
|
|
|
|
|
}
|
2020-12-02 17:21:32 +01:00
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
private static Mock<IBackOfficeSecurityAccessor> CreateMockBackOfficeSecurityAccessor(
|
|
|
|
|
bool currentUserIsAuthenticated, bool currentUserIsApproved)
|
|
|
|
|
{
|
|
|
|
|
var user = new UserBuilder()
|
|
|
|
|
.WithIsApproved(currentUserIsApproved)
|
|
|
|
|
.Build();
|
|
|
|
|
var mockBackOfficeSecurity = new Mock<IBackOfficeSecurity>();
|
|
|
|
|
mockBackOfficeSecurity.Setup(x => x.IsAuthenticated()).Returns(currentUserIsAuthenticated);
|
|
|
|
|
if (currentUserIsAuthenticated)
|
2020-12-02 17:21:32 +01:00
|
|
|
{
|
2022-06-21 08:09:38 +02:00
|
|
|
mockBackOfficeSecurity.Setup(x => x.CurrentUser).Returns(user);
|
2020-12-02 17:21:32 +01:00
|
|
|
}
|
|
|
|
|
|
2022-06-21 08:09:38 +02:00
|
|
|
var mockBackOfficeSecurityAccessor = new Mock<IBackOfficeSecurityAccessor>();
|
|
|
|
|
mockBackOfficeSecurityAccessor.Setup(x => x.BackOfficeSecurity).Returns(mockBackOfficeSecurity.Object);
|
|
|
|
|
return mockBackOfficeSecurityAccessor;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private static Mock<IRuntimeState> CreateMockRuntimeState(RuntimeLevel runtimeLevel)
|
|
|
|
|
{
|
|
|
|
|
var mockRuntimeState = new Mock<IRuntimeState>();
|
|
|
|
|
mockRuntimeState.SetupGet(x => x.Level).Returns(runtimeLevel);
|
|
|
|
|
return mockRuntimeState;
|
2020-12-02 17:21:32 +01:00
|
|
|
}
|
|
|
|
|
}
|
