Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: idp/rp test apps #1332

Merged
merged 12 commits into from
Oct 17, 2023
Merged

feat: idp/rp test apps #1332

merged 12 commits into from
Oct 17, 2023

Conversation

dopry
Copy link
Contributor

@dopry dopry commented Oct 5, 2023
edited
Loading

Implement a minimal testing IDP and RP for maintainers.

There is a single Application configured in the IDP for the RP sample application it used the OIDC Authorization + PKCE flow.

This is a meant to be a starting point for building out further test scenarios.

applies to #1266

Description of the Change

implements a test IDP using DOT and RP as a pre-cursor to developing playwright E2E tests.

Checklist

  • PR only contains one change (considered splitting up PR)
  • [N/A] unit-test added
  • documentation updated
  • CHANGELOG.md updated (only for user relevant changes)
  • author name in AUTHORS

@dopry dopry requested a review from n2ygk October 5, 2023 14:52
@codecov
Copy link

codecov bot commented Oct 5, 2023
edited
Loading

Codecov Report

Merging #1332 (50dff93) into master (1c4a997) will increase coverage by 0.02%.
The diff coverage is 100.00%.

@@            Coverage Diff             @@
##           master    #1332      +/-   ##
==========================================
+ Coverage   97.44%   97.46%   +0.02%     
==========================================
  Files          32       32              
  Lines        2073     2092      +19     
==========================================
+ Hits         2020     2039      +19     
  Misses         53       53
Files Coverage Δ
oauth2_provider/models.py 98.63% <100.00%> (+0.05%) ⬆️
oauth2_provider/oauth2_backends.py 94.64% <100.00%> (+0.09%) ⬆️
oauth2_provider/oauth2_validators.py 94.10% <100.00%> (+0.02%) ⬆️
oauth2_provider/views/application.py 100.00% <ø> (ø)

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

@dopry dopry force-pushed the feature/test-apps branch 4 times, most recently from 787a0e1 to cee2181 Compare October 10, 2023 15:37
akanstantsinau and others added 11 commits October 10, 2023 11:55
@akanstantsinau @dopry
Fix CORS by passing 'Origin' header to OAuthLib
8201ba8 
It is possible to control CORS by overriding is_origin_allowed method
of RequestValidator class.
OAuthLib allows origin if:
- is_origin_allowed returns True for particular request
- Request connection is secure
- Request has 'Origin' header
@akanstantsinau @dopry
Fixed tests for Access-Control-Allow-Origin header returned by oauthlib
9bda65b
@akanstantsinau @dopry
Added Allowed Origins application setting
6b05f98
@pre-commit-ci @dopry
[pre-commit.ci] auto fixes from pre-commit.com hooks
5727340 
for more information, see https://pre-commit.ci
@akanstantsinau @dopry
Updated documentation
49a53c7
@akanstantsinau @dopry
Code and docs cleanup
2a0c1cb
@akanstantsinau @dopry
Code cleanup
1dde8e9
@akanstantsinau @dopry
Code review: update docs and test names
68cf388
@akanstantsinau @dopry
Code review: update allowed_origins documentation
525ebf5
@akanstantsinau @dopry
Added more tests
e804de6
@akanstantsinau @dopry
Added default value for allowed_origins
ecc16c6
@dopry dopry requested a review from tonial October 10, 2023 16:48
@tonial
Copy link
Contributor

tonial commented Oct 10, 2023

I'll look into this PR on Friday.

tonial
tonial approved these changes Oct 16, 2023
View reviewed changes
Copy link
Contributor

@tonial tonial left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this test app is a great addition to this project.

I've never used svelte before so I don't really feel qualified to judge this part of this PR, but it works and it's easy to use, so I think it should be enough for anyone.

I also think the svelte part would benefit from enhancements in the future to be able to test multiple scenarios (with or without PKCE, using basic auth or passing client_id + client_secret, ...), but it should not slow down this PR.

tests/app/README.md Outdated Show resolved Hide resolved
tests/app/idp/idp/settings.py Show resolved Hide resolved
tests/app/idp/idp/settings.py Show resolved Hide resolved
@dopry
feat: idp/rp test apps
50dff93 
Implement a minimal testing IDP and RP for maintainers.

There is a single Application configured in the IDP for
the RP sample application it used the OIDC Authorization
+ PKCE flow.

This is a meant to be a starting point for building out
further test scenarios.
@dopry dopry force-pushed the feature/test-apps branch from cee2181 to 50dff93 Compare October 16, 2023 15:48
@dopry dopry merged commit f9fcaff into jazzband:master Oct 17, 2023
26 checks passed
@dopry dopry deleted the feature/test-apps branch October 19, 2023 20:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tonial tonial tonial approved these changes

@n2ygk n2ygk Awaiting requested review from n2ygk

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@dopry @tonial @n2ygk @akanstantsinau