// Copyright (c) .NET Foundation. All rights reserved. // Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information. using System; using System.Security.Claims; using Microsoft.AspNetCore.Authentication.Cookies; using Microsoft.Extensions.DependencyInjection; using Microsoft.Extensions.Options; using Xunit; namespace Microsoft.AspNetCore.Identity.Test { public class IdentityOptionsTest { [Fact] public void VerifyDefaultOptions() { var options = new IdentityOptions(); Assert.True(options.Lockout.AllowedForNewUsers); Assert.Equal(TimeSpan.FromMinutes(5), options.Lockout.DefaultLockoutTimeSpan); Assert.Equal(5, options.Lockout.MaxFailedAccessAttempts); Assert.True(options.Password.RequireDigit); Assert.True(options.Password.RequireLowercase); Assert.True(options.Password.RequireNonAlphanumeric); Assert.True(options.Password.RequireUppercase); Assert.Equal(6, options.Password.RequiredLength); Assert.Equal(1, options.Password.RequiredUniqueChars); Assert.Equal("abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789-._@+", options.User.AllowedUserNameCharacters); Assert.False(options.User.RequireUniqueEmail); Assert.Equal(ClaimTypes.Role, options.ClaimsIdentity.RoleClaimType); Assert.Equal(ClaimTypes.Name, options.ClaimsIdentity.UserNameClaimType); Assert.Equal(ClaimTypes.NameIdentifier, options.ClaimsIdentity.UserIdClaimType); Assert.Equal("AspNet.Identity.SecurityStamp", options.ClaimsIdentity.SecurityStampClaimType); } [Fact] public void CanCustomizeIdentityOptions() { var services = new ServiceCollection().Configure(options => options.Password.RequiredLength = -1); services.AddIdentity(); var serviceProvider = services.BuildServiceProvider(); var setup = serviceProvider.GetRequiredService>(); Assert.NotNull(setup); var optionsGetter = serviceProvider.GetRequiredService>(); Assert.NotNull(optionsGetter); var myOptions = optionsGetter.Value; Assert.True(myOptions.Password.RequireLowercase); Assert.True(myOptions.Password.RequireDigit); Assert.True(myOptions.Password.RequireNonAlphanumeric); Assert.True(myOptions.Password.RequireUppercase); Assert.Equal(1, myOptions.Password.RequiredUniqueChars); Assert.Equal(-1, myOptions.Password.RequiredLength); } [Fact] public void CanSetupIdentityOptions() { var services = new ServiceCollection(); services.AddIdentity(options => options.User.RequireUniqueEmail = true); var serviceProvider = services.BuildServiceProvider(); var optionsGetter = serviceProvider.GetRequiredService>(); Assert.NotNull(optionsGetter); var myOptions = optionsGetter.Value; Assert.True(myOptions.User.RequireUniqueEmail); } [Fact] public void CanConfigureCookieOptions() { var services = new ServiceCollection(); services.AddAuthentication().AddIdentityCookies(o => { o.ApplicationCookie.Configure(a => a.Cookie.Name = "a"); o.ExternalCookie.Configure(a => a.Cookie.Name = "b"); o.TwoFactorRememberMeCookie.Configure(a => a.Cookie.Name = "c"); o.TwoFactorUserIdCookie.Configure(a => a.Cookie.Name = "d"); }); var serviceProvider = services.BuildServiceProvider(); var options = serviceProvider.GetRequiredService>(); Assert.NotNull(options); Assert.Equal("a", options.Get(IdentityConstants.ApplicationScheme).Cookie.Name); Assert.Equal("b", options.Get(IdentityConstants.ExternalScheme).Cookie.Name); Assert.Equal("c", options.Get(IdentityConstants.TwoFactorRememberMeScheme).Cookie.Name); Assert.Equal("d", options.Get(IdentityConstants.TwoFactorUserIdScheme).Cookie.Name); } } }