bitwarden-server/test/Api.Test/SecretsManager/Controllers/ProjectsControllerTests.cs

using Bit.Api.SecretsManager.Controllers;
using Bit.Api.SecretsManager.Models.Request;
using Bit.Api.Test.SecretsManager.Enums;
using Bit.Core.Context;
using Bit.Core.Enums;
using Bit.Core.Exceptions;
using Bit.Core.SecretsManager.Commands.Projects.Interfaces;
using Bit.Core.SecretsManager.Entities;
using Bit.Core.SecretsManager.Repositories;
using Bit.Core.Services;
using Bit.Core.Test.SecretsManager.AutoFixture.ProjectsFixture;
using Bit.Test.Common.AutoFixture;
using Bit.Test.Common.AutoFixture.Attributes;
using Bit.Test.Common.Helpers;
using NSubstitute;
using Xunit;

namespace Bit.Api.Test.SecretsManager.Controllers;

[ControllerCustomize(typeof(ProjectsController))]
[SutProviderCustomize]
[ProjectCustomize]
[JsonDocumentCustomize]
public class ProjectsControllerTests
{
    private static void SetupAdmin(SutProvider<ProjectsController> sutProvider, Guid organizationId)
    {
        sutProvider.GetDependency<ICurrentContext>().AccessSecretsManager(default).ReturnsForAnyArgs(true);
        sutProvider.GetDependency<IUserService>().GetProperUserId(default).ReturnsForAnyArgs(Guid.NewGuid());
        sutProvider.GetDependency<ICurrentContext>().OrganizationAdmin(organizationId).Returns(true);
    }

    private static void SetupUserWithPermission(SutProvider<ProjectsController> sutProvider, Guid organizationId)
    {
        sutProvider.GetDependency<ICurrentContext>().AccessSecretsManager(default).ReturnsForAnyArgs(true);
        sutProvider.GetDependency<IUserService>().GetProperUserId(default).ReturnsForAnyArgs(Guid.NewGuid());
        sutProvider.GetDependency<ICurrentContext>().OrganizationAdmin(organizationId).Returns(false);
        sutProvider.GetDependency<ICurrentContext>().OrganizationUser(default).ReturnsForAnyArgs(true);
    }

    [Theory]
    [BitAutoData]
    public async void ListByOrganization_SmNotEnabled_Throws(SutProvider<ProjectsController> sutProvider, Guid data)
    {
        sutProvider.GetDependency<ICurrentContext>().AccessSecretsManager(data).Returns(false);

        await Assert.ThrowsAsync<NotFoundException>(() => sutProvider.Sut.ListByOrganizationAsync(data));
    }

    [Theory]
    [BitAutoData(PermissionType.RunAsAdmin)]
    [BitAutoData(PermissionType.RunAsUserWithPermission)]
    public async void ListByOrganization_ReturnsEmptyList(PermissionType permissionType,
        SutProvider<ProjectsController> sutProvider, Guid data)
    {
        switch (permissionType)
        {
            case PermissionType.RunAsAdmin:
                SetupAdmin(sutProvider, data);
                break;
            case PermissionType.RunAsUserWithPermission:
                SetupUserWithPermission(sutProvider, data);
                break;
        }

        var result = await sutProvider.Sut.ListByOrganizationAsync(data);

        await sutProvider.GetDependency<IProjectRepository>().Received(1)
            .GetManyByOrganizationIdAsync(Arg.Is(AssertHelper.AssertPropertyEqual(data)), Arg.Any<Guid>(),
                Arg.Any<AccessClientType>());
        Assert.Empty(result.Data);
    }

    [Theory]
    [BitAutoData(PermissionType.RunAsAdmin)]
    [BitAutoData(PermissionType.RunAsUserWithPermission)]
    public async void ListByOrganization_Success(PermissionType permissionType,
        SutProvider<ProjectsController> sutProvider, Guid data, Project mockProject)
    {
        switch (permissionType)
        {
            case PermissionType.RunAsAdmin:
                SetupAdmin(sutProvider, data);
                break;
            case PermissionType.RunAsUserWithPermission:
                SetupUserWithPermission(sutProvider, data);
                break;
        }

        sutProvider.GetDependency<IProjectRepository>().GetManyByOrganizationIdAsync(default, default, default)
            .ReturnsForAnyArgs(new List<Project> { mockProject });

        var result = await sutProvider.Sut.ListByOrganizationAsync(data);

        await sutProvider.GetDependency<IProjectRepository>().Received(1)
            .GetManyByOrganizationIdAsync(Arg.Is(AssertHelper.AssertPropertyEqual(data)), Arg.Any<Guid>(),
                Arg.Any<AccessClientType>());
        Assert.NotEmpty(result.Data);
        Assert.Single(result.Data);
    }

