AgileWebs/thalos-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
ab4013fcf4
thalos-service/tests/Thalos.Service.Application.UnitTests/EvaluateIdentityPolicyUseCaseTests.cs
José René White Enciso ab4013fcf4 feat(identity): add policy contract integration 
- WHY: enforce identity-only contract boundaries for policy orchestration
- WHAT: add thalos-owned policy contracts, adapters, and grpc translation surfaces
- RULE: apply workspace dependency graph and identity ownership constraints
2026-02-22 03:44:44 -06:00

50 lines
1.9 KiB
C#
Raw Blame History

using Thalos.Service.Application.Adapters;
using Thalos.Service.Application.Ports;
using Thalos.Service.Application.UseCases;
using Thalos.Service.Identity.Abstractions.Contracts;
namespace Thalos.Service.Application.UnitTests;
public class EvaluateIdentityPolicyUseCaseTests
{
[Fact]
public async Task HandleAsync_WhenCalled_UsesIdentityContractsAndReturnsMappedResponse()
{
var useCase = new EvaluateIdentityPolicyUseCase(
new FakeIdentityCapabilityContractAdapter(),
new FakeIdentityPolicyContextReadPort());
var response = await useCase.HandleAsync(new EvaluateIdentityPolicyRequest("subject-1", "tenant-1", "perm.read"));
Assert.Equal("subject-1", response.SubjectId);
Assert.Equal("perm.read", response.PermissionCode);
Assert.True(response.IsAllowed);
}
private sealed class FakeIdentityCapabilityContractAdapter : IIdentityCapabilityContractAdapter
{
public IdentityPolicyContextRequest CreatePolicyContext(EvaluateIdentityPolicyRequest identityRequest)
{
return new IdentityPolicyContextRequest(identityRequest.SubjectId, identityRequest.TenantId, identityRequest.PermissionCode);
}
public EvaluateIdentityPolicyResponse MapPolicyResponse(
EvaluateIdentityPolicyRequest identityRequest,
IdentityPolicyContextResponse contextResponse)
{
return new EvaluateIdentityPolicyResponse(
identityRequest.SubjectId,
identityRequest.PermissionCode,
contextResponse.ContextSatisfied);
}
}
private sealed class FakeIdentityPolicyContextReadPort : IIdentityPolicyContextReadPort
{
public Task<IdentityPolicyContextResponse> ReadPolicyContextAsync(IdentityPolicyContextRequest request)
{
return Task.FromResult(new IdentityPolicyContextResponse(request.SubjectId, request.PermissionCode, true));
}
}
}
Reference in New Issue View Git Blame Copy Permalink