npub12m5exm2uk3xa674cc5r0hlyvccs5xxn7qv83ezuteefv5972nquq4j4szl/esp32-tollgate/tests/phase2.mjs, branch master

npub12m5exm2uk3xa674cc5r0hlyvccs5xxn7qv83ezuteefv5972nquq4j4szl/esp32-tollgate/tests/phase2.mjs, branch master [no description] https://upleb.uk/npub12m5exm2uk3xa674cc5r0hlyvccs5xxn7qv83ezuteefv5972nquq4j4szl/esp32-tollgate/atom?h=master 2026-05-17T11:48:43+00:00 refactor: reorganize test suite, add integration tests for NAT filter 2026-05-17T11:48:43+00:00 Your Name you@example.com 2026-05-17T11:48:43+00:00 urn:sha1:8071741815f0b0938701e80a63e80b0ec94b2778 - Move integration tests (api, network, phase2, smoke) to tests/integration/ - Move Playwright specs (captive-portal, interop-happy-path) to tests/e2e/ - Move playwright.config.mjs to tests/e2e/ - Fix hardcoded IP fallbacks: 192.168.4.1 → 10.192.45.1 - Add test-reset-auth.mjs: reset→pay→allow→revoke→block cycle - Add test-session-expiry.mjs: pay→wait 65s→verify blocked (slow test) - Add test-dns-firewall.mjs: DNS hijack/forward + per-client NAT filter - Update Makefile with test-unit, test-integration, test-e2e, test-all targets - Update package.json scripts for new paths - Fix Playwright video: retain-on-failure instead of always-on - Update AGENTS.md: per-client NAT filter description - Update CHECKLIST.md: mark completed items, add Board B identity - Board B nsec: 9af47906... → SSID TollGate-b96d80, AP IP 10.185.47.1 - 186 unit tests passing Fix test 22: use dynamic TOLLGATE_IP instead of hardcoded 192.168.4.1 for route management 2026-05-16T07:49:40+00:00 Your Name you@example.com 2026-05-16T07:49:40+00:00 urn:sha1:8f0aeb7d7b8216f1fc906cf855e5be9e90ecc0a8 Unique SSID/IP per board + captive detection fix + mint list in portal 2026-05-16T06:26:43+00:00 Your Name you@example.com 2026-05-16T06:26:43+00:00 urn:sha1:38aa9ec3801f5895e09866fe92cb8e44fb987cee - Derive unique SSID (TollGate-{MAC4}{MAC5}) and AP IP (10.{b5}.{subnet}.1) from factory MAC — boards no longer conflict - Board A: TollGate-377C @ 10.55.85.1, Board B: TollGate-5050 @ 10.80.10.1 - Captive portal detection URIs return 200 with portal HTML (matching esp32-mesh working approach) instead of 302 redirect - Dynamic AP IP in portal HTML via __AP_IP__ template substitution - Supported mints section in portal page (shows mint URL, tap to copy) - Fixed mint URL to testnut.cashu.space (was stale in SPIFFS) - DoT reject server on port 853 for DNS-over-TLS fallback - DNS hijack: NXDOMAIN for all non-A queries, no forwarding for unauthed - Playwright tests updated for 200 response on detection URIs - Phase 2 test suite: 20/21 pass (test 22 expiry ping route issue) - Tests 25-27 deferred to Phase 3 (Board B as second client) Phase 2 tests 22-23 passing: session expiry + renewal (21/21) 2026-05-15T23:19:41+00:00 Your Name you@example.com 2026-05-15T23:19:41+00:00 urn:sha1:3063dea143b576792e5831421e5607cbd60d6816 - Test 22: session expires after allotment, internet blocked, usage returns -1/-1 - Test 23: second token renews session, internet restored - Test 18 fix: add route through TollGate before ping, pipe sudo password - All 21 Phase 2 tests pass Captive portal detection fix + Phase 2 tests 16-18,20 passing (17/17) 2026-05-15T23:16:32+00:00 Your Name you@example.com 2026-05-15T23:16:32+00:00 urn:sha1:50b5975ac8793d6d820c35b5999f8a909f64e71b - Add DoT reject server on port 853 (TCP RST forces DNS-over-TLS fallback) - DNS hijack returns NXDOMAIN for all non-A query types (no forwarding for unauthed) - Shorter TTL on hijack responses (10s) for faster captive detection - Explicit 302 redirect handlers for /generate_204, /hotspot-detect.html, etc. - HTTP and DNS request logging for debugging captive detection - Per-MAC tracking in firewall (find_by_mac, get_mac_for_ip with ARP fallback) - Session MAC tracking (session_find_by_mac) - Phase 2 test 18: add route through TollGate before ping test - All 17 Phase 2 tests pass (15-21 + whoami + portal form) Phase 2 WIP: Cashu payment endpoints, session tracking, updated checklist 2026-05-15T16:57:14+00:00 Your Name you@example.com 2026-05-15T16:57:14+00:00 urn:sha1:1263d86314fc0760d9be8eea415ccecbc047a5eb - Add cashu.c/h: Cashu token decode (cashuA/base64url), proof state check via mint API, allotment calculator - Add session.c/h: time-based session management with allotment/expiry, spent secret tracking - Add tollgate_api.c/h: HTTP server on :2121 with GET / (kind=10021 discovery), POST / (payment processing), /usage, /whoami - Update captive portal HTML: replace Grant Free Access with Cashu token paste form + Pay & Connect button - Update tollgate_main.c: wire in session manager, TollGate API, 1s session tick loop - Add tests/phase2.mjs: Phase 2 test suite (discovery, invalid token, wrong mint, valid payment) - Update CHECKLIST.md: reflect Phase 1 complete, Phase 2 in progress with known bugs Known issues (not yet flashed): - Stack overflow crash in httpd POST handler (need stack_size=16384 + heap allocations) - cashu_decode_token uses 2KB stack buffer (needs heap alloc) - Mint URL should be testnut.cashu.space (nofee.testnut has API compat issues)