Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix: Fix handling unavailable services #3879

Merged
merged 54 commits into from
Nov 14, 2024
Merged
Changes from 1 commit
Commits
Show all changes
54 commits
Select commit Hold shift + click to select a range
2c5b153
draft of fixes (except evaluation of client certificate in the ZAAS)
pj892031 Oct 25, 2024
0c1ffe2
Merge remote-tracking branch 'origin/v3.x.x' into reboot/fix-zaas-res…
achmelo Oct 30, 2024
7d56ab9
handle exceptions in zaas and unexpected status codes in gateway
achmelo Oct 31, 2024
dfcf766
align passticket tests with updated status codes, remove invalid test
achmelo Oct 31, 2024
abf06aa
handle safid exceptions in the same way as passticket
achmelo Oct 31, 2024
1bedafd
when content type is omitted
achmelo Oct 31, 2024
a1a2c03
remove nested structure
achmelo Oct 31, 2024
92baceb
remove error controller
achmelo Oct 31, 2024
71a694c
return not_found handler
achmelo Nov 1, 2024
d5a1e89
test endpoint not_found
achmelo Nov 1, 2024
89d5fe7
add unit tests
achmelo Nov 1, 2024
cdcbb7c
test internal error and not found exception
achmelo Nov 1, 2024
e4491ef
Merge remote-tracking branch 'origin/v3.x.x' into reboot/fix-zaas-res…
achmelo Nov 1, 2024
326f337
remove duplicated exception handler for access denied
achmelo Nov 1, 2024
f9feac7
code review comments
achmelo Nov 1, 2024
4266392
include zaas IT in jacoco
achmelo Nov 1, 2024
5c3bb34
revert unauth handler
achmelo Nov 4, 2024
66af2e4
zaas debug level
achmelo Nov 4, 2024
93494eb
enabled debug logs
achmelo Nov 4, 2024
3487912
revert spring config location
achmelo Nov 4, 2024
fea3565
move profiles to jvm flags
achmelo Nov 4, 2024
1b2368a
don't need specific for package
achmelo Nov 4, 2024
3392030
use the same method for cert PK encoding
achmelo Nov 5, 2024
9c98390
test / code coverage
pj892031 Nov 5, 2024
8ce39c3
test / code coverage - 403
pj892031 Nov 5, 2024
147248d
tests / code coverage
pj892031 Nov 5, 2024
9ec6eb2
Merge branch 'v3.x.x' into reboot/fix-zaas-responses
pj892031 Nov 5, 2024
d9fa345
sonar
pj892031 Nov 5, 2024
f5c7881
remove unused field
pj892031 Nov 5, 2024
5922b66
javax x jakarta + replace missing error with an internal error
pj892031 Nov 5, 2024
037fdfe
fix + test misconfigured service
pj892031 Nov 5, 2024
506e5eb
consider server cert only
achmelo Nov 5, 2024
22bfbae
Merge remote-tracking branch 'origin/reboot/fix-zaas-responses' into …
achmelo Nov 5, 2024
6297bbe
check apiml cert in header too
achmelo Nov 5, 2024
3aae107
return sooner, mode info in the logs
achmelo Nov 5, 2024
cb811da
static definition for GitHub action
pj892031 Nov 6, 2024
7edf24d
styles and imports
achmelo Nov 6, 2024
29206be
update number of registered services in catalog
achmelo Nov 6, 2024
0bf4ac6
fix
pj892031 Nov 6, 2024
99989b6
Merge branch 'v3.x.x' into reboot/fix-unavailable-services
pj892031 Nov 6, 2024
c72d6e5
test fixes
pj892031 Nov 6, 2024
5c0ccac
fixes
pj892031 Nov 6, 2024
f99f74c
Merge branch 'v3.x.x' into reboot/fix-unavailable-services
pj892031 Nov 6, 2024
b71d3e7
fix ZAAS tests names
pj892031 Nov 6, 2024
7d1e3e7
fix test
pj892031 Nov 7, 2024
be8bcab
Merge branch 'v3.x.x' into reboot/fix-unavailable-services
pj892031 Nov 7, 2024
5111773
sonar - multiple times same message
pj892031 Nov 7, 2024
7b735d4
sonar - do not use non-serialized values
pj892031 Nov 7, 2024
a0ba2b8
Merge branch 'v3.x.x' into reboot/fix-unavailable-services
pj892031 Nov 7, 2024
37fe756
Merge branch 'v3.x.x' into reboot/fix-unavailable-services
pj892031 Nov 12, 2024
26710ec
Merge branch 'v3.x.x' into reboot/fix-unavailable-services
pj892031 Nov 13, 2024
21b0976
log messages to analyze error
pj892031 Nov 13, 2024
7b4952b
fix missing command curl
pj892031 Nov 13, 2024
a65e937
use curl just on failure and remove non-working service name in LogBack
pj892031 Nov 13, 2024
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
test fixes
Signed-off-by: Pavel Jareš <[email protected]>
pj892031 committed Nov 6, 2024
commit c72d6e596eeeb45a2d75d7f9907376b120fe41ff
Original file line number Diff line number Diff line change
@@ -28,8 +28,8 @@
import java.util.Base64;

