Resolve Concelier/Excititor merge conflicts

2025-10-20 14:19:25 +03:00
parent 67d581d2e8 5fd4032c7c
commit 09b6a28172
2687 changed files with 212646 additions and 85913 deletions
--- a/src/StellaOps.Authority/StellaOps.Auth.Abstractions.Tests/StellaOpsPrincipalBuilderTests.cs
+++ b/src/StellaOps.Authority/StellaOps.Auth.Abstractions.Tests/StellaOpsPrincipalBuilderTests.cs
@@ -1,74 +1,74 @@
-using System;
-using System.Linq;
-using System.Security.Claims;
-using StellaOps.Auth.Abstractions;
-using Xunit;
-
-namespace StellaOps.Auth.Abstractions.Tests;
-
-public class StellaOpsPrincipalBuilderTests
-{
-    [Fact]
-    public void NormalizedScopes_AreSortedDeduplicatedLowerCased()
-    {
-        var builder = new StellaOpsPrincipalBuilder()
-            .WithScopes(new[] { "Feedser.Jobs.Trigger", " feedser.jobs.trigger ", "AUTHORITY.USERS.MANAGE" })
-            .WithAudiences(new[] { " api://feedser ", "api://cli", "api://feedser" });
-
-        Assert.Equal(
-            new[] { "authority.users.manage", "feedser.jobs.trigger" },
-            builder.NormalizedScopes);
-
-        Assert.Equal(
-            new[] { "api://cli", "api://feedser" },
-            builder.Audiences);
-    }
-
-    [Fact]
-    public void Build_ConstructsClaimsPrincipalWithNormalisedValues()
-    {
-        var now = DateTimeOffset.UtcNow;
-        var builder = new StellaOpsPrincipalBuilder()
-            .WithSubject(" user-1 ")
-            .WithClientId(" cli-01 ")
-            .WithTenant(" default ")
-            .WithName("  Jane Doe ")
-            .WithIdentityProvider(" internal ")
-            .WithSessionId(" session-123 ")
-            .WithTokenId(Guid.NewGuid().ToString("N"))
-            .WithAuthenticationMethod("password")
-            .WithAuthenticationType(" custom ")
-            .WithScopes(new[] { "Feedser.Jobs.Trigger", "AUTHORITY.USERS.MANAGE" })
-            .WithAudience(" api://feedser ")
-            .WithIssuedAt(now)
-            .WithExpires(now.AddMinutes(5))
-            .AddClaim(" custom ", " value ");
-
-        var principal = builder.Build();
-        var identity = Assert.IsType<ClaimsIdentity>(principal.Identity);
-
-        Assert.Equal("custom", identity.AuthenticationType);
-        Assert.Equal("Jane Doe", identity.Name);
-        Assert.Equal("user-1", principal.FindFirstValue(StellaOpsClaimTypes.Subject));
-        Assert.Equal("cli-01", principal.FindFirstValue(StellaOpsClaimTypes.ClientId));
-        Assert.Equal("default", principal.FindFirstValue(StellaOpsClaimTypes.Tenant));
-        Assert.Equal("internal", principal.FindFirstValue(StellaOpsClaimTypes.IdentityProvider));
-        Assert.Equal("session-123", principal.FindFirstValue(StellaOpsClaimTypes.SessionId));
-        Assert.Equal("value", principal.FindFirstValue("custom"));
-
-        var scopeClaims = principal.Claims.Where(claim => claim.Type == StellaOpsClaimTypes.ScopeItem).Select(claim => claim.Value).ToArray();
-        Assert.Equal(new[] { "authority.users.manage", "feedser.jobs.trigger" }, scopeClaims);
-
-        var scopeList = principal.FindFirstValue(StellaOpsClaimTypes.Scope);
-        Assert.Equal("authority.users.manage feedser.jobs.trigger", scopeList);
-
-        var audienceClaims = principal.Claims.Where(claim => claim.Type == StellaOpsClaimTypes.Audience).Select(claim => claim.Value).ToArray();
-        Assert.Equal(new[] { "api://feedser" }, audienceClaims);
-
-        var issuedAt = principal.FindFirstValue("iat");
-        Assert.Equal(now.ToUnixTimeSeconds().ToString(), issuedAt);
-
-        var expires = principal.FindFirstValue("exp");
-        Assert.Equal(now.AddMinutes(5).ToUnixTimeSeconds().ToString(), expires);
-    }
-}
+using System;
+using System.Linq;
+using System.Security.Claims;
+using StellaOps.Auth.Abstractions;
+using Xunit;
+
+namespace StellaOps.Auth.Abstractions.Tests;
+
+public class StellaOpsPrincipalBuilderTests
+{
+    [Fact]
+    public void NormalizedScopes_AreSortedDeduplicatedLowerCased()
+    {
