Make sure the create user is respecting the disable-registration settings

BTCPayServer.Tests/BTCPayServerTester.cs

@@ -95,7 +95,8 @@ namespace BTCPayServer.Tests
 
         public HashSet<string> Chains { get; set; } = new HashSet<string>(){"BTC"};
         public bool UseLightning { get; set; }
-
+        public bool AllowAdminRegistration { get; set; } = true;
+        public bool DisableRegistration { get; set; } = false;
         public async Task StartAsync()
         {
             if (!Directory.Exists(_Directory))
@@ -137,6 +138,7 @@ namespace BTCPayServer.Tests
                 config.AppendLine($"lbtc.explorer.url={LBTCNBXplorerUri.AbsoluteUri}");
                 config.AppendLine($"lbtc.explorer.cookiefile=0");
             }
+            if (AllowAdminRegistration)
                 config.AppendLine("allow-admin-registration=1");
            
             config.AppendLine($"torrcfile={TestUtils.GetTestDataFullPath("Tor/torrc")}");
@@ -161,7 +163,7 @@ namespace BTCPayServer.Tests
             HttpClient = new HttpClient();
             HttpClient.BaseAddress = ServerUri;
             Environment.SetEnvironmentVariable("ASPNETCORE_ENVIRONMENT", "Development");
-            var conf = new DefaultConfiguration() { Logger = Logs.LogProvider.CreateLogger("Console") }.CreateConfiguration(new[] { "--datadir", _Directory, "--conf", confPath, "--disable-registration", "false" });
+            var conf = new DefaultConfiguration() { Logger = Logs.LogProvider.CreateLogger("Console") }.CreateConfiguration(new[] { "--datadir", _Directory, "--conf", confPath, "--disable-registration", DisableRegistration ? "true" : "false" });
             _Host = new WebHostBuilder()
                     .UseConfiguration(conf)
                     .UseContentRoot(FindBTCPayServerDirectory())

BTCPayServer.Tests/GreenfieldAPITests.cs

@@ -61,6 +61,7 @@ namespace BTCPayServer.Tests
         {
             using (var tester = ServerTester.Create(newDb: true))
             {
+                tester.PayTester.DisableRegistration = true;
                 await tester.StartAsync();
                 var unauthClient = new BTCPayServerClient(tester.PayTester.ServerUri);
                 await AssertHttpError(400, async () => await unauthClient.CreateUser(new CreateApplicationUserRequest()));
@@ -133,8 +134,9 @@ namespace BTCPayServer.Tests
         [Trait("Integration", "Integration")]
         public async Task UsersControllerTests()
         {
-            using (var tester = ServerTester.Create())
+            using (var tester = ServerTester.Create(newDb: true))
             {
+                tester.PayTester.DisableRegistration = true;
                 await tester.StartAsync();
                 var user = tester.NewAccount();
                 user.GrantAccess();
@@ -152,12 +154,11 @@ namespace BTCPayServer.Tests
                 await Assert.ThrowsAsync<HttpRequestException>(async () => await clientInsufficient.GetCurrentUser());
                 await clientServer.GetCurrentUser();
 
-                // TODO: Disabling this check for now because it conflicts with expecation in line 120
-                //await Assert.ThrowsAsync<HttpRequestException>(async () => await clientInsufficient.CreateUser(new CreateApplicationUserRequest()
-                //{
-                //    Email = $"{Guid.NewGuid()}@g.com",
-                //    Password = Guid.NewGuid().ToString()
-                //}));
+                await Assert.ThrowsAsync<HttpRequestException>(async () => await clientInsufficient.CreateUser(new CreateApplicationUserRequest()
+                {
+                    Email = $"{Guid.NewGuid()}@g.com",
+                    Password = Guid.NewGuid().ToString()
+                }));
 
                 var newUser = await clientServer.CreateUser(new CreateApplicationUserRequest()
                 {

BTCPayServer/Controllers/RestApi/Users/UsersController.cs

@@ -30,6 +30,7 @@ namespace BTCPayServer.Controllers.RestApi.Users
         private readonly EventAggregator _eventAggregator;
         private readonly IPasswordValidator<ApplicationUser> _passwordValidator;
         private readonly RateLimitService _throttleService;
+        private readonly BTCPayServerOptions _options;
         private readonly IAuthorizationService _authorizationService;
 
         public UsersController(UserManager<ApplicationUser> userManager, BTCPayServerOptions btcPayServerOptions,
@@ -37,6 +38,7 @@ namespace BTCPayServer.Controllers.RestApi.Users
             EventAggregator eventAggregator,
             IPasswordValidator<ApplicationUser> passwordValidator,
             NicolasDorier.RateLimits.RateLimitService throttleService,
+            Configuration.BTCPayServerOptions options,
             IAuthorizationService authorizationService)
         {
             _userManager = userManager;
@@ -46,6 +48,7 @@ namespace BTCPayServer.Controllers.RestApi.Users
             _eventAggregator = eventAggregator;
             _passwordValidator = passwordValidator;
             _throttleService = throttleService;
+            _options = options;
             _authorizationService = authorizationService;
         }
 
@@ -139,12 +142,15 @@ namespace BTCPayServer.Controllers.RestApi.Users
                 }
                 await _userManager.AddToRoleAsync(user, Roles.ServerAdmin);
                 if (!anyAdmin)
+                {
+                    if (_options.DisableRegistration)
                     {
                         // automatically lock subscriptions now that we have our first admin
                         policies.LockSubscription = true;
                         await _settingsRepository.UpdateSetting(policies);
                     }
                 }
+            }
             _eventAggregator.Publish(new UserRegisteredEvent() {Request = Request, User = user, Admin = request.IsAdministrator is true });
             return CreatedAtAction(string.Empty, user);
         }