add controller test + fix check method

2024-11-06 08:25:21 +00:00 · 2021-03-05 14:43:32 +03:00 · 2021-03-05 14:43:32 +03:00 · a88353e54d
commit a88353e54d
parent e177a2a275
2 changed files with 15 additions and 1 deletions
--- a/src/main/java/com/rbkmoney/orgmanager/controller/OrgsController.java
+++ b/src/main/java/com/rbkmoney/orgmanager/controller/OrgsController.java
@ -144,7 +144,7 @@ public class OrgsController implements OrgsApi {
            String userId,
            MemberRole body) {
        log.info("Assign member role: requestId={}, orgId={}, payload={}", xRequestID, orgId, body);
-        resourceAccessService.checkRoleRights(orgId, body);
+        resourceAccessService.checkMemberRoleRights(orgId, userId, body);
        return organizationService.assignMemberRole(orgId, userId, body);
    }

--- a/src/test/java/com/rbkmoney/orgmanager/controller/OrgsControllerTest.java
+++ b/src/test/java/com/rbkmoney/orgmanager/controller/OrgsControllerTest.java
@ -97,6 +97,20 @@ public class OrgsControllerTest extends AbstractControllerTest {
                .andExpect(status().isForbidden());
    }

+    @Test
+    public void assignMemberRoleWithoutAccess() throws Exception {
+        MemberRole memberRole = TestData.buildMemberRole();
+        doThrow(new AccessDeniedException("Access denied")).when(resourceAccessService)
+                .checkMemberRoleRights(ORGANIZATION_ID, MEMBER_ID, memberRole);
+
+        mockMvc.perform(put(String.format("/orgs/%s/members/%s/roles", ORGANIZATION_ID, MEMBER_ID))
+                .contentType("application/json")
+                .content(objectMapper.writeValueAsString(memberRole))
+                .header("Authorization", "Bearer " + generateRBKadminJwt())
+                .header("X-Request-ID", "testRequestId"))
+                .andExpect(status().isForbidden());
+    }
+
    @Test
    public void assignMemberRoleTest() throws Exception {
        MemberRole memberRole = TestData.buildMemberRole();