public void HttpAddressIsForbidden()
{
context.Request.RequestUri = new Uri("http://www.server.domain");
sut.OnAuthorization(context);
Assert.AreEqual(HttpStatusCode.Forbidden, context.Response.StatusCode);
}