safet.purkovic
/
DocumentOrganizer
Следить 1
В избранное 0
Форкнуть 0
Код Задачи 0 Pull Request'ы 0 Релизы 0 Вики Активность
Вы не можете выбрать более 25 тем Темы должны начинаться с буквы или цифры, могут содержать дефисы(-) и должны содержать не более 35 символов.
13 коммитов
10 Ветки
Дерево: e5a779fd8e
Ветки Теги
${ item.name }
Создать ветку ${ searchTerm }
из 'e5a779fd8e'
${ noResults }
DocumentOrganizer/Diligent.WebAPI.Tests/Services/AuthenticationServiceTests.cs

AuthenticationServiceTests.cs 33KB
Исходник Blame История

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868 
  1. using AutoMapper;

  2. using Diligent.WebAPI.Business.MappingProfiles;

  3. using Diligent.WebAPI.Business.Services;

  4. using Diligent.WebAPI.Business.Settings;

  5. using Diligent.WebAPI.Contracts.DTOs;

  6. using Diligent.WebAPI.Contracts.DTOs.Auth;

  7. using Diligent.WebAPI.Contracts.Models;

  8. using Diligent.WebAPI.Data.Entities;

  9. using Microsoft.AspNetCore.Identity;

  10. using Microsoft.AspNetCore.WebUtilities;

  11. using Microsoft.EntityFrameworkCore;

  12. using Microsoft.Extensions.Logging;

  13. using Microsoft.Extensions.Options;

  14. using NSubstitute.ReturnsExtensions;

  15. using System.Text;

  16. 

  17. namespace Diligent.WebAPI.Tests.Services

  18. {

  19.     public class AuthenticationServiceTests

  20.     {

  21.         private readonly List<User> _users;

  22.         private readonly List<RefreshToken> _tokens;

  23.         private readonly IUserStore<User> _mockStore;

  24.         private readonly UserManager<User> _mockUserManager;

  25.         private readonly IEmailer _emailer = Substitute.For<IEmailer>();

  26.         private readonly IMapper _mapper;

  27.         private readonly ILogger<AuthenticationService> _logger = Substitute.For<ILogger<AuthenticationService>>();

  28.         private readonly IHttpClientService _httpClient = Substitute.For<IHttpClientService>();

  29. 

  30.         public AuthenticationServiceTests()

  31.         {

  32.             _mockStore = Substitute.For<IUserStore<User>>();

  33.             _mockUserManager = Substitute.For<UserManager<User>>(_mockStore, null, null, null, null, null, null, null, null);

  34.             _tokens = new List<RefreshToken>

  35.             {

  36.                 new RefreshToken

  37.                 {

  38.                     Id = 1,

  39.                     CreationDate = DateTime.Now,

  40.                     ExpiryDate = DateTime.Now.AddDays(5),

  41.                     UserId = 1,

  42.                     Invalidated = false,

  43.                     JwtId = "string",

  44.                     Used = false,

  45.                     Token = "refresh"

  46.                 },

  47.                 new RefreshToken

  48.                 {

  49.                     Id = 4,

  50.                     CreationDate = DateTime.Now,

  51.                     ExpiryDate = DateTime.Now.AddDays(5),

  52.                     UserId = 2,

  53.                     Invalidated = false,

  54.                     JwtId = "string",

  55.                     Used = false,

  56.                     Token = "refresh"

  57.                 },

  58.                 new RefreshToken

  59.                 {

  60.                     Id = 3,

  61.                     CreationDate = DateTime.Now,

  62.                     ExpiryDate = DateTime.Now.AddDays(5),

  63.                     UserId = 3,

  64.                     Invalidated = false,

  65.                     JwtId = "string",

  66.                     Used = false,

  67.                     Token = "refresh"

  68.                 }

  69.             };

  70. 