    [Theory]
    [BitAutoData]
    public async void Create_SmNotEnabled_Throws(SutProvider<ProjectsController> sutProvider, Guid orgId,
        ProjectCreateRequestModel data)
    {
        sutProvider.GetDependency<ICurrentContext>().AccessSecretsManager(orgId).Returns(false);

        await Assert.ThrowsAsync<NotFoundException>(() => sutProvider.Sut.CreateAsync(orgId, data));
        await sutProvider.GetDependency<ICreateProjectCommand>().DidNotReceiveWithAnyArgs()
            .CreateAsync(Arg.Any<Project>(), Arg.Any<Guid>());
    }

    [Theory]
    [BitAutoData(PermissionType.RunAsAdmin)]
    [BitAutoData(PermissionType.RunAsUserWithPermission)]
    public async void Create_Success(PermissionType permissionType, SutProvider<ProjectsController> sutProvider,
        Guid orgId, ProjectCreateRequestModel data)
    {
        switch (permissionType)
        {
            case PermissionType.RunAsAdmin:
                SetupAdmin(sutProvider, orgId);
                break;
            case PermissionType.RunAsUserWithPermission:
                SetupUserWithPermission(sutProvider, orgId);
                break;
        }

        var resultProject = data.ToProject(orgId);
        sutProvider.GetDependency<ICreateProjectCommand>().CreateAsync(default, default)
            .ReturnsForAnyArgs(resultProject);

        await sutProvider.Sut.CreateAsync(orgId, data);

        await sutProvider.GetDependency<ICreateProjectCommand>().Received(1)
            .CreateAsync(Arg.Any<Project>(), Arg.Any<Guid>());
    }

    [Theory]
    [BitAutoData(PermissionType.RunAsAdmin)]
    [BitAutoData(PermissionType.RunAsUserWithPermission)]
    public async void Update_Success(PermissionType permissionType, SutProvider<ProjectsController> sutProvider,
        Guid orgId, ProjectUpdateRequestModel data)
    {
        switch (permissionType)
        {
            case PermissionType.RunAsAdmin:
                SetupAdmin(sutProvider, orgId);
                break;
            case PermissionType.RunAsUserWithPermission:
                SetupUserWithPermission(sutProvider, orgId);
                break;
        }

        var resultProject = data.ToProject(orgId);
        sutProvider.GetDependency<IUpdateProjectCommand>().UpdateAsync(default, default)
            .ReturnsForAnyArgs(resultProject);

        await sutProvider.Sut.UpdateAsync(orgId, data);

        await sutProvider.GetDependency<IUpdateProjectCommand>().Received(1)
            .UpdateAsync(Arg.Any<Project>(), Arg.Any<Guid>());
    }

    [Theory]
    [BitAutoData]
    public async void Get_SmNotEnabled_Throws(SutProvider<ProjectsController> sutProvider, Guid data, Guid orgId)
    {
        SetupAdmin(sutProvider, orgId);
        sutProvider.GetDependency<ICurrentContext>().AccessSecretsManager(orgId).Returns(false);
        await Assert.ThrowsAsync<NotFoundException>(() => sutProvider.Sut.GetAsync(data));
    }

    [Theory]
    [BitAutoData]
    public async void Get_ThrowsNotFound(SutProvider<ProjectsController> sutProvider, Guid data, Guid orgId)
    {
        SetupAdmin(sutProvider, orgId);
        await Assert.ThrowsAsync<NotFoundException>(() => sutProvider.Sut.GetAsync(data));
    }

    [Theory]
    [BitAutoData(PermissionType.RunAsAdmin)]
    [BitAutoData(PermissionType.RunAsUserWithPermission)]
    public async void Get_Success(PermissionType permissionType, SutProvider<ProjectsController> sutProvider,
        Guid orgId, Guid data)
    {
        switch (permissionType)
        {
            case PermissionType.RunAsAdmin:
                SetupAdmin(sutProvider, orgId);
                break;
            case PermissionType.RunAsUserWithPermission:
                SetupUserWithPermission(sutProvider, orgId);
                sutProvider.GetDependency<IProjectRepository>()
                    .UserHasReadAccessToProject(Arg.Is(data), Arg.Any<Guid>()).ReturnsForAnyArgs(true);
                break;
        }

        sutProvider.GetDependency<IProjectRepository>().GetByIdAsync(Arg.Is(data))
            .ReturnsForAnyArgs(new Project { Id = data, OrganizationId = orgId });

        sutProvider.GetDependency<IProjectRepository>().AccessToProjectAsync(default, default, default)
            .ReturnsForAnyArgs((true, false));

        await sutProvider.Sut.GetAsync(data);

        await sutProvider.GetDependency<IProjectRepository>().Received(1)
            .GetByIdAsync(Arg.Is(data));
    }

