Joseph Doherty
dc9c0c950c
Apply the ZB.MOM.WW. prefix to all gateway-side projects, folders,
.csproj/.sln contents, C# namespaces, using directives, generated proto
C# (csharp_namespace + checked-in generated files), InternalsVisibleTo
attributes, project-name string literals (LoadProject, .sln lookups,
worker exe paths, staticwebassets manifest), and the install/script/doc
references that point at any of the above. Migrate the solution from
.sln to .slnx via `dotnet sln migrate` and delete the old file.
External-runtime identifiers are intentionally NOT prefixed so external
configuration keeps working:
- GatewayMetrics.cs MeterName ("MxGateway.Server")
- DashboardAuthenticationDefaults Scheme/Policy ("MxGateway.Dashboard")
- GatewayRequestLoggingMiddleware logger category ("MxGateway.Request")
- StaRuntime thread name ("MxGateway.Worker.STA")
- appsettings.json root section "MxGateway" + env-var prefix
MxGateway__... and secret-name MxGateway:ApiKeyPepper
- C:\ProgramData\MxGateway\ data dir paths
Also fixes two tests that were not rename-related but became visible
while validating the rename:
- WorkerLiveMxAccessSmokeTests.ShutDownAsync: cancellation that the
gateway service correctly maps to RpcException(Cancelled) per gRPC
convention was being misclassified as a stream fault. Added a sibling
catch on RpcException with StatusCode.Cancelled.
- IntegrationTestEnvironment.ResolveRepositoryRoot: extracted IsRepositoryRoot
and made it accept either a .git marker OR a .sln/.slnx next to src/
so the worker-exe walker works in non-git working copies.
clients/proto/proto-inputs.json's protoRoot updated to point at
src/ZB.MOM.WW.MxGateway.Contracts/Protos.
Verified by `dotnet build` and a full `dotnet test` of the .slnx with
MXGATEWAY_RUN_LIVE_{MXACCESS,LDAP,GALAXY}_TESTS=1:
Tests: 472/472 pass
Worker.Tests: 280/280 pass (4 dev-rig [Fact(Skip=...)] skipped)
IntegrationTests: 18/18 pass
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
169 lines
5.8 KiB
C#
169 lines
5.8 KiB
C#
using ZB.MOM.WW.MxGateway.Server.Security.Authentication;
|
|
|
|
namespace ZB.MOM.WW.MxGateway.Tests.Security.Authentication;
|
|
|
|
public sealed class ApiKeyAdminCommandLineParserTests
|
|
{
|
|
/// <summary>
|
|
/// Verifies non-API key commands return not-an-API-key result.
|
|
/// </summary>
|
|
[Fact]
|
|
public void Parse_NonApiKeyCommand_ReturnsNotApiKeyCommand()
|
|
{
|
|
ApiKeyAdminParseResult result = ApiKeyAdminCommandLineParser.Parse(["--urls=http://localhost:5000"]);
|
|
|
|
Assert.False(result.IsApiKeyCommand);
|
|
Assert.Null(result.Command);
|
|
}
|
|
|
|
/// <summary>
|
|
/// Verifies API key create command parsing returns options.
|
|
/// </summary>
|
|
[Fact]
|
|
public void Parse_CreateKeyCommand_ReturnsOptions()
|
|
{
|
|
ApiKeyAdminParseResult result = ApiKeyAdminCommandLineParser.Parse(
|
|
[
|
|
"apikey",
|
|
"create-key",
|
|
"--key-id",
|
|
"operator01",
|
|
"--display-name",
|
|
"Operator",
|
|
"--scopes",
|
|
"session:open,events:read",
|
|
"--sqlite-path",
|
|
"auth.db",
|
|
"--pepper",
|
|
"pepper",
|
|
"--json"
|
|
]);
|
|
|
|
Assert.True(result.IsApiKeyCommand);
|
|
Assert.Null(result.Error);
|
|
Assert.NotNull(result.Command);
|
|
Assert.Equal(ApiKeyAdminCommandKind.CreateKey, result.Command.Kind);
|
|
Assert.True(result.Command.Json);
|
|
Assert.Equal("operator01", result.Command.KeyId);
|
|
Assert.Equal("Operator", result.Command.DisplayName);
|
|
Assert.Equal("auth.db", result.Command.SqlitePath);
|
|
Assert.Equal("pepper", result.Command.Pepper);
|
|
Assert.Contains("session:open", result.Command.Scopes);
|
|
Assert.Contains("events:read", result.Command.Scopes);
|
|
}
|
|
|
|
/// <summary>
|
|
/// Server-004 regression: a create-key command with a non-canonical scope
|
|
/// string (e.g. CLAUDE.md's stale <c>invoke</c> instead of <c>invoke:read</c>)
|
|
/// must be rejected at parse time rather than silently persisting an
|
|
/// unusable scope the authorization resolver never matches.
