coulomb/flex-auth
2
0
Fork 0
generated from coulomb/repo-seed
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add Markitect check fixtures
Some checks failed
CI / Build and Test (push) Has been cancelled
Details
CI / Lint (push) Has been cancelled
Details

Browse Source
This commit is contained in:
Bernd Worsch
2026-05-17 06:32:05 +02:00
parent 96e53bf1d9
commit 7e09a21c5f
5 changed files with 457 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

57
internal/markitect/check_fixtures_test.go Normal file
View File

@@ -0,0 +1,57 @@
package markitect_test
import (
"context"
"path/filepath"
"testing"
"github.com/netkingdom/flex-auth/internal/policy"
"github.com/netkingdom/flex-auth/pkg/api"
)
func TestMarkitectCheckFixturePackageValidates(t *testing.T) {
pkg, err := policy.LoadAndValidateFile(context.Background(), filepath.Join("..", "..", "examples", "markitect", "check_policy_package.md"))
if err != nil {
t.Fatalf("LoadAndValidateFile: %v", err)
}
if !pkg.Valid {
t.Fatalf("pkg.Valid = false: %+v", pkg.Validation)
}
if len(pkg.Fixtures) != 5 {
t.Fatalf("Fixtures len = %d; want 5", len(pkg.Fixtures))
}
wantEffects := map[string]api.DecisionEffect{
"fixture:markitect-public-document-allow": api.DecisionEffectAllow,
"fixture:markitect-internal-document-deny": api.DecisionEffectDeny,
"fixture:markitect-internal-document-reader-allow": api.DecisionEffectAllow,
"fixture:markitect-restricted-export-steward-mfa": api.DecisionEffectAllow,
"fixture:markitect-context-package-activation": api.DecisionEffectAllow,
}
for _, fixture := range pkg.Fixtures {
if fixture.Expect.Effect != wantEffects[fixture.ID] {
t.Fatalf("%s effect = %q; want %q", fixture.ID, fixture.Expect.Effect, wantEffects[fixture.ID])
}
assertFixtureMetadata(t, fixture)
}
for _, result := range pkg.Validation.Fixtures {
if !result.Passed {
t.Fatalf("fixture %s failed: %s actual=%+v", result.ID, result.Error, result.Actual)
}
}
}
func assertFixtureMetadata(t *testing.T, fixture api.PolicyFixture) {
t.Helper()
if _, ok := fixture.Metadata["expected_caring_descriptor"]; !ok {
t.Fatalf("%s missing expected_caring_descriptor metadata", fixture.ID)
}
if _, ok := fixture.Metadata["expected_exposure_modes"]; !ok {
t.Fatalf("%s missing expected_exposure_modes metadata", fixture.ID)
}
if _, ok := fixture.Metadata["expected_audit_behavior"]; !ok {
t.Fatalf("%s missing expected_audit_behavior metadata", fixture.ID)
}
}