long-agent a6a0e58340 test: add more UserHandler tests for RBAC coverage ...

Add tests for UserHandler permission checks:
- TestUserHandler_UpdateUserStatus_RequiresAdmin
- TestUserHandler_GetUserRoles_Success
- TestUserHandler_AssignRoles_RequiresAdmin
- TestUserHandler_BatchUpdateStatus_RequiresAdmin
- TestUserHandler_BatchDelete_RequiresAdmin
- TestUserHandler_BatchDelete_EmptyIDs_RequiresAdmin

These tests verify that admin-only endpoints properly return 403
for non-admin users (RBAC security validation).

2026-04-09 14:00:42 +08:00

41 KiB

Raw Blame History

View Raw