akanealw
eec8c28fb3
Some checks failed
Go Benchmark / Performance Regression Check (push) Has been cancelled
Cerberus Integration / Cerberus Security Stack Integration (push) Has been cancelled
Upload Coverage to Codecov / Backend Codecov Upload (push) Has been cancelled
Upload Coverage to Codecov / Frontend Codecov Upload (push) Has been cancelled
CodeQL - Analyze / CodeQL analysis (go) (push) Has been cancelled
CodeQL - Analyze / CodeQL analysis (javascript-typescript) (push) Has been cancelled
CrowdSec Integration / CrowdSec Bouncer Integration (push) Has been cancelled
Docker Build, Publish & Test / build-and-push (push) Has been cancelled
Quality Checks / Auth Route Protection Contract (push) Has been cancelled
Quality Checks / Codecov Trigger/Comment Parity Guard (push) Has been cancelled
Quality Checks / Backend (Go) (push) Has been cancelled
Quality Checks / Frontend (React) (push) Has been cancelled
Rate Limit integration / Rate Limiting Integration (push) Has been cancelled
Security Scan (PR) / Trivy Binary Scan (push) Has been cancelled
Supply Chain Verification (PR) / Verify Supply Chain (push) Has been cancelled
WAF integration / Coraza WAF Integration (push) Has been cancelled
Docker Build, Publish & Test / Security Scan PR Image (push) Has been cancelled
Repo Health Check / Repo health (push) Has been cancelled
History Rewrite Dry-Run / Dry-run preview for history rewrite (push) Has been cancelled
Prune Renovate Branches / prune (push) Has been cancelled
Renovate / renovate (push) Has been cancelled
Nightly Build & Package / sync-development-to-nightly (push) Has been cancelled
Nightly Build & Package / Trigger Nightly Validation Workflows (push) Has been cancelled
Nightly Build & Package / build-and-push-nightly (push) Has been cancelled
Nightly Build & Package / test-nightly-image (push) Has been cancelled
Nightly Build & Package / verify-nightly-supply-chain (push) Has been cancelled
Update GeoLite2 Checksum / update-checksum (push) Has been cancelled
Container Registry Prune / prune-ghcr (push) Has been cancelled
Container Registry Prune / prune-dockerhub (push) Has been cancelled
Container Registry Prune / summarize (push) Has been cancelled
Supply Chain Verification / Verify SBOM (push) Has been cancelled
Supply Chain Verification / Verify Release Artifacts (push) Has been cancelled
Supply Chain Verification / Verify Docker Image Supply Chain (push) Has been cancelled
Monitor Caddy Major Release / check-caddy-major (push) Has been cancelled
Weekly Nightly to Main Promotion / Verify Nightly Branch Health (push) Has been cancelled
Weekly Nightly to Main Promotion / Create Promotion PR (push) Has been cancelled
Weekly Nightly to Main Promotion / Trigger Missing Required Checks (push) Has been cancelled
Weekly Nightly to Main Promotion / Notify on Failure (push) Has been cancelled
Weekly Nightly to Main Promotion / Workflow Summary (push) Has been cancelled
Weekly Security Rebuild / Security Rebuild & Scan (push) Has been cancelled
114 lines
3.3 KiB
Go
Executable File
114 lines
3.3 KiB
Go
Executable File
package handlers
|
|
|
|
import (
|
|
"bytes"
|
|
"encoding/json"
|
|
"net/http"
|
|
"net/http/httptest"
|
|
"testing"
|
|
|
|
"github.com/Wikid82/charon/backend/internal/models"
|
|
"github.com/Wikid82/charon/backend/internal/services"
|
|
"github.com/gin-gonic/gin"
|
|
"github.com/stretchr/testify/assert"
