tests/Umbraco.Tests.UnitTests/Umbraco.Web.BackOffice/Authorization/TreeHandlerTests.cs

// Copyright (c) Umbraco.
// See LICENSE for more details.

using System.Collections.Generic;
using System.Security.Claims;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Authorization;
using Moq;
using NUnit.Framework;
using Umbraco.Cms.Core;
using Umbraco.Cms.Core.Models.Membership;
using Umbraco.Cms.Core.Security;
using Umbraco.Cms.Core.Services;
using Umbraco.Cms.Core.Trees;
using Umbraco.Cms.Tests.Common.Builders;
using Umbraco.Cms.Tests.Common.Builders.Extensions;
using Umbraco.Cms.Web.BackOffice.Authorization;

namespace Umbraco.Cms.Tests.UnitTests.Umbraco.Web.BackOffice.Authorization;

public class TreeHandlerTests
{
    private const string Tree1Alias = "Tree1";
    private const string Tree2Alias = "Tree2";

    [Test]
    public async Task Unauthorized_User_Is_Not_Authorized()
    {
        var authHandlerContext = CreateAuthorizationHandlerContext();
        var sut = CreateHandler();

        await sut.HandleAsync(authHandlerContext);

        Assert.IsFalse(authHandlerContext.HasSucceeded);
    }

    [Test]
    public async Task User_With_Access_To_Tree_Section_Is_Authorized()
    {
        var authHandlerContext = CreateAuthorizationHandlerContext();
        var sut = CreateHandler(true, true);

        await sut.HandleAsync(authHandlerContext);

        Assert.IsTrue(authHandlerContext.HasSucceeded);
    }

    [Test]
    public async Task User_Without_Access_To_Tree_Section_Is_Not_Authorized()
    {
        var authHandlerContext = CreateAuthorizationHandlerContext();
        var sut = CreateHandler(true);

        await sut.HandleAsync(authHandlerContext);

        Assert.IsFalse(authHandlerContext.HasSucceeded);
    }

    private static AuthorizationHandlerContext CreateAuthorizationHandlerContext()
    {
        var requirement = new TreeRequirement(Tree1Alias, Tree2Alias);
        var user = new ClaimsPrincipal(new ClaimsIdentity(new List<Claim>()));
        var resource = new object();
        return new AuthorizationHandlerContext(new List<IAuthorizationRequirement> { requirement }, user, resource);
    }

    private TreeHandler CreateHandler(bool userIsAuthorized = false, bool userCanAccessContentSection = false)
    {
        var mockTreeService = CreateMockTreeService();
        var mockBackOfficeSecurityAccessor =
            CreateMockBackOfficeSecurityAccessor(userIsAuthorized, userCanAccessContentSection);

        return new TreeHandler(mockTreeService.Object, mockBackOfficeSecurityAccessor.Object);
    }

    private static Mock<ITreeService> CreateMockTreeService()
    {
        var mockTreeService = new Mock<ITreeService>();
        mockTreeService
            .Setup(x => x.GetByAlias(It.Is<string>(y => y == Tree1Alias)))
            .Returns(CreateTree(Tree1Alias, Constants.Applications.Content));
        mockTreeService
            .Setup(x => x.GetByAlias(It.Is<string>(y => y == Tree2Alias)))
            .Returns(CreateTree(Tree2Alias, Constants.Applications.Media));
        return mockTreeService;
    }

    private static Tree CreateTree(string alias, string sectionAlias) =>
        new TreeBuilder()
            .WithAlias(alias)
            .WithSectionAlias(sectionAlias)
            .Build();

