lmxopcua

dohertj2/lmxopcua

Fork 0

Commit Graph

Author	SHA1	Message	Date
Joseph Doherty	70d7166a39	test(server): harden deferred authz gates — task #12 Browse/Subscribe/Call/AlarmAck Add DeferredGateHardeningTests (28 unit tests) covering the Phase 6.2 compliance-checklist gaps left by the per-gate unit suites that shipped with the gate implementations: - Lax-mode fall-through for CreateMonitoredItems and Call gates (null identity and identity-without-LDAP-groups both skip denial in lax mode, consistent with BrowseGatingTests.Lax_mode_null_identity) - Flag isolation: Subscribe-only grant does NOT imply Read; Read-only grant does NOT imply Subscribe; HistoryRead-only grant does NOT imply Read and vice versa (Phase 6.2 compliance: "HistoryRead uses its own flag") - Alarm-bit isolation: AlarmAcknowledge alone does not grant AlarmConfirm or AlarmShelve; Browse alone does not grant AlarmAcknowledge - AlarmShelve falls through to OpcUaOperation.Call in MapCallOperation (documents the ShelvedStateMachine per-instance NodeId limitation noted in the implementation, with the follow-up path: MethodCall grant covers it) - Complete OpcUaOperation→NodePermissions mapping coverage for all deferred operations (Browse, CreateMonitoredItems, TransferSubscriptions, Call, AlarmAcknowledge, AlarmConfirm, AlarmShelve) — both positive and wrong-bit negative cases - Multi-group union for deferred gates (grp-browse ∪ grp-ack gives both Browse and AlarmAcknowledge without leaking Read or Call) Build: 0 errors on Server.csproj (verified against main repo build which carries the gRPC-generated Galaxy driver artifacts the isolated worktree lacks — that pre-existing gap is unrelated to these changes). Test count: 247 → 275 (+28 unit, 0 failures). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-05-18 04:39:57 -04:00
Joseph Doherty	a25593a9c6	chore: organize solution into module folders (Core/Server/Drivers/Client/Tooling) Group all 69 projects into category subfolders under src/ and tests/ so the Rider Solution Explorer mirrors the module structure. Folders: Core, Server, Drivers (with a nested Driver CLIs subfolder), Client, Tooling. - Move every project folder on disk with git mv (history preserved as renames). - Recompute relative paths in 57 .csproj files: cross-category ProjectReferences, the lib/ HintPath+None refs in Driver.Historian.Wonderware, and the external mxaccessgw refs in Driver.Galaxy and its test project. - Rebuild ZB.MOM.WW.OtOpcUa.slnx with nested solution folders. - Re-prefix project paths in functional scripts (e2e, compliance, smoke SQL, integration, install). Build green (0 errors); unit tests pass. Docs left for a separate pass. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-05-17 01:55:28 -04:00

Author

SHA1

Message

Date

Joseph Doherty

70d7166a39

test(server): harden deferred authz gates — task #12 Browse/Subscribe/Call/AlarmAck

Add DeferredGateHardeningTests (28 unit tests) covering the Phase 6.2
compliance-checklist gaps left by the per-gate unit suites that shipped
with the gate implementations:

- Lax-mode fall-through for CreateMonitoredItems and Call gates (null
  identity and identity-without-LDAP-groups both skip denial in lax mode,
  consistent with BrowseGatingTests.Lax_mode_null_identity)
- Flag isolation: Subscribe-only grant does NOT imply Read; Read-only
  grant does NOT imply Subscribe; HistoryRead-only grant does NOT imply
  Read and vice versa (Phase 6.2 compliance: "HistoryRead uses its own flag")
- Alarm-bit isolation: AlarmAcknowledge alone does not grant AlarmConfirm
  or AlarmShelve; Browse alone does not grant AlarmAcknowledge
- AlarmShelve falls through to OpcUaOperation.Call in MapCallOperation
  (documents the ShelvedStateMachine per-instance NodeId limitation noted
  in the implementation, with the follow-up path: MethodCall grant covers it)
- Complete OpcUaOperation→NodePermissions mapping coverage for all deferred
  operations (Browse, CreateMonitoredItems, TransferSubscriptions, Call,
  AlarmAcknowledge, AlarmConfirm, AlarmShelve) — both positive and
  wrong-bit negative cases
- Multi-group union for deferred gates (grp-browse ∪ grp-ack gives both
  Browse and AlarmAcknowledge without leaking Read or Call)

Build: 0 errors on Server.csproj (verified against main repo build which
carries the gRPC-generated Galaxy driver artifacts the isolated worktree
lacks — that pre-existing gap is unrelated to these changes).
Test count: 247 → 275 (+28 unit, 0 failures).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-05-18 04:39:57 -04:00

Joseph Doherty

a25593a9c6

chore: organize solution into module folders (Core/Server/Drivers/Client/Tooling)

Group all 69 projects into category subfolders under src/ and tests/ so the
Rider Solution Explorer mirrors the module structure. Folders: Core, Server,
Drivers (with a nested Driver CLIs subfolder), Client, Tooling.

- Move every project folder on disk with git mv (history preserved as renames).
- Recompute relative paths in 57 .csproj files: cross-category ProjectReferences,
  the lib/ HintPath+None refs in Driver.Historian.Wonderware, and the external
  mxaccessgw refs in Driver.Galaxy and its test project.
- Rebuild ZB.MOM.WW.OtOpcUa.slnx with nested solution folders.
- Re-prefix project paths in functional scripts (e2e, compliance, smoke SQL,
  integration, install).

Build green (0 errors); unit tests pass. Docs left for a separate pass.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-05-17 01:55:28 -04:00

2 Commits