Upgrade Authorization::assertSatIsAllowed method

MKodde · MKodde · commit 1024255529e8 · 2022-08-25T16:12:42.000+02:00
Only when the Identity owned a self-asserted token (SAT), or when the
identity does not have a tokey yet, allow the Identity to vet a self
asesrted token.
diff --git a/src/Surfnet/StepupMiddleware/ApiBundle/Tests/Authorization/Service/AuthorizationServiceTest.php b/src/Surfnet/StepupMiddleware/ApiBundle/Tests/Authorization/Service/AuthorizationServiceTest.php
@@ -286,7 +286,6 @@ public function test_it_allows_when_identity_with_prior_sat_meets_all_requiremen
         $this->assertEmpty($messages);
     }
 
-
     public function test_recovery_tokens_never_owned_a_sat_token_but_did_own_other_token_type()
     {
         $identity = new Identity();

Original file line number	Diff line number	Diff line change
`@@ -286,7 +286,6 @@ public function test_it_allows_when_identity_with_prior_sat_meets_all_requiremen`
`286`	`286`	`$this->assertEmpty($messages);`
`287`	`287`	`}`
`288`	`288`
`289`		`-`
`290`	`289`	`public function test_recovery_tokens_never_owned_a_sat_token_but_did_own_other_token_type()`
`291`	`290`	`{`
`292`	`291`	`$identity = new Identity();`