|
|
"github.com/stretchr/testify/require"
|
|
"gorm.io/driver/sqlite"
|
|
"gorm.io/gorm"
|
|
)
|
|
|
|
// TestUpdate_BlockTypeMutationForNonDiscord covers lines 137-139
|
|
func TestUpdate_BlockTypeMutationForNonDiscord(t *testing.T) {
|
|
db, err := gorm.Open(sqlite.Open(":memory:"), &gorm.Config{})
|
|
require.NoError(t, err)
|
|
|
|
require.NoError(t, db.AutoMigrate(&models.NotificationProvider{}, &models.Notification{}))
|
|
|
|
// Create existing non-Discord provider
|
|
existing := &models.NotificationProvider{
|
|
ID: "test-provider",
|
|
Name: "Test Webhook",
|
|
Type: "webhook",
|
|
URL: "https://example.com/webhook",
|
|
Enabled: true,
|
|
}
|
|
require.NoError(t, db.Create(existing).Error)
|
|
|
|
service := services.NewNotificationService(db, nil)
|
|
handler := NewNotificationProviderHandler(service)
|
|
|
|
r := gin.New()
|
|
r.Use(func(c *gin.Context) {
|
|
c.Set("role", "admin")
|
|
c.Set("userID", uint(1))
|
|
c.Next()
|
|
})
|
|
r.PUT("/api/v1/notifications/providers/:id", handler.Update)
|
|
|
|
// Try to mutate type from webhook to discord (should be blocked)
|
|
req := map[string]interface{}{
|
|
"name": "Updated Name",
|
|
"type": "discord", // Trying to change type
|
|
"url": "https://discord.com/api/webhooks/123/abc",
|
|
}
|
|
body, _ := json.Marshal(req)
|
|
|
|
w := httptest.NewRecorder()
|
|
httpReq := httptest.NewRequest(http.MethodPut, "/api/v1/notifications/providers/test-provider", bytes.NewReader(body))
|
|
httpReq.Header.Set("Content-Type", "application/json")
|
|
r.ServeHTTP(w, httpReq)
|
|
|
|
// Should block type mutation (lines 137-139)
|
|
assert.Equal(t, http.StatusBadRequest, w.Code)
|
|
|
|
var response map[string]interface{}
|
|
err = json.Unmarshal(w.Body.Bytes(), &response)
|
|
require.NoError(t, err)
|
|
|
|
assert.Equal(t, "PROVIDER_TYPE_IMMUTABLE", response["code"])
|
|
}
|
|
|
|
// TestUpdate_AllowTypeMutationForDiscord verifies Discord can be updated
|
|
func TestUpdate_AllowTypeMutationForDiscord(t *testing.T) {
|
|
db, err := gorm.Open(sqlite.Open(":memory:"), &gorm.Config{})
|
|
require.NoError(t, err)
|
|
|
|
require.NoError(t, db.AutoMigrate(&models.NotificationProvider{}, &models.Notification{}))
|
|
|
|
// Create existing Discord provider
|
|
existing := &models.NotificationProvider{
|
|
ID: "test-provider",
|
|
Name: "Test Discord",
|
|
Type: "discord",
|
|
URL: "https://discord.com/api/webhooks/123/abc",
|
|
Enabled: true,
|
|
}
|
|
require.NoError(t, db.Create(existing).Error)
|
|
|
|
service := services.NewNotificationService(db, nil)
|
|
handler := NewNotificationProviderHandler(service)
|
|
|
|
r := gin.New()
|
|
r.Use(func(c *gin.Context) {
|
|
c.Set("role", "admin")
|
|
c.Set("userID", uint(1))
|
|
c.Next()
|
|
})
|
|
r.PUT("/api/v1/notifications/providers/:id", handler.Update)
|
|
|
|
// Try to update Discord (type remains discord - should be allowed)
|
|
req := map[string]interface{}{
|
|
"name": "Updated Discord",
|
|
"type": "discord",
|
|
"url": "https://discord.com/api/webhooks/456/def",
|
|
}
|
|
body, _ := json.Marshal(req)
|
|
|
|
w := httptest.NewRecorder()
|
|
httpReq := httptest.NewRequest(http.MethodPut, "/api/v1/notifications/providers/test-provider", bytes.NewReader(body))
|
|
httpReq.Header.Set("Content-Type", "application/json")
|
|
r.ServeHTTP(w, httpReq)
|
|
|
|
// Should succeed
|
|
assert.Equal(t, http.StatusOK, w.Code)
|
|
}
|