import static io.restassured.RestAssured.given;
import static org.apache.http.HttpStatus.SC_OK;
import static org.apache.http.HttpStatus.SC_UNAUTHORIZED;
import static org.apache.http.HttpStatus.*;
import static org.hamcrest.Matchers.is;
import static org.junit.jupiter.api.Assertions.assertEquals;
import static org.junit.jupiter.api.Assertions.assertFalse;

@@ -42,7 +42,6 @@ public class PassticketTest extends AcceptanceTestWithMockServices {
private static final String JWT = "eyJhbGciOiJSUzI1NiJ9.eyJzdWIiOiJ1c2VyIiwiaWF0IjoxNjcxNDYxNjIzLCJleHAiOjE2NzE0OTA0MjMsImlzcyI6IkFQSU1MIiwianRpIjoiYmFlMTkyZTYtYTYxMi00MThhLWI2ZGMtN2I0NWI5NzM4ODI3IiwiZG9tIjoiRHVtbXkgcHJvdmlkZXIifQ.Vt5UjJUlbmuzmmEIodAACtj_AOxlsWqkFrFyWh4_MQRRPCj_zMIwnzpqRN-NJvKtUg1zxOCzXv2ypYNsglrXc7cH9wU3leK1gjYxK7IJjn2SBEb0dUL5m7-h4tFq2zNhcGH2GOmTpE2gTQGSTvDIdja-TIj_lAvUtbkiorm1RqrNu2MGC0WfgOGiak3tj2tNJLv_Y1ZMxNjzyHgXBMuNPozQrd4Vtnew3x4yy85LrTYF7jJM3U-e3AD2yImftxwycQvbkjNb-lWadejTVH0MgHMr04wVdDd8Nq5q7yrZf7YPzhias8ehNbew5CHiKut9SseZ1sO2WwgfhpEfsN4okg";
private static final String PASSTICKET = "ZOWE_DUMMY_PASS_TICKET";


@Test
void whenRequestingPassticketForAllowedAPPLID_thenTranslate() throws IOException {
TicketResponse response = new TicketResponse();
@@ -51,15 +50,15 @@ void whenRequestingPassticketForAllowedAPPLID_thenTranslate() throws IOException
response.setApplicationName("IZUDFLT");
response.setTicket(PASSTICKET);

mockService("zaas").scope(MockService.Scope.CLASS)
mockService("zaas").scope(MockService.Scope.TEST)
.addEndpoint("/zaas/scheme/ticket")
.assertion(he -> assertEquals(SERVICE_ID, he.getRequestHeaders().getFirst("X-Service-Id")))
.assertion(he -> assertEquals(COOKIE_NAME + "=" + JWT, he.getRequestHeaders().getFirst("Cookie")))
.bodyJson(response)
.and().start();

