833284efb1
- Add Dex OIDC provider to test Docker Compose stack with static test users (alice, bob) and pre-configured OAuth client - Add forward-auth.spec.ts: credential-based forward auth flow tests (redirect, portal form, login, session cookie, forged cookie rejection) - Add forward-auth-oauth.spec.ts: full OAuth forward auth flow tests including user-based access (allowed/denied), group-based access, access revocation, and credential login coexisting with OAuth - Add waitForStatus helper for polling specific HTTP status codes - Expand portal.spec.ts with OAuth button visibility, URI scheme rejection, and strict alert selector tests Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
38 lines
1008 B
YAML
38 lines
1008 B
YAML
# Dex OIDC provider configuration for E2E tests.
|
|
# Provides static test users and a pre-configured OAuth client.
|
|
issuer: http://localhost:5556/dex
|
|
|
|
storage:
|
|
type: memory
|
|
|
|
web:
|
|
http: 0.0.0.0:5556
|
|
|
|
oauth2:
|
|
# Speed up tests — short-lived tokens
|
|
responseTypes: ["code"]
|
|
skipApprovalScreen: true
|
|
|
|
staticClients:
|
|
- id: cpm-test-client
|
|
secret: cpm-test-secret
|
|
name: "CPM E2E Test"
|
|
redirectURIs:
|
|
- "http://localhost:3000/api/auth/callback/oauth2"
|
|
|
|
enablePasswordDB: true
|
|
|
|
staticPasswords:
|
|
# Primary test user — will be granted forward auth access
|
|
- email: "alice@test.local"
|
|
# password: "password"
|
|
hash: "$2a$10$95mdmT5F.icxrUmXEC9Jf.pX2RWgMO0FD6.yqrrVnRwTzA/UrT7g2"
|
|
username: "alice"
|
|
userID: "alice-001"
|
|
# Secondary test user — will NOT be granted forward auth access (for denial tests)
|
|
- email: "bob@test.local"
|
|
# password: "password"
|
|
hash: "$2a$10$95mdmT5F.icxrUmXEC9Jf.pX2RWgMO0FD6.yqrrVnRwTzA/UrT7g2"
|
|
username: "bob"
|
|
userID: "bob-002"
|