bitwarden-server/test/Core.Test/OrganizationFeatures/OrganizationSubscriptionUpdate/UpgradeOrganizationPlanCommandTests.cs

using Bit.Core.Enums;
using Bit.Core.Exceptions;
using Bit.Core.Models.Business;
using Bit.Core.OrganizationFeatures.OrganizationSubscriptions;
using Bit.Core.Repositories;
using Bit.Core.SecretsManager.Repositories;
using Bit.Core.Services;
using Bit.Core.Test.AutoFixture.OrganizationFixtures;
using Bit.Core.Utilities;
using Bit.Test.Common.AutoFixture;
using Bit.Test.Common.AutoFixture.Attributes;
using NSubstitute;
using Xunit;
using Organization = Bit.Core.Entities.Organization;

namespace Bit.Core.Test.OrganizationFeatures.OrganizationSubscriptionUpdate;

[SutProviderCustomize]
public class UpgradeOrganizationPlanCommandTests
{
    [Theory, BitAutoData]
    public async Task UpgradePlan_OrganizationIsNull_Throws(Guid organizationId, OrganizationUpgrade upgrade,
            SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
    {
        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organizationId).Returns(Task.FromResult<Organization>(null));
        var exception = await Assert.ThrowsAsync<NotFoundException>(
            () => sutProvider.Sut.UpgradePlanAsync(organizationId, upgrade));
    }

    [Theory, BitAutoData]
    public async Task UpgradePlan_GatewayCustomIdIsNull_Throws(Organization organization, OrganizationUpgrade upgrade,
            SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
    {
        organization.GatewayCustomerId = string.Empty;
        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
        var exception = await Assert.ThrowsAsync<BadRequestException>(
            () => sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade));
        Assert.Contains("no payment method", exception.Message);
    }

    [Theory, BitAutoData]
    public async Task UpgradePlan_AlreadyInPlan_Throws(Organization organization, OrganizationUpgrade upgrade,
            SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
    {
        upgrade.Plan = organization.PlanType;
        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
        var exception = await Assert.ThrowsAsync<BadRequestException>(
            () => sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade));
        Assert.Contains("already on this plan", exception.Message);
    }

    [Theory, BitAutoData]
    public async Task UpgradePlan_SM_AlreadyInPlan_Throws(Organization organization, OrganizationUpgrade upgrade,
        SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
    {
        upgrade.Plan = organization.PlanType;
        upgrade.UseSecretsManager = true;
        upgrade.AdditionalSmSeats = 10;
        upgrade.AdditionalServiceAccounts = 10;
        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
        var exception = await Assert.ThrowsAsync<BadRequestException>(
            () => sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade));
        Assert.Contains("already on this plan", exception.Message);
    }

    [Theory, PaidOrganizationCustomize(CheckedPlanType = PlanType.Free), BitAutoData]
    public async Task UpgradePlan_UpgradeFromPaidPlan_Throws(Organization organization, OrganizationUpgrade upgrade,
            SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
    {
        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
        var exception = await Assert.ThrowsAsync<BadRequestException>(
            () => sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade));
        Assert.Contains("can only upgrade", exception.Message);
    }

    [Theory, PaidOrganizationCustomize(CheckedPlanType = PlanType.Free), BitAutoData]
    public async Task UpgradePlan_SM_UpgradeFromPaidPlan_Throws(Organization organization, OrganizationUpgrade upgrade,
        SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
    {
        upgrade.UseSecretsManager = true;
        upgrade.AdditionalSmSeats = 10;
        upgrade.AdditionalServiceAccounts = 10;
        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
        var exception = await Assert.ThrowsAsync<BadRequestException>(
            () => sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade));
        Assert.Contains("can only upgrade", exception.Message);
    }

    [Theory]
    [FreeOrganizationUpgradeCustomize, BitAutoData]
    public async Task UpgradePlan_Passes(Organization organization, OrganizationUpgrade upgrade,
            SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
    {
        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
        upgrade.AdditionalSmSeats = 10;
        upgrade.AdditionalSeats = 10;
        await sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade);
        await sutProvider.GetDependency<IOrganizationService>().Received(1).ReplaceAndUpdateCacheAsync(organization);
    }

