akanealw
eec8c28fb3
Go Benchmark / Performance Regression Check (push) Has been cancelled
Cerberus Integration / Cerberus Security Stack Integration (push) Has been cancelled
Upload Coverage to Codecov / Backend Codecov Upload (push) Has been cancelled
Upload Coverage to Codecov / Frontend Codecov Upload (push) Has been cancelled
CodeQL - Analyze / CodeQL analysis (go) (push) Has been cancelled
CodeQL - Analyze / CodeQL analysis (javascript-typescript) (push) Has been cancelled
CrowdSec Integration / CrowdSec Bouncer Integration (push) Has been cancelled
Docker Build, Publish & Test / build-and-push (push) Has been cancelled
Quality Checks / Auth Route Protection Contract (push) Has been cancelled
Quality Checks / Codecov Trigger/Comment Parity Guard (push) Has been cancelled
Quality Checks / Backend (Go) (push) Has been cancelled
Quality Checks / Frontend (React) (push) Has been cancelled
Rate Limit integration / Rate Limiting Integration (push) Has been cancelled
Security Scan (PR) / Trivy Binary Scan (push) Has been cancelled
Supply Chain Verification (PR) / Verify Supply Chain (push) Has been cancelled
WAF integration / Coraza WAF Integration (push) Has been cancelled
Docker Build, Publish & Test / Security Scan PR Image (push) Has been cancelled
Repo Health Check / Repo health (push) Has been cancelled
History Rewrite Dry-Run / Dry-run preview for history rewrite (push) Has been cancelled
Prune Renovate Branches / prune (push) Has been cancelled
Renovate / renovate (push) Has been cancelled
Nightly Build & Package / sync-development-to-nightly (push) Has been cancelled
Nightly Build & Package / Trigger Nightly Validation Workflows (push) Has been cancelled
Nightly Build & Package / build-and-push-nightly (push) Has been cancelled
Nightly Build & Package / test-nightly-image (push) Has been cancelled
Nightly Build & Package / verify-nightly-supply-chain (push) Has been cancelled
Update GeoLite2 Checksum / update-checksum (push) Has been cancelled
Container Registry Prune / prune-ghcr (push) Has been cancelled
Container Registry Prune / prune-dockerhub (push) Has been cancelled
Container Registry Prune / summarize (push) Has been cancelled
Supply Chain Verification / Verify SBOM (push) Has been cancelled
Supply Chain Verification / Verify Release Artifacts (push) Has been cancelled
Supply Chain Verification / Verify Docker Image Supply Chain (push) Has been cancelled
Monitor Caddy Major Release / check-caddy-major (push) Has been cancelled
Weekly Nightly to Main Promotion / Verify Nightly Branch Health (push) Has been cancelled
Weekly Nightly to Main Promotion / Create Promotion PR (push) Has been cancelled
Weekly Nightly to Main Promotion / Trigger Missing Required Checks (push) Has been cancelled
Weekly Nightly to Main Promotion / Notify on Failure (push) Has been cancelled
Weekly Nightly to Main Promotion / Workflow Summary (push) Has been cancelled
Weekly Security Rebuild / Security Rebuild & Scan (push) Has been cancelled
1.8 KiB
Executable File
1.8 KiB
Executable File
Manual Testing: Security Test Helpers
Created: June 2025 Priority: Medium Status: Open
Objective
Verify the security test helpers implementation prevents ACL deadlock during E2E test execution.
Test Scenarios
Scenario 1: ACL Toggle Isolation
- Run security dashboard tests that toggle ACL on
- Intentionally cancel mid-test (Ctrl+C)
- Run any other E2E test (e.g., manual-dns-provider)
- Expected: Tests should pass - global-setup.ts should reset ACL
Scenario 2: State Restoration After Failure
- Modify a security dashboard toggle test to throw an error after enabling ACL
- Run the test (it will fail)
- Run a different test file
- Expected: ACL should be disabled, other tests should pass
Scenario 3: Concurrent Test Runs
- Run full E2E suite:
npx playwright test --project=chromium - Expected: No tests fail due to ACL blocking (@api-tagged requests)
- Expected: Security dashboard toggle tests complete without deadlock
Scenario 4: Fresh Container State
- Stop all containers:
docker compose -f .docker/compose/docker-compose.yml down -v - Start fresh:
docker compose -f .docker/compose/docker-compose.ci.yml up -d - Run security dashboard tests
- Expected: Tests pass, ACL state properly managed
Verification Commands
# Full E2E suite
npx playwright test --project=chromium
# Security-specific tests
npx playwright test tests/security/*.spec.ts --project=chromium
# Check ACL is disabled after tests
curl -s http://localhost:8080/api/v1/security/status | jq '.acl_enabled'
Acceptance Criteria
- Security dashboard toggle tests pass consistently
- No "403 Forbidden" errors in unrelated tests after security tests run
- global-setup.ts emergency reset works when ACL is stuck enabled
- afterAll cleanup creates fresh request context (no fixture reuse errors)