    private static Mock<IBackOfficeSecurityAccessor> CreateMockBackOfficeSecurityAccessor(
        bool userIsAuthorized,
        bool userCanAccessContentSection)
    {
        var user = CreateUser();
        var mockBackOfficeSecurity = new Mock<IBackOfficeSecurity>();
        mockBackOfficeSecurity.SetupGet(x => x.CurrentUser).Returns(userIsAuthorized ? user : null);
        mockBackOfficeSecurity
            .Setup(x => x.UserHasSectionAccess(
                Constants.Applications.Content,
                It.Is<IUser>(y => y.Username == user.Username)))
            .Returns(userCanAccessContentSection);
        mockBackOfficeSecurity
            .Setup(x => x.UserHasSectionAccess(
                Constants.Applications.Media,
                It.Is<IUser>(y => y.Username == user.Username)))
            .Returns(false);
        var mockBackOfficeSecurityAccessor = new Mock<IBackOfficeSecurityAccessor>();
        mockBackOfficeSecurityAccessor.Setup(x => x.BackOfficeSecurity).Returns(mockBackOfficeSecurity.Object);
        return mockBackOfficeSecurityAccessor;
    }

    private static User CreateUser() => new UserBuilder()
        .Build();
}
Adhered to linting rules for authorization policy handlers, requirements and tests. 2020-12-06 09:13:29 +01:00			`// Copyright (c) Umbraco.`
			`// See LICENSE for more details.`

			`using System.Collections.Generic;`
Added tests for TreeHandler. 2020-12-02 19:50:56 +01:00			`using System.Security.Claims;`
			`using System.Threading.Tasks;`
			`using Microsoft.AspNetCore.Authorization;`
			`using Moq;`
			`using NUnit.Framework;`
V10: fix build warnings in test projects (#12509) * Run code cleanup * Dotnet format benchmarks project * Fix up Test.Common * Run dotnet format + manual cleanup * Run code cleanup for unit tests * Run dotnet format * Fix up errors * Manual cleanup of Unit test project * Update tests/Umbraco.Tests.Benchmarks/HexStringBenchmarks.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Integration/Testing/TestDbMeta.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Benchmarks/TypeFinderBenchmarks.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Integration/Testing/UmbracoIntegrationTest.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Integration/Umbraco.Core/Events/EventAggregatorTests.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Fix according to review * Fix after merge * Fix errors Co-authored-by: Nikolaj Geisle <niko737@edu.ucl.dk> Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> Co-authored-by: Zeegaan <nge@umbraco.dk> 2022-06-21 08:09:38 +02:00			`using Umbraco.Cms.Core;`
Netcore: Align namespaces (#9801) * Rename Umbraco.Core namespace to Umbraco.Cms.Core * Move extension methods in core project to Umbraco.Extensions * Move extension methods in core project to Umbraco.Extensions * Rename Umbraco.Examine namespace to Umbraco.Cms.Examine * Move examine extensions to Umbraco.Extensions namespace * Reflect changed namespaces in Builder and fix unit tests * Adjust namespace in Umbraco.ModelsBuilder.Embedded * Adjust namespace in Umbraco.Persistence.SqlCe * Adjust namespace in Umbraco.PublishedCache.NuCache * Align namespaces in Umbraco.Web.BackOffice * Align namespaces in Umbraco.Web.Common * Ensure that SqlCeSupport is still enabled after changing the namespace * Align namespaces in Umbraco.Web.Website * Align namespaces in Umbraco.Web.UI.NetCore * Align namespaces in Umbraco.Tests.Common * Align namespaces in Umbraco.Tests.UnitTests * Align namespaces in Umbraco.Tests.Integration * Fix errors caused by changed namespaces * Fix integration tests * Undo the Umbraco.Examine.Lucene namespace change This breaks integration tests on linux, since the namespace wont exists there because it's only used on windows. * Fix merge * Fix Merge 2021-02-18 11:06:02 +01:00			`using Umbraco.Cms.Core.Models.Membership;`
			`using Umbraco.Cms.Core.Security;`
			`using Umbraco.Cms.Core.Services;`
			`using Umbraco.Cms.Core.Trees;`
			`using Umbraco.Cms.Tests.Common.Builders;`
			`using Umbraco.Cms.Tests.Common.Builders.Extensions;`
			`using Umbraco.Cms.Web.BackOffice.Authorization;`
Added tests for TreeHandler. 2020-12-02 19:50:56 +01:00
V10: fix build warnings in test projects (#12509) * Run code cleanup * Dotnet format benchmarks project * Fix up Test.Common * Run dotnet format + manual cleanup * Run code cleanup for unit tests * Run dotnet format * Fix up errors * Manual cleanup of Unit test project * Update tests/Umbraco.Tests.Benchmarks/HexStringBenchmarks.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Integration/Testing/TestDbMeta.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Benchmarks/TypeFinderBenchmarks.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Integration/Testing/UmbracoIntegrationTest.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Integration/Umbraco.Core/Events/EventAggregatorTests.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Fix according to review * Fix after merge * Fix errors Co-authored-by: Nikolaj Geisle <niko737@edu.ucl.dk> Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> Co-authored-by: Zeegaan <nge@umbraco.dk> 2022-06-21 08:09:38 +02:00			`namespace Umbraco.Cms.Tests.UnitTests.Umbraco.Web.BackOffice.Authorization;`