|
|
/// </summary>
|
|
[Fact]
|
|
public void Parse_CreateKeyCommand_RejectsUnknownScope()
|
|
{
|
|
ApiKeyAdminParseResult result = ApiKeyAdminCommandLineParser.Parse(
|
|
[
|
|
"apikey",
|
|
"create-key",
|
|
"--key-id",
|
|
"operator01",
|
|
"--display-name",
|
|
"Operator",
|
|
"--scopes",
|
|
"session:open,invoke,metadata",
|
|
]);
|
|
|
|
Assert.True(result.IsApiKeyCommand);
|
|
Assert.Null(result.Command);
|
|
Assert.NotNull(result.Error);
|
|
Assert.Contains("invoke", result.Error, StringComparison.Ordinal);
|
|
Assert.Contains("metadata", result.Error, StringComparison.Ordinal);
|
|
}
|
|
|
|
/// <summary>Verifies a create-key command with only canonical scopes parses successfully.</summary>
|
|
[Fact]
|
|
public void Parse_CreateKeyCommand_AcceptsAllCanonicalScopes()
|
|
{
|
|
ApiKeyAdminParseResult result = ApiKeyAdminCommandLineParser.Parse(
|
|
[
|
|
"apikey",
|
|
"create-key",
|
|
"--key-id",
|
|
"operator01",
|
|
"--display-name",
|
|
"Operator",
|
|
"--scopes",
|
|
"session:open,session:close,invoke:read,invoke:write,invoke:secure,events:read,metadata:read,admin",
|
|
]);
|
|
|
|
Assert.True(result.IsApiKeyCommand);
|
|
Assert.Null(result.Error);
|
|
Assert.NotNull(result.Command);
|
|
Assert.Equal(8, result.Command.Scopes.Count);
|
|
}
|
|
|
|
/// <summary>
|
|
/// Verifies create key without display name returns error.
|
|
/// </summary>
|
|
[Fact]
|
|
public void Parse_CreateKeyCommand_ReturnsConstraints()
|
|
{
|
|
ApiKeyAdminParseResult result = ApiKeyAdminCommandLineParser.Parse(
|
|
[
|
|
"apikey",
|
|
"create-key",
|
|
"--key-id",
|
|
"operator01",
|
|
"--display-name",
|
|
"Operator",
|
|
"--read-subtree",
|
|
"Area1/*",
|
|
"--read-subtree",
|
|
"Area2/*",
|
|
"--write-tag-glob",
|
|
"Pump_*",
|
|
"--max-write-classification",
|
|
"2",
|
|
"--browse-subtree",
|
|
"Area1/*",
|
|
"--read-alarm-only",
|
|
"--read-historized-only"
|
|
]);
|
|
|
|
Assert.True(result.IsApiKeyCommand);
|
|
Assert.NotNull(result.Command);
|
|
ApiKeyConstraints constraints = result.Command.Constraints;
|
|
Assert.Equal(["Area1/*", "Area2/*"], constraints.ReadSubtrees);
|
|
Assert.Equal(["Pump_*"], constraints.WriteTagGlobs);
|
|
Assert.Equal(2, constraints.MaxWriteClassification);
|
|
Assert.Equal(["Area1/*"], constraints.BrowseSubtrees);
|
|
Assert.True(constraints.ReadAlarmOnly);
|
|
Assert.True(constraints.ReadHistorizedOnly);
|
|
}
|
|
|
|
[Fact]
|
|
public void Parse_CreateKeyWithoutDisplayName_ReturnsError()
|
|
{
|
|
ApiKeyAdminParseResult result = ApiKeyAdminCommandLineParser.Parse(
|
|
["apikey", "create-key", "--key-id", "operator01"]);
|
|
|
|
Assert.True(result.IsApiKeyCommand);
|
|
Assert.Null(result.Command);
|
|
Assert.Contains("--display-name", result.Error, StringComparison.Ordinal);
|
|
}
|
|
|
|
/// <summary>
|
|
/// Verifies key ID with underscore returns error.
|
|
/// </summary>
|
|
[Fact]
|
|
public void Parse_KeyIdWithUnderscore_ReturnsError()
|
|
{
|
|
ApiKeyAdminParseResult result = ApiKeyAdminCommandLineParser.Parse(
|
|
["apikey", "revoke-key", "--key-id", "operator_01"]);
|
|
|
|
Assert.True(result.IsApiKeyCommand);
|
|
Assert.Null(result.Command);
|
|
Assert.Contains("letters, numbers, periods, and hyphens", result.Error, StringComparison.Ordinal);
|
|
}
|
|
}
|