    [Theory, FreeOrganizationUpgradeCustomize]
    [BitAutoData(PlanType.EnterpriseMonthly)]
    [BitAutoData(PlanType.EnterpriseAnnually)]
    [BitAutoData(PlanType.TeamsMonthly)]
    [BitAutoData(PlanType.TeamsAnnually)]
    public async Task UpgradePlan_SM_Passes(PlanType planType, Organization organization, OrganizationUpgrade upgrade,
        SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
    {
        upgrade.Plan = planType;

        var passwordManagerPlan = StaticStore.GetPasswordManagerPlan(upgrade.Plan);
        var secretsManagerPlan = StaticStore.GetSecretsManagerPlan(upgrade.Plan);

        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);

        upgrade.AdditionalSeats = 15;
        upgrade.AdditionalSmSeats = 10;
        upgrade.AdditionalServiceAccounts = 20;

        var result = await sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade);

        await sutProvider.GetDependency<IOrganizationService>().Received(1).ReplaceAndUpdateCacheAsync(
            Arg.Is<Organization>(o =>
                o.Seats == passwordManagerPlan.BaseSeats + upgrade.AdditionalSeats
                && o.SmSeats == secretsManagerPlan.BaseSeats + upgrade.AdditionalSmSeats
                && o.SmServiceAccounts == secretsManagerPlan.BaseServiceAccount + upgrade.AdditionalServiceAccounts));

        Assert.True(result.Item1);
        Assert.NotNull(result.Item2);
    }


    [Theory, FreeOrganizationUpgradeCustomize]
    [BitAutoData(PlanType.EnterpriseMonthly)]
    [BitAutoData(PlanType.EnterpriseAnnually)]
    [BitAutoData(PlanType.TeamsMonthly)]
    [BitAutoData(PlanType.TeamsAnnually)]
    public async Task UpgradePlan_SM_NotEnoughSmSeats_Throws(PlanType planType, Organization organization, OrganizationUpgrade upgrade,
        SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
    {
        upgrade.Plan = planType;
        upgrade.AdditionalSeats = 15;
        upgrade.AdditionalSmSeats = 1;
        upgrade.AdditionalServiceAccounts = 0;

        organization.SmSeats = 2;

        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
        sutProvider.GetDependency<IOrganizationUserRepository>()
            .GetOccupiedSmSeatCountByOrganizationIdAsync(organization.Id).Returns(2);

        var exception = await Assert.ThrowsAsync<BadRequestException>(() => sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade));
        Assert.Contains("Your organization currently has 2 Secrets Manager seats filled. Your new plan only has", exception.Message);

        sutProvider.GetDependency<IOrganizationService>().DidNotReceiveWithAnyArgs().ReplaceAndUpdateCacheAsync(default);
    }

    [Theory, FreeOrganizationUpgradeCustomize]
    [BitAutoData(PlanType.EnterpriseMonthly, 201)]
    [BitAutoData(PlanType.EnterpriseAnnually, 201)]
    [BitAutoData(PlanType.TeamsMonthly, 51)]
    [BitAutoData(PlanType.TeamsAnnually, 51)]
    public async Task UpgradePlan_SM_NotEnoughServiceAccounts_Throws(PlanType planType, int currentServiceAccounts,
     Organization organization, OrganizationUpgrade upgrade, SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
    {
        upgrade.Plan = planType;
        upgrade.AdditionalSeats = 15;
        upgrade.AdditionalSmSeats = 1;
        upgrade.AdditionalServiceAccounts = 0;

        organization.SmSeats = 1;
        organization.SmServiceAccounts = currentServiceAccounts;