    [Theory]
    [BitAutoData]
    public async void Get_UserWithoutPermission_Throws(SutProvider<ProjectsController> sutProvider, Guid orgId,
        Guid data)
    {
        SetupUserWithPermission(sutProvider, orgId);
        sutProvider.GetDependency<IProjectRepository>().UserHasReadAccessToProject(Arg.Is(data), Arg.Any<Guid>())
            .ReturnsForAnyArgs(false);

        sutProvider.GetDependency<IProjectRepository>().GetByIdAsync(Arg.Is(data))
            .ReturnsForAnyArgs(new Project { Id = data, OrganizationId = orgId });

        await Assert.ThrowsAsync<NotFoundException>(() => sutProvider.Sut.GetAsync(data));
    }

    [Theory]
    [BitAutoData]
    public async void BulkDeleteProjects_Success(SutProvider<ProjectsController> sutProvider, List<Project> data)
    {
        sutProvider.GetDependency<IUserService>().GetProperUserId(default).ReturnsForAnyArgs(Guid.NewGuid());
        var ids = data.Select(project => project.Id).ToList();
        var mockResult = data.Select(project => new Tuple<Project, string>(project, "")).ToList();

        sutProvider.GetDependency<IDeleteProjectCommand>().DeleteProjects(ids, default).ReturnsForAnyArgs(mockResult);

        var results = await sutProvider.Sut.BulkDeleteAsync(ids);
        await sutProvider.GetDependency<IDeleteProjectCommand>().Received(1)
            .DeleteProjects(Arg.Is(ids), Arg.Any<Guid>());
        Assert.Equal(data.Count, results.Data.Count());
    }

    [Theory]
    [BitAutoData]
    public async void BulkDeleteProjects_NoGuids_ThrowsArgumentNullException(
        SutProvider<ProjectsController> sutProvider)
    {
        sutProvider.GetDependency<IUserService>().GetProperUserId(default).ReturnsForAnyArgs(Guid.NewGuid());
        await Assert.ThrowsAsync<ArgumentNullException>(() => sutProvider.Sut.BulkDeleteAsync(new List<Guid>()));
    }
}
-												[SM-460] Isolate SecretsManager files (#2616)

Move SecretsManager files to directories called SecretsManager and add CodeOwners
											
										
										
											2023-01-24 19:57:28 +01:00
+								using Bit.Api.SecretsManager.Controllers;
-												[SM-485] Add access policy on project creation (#2678)

* Add bootstrap access policy on create

* Update project integration tests
											
										
										
											2023-02-09 15:58:05 +01:00
+								using Bit.Api.SecretsManager.Models.Request;
 								using Bit.Api.Test.SecretsManager.Enums;
 								using Bit.Core.Context;
 								using Bit.Core.Enums;
 								using Bit.Core.Exceptions;
-												[SM-460] Isolate SecretsManager files (#2616)

Move SecretsManager files to directories called SecretsManager and add CodeOwners
											
										
										
											2023-01-24 19:57:28 +01:00
+								using Bit.Core.SecretsManager.Commands.Projects.Interfaces;
 								using Bit.Core.SecretsManager.Entities;
-												[SM-485] Add access policy on project creation (#2678)

* Add bootstrap access policy on create

* Update project integration tests
											
										
										
											2023-02-09 15:58:05 +01:00
+								using Bit.Core.SecretsManager.Repositories;
-												[SM-380] Access checks for listing projects (#2496)

* Add project access checks for listing
											
										
										
											2023-01-20 16:33:11 +01:00
+								using Bit.Core.Services;
-												[SM-460] Isolate SecretsManager files (#2616)

Move SecretsManager files to directories called SecretsManager and add CodeOwners
											
										
										
											2023-01-24 19:57:28 +01:00
+								using Bit.Core.Test.SecretsManager.AutoFixture.ProjectsFixture;
-												[SM-394] Secrets Manager (#2164)

Long lived feature branch for Secrets Manager

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Co-authored-by: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com>
Co-authored-by: CarleyDiaz-Bitwarden <103955722+CarleyDiaz-Bitwarden@users.noreply.github.com>
Co-authored-by: Thomas Avery <tavery@bitwarden.com>
Co-authored-by: Colton Hurst <colton@coltonhurst.com>
											
