tests/push_authorization.rs


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70

//! Push Authorization Integration Tests
//!
//! Tests that verify push authorization state events work correctly.
//!
//! # Test Strategy
//!
//! - Each test runs in complete isolation with its own fresh relay instance
//! - Uses macro to eliminate boilerplate while maintaining test isolation
//! - Calls individual test methods from grasp-audit for minimal duplication
//! - Automatic cleanup via TestRelay fixture (removes container and temp dirs)
//!
//! # Running Tests
//!
//! ```bash
//! # Run all push authorization tests
//! cargo test --test push_authorization
//!
//! # Run specific test
//! cargo test --test push_authorization test_push_authorized_by_owner_state
//!
//! # With output
//! cargo test --test push_authorization -- --nocapture
//! ```

mod common;

use common::TestRelay;
use grasp_audit::specs::grasp01::PushAuthorizationTests;
use grasp_audit::*;

/// Macro to generate isolated integration tests for push authorization
///
/// Each test runs with its own fresh relay instance to ensure complete isolation.
/// This eliminates issues with leftover repositories and ensures clean state.
/// Push authorization tests require git_data_dir and relay_domain parameters.
macro_rules! isolated_push_test {
    ($test_name:ident) => {
        #[tokio::test]
        async fn $test_name() {
            let relay = TestRelay::start().await;
            let config = AuditConfig::ci();
            let client = AuditClient::new(relay.url(), config)
                .await
                .expect("Failed to create audit client");

            let result = PushAuthorizationTests::$test_name(
                &client,
                relay.git_data_dir(),
                &relay.domain()
            ).await;

            relay.stop().await;

            assert!(
                result.passed,
                "{} failed: {}",
                stringify!($test_name),
                result.error.as_deref().unwrap_or("unknown error")
            );
        }
    };
}

// Generate isolated tests for all push authorization tests
isolated_push_test!(test_push_authorized_by_owner_state);
isolated_push_test!(test_push_rejected_without_state_event);
isolated_push_test!(test_push_rejected_wrong_commit);
isolated_push_test!(test_push_authorized_by_maintainer_state_only);
isolated_push_test!(test_push_authorized_by_recursive_maintainer_state);
isolated_push_test!(test_non_maintainer_state_rejected);