String expectedAuthHeader = "Basic " + Base64.getEncoder().encodeToString((USER_ID + ":" + PASSTICKET).getBytes(StandardCharsets.UTF_8));
var mockService = mockService(SERVICE_ID)
var mockService = mockService(SERVICE_ID).scope(MockService.Scope.TEST)
.authenticationScheme(AuthenticationScheme.HTTP_BASIC_PASSTICKET).applid("IZUDFLT")
.addEndpoint("/" + SERVICE_ID + "/test")
.assertion(he -> assertEquals(expectedAuthHeader, he.getRequestHeaders().getFirst(HttpHeaders.AUTHORIZATION)))
@@ -74,29 +73,48 @@ void whenRequestingPassticketForAllowedAPPLID_thenTranslate() throws IOException
assertEquals(1, mockService.getEndpoint().getCounter());
}


@ParameterizedTest
@ValueSource(ints = {400, 401, 403, 404, 405, 500})
void whenCannotGeneratePassticket_thenIgnoreTransformation(int responseCode) throws IOException {
@Test
void whenCredentialsAreMissingOrInvalid_thenIgnoreTransformation() throws IOException {
mockService("zaas").scope(MockService.Scope.TEST)
.addEndpoint("/zaas/scheme/ticket")
.responseCode(responseCode)
.responseCode(SC_UNAUTHORIZED)
.and().start();
var mockService = mockService(SERVICE_ID).scope(MockService.Scope.TEST)
var service = mockService(SERVICE_ID).scope(MockService.Scope.TEST)
.authenticationScheme(AuthenticationScheme.HTTP_BASIC_PASSTICKET).applid("IZUDFLT")
.addEndpoint("/" + SERVICE_ID + "/test")
.responseCode(401)
.bodyJson(new ResponseDto("ok"))
.responseCode(SC_UNAUTHORIZED)
.bodyJson(new ResponseDto("ok"))
.assertion(he -> assertFalse(he.getRequestHeaders().containsKey(HttpHeaders.AUTHORIZATION)))
.and().start();
given()
.cookie(COOKIE_NAME, JWT)
.when()
.when()
.get(basePath + "/" + SERVICE_ID + "/api/v1/test")
.then()
.then()
.statusCode(Matchers.is(SC_UNAUTHORIZED))
.body("status", Matchers.is("ok"));
assertEquals(1, mockService.getEndpoint().getCounter());
assertEquals(1, service.getEndpoint().getCounter());
}

@ParameterizedTest(name = "When ZAAS returns {0} the Gateway response with 503")
@ValueSource(ints = {400, 403, 404, 405, 500})
void whenCannotGeneratePassticket_thenReturn503(int responseCode) throws IOException {
mockService("zaas").scope(MockService.Scope.TEST)
.addEndpoint("/zaas/scheme/ticket")
.responseCode(responseCode)
.and().start();
var service = mockService(SERVICE_ID).scope(MockService.Scope.TEST)
.authenticationScheme(AuthenticationScheme.HTTP_BASIC_PASSTICKET).applid("IZUDFLT")
.addEndpoint("/" + SERVICE_ID + "/test")
.and().start();
given()
.cookie(COOKIE_NAME, JWT)
.when()
.get(basePath + "/" + SERVICE_ID + "/api/v1/test")
.then()
.statusCode(Matchers.is(SC_SERVICE_UNAVAILABLE))
.body("messages[0].messageKey", is("org.zowe.apiml.common.serviceUnavailable"));
assertEquals(0, service.getEndpoint().getCounter());
}

@Data
@@ -106,7 +124,5 @@ static class ResponseDto {
private String status;

}
}



}
Original file line number Diff line number Diff line change
@@ -140,7 +140,7 @@ void givenOnlyZombieZosmf_whenCallingAService_return500() {
zaasError.stop();
zaasOk.stop();

given().when().get(getServiceUrl()).then().statusCode(500);
given().when().get(getServiceUrl()).then().statusCode(503);
assertEquals(0, service.getCounter());
}

@@ -150,7 +150,7 @@ void givenZombieAndErrorZosmf_whenCallingAService_return500() throws IOException
zaasError.start();
zaasOk.stop();

given().when().get(getServiceUrl()).then().statusCode(500);
given().when().get(getServiceUrl()).then().statusCode(503);
assertEquals(0, service.getCounter());
}

Loading