libre.sh/keycloak-scim
4
0
Fork 0
Code Issues 15 Pull requests Releases 1 Activity Actions

Fix OpenshiftClientStorageTest.testCodeGrantFlowWithServiceAccountUsingOAuthRedirectReference (#15741)

Browse source 
Closes #15565
This commit is contained in:
Stian Thorgersen 2022-11-29 14:20:21 +01:00 committed by GitHub
parent 55b2162421
commit c3c858c88a
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 5 additions and 9 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/openshift/OpenshiftClientStorageTest.java
View file

@ -173,12 +173,12 @@ public final class OpenshiftClientStorageTest extends AbstractTestRealmKeycloakT
@Test @Test
public void testCodeGrantFlowWithServiceAccountUsingOAuthRedirectReference() { public void testCodeGrantFlowWithServiceAccountUsingOAuthRedirectReference() {
String clientId = "system:serviceaccount:default:sa-oauth-redirect-reference"; String clientId = "system:serviceaccount:default:sa-oauth-redirect-reference";
testCodeGrantFlow(clientId, "https://myapp.org/callback", () -> assertSuccessfulResponseWithoutConsent(clientId)); testCodeGrantFlow(clientId, "http://127.0.0.1:8180/callback", () -> assertSuccessfulResponseWithoutConsent(clientId));
} }
@Test @Test
public void failCodeGrantFlowWithServiceAccountUsingOAuthRedirectReference() throws Exception { public void failCodeGrantFlowWithServiceAccountUsingOAuthRedirectReference() throws Exception {
testCodeGrantFlow("system:serviceaccount:default:sa-oauth-redirect-reference", "http://myapp.org/callback", () -> assertEquals(OAuthErrorException.INVALID_REDIRECT_URI, events.poll().getError())); testCodeGrantFlow("system:serviceaccount:default:sa-oauth-redirect-reference", "http://invalid/callback", () -> assertEquals(OAuthErrorException.INVALID_REDIRECT_URI, events.poll().getError()));
} }
@Test @Test
@ -214,7 +214,7 @@ public final class OpenshiftClientStorageTest extends AbstractTestRealmKeycloakT
@Test @Test
public void failCodeGrantFlowWithServiceAccountUsingOAuthRedirectUri() throws Exception { public void failCodeGrantFlowWithServiceAccountUsingOAuthRedirectUri() throws Exception {
testCodeGrantFlow("system:serviceaccount:default:sa-oauth-redirect-uri", "http://myapp.org/callback", () -> assertEquals(OAuthErrorException.INVALID_REDIRECT_URI, events.poll().getError())); testCodeGrantFlow("system:serviceaccount:default:sa-oauth-redirect-uri", "http://invalid/callback", () -> assertEquals(OAuthErrorException.INVALID_REDIRECT_URI, events.poll().getError()));
} }
private void testCodeGrantFlow(String clientId, String expectedRedirectUri, Runnable assertThat) { private void testCodeGrantFlow(String clientId, String expectedRedirectUri, Runnable assertThat) {

8
testsuite/integration-arquillian/tests/base/src/test/resources/openshift/client-storage/route-response.json
View file

@ -13,22 +13,18 @@
} }
}, },
"spec": { "spec": {
"host": "myapp.org", "host": "127.0.0.1",
"to": { "to": {
"kind": "Service", "kind": "Service",
"name": "proxy", "name": "proxy",
"weight": 100 "weight": 100
}, },
"tls": {
"termination": "reencrypt",
"destinationCACertificate": "-----BEGIN COMMENT-----\nThis is an empty PEM file created to provide backwards compatibility\nfor reencrypt routes that have no destinationCACertificate. This \ncontent will only appear for routes accessed via /oapi/v1/routes.\n-----END COMMENT-----\n"
},
"wildcardPolicy": "None" "wildcardPolicy": "None"
}, },
"status": { "status": {
"ingress": [ "ingress": [
{ {
"host": "myapp.org", "host": "127.0.0.1",
"routerName": "router", "routerName": "router",
"conditions": [ "conditions": [
{ {