bitwarden/server
1
0
Fork 0
mirror of https://github.com/bitwarden/server.git synced 2026-06-01 12:26:46 -05:00
Code Issues Packages Projects Releases 211 Wiki Activity
Files
main
server/test/Infrastructure.IntegrationTest/AdminConsole/Repositories/OrganizationUserRepository/OrganizationUserRevocationTests.cs
sven-bitwarden f3db5d75d7 [PM-37595] Use New OrganizationUserStatusType Columns (#7693) 
* Begin tracking StatusNew when revoke

* Simplify hack

* PR feedback

* Fix CI failure

* create new stored procedures for revoke/restore with proper namign convention

* rename migration

* Fix encoding

* remove incidental commit
2026-06-01 10:18:56 -05:00

174 lines
8.2 KiB
C#
Raw Permalink Blame History

using Bit.Core.AdminConsole.Enums;
using Bit.Core.Enums;
using Bit.Core.Repositories;
using Xunit;
namespace Bit.Infrastructure.IntegrationTest.AdminConsole.Repositories.OrganizationUserRepository;
public class OrganizationUserRevocationTests
{
[Theory, DatabaseData]
public async Task RevokeManyAsync_SetsStatusAndReason(
IOrganizationUserRepository organizationUserRepository,
IOrganizationRepository organizationRepository,
IUserRepository userRepository)
{
// Arrange
var organization = await organizationRepository.CreateTestOrganizationAsync();
var user1 = await userRepository.CreateTestUserAsync();
var user2 = await userRepository.CreateTestUserAsync();
var orgUser1 = await organizationUserRepository.CreateConfirmedTestOrganizationUserAsync(organization, user1);
var orgUser2 = await organizationUserRepository.CreateConfirmedTestOrganizationUserAsync(organization, user2);
// Act
await organizationUserRepository.RevokeManyAsync(
[orgUser1.Id, orgUser2.Id],
RevocationReason.TwoFactorPolicyNonCompliance);
// Assert
var updated1 = await organizationUserRepository.GetByIdAsync(orgUser1.Id);
var updated2 = await organizationUserRepository.GetByIdAsync(orgUser2.Id);
Assert.Equal(OrganizationUserStatusType.Revoked, updated1!.Status);
Assert.Equal(OrganizationUserStatusTypeNew.Confirmed, updated1.StatusNew);
Assert.Equal(RevocationReason.TwoFactorPolicyNonCompliance, updated1.RevocationReason);
Assert.Equal(OrganizationUserStatusType.Revoked, updated2!.Status);
Assert.Equal(OrganizationUserStatusTypeNew.Confirmed, updated2.StatusNew);
Assert.Equal(RevocationReason.TwoFactorPolicyNonCompliance, updated2.RevocationReason);
}
[Theory, DatabaseData]
public async Task RevokeManyAsync_FromInvited_SnapshotsInvitedIntoStatusNew(
IOrganizationUserRepository organizationUserRepository,
IOrganizationRepository organizationRepository)
{
// Arrange
var organization = await organizationRepository.CreateTestOrganizationAsync();
var orgUser = await organizationUserRepository.CreateTestOrganizationUserInviteAsync(organization);
// Act
await organizationUserRepository.RevokeManyAsync([orgUser.Id], RevocationReason.Manual);
// Assert
var updated = await organizationUserRepository.GetByIdAsync(orgUser.Id);
Assert.Equal(OrganizationUserStatusType.Revoked, updated!.Status);
Assert.Equal(OrganizationUserStatusTypeNew.Invited, updated.StatusNew);
Assert.Equal(RevocationReason.Manual, updated.RevocationReason);
}
[Theory, DatabaseData]
public async Task RevokeManyAsync_FromAccepted_SnapshotsAcceptedIntoStatusNew(
IOrganizationUserRepository organizationUserRepository,
IOrganizationRepository organizationRepository,
IUserRepository userRepository)
{
// Arrange
var organization = await organizationRepository.CreateTestOrganizationAsync();
var user = await userRepository.CreateTestUserAsync();
var orgUser = await organizationUserRepository.CreateAcceptedTestOrganizationUserAsync(organization, user);
// Act
await organizationUserRepository.RevokeManyAsync([orgUser.Id], RevocationReason.Manual);
// Assert
var updated = await organizationUserRepository.GetByIdAsync(orgUser.Id);
Assert.Equal(OrganizationUserStatusType.Revoked, updated!.Status);
Assert.Equal(OrganizationUserStatusTypeNew.Accepted, updated.StatusNew);
Assert.Equal(RevocationReason.Manual, updated.RevocationReason);
}