        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
        sutProvider.GetDependency<IOrganizationUserRepository>()
            .GetOccupiedSmSeatCountByOrganizationIdAsync(organization.Id).Returns(1);
        sutProvider.GetDependency<IServiceAccountRepository>()
            .GetServiceAccountCountByOrganizationIdAsync(organization.Id).Returns(currentServiceAccounts);

        var exception = await Assert.ThrowsAsync<BadRequestException>(() => sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade));
        Assert.Contains($"Your organization currently has {currentServiceAccounts} service accounts. Your new plan only allows", exception.Message);

        sutProvider.GetDependency<IOrganizationService>().DidNotReceiveWithAnyArgs().ReplaceAndUpdateCacheAsync(default);
    }
}
-												[AC-1486] Feature: SM Billing (#3073)

* [AC-1423] Add AddonProduct and BitwardenProduct properties to BillingSubscriptionItem (#3037)

* [AC-1423] Add AddonProduct and BitwardenProduct properties to BillingSubscriptionItem

* [AC-1423] Add helper to StaticStore.cs to find a Plan by StripePlanId

* [AC-1423] Use the helper method to set SubscriptionInfo.BitwardenProduct

* Add SecretsManagerBilling feature flag to Constants

* [AC 1409] Secrets Manager Subscription Stripe Integration  (#3019)

* [AC-1418] Add missing SecretsManagerPlan property to OrganizationResponseModel (#3055)

* [AC 1460] Update Stripe Configuration (#3070)

* [AC 1410] Secrets Manager subscription adjustment back-end changes (#3036)

* Create UpgradeSecretsManagerSubscription command

* [AC-1495] Extract UpgradePlanAsync into a command (#3081)

* This is a pure lift & shift with no refactors

* [AC-1503] Fix Stripe integration on organization upgrade (#3084)

* Fix SM parameters not being passed to Stripe

* [AC-1504] Allow SM max autoscale limits to be disabled (#3085)

* [AC-1488] Changed SM Signup and Upgrade paths to set SmServiceAccounts to include the plan BaseServiceAccount (#3086)

* [AC-1510] Enable access to Secrets Manager to Organization owner for new Subscription (#3089)

* Revert changes to ReferenceEvent code (#3091)

This will be done in AC-1481

* Add UsePasswordManager to sync data (#3114)

* [AC-1522] Fix service account check on upgrading (#3111)

* [AC-1521] Address checkmarx security feedback (#3124)

* Reinstate target attribute but add noopener noreferrer

* Update date on migration script

---------

Co-authored-by: Shane Melton <smelton@bitwarden.com>
Co-authored-by: Thomas Rittson <trittson@bitwarden.com>
Co-authored-by: cyprain-okeke <108260115+cyprain-okeke@users.noreply.github.com>
Co-authored-by: Thomas Rittson <31796059+eliykat@users.noreply.github.com>
Co-authored-by: cyprain-okeke <cokeke@bitwarden.com>
Co-authored-by: Rui Tomé <108268980+r-tome@users.noreply.github.com>
Co-authored-by: Conner Turnbull <cturnbull@bitwarden.com>
Co-authored-by: Rui Tome <rtome@bitwarden.com>
											
										
										
