implement unit tests for remaining features

Author: marcelomonteironosi

src/main/java/cv/igrp/platform/access_management/authorization/application/commands/handler/SingleCheckAuthorizationHandler.java

@@ -6,6 +6,7 @@
 import cv.igrp.platform.access_management.authorization.application.dto.PermissionCheckResponseDTO;
 import org.springframework.stereotype.Service;
 
+import java.util.Arrays;
 import java.util.concurrent.ExecutionException;
 
 @Service
@@ -33,6 +34,8 @@ public PermissionCheckResponseDTO checkAuthorization(String username, String act
             responseDto.setResolutionTimeMs(permissionCheckResponse.getResolutionTimeMs());
             return responseDto;
         } catch (InterruptedException | ExecutionException e) {
+            System.err.println(e.getMessage());
+            System.err.println(Arrays.toString(e.getStackTrace()));
             throw new RuntimeException(e);
         }
     }

src/test/java/cv/igrp/platform/access_management/authorization/application/commands/BatchCheckAuthorizationCommandHandlerTest.java

@@ -1,40 +1,97 @@
 package cv.igrp.platform.access_management.authorization.application.commands;
 
-import static org.mockito.Mockito.*;
-import static org.junit.jupiter.api.Assertions.*;
-
+import cv.igrp.platform.access_management.authorization.application.commands.handler.SingleCheckAuthorizationHandler;
+import cv.igrp.platform.access_management.authorization.application.dto.PermissionCheckRequestDTO;
+import cv.igrp.platform.access_management.authorization.application.dto.PermissionCheckResponseDTO;
+import cv.igrp.platform.access_management.shared.security.AuthenticationHelper;
 import org.junit.jupiter.api.BeforeEach;
 import org.junit.jupiter.api.Test;
 import org.junit.jupiter.api.extension.ExtendWith;
 import org.mockito.InjectMocks;
+import org.mockito.Mock;
 import org.mockito.junit.jupiter.MockitoExtension;
 import org.springframework.http.ResponseEntity;
-import cv.igrp.platform.access_management.authorization.application.commands.*;
-import cv.igrp.platform.access_management.authorization.application.commands.*;
 
+import java.util.List;
+
+import static org.junit.jupiter.api.Assertions.*;
+import static org.mockito.Mockito.*;
+
+/**
+ * Unit tests for {@link BatchCheckAuthorizationCommandHandler}.
+ */
 @ExtendWith(MockitoExtension.class)
-public class BatchCheckAuthorizationCommandHandlerTest {
+class BatchCheckAuthorizationCommandHandlerTest {
+
+    @Mock
+    private AuthenticationHelper authenticationHelper;
+
+    @Mock
+    private SingleCheckAuthorizationHandler singleCheckAuthorizationHandler;
 
     @InjectMocks
-    private BatchCheckAuthorizationCommandHandler batchCheckAuthorizationCommandHandler;
+    private BatchCheckAuthorizationCommandHandler handler;
+
+    private BatchCheckAuthorizationCommand command;
+    private PermissionCheckResponseDTO response1;
+    private PermissionCheckResponseDTO response2;
 
     @BeforeEach
     void setUp() {
-      // TODO: initialize mock dependencies if needed
+        // Prepare mock request DTOs
+        PermissionCheckRequestDTO dto1 = new PermissionCheckRequestDTO();
+        dto1.setAction("read");
+        dto1.setResource("document");
+
+        PermissionCheckRequestDTO dto2 = new PermissionCheckRequestDTO();
+        dto2.setAction("write");
+        dto2.setResource("report");
+
+        command = new BatchCheckAuthorizationCommand();
+        command.setPermissioncheckrequest(List.of(dto1, dto2));
+
+        // Prepare mock responses
+        response1 = new PermissionCheckResponseDTO();
+        response1.setAllowed(true);
+        response1.setReason("Allowed by admin role");
+
+        response2 = new PermissionCheckResponseDTO();
+        response2.setAllowed(false);
+        response2.setReason("Insufficient permissions");
+    }
+
+    @Test
+    void testHandle_ShouldReturnListOfResponses() {
+        when(authenticationHelper.getPreferredUsername()).thenReturn("john");
+        when(singleCheckAuthorizationHandler.checkAuthorization("john", "read", "document")).thenReturn(response1);
+        when(singleCheckAuthorizationHandler.checkAuthorization("john", "write", "report")).thenReturn(response2);
+
+        ResponseEntity<List<PermissionCheckResponseDTO>> result = handler.handle(command);
+
+        assertNotNull(result);
+        assertNotNull(result.getBody());
+        assertEquals(2, result.getBody().size());
+        assertEquals(response1, result.getBody().get(0));
+        assertEquals(response2, result.getBody().get(1));
+
+        verify(authenticationHelper).getPreferredUsername();
+        verify(singleCheckAuthorizationHandler, times(2)).checkAuthorization(anyString(), anyString(), anyString());
     }
 
