1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
|
// Copyright (c) Microsoft Open Technologies, Inc. All rights reserved. See License.txt in the project root for license information.
using System.Net;
using System.Net.Http;
using System.Web.Http.SelfHost;
using Microsoft.TestCommon;
namespace System.Web.Http
{
public class BasicOverHttpTest
{
private static readonly string BaseAddress = "http://localhost:50231";
[Fact]
public void AuthenticateWithUsernameTokenSucceed()
{
RunBasicAuthTest("Sample", "", new NetworkCredential("username", "password"),
(response) => Assert.Equal(HttpStatusCode.OK, response.StatusCode)
);
}
[Fact]
public void AuthenticateWithWrongPasswordFail()
{
RunBasicAuthTest("Sample", "", new NetworkCredential("username", "wrong password"),
(response) => Assert.Equal(HttpStatusCode.Forbidden, response.StatusCode)
);
}
[Fact]
public void AuthenticateWithNoCredentialFail()
{
RunBasicAuthTest("Sample", "", null,
(response) => Assert.Equal(HttpStatusCode.Unauthorized, response.StatusCode)
);
}
private static void RunBasicAuthTest(string controllerName, string routeSuffix, NetworkCredential credential, Action<HttpResponseMessage> assert)
{
// Arrange
HttpSelfHostConfiguration config = new HttpSelfHostConfiguration(BaseAddress);
config.Routes.MapHttpRoute("Default", "{controller}" + routeSuffix, new { controller = controllerName });
config.UserNamePasswordValidator = new CustomUsernamePasswordValidator();
config.MessageHandlers.Add(new CustomMessageHandler());
HttpSelfHostServer server = new HttpSelfHostServer(config);
server.OpenAsync().Wait();
// Create a GET request with correct username and password
HttpClientHandler handler = new HttpClientHandler();
handler.Credentials = credential;
HttpClient client = new HttpClient(handler);
HttpResponseMessage response = null;
try
{
// Act
response = client.GetAsync(BaseAddress).Result;
// Assert
assert(response);
}
finally
{
if (response != null)
{
response.Dispose();
}
client.Dispose();
}
server.CloseAsync().Wait();
}
}
}
|