										
										
											2023-01-13 15:02:53 +01:00
+								using Bit.Test.Common.AutoFixture;
 								using Bit.Test.Common.AutoFixture.Attributes;
-												[SM-485] Add access policy on project creation (#2678)

* Add bootstrap access policy on create

* Update project integration tests
											
										
										
											2023-02-09 15:58:05 +01:00
+								using Bit.Test.Common.Helpers;
-												[SM-394] Secrets Manager (#2164)

Long lived feature branch for Secrets Manager

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Co-authored-by: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com>
Co-authored-by: CarleyDiaz-Bitwarden <103955722+CarleyDiaz-Bitwarden@users.noreply.github.com>
Co-authored-by: Thomas Avery <tavery@bitwarden.com>
Co-authored-by: Colton Hurst <colton@coltonhurst.com>
											
										
										
											2023-01-13 15:02:53 +01:00
+								using NSubstitute;
 								using Xunit;
-												[SM-460] Isolate SecretsManager files (#2616)

Move SecretsManager files to directories called SecretsManager and add CodeOwners
											
										
										
											2023-01-24 19:57:28 +01:00
+								namespace Bit.Api.Test.SecretsManager.Controllers;
-												[SM-394] Secrets Manager (#2164)

Long lived feature branch for Secrets Manager

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Co-authored-by: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com>
Co-authored-by: CarleyDiaz-Bitwarden <103955722+CarleyDiaz-Bitwarden@users.noreply.github.com>
Co-authored-by: Thomas Avery <tavery@bitwarden.com>
Co-authored-by: Colton Hurst <colton@coltonhurst.com>
											
										
										
											2023-01-13 15:02:53 +01:00
 								[ControllerCustomize(typeof(ProjectsController))]
 								[SutProviderCustomize]
 								[ProjectCustomize]
 								[JsonDocumentCustomize]
 								public class ProjectsControllerTests
 								{
-												[SM-485] Add access policy on project creation (#2678)

* Add bootstrap access policy on create

* Update project integration tests
											
										
										
											2023-02-09 15:58:05 +01:00
+								    private static void SetupAdmin(SutProvider<ProjectsController> sutProvider, Guid organizationId)
 								    {
 								        sutProvider.GetDependency<ICurrentContext>().AccessSecretsManager(default).ReturnsForAnyArgs(true);
 								        sutProvider.GetDependency<IUserService>().GetProperUserId(default).ReturnsForAnyArgs(Guid.NewGuid());
 								        sutProvider.GetDependency<ICurrentContext>().OrganizationAdmin(organizationId).Returns(true);
 								    }
 								    private static void SetupUserWithPermission(SutProvider<ProjectsController> sutProvider, Guid organizationId)
 								    {
 								        sutProvider.GetDependency<ICurrentContext>().AccessSecretsManager(default).ReturnsForAnyArgs(true);
 								        sutProvider.GetDependency<IUserService>().GetProperUserId(default).ReturnsForAnyArgs(Guid.NewGuid());
 								        sutProvider.GetDependency<ICurrentContext>().OrganizationAdmin(organizationId).Returns(false);
 								        sutProvider.GetDependency<ICurrentContext>().OrganizationUser(default).ReturnsForAnyArgs(true);
 								    }
-												[SM-394] Secrets Manager (#2164)

Long lived feature branch for Secrets Manager

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Co-authored-by: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com>
Co-authored-by: CarleyDiaz-Bitwarden <103955722+CarleyDiaz-Bitwarden@users.noreply.github.com>
Co-authored-by: Thomas Avery <tavery@bitwarden.com>
Co-authored-by: Colton Hurst <colton@coltonhurst.com>
											
										
										
											2023-01-13 15:02:53 +01:00
+								    [Theory]
 								    [BitAutoData]
-												[SM-485] Add access policy on project creation (#2678)

* Add bootstrap access policy on create

* Update project integration tests
											
										
										
											2023-02-09 15:58:05 +01:00
+								    public async void ListByOrganization_SmNotEnabled_Throws(SutProvider<ProjectsController> sutProvider, Guid data)
-												[SM-394] Secrets Manager (#2164)

Long lived feature branch for Secrets Manager

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Co-authored-by: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com>
Co-authored-by: CarleyDiaz-Bitwarden <103955722+CarleyDiaz-Bitwarden@users.noreply.github.com>
Co-authored-by: Thomas Avery <tavery@bitwarden.com>
Co-authored-by: Colton Hurst <colton@coltonhurst.com>
											