  71.             _users = new List<User>

  72.             {

  73.                 new User

  74.                 {

  75.                     Id = 1,

  76.                     PasswordHash = "AQAAAAEAACcQAAAAEJnWVhD/qftzqJq5XOUD0BxEBEwhd7vS46HeDD+9cwEsqO9ev9xEORJVjmFMASUGJg==",

  77.                     FirstName = "User",

  78.                     LastName = "One",

  79.                     UserName = "user1",

  80.                     NormalizedUserName = "USER1",

  81.                     Email = "user1@dilig.net",

  82.                     NormalizedEmail = "USER1@DILIG.NET",

  83.                     EmailConfirmed = false,

  84.                     IsEnabled = true,

  85.                     AccessFailedCount = 0,

  86.                     SecurityStamp = "2D3XPK2P5MAKO377AWFU3T4ZFFYTSOJX",

  87.                     ConcurrencyStamp = "2D3XPK2P5MAKO377AWFU3T4ZFFYTSOJX",

  88.                 },

  89.                 new User

  90.                 {

  91.                    Id = 2,

  92.                     PasswordHash = "AQAAAAEAACcQAAAAEJnWVhD/qftzqJq5XOUD0BxEBEwhd7vS46HeDD+9cwEsqO9ev9xEORJVjmFMASUGJg==",

  93.                     FirstName = "User",

  94.                     LastName = "Two",

  95.                     UserName = "user2",

  96.                     NormalizedUserName = "USER2",

  97.                     Email = "user2@dilig.net",

  98.                     NormalizedEmail = "USER2@DILIG.NET",

  99.                     EmailConfirmed = false,

  100.                     IsEnabled = true,

  101.                     AccessFailedCount = 0,

  102.                     SecurityStamp = "2D3XPK2P5MAKO377AWFU3T4ZFFYTSOJX",

  103.                     ConcurrencyStamp = "2D3XPK2P5MAKO377AWFU3T4ZFFYTSOJX",

  104.                 },

  105.                 new User

  106.                 {

  107.                    Id = 3,

  108.                     PasswordHash = "AQAAAAEAACcQAAAAEJnWVhD/qftzqJq5XOUD0BxEBEwhd7vS46HeDD+9cwEsqO9ev9xEORJVjmFMASUGJg==",

  109.                     FirstName = "User",

  110.                     LastName = "Three",

  111.                     UserName = "user3",

  112.                     NormalizedUserName = "USER3",

  113.                     Email = "user3@dilig.net",

  114.                     NormalizedEmail = "USER3@DILIG.NET",

  115.                     EmailConfirmed = false,

  116.                     IsEnabled = false,

  117.                     AccessFailedCount = 0,

  118.                     SecurityStamp = "2D3XPK2P5MAKO377AWFU3T4ZFFYTSOJX",

  119.                     ConcurrencyStamp = "2D3XPK2P5MAKO377AWFU3T4ZFFYTSOJX",

  120.                 },

  121.                 new User

  122.                 {

  123.                    Id = 4,

  124.                     PasswordHash = "AQAAAAEAACcQAAAAEJnWVhD/qftzqJq5XOUD0BxEBEwhd7vS46HeDD+9cwEsqO9ev9xEORJVjmFMASUGJg==",

  125.                     FirstName = "User",

  126.                     LastName = "Four",

  127.                     UserName = "user4",

  128.                     NormalizedUserName = "USER4",

  129.                     Email = "user4@dilig.net",

  130.                     NormalizedEmail = "USER4@DILIG.NET",

  131.                     EmailConfirmed = false,

  132.                     IsEnabled = true,

  133.                     AccessFailedCount = 0,

  134.                     SecurityStamp = "ZYA3WYFOWDEQRWYKEXVKIBPI3C5XZZNM",

  135.                     ConcurrencyStamp = "9f3174d6-dd77-4549-ae51-ec81d630d7ff",

  136.                 },

  137.                 new User

  138.                 {

  139.                     Id = 5,

  140.                     PasswordHash = "AQAAAAEAACcQAAAAEK8x77a+af9qKiHc6Lq2OKLmzCjqhws/qn2g4ByHwAXoDp7/3aT38M47oTPZQ1rqyg==",

  141.                     FirstName = "User",

  142.                     LastName = "Four",

  143.                     UserName = "user5",

  144.                     NormalizedUserName = "USER5",

  145.                     Email = "user5@dilig.net",

  146.                     NormalizedEmail = "USER5@DILIG.NET",

  147.                     EmailConfirmed = false,

  148.                     IsEnabled = true,

  149.                     AccessFailedCount = 0,

  150.                     SecurityStamp = "2D3XPK2P5MAKO377AWFU3T4ZFFYTSOJX",

  151.                     ConcurrencyStamp = "2D3XPK2P5MAKO377AWFU3T4ZFFYTSOJX",

  152.                 }

  153.             };

  154. 

  155.             // configure mapper

  156.             var configuration = new MapperConfiguration(cfg => cfg.AddProfiles(

  157.                 new List<Profile>

  158.             {

  159.                     new UserMappingProfile()

  160.             }));

  161. 