											2023-07-25 00:05:05 +02:00
+								using Bit.Core.Enums;
 								using Bit.Core.Exceptions;
 								using Bit.Core.Models.Business;
 								using Bit.Core.OrganizationFeatures.OrganizationSubscriptions;
 								using Bit.Core.Repositories;
 								using Bit.Core.SecretsManager.Repositories;
 								using Bit.Core.Services;
 								using Bit.Core.Test.AutoFixture.OrganizationFixtures;
 								using Bit.Core.Utilities;
 								using Bit.Test.Common.AutoFixture;
 								using Bit.Test.Common.AutoFixture.Attributes;
 								using NSubstitute;
 								using Xunit;
 								using Organization = Bit.Core.Entities.Organization;
 								namespace Bit.Core.Test.OrganizationFeatures.OrganizationSubscriptionUpdate;
 								[SutProviderCustomize]
 								public class UpgradeOrganizationPlanCommandTests
 								{
 								    [Theory, BitAutoData]
 								    public async Task UpgradePlan_OrganizationIsNull_Throws(Guid organizationId, OrganizationUpgrade upgrade,
 								            SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
 								    {
 								        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organizationId).Returns(Task.FromResult<Organization>(null));
 								        var exception = await Assert.ThrowsAsync<NotFoundException>(
 								            () => sutProvider.Sut.UpgradePlanAsync(organizationId, upgrade));
 								    }
 								    [Theory, BitAutoData]
 								    public async Task UpgradePlan_GatewayCustomIdIsNull_Throws(Organization organization, OrganizationUpgrade upgrade,
 								            SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
 								    {
 								        organization.GatewayCustomerId = string.Empty;
 								        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
 								        var exception = await Assert.ThrowsAsync<BadRequestException>(
 								            () => sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade));
 								        Assert.Contains("no payment method", exception.Message);
 								    }
 								    [Theory, BitAutoData]
 								    public async Task UpgradePlan_AlreadyInPlan_Throws(Organization organization, OrganizationUpgrade upgrade,
 								            SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
 								    {
 								        upgrade.Plan = organization.PlanType;
 								        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
 								        var exception = await Assert.ThrowsAsync<BadRequestException>(
 								            () => sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade));
 								        Assert.Contains("already on this plan", exception.Message);
 								    }
 								    [Theory, BitAutoData]
 								    public async Task UpgradePlan_SM_AlreadyInPlan_Throws(Organization organization, OrganizationUpgrade upgrade,
 								        SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
 								    {
 								        upgrade.Plan = organization.PlanType;
 								        upgrade.UseSecretsManager = true;
 								        upgrade.AdditionalSmSeats = 10;
 								        upgrade.AdditionalServiceAccounts = 10;
 								        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
 								        var exception = await Assert.ThrowsAsync<BadRequestException>(
 								            () => sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade));
 								        Assert.Contains("already on this plan", exception.Message);
 								    }
 								    [Theory, PaidOrganizationCustomize(CheckedPlanType = PlanType.Free), BitAutoData]
 								    public async Task UpgradePlan_UpgradeFromPaidPlan_Throws(Organization organization, OrganizationUpgrade upgrade,
 								            SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
 								    {
 								        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
 								        var exception = await Assert.ThrowsAsync<BadRequestException>(
 								            () => sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade));
 								        Assert.Contains("can only upgrade", exception.Message);
 								    }
 								    [Theory, PaidOrganizationCustomize(CheckedPlanType = PlanType.Free), BitAutoData]
 								    public async Task UpgradePlan_SM_UpgradeFromPaidPlan_Throws(Organization organization, OrganizationUpgrade upgrade,
 								        SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
 								    {
 								        upgrade.UseSecretsManager = true;
 								        upgrade.AdditionalSmSeats = 10;
 								        upgrade.AdditionalServiceAccounts = 10;
 								        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
 								        var exception = await Assert.ThrowsAsync<BadRequestException>(
 								            () => sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade));
 								        Assert.Contains("can only upgrade", exception.Message);
 								    }
 								    [Theory]
 								    [FreeOrganizationUpgradeCustomize, BitAutoData]
 								    public async Task UpgradePlan_Passes(Organization organization, OrganizationUpgrade upgrade,
 								            SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
 								    {
