Added Integration Test Project & First Login Tests

Author: mckaragoz

UltimateAuth.slnx

@@ -16,6 +16,7 @@
     <File Path="Roadmap.md" />
   </Folder>
   <Folder Name="/Tests/">
+    <Project Path="tests/CodeBeam.UltimateAuth.Tests.Integration/CodeBeam.UltimateAuth.Tests.Integration.csproj" Id="fe34a0b1-8038-400d-b8ab-02dad7051f2d" />
     <Project Path="tests/CodeBeam.UltimateAuth.Tests.Unit/CodeBeam.UltimateAuth.Tests.Unit.csproj" Id="6f4b22da-849a-4a79-b5c5-aee7cb1429a6" />
   </Folder>
   <Project Path="src/authentication/CodeBeam.UltimateAuth.Authentication.EntityFrameworkCore/CodeBeam.UltimateAuth.Authentication.EntityFrameworkCore.csproj" Id="a8d758ad-052e-4331-9bf7-280ea9a55981" />

src/CodeBeam.UltimateAuth.Core/Errors/Authorization/UAuthChallengeRequiredException.cs

@@ -1,9 +1,15 @@
 namespace CodeBeam.UltimateAuth.Core.Errors;
 
-public sealed class UAuthChallengeRequiredException : UAuthException
+public sealed class UAuthChallengeRequiredException : UAuthRuntimeException
 {
-    public UAuthChallengeRequiredException(string? reason = null) 
-        : base(code: "challenge_required", message: reason ?? "Additional authentication is required.")
+    public override int StatusCode => 401;
+
+    public override string Title => "Reauthentication Required";
+
+    public override string TypePrefix => "https://docs.ultimateauth.com/errors/challenge";
+
+    public UAuthChallengeRequiredException(string? reason = null)
+        : base("challenge_required", reason ?? "Additional authentication is required.")
     {
     }
 }

src/CodeBeam.UltimateAuth.Core/Errors/Runtime/UAuthAuthenticationException.cs

@@ -0,0 +1,12 @@
+namespace CodeBeam.UltimateAuth.Core.Errors;
+
+public sealed class UAuthAuthenticationException : UAuthRuntimeException
+{
+    public override int StatusCode => 401;
+    public override string Title => "Unauthorized";
+
+    public UAuthAuthenticationException(string code = "authentication_required")
+        : base(code, code)
+    {
+    }
+}

src/CodeBeam.UltimateAuth.Server/Extensions/UAuthExceptionHandlingExtensions.cs

@@ -46,11 +46,14 @@ private static Task WriteProblemDetails(HttpContext context, UAuthRuntimeExcepti
     private static int MapStatusCode(UAuthRuntimeException ex) =>
         ex switch
         {
+            UAuthAuthenticationException => StatusCodes.Status401Unauthorized,
+            UAuthAuthorizationException => StatusCodes.Status403Forbidden,
             UAuthConflictException => StatusCodes.Status409Conflict,
             UAuthValidationException => StatusCodes.Status400BadRequest,
             UAuthUnauthorizedException => StatusCodes.Status401Unauthorized,
             UAuthForbiddenException => StatusCodes.Status403Forbidden,
             UAuthNotFoundException => StatusCodes.Status404NotFound,
+            UAuthChallengeRequiredException => StatusCodes.Status401Unauthorized,
             _ => StatusCodes.Status400BadRequest
         };
 }

src/CodeBeam.UltimateAuth.Server/Infrastructure/Orchestrator/UAuthSessionOrchestrator.cs

@@ -28,7 +28,7 @@ public async Task<TResult> ExecuteAsync<TResult>(AuthContext authContext, ISessi
         switch (decision.Decision)
         {
             case AuthorizationDecision.Deny:
-                throw new UAuthAuthorizationException(decision.Reason ?? "authorization_denied");
+                throw new UAuthAuthenticationException(decision.Reason ?? "authorization_denied");
 
             case AuthorizationDecision.Challenge:
                 throw new UAuthChallengeRequiredException(decision.Reason);

tests/CodeBeam.UltimateAuth.Tests.Integration/AssemblyBehavior.cs

@@ -0,0 +1 @@
+[assembly: CollectionBehavior(DisableTestParallelization = true)]

tests/CodeBeam.UltimateAuth.Tests.Integration/AuthServerFactory.cs

@@ -0,0 +1,12 @@
+using Microsoft.AspNetCore.Hosting;
+using Microsoft.AspNetCore.Mvc.Testing;
+
+namespace CodeBeam.UltimateAuth.Tests.Integration;
+
+public class AuthServerFactory : WebApplicationFactory<Program>
+{
+    protected override void ConfigureWebHost(IWebHostBuilder builder)
+    {
+        builder.UseEnvironment("Development");
+    }
+}

tests/CodeBeam.UltimateAuth.Tests.Integration/AuthServerTests.cs

@@ -0,0 +1,14 @@
+using Microsoft.AspNetCore.Mvc.Testing;
+using Microsoft.VisualStudio.TestPlatform.TestHost;
+
+namespace CodeBeam.UltimateAuth.Tests.Integration;
+
+public class AuthServerTests : IClassFixture<WebApplicationFactory<Program>>
+{
+    private readonly WebApplicationFactory<Program> _factory;
+
+    public AuthServerTests(WebApplicationFactory<Program> factory)
+    {
+        _factory = factory;
+    }
+}

tests/CodeBeam.UltimateAuth.Tests.Integration/CodeBeam.UltimateAuth.Tests.Integration.csproj

