using Bit.Core.AdminConsole.Collections;
using Bit.Core.Enums;
using Bit.Core.Repositories;
using Xunit;
namespace Bit.Infrastructure.IntegrationTest.AdminConsole.Repositories.CollectionRepository;
public class CreateDefaultCollectionsTests
{
///
/// Test that CreateDefaultCollectionsAsync successfully creates default collections for new users
/// with correct permissions
///
[Theory, DatabaseData]
public async Task CreateDefaultCollectionsAsync_CreatesDefaultCollections_Success(
IUserRepository userRepository,
IOrganizationRepository organizationRepository,
ICollectionRepository collectionRepository,
IOrganizationUserRepository organizationUserRepository)
{
// Arrange
var user1 = await userRepository.CreateTestUserAsync("user1");
var user2 = await userRepository.CreateTestUserAsync("user2");
var organization = await organizationRepository.CreateTestOrganizationAsync();
var orgUser1 = await organizationUserRepository.CreateTestOrganizationUserAsync(organization, user1);
var orgUser2 = await organizationUserRepository.CreateTestOrganizationUserAsync(organization, user2);
// Act
await collectionRepository.CreateDefaultCollectionsAsync(
organization.Id,
[orgUser1.Id, orgUser2.Id],
"My Items");
// Assert
var collectionsWithAccess = await collectionRepository.GetManyByOrganizationIdWithAccessAsync(organization.Id);
var defaultCollections = collectionsWithAccess
.Where(c => c.Item1.Type == CollectionType.DefaultUserCollection)
.ToList();
Assert.Equal(2, defaultCollections.Count);
Assert.All(defaultCollections, c => Assert.Equal("My Items", c.Item1.Name));
Assert.All(defaultCollections, c => Assert.Equal(organization.Id, c.Item1.OrganizationId));
var semaphores = await collectionRepository.GetDefaultCollectionSemaphoresAsync([orgUser1.Id, orgUser2.Id]);
Assert.Equal([orgUser1.Id, orgUser2.Id], semaphores);
// Verify each user has exactly 1 collection with correct permissions
var orgUser1Collection = Assert.Single(defaultCollections,
c => c.Item2.Users.FirstOrDefault()?.Id == orgUser1.Id);
Assert.Empty(orgUser1Collection.Item2.Groups);
var orgUser1CollectionUser = orgUser1Collection.Item2.Users.Single();
Assert.False(orgUser1CollectionUser.ReadOnly);
Assert.False(orgUser1CollectionUser.HidePasswords);
Assert.True(orgUser1CollectionUser.Manage);
// Verify each user has exactly 1 collection with correct permissions
var orgUser2Collection = Assert.Single(defaultCollections,
c => c.Item2.Users.FirstOrDefault()?.Id == orgUser2.Id);
Assert.Empty(orgUser2Collection.Item2.Groups);
var orgUser2CollectionUser = orgUser2Collection.Item2.Users.Single();
Assert.False(orgUser2CollectionUser.ReadOnly);
Assert.False(orgUser2CollectionUser.HidePasswords);
Assert.True(orgUser2CollectionUser.Manage);
}
///
/// Test that calling CreateDefaultCollectionsAsync multiple times does NOT create duplicates
///
[Theory, DatabaseData]
public async Task CreateDefaultCollectionsAsync_CalledMultipleTimes_DoesNotCreateDuplicates(
IUserRepository userRepository,
IOrganizationRepository organizationRepository,
ICollectionRepository collectionRepository,
IOrganizationUserRepository organizationUserRepository)
{
// Arrange
var user = await userRepository.CreateTestUserAsync();
var organization = await organizationRepository.CreateTestOrganizationAsync();
var orgUser = await organizationUserRepository.CreateTestOrganizationUserAsync(organization, user);
// Act - Call twice
await collectionRepository.CreateDefaultCollectionsAsync(
organization.Id,
[orgUser.Id],
"My Items");
// Second call should throw specific exception and should not create duplicate
await Assert.ThrowsAsync(() =>
collectionRepository.CreateDefaultCollectionsAsync(
organization.Id,
[orgUser.Id],
"My Items Duplicate"));
// Assert - Only one collection should exist
var collections = await collectionRepository.GetManyByOrganizationIdAsync(organization.Id);
var defaultCollections = collections.Where(c => c.Type == CollectionType.DefaultUserCollection).ToList();
Assert.Single(defaultCollections);
var semaphores = await collectionRepository.GetDefaultCollectionSemaphoresAsync([orgUser.Id]);
Assert.Equal([orgUser.Id], semaphores);
var access = await collectionRepository.GetManyUsersByIdAsync(defaultCollections.Single().Id);
var userAccess = Assert.Single(access);
Assert.Equal(orgUser.Id, userAccess.Id);
Assert.False(userAccess.ReadOnly);
Assert.False(userAccess.HidePasswords);
Assert.True(userAccess.Manage);
}
}