using Shouldly;
using Xunit;
using ZB.MOM.WW.OtOpcUa.Host.Configuration;

namespace ZB.MOM.WW.OtOpcUa.Tests.Security
{
    public class SecurityProfileConfigurationTests
    {
        [Fact]
        public void DefaultConfig_HasNoneProfile()
        {
            var config = new SecurityProfileConfiguration();
            config.Profiles.ShouldContain("None");
            config.Profiles.Count.ShouldBe(1);
        }

        [Fact]
        public void DefaultConfig_AutoAcceptTrue()
        {
            var config = new SecurityProfileConfiguration();
            config.AutoAcceptClientCertificates.ShouldBe(true);
        }

        [Fact]
        public void DefaultConfig_RejectSha1True()
        {
            var config = new SecurityProfileConfiguration();
            config.RejectSHA1Certificates.ShouldBe(true);
        }

        [Fact]
        public void DefaultConfig_MinKeySize2048()
        {
            var config = new SecurityProfileConfiguration();
            config.MinimumCertificateKeySize.ShouldBe(2048);
        }

        [Fact]
        public void DefaultConfig_PkiRootPathNull()
        {
            var config = new SecurityProfileConfiguration();
            config.PkiRootPath.ShouldBeNull();
        }

        [Fact]
        public void DefaultConfig_CertificateSubjectNull()
        {
            var config = new SecurityProfileConfiguration();
            config.CertificateSubject.ShouldBeNull();
        }
    }
}