										
										
											2023-01-13 15:02:53 +01:00
+								    {
-												[SM-485] Add access policy on project creation (#2678)

* Add bootstrap access policy on create

* Update project integration tests
											
										
										
											2023-02-09 15:58:05 +01:00
+								        sutProvider.GetDependency<ICurrentContext>().AccessSecretsManager(data).Returns(false);
 								        await Assert.ThrowsAsync<NotFoundException>(() => sutProvider.Sut.ListByOrganizationAsync(data));
 								    }
 								    [Theory]
 								    [BitAutoData(PermissionType.RunAsAdmin)]
 								    [BitAutoData(PermissionType.RunAsUserWithPermission)]
 								    public async void ListByOrganization_ReturnsEmptyList(PermissionType permissionType,
 								        SutProvider<ProjectsController> sutProvider, Guid data)
 								    {
 								        switch (permissionType)
 								        {
 								            case PermissionType.RunAsAdmin:
 								                SetupAdmin(sutProvider, data);
 								                break;
 								            case PermissionType.RunAsUserWithPermission:
 								                SetupUserWithPermission(sutProvider, data);
 								                break;
 								        }
 								        var result = await sutProvider.Sut.ListByOrganizationAsync(data);
 								        await sutProvider.GetDependency<IProjectRepository>().Received(1)
 								            .GetManyByOrganizationIdAsync(Arg.Is(AssertHelper.AssertPropertyEqual(data)), Arg.Any<Guid>(),
 								                Arg.Any<AccessClientType>());
 								        Assert.Empty(result.Data);
 								    }
 								    [Theory]
 								    [BitAutoData(PermissionType.RunAsAdmin)]
 								    [BitAutoData(PermissionType.RunAsUserWithPermission)]
 								    public async void ListByOrganization_Success(PermissionType permissionType,
 								        SutProvider<ProjectsController> sutProvider, Guid data, Project mockProject)
 								    {
 								        switch (permissionType)
 								        {
 								            case PermissionType.RunAsAdmin:
 								                SetupAdmin(sutProvider, data);
 								                break;
 								            case PermissionType.RunAsUserWithPermission:
 								                SetupUserWithPermission(sutProvider, data);
 								                break;
 								        }
 								        sutProvider.GetDependency<IProjectRepository>().GetManyByOrganizationIdAsync(default, default, default)
 								            .ReturnsForAnyArgs(new List<Project> { mockProject });
 								        var result = await sutProvider.Sut.ListByOrganizationAsync(data);
 								        await sutProvider.GetDependency<IProjectRepository>().Received(1)
 								            .GetManyByOrganizationIdAsync(Arg.Is(AssertHelper.AssertPropertyEqual(data)), Arg.Any<Guid>(),
 								                Arg.Any<AccessClientType>());
 								        Assert.NotEmpty(result.Data);
 								        Assert.Single(result.Data);
 								    }
 								    [Theory]
 								    [BitAutoData]
 								    public async void Create_SmNotEnabled_Throws(SutProvider<ProjectsController> sutProvider, Guid orgId,
 								        ProjectCreateRequestModel data)
 								    {
 								        sutProvider.GetDependency<ICurrentContext>().AccessSecretsManager(orgId).Returns(false);
 								        await Assert.ThrowsAsync<NotFoundException>(() => sutProvider.Sut.CreateAsync(orgId, data));
 								        await sutProvider.GetDependency<ICreateProjectCommand>().DidNotReceiveWithAnyArgs()
 								            .CreateAsync(Arg.Any<Project>(), Arg.Any<Guid>());
 								    }
 								    [Theory]
 								    [BitAutoData(PermissionType.RunAsAdmin)]
 								    [BitAutoData(PermissionType.RunAsUserWithPermission)]
 								    public async void Create_Success(PermissionType permissionType, SutProvider<ProjectsController> sutProvider,
 								        Guid orgId, ProjectCreateRequestModel data)
 								    {
 								        switch (permissionType)
 								        {
 								            case PermissionType.RunAsAdmin:
 								                SetupAdmin(sutProvider, orgId);
 								                break;
 								            case PermissionType.RunAsUserWithPermission:
 								                SetupUserWithPermission(sutProvider, orgId);
 								                break;
 								        }
 								        var resultProject = data.ToProject(orgId);
 								        sutProvider.GetDependency<ICreateProjectCommand>().CreateAsync(default, default)
 								            .ReturnsForAnyArgs(resultProject);
 								        await sutProvider.Sut.CreateAsync(orgId, data);
 								        await sutProvider.GetDependency<ICreateProjectCommand>().Received(1)
 								            .CreateAsync(Arg.Any<Project>(), Arg.Any<Guid>());
 								    }
 								    [Theory]
 								    [BitAutoData(PermissionType.RunAsAdmin)]
 								    [BitAutoData(PermissionType.RunAsUserWithPermission)]
 								    public async void Update_Success(PermissionType permissionType, SutProvider<ProjectsController> sutProvider,
 								        Guid orgId, ProjectUpdateRequestModel data)
 								    {
 								        switch (permissionType)
-												[SM-394] Secrets Manager (#2164)

