test: add backend security regression test foundation

2026-03-22 14:00:49 +01:00
parent 10e10bb6a7
commit 47c72de283
4 changed files with 93 additions and 0 deletions
@@ -0,0 +1,23 @@
+using System.Reflection;
+using JobTrackerApi.Controllers;
+using Xunit;
+
+namespace JobTrackerApi.Tests;
+
+public sealed class AttachmentsControllerTests
+{
+    [Fact]
+    public void Allowed_extensions_include_common_document_and_image_formats()
+    {
+        var field = typeof(AttachmentsController).GetField("AllowedExtensions", BindingFlags.NonPublic | BindingFlags.Static);
+        Assert.NotNull(field);
+
+        var allowed = Assert.IsAssignableFrom<System.Collections.IEnumerable>(field!.GetValue(null));
+        var values = allowed.Cast<string>().ToHashSet(StringComparer.OrdinalIgnoreCase);
+
+        Assert.Contains(".pdf", values);
+        Assert.Contains(".docx", values);
+        Assert.Contains(".png", values);
+        Assert.DoesNotContain(".exe", values);
+    }
+}