Skip to content

test: add authorization service unit tests #83

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
JanZachmann wants to merge 5 commits into
base: main
Choose a base branch
from
Open

test: add authorization service unit tests #83

JanZachmann wants to merge 5 commits into from

Conversation

@JanZachmann
Copy link
Contributor

@JanZachmann JanZachmann commented Dec 18, 2025

Summary

Add comprehensive unit tests for AuthorizationService to validate role-based access control logic.

Tests Added (12)

FleetAdministrator Role

  • ✅ Valid tenant succeeds
  • ✅ Invalid tenant fails
  • ✅ Multiple tenants including valid succeeds

FleetOperator Role

  • ✅ Matching fleet succeeds
  • ✅ Non-matching fleet fails
  • ✅ Multiple fleets including match succeeds
  • ✅ Without fleet_list in claims fails
  • ✅ Invalid tenant fails

FleetObserver Role

  • ✅ Valid tenant still fails (role has no access)

Missing Claims

  • ✅ Without tenant_list fails
  • ✅ Without roles fails

Token Verification

  • ✅ Invalid SSO token fails

Implementation Details

  • Uses mockall to mock SingleSignOnProvider and DeviceServiceClient
  • Tests organized in nested modules by role type
  • Helper function create_claims() for test data
  • All edge cases covered per authorization rules

Test Results

cargo test --features mock services::auth::authorization::tests

All 12 tests pass ✅

Impact

  • Total backend tests: 28 → 40 (+12)
  • Coverage: Comprehensive authorization logic validation
  • Phase: 1.1 of backend test plan

Checklist

  • All tests pass
  • Code formatted with cargo fmt
  • Clippy passes
  • BACKEND_TEST_CONCEPT.md updated

Signed-off-by: Jan Zachmann 50990105+JanZachmann@users.noreply.github.com

@JanZachmann
docs: initialize E2E test strategy in FRONTEND_TEST_CONCEPT.md
fe06015 
Signed-off-by: Jan Zachmann <50990105+JanZachmann@users.noreply.github.com>
@JanZachmann
test: setup E2E infrastructure with Playwright and Docker
1de5710 
Signed-off-by: Jan Zachmann <50990105+JanZachmann@users.noreply.github.com>
@JanZachmann
docs: update test concept with completed Phase 3 tasks
2148d5b 
Signed-off-by: Jan Zachmann <50990105+JanZachmann@users.noreply.github.com>
@JanZachmann
test: implement critical path E2E tests and infrastructure fixes
98956a3 
- Implemented auth.spec.ts, device.spec.ts, network.spec.ts
- Added centrifugo fixture helper
- Fixed Centrifugo subscription in App.vue
- Improved test scripts for argument forwarding
- Configured playwright to ignore HTTPS errors
- Added jsonwebtoken for test token generation

Signed-off-by: Jan Zachmann <50990105+JanZachmann@users.noreply.github.com>
@JanZachmann
test: add authorization service unit tests
51bdf63 
Add comprehensive unit tests for AuthorizationService covering:
- FleetAdministrator role with valid/invalid tenants
- FleetOperator role with matching/non-matching fleets
- FleetObserver role rejection
- Missing claims (roles, tenant_list, fleet_list) handling
- Invalid SSO token verification

Tests use mockall to mock SingleSignOnProvider and DeviceServiceClient.

12 tests added, bringing total backend tests from 28 to 40.

Signed-off-by: Jan Zachmann <50990105+JanZachmann@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@JanZachmann