  162.             _mapper = new Mapper(configuration);

  163.         }

  164. 

  165.         [Fact]

  166.         public async Task Authenticate_ShouldReturnError_IfInvalidUsername()

  167.         {

  168.             _mockUserManager.FindByNameAsync(Arg.Any<string>()).ReturnsNull();

  169.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  170. 

  171.             var frontEndSettings = Options.Create(new FrontEndSettings

  172.             {

  173.                 BaseUrl = "some url"

  174.             });

  175. 

  176.             var authSettings = Options.Create(new AuthorizationSettings { });

  177. 

  178.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  179. 

  180.             var result = await service.Authenticate(new Contracts.DTOs.Auth.AuthenticateRequestDto

  181.             {

  182.                 Username = "Any",

  183.                 Password = "Any"

  184.             });

  185. 

  186.             result.Should().BeEquivalentTo(new ServiceResponseDTO<AuthenticateResponseDto>

  187.             {

  188.                 IsError = true,

  189.                 ErrorMessage = "Username is not valid"

  190.             });

  191.         }

  192. 

  193.         [Fact]

  194.         public async Task Authenticate_ShouldCall_CheckPasswordAsync()

  195.         {

  196.             _mockUserManager.FindByNameAsync(Arg.Any<string>()).Returns(_users[1]);

  197.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  198. 

  199.             var frontEndSettings = Options.Create(new FrontEndSettings

  200.             {

  201.                 BaseUrl = "some url"

  202.             });

  203. 

  204.             var authSettings = Options.Create(new AuthorizationSettings { });

  205. 

  206.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  207. 

  208.             await service.Authenticate(new Contracts.DTOs.Auth.AuthenticateRequestDto

  209.             {

  210.                 Username = _users[1].Email,

  211.                 Password = "Any"

  212.             });

  213. 

  214.             await _mockUserManager.Received(1).CheckPasswordAsync(_users[1], "Any");

  215.             

  216.         }

  217. 

  218.         [Fact]

  219.         public async Task Authenticate_ShouldReturnError_IfUserIsDisabled()

  220.         {

  221.             _mockUserManager.FindByNameAsync(Arg.Any<string>()).Returns(_users[2]);

  222.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  223. 

  224.             var frontEndSettings = Options.Create(new FrontEndSettings

  225.             {

  226.                 BaseUrl = "some url"

  227.             });

  228. 

  229.             var authSettings = Options.Create(new AuthorizationSettings { });

  230. 

  231.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  232. 

  233.             var result = await service.Authenticate(new Contracts.DTOs.Auth.AuthenticateRequestDto

  234.             {

  235.                 Username = _users[2].Email,

  236.                 Password = "Any"

  237.             });

  238. 

  239.             result.Should().BeEquivalentTo(new ServiceResponseDTO<AuthenticateResponseDto>

  240.             {

  241.                 IsError = true,

  242.                 ErrorMessage = $"User with email {_users[2].Email} has no permission to log in."

  243.             });

  244.         }

  245. 

  246.         [Fact]

  247.         public async Task Authenticate_ShouldReturnError_IfInvalidPassword()

  248.         {

  249.             _mockUserManager.FindByNameAsync(Arg.Any<string>()).Returns(_users[1]);

  250.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  251. 

  252.             var frontEndSettings = Options.Create(new FrontEndSettings

  253.             {

  254.                 BaseUrl = "some url"

  255.             });

  256. 

  257.             var authSettings = Options.Create(new AuthorizationSettings { });

  258. 

  259.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  260. 

  261.             var result = await service.Authenticate(new Contracts.DTOs.Auth.AuthenticateRequestDto

  262.             {

  263.                 Username = _users[1].Email,

  264.                 Password = "Any"

  265.             });

  266. 

  267.             result.Should().BeEquivalentTo(new ServiceResponseDTO<AuthenticateResponseDto>

  268.             {

  269.                 IsError = true,

  270.                 ErrorMessage = $"Password is not correct"

  271.             });

  272.         }

  273. 

  274.         [Fact]

  275.         public async Task Authenticate_ShouldReturnError_IfUserIsLockedOut()

  276.         {

  277.             _mockUserManager.FindByNameAsync(Arg.Any<string>()).Returns(_users[3]);

  278.             _mockUserManager.CheckPasswordAsync(Arg.Any<User>(), Arg.Any<string>()).Returns(true);

  279.             _mockUserManager.IsLockedOutAsync(Arg.Any<User>()).Returns(true);

  280.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  281. 