Long lived feature branch for Secrets Manager

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Co-authored-by: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com>
Co-authored-by: CarleyDiaz-Bitwarden <103955722+CarleyDiaz-Bitwarden@users.noreply.github.com>
Co-authored-by: Thomas Avery <tavery@bitwarden.com>
Co-authored-by: Colton Hurst <colton@coltonhurst.com>
											
										
										
											2023-01-13 15:02:53 +01:00
+								        {
-												[SM-485] Add access policy on project creation (#2678)

* Add bootstrap access policy on create

* Update project integration tests
											
										
										
											2023-02-09 15:58:05 +01:00
+								            case PermissionType.RunAsAdmin:
 								                SetupAdmin(sutProvider, orgId);
 								                break;
 								            case PermissionType.RunAsUserWithPermission:
 								                SetupUserWithPermission(sutProvider, orgId);
 								                break;
-												[SM-394] Secrets Manager (#2164)

Long lived feature branch for Secrets Manager

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Co-authored-by: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com>
Co-authored-by: CarleyDiaz-Bitwarden <103955722+CarleyDiaz-Bitwarden@users.noreply.github.com>
Co-authored-by: Thomas Avery <tavery@bitwarden.com>
Co-authored-by: Colton Hurst <colton@coltonhurst.com>
											
										
										
											2023-01-13 15:02:53 +01:00
+								        }
-												[SM-485] Add access policy on project creation (#2678)

* Add bootstrap access policy on create

* Update project integration tests
											
										
										
											2023-02-09 15:58:05 +01:00
 								        var resultProject = data.ToProject(orgId);
 								        sutProvider.GetDependency<IUpdateProjectCommand>().UpdateAsync(default, default)
 								            .ReturnsForAnyArgs(resultProject);
 								        await sutProvider.Sut.UpdateAsync(orgId, data);
 								        await sutProvider.GetDependency<IUpdateProjectCommand>().Received(1)
 								            .UpdateAsync(Arg.Any<Project>(), Arg.Any<Guid>());
 								    }
 								    [Theory]
 								    [BitAutoData]
-												[SM-572] Modify project endpoint to return current user's permission (#2752)

* Add endpoints to check current user's permission

* Swap to adding current user permission onto GET

* Cleanup DI

* Add ProjectPermissionDetails DTO and query

* code review updates

* Remove assert recent for longer running creates
											
										
										
											2023-03-02 16:02:42 +01:00
+								    public async void Get_SmNotEnabled_Throws(SutProvider<ProjectsController> sutProvider, Guid data, Guid orgId)
-												[SM-485] Add access policy on project creation (#2678)

* Add bootstrap access policy on create

* Update project integration tests
											
										
										
											2023-02-09 15:58:05 +01:00
+								    {
-												[SM-572] Modify project endpoint to return current user's permission (#2752)

* Add endpoints to check current user's permission

* Swap to adding current user permission onto GET

* Cleanup DI

* Add ProjectPermissionDetails DTO and query

* code review updates

* Remove assert recent for longer running creates
											
										
										
											2023-03-02 16:02:42 +01:00
+								        SetupAdmin(sutProvider, orgId);
 								        sutProvider.GetDependency<ICurrentContext>().AccessSecretsManager(orgId).Returns(false);
-												[SM-485] Add access policy on project creation (#2678)

* Add bootstrap access policy on create

* Update project integration tests
											
										
										
											2023-02-09 15:58:05 +01:00
+								        await Assert.ThrowsAsync<NotFoundException>(() => sutProvider.Sut.GetAsync(data));
 								    }
 								    [Theory]
 								    [BitAutoData]
-												[SM-572] Modify project endpoint to return current user's permission (#2752)

* Add endpoints to check current user's permission

* Swap to adding current user permission onto GET

* Cleanup DI

* Add ProjectPermissionDetails DTO and query

* code review updates

* Remove assert recent for longer running creates
											
										
										
