mirror of
https://github.com/hasura/graphql-engine.git
synced 2024-12-15 01:12:56 +03:00
504f13725f
> High-Level TODO: * [x] Code Changes * [x] Tests * [x] Check that pro/multitenant build ok * [x] Documentation Changes * [x] Updating this PR with full details * [ ] Reviews * [ ] Ensure code has all FIXMEs and TODOs addressed * [x] Ensure no files are checked in mistakenly * [x] Consider impact on console, cli, etc. ### Description > This PR adds support for adding set-cookie header on the response from the auth webhook. If the set-cookie header is sent by the webhook, it will be forwarded in the graphQL engine response. Fixes a bug in test-server.sh: testing of get-webhook tests was done by POST method and vice versa. To fix, the parameters were swapped. ### Changelog - [x] `CHANGELOG.md` is updated with user-facing content relevant to this PR. ### Affected components - [x] Server - [ ] Console - [ ] CLI - [x] Docs - [ ] Community Content - [ ] Build System - [x] Tests - [ ] Other (list it) ### Related Issues -> Closes [#2269](https://github.com/hasura/graphql-engine/issues/2269) ### Solution and Design > ### Steps to test and verify > Please refer to the docs to see how to send the set-cookie header from webhook. ### Limitations, known bugs & workarounds > - Support for only set-cookie header forwarding is added - the value forwarded in the set-cookie header cannot be validated completely, the [Cookie](https://hackage.haskell.org/package/cookie) package has been used to parse the header value and any unnecessary information is stripped off before forwarding the header. The standard given in [RFC6265](https://datatracker.ietf.org/doc/html/rfc6265) has been followed for the Set-Cookie format. ### Server checklist #### Catalog upgrade Does this PR change Hasura Catalog version? - [x] No - [ ] Yes - [ ] Updated docs with SQL for downgrading the catalog #### Metadata Does this PR add a new Metadata feature? - [x] No #### GraphQL - [x] No new GraphQL schema is generated - [ ] New GraphQL schema is being generated: - [ ] New types and typenames are correlated #### Breaking changes - [x] No Breaking changes PR-URL: https://github.com/hasura/graphql-engine-mono/pull/2538 Co-authored-by: Robert <132113+robx@users.noreply.github.com> GitOrigin-RevId: d9047e997dd221b7ce4fef51911c3694037e7c3f |
||
|---|---|---|
| .. | ||
| pgdump | ||
| queries | ||
| remote_schemas/nodejs | ||
| test_tests | ||
| webhook/insecure | ||
| .gitignore | ||
| auth_webhook_server.py | ||
| conftest.py | ||
| context.py | ||
| graphql_server.py | ||
| jwk_server.py | ||
| pytest.ini | ||
| README.md | ||
| remote_server.py | ||
| requirements-top-level.txt | ||
| requirements.txt | ||
| super_classes.py | ||
| test_actions.py | ||
| test_allowlist_queries.py | ||
| test_apis_disabled.py | ||
| test_auth_webhook_cookie.py | ||
| test_compat.py | ||
| test_compression.py | ||
| test_config_api.py | ||
| test_cors.py | ||
| test_dev_endpoints.py | ||
| test_endpoints.py | ||
| test_events.py | ||
| test_graphql_introspection.py | ||
| test_graphql_mutations.py | ||
| test_graphql_queries.py | ||
| test_heterogeneous.py | ||
| test_horizontal_scale.py | ||
| test_inconsistent_meta.py | ||
| test_jwk.py | ||
| test_jwt_claims_map.py | ||
| test_jwt.py | ||
| test_logging.py | ||
| test_metadata.py | ||
| test_openapi.py | ||
| test_pg_dump.py | ||
| test_query_cache.py | ||
| test_remote_relationships.py | ||
| test_remote_schema_permissions.py | ||
| test_roles_inheritance.py | ||
| test_scheduled_triggers.py | ||
| test_schema_duplication.py | ||
| test_schema_stitching.py | ||
| test_subscriptions.py | ||
| test_tests.py | ||
| test_v1_queries.py | ||
| test_v1alpha1_endpoint.py | ||
| test_v2_queries.py | ||
| test_validation.py | ||
| test_version.py | ||
| test_webhook_insecure.py | ||
| test_webhook_request_context.py | ||
| test_webhook.py | ||
| test_websocket_init_cookie.py | ||
| utils.py | ||
| validate.py | ||
| webhook.py | ||
| webserver.py | ||
Running tests
The easiest way to run the test suite is to do:
$ scripts/dev.sh test
This should install python dependencies if required, and run in isolation. The output format is described in the pytest documentation. Errors and failures are indicated by Fs and Es.
Tests Structure
-
Tests are grouped as test classes in test modules (names starting with
test_) -
The configuration files (if needed) for the tests in a class are usually kept in one folder.
- The folder name is usually either the
dirvariable or thedir()function
- The folder name is usually either the
-
Some tests (like in
test_graphql_queries.py) requires a setup and teardown per class.- Here we are extending the
DefaultTestSelectQueriesclass. - This class defines a fixture which will run the configurations in
setup.yamlandteardown.yamlonce per class - Extending test class should define a function name
dir(), which returns the configuration folder
- Here we are extending the
-
For mutation tests (like in
test_graphql_mutations.py)- We need a
schema_setupandschema_teardownper class - And
values_setupandvalues_teardownper test - Doing schema setup and teardown per test is expensive.
- We are extending the
DefaultTestMutationsclass for this. - This class defines a fixture which will run the configuration in
setup.yamlandteardown.yamlonce per class. - Another fixture defined in this class runs the configuration in
values_setup.yamlandvalues_teardown.yamlonce per class.
- We need a