  282.             var frontEndSettings = Options.Create(new FrontEndSettings

  283.             {

  284.                 BaseUrl = "some url"

  285.             });

  286. 

  287.             var authSettings = Options.Create(new AuthorizationSettings { 

  288.                 Secret = "S1231251WAS124AS"

  289.             });

  290. 

  291.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  292. 

  293.             var result = await service.Authenticate(new Contracts.DTOs.Auth.AuthenticateRequestDto

  294.             {

  295.                 Username = _users[3].Email,

  296.                 Password = "Nekasifra123!"

  297.             });

  298. 

  299.             result.Should().BeEquivalentTo(new ServiceResponseDTO<AuthenticateResponseDto>

  300.             {

  301.                 IsError = true,

  302.                 ErrorMessage = "The account is locked out"

  303.             });

  304.         }

  305. 

  306.         [Fact]

  307.         public async Task Authenticate_ShouldGenerateToken_IfCredsAreValid()

  308.         {

  309.             _mockUserManager.FindByNameAsync(Arg.Any<string>()).Returns(_users[1]);

  310.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  311. 

  312.             var frontEndSettings = Options.Create(new FrontEndSettings

  313.             {

  314.                 BaseUrl = "some url"

  315.             });

  316. 

  317.             var authSettings = Options.Create(new AuthorizationSettings { });

  318. 

  319.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  320. 

  321.             var result = await service.Authenticate(new Contracts.DTOs.Auth.AuthenticateRequestDto

  322.             {

  323.                 Username = _users[1].Email,

  324.                 Password = "Nekasifra123!"

  325.             });

  326. 

  327.             Assert.IsType<ServiceResponseDTO<AuthenticateResponseDto>>(result);

  328.         }

  329. 

  330.         [Fact]

  331.         public async Task AuthenticateGoogle_ShouldReturnError_IfInvalidApiToken()

  332.         {

  333.             _httpClient.IsTokenValid(Arg.Any<string>()).Returns(false);

  334.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  335. 

  336.             var frontEndSettings = Options.Create(new FrontEndSettings

  337.             {

  338.                 BaseUrl = "some url"

  339.             });

  340. 

  341.             var authSettings = Options.Create(new AuthorizationSettings { });

  342. 

  343.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  344. 

  345.             var result = await service.Authenticate(new GoogleApiModel

  346.             {

  347.                 Token = "t",

  348.                 User = new GoogleApiTokenInfo

  349.                 {

  350.                     email = "something@dilig.net"

  351.                 }

  352.             });

  353. 

  354.             result.Should().BeEquivalentTo(new ServiceResponseDTO<AuthenticateResponseDto>

  355.             {

  356.                 IsError = true,

  357.                 ErrorMessage = "Invalid Google Api Token"

  358.             });

  359.         }

  360. 

  361.         [Fact]

  362.         public async Task AuthenticateGoogle_ShouldReturnError_IfUserDoesntExist()

  363.         {

  364.             _httpClient.IsTokenValid(Arg.Any<string>()).Returns(true);

  365.             _mockUserManager.FindByNameAsync(Arg.Any<string>()).ReturnsNull();

  366.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  367. 

  368.             var frontEndSettings = Options.Create(new FrontEndSettings

  369.             {

  370.                 BaseUrl = "some url"

  371.             });

  372. 

  373.             var authSettings = Options.Create(new AuthorizationSettings { });

  374. 

  375.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  376. 

  377.             var result = await service.Authenticate(new GoogleApiModel

  378.             {

  379.                 Token = "t",

  380.                 User = new GoogleApiTokenInfo

  381.                 {

  382.                     email = _users[1].Email,

  383.                 }

  384.             });

  385. 

  386.             result.Should().BeEquivalentTo(new ServiceResponseDTO<AuthenticateResponseDto>

  387.             {

  388.                 IsError = true,

  389.                 ErrorMessage = $"User with email {_users[1].Email} does not exist in database"

  390.             });

  391.         }

  392. 

  393.         [Fact]

  394.         public async Task AuthenticateGoogle_ShouldReturnError_IfUserIsDisabled()

  395.         {

  396.             _httpClient.IsTokenValid(Arg.Any<string>()).Returns(true);

  397.             _mockUserManager.FindByEmailAsync(Arg.Any<string>()).Returns(_users[2]);

  398.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  399. 