 								        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
 								        upgrade.AdditionalSmSeats = 10;
 								        upgrade.AdditionalSeats = 10;
 								        await sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade);
 								        await sutProvider.GetDependency<IOrganizationService>().Received(1).ReplaceAndUpdateCacheAsync(organization);
 								    }
 								    [Theory, FreeOrganizationUpgradeCustomize]
 								    [BitAutoData(PlanType.EnterpriseMonthly)]
 								    [BitAutoData(PlanType.EnterpriseAnnually)]
 								    [BitAutoData(PlanType.TeamsMonthly)]
 								    [BitAutoData(PlanType.TeamsAnnually)]
 								    public async Task UpgradePlan_SM_Passes(PlanType planType, Organization organization, OrganizationUpgrade upgrade,
 								        SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
 								    {
 								        upgrade.Plan = planType;
 								        var passwordManagerPlan = StaticStore.GetPasswordManagerPlan(upgrade.Plan);
 								        var secretsManagerPlan = StaticStore.GetSecretsManagerPlan(upgrade.Plan);
 								        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
 								        upgrade.AdditionalSeats = 15;
 								        upgrade.AdditionalSmSeats = 10;
 								        upgrade.AdditionalServiceAccounts = 20;
 								        var result = await sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade);
 								        await sutProvider.GetDependency<IOrganizationService>().Received(1).ReplaceAndUpdateCacheAsync(
 								            Arg.Is<Organization>(o =>
 								                o.Seats == passwordManagerPlan.BaseSeats + upgrade.AdditionalSeats
 								                && o.SmSeats == secretsManagerPlan.BaseSeats + upgrade.AdditionalSmSeats
 								                && o.SmServiceAccounts == secretsManagerPlan.BaseServiceAccount + upgrade.AdditionalServiceAccounts));
 								        Assert.True(result.Item1);
 								        Assert.NotNull(result.Item2);
 								    }
 								    [Theory, FreeOrganizationUpgradeCustomize]
 								    [BitAutoData(PlanType.EnterpriseMonthly)]
 								    [BitAutoData(PlanType.EnterpriseAnnually)]
 								    [BitAutoData(PlanType.TeamsMonthly)]
 								    [BitAutoData(PlanType.TeamsAnnually)]
 								    public async Task UpgradePlan_SM_NotEnoughSmSeats_Throws(PlanType planType, Organization organization, OrganizationUpgrade upgrade,
 								        SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
 								    {
 								        upgrade.Plan = planType;
 								        upgrade.AdditionalSeats = 15;
 								        upgrade.AdditionalSmSeats = 1;
 								        upgrade.AdditionalServiceAccounts = 0;
 								        organization.SmSeats = 2;
 								        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
 								        sutProvider.GetDependency<IOrganizationUserRepository>()
 								            .GetOccupiedSmSeatCountByOrganizationIdAsync(organization.Id).Returns(2);
 								        var exception = await Assert.ThrowsAsync<BadRequestException>(() => sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade));
 								        Assert.Contains("Your organization currently has 2 Secrets Manager seats filled. Your new plan only has", exception.Message);
 								        sutProvider.GetDependency<IOrganizationService>().DidNotReceiveWithAnyArgs().ReplaceAndUpdateCacheAsync(default);
 								    }
 								    [Theory, FreeOrganizationUpgradeCustomize]
 								    [BitAutoData(PlanType.EnterpriseMonthly, 201)]
 								    [BitAutoData(PlanType.EnterpriseAnnually, 201)]
 								    [BitAutoData(PlanType.TeamsMonthly, 51)]
 								    [BitAutoData(PlanType.TeamsAnnually, 51)]
 								    public async Task UpgradePlan_SM_NotEnoughServiceAccounts_Throws(PlanType planType, int currentServiceAccounts,
 								     Organization organization, OrganizationUpgrade upgrade, SutProvider<UpgradeOrganizationPlanCommand> sutProvider)
 								    {
 								        upgrade.Plan = planType;
 								        upgrade.AdditionalSeats = 15;
 								        upgrade.AdditionalSmSeats = 1;
 								        upgrade.AdditionalServiceAccounts = 0;
 								        organization.SmSeats = 1;
 								        organization.SmServiceAccounts = currentServiceAccounts;
 								        sutProvider.GetDependency<IOrganizationRepository>().GetByIdAsync(organization.Id).Returns(organization);
 								        sutProvider.GetDependency<IOrganizationUserRepository>()
 								            .GetOccupiedSmSeatCountByOrganizationIdAsync(organization.Id).Returns(1);
 								        sutProvider.GetDependency<IServiceAccountRepository>()
 								            .GetServiceAccountCountByOrganizationIdAsync(organization.Id).Returns(currentServiceAccounts);
 								        var exception = await Assert.ThrowsAsync<BadRequestException>(() => sutProvider.Sut.UpgradePlanAsync(organization.Id, upgrade));
 								        Assert.Contains($"Your organization currently has {currentServiceAccounts} service accounts. Your new plan only allows", exception.Message);
 								        sutProvider.GetDependency<IOrganizationService>().DidNotReceiveWithAnyArgs().ReplaceAndUpdateCacheAsync(default);
 								    }
 								}