			`public class TreeHandlerTests`
Added tests for TreeHandler. 2020-12-02 19:50:56 +01:00			`{`
V10: fix build warnings in test projects (#12509) * Run code cleanup * Dotnet format benchmarks project * Fix up Test.Common * Run dotnet format + manual cleanup * Run code cleanup for unit tests * Run dotnet format * Fix up errors * Manual cleanup of Unit test project * Update tests/Umbraco.Tests.Benchmarks/HexStringBenchmarks.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Integration/Testing/TestDbMeta.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Benchmarks/TypeFinderBenchmarks.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Integration/Testing/UmbracoIntegrationTest.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Integration/Umbraco.Core/Events/EventAggregatorTests.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Fix according to review * Fix after merge * Fix errors Co-authored-by: Nikolaj Geisle <niko737@edu.ucl.dk> Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> Co-authored-by: Zeegaan <nge@umbraco.dk> 2022-06-21 08:09:38 +02:00			`private const string Tree1Alias = "Tree1";`
			`private const string Tree2Alias = "Tree2";`

			`[Test]`
			`public async Task Unauthorized_User_Is_Not_Authorized()`
Added tests for TreeHandler. 2020-12-02 19:50:56 +01:00			`{`
V10: fix build warnings in test projects (#12509) * Run code cleanup * Dotnet format benchmarks project * Fix up Test.Common * Run dotnet format + manual cleanup * Run code cleanup for unit tests * Run dotnet format * Fix up errors * Manual cleanup of Unit test project * Update tests/Umbraco.Tests.Benchmarks/HexStringBenchmarks.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Integration/Testing/TestDbMeta.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Benchmarks/TypeFinderBenchmarks.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Integration/Testing/UmbracoIntegrationTest.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Integration/Umbraco.Core/Events/EventAggregatorTests.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Fix according to review * Fix after merge * Fix errors Co-authored-by: Nikolaj Geisle <niko737@edu.ucl.dk> Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> Co-authored-by: Zeegaan <nge@umbraco.dk> 2022-06-21 08:09:38 +02:00			`var authHandlerContext = CreateAuthorizationHandlerContext();`
			`var sut = CreateHandler();`

			`await sut.HandleAsync(authHandlerContext);`

			`Assert.IsFalse(authHandlerContext.HasSucceeded);`
Added tests for TreeHandler. 2020-12-02 19:50:56 +01:00			`}`
V10: fix build warnings in test projects (#12509) * Run code cleanup * Dotnet format benchmarks project * Fix up Test.Common * Run dotnet format + manual cleanup * Run code cleanup for unit tests * Run dotnet format * Fix up errors * Manual cleanup of Unit test project * Update tests/Umbraco.Tests.Benchmarks/HexStringBenchmarks.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Integration/Testing/TestDbMeta.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Benchmarks/TypeFinderBenchmarks.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Integration/Testing/UmbracoIntegrationTest.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update tests/Umbraco.Tests.Integration/Umbraco.Core/Events/EventAggregatorTests.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Fix according to review * Fix after merge * Fix errors Co-authored-by: Nikolaj Geisle <niko737@edu.ucl.dk> Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> Co-authored-by: Zeegaan <nge@umbraco.dk> 2022-06-21 08:09:38 +02:00
			`[Test]`
			`public async Task User_With_Access_To_Tree_Section_Is_Authorized()`
			`{`
			`var authHandlerContext = CreateAuthorizationHandlerContext();`
			`var sut = CreateHandler(true, true);`