  400.             var frontEndSettings = Options.Create(new FrontEndSettings

  401.             {

  402.                 BaseUrl = "some url"

  403.             });

  404. 

  405.             var authSettings = Options.Create(new AuthorizationSettings { });

  406. 

  407.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  408. 

  409.             var result = await service.Authenticate(new GoogleApiModel

  410.             {

  411.                 Token = "token",

  412.                 User = new GoogleApiTokenInfo

  413.                 {

  414.                     email = _users[2].Email,

  415.                 }

  416.             });

  417. 

  418.             result.Should().BeEquivalentTo(new ServiceResponseDTO<AuthenticateResponseDto>

  419.             {

  420.                 IsError = true,

  421.                 ErrorMessage = $"User with email {_users[2].Email} has no permission to log in."

  422.             });

  423.         }

  424. 

  425.         [Fact]

  426.         public async Task AuthenticateGoogle_ShouldGenerateToken()

  427.         {

  428.             _httpClient.IsTokenValid(Arg.Any<string>()).Returns(true);

  429.             _mockUserManager.FindByEmailAsync(Arg.Any<string>()).Returns(_users[1]);

  430.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  431. 

  432.             var frontEndSettings = Options.Create(new FrontEndSettings

  433.             {

  434.                 BaseUrl = "some url"

  435.             });

  436. 

  437.             var authSettings = Options.Create(new AuthorizationSettings

  438.             {

  439.                 Secret = "S1231251WAS124AS"

  440.             });

  441. 

  442.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  443. 

  444.             var result = await service.Authenticate(new GoogleApiModel

  445.             {

  446.                 Token = "token",

  447.                 User = new GoogleApiTokenInfo

  448.                 {

  449.                     email = _users[1].Email

  450.                 }

  451.             });

  452. 

  453.             Assert.IsType<ServiceResponseDTO<AuthenticateResponseDto>>(result);

  454.         }

  455. 

  456.         [Fact]

  457.         public async Task Register_ShouldReturnError_IfUserNotFound()

  458.         {

  459.             _mockUserManager.FindByEmailAsync(Arg.Any<string>()).ReturnsNull();

  460.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  461. 

  462.             var frontEndSettings = Options.Create(new FrontEndSettings

  463.             {

  464.                 BaseUrl = "some url"

  465.             });

  466. 

  467.             var authSettings = Options.Create(new AuthorizationSettings { });

  468. 

  469.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  470. 

  471.             var result = await service.Register(new Contracts.DTOs.User.RegisterDTO

  472.             {

  473.                 Token = "token",

  474.                 LinkedIn = "Link",

  475.                 Confirm = "Password123!",

  476.                 Email = _users[1].Email,

  477.                 Password = "Password123!",

  478.                 Phone = "123",

  479.                 Position = "Senior Dev"

  480.             });

  481. 

  482.             result.Should().BeEquivalentTo(new ServiceResponseDTO<AuthenticateResponseDto>

  483.             {

  484.                 IsError = true,

  485.                 ErrorMessage = "User not invited."

  486.             });

  487.         }

  488. 

  489.         [Fact]

  490.         public async Task Register_ShouldCreateUser_IfUserExists()

  491.         {

  492.             _mockUserManager.FindByEmailAsync(Arg.Any<string>()).Returns(_users[1]);

  493. 

  494.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  495.             var frontEndSettings = Options.Create(new FrontEndSettings

  496.             {

  497.                 BaseUrl = "some url"

  498.             });

  499. 

  500.             var authSettings = Options.Create(new AuthorizationSettings { });

  501. 

  502.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  503. 

  504.             _mockUserManager.ResetPasswordAsync(Arg.Any<User>(), Arg.Any<string>(), Arg.Any<string>()).Returns(IdentityResult.Success);

  505. 

  506.             var result = await service.Register(new Contracts.DTOs.User.RegisterDTO

  507.             {

  508.                 Token = "token",

  509.                 LinkedIn = "Link",

  510.                 Confirm = "Password123!",

  511.                 Email = _users[1].Email,

  512.                 Password = "Password123!",

  513.                 Phone = "123",

  514.                 Position = "Senior Dev"

  515.             });

  516. 

  517.             result.Should().BeEquivalentTo(new ServiceResponseDTO<object>

  518.             {

  519.                 Data = true,

  520.             });

  521.         }

  522. 

