akanealw/Charon
1
0
Fork 0
Code Issues Pull Requests Actions 16 Packages Projects Releases Wiki Activity
Files
6777f6e8ff19e47c6401e8847bf30cc7e33eb86d
Charon/docs/issues/created/20260125-manual-test-security-helpers.md
GitHub Actions 3169b05156 fix: skip incomplete system log viewer tests 
- Marked 12 tests as skip pending feature implementation
- Features tracked in GitHub issue #686 (system log viewer feature completion)
- Tests cover sorting by timestamp/level/method/URI/status, pagination controls, filtering by text/level, download functionality
- Unblocks Phase 2 at 91.7% pass rate to proceed to Phase 3 security enforcement validation
- TODO comments in code reference GitHub #686 for feature completion tracking
- Tests skipped: Pagination (3), Search/Filter (2), Download (2), Sorting (1), Log Display (4)
2026-02-09 21:55:55 +00:00

1.8 KiB
Raw Blame History

Manual Testing: Security Test Helpers

Created: June 2025 Priority: Medium Status: Open

Objective

Verify the security test helpers implementation prevents ACL deadlock during E2E test execution.

Test Scenarios

Scenario 1: ACL Toggle Isolation

  1. Run security dashboard tests that toggle ACL on
  2. Intentionally cancel mid-test (Ctrl+C)
  3. Run any other E2E test (e.g., manual-dns-provider)
  4. Expected: Tests should pass - global-setup.ts should reset ACL

Scenario 2: State Restoration After Failure

  1. Modify a security dashboard toggle test to throw an error after enabling ACL
  2. Run the test (it will fail)
  3. Run a different test file
  4. Expected: ACL should be disabled, other tests should pass

Scenario 3: Concurrent Test Runs

  1. Run full E2E suite: npx playwright test --project=chromium
  2. Expected: No tests fail due to ACL blocking (@api-tagged requests)
  3. Expected: Security dashboard toggle tests complete without deadlock

Scenario 4: Fresh Container State

  1. Stop all containers: docker compose -f .docker/compose/docker-compose.yml down -v
  2. Start fresh: docker compose -f .docker/compose/docker-compose.ci.yml up -d
  3. Run security dashboard tests
  4. Expected: Tests pass, ACL state properly managed

Verification Commands

# Full E2E suite
npx playwright test --project=chromium

# Security-specific tests
npx playwright test tests/security/*.spec.ts --project=chromium

# Check ACL is disabled after tests
curl -s http://localhost:8080/api/v1/security/status | jq '.acl_enabled'

Acceptance Criteria

  • Security dashboard toggle tests pass consistently
  • No "403 Forbidden" errors in unrelated tests after security tests run
  • global-setup.ts emergency reset works when ACL is stuck enabled
  • afterAll cleanup creates fresh request context (no fixture reuse errors)
Reference in New Issue View Git Blame Copy Permalink