											2023-03-02 16:02:42 +01:00
+								    public async void Get_ThrowsNotFound(SutProvider<ProjectsController> sutProvider, Guid data, Guid orgId)
-												[SM-485] Add access policy on project creation (#2678)

* Add bootstrap access policy on create

* Update project integration tests
											
										
										
											2023-02-09 15:58:05 +01:00
+								    {
-												[SM-572] Modify project endpoint to return current user's permission (#2752)

* Add endpoints to check current user's permission

* Swap to adding current user permission onto GET

* Cleanup DI

* Add ProjectPermissionDetails DTO and query

* code review updates

* Remove assert recent for longer running creates
											
										
										
											2023-03-02 16:02:42 +01:00
+								        SetupAdmin(sutProvider, orgId);
-												[SM-485] Add access policy on project creation (#2678)

* Add bootstrap access policy on create

* Update project integration tests
											
										
										
											2023-02-09 15:58:05 +01:00
+								        await Assert.ThrowsAsync<NotFoundException>(() => sutProvider.Sut.GetAsync(data));
 								    }
 								    [Theory]
 								    [BitAutoData(PermissionType.RunAsAdmin)]
 								    [BitAutoData(PermissionType.RunAsUserWithPermission)]
 								    public async void Get_Success(PermissionType permissionType, SutProvider<ProjectsController> sutProvider,
 								        Guid orgId, Guid data)
 								    {
 								        switch (permissionType)
 								        {
 								            case PermissionType.RunAsAdmin:
 								                SetupAdmin(sutProvider, orgId);
 								                break;
 								            case PermissionType.RunAsUserWithPermission:
 								                SetupUserWithPermission(sutProvider, orgId);
 								                sutProvider.GetDependency<IProjectRepository>()
 								                    .UserHasReadAccessToProject(Arg.Is(data), Arg.Any<Guid>()).ReturnsForAnyArgs(true);
 								                break;
 								        }
-												[SM-567] Change how project permission is resolved (#2791)

* Change how project permission is resolved

* Fix tests

---------

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
											
										
										
											2023-03-09 18:23:50 +01:00
+								        sutProvider.GetDependency<IProjectRepository>().GetByIdAsync(Arg.Is(data))
 								            .ReturnsForAnyArgs(new Project { Id = data, OrganizationId = orgId });
 								        sutProvider.GetDependency<IProjectRepository>().AccessToProjectAsync(default, default, default)
 								            .ReturnsForAnyArgs((true, false));
-												[SM-485] Add access policy on project creation (#2678)

* Add bootstrap access policy on create

* Update project integration tests
											
										
										
											2023-02-09 15:58:05 +01:00
 								        await sutProvider.Sut.GetAsync(data);
 								        await sutProvider.GetDependency<IProjectRepository>().Received(1)
-												[SM-567] Change how project permission is resolved (#2791)

* Change how project permission is resolved

* Fix tests

---------

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
											
										
										
											2023-03-09 18:23:50 +01:00
+								            .GetByIdAsync(Arg.Is(data));
-												[SM-485] Add access policy on project creation (#2678)

* Add bootstrap access policy on create

* Update project integration tests
											
										
										
											2023-02-09 15:58:05 +01:00
+								    }
 								    [Theory]
 								    [BitAutoData]
 								    public async void Get_UserWithoutPermission_Throws(SutProvider<ProjectsController> sutProvider, Guid orgId,
 								        Guid data)
 								    {
 								        SetupUserWithPermission(sutProvider, orgId);
 								        sutProvider.GetDependency<IProjectRepository>().UserHasReadAccessToProject(Arg.Is(data), Arg.Any<Guid>())
 								            .ReturnsForAnyArgs(false);
 								        sutProvider.GetDependency<IProjectRepository>().GetByIdAsync(Arg.Is(data))
 								            .ReturnsForAnyArgs(new Project { Id = data, OrganizationId = orgId });
 								        await Assert.ThrowsAsync<NotFoundException>(() => sutProvider.Sut.GetAsync(data));
 								    }
 								    [Theory]
 								    [BitAutoData]
 								    public async void BulkDeleteProjects_Success(SutProvider<ProjectsController> sutProvider, List<Project> data)
 								    {
 								        sutProvider.GetDependency<IUserService>().GetProperUserId(default).ReturnsForAnyArgs(Guid.NewGuid());
 								        var ids = data.Select(project => project.Id).ToList();
 								        var mockResult = data.Select(project => new Tuple<Project, string>(project, "")).ToList();
-												[SM-380] Access checks for listing projects (#2496)

