akanealw/Charon
1
0
Fork 0
Code Issues Pull Requests Actions 16 Packages Projects Releases Wiki Activity
Files
main
Charon/tests/security-enforcement/acl-creation.spec.ts
akanealw eec8c28fb3
Some checks are pending
Go Benchmark / Performance Regression Check (push) Waiting to run
Details
Cerberus Integration / Cerberus Security Stack Integration (push) Waiting to run
Details
Upload Coverage to Codecov / Backend Codecov Upload (push) Waiting to run
Details
Upload Coverage to Codecov / Frontend Codecov Upload (push) Waiting to run
Details
CodeQL - Analyze / CodeQL analysis (go) (push) Waiting to run
Details
CodeQL - Analyze / CodeQL analysis (javascript-typescript) (push) Waiting to run
Details
CrowdSec Integration / CrowdSec Bouncer Integration (push) Waiting to run
Details
Docker Build, Publish & Test / build-and-push (push) Waiting to run
Details
Docker Build, Publish & Test / Security Scan PR Image (push) Blocked by required conditions
Details
Quality Checks / Auth Route Protection Contract (push) Waiting to run
Details
Quality Checks / Codecov Trigger/Comment Parity Guard (push) Waiting to run
Details
Quality Checks / Backend (Go) (push) Waiting to run
Details
Quality Checks / Frontend (React) (push) Waiting to run
Details
Rate Limit integration / Rate Limiting Integration (push) Waiting to run
Details
Security Scan (PR) / Trivy Binary Scan (push) Waiting to run
Details
Supply Chain Verification (PR) / Verify Supply Chain (push) Waiting to run
Details
WAF integration / Coraza WAF Integration (push) Waiting to run
Details
changed perms
2026-04-22 18:19:14 +00:00

84 lines
2.8 KiB
TypeScript
Executable File
Raw Permalink Blame History

import { test, expect } from '@playwright/test';
const TEST_EMAIL = process.env.E2E_TEST_EMAIL || 'e2e-test@example.com';
const TEST_PASSWORD = process.env.E2E_TEST_PASSWORD || 'TestPassword123!';
async function authenticate(request: import('@playwright/test').APIRequestContext): Promise<string> {
const loginResponse = await request.post('/api/v1/auth/login', {
data: {
email: TEST_EMAIL,
password: TEST_PASSWORD,
},
});
expect(loginResponse.ok()).toBeTruthy();
const loginBody = await loginResponse.json();
expect(loginBody.token).toBeTruthy();
return loginBody.token as string;
}
test.describe('ACL Creation Baseline', () => {
test('should create ACL and security header profile for dropdown coverage', async ({ request }) => {
const token = await authenticate(request);
const unique = Date.now();
const aclName = `ACL Baseline ${unique}`;
const profileName = `Headers Baseline ${unique}`;
await test.step('Create ACL baseline entry', async () => {
const aclResponse = await request.post('/api/v1/access-lists', {
headers: {
Authorization: `Bearer ${token}`,
},
data: {
name: aclName,
type: 'whitelist',
enabled: true,
ip_rules: JSON.stringify([
{
cidr: '127.0.0.1/32',
description: 'Local test runner',
},
]),
},
});
expect(aclResponse.ok()).toBeTruthy();
});
await test.step('Create security headers profile baseline entry', async () => {
const profileResponse = await request.post('/api/v1/security/headers/profiles', {
headers: {
Authorization: `Bearer ${token}`,
},
data: {
name: profileName,
},
});
expect(profileResponse.status()).toBe(201);
});
await test.step('Verify baseline entries are queryable', async () => {
const aclListResponse = await request.get('/api/v1/access-lists', {
headers: {
Authorization: `Bearer ${token}`,
},
});
expect(aclListResponse.ok()).toBeTruthy();
const aclList = await aclListResponse.json();
expect(Array.isArray(aclList)).toBeTruthy();
expect(aclList.some((item: { name?: string }) => item.name === aclName)).toBeTruthy();
const profileListResponse = await request.get('/api/v1/security/headers/profiles', {
headers: {
Authorization: `Bearer ${token}`,
},
});
expect(profileListResponse.ok()).toBeTruthy();
const profilePayload = await profileListResponse.json();
const profiles = Array.isArray(profilePayload?.profiles) ? profilePayload.profiles : [];
expect(profiles.some((item: { name?: string }) => item.name === profileName)).toBeTruthy();
});
});
});
Reference in New Issue View Git Blame Copy Permalink