Auth tweaks, Audit implementation, Webhooks
This commit is contained in:
116
tests/api/MicCheck.Api.Tests.Unit/Audit/AuditServiceTests.cs
Normal file
116
tests/api/MicCheck.Api.Tests.Unit/Audit/AuditServiceTests.cs
Normal file
@@ -0,0 +1,116 @@
|
||||
using System.Text.Json;
|
||||
using MicCheck.Api.Audit;
|
||||
using MicCheck.Api.Data;
|
||||
using MicCheck.Api.Webhooks;
|
||||
using Microsoft.AspNetCore.Http;
|
||||
using Microsoft.EntityFrameworkCore;
|
||||
using Moq;
|
||||
using NUnit.Framework;
|
||||
|
||||
namespace MicCheck.Api.Tests.Unit.Audit;
|
||||
|
||||
[TestFixture]
|
||||
public class AuditServiceTests
|
||||
{
|
||||
private MicCheckDbContext _db = null!;
|
||||
private AuditService _service = null!;
|
||||
private WebhookQueue _queue = null!;
|
||||
|
||||
[SetUp]
|
||||
public void SetUp()
|
||||
{
|
||||
var options = new DbContextOptionsBuilder<MicCheckDbContext>()
|
||||
.UseInMemoryDatabase(Guid.NewGuid().ToString())
|
||||
.Options;
|
||||
_db = new MicCheckDbContext(options);
|
||||
_queue = new WebhookQueue();
|
||||
|
||||
var httpContextAccessor = new Mock<IHttpContextAccessor>();
|
||||
httpContextAccessor.Setup(x => x.HttpContext).Returns((Microsoft.AspNetCore.Http.HttpContext?)null);
|
||||
|
||||
_service = new AuditService(_db, httpContextAccessor.Object, _queue);
|
||||
}
|
||||
|
||||
[TearDown]
|
||||
public void TearDown() => _db.Dispose();
|
||||
|
||||
[Test]
|
||||
public async Task WhenRecordingWithNoBefore_ThenChangesIsNull()
|
||||
{
|
||||
await _service.RecordAsync("Feature", "1", "created", organizationId: 1);
|
||||
|
||||
var log = await _db.AuditLogs.FirstAsync();
|
||||
Assert.That(log.Changes, Is.Null);
|
||||
}
|
||||
|
||||
[Test]
|
||||
public async Task WhenRecordingWithAfterOnly_ThenChangesContainsAfterJson()
|
||||
{
|
||||
var after = new { Name = "dark_mode", Enabled = true };
|
||||
await _service.RecordAsync("Feature", "1", "created", organizationId: 1, after: after);
|
||||
|
||||
var log = await _db.AuditLogs.FirstAsync();
|
||||
Assert.That(log.Changes, Is.Not.Null);
|
||||
|
||||
var changes = JsonDocument.Parse(log.Changes!).RootElement;
|
||||
Assert.That(changes.GetProperty("after").GetProperty("name").GetString(), Is.EqualTo("dark_mode"));
|
||||
Assert.That(changes.TryGetProperty("before", out var beforeProp), Is.True);
|
||||
Assert.That(beforeProp.ValueKind, Is.EqualTo(JsonValueKind.Null));
|
||||
}
|
||||
|
||||
[Test]
|
||||
public async Task WhenRecordingWithBeforeAndAfter_ThenChangesCapturesBothStates()
|
||||
{
|
||||
var before = new { Enabled = false, Value = "old" };
|
||||
var after = new { Enabled = true, Value = "new" };
|
||||
|
||||
await _service.RecordAsync("FeatureState", "42", "updated", organizationId: 1,
|
||||
before: before, after: after);
|
||||
|
||||
var log = await _db.AuditLogs.FirstAsync();
|
||||
var changes = JsonDocument.Parse(log.Changes!).RootElement;
|
||||
|
||||
Assert.That(changes.GetProperty("before").GetProperty("enabled").GetBoolean(), Is.False);
|
||||
Assert.That(changes.GetProperty("after").GetProperty("enabled").GetBoolean(), Is.True);
|
||||
Assert.That(changes.GetProperty("before").GetProperty("value").GetString(), Is.EqualTo("old"));
|
||||
Assert.That(changes.GetProperty("after").GetProperty("value").GetString(), Is.EqualTo("new"));
|
||||
}
|
||||
|
||||
[Test]
|
||||
public async Task WhenRecording_ThenMetadataIsPersistedCorrectly()
|
||||
{
|
||||
await _service.RecordAsync(
|
||||
"Segment", "5", "deleted",
|
||||
organizationId: 10, projectId: 20, environmentId: 30);
|
||||
|
||||
var log = await _db.AuditLogs.FirstAsync();
|
||||
Assert.That(log.ResourceType, Is.EqualTo("Segment"));
|
||||
Assert.That(log.ResourceId, Is.EqualTo("5"));
|
||||
Assert.That(log.Action, Is.EqualTo("deleted"));
|
||||
Assert.That(log.OrganizationId, Is.EqualTo(10));
|
||||
Assert.That(log.ProjectId, Is.EqualTo(20));
|
||||
Assert.That(log.EnvironmentId, Is.EqualTo(30));
|
||||
Assert.That(log.ActorUserId, Is.Null);
|
||||
}
|
||||
|
||||
[Test]
|
||||
public async Task WhenRecording_ThenAuditLogCreatedEventIsEnqueued()
|
||||
{
|
||||
await _service.RecordAsync("Feature", "1", "created", organizationId: 1);
|
||||
|
||||
var events = new List<WebhookEvent>();
|
||||
var cts = new CancellationTokenSource(TimeSpan.FromMilliseconds(100));
|
||||
try
|
||||
{
|
||||
await foreach (var e in _queue.ReadAllAsync(cts.Token))
|
||||
{
|
||||
events.Add(e);
|
||||
break;
|
||||
}
|
||||
}
|
||||
catch (OperationCanceledException) { }
|
||||
|
||||
Assert.That(events, Has.Count.EqualTo(1));
|
||||
Assert.That(events[0].EventType, Is.EqualTo(WebhookEventTypes.AuditLogCreated));
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user