* Add project access checks for listing
											
										
										
											2023-01-20 16:33:11 +01:00
+								        sutProvider.GetDependency<IDeleteProjectCommand>().DeleteProjects(ids, default).ReturnsForAnyArgs(mockResult);
-												[SM-394] Secrets Manager (#2164)

Long lived feature branch for Secrets Manager

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Co-authored-by: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com>
Co-authored-by: CarleyDiaz-Bitwarden <103955722+CarleyDiaz-Bitwarden@users.noreply.github.com>
Co-authored-by: Thomas Avery <tavery@bitwarden.com>
Co-authored-by: Colton Hurst <colton@coltonhurst.com>
											
										
										
											2023-01-13 15:02:53 +01:00
-												[SM-378] Enable SM on a user basis (#2590)

* Add support for giving individual users access to secrets manager
											
										
										
											2023-01-31 18:38:53 +01:00
+								        var results = await sutProvider.Sut.BulkDeleteAsync(ids);
-												[SM-394] Secrets Manager (#2164)

Long lived feature branch for Secrets Manager

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Co-authored-by: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com>
Co-authored-by: CarleyDiaz-Bitwarden <103955722+CarleyDiaz-Bitwarden@users.noreply.github.com>
Co-authored-by: Thomas Avery <tavery@bitwarden.com>
Co-authored-by: Colton Hurst <colton@coltonhurst.com>
											
										
										
											2023-01-13 15:02:53 +01:00
+								        await sutProvider.GetDependency<IDeleteProjectCommand>().Received(1)
-												[SM-485] Add access policy on project creation (#2678)

* Add bootstrap access policy on create

* Update project integration tests
											
										
										
											2023-02-09 15:58:05 +01:00
+								            .DeleteProjects(Arg.Is(ids), Arg.Any<Guid>());
-												[SM-394] Secrets Manager (#2164)

Long lived feature branch for Secrets Manager

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Co-authored-by: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com>
Co-authored-by: CarleyDiaz-Bitwarden <103955722+CarleyDiaz-Bitwarden@users.noreply.github.com>
Co-authored-by: Thomas Avery <tavery@bitwarden.com>
Co-authored-by: Colton Hurst <colton@coltonhurst.com>
											
										
										
											2023-01-13 15:02:53 +01:00
+								        Assert.Equal(data.Count, results.Data.Count());
 								    }
 								    [Theory]
 								    [BitAutoData]
-												[SM-485] Add access policy on project creation (#2678)

* Add bootstrap access policy on create

* Update project integration tests
											
										
										
											2023-02-09 15:58:05 +01:00
+								    public async void BulkDeleteProjects_NoGuids_ThrowsArgumentNullException(
 								        SutProvider<ProjectsController> sutProvider)
-												[SM-394] Secrets Manager (#2164)

Long lived feature branch for Secrets Manager

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Co-authored-by: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com>
Co-authored-by: CarleyDiaz-Bitwarden <103955722+CarleyDiaz-Bitwarden@users.noreply.github.com>
Co-authored-by: Thomas Avery <tavery@bitwarden.com>
Co-authored-by: Colton Hurst <colton@coltonhurst.com>
											
										
										
											2023-01-13 15:02:53 +01:00
+								    {
-												[SM-380] Access checks for listing projects (#2496)

* Add project access checks for listing
											
										
										
											2023-01-20 16:33:11 +01:00
+								        sutProvider.GetDependency<IUserService>().GetProperUserId(default).ReturnsForAnyArgs(Guid.NewGuid());
-												[SM-378] Enable SM on a user basis (#2590)

* Add support for giving individual users access to secrets manager
											
										
										
											2023-01-31 18:38:53 +01:00
+								        await Assert.ThrowsAsync<ArgumentNullException>(() => sutProvider.Sut.BulkDeleteAsync(new List<Guid>()));
-												[SM-394] Secrets Manager (#2164)

Long lived feature branch for Secrets Manager

Co-authored-by: Thomas Avery <43214426+Thomas-Avery@users.noreply.github.com>
Co-authored-by: cd-bitwarden <106776772+cd-bitwarden@users.noreply.github.com>
Co-authored-by: CarleyDiaz-Bitwarden <103955722+CarleyDiaz-Bitwarden@users.noreply.github.com>
Co-authored-by: Thomas Avery <tavery@bitwarden.com>
Co-authored-by: Colton Hurst <colton@coltonhurst.com>
											
										
										
											2023-01-13 15:02:53 +01:00
+								    }
 								}