[Theory, DatabaseData]
public async Task RevokeManyAsync_AlreadyRevoked_DoesNotOverwriteStatusNewOrRevocationReason(
IOrganizationUserRepository organizationUserRepository,
IOrganizationRepository organizationRepository,
IUserRepository userRepository)
{
// Arrange
var organization = await organizationRepository.CreateTestOrganizationAsync();
var user = await userRepository.CreateTestUserAsync();
var orgUser = await organizationUserRepository.CreateConfirmedTestOrganizationUserAsync(organization, user);
await organizationUserRepository.RevokeManyAsync([orgUser.Id], RevocationReason.Manual);
// Act
await organizationUserRepository.RevokeManyAsync(
[orgUser.Id],
RevocationReason.TwoFactorPolicyNonCompliance);
// Assert
var updated = await organizationUserRepository.GetByIdAsync(orgUser.Id);
Assert.Equal(OrganizationUserStatusType.Revoked, updated!.Status);
Assert.Equal(OrganizationUserStatusTypeNew.Confirmed, updated.StatusNew);
Assert.Equal(RevocationReason.Manual, updated.RevocationReason);
}
[Theory, DatabaseData]
public async Task RevokeManyAsync_WithManualReason_SetsStatusAndReason(
IOrganizationUserRepository organizationUserRepository,
IOrganizationRepository organizationRepository,
IUserRepository userRepository)
{
// Arrange
var organization = await organizationRepository.CreateTestOrganizationAsync();
var user = await userRepository.CreateTestUserAsync();
var orgUser = await organizationUserRepository.CreateConfirmedTestOrganizationUserAsync(organization, user);
// Act
await organizationUserRepository.RevokeManyAsync([orgUser.Id], RevocationReason.Manual);
// Assert
var updated = await organizationUserRepository.GetByIdAsync(orgUser.Id);
Assert.Equal(OrganizationUserStatusType.Revoked, updated!.Status);
Assert.Equal(RevocationReason.Manual, updated.RevocationReason);
}
[Theory, DatabaseData]
public async Task RestoreManyAsync_ClearsStatusNewAndRevocationReason(
IOrganizationUserRepository organizationUserRepository,
IOrganizationRepository organizationRepository,
IUserRepository userRepository)
{
// Arrange
var organization = await organizationRepository.CreateTestOrganizationAsync();
var user = await userRepository.CreateTestUserAsync();
var orgUser = await organizationUserRepository.CreateConfirmedTestOrganizationUserAsync(organization, user);
await organizationUserRepository.RevokeManyAsync([orgUser.Id], RevocationReason.Manual);
// Act
await organizationUserRepository.RestoreManyAsync([orgUser.Id], OrganizationUserStatusType.Confirmed);
// Assert
var restored = await organizationUserRepository.GetByIdAsync(orgUser.Id);
Assert.Equal(OrganizationUserStatusType.Confirmed, restored!.Status);
Assert.Null(restored.StatusNew);
Assert.Null(restored.RevocationReason);
}
[Theory, DatabaseData]
public async Task RestoreManyAsync_OnlyRestoresRevokedUsers(
IOrganizationUserRepository organizationUserRepository,
IOrganizationRepository organizationRepository,
IUserRepository userRepository)
{
// Arrange
var organization = await organizationRepository.CreateTestOrganizationAsync();
var user1 = await userRepository.CreateTestUserAsync();
var user2 = await userRepository.CreateTestUserAsync();
var orgUser1 = await organizationUserRepository.CreateConfirmedTestOrganizationUserAsync(organization, user1);
var orgUser2 = await organizationUserRepository.CreateConfirmedTestOrganizationUserAsync(organization, user2);
await organizationUserRepository.RevokeManyAsync([orgUser1.Id], RevocationReason.Manual);
// Act
await organizationUserRepository.RestoreManyAsync(
[orgUser1.Id, orgUser2.Id],
OrganizationUserStatusType.Confirmed);
// Assert
var restored = await organizationUserRepository.GetByIdAsync(orgUser1.Id);
Assert.Equal(OrganizationUserStatusType.Confirmed, restored!.Status);
Assert.Null(restored.RevocationReason);
var unchanged = await organizationUserRepository.GetByIdAsync(orgUser2.Id);
Assert.Equal(OrganizationUserStatusType.Confirmed, unchanged!.Status);
Assert.Null(unchanged.RevocationReason);
}
}
Reference in New Issue View Git Blame Copy Permalink