blob: 3781a81630ede29bd354792e2a2cf0d864da8aae (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
|
using FluentAssertions;
using Microsoft.AspNetCore.Mvc.Testing;
using System.Net;
using System.Net.Http.Headers;
using System.Net.Mime;
using System.Threading.Tasks;
using Timeline.Models.Http;
using Timeline.Tests.Helpers;
using Xunit;
namespace Timeline.Tests.IntegratedTests
{
public class UserDetailTest : IntegratedTestBase
{
public UserDetailTest(WebApplicationFactory<Startup> factory)
: base(factory)
{
}
[Fact]
public async Task PermissionTest()
{
{ // unauthorize
using var client = await CreateClientWithNoAuth();
{ // GET
var res = await client.GetAsync($"users/{MockUser.User.Username}/nickname");
res.Should().HaveStatusCode(HttpStatusCode.OK);
}
{ // PUT
var res = await client.PutStringAsync($"users/{MockUser.User.Username}/nickname", "aaa");
res.Should().HaveStatusCode(HttpStatusCode.Unauthorized);
}
{ // DELETE
var res = await client.DeleteAsync($"users/{MockUser.User.Username}/nickname");
res.Should().HaveStatusCode(HttpStatusCode.Unauthorized);
}
}
{ // user
using var client = await CreateClientAsUser();
{ // GET
var res = await client.GetAsync($"users/{MockUser.User.Username}/nickname");
res.Should().HaveStatusCode(HttpStatusCode.OK);
}
{ // PUT self
var res = await client.PutStringAsync($"users/{MockUser.User.Username}/nickname", "aaa");
res.Should().HaveStatusCode(HttpStatusCode.OK);
}
{ // PUT other
var res = await client.PutStringAsync($"users/{MockUser.Admin.Username}/nickname", "aaa");
res.Should().HaveStatusCode(HttpStatusCode.Forbidden);
}
{ // DELETE self
var res = await client.DeleteAsync($"users/{MockUser.User.Username}/nickname");
res.Should().HaveStatusCode(HttpStatusCode.OK);
}
{ // DELETE other
var res = await client.DeleteAsync($"users/{MockUser.Admin.Username}/nickname");
res.Should().HaveStatusCode(HttpStatusCode.Forbidden);
}
}
{ // user
using var client = await CreateClientAsAdmin();
{ // PUT other
var res = await client.PutStringAsync($"users/{MockUser.User.Username}/nickname", "aaa");
res.Should().HaveStatusCode(HttpStatusCode.OK);
}
{ // DELETE other
var res = await client.DeleteAsync($"users/{MockUser.User.Username}/nickname");
res.Should().HaveStatusCode(HttpStatusCode.OK);
}
}
}
[Fact]
public async Task FunctionTest()
{
var url = $"users/{MockUser.User.Username}/nickname";
var userNotExistUrl = "users/usernotexist/nickname";
{
using var client = await CreateClientAsUser();
{
var res = await client.GetAsync(userNotExistUrl);
res.Should().HaveStatusCode(HttpStatusCode.NotFound)
.And.HaveCommonBody()
.Which.Code.Should().Be(ErrorCodes.UserCommon.NotExist);
}
{
var res = await client.GetAsync(url);
res.Should().HaveStatusCode(HttpStatusCode.OK);
res.Content.Headers.ContentType.Should().Be(new MediaTypeHeaderValue(MediaTypeNames.Text.Plain) { CharSet = "utf-8" });
var body = await res.Content.ReadAsStringAsync();
body.Should().Be(MockUser.User.Username);
}
{
var res = await client.PutStringAsync(url, "");
res.Should().BeInvalidModel();
}
{
var res = await client.PutStringAsync(url, new string('a', 11));
res.Should().BeInvalidModel();
}
var nickname1 = "nnn";
var nickname2 = "nn2";
{
var res = await client.PutStringAsync(url, nickname1);
res.Should().HaveStatusCode(HttpStatusCode.OK);
(await client.GetStringAsync(url)).Should().Be(nickname1);
}
{
var res = await client.PutStringAsync(url, nickname2);
res.Should().HaveStatusCode(HttpStatusCode.OK);
(await client.GetStringAsync(url)).Should().Be(nickname2);
}
{
var res = await client.DeleteAsync(url);
res.Should().HaveStatusCode(HttpStatusCode.OK);
(await client.GetStringAsync(url)).Should().Be(MockUser.User.Username);
}
{
var res = await client.DeleteAsync(url);
res.Should().HaveStatusCode(HttpStatusCode.OK);
}
}
{
using var client = await CreateClientAsAdmin();
{
var res = await client.PutStringAsync(userNotExistUrl, "aaa");
res.Should().HaveStatusCode(HttpStatusCode.BadRequest)
.And.HaveCommonBody()
.Which.Code.Should().Be(ErrorCodes.UserCommon.NotExist);
}
{
var res = await client.DeleteAsync(userNotExistUrl);
res.Should().HaveStatusCode(HttpStatusCode.BadRequest)
.And.HaveCommonBody()
.Which.Code.Should().Be(ErrorCodes.UserCommon.NotExist);
}
var nickname = "nnn";
{
var res = await client.PutStringAsync(url, nickname);
res.Should().HaveStatusCode(HttpStatusCode.OK);
(await client.GetStringAsync(url)).Should().Be(nickname);
}
{
var res = await client.DeleteAsync(url);
res.Should().HaveStatusCode(HttpStatusCode.OK);
(await client.GetStringAsync(url)).Should().Be(MockUser.User.Username);
}
}
}
}
}
|
