test/Core.Test/AdminConsole/Models/InviteOrganizationUsersRequestTests.cs

using Bit.Core.AdminConsole.OrganizationFeatures.OrganizationUsers.InviteUsers.Models;
using Bit.Core.Enums;
using Bit.Core.Exceptions;
using Bit.Core.Models.Data;
using Bit.Test.Common.AutoFixture.Attributes;
using Xunit;

using static Bit.Core.AdminConsole.OrganizationFeatures.OrganizationUsers.InviteUsers.Models.InviteOrganizationUserErrorMessages;

namespace Bit.Core.Test.AdminConsole.Models;

public class InviteOrganizationUsersRequestTests
{
    [Theory]
    [BitAutoData]
    public void Constructor_WhenPassedInvalidEmail_ThrowsException(string email, OrganizationUserType type, Permissions permissions, string externalId)
    {
        var exception = Assert.Throws<BadRequestException>(() =>
            new OrganizationUserInvite(email, [], [], type, permissions, externalId, false));

        Assert.Contains(InvalidEmailErrorMessage, exception.Message);
    }

    [Fact]
    public void Constructor_WhenPassedInvalidCollectionAccessConfiguration_ThrowsException()
    {
        const string validEmail = "test@email.com";

        var invalidCollectionConfiguration = new CollectionAccessSelection
        {
            Manage = true,
            HidePasswords = true
        };

        var exception = Assert.Throws<BadRequestException>(() =>
            new OrganizationUserInvite(
                email: validEmail,
                assignedCollections: [invalidCollectionConfiguration],
                groups: [],
                type: default,
                permissions: new Permissions(),
                externalId: string.Empty,
                accessSecretsManager: false));

        Assert.Equal(InvalidCollectionConfigurationErrorMessage, exception.Message);
    }

    [Fact]
    public void Constructor_WhenPassedValidArguments_ReturnsInvite()
    {
        const string validEmail = "test@email.com";
        var validCollectionConfiguration = new CollectionAccessSelection { Id = Guid.NewGuid(), Manage = true };

        var invite = new OrganizationUserInvite(
            email: validEmail,
            assignedCollections: [validCollectionConfiguration],
            groups: [],
            type: default,
            permissions: null,
            externalId: null,
            accessSecretsManager: false);

        Assert.NotNull(invite);
        Assert.Contains(validEmail, invite.Email);
        Assert.Contains(validCollectionConfiguration, invite.AssignedCollections);
    }
}
-												[PM-16811] - SCIM Invite Users Optimizations (#5398)

* WIP changes for Invite User optimization from Scim

* feature flag string

* Added plan validation to PasswordManagerInviteUserValidation. Cleaned up a few things.

* Added Secrets Manager Validations and Tests.

* Added bulk procedure for saving users, collections and groups from inviting. Added test to validate Ef and Sproc

* Created SendOrganizationInvitesCommand and moved some tests from OrgServiceTests. Fixed some tests in org service in relation to moving out SendOrgInviteCommand code.

Added side effects to InviteOrganizationUsersCommand

* First test of new command.

* Added test to verify valid request with a user calls db method and sends the invite

* Added more tests for the updates

* Added integration test around enabling feature and sending invite via scim. Did a bit of refactoring on the SM validation. Fixed couple bugs found.

* Switching over to a local factory.

* created response model and split interface out.

* switched to initialization block

* Moved to private method. Made ScimInvite inherit the single invite base model. Moved create methods to constructors. A few more CR changes included.

* Moved `FromOrganization` mapper method to a constructor

* Updated to use new pricing client. Supressed null dereference errors.

* Fixing bad merge.

* Rename of OrgDto

* undoing this

* Moved into class

* turned into a switch statement

* Separated into separate files.

* Renamed dto and added ctor

* Dto rename. Moved from static methods to ctors

* Removed unused request model

* changes from main

* missed value

* Fixed some compilation errors.

* Fixed some changes.

* Removed comment

* fixed compiler warning.

* Refactored to use new ValidationResult pattern. added mapping method.

* Added throwing of Failure as the previous implementation would have.

* Cleaned up return.

* fixing test.

* Made HasSecretsManagerStandalone return if org doesn't have sm. Added overload for lighter weight model and moved common code to private method.

* Fixed tests.

* Made public method private. added some comments.

