akanealw/Charon
1
0
Fork 0
Code Issues Pull Requests Actions 14 Packages Projects Releases Wiki Activity
Files
eec8c28fb3c2e8c0bc387bb3139184b8d67f1b21
Charon/docs/reports/archive/qa_report_capi_fix.md
akanealw eec8c28fb3
Some checks failed
Go Benchmark / Performance Regression Check (push) Has been cancelled
Details
Cerberus Integration / Cerberus Security Stack Integration (push) Has been cancelled
Details
Upload Coverage to Codecov / Backend Codecov Upload (push) Has been cancelled
Details
Upload Coverage to Codecov / Frontend Codecov Upload (push) Has been cancelled
Details
CodeQL - Analyze / CodeQL analysis (go) (push) Has been cancelled
Details
CodeQL - Analyze / CodeQL analysis (javascript-typescript) (push) Has been cancelled
Details
CrowdSec Integration / CrowdSec Bouncer Integration (push) Has been cancelled
Details
Docker Build, Publish & Test / build-and-push (push) Has been cancelled
Details
Quality Checks / Auth Route Protection Contract (push) Has been cancelled
Details
Quality Checks / Codecov Trigger/Comment Parity Guard (push) Has been cancelled
Details
Quality Checks / Backend (Go) (push) Has been cancelled
Details
Quality Checks / Frontend (React) (push) Has been cancelled
Details
Rate Limit integration / Rate Limiting Integration (push) Has been cancelled
Details
Security Scan (PR) / Trivy Binary Scan (push) Has been cancelled
Details
Supply Chain Verification (PR) / Verify Supply Chain (push) Has been cancelled
Details
WAF integration / Coraza WAF Integration (push) Has been cancelled
Details
Docker Build, Publish & Test / Security Scan PR Image (push) Has been cancelled
Details
changed perms
2026-04-22 18:19:14 +00:00

1.5 KiB
Executable File
Raw Blame History

QA Audit Report: CrowdSec Console Enrollment CAPI Fix

Date: December 11, 2025 Auditor: GitHub Copilot

Summary

A QA audit was performed on the changes to ensure CAPI registration before CrowdSec console enrollment. The changes involved adding a check for online_api_credentials.yaml and running cscli capi register if it's missing.

Scope

  • backend/internal/crowdsec/console_enroll.go
  • backend/internal/crowdsec/console_enroll_test.go

Verification Steps

1. Code Review

  • File: backend/internal/crowdsec/console_enroll.go
    • Verified ensureCAPIRegistered method checks for online_api_credentials.yaml.
    • Verified ensureCAPIRegistered runs cscli capi register with correct arguments if file is missing.
    • Verified Enroll calls ensureCAPIRegistered before enrollment.
  • File: backend/internal/crowdsec/console_enroll_test.go
    • Verified stubEnvExecutor updated to handle multiple calls and return different responses.
    • Verified TestConsoleEnrollSuccess asserts capi register is called.
    • Verified TestConsoleEnrollIdempotentWhenAlreadyEnrolled asserts correct behavior.
    • Verified TestConsoleEnrollFailureRedactsSecret asserts correct behavior with mocked responses.

2. Automated Checks

  • Tests: Ran go test ./internal/crowdsec/... -v.
    • Result: Passed.

Conclusion

The changes have been verified and all tests pass. The implementation correctly ensures CAPI is registered before attempting console enrollment, addressing the reported issue.

Reference in New Issue View Git Blame Copy Permalink