     @Test
-    void testHandle() {
-        // TODO: Implement unit test for handle method
-        // Example:
-        // Given
-        // BatchCheckAuthorizationCommand command = new BatchCheckAuthorizationCommand(...);
-        //
-        // When
-        // ResponseEntity<List<PermissionCheckResponseDTO>> response = batchCheckAuthorizationCommandHandler.handle(command);
-        //
-        // Then
-        // assertNotNull(response);
-        // assertEquals(..., response.getBody());
+    void testHandle_WithEmptyRequests_ShouldReturnEmptyList() {
+        BatchCheckAuthorizationCommand emptyCommand = new BatchCheckAuthorizationCommand();
+        emptyCommand.setPermissioncheckrequest(List.of());
+
+        when(authenticationHelper.getPreferredUsername()).thenReturn("john");
+
+        ResponseEntity<List<PermissionCheckResponseDTO>> result = handler.handle(emptyCommand);
+
+        assertNotNull(result);
+        assertNotNull(result.getBody());
+        assertTrue(result.getBody().isEmpty());
+
+        verify(authenticationHelper).getPreferredUsername();
+        verifyNoInteractions(singleCheckAuthorizationHandler);
     }
 }

src/test/java/cv/igrp/platform/access_management/authorization/application/commands/CheckAuthorizationCommandHandlerTest.java

@@ -1,40 +1,80 @@
 package cv.igrp.platform.access_management.authorization.application.commands;
 
-import static org.mockito.Mockito.*;
-import static org.junit.jupiter.api.Assertions.*;
-
+import cv.igrp.platform.access_management.authorization.application.commands.handler.SingleCheckAuthorizationHandler;
+import cv.igrp.platform.access_management.authorization.application.dto.PermissionCheckRequestDTO;
+import cv.igrp.platform.access_management.authorization.application.dto.PermissionCheckResponseDTO;
+import cv.igrp.platform.access_management.shared.security.AuthenticationHelper;
 import org.junit.jupiter.api.BeforeEach;
 import org.junit.jupiter.api.Test;
 import org.junit.jupiter.api.extension.ExtendWith;
 import org.mockito.InjectMocks;
+import org.mockito.Mock;
 import org.mockito.junit.jupiter.MockitoExtension;
+import org.springframework.http.HttpStatus;
 import org.springframework.http.ResponseEntity;
-import cv.igrp.platform.access_management.authorization.application.commands.*;
-import cv.igrp.platform.access_management.authorization.application.commands.*;
 
+import java.util.List;
+
+import static org.mockito.Mockito.*;
+import static org.junit.jupiter.api.Assertions.*;
+
+/**
+ * Tests {@link CheckAuthorizationCommandHandler}.
+ */
 @ExtendWith(MockitoExtension.class)
-public class CheckAuthorizationCommandHandlerTest {
+class CheckAuthorizationCommandHandlerTest {
+
+    @Mock
+    private AuthenticationHelper authenticationHelper;
+
+    @Mock
+    private SingleCheckAuthorizationHandler singleCheckAuthorizationHandler;
 
     @InjectMocks
-    private CheckAuthorizationCommandHandler checkAuthorizationCommandHandler;
+    private CheckAuthorizationCommandHandler handler;
+
+    private CheckAuthorizationCommand command;
 
     @BeforeEach
     void setUp() {
-      // TODO: initialize mock dependencies if needed
+        var request = new PermissionCheckRequestDTO();
+        request.setAction("read");
+        request.setResource("document");
+        command = new CheckAuthorizationCommand(request);
     }
 