* Refactor validation parameter to improve clarity and consistency. Added XML doc

* fixed test

* Removed test only constructor from InviteOrganization

* Separated old and new code explicitly. Moved old code checks down into new code as well. Added error and mapper to Failure<T>

* Variable/Field/Property renames

* Renamed InviteUsersValidation to InviteUsersValidator

* Rename for InvitingUserOrganizationValidation to InvitingUserOrganizationValidator

* PasswordManagerInviteUserValidation to PasswordManagerInviteUserValidator

* Moved XML comment. Added check to see if additional seats are needed.

* Fixing name.

* Updated names.

* Corrected double negation.

* Added groups and collection and users checks.

* Fixed comment. Fixed multiple enumeration. Changed variable name.

* Cleaned up DTO models. Moved some validation steps around. A few quick fixes to address CR concerns. Still need to move a few things yet.

* Fixed naming in subscription update models.

* put back in the request for now.

* Quick rename

* Added provider email addresses as well.

* Removed valid wrapper to pass in to validation methods.

* fix tests

* Code Review changes.

* Removed unused classes

* Using GetPlanOrThrow instead.

* Switches to extension method

* Made Revert and Adjust Sm methods consistent. Corrected string comparer. Added comment for revert sm.

* Fixing compiler complaint.

* Adding XML docs

* Calculated seat addition for SM.

* Fixing compiler complaints.

* Renames for organization.

* Fixing comparison issue.

* Adding error and aligning message.

* fixing name of method.

* Made extension method.

* Rearranged some things. Fixed the tests.

* Added test around validating the revert.

* Added test to validate the provider email is sent if org is managed by a provider.

* Created new errors and removed references in business code to ErrorMessages property. This aligns Invite User code to use Errors instead of ErrorMessages

* Delayed the hasSecretsManagerStandalone call as long as possible.

* Corrected model name. Corrected SM seat calculation. Added test for it.

* Corrected logic and added more tests.
											
										
										
											2025-04-07 09:14:10 -05:00
+								using Bit.Core.AdminConsole.OrganizationFeatures.OrganizationUsers.InviteUsers.Models;
 								using Bit.Core.Enums;
 								using Bit.Core.Exceptions;
 								using Bit.Core.Models.Data;
 								using Bit.Test.Common.AutoFixture.Attributes;
 								using Xunit;
 								using static Bit.Core.AdminConsole.OrganizationFeatures.OrganizationUsers.InviteUsers.Models.InviteOrganizationUserErrorMessages;
 								namespace Bit.Core.Test.AdminConsole.Models;
 								public class InviteOrganizationUsersRequestTests
 								{
 								    [Theory]
 								    [BitAutoData]
 								    public void Constructor_WhenPassedInvalidEmail_ThrowsException(string email, OrganizationUserType type, Permissions permissions, string externalId)
 								    {
 								        var exception = Assert.Throws<BadRequestException>(() =>
 								            new OrganizationUserInvite(email, [], [], type, permissions, externalId, false));
 								        Assert.Contains(InvalidEmailErrorMessage, exception.Message);
 								    }
 								    [Fact]
 								    public void Constructor_WhenPassedInvalidCollectionAccessConfiguration_ThrowsException()
 								    {
 								        const string validEmail = "test@email.com";
 								        var invalidCollectionConfiguration = new CollectionAccessSelection
 								        {
 								            Manage = true,
 								            HidePasswords = true
 								        };
 								        var exception = Assert.Throws<BadRequestException>(() =>
 								            new OrganizationUserInvite(
 								                email: validEmail,
 								                assignedCollections: [invalidCollectionConfiguration],
 								                groups: [],
 								                type: default,
 								                permissions: new Permissions(),
 								                externalId: string.Empty,
 								                accessSecretsManager: false));
 								        Assert.Equal(InvalidCollectionConfigurationErrorMessage, exception.Message);
 								    }
 								    [Fact]
 								    public void Constructor_WhenPassedValidArguments_ReturnsInvite()
 								    {
 								        const string validEmail = "test@email.com";
 								        var validCollectionConfiguration = new CollectionAccessSelection { Id = Guid.NewGuid(), Manage = true };
 								        var invite = new OrganizationUserInvite(
 								            email: validEmail,
 								            assignedCollections: [validCollectionConfiguration],
 								            groups: [],
 								            type: default,
 								            permissions: null,
 								            externalId: null,
 								            accessSecretsManager: false);
 								        Assert.NotNull(invite);
 								        Assert.Contains(validEmail, invite.Email);
 								        Assert.Contains(validCollectionConfiguration, invite.AssignedCollections);
 								    }
 								}