  523.         [Fact]

  524.         public async Task Register_ShouldThrowError_IfUnsuccessfulReset()

  525.         {

  526.             _mockUserManager.FindByEmailAsync(Arg.Any<string>()).Returns(_users[1]);

  527. 

  528.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  529.             var frontEndSettings = Options.Create(new FrontEndSettings

  530.             {

  531.                 BaseUrl = "some url"

  532.             });

  533. 

  534.             var authSettings = Options.Create(new AuthorizationSettings { });

  535. 

  536.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  537. 

  538.             _mockUserManager.ResetPasswordAsync(Arg.Any<User>(), Arg.Any<string>(), Arg.Any<string>())

  539.                 .Returns(IdentityResult.Failed(

  540.                     new IdentityError[] {

  541.                         new IdentityError { 

  542.                             Description= "Failed" 

  543.                         } 

  544.                     }

  545.                  ));

  546. 

  547.             var result = await service.Register(new Contracts.DTOs.User.RegisterDTO

  548.             {

  549.                 Token = "token",

  550.                 LinkedIn = "Link",

  551.                 Confirm = "Password123!",

  552.                 Email = _users[1].Email,

  553.                 Password = "Password123!",

  554.                 Phone = "123",

  555.                 Position = "Senior Dev"

  556.             });

  557. 

  558.             result.Should().BeEquivalentTo(new ServiceResponseDTO<object>

  559.             {

  560.                 IsError = true,

  561.                 ErrorMessage = "Failed"

  562.             });

  563.         }

  564. 

  565.         [Fact]

  566.         public async Task PasswordResetAsync_ShouldReturnError_IfUserNotFound()

  567.         {

  568.             _mockUserManager.FindByEmailAsync(Arg.Any<string>()).ReturnsNull();

  569.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  570. 

  571.             var frontEndSettings = Options.Create(new FrontEndSettings

  572.             {

  573.                 BaseUrl = "some url"

  574.             });

  575. 

  576.             var authSettings = Options.Create(new AuthorizationSettings { });

  577. 

  578.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  579. 

  580.             var result = await service.PasswordResetAsync(

  581.                 email: _users[1].Email,

  582.                 code: "code",

  583.                 password: "Password123!"

  584.             );

  585. 

  586.             result.Should().BeEquivalentTo(new ServiceResponseDTO<object>

  587.             {

  588.                 IsError = true,

  589.                 ErrorMessage = "Email did not find."

  590.             });

  591.         }

  592. 

  593.         [Fact]

  594.         public async Task PasswordResetAsync_ShouldResetToken_IfUserFound()

  595.         {

  596.             _mockUserManager.FindByEmailAsync(Arg.Any<string>()).Returns(_users[1]);

  597.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  598. 

  599.             var frontEndSettings = Options.Create(new FrontEndSettings

  600.             {

  601.                 BaseUrl = "some url"

  602.             });

  603. 

  604.             _mockUserManager.ResetPasswordAsync(Arg.Any<User>(), Arg.Any<string>(), Arg.Any<string>())

  605.                 .Returns(IdentityResult.Success);

  606. 

  607.             var authSettings = Options.Create(new AuthorizationSettings { });

  608. 

  609.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  610. 

  611.             var result = await service.PasswordResetAsync(

  612.                 email: _users[1].Email,

  613.                 code: "code",

  614.                 password: "Password123!"

  615.             );

  616. 

  617.             result.Should().BeEquivalentTo(new ServiceResponseDTO<object>

  618.                 { Data = true }

  619.             );

  620.         }

  621. 

  622.         [Fact]

  623.         public async Task PasswordResetAsync_ShouldReturnError_IfUnsuccessfulReset()

  624.         {

  625.             _mockUserManager.FindByEmailAsync(Arg.Any<string>()).Returns(_users[1]);

  626.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  627. 

  628.             var frontEndSettings = Options.Create(new FrontEndSettings

  629.             {

  630.                 BaseUrl = "some url"

  631.             });

  632. 

  633.             _mockUserManager.ResetPasswordAsync(Arg.Any<User>(), Arg.Any<string>(), Arg.Any<string>())

  634.                 .Returns(IdentityResult.Failed(

  635.                     new IdentityError[] {

  636.                         new IdentityError {

  637.                             Description= "Failed"

  638.                         }

  639.                     }

  640.                  ));

  641. 

