closeHandleCaptor = ArgumentCaptor.forClass(MsrpcSamrCloseHandle.class);
    }

    @Test
    void constructor_shouldOpenDomainSuccessfully() throws IOException {
        // Arrange
        int access = 0x01; // Example access value
        // Simulate successful RPC call
        doAnswer(invocation -> {
            MsrpcSamrOpenDomain rpc = invocation.getArgument(0);
            rpc.retval = 0; // Success
            return null;

 * mask of the ACE, the whole access check fails. If the ACE is an "allow"
 * ACE and <i>all</i> of the bits in the desired access bits match bits in
 * the access mask of the ACE, the access check is successful. Otherwise,
 * more ACEs are evaluated until all desired access bits (combined)
 * are "allowed". If all of the desired access bits are not "allowed"

    /** Search log access type field name. */
    public static final String SEARCH_LOG_ACCESS_TYPE = "searchLogAccessType";

    /** Search log access type for JSON API. */
    public static final String SEARCH_LOG_ACCESS_TYPE_JSON = "json";

    /** Search log access type for GSA API. */
    public static final String SEARCH_LOG_ACCESS_TYPE_GSA = "gsa";

    /**
     * Get a resource
     *
     * @param url the URL of the SMB resource
     * @return the SMB resource at the specified location
     * @throws CIFSException if the resource cannot be accessed
     */
    SmbResource get(String url) throws CIFSException;

    /**
     * Get a pipe resource
     *
     * @param url the URL of the SMB pipe resource
     * @param pipeType

    }

    /**
     * Convert RDMA access flags to DiSNI flags
     *
     * @param access RDMA access flags
     * @return DiSNI access flags
     */
    @SuppressWarnings("unused")
    private int convertAccessFlags(EnumSet<RdmaAccess> access) {
        int flags = 0;

        // In real implementation, this would convert to DiSNI constants:
        // if (access.contains(RdmaAccess.LOCAL_READ)) {

    }

    /**
     * Stores an access result in the OpenSearch index.
     *
     * @param accessResult The access result to store.
     */
    @Override
    public void store(final OpenSearchAccessResult accessResult) {
        super.insert(accessResult, accessResult.getId() == null ? OpType.CREATE : OpType.INDEX);
    }

    /**
     * Updates an access result in the OpenSearch index.
     *

 */
package jcifs.internal.smb2.rdma;

/**
 * RDMA memory access permissions for registered memory regions.
 * These flags control what operations can be performed on a memory region.
 */
public enum RdmaAccess {
    /**
     * Local read access to the memory region
     */
    LOCAL_READ,

    /**
     * Local write access to the memory region
     */
    LOCAL_WRITE,

    /**

 * governing permissions and limitations under the License.
 */
package org.codelibs.fess.exception;

/**
 * Exception thrown when an invalid access token is encountered.
 * This exception is typically used in authentication and authorization contexts
 * where a provided access token is invalid, expired, or malformed.
 */
public class InvalidAccessTokenException extends FessSystemException {

        // Determine lease level based on access requirements
        // Check for delete access separately as it may require special handling
        final boolean hasDeleteAccess = (access & DELETE) != 0;
        final boolean hasWriteAccess =
                (access & (GENERIC_WRITE | FILE_WRITE_DATA | FILE_APPEND_DATA | FILE_WRITE_ATTRIBUTES | FILE_WRITE_EA)) != 0;

    scopes={"read": "Read access", "write": "Write access"},
)


async def get_token(token: Annotated[str, Depends(oauth2_scheme)]) -> str:
    return token


app = FastAPI(dependencies=[Depends(get_token)])


@app.get("/admin", dependencies=[Security(get_token, scopes=["read", "write"])])
async def read_admin():
    return {"message": "Admin Access"}


client = TestClient(app)