Skip to content

test: add full OIDC fake IDP #9317

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 20 commits into from
Aug 25, 2023
Merged

test: add full OIDC fake IDP #9317

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
20 commits
Select commit Hold shift + click to select a range
46c2c62
test: implement fake OIDC provider with full functionality
Emyrk Aug 23, 2023
7d16bc1
full idp fake for oidc
Emyrk Aug 24, 2023
8bfd428
Refactor existing tests
Emyrk Aug 24, 2023
da69b16
create refresh helper
Emyrk Aug 24, 2023
f906fae
Merge remote-tracking branch 'origin/main' into stevenmasley/full_oid…
Emyrk Aug 24, 2023
a8a9633
refactor all old tests, delete old fake
Emyrk Aug 24, 2023
a1b716b
comments
Emyrk Aug 24, 2023
dffeb16
Fix import
Emyrk Aug 24, 2023
3be7d31
Fix comments
Emyrk Aug 24, 2023
4b31e28
Fix issue with expirary json
Emyrk Aug 24, 2023
722e36f
fixup! Fix issue with expirary json
Emyrk Aug 24, 2023
00b4760
Linting
Emyrk Aug 24, 2023
1c7e8b4
Pr feedback, add authorized redirect urls
Emyrk Aug 25, 2023
930e7dd
PR Feedback
Emyrk Aug 25, 2023
c61ceb9
Linting
Emyrk Aug 25, 2023
6e6084b
Linting
Emyrk Aug 25, 2023
9a600c0
Move sync map to utils
Emyrk Aug 25, 2023
6030a5f
Fix panic
Emyrk Aug 25, 2023
2b0ff9c
Linting
Emyrk Aug 25, 2023
64866da
Merge remote-tracking branch 'origin/main' into stevenmasley/full_oid…
Emyrk Aug 25, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
Linting
  • Loading branch information
@Emyrk
Emyrk committed Aug 25, 2023
commit 2b0ff9cea445c0030ee05066589b231430d44c15
12 changes: 6 additions & 6 deletions coderd/coderdtest/oidctest/idp.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -435,7 +435,7 @@ func (f *FakeIDP) httpHandler(t testing.TB) http.Handler {
// This endpoint is required to initialize the OIDC provider.
// It is used to get the OIDC configuration.
mux.Get("/.well-known/openid-configuration", func(rw http.ResponseWriter, r *http.Request) {
f.logger.Info(r.Context(), "HTTP OIDC Config", slog.F("url", r.URL.String()))
f.logger.Info(r.Context(), "http OIDC config", slog.F("url", r.URL.String()))

_ = json.NewEncoder(rw).Encode(f.provider)
})
Expand Down Expand Up @@ -496,7 +496,7 @@ func (f *FakeIDP) httpHandler(t testing.TB) http.Handler {

mux.Handle(tokenPath, http.HandlerFunc(func(rw http.ResponseWriter, r *http.Request) {
values, err := f.authenticateOIDCClientRequest(t, r)
f.logger.Info(r.Context(), "http call token",
f.logger.Info(r.Context(), "http idp call token",
slog.Error(err),
slog.F("values", values.Encode()),
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

potential NPE here on values

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yup, but this is intentional and ok. The Encode function accepts a nil pointer!
https://go.dev/play/p/tSOYbeQJJG4

)
Expand Down Expand Up @@ -595,7 +595,7 @@ func (f *FakeIDP) httpHandler(t testing.TB) http.Handler {

mux.Handle(userInfoPath, http.HandlerFunc(func(rw http.ResponseWriter, r *http.Request) {
token, err := f.authenticateBearerTokenRequest(t, r)
f.logger.Info(r.Context(), "http call user info",
f.logger.Info(r.Context(), "http call idp user info",
slog.Error(err),
slog.F("url", r.URL.String()),
)
Expand All @@ -614,7 +614,7 @@ func (f *FakeIDP) httpHandler(t testing.TB) http.Handler {
}))

mux.Handle(keysPath, http.HandlerFunc(func(rw http.ResponseWriter, r *http.Request) {
f.logger.Info(r.Context(), "http call keys")
f.logger.Info(r.Context(), "http call idp /keys")
set := jose.JSONWebKeySet{
Keys: []jose.JSONWebKey{
{
Expand Down Expand Up @@ -691,10 +691,10 @@ func (f *FakeIDP) UpdateRefreshClaims(refreshToken string, claims jwt.MapClaims)

// SetRedirect is required for the IDP to know where to redirect and call
// Coderd.
func (f *FakeIDP) SetRedirect(t testing.TB, url string) {
func (f *FakeIDP) SetRedirect(t testing.TB, u string) {
t.Helper()

f.cfg.RedirectURL = url
f.cfg.RedirectURL = u
}

// SetCoderdCallback is optional and only works if not using the IsServing.
Expand Down
2 changes: 1 addition & 1 deletion coderd/userauth_test.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -67,7 +67,7 @@ func TestOIDCOauthLoginWithExisting(t *testing.T) {
helper.ExpireOauthToken(t, api.Database, userClient)

// Instead of refreshing, just log in again.
userClient, _ = helper.Login(t, claims)
helper.Login(t, claims)
}

func TestUserLogin(t *testing.T) {
Expand Down