dohertj2/lmxopcua
1
0
Fork 0
Code Issues 2 Pull Requests 1 Actions Packages Projects Releases Wiki Activity
Files
11bcff6af538d3263272d4380ad331900bfb41e4
lmxopcua/tests/Server/ZB.MOM.WW.OtOpcUa.Host.IntegrationTests
T
History
Joseph Doherty c1619d95f5 feat(auth)!: OtOpcUa canonical control-plane roles + config-DB migration (Task 1.7) 
Standardize the control-plane admin role VALUES on the canonical six
(ZB.MOM.WW.Auth CanonicalRole). OtOpcUa uses four:
  ConfigViewer   -> Viewer
  ConfigEditor   -> Designer
  FleetAdmin     -> Administrator
  DriverOperator -> Operator   (appsettings-only string role)

This is a rename, not a permission change: enforcement semantics are
preserved (whoever could deploy/administer/operate before still can).

- AdminRole enum members renamed (persisted as string names via
  HasConversion<string>); RoleGrants.razor dropdown default updated.
- EF DATA migration CanonicalizeAdminRoles rewrites existing
  LdapGroupRoleMapping.Role rows old->new (Up) and back (Down); schema /
  model snapshot byte-identical (no pending model changes).
- Enforcement role STRINGS canonicalized:
  * Security policies keep their NAMES ("DriverOperator"/"FleetAdmin")
    but require canonical roles: RequireRole("Operator","Administrator")
    and RequireRole("Administrator").
  * Deployments.razor [Authorize(Roles="Administrator,Designer")].
  * DevStub now grants "Administrator"; LdapOptions/doc-comment examples
    canonicalized.
- Data-plane authorization (NodePermissions/NodeAcl/IPermissionEvaluator/
  TriePermissionEvaluator/UserAuthorizationState) UNTOUCHED.
- New CanonicalAdminRolesTests pins canonical claim values end-to-end and
  the real registered policies; existing role-string tests updated.
2026-06-02 07:30:00 -04:00
..
ClusterFormationTests.cs
docs: backfill XML documentation across 756 files
2026-05-28 08:10:17 -04:00
DeployHappyPathTests.cs
docs: backfill XML documentation across 756 files
2026-05-28 08:10:17 -04:00
docker-compose.yml
chore(auth): OtOpcUa unify dev LDAP base DN to dc=zb,dc=local (Task 1.6)
2026-06-02 06:45:23 -04:00
DockerFixtureAvailability.cs
test(adminui): E2E scaffolding for Test Connect + Reconnect + Status hub
2026-05-28 11:31:12 -04:00
DriverProbeRegistrationTests.cs
fix(adminui): wire Test Connect probes + live panels on admin-only nodes
2026-05-29 16:38:32 -04:00
DriverReconnectE2eTests.cs
test(adminui): E2E scaffolding for Test Connect + Reconnect + Status hub
2026-05-28 11:31:12 -04:00
DriverStatusHubE2eTests.cs
test(adminui): E2E scaffolding for Test Connect + Reconnect + Status hub
2026-05-28 11:31:12 -04:00
DriverTestConnectE2eTests.cs
test(adminui): E2E scaffolding for Test Connect + Reconnect + Status hub
2026-05-28 11:31:12 -04:00
FailoverDuringDeployTests.cs
docs: backfill XML documentation across 756 files
2026-05-28 08:10:17 -04:00
FleetDiagnosticsRoundTripTests.cs
docs: backfill XML documentation across 756 files
2026-05-28 08:10:17 -04:00
LdapOpcUaUserAuthenticatorTests.cs
feat(auth)!: OtOpcUa canonical control-plane roles + config-DB migration (Task 1.7)
2026-06-02 07:30:00 -04:00
LdapOptionsBindingTests.cs
fix(auth): OtOpcUa 1.2 review fixes — startup insecure-transport guard + Ldaps in prod overlays, test fidelity, 0.1.1 pin
2026-06-02 01:37:29 -04:00
LdapOptionsValidatorTests.cs
fix(auth): OtOpcUa 1.2 review fixes — startup insecure-transport guard + Ldaps in prod overlays, test fidelity, 0.1.1 pin
2026-06-02 01:37:29 -04:00
OpcUaApplicationHostOptionsValidatorTests.cs
feat: validate OpcUa host options at startup (route through IOptions + ValidateOnStart)
2026-06-01 18:45:55 -04:00
README.md
test(integration): F21 — docker-compose + env-driven SQL/LDAP harness mode
2026-05-26 07:25:16 -04:00
RoslynScriptedAlarmEvaluatorTests.cs
docs: backfill XML documentation across 756 files
2026-05-28 08:10:17 -04:00
RoslynVirtualTagEvaluatorTests.cs
docs: backfill XML documentation across 756 files
2026-05-28 08:10:17 -04:00
TwoNodeClusterHarness.cs
feat(auth)!: OtOpcUa canonical control-plane roles + config-DB migration (Task 1.7)
2026-06-02 07:30:00 -04:00
ZB.MOM.WW.OtOpcUa.Host.IntegrationTests.csproj
test(adminui): E2E scaffolding for Test Connect + Reconnect + Status hub
2026-05-28 11:31:12 -04:00

README.md

ZB.MOM.WW.OtOpcUa.Host.IntegrationTests

Two-node Akka cluster integration tests on top of TwoNodeClusterHarness.

Default mode (no infra required)

dotnet test tests/Server/ZB.MOM.WW.OtOpcUa.Host.IntegrationTests

Uses Microsoft.EntityFrameworkCore.InMemory for ConfigDb and a stub ILdapAuthService that accepts any username when the password is valid-password. Each harness instance creates a unique in-memory database scoped to its lifetime. This is the mode CI runs by default.

Real-infra mode (SQL Server + OpenLDAP)

When you need to exercise EF behaviors that diverge between providers (index uniqueness, RowVersion concurrency, JSON columns, migration application) or a real LDAP bind, bring up the bundled compose stack and set the env-var switches:

docker compose -f tests/Server/ZB.MOM.WW.OtOpcUa.Host.IntegrationTests/docker-compose.yml up -d

export OTOPCUA_HARNESS_USE_SQL=1
export OTOPCUA_HARNESS_USE_LDAP=1
dotnet test tests/Server/ZB.MOM.WW.OtOpcUa.Host.IntegrationTests

docker compose -f tests/Server/ZB.MOM.WW.OtOpcUa.Host.IntegrationTests/docker-compose.yml down -v

SQL Server mode (OTOPCUA_HARNESS_USE_SQL=1)

  • Container: mcr.microsoft.com/mssql/server:2022-latest on localhost:14331
  • Each TwoNodeClusterHarness.StartAsync() creates a unique database OtOpcUa_Harness_{guid} via Database.EnsureCreatedAsync() and drops it on DisposeAsync() (best-effort).
  • Port 14331 chosen to avoid colliding with the docker-dev/ fleet (which uses 14330).

LDAP mode (OTOPCUA_HARNESS_USE_LDAP=1)

  • Container: bitnami/openldap:2.6 on localhost:3894
  • Users alice / alice123 and bob / bob123, all under ou=FleetAdmin.
  • Port 3894 chosen to avoid colliding with the docker-dev/ fleet (which uses 3893).

Local-dev caveat

This dev VM (DESKTOP-6JL3KKO) does not run Docker locally. Real-infra mode runs on the shared Linux Docker host (10.100.0.35) per docs/v2/dev-environment.md, or in CI on Linux.

Reference in New Issue View Git Blame Copy Permalink