+        var builder = new StellaOpsPrincipalBuilder()
+            .WithScopes(new[] { "Concelier.Jobs.Trigger", " concelier.jobs.trigger ", "AUTHORITY.USERS.MANAGE" })
+            .WithAudiences(new[] { " api://concelier ", "api://cli", "api://concelier" });
+
+        Assert.Equal(
+            new[] { "authority.users.manage", "concelier.jobs.trigger" },
+            builder.NormalizedScopes);
+
+        Assert.Equal(
+            new[] { "api://cli", "api://concelier" },
+            builder.Audiences);
+    }
+
+    [Fact]
+    public void Build_ConstructsClaimsPrincipalWithNormalisedValues()
+    {
+        var now = DateTimeOffset.UtcNow;
+        var builder = new StellaOpsPrincipalBuilder()
+            .WithSubject(" user-1 ")
+            .WithClientId(" cli-01 ")
+            .WithTenant(" default ")
+            .WithName("  Jane Doe ")
+            .WithIdentityProvider(" internal ")
+            .WithSessionId(" session-123 ")
+            .WithTokenId(Guid.NewGuid().ToString("N"))
+            .WithAuthenticationMethod("password")
+            .WithAuthenticationType(" custom ")
+            .WithScopes(new[] { "Concelier.Jobs.Trigger", "AUTHORITY.USERS.MANAGE" })
+            .WithAudience(" api://concelier ")
+            .WithIssuedAt(now)
+            .WithExpires(now.AddMinutes(5))
+            .AddClaim(" custom ", " value ");
+
+        var principal = builder.Build();
+        var identity = Assert.IsType<ClaimsIdentity>(principal.Identity);
+
+        Assert.Equal("custom", identity.AuthenticationType);
+        Assert.Equal("Jane Doe", identity.Name);
+        Assert.Equal("user-1", principal.FindFirstValue(StellaOpsClaimTypes.Subject));
+        Assert.Equal("cli-01", principal.FindFirstValue(StellaOpsClaimTypes.ClientId));
+        Assert.Equal("default", principal.FindFirstValue(StellaOpsClaimTypes.Tenant));
+        Assert.Equal("internal", principal.FindFirstValue(StellaOpsClaimTypes.IdentityProvider));
+        Assert.Equal("session-123", principal.FindFirstValue(StellaOpsClaimTypes.SessionId));
+        Assert.Equal("value", principal.FindFirstValue("custom"));
+
+        var scopeClaims = principal.Claims.Where(claim => claim.Type == StellaOpsClaimTypes.ScopeItem).Select(claim => claim.Value).ToArray();
+        Assert.Equal(new[] { "authority.users.manage", "concelier.jobs.trigger" }, scopeClaims);
+
+        var scopeList = principal.FindFirstValue(StellaOpsClaimTypes.Scope);
+        Assert.Equal("authority.users.manage concelier.jobs.trigger", scopeList);
+
+        var audienceClaims = principal.Claims.Where(claim => claim.Type == StellaOpsClaimTypes.Audience).Select(claim => claim.Value).ToArray();
+        Assert.Equal(new[] { "api://concelier" }, audienceClaims);
+
+        var issuedAt = principal.FindFirstValue("iat");
+        Assert.Equal(now.ToUnixTimeSeconds().ToString(), issuedAt);
+
+        var expires = principal.FindFirstValue("exp");
+        Assert.Equal(now.AddMinutes(5).ToUnixTimeSeconds().ToString(), expires);
+    }
+}
--- a/src/StellaOps.Authority/StellaOps.Auth.Abstractions.Tests/StellaOpsProblemResultFactoryTests.cs
+++ b/src/StellaOps.Authority/StellaOps.Auth.Abstractions.Tests/StellaOpsProblemResultFactoryTests.cs
@@ -1,53 +1,53 @@
-using Microsoft.AspNetCore.Http;
-using Microsoft.AspNetCore.Http.HttpResults;
-using Microsoft.AspNetCore.Mvc;
-using StellaOps.Auth.Abstractions;
-using Xunit;
-
-namespace StellaOps.Auth.Abstractions.Tests;
-
-public class StellaOpsProblemResultFactoryTests
-{
-    [Fact]
-    public void AuthenticationRequired_ReturnsCanonicalProblem()
-    {
-        var result = StellaOpsProblemResultFactory.AuthenticationRequired(instance: "/jobs");
-
-        Assert.Equal(StatusCodes.Status401Unauthorized, result.StatusCode);
-        var details = Assert.IsType<ProblemDetails>(result.ProblemDetails);
-        Assert.Equal("https://docs.stella-ops.org/problems/authentication-required", details.Type);
-        Assert.Equal("Authentication required", details.Title);
