mirror of
https://github.com/bitwarden/server.git
synced 2025-07-13 21:57:30 -05:00
7f65a655d4
* Add feature flag * Further establish billing command pattern and use in PreviewTaxAmountCommand * Add billing address models/commands/queries/tests * Update TypeReadingJsonConverter to account for new union types * Add payment method models/commands/queries/tests * Add credit models/commands/queries/tests * Add command/query registrations * Add new endpoints to support new command model and payment functionality * Run dotnet format * Add InjectUserAttribute for easier AccountBillilngVNextController handling * Add InjectOrganizationAttribute for easier OrganizationBillingVNextController handling * Add InjectProviderAttribute for easier ProviderBillingVNextController handling * Add XML documentation for billing command pipeline * Fix StripeConstants post-nullability * More nullability cleanup * Run dotnet format
130 lines
4.0 KiB
C#
130 lines
4.0 KiB
C#
using System.Security.Claims;
|
|
using Bit.Api.Billing.Attributes;
|
|
using Bit.Core.Entities;
|
|
using Bit.Core.Models.Api;
|
|
using Bit.Core.Services;
|
|
using Microsoft.AspNetCore.Http;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
using Microsoft.AspNetCore.Mvc.Abstractions;
|
|
using Microsoft.AspNetCore.Mvc.Filters;
|
|
using Microsoft.AspNetCore.Mvc.ModelBinding;
|
|
using Microsoft.AspNetCore.Routing;
|
|
using Microsoft.Extensions.DependencyInjection;
|
|
using NSubstitute;
|
|
using Xunit;
|
|
|
|
namespace Bit.Api.Test.Billing.Attributes;
|
|
|
|
public class InjectUserAttributesTests
|
|
{
|
|
private readonly IUserService _userService;
|
|
private readonly ActionExecutionDelegate _next;
|
|
private readonly ActionExecutingContext _context;
|
|
private readonly User _user;
|
|
|
|
public InjectUserAttributesTests()
|
|
{
|
|
_userService = Substitute.For<IUserService>();
|
|
_user = new User { Id = Guid.NewGuid() };
|
|
|
|
var httpContext = new DefaultHttpContext();
|
|
var services = new ServiceCollection();
|
|
services.AddScoped(_ => _userService);
|
|
httpContext.RequestServices = services.BuildServiceProvider();
|
|
|
|
var actionContext = new ActionContext(
|
|
httpContext,
|
|
new RouteData(),
|
|
new ActionDescriptor(),
|
|
new ModelStateDictionary()
|
|
);
|
|
|
|
_next = () => Task.FromResult(new ActionExecutedContext(
|
|
actionContext,
|
|
new List<IFilterMetadata>(),
|
|
new object()));
|
|
|
|
_context = new ActionExecutingContext(
|
|
actionContext,
|
|
new List<IFilterMetadata>(),
|
|
new Dictionary<string, object>(),
|
|
new object());
|
|
}
|
|
|
|
[Fact]
|
|
public async Task OnActionExecutionAsync_WithAuthorizedUser_InjectsUser()
|
|
{
|
|
var attribute = new InjectUserAttribute();
|
|
_userService.GetUserByPrincipalAsync(Arg.Any<ClaimsPrincipal>())
|
|
.Returns(_user);
|
|
|
|
var parameter = new ParameterDescriptor
|
|
{
|
|
Name = "user",
|
|
ParameterType = typeof(User)
|
|
};
|
|
_context.ActionDescriptor.Parameters = [parameter];
|
|
|
|
await attribute.OnActionExecutionAsync(_context, _next);
|
|
|
|
Assert.Equal(_user, _context.ActionArguments["user"]);
|
|
}
|
|
|
|
[Fact]
|
|
public async Task OnActionExecutionAsync_WithUnauthorizedUser_ReturnsUnauthorized()
|
|
{
|
|
var attribute = new InjectUserAttribute();
|
|
_userService.GetUserByPrincipalAsync(Arg.Any<ClaimsPrincipal>())
|
|
.Returns((User)null);
|
|
|
|
await attribute.OnActionExecutionAsync(_context, _next);
|
|
|
|
Assert.IsType<UnauthorizedObjectResult>(_context.Result);
|
|
var result = (UnauthorizedObjectResult)_context.Result;
|
|
Assert.IsType<ErrorResponseModel>(result.Value);
|
|
Assert.Equal("Unauthorized.", ((ErrorResponseModel)result.Value).Message);
|
|
}
|
|
|
|
[Fact]
|
|
public async Task OnActionExecutionAsync_WithoutUserParameter_ContinuesExecution()
|
|
{
|
|
var attribute = new InjectUserAttribute();
|
|
_userService.GetUserByPrincipalAsync(Arg.Any<ClaimsPrincipal>())
|
|
.Returns(_user);
|
|
|
|
_context.ActionDescriptor.Parameters = Array.Empty<ParameterDescriptor>();
|
|
|
|
await attribute.OnActionExecutionAsync(_context, _next);
|
|
|
|
Assert.Empty(_context.ActionArguments);
|
|
}
|
|
|
|
[Fact]
|
|
public async Task OnActionExecutionAsync_WithMultipleParameters_InjectsUserCorrectly()
|
|
{
|
|
var attribute = new InjectUserAttribute();
|
|
_userService.GetUserByPrincipalAsync(Arg.Any<ClaimsPrincipal>())
|
|
.Returns(_user);
|
|
|
|
var parameters = new[]
|
|
{
|
|
new ParameterDescriptor
|
|
{
|
|
Name = "otherParam",
|
|
ParameterType = typeof(string)
|
|
},
|
|
new ParameterDescriptor
|
|
{
|
|
Name = "user",
|
|
ParameterType = typeof(User)
|
|
}
|
|
};
|
|
_context.ActionDescriptor.Parameters = parameters;
|
|
|
|
await attribute.OnActionExecutionAsync(_context, _next);
|
|
|
|
Assert.Single(_context.ActionArguments);
|
|
Assert.Equal(_user, _context.ActionArguments["user"]);
|
|
}
|
|
}
|