  642.             var authSettings = Options.Create(new AuthorizationSettings { });

  643. 

  644.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  645. 

  646.             var result = await service.PasswordResetAsync(

  647.                 email: _users[1].Email,

  648.                 code: "code",

  649.                 password: "Password123!"

  650.             );

  651. 

  652.             result.Should().BeEquivalentTo(new ServiceResponseDTO<object>

  653.             {

  654.                 IsError = true,

  655.                 ErrorMessage = "Failed"

  656.             });

  657.         }

  658. 

  659.         [Fact]

  660.         public async Task GetForgotPasswordUrlAsync_ShouldReturnError_IfUserNotFound()

  661.         {

  662.             _mockUserManager.FindByEmailAsync(Arg.Any<string>()).ReturnsNull();

  663.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  664. 

  665.             var frontEndSettings = Options.Create(new FrontEndSettings

  666.             {

  667.                 BaseUrl = "some url"

  668.             });

  669. 

  670.             var authSettings = Options.Create(new AuthorizationSettings { });

  671. 

  672.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  673. 

  674.             var result = await service.GetForgotPasswordUrlAsync(_users[1].Email);

  675. 

  676.             result.Should().BeEquivalentTo(new ServiceResponseDTO<object>

  677.             {

  678.                 IsError = true,

  679.                 ErrorMessage = "Email did not find."

  680.             });

  681.         }

  682. 

  683.         [Fact]

  684.         public async Task GetForgotPasswordUrlAsync_ShouldReturnSuccess_IfUserIsFound()

  685.         {

  686.             _mockUserManager.FindByEmailAsync(Arg.Any<string>()).Returns(_users[1]);

  687.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  688. 

  689.             var frontEndSettings = Options.Create(new FrontEndSettings

  690.             {

  691.                 BaseUrl = "some url"

  692.             });

  693. 

  694.             var authSettings = Options.Create(new AuthorizationSettings { });

  695. 

  696.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  697. 

  698.             await service.GetForgotPasswordUrlAsync(_users[1].Email);

  699. 

  700.             await _emailer.ReceivedWithAnyArgs(1)

  701.                 .SendEmailAndWriteToDbAsync("mail", "reset", "url", true);

  702.         }

  703. 

  704.         [Fact]

  705.         public async Task GetForgotPasswordUrlAsync_ShouldCallEmailer_IfUserIsFound()

  706.         {

  707.             _mockUserManager.FindByEmailAsync(Arg.Any<string>()).Returns(_users[1]);

  708.             var databaseContext = await Helpers<User>.GetDatabaseContext(_users);

  709. 

  710.             var frontEndSettings = Options.Create(new FrontEndSettings

  711.             {

  712.                 BaseUrl = "some url"

  713.             });

  714. 

  715.             var authSettings = Options.Create(new AuthorizationSettings { });

  716. 

  717.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  718. 

  719.             var result = await service.GetForgotPasswordUrlAsync(_users[1].Email);

  720. 

  721.             result.Should().BeOfType(typeof(ServiceResponseDTO<object>));

  722.         }

  723. 

  724.         [Fact]

  725.         public async Task UpdateRefreshToken_ShouldUpdate()

  726.         {

  727.             var databaseContext = await Helpers<User>.GetDatabaseContextWithRelation(_users, _tokens);

  728.             var authSettings = Options.Create(new AuthorizationSettings { });

  729.             var frontEndSettings = Options.Create(new FrontEndSettings

  730.             {

  731.                 BaseUrl = "some url"

  732.             });

  733. 

  734.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  735. 

  736.             var first = await databaseContext.RefreshTokens.FindAsync(1);

  737. 

  738.             await service.UpdateRefreshToken(first);

  739.             databaseContext.Entry(first).Should().NotBeNull();

  740.         }

  741. 

  742.         [Fact]

  743.         public async Task DeleteRefreshToken_ShouldReturnError_IfTokenDoesNotExist()

  744.         {

  745.             var databaseContext = await Helpers<User>.GetDatabaseContextWithRelation(_users, _tokens);

  746. 

  747.             var authSettings = Options.Create(new AuthorizationSettings { });

  748.             var frontEndSettings = Options.Create(new FrontEndSettings

  749.             {

  750.                 BaseUrl = "some url"

  751.             });

  752. 

  753.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  754. 

  755.             var result = await service.DeleteRefreshToken(1000); // not existing token

  756. 