-        Assert.Equal("/jobs", details.Instance);
-        Assert.Equal("unauthorized", details.Extensions["error"]);
-        Assert.Equal(details.Detail, details.Extensions["error_description"]);
-    }
-
-    [Fact]
-    public void InvalidToken_UsesProvidedDetail()
-    {
-        var result = StellaOpsProblemResultFactory.InvalidToken("expired refresh token");
-
-        var details = Assert.IsType<ProblemDetails>(result.ProblemDetails);
-        Assert.Equal(StatusCodes.Status401Unauthorized, result.StatusCode);
-        Assert.Equal("expired refresh token", details.Detail);
-        Assert.Equal("invalid_token", details.Extensions["error"]);
-    }
-
-    [Fact]
-    public void InsufficientScope_AddsScopeExtensions()
-    {
-        var result = StellaOpsProblemResultFactory.InsufficientScope(
-            new[] { StellaOpsScopes.FeedserJobsTrigger },
-            new[] { StellaOpsScopes.AuthorityUsersManage },
-            instance: "/jobs/trigger");
-
-        Assert.Equal(StatusCodes.Status403Forbidden, result.StatusCode);
-
-        var details = Assert.IsType<ProblemDetails>(result.ProblemDetails);
-        Assert.Equal("https://docs.stella-ops.org/problems/insufficient-scope", details.Type);
-        Assert.Equal("insufficient_scope", details.Extensions["error"]);
-        Assert.Equal(new[] { StellaOpsScopes.FeedserJobsTrigger }, Assert.IsType<string[]>(details.Extensions["required_scopes"]));
-        Assert.Equal(new[] { StellaOpsScopes.AuthorityUsersManage }, Assert.IsType<string[]>(details.Extensions["granted_scopes"]));
-        Assert.Equal("/jobs/trigger", details.Instance);
-    }
-}
+using Microsoft.AspNetCore.Http;
+using Microsoft.AspNetCore.Http.HttpResults;
+using Microsoft.AspNetCore.Mvc;
+using StellaOps.Auth.Abstractions;
+using Xunit;
+
+namespace StellaOps.Auth.Abstractions.Tests;
+
+public class StellaOpsProblemResultFactoryTests
+{
+    [Fact]
+    public void AuthenticationRequired_ReturnsCanonicalProblem()
+    {
+        var result = StellaOpsProblemResultFactory.AuthenticationRequired(instance: "/jobs");
+
+        Assert.Equal(StatusCodes.Status401Unauthorized, result.StatusCode);
+        var details = Assert.IsType<ProblemDetails>(result.ProblemDetails);
+        Assert.Equal("https://docs.stella-ops.org/problems/authentication-required", details.Type);
+        Assert.Equal("Authentication required", details.Title);
+        Assert.Equal("/jobs", details.Instance);
+        Assert.Equal("unauthorized", details.Extensions["error"]);
+        Assert.Equal(details.Detail, details.Extensions["error_description"]);
+    }
+
+    [Fact]
+    public void InvalidToken_UsesProvidedDetail()
+    {
+        var result = StellaOpsProblemResultFactory.InvalidToken("expired refresh token");
+
+        var details = Assert.IsType<ProblemDetails>(result.ProblemDetails);
+        Assert.Equal(StatusCodes.Status401Unauthorized, result.StatusCode);
+        Assert.Equal("expired refresh token", details.Detail);
+        Assert.Equal("invalid_token", details.Extensions["error"]);
+    }
+
+    [Fact]
+    public void InsufficientScope_AddsScopeExtensions()
+    {
+        var result = StellaOpsProblemResultFactory.InsufficientScope(
+            new[] { StellaOpsScopes.ConcelierJobsTrigger },
+            new[] { StellaOpsScopes.AuthorityUsersManage },
+            instance: "/jobs/trigger");
+
+        Assert.Equal(StatusCodes.Status403Forbidden, result.StatusCode);
+
+        var details = Assert.IsType<ProblemDetails>(result.ProblemDetails);
+        Assert.Equal("https://docs.stella-ops.org/problems/insufficient-scope", details.Type);
+        Assert.Equal("insufficient_scope", details.Extensions["error"]);
+        Assert.Equal(new[] { StellaOpsScopes.ConcelierJobsTrigger }, Assert.IsType<string[]>(details.Extensions["required_scopes"]));
+        Assert.Equal(new[] { StellaOpsScopes.AuthorityUsersManage }, Assert.IsType<string[]>(details.Extensions["granted_scopes"]));
+        Assert.Equal("/jobs/trigger", details.Instance);
+    }
+}