aviso-server 0.5.0

Notification service for data-driven workflows with live and replay APIs.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155

// (C) Copyright 2024- ECMWF and individual contributors.
//
// This software is licensed under the terms of the Apache Licence Version 2.0
// which can be obtained at http://www.apache.org/licenses/LICENSE-2.0.
// In applying this licence, ECMWF does not waive the privileges and immunities
// granted to it by virtue of its status as an intergovernmental organisation nor
// does it submit to any jurisdiction.

use crate::helpers::{spawn_streaming_test_app, spawn_streaming_test_app_with_auth};
use serde_json::Value;

#[tokio::test]
async fn schema_list_does_not_expose_storage_policy() {
    let app = spawn_streaming_test_app().await;
    let response = reqwest::Client::new()
        .get(format!("{}/api/v1/schema", app.address))
        .send()
        .await
        .expect("failed to call schema list endpoint");

    assert_eq!(response.status().as_u16(), 200);
    let body = response
        .text()
        .await
        .expect("failed to read schema list response");
    assert!(
        !body.contains("\"storage_policy\""),
        "schema list response must not expose storage_policy; body: {body}"
    );
}

#[tokio::test]
async fn event_schema_does_not_expose_storage_policy() {
    let app = spawn_streaming_test_app().await;
    let response = reqwest::Client::new()
        .get(format!("{}/api/v1/schema/mars", app.address))
        .send()
        .await
        .expect("failed to call event schema endpoint");

    assert_eq!(response.status().as_u16(), 200);
    let body = response
        .text()
        .await
        .expect("failed to read event schema response");
    assert!(
        !body.contains("\"storage_policy\""),
        "event schema response must not expose storage_policy; body: {body}"
    );
}

#[tokio::test]
async fn event_schema_exposes_identifier_description_when_configured() {
    let app = spawn_streaming_test_app().await;
    let response = reqwest::Client::new()
        .get(format!("{}/api/v1/schema/mars", app.address))
        .send()
        .await
        .expect("failed to call event schema endpoint");

    assert_eq!(response.status().as_u16(), 200);
    let body: Value = response
        .json()
        .await
        .expect("failed to parse event schema response");

    let description = body
        .get("schema")
        .and_then(|schema| schema.get("identifier"))
        .and_then(|identifier| identifier.get("class"))
        .and_then(|field| field.get("description"))
        .and_then(|description| description.as_str());

    assert_eq!(
        description,
        Some("MARS class, for example od for operational data.")
    );
}

#[tokio::test]
async fn event_schema_omits_identifier_description_when_not_configured() {
    let app = spawn_streaming_test_app().await;
    let response = reqwest::Client::new()
        .get(format!("{}/api/v1/schema/mars", app.address))
        .send()
        .await
        .expect("failed to call event schema endpoint");

    assert_eq!(response.status().as_u16(), 200);
    let body: Value = response
        .json()
        .await
        .expect("failed to parse event schema response");

    let time_field = body
        .get("schema")
        .and_then(|schema| schema.get("identifier"))
        .and_then(|identifier| identifier.get("time"))
        .expect("schema response missing identifier.time");

    assert!(
        time_field.get("description").is_none(),
        "identifier.time description should be omitted when not configured"
    );
}

#[tokio::test]
async fn schema_list_is_public_when_auth_is_enabled() {
    let app = spawn_streaming_test_app_with_auth().await;
    let response = reqwest::Client::new()
        .get(format!("{}/api/v1/schema", app.address))
        .send()
        .await
        .expect("failed to call schema list endpoint");

    assert_eq!(response.status().as_u16(), 200);
}

#[tokio::test]
async fn event_schema_is_public_when_auth_is_enabled() {
    let app = spawn_streaming_test_app_with_auth().await;
    let response = reqwest::Client::new()
        .get(format!("{}/api/v1/schema/mars", app.address))
        .send()
        .await
        .expect("failed to call event schema endpoint");

    assert_eq!(response.status().as_u16(), 200);
}

#[tokio::test]
async fn schema_list_ignores_malformed_authorization_header() {
    let app = spawn_streaming_test_app_with_auth().await;
    let response = reqwest::Client::new()
        .get(format!("{}/api/v1/schema", app.address))
        .header("Authorization", "BadScheme garbage")
        .send()
        .await
        .expect("failed to call schema list endpoint");

    assert_eq!(response.status().as_u16(), 200);
}

#[tokio::test]
async fn event_schema_ignores_malformed_authorization_header() {
    let app = spawn_streaming_test_app_with_auth().await;
    let response = reqwest::Client::new()
        .get(format!("{}/api/v1/schema/mars", app.address))
        .header("Authorization", "BadScheme garbage")
        .send()
        .await
        .expect("failed to call event schema endpoint");

    assert_eq!(response.status().as_u16(), 200);
}