[PM-3797 Part 1] Layout new key rotation methods (#3425)

* layout new key rotation methods - add endpoint with request model - add command with data model - add repository method * layout new key rotation methods - add endpoint with request model - add command with data model - add repository method * formatting * rename account recovery to reset password * fix tests * remove extra endpoint * rename account recovery to reset password * fix tests and formatting * register db calls in command, removing list from user repo * formatting
2025-06-30 07:36:14 -05:00 · 2023-11-09 14:56:08 -05:00
parent 4cf2142b68
commit b716a925f8
12 changed files with 340 additions and 38 deletions
--- a/test/Api.Test/Controllers/AccountsControllerTests.cs
+++ b/test/Api.Test/Controllers/AccountsControllerTests.cs
@ -4,7 +4,9 @@ using Bit.Api.Controllers;
 using Bit.Core.AdminConsole.Repositories;
 using Bit.Core.Auth.Models.Api.Request.Accounts;
 using Bit.Core.Auth.Services;
+using Bit.Core.Auth.UserFeatures.UserKey;
 using Bit.Core.Auth.UserFeatures.UserMasterPassword.Interfaces;
+using Bit.Core.Context;
 using Bit.Core.Entities;
 using Bit.Core.Enums;
 using Bit.Core.Exceptions;
@ -40,6 +42,10 @@ public class AccountsControllerTests : IDisposable
    private readonly ICaptchaValidationService _captchaValidationService;
    private readonly IPolicyService _policyService;
    private readonly ISetInitialMasterPasswordCommand _setInitialMasterPasswordCommand;
+    private readonly IRotateUserKeyCommand _rotateUserKeyCommand;
+    private readonly IFeatureService _featureService;
+    private readonly ICurrentContext _currentContext;
+

    public AccountsControllerTests()
    {
@ -57,6 +63,9 @@ public class AccountsControllerTests : IDisposable
        _captchaValidationService = Substitute.For<ICaptchaValidationService>();
        _policyService = Substitute.For<IPolicyService>();
        _setInitialMasterPasswordCommand = Substitute.For<ISetInitialMasterPasswordCommand>();
+        _rotateUserKeyCommand = Substitute.For<IRotateUserKeyCommand>();
+        _featureService = Substitute.For<IFeatureService>();
+        _currentContext = Substitute.For<ICurrentContext>();

        _sut = new AccountsController(
            _globalSettings,
@ -72,7 +81,10 @@ public class AccountsControllerTests : IDisposable
            _sendService,
            _captchaValidationService,
            _policyService,
-            _setInitialMasterPasswordCommand
+            _setInitialMasterPasswordCommand,
+            _rotateUserKeyCommand,
+            _featureService,
+            _currentContext
        );
    }

--- a/test/Core.Test/Auth/UserFeatures/UserKey/RotateUserKeyCommandTests.cs
+++ b/test/Core.Test/Auth/UserFeatures/UserKey/RotateUserKeyCommandTests.cs
@ -0,0 +1,50 @@
+using Bit.Core.Auth.Models.Data;
+using Bit.Core.Auth.UserFeatures.UserKey.Implementations;
+using Bit.Core.Services;
+using Bit.Test.Common.AutoFixture;
+using Bit.Test.Common.AutoFixture.Attributes;
+using Microsoft.AspNetCore.Identity;
+using NSubstitute;
+using Xunit;
+
+namespace Bit.Core.Test.Auth.UserFeatures.UserKey;
+
+[SutProviderCustomize]
+public class RotateUserKeyCommandTests
+{
+    [Theory, BitAutoData]
+    public async Task RotateUserKeyAsync_Success(SutProvider<RotateUserKeyCommand> sutProvider, RotateUserKeyData model)
+    {
+        sutProvider.GetDependency<IUserService>().CheckPasswordAsync(model.User, model.MasterPasswordHash)
+            .Returns(true);
+
+        var result = await sutProvider.Sut.RotateUserKeyAsync(model);
+
+        Assert.Equal(IdentityResult.Success, result);
+    }
+
+    [Theory, BitAutoData]
+    public async Task RotateUserKeyAsync_InvalidMasterPasswordHash_ReturnsFailedIdentityResult(
+        SutProvider<RotateUserKeyCommand> sutProvider, RotateUserKeyData model)
+    {
+        sutProvider.GetDependency<IUserService>().CheckPasswordAsync(model.User, model.MasterPasswordHash)
+            .Returns(false);
+
+        var result = await sutProvider.Sut.RotateUserKeyAsync(model);
+
+        Assert.False(result.Succeeded);
+    }
+
+    [Theory, BitAutoData]
+    public async Task RotateUserKeyAsync_LogsOutUser(
+        SutProvider<RotateUserKeyCommand> sutProvider, RotateUserKeyData model)
+    {
+        sutProvider.GetDependency<IUserService>().CheckPasswordAsync(model.User, model.MasterPasswordHash)
+            .Returns(true);
+
+        await sutProvider.Sut.RotateUserKeyAsync(model);
+
+        await sutProvider.GetDependency<IPushNotificationService>().ReceivedWithAnyArgs()
+            .PushLogOutAsync(default, default);
+    }
+}