libre.sh/keycloak-scim
3
0
Fork 0
Code Issues 15 Pull requests Releases Packages Activity Actions

Improve tests to ensure managed users disabled upon disabling the org can't be updated

Browse source 
Closes #28891

Signed-off-by: Stefan Guilhen <sguilhen@redhat.com>
This commit is contained in:
Stefan Guilhen 2024-05-07 17:18:14 -03:00 committed by Pedro Igor
parent aa5c7c0310
commit dde2746595
1 changed files with 12 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/organization/admin/OrganizationMemberTest.java
View file

@ -23,6 +23,7 @@ import static org.hamcrest.Matchers.equalTo;
import static org.hamcrest.Matchers.hasSize;
import static org.hamcrest.Matchers.is;
import static org.hamcrest.Matchers.not;
import static org.hamcrest.Matchers.notNullValue;
import static org.junit.Assert.assertEquals;
import static org.junit.Assert.assertFalse;
import static org.junit.Assert.assertNotNull;
@ -201,16 +202,27 @@ public class OrganizationMemberTest extends AbstractOrganizationTest {
}
// fetching users from the users endpoint should have the same result.
UserRepresentation disabledUser = null;
existing = testRealm().users().search("*neworg*",0, 10);
assertThat(existing, not(empty()));
assertThat(existing, hasSize(6));
for (UserRepresentation user : existing) {
if (user.getEmail().equals(bc.getUserEmail())) {
assertThat(user.isEnabled(), is(false));
disabledUser = user;
} else {
assertThat(user.isEnabled(), is(true));
}
}
assertThat(disabledUser, notNullValue());
// try to update the disabled user (for example, try to re-enable the user) - should not be possible.
disabledUser.setEnabled(true);
try {
testRealm().users().get(disabledUser.getId()).update(disabledUser);
fail("Should not be possible to update disabled org user");
} catch(BadRequestException ignored) {
}
}
@Test