## Tests for DomainBasedPermission The code to test is [here](https://github.com/pulp/pulp-service/blob/main/pulp_service/pulp_service/app/authorization.py#L21C7-L21C28). * ~~Any authenticated user can list domains~~ * ~~An anonymous user can't list a domain~~ * ~~Only owners can delete a domain~~ * ~~Admin can create + delete a repo inside the default domain~~ * ~~Test domain creation + create repo inside domain using a user Authenticating with Basic Auth (create the user ahead of time via API)~~ * ~~A user presnts an identity header just with their username and no org_id. Then try to create a domain, create a repo inside the domain, and then delete that domain.~~