38fc9b4102
Adds "Recent audit activity" deep links from four edit/detail pages into
the central Audit Log, each with a pre-filter encoded in the query string
that the Audit Log page (Bundle D0) now parses on initialization:
- External Systems (Design/ExternalSystemForm) → ?target={Name}
- API Keys (Admin/ApiKeyForm) → ?actor={Name}&channel=ApiInbound
- Sites (Admin/SiteForm) → ?site={SiteIdentifier}
- Instances (Deployment/InstanceConfigure) → ?instance={UniqueName}
The link is suppressed on create/new flows where there is nothing to
drill into yet. Instance is UI-only on the filter bar (the repository
filter contract has no instance column), so the page-side prefill threads
through the InitialInstanceSearch seam on AuditFilterBar.
Site Calls (#22 M7-T11) drill-in is DEFERRED: the Central UI does not
yet host a Site Calls listing page, per M3 reality notes. Add the
drill-in when that page lands.
#23 M7-T12
73 lines
2.6 KiB
C#
73 lines
2.6 KiB
C#
using System.Security.Claims;
|
|
using Bunit;
|
|
using Microsoft.AspNetCore.Components;
|
|
using Microsoft.AspNetCore.Components.Authorization;
|
|
using Microsoft.Extensions.DependencyInjection;
|
|
using Microsoft.JSInterop;
|
|
using NSubstitute;
|
|
using ScadaLink.Commons.Entities.InboundApi;
|
|
using ScadaLink.Commons.Interfaces.Repositories;
|
|
using ScadaLink.Security;
|
|
using ApiKeyForm = ScadaLink.CentralUI.Components.Pages.Admin.ApiKeyForm;
|
|
|
|
namespace ScadaLink.CentralUI.Tests.Admin;
|
|
|
|
/// <summary>
|
|
/// Bundle D drill-in test (#23 M7-T12) for the API Keys edit page. The chip
|
|
/// routes operators into the central Audit Log pre-filtered by Actor = ApiKey.Name
|
|
/// AND Channel = ApiInbound (no other channel uses the key name as actor, but
|
|
/// the explicit channel scope keeps deep links tight). Create mode suppresses
|
|
/// the link — there's no API key to drill into yet.
|
|
/// </summary>
|
|
public class ApiKeyFormAuditDrillinTests : BunitContext
|
|
{
|
|
private readonly IInboundApiRepository _repo = Substitute.For<IInboundApiRepository>();
|
|
|
|
public ApiKeyFormAuditDrillinTests()
|
|
{
|
|
Services.AddSingleton(_repo);
|
|
|
|
var claims = new[]
|
|
{
|
|
new Claim("Username", "admin"),
|
|
new Claim(JwtTokenService.RoleClaimType, "Admin"),
|
|
};
|
|
var user = new ClaimsPrincipal(new ClaimsIdentity(claims, "TestAuth"));
|
|
Services.AddSingleton<AuthenticationStateProvider>(new TestAuthStateProvider(user));
|
|
Services.AddAuthorizationCore();
|
|
AuthorizationPolicies.AddScadaLinkAuthorization(Services);
|
|
}
|
|
|
|
[Fact]
|
|
public void EditPage_HasRecentAuditActivityLink_WithActorAndApiInboundChannel()
|
|
{
|
|
var key = ApiKey.FromHash("Orders-Integration", "k-hash");
|
|
key.Id = 11;
|
|
_repo.GetApiKeyByIdAsync(11, Arg.Any<CancellationToken>()).Returns(key);
|
|
_repo.GetAllApiMethodsAsync(Arg.Any<CancellationToken>())
|
|
.Returns(Task.FromResult<IReadOnlyList<ApiMethod>>(new List<ApiMethod>()));
|
|
|
|
var cut = Render<ApiKeyForm>(p => p.Add(c => c.Id, 11));
|
|
|
|
cut.WaitForAssertion(() =>
|
|
{
|
|
var link = cut.Find("a[data-test=\"audit-link\"]");
|
|
Assert.Equal(
|
|
"/audit/log?actor=Orders-Integration&channel=ApiInbound",
|
|
link.GetAttribute("href"));
|
|
Assert.Contains("Recent audit activity", link.TextContent);
|
|
});
|
|
}
|
|
|
|
[Fact]
|
|
public void CreatePage_HasNoRecentAuditActivityLink()
|
|
{
|
|
var cut = Render<ApiKeyForm>();
|
|
|
|
cut.WaitForAssertion(() =>
|
|
{
|
|
Assert.Empty(cut.FindAll("a[data-test=\"audit-link\"]"));
|
|
});
|
|
}
|
|
}
|