  757.             result.Should().BeEquivalentTo(new ServiceResponseDTO<string>

  758.             {

  759.                 IsError = true,

  760.                 ErrorMessage = "There is no refresh token for user"

  761.             });

  762.         }

  763. 

  764.         [Fact]

  765.         public async Task DeleteRefreshToken_ShouldSucceed_IfTokenExists()

  766.         {

  767.             var databaseContext = await Helpers<User>.GetDatabaseContextWithRelation(_users, _tokens);

  768. 

  769.             var authSettings = Options.Create(new AuthorizationSettings { });

  770.             var frontEndSettings = Options.Create(new FrontEndSettings

  771.             {

  772.                 BaseUrl = "some url"

  773.             });

  774. 

  775.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  776. 

  777.             var result = await service.DeleteRefreshToken(1); // not existing token

  778. 

  779.             result.Should().BeEquivalentTo(new ServiceResponseDTO<string>

  780.             {

  781.                 Data = null

  782.             });

  783.         }

  784. 

  785.         [Fact]

  786.         public async Task GetRefreshTokenByUserId_ShouldReturnTokenOrNull()

  787.         {

  788.             var databaseContext = await Helpers<User>.GetDatabaseContextWithRelation(_users, _tokens);

  789. 

  790.             var authSettings = Options.Create(new AuthorizationSettings { });

  791.             var frontEndSettings = Options.Create(new FrontEndSettings

  792.             {

  793.                 BaseUrl = "some url"

  794.             });

  795. 

  796.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  797. 

  798.             var result = await service.GetRefreshTokenByUserId(1);

  799. 

  800.             result.Should().BeEquivalentTo(_tokens[0]);

  801.         }

  802. 

  803.         [Fact]

  804.         public async Task RefreshTokenAsync_ShouldReturnError_IfValidatedTokenIsNull()

  805.         {

  806.             var databaseContext = await Helpers<User>.GetDatabaseContextWithRelation(_users, _tokens);

  807. 

  808.             var authSettings = Options.Create(new AuthorizationSettings 

  809.             {

  810.                 Secret = "ThIs I5 0uR S3cReT n0W!"

  811.             });

  812.             var frontEndSettings = Options.Create(new FrontEndSettings

  813.             {

  814.                 BaseUrl = "some url"

  815.             });

  816. 

  817.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  818. 

  819.             var result = await service.RefreshTokenAsync(new RefreshTokenRequestDto

  820.             {

  821.                 RefreshToken = "",

  822.                 Token = ""

  823.             });

  824. 

  825.             result.Should().BeEquivalentTo(new RefreshTokenResultDto 

  826.             { 

  827.                 Error = "Invalid token" 

  828.             });

  829.         }

  830. 

  831.         [Fact]

  832.         public async Task Expirt_RefreshTokenAsync_ShouldReturnError_IfValidatedTokenIsNull()

  833.         {

  834.             _mockUserManager.FindByNameAsync(Arg.Any<string>()).Returns(_users[4]);

  835.             _mockUserManager.CheckPasswordAsync(Arg.Any<User>(), Arg.Any<string>()).Returns(Task.FromResult(true));

  836.             var databaseContext = await Helpers<User>.GetDatabaseContextWithRelation(_users, _tokens);

  837. 

  838.             var authSettings = Options.Create(new AuthorizationSettings 

  839.             {

  840.                 Secret = "ThIs I5 0uR S3cReT n0W!"

  841.             });

  842. 

  843.             var frontEndSettings = Options.Create(new FrontEndSettings

  844.             {

  845.                 BaseUrl = "some url"

  846.             });

  847. 

  848.             var service = new AuthenticationService(authSettings, frontEndSettings, _mockUserManager, databaseContext, _emailer, _logger, _httpClient, _mapper);

  849.             

  850.             var result1 = await service.Authenticate(new Contracts.DTOs.Auth.AuthenticateRequestDto

  851.             {

  852.                 Username = _users[4].UserName,

  853.                 Password = "Nekasifra123!"

  854.             });

  855. 

  856.             var result = await service.RefreshTokenAsync(new RefreshTokenRequestDto

  857.             {

  858.                 RefreshToken = result1.Data.RefreshToken,

  859.                 Token = result1.Data.Token

  860.             });

  861. 

  862.             result.Should().BeEquivalentTo(new RefreshTokenResultDto 

  863.             { 

  864.                 Error = "This refresh token has expired" 

  865.             });

  866.         }

  867.     }

  868. }