@@ -0,0 +1,27 @@
+<Project Sdk="Microsoft.NET.Sdk">
+
+  <PropertyGroup>
+    <TargetFramework>net10.0</TargetFramework>
+    <ImplicitUsings>enable</ImplicitUsings>
+    <Nullable>enable</Nullable>
+    <IsPackable>false</IsPackable>
+  </PropertyGroup>
+
+  <ItemGroup>
+    <PackageReference Include="coverlet.collector" Version="6.0.4" />
+    <PackageReference Include="FluentAssertions" Version="8.9.0" />
+    <PackageReference Include="Microsoft.AspNetCore.Mvc.Testing" Version="10.0.5" />
+    <PackageReference Include="Microsoft.NET.Test.Sdk" Version="17.14.1" />
+    <PackageReference Include="xunit" Version="2.9.3" />
+    <PackageReference Include="xunit.runner.visualstudio" Version="3.1.4" />
+  </ItemGroup>
+
+  <ItemGroup>
+    <ProjectReference Include="..\..\samples\UAuthHub\CodeBeam.UltimateAuth.Sample.UAuthHub\CodeBeam.UltimateAuth.Sample.UAuthHub.csproj" />
+  </ItemGroup>
+
+  <ItemGroup>
+    <Using Include="Xunit" />
+  </ItemGroup>
+
+</Project>

tests/CodeBeam.UltimateAuth.Tests.Integration/LoginTests.cs

@@ -0,0 +1,96 @@
+using FluentAssertions;
+using Microsoft.AspNetCore.Mvc.Testing;
+using System.Net;
+using System.Net.Http.Json;
+
+namespace CodeBeam.UltimateAuth.Tests.Integration;
+
+public class LoginTests : IClassFixture<AuthServerFactory>
+{
+    private readonly HttpClient _client;
+
+    public LoginTests(AuthServerFactory factory)
+    {
+        _client = factory.CreateClient(new WebApplicationFactoryClientOptions
+        {
+            AllowAutoRedirect = false,
+            HandleCookies = false
+        });
+
+        _client.DefaultRequestHeaders.Add("Origin", "https://localhost:6130");
+        _client.DefaultRequestHeaders.Add("X-UDID", "test-device-1234567890123456");
+    }
+
+    [Fact]
+    public async Task Login_Should_Return_Cookie()
+    {
+        var response = await _client.PostAsJsonAsync("/auth/login", new
+        {
+            identifier = "admin",
+            secret = "admin"
+        });
+
+        response.StatusCode.Should().Be(HttpStatusCode.Found);
+        response.Headers.Location.Should().NotBeNull();
+        response.Headers.TryGetValues("Set-Cookie", out var cookies).Should().BeTrue();
+        cookies.Should().NotBeNull();
+    }
+
+    [Fact]
+    public async Task Session_Lifecycle_Should_Work_Correctly()
+    {
+        var loginResponse1 = await _client.PostAsJsonAsync("/auth/login", new
+        {
+            identifier = "admin",
+            secret = "admin"
+        });
+
+        loginResponse1.StatusCode.Should().Be(HttpStatusCode.Found);
+
+        var cookie1 = loginResponse1.Headers.GetValues("Set-Cookie").FirstOrDefault();
+        cookie1.Should().NotBeNull();
+
+        _client.DefaultRequestHeaders.Add("Cookie", cookie1!);
+
+        var logoutResponse = await _client.PostAsync("/auth/logout", null);
+        logoutResponse.StatusCode.Should().Be(HttpStatusCode.Found);
+        
+        var logoutAgain = await _client.PostAsync("/auth/logout", null);
+        logoutAgain.StatusCode.Should().BeOneOf(HttpStatusCode.Unauthorized, HttpStatusCode.Found);
+
+        _client.DefaultRequestHeaders.Remove("Cookie");
+
+        var loginResponse2 = await _client.PostAsJsonAsync("/auth/login", new
+        {
+            identifier = "admin",
+            secret = "admin"
+        });
+
+        loginResponse2.StatusCode.Should().Be(HttpStatusCode.Found);
+        var cookie2 = loginResponse2.Headers.GetValues("Set-Cookie").FirstOrDefault();
+        cookie2.Should().NotBeNull();
+        cookie2.Should().NotBe(cookie1);
+    }
+
+    [Fact]
+    public async Task Authenticated_User_Should_Access_Me_Endpoint()
+    {
+        var loginResponse = await _client.PostAsJsonAsync("/auth/login", new
+        {
+            identifier = "admin",
+            secret = "admin"
+        });
+
+        var cookie = loginResponse.Headers.GetValues("Set-Cookie").First();
+        _client.DefaultRequestHeaders.Add("Cookie", cookie);
+        var response = await _client.PostAsync("/auth/me/get", null);
+        response.StatusCode.Should().Be(HttpStatusCode.OK);
+    }
+
+    [Fact]
+    public async Task Anonymous_Should_Not_Access_Me()
+    {
+        var response = await _client.PostAsync("/auth/me/get", null);
+        response.StatusCode.Should().Be(HttpStatusCode.Unauthorized);
+    }
+}