     @Test
-    void testHandle() {
-        // TODO: Implement unit test for handle method
-        // Example:
-        // Given
-        // CheckAuthorizationCommand command = new CheckAuthorizationCommand(...);
-        //
-        // When
-        // ResponseEntity<String> response = checkAuthorizationCommandHandler.handle(command);
-        //
-        // Then
-        // assertNotNull(response);
-        // assertEquals(..., response.getBody());
+    void testHandle_ShouldReturnOkResponseWithExpectedBody() {
+        String username = "john.doe";
+        PermissionCheckResponseDTO expectedResponse = new PermissionCheckResponseDTO();
+        expectedResponse.setAllowed(true);
+        expectedResponse.setViaRoles(List.of("ADMIN"));
+
+        when(authenticationHelper.getPreferredUsername()).thenReturn(username);
+        when(singleCheckAuthorizationHandler.checkAuthorization(username, "read", "document"))
+                .thenReturn(expectedResponse);
+
+        ResponseEntity<PermissionCheckResponseDTO> response = handler.handle(command);
+
+        assertNotNull(response);
+        assertEquals(HttpStatus.OK, response.getStatusCode());
+        assertEquals(expectedResponse, response.getBody());
+
+        verify(authenticationHelper).getPreferredUsername();
+        verify(singleCheckAuthorizationHandler).checkAuthorization(username, "read", "document");
+    }
+
+    @Test
+    void testHandle_WhenHandlerReturnsNull_ShouldStillReturnOkResponse() {
+        String username = "jane.doe";
+        when(authenticationHelper.getPreferredUsername()).thenReturn(username);
+        when(singleCheckAuthorizationHandler.checkAuthorization(username, "read", "document"))
+                .thenReturn(null);
+
+        ResponseEntity<PermissionCheckResponseDTO> response = handler.handle(command);
+
+        assertNotNull(response);
+        assertEquals(HttpStatus.OK, response.getStatusCode());
+        assertNull(response.getBody());
     }
-}
+}

src/test/java/cv/igrp/platform/access_management/authorization/application/commands/handler/SingleCheckAuthorizationHandlerTest.java

@@ -0,0 +1,75 @@
+package cv.igrp.platform.access_management.authorization.application.commands.handler;
+
+import cv.igrp.framework.auth.core.authorization.model.PermissionCheckRequest;
+import cv.igrp.framework.auth.core.authorization.model.PermissionCheckResponse;
+import cv.igrp.framework.auth.core.authorization.service.AuthorizationCore;
+import cv.igrp.platform.access_management.authorization.application.dto.PermissionCheckResponseDTO;
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.Test;
+import org.junit.jupiter.api.extension.ExtendWith;
+import org.mockito.InjectMocks;
+import org.mockito.Mock;
+import org.mockito.junit.jupiter.MockitoExtension;
+
+import java.util.List;
+import java.util.concurrent.CompletableFuture;
+import java.util.concurrent.ExecutionException;
+
+import static org.mockito.Mockito.*;
+import static org.junit.jupiter.api.Assertions.*;
+
+/**
+ * Unit tests for {@link SingleCheckAuthorizationHandler}.
+ */
+@ExtendWith(MockitoExtension.class)
+class SingleCheckAuthorizationHandlerTest {
+
+    @Mock
+    private AuthorizationCore authorizationCore;
+
+    @InjectMocks
+    private SingleCheckAuthorizationHandler handler;
+
+    private PermissionCheckResponse permissionCheckResponse;
+
+    @BeforeEach
+    void setUp() {
+        permissionCheckResponse = new PermissionCheckResponse();
+        permissionCheckResponse.setAllowed(true);
+        permissionCheckResponse.setViaRoles(List.of("ADMIN"));
+        permissionCheckResponse.setReason("Access granted");
+        permissionCheckResponse.setCacheHit(true);
+        permissionCheckResponse.setResolutionTimeMs(12);
+    }
+
+    @Test
+    void testCheckAuthorization_ShouldReturnValidResponse() {
+        when(authorizationCore.check(any(PermissionCheckRequest.class)))
+                .thenReturn(CompletableFuture.completedFuture(permissionCheckResponse));
+
+        PermissionCheckResponseDTO dto = handler.checkAuthorization("john", "read", "document");
+
+        assertNotNull(dto);
+        assertTrue(dto.isAllowed());
+        assertEquals(List.of("ADMIN"), dto.getViaRoles());
+        assertEquals("Access granted", dto.getReason());
+        assertTrue(dto.isCacheHit());
+        assertEquals(12, dto.getResolutionTimeMs());
+    }
+
+    @Test
+    void testCheckAuthorization_WhenFutureThrowsException_ShouldWrapAndThrowRuntimeException() {
+        // Mock the async call to throw an ExecutionException when .get() is called
+        CompletableFuture<PermissionCheckResponse> failedFuture = new CompletableFuture<>();
+        failedFuture.completeExceptionally(new RuntimeException("Backend failure"));
+        when(authorizationCore.check(any(PermissionCheckRequest.class))).thenReturn(failedFuture);
+
+        RuntimeException ex = assertThrows(RuntimeException.class, () ->
+                handler.checkAuthorization("john", "read", "document")
+        );
+
+        assertInstanceOf(ExecutionException.class, ex.getCause());
+        assertInstanceOf(RuntimeException.class, ex.getCause().getCause());
+        assertEquals("Backend failure", ex.getCause().getCause().getMessage());
+    }
+}