			`await sut.HandleAsync(authHandlerContext);`

			`Assert.IsTrue(authHandlerContext.HasSucceeded);`
			`}`

			`[Test]`
			`public async Task User_Without_Access_To_Tree_Section_Is_Not_Authorized()`
			`{`
			`var authHandlerContext = CreateAuthorizationHandlerContext();`
			`var sut = CreateHandler(true);`

			`await sut.HandleAsync(authHandlerContext);`

			`Assert.IsFalse(authHandlerContext.HasSucceeded);`
			`}`

			`private static AuthorizationHandlerContext CreateAuthorizationHandlerContext()`
			`{`
			`var requirement = new TreeRequirement(Tree1Alias, Tree2Alias);`
			`var user = new ClaimsPrincipal(new ClaimsIdentity(new List<Claim>()));`
			`var resource = new object();`
			`return new AuthorizationHandlerContext(new List<IAuthorizationRequirement> { requirement }, user, resource);`
			`}`

			`private TreeHandler CreateHandler(bool userIsAuthorized = false, bool userCanAccessContentSection = false)`
			`{`
			`var mockTreeService = CreateMockTreeService();`
			`var mockBackOfficeSecurityAccessor =`
			`CreateMockBackOfficeSecurityAccessor(userIsAuthorized, userCanAccessContentSection);`

			`return new TreeHandler(mockTreeService.Object, mockBackOfficeSecurityAccessor.Object);`
			`}`

			`private static Mock<ITreeService> CreateMockTreeService()`
			`{`
			`var mockTreeService = new Mock<ITreeService>();`
			`mockTreeService`
			`.Setup(x => x.GetByAlias(It.Is<string>(y => y == Tree1Alias)))`
			`.Returns(CreateTree(Tree1Alias, Constants.Applications.Content));`
			`mockTreeService`
			`.Setup(x => x.GetByAlias(It.Is<string>(y => y == Tree2Alias)))`
			`.Returns(CreateTree(Tree2Alias, Constants.Applications.Media));`
			`return mockTreeService;`
			`}`

			`private static Tree CreateTree(string alias, string sectionAlias) =>`
			`new TreeBuilder()`
			`.WithAlias(alias)`
			`.WithSectionAlias(sectionAlias)`
			`.Build();`

			`private static Mock<IBackOfficeSecurityAccessor> CreateMockBackOfficeSecurityAccessor(`
			`bool userIsAuthorized,`
			`bool userCanAccessContentSection)`
			`{`
			`var user = CreateUser();`
			`var mockBackOfficeSecurity = new Mock<IBackOfficeSecurity>();`
			`mockBackOfficeSecurity.SetupGet(x => x.CurrentUser).Returns(userIsAuthorized ? user : null);`
			`mockBackOfficeSecurity`
			`.Setup(x => x.UserHasSectionAccess(`
			`Constants.Applications.Content,`
			`It.Is<IUser>(y => y.Username == user.Username)))`
			`.Returns(userCanAccessContentSection);`
			`mockBackOfficeSecurity`
			`.Setup(x => x.UserHasSectionAccess(`
			`Constants.Applications.Media,`
			`It.Is<IUser>(y => y.Username == user.Username)))`
			`.Returns(false);`
			`var mockBackOfficeSecurityAccessor = new Mock<IBackOfficeSecurityAccessor>();`
			`mockBackOfficeSecurityAccessor.Setup(x => x.BackOfficeSecurity).Returns(mockBackOfficeSecurity.Object);`
			`return mockBackOfficeSecurityAccessor;`
			`}`

			`private static User CreateUser() => new UserBuilder()`
			`.Build();`
Added tests for TreeHandler. 2020-12-02 19:50:56 +01:00			`}`