Add PSSO end to end integration tests#48589
Conversation
Bring JM-47171 (PSSO e2e integration tests) current with its base. JM-47171 had branched from the original JM-47173, so this catch-up merge pulls in main, the reg-token and encrypt-passwords work, and JM-47173's changes. Clean auto-merge: the incoming side did not touch the crypto files JM-47171 refactored, so the refactor is preserved intact.
Codecov Report❌ Patch coverage is Additional details and impacted files@@ Coverage Diff @@
## JM-47173 #48589 +/- ##
============================================
+ Coverage 67.82% 67.89% +0.07%
============================================
Files 3649 3651 +2
Lines 233936 234285 +349
Branches 11787 11787
============================================
+ Hits 158659 159065 +406
+ Misses 60833 60659 -174
- Partials 14444 14561 +117
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Harness. 🚀 New features to boost your workflow:
|
Pull in JM-47173's latest tweaks (doc string fix; the 'remove unneeded change' in AuthenticationViewController+Shared.swift matched JM-47171's own lint fix, so no net change there).
CI Feedback 🧐A test triggered by this PR failed. Here is an AI-generated analysis of the failure:
|
Related issue: Resolves #47171
Added integration tests for the fleet-psso feature and added PSSO functionality to our MDM test client - idea being it is so tightly integrated into the MDM side of things on the Apple side AND we ideall want osquery-perf to be able to exercise it(coming in the next PR)
Checklist for submitter
If some of the following don't apply, delete the relevant line.
Changes file added for user-visible changes in
changes/,orbit/changes/oree/fleetd-chrome/changes.See Changes files for more information.
Input data is properly validated,
SELECT *is avoided, SQL injection is prevented (using placeholders for values in statements), JS inline code is prevented especially for url redirects, and untrusted data interpolated into shell scripts/commands is validated against shell metacharacters.Timeouts are implemented and retries are limited to avoid infinite loops
If paths of existing endpoints are modified without backwards compatibility, checked the frontend/CLI for any necessary changes
Testing
Added/updated automated tests
Where appropriate, automated tests simulate multiple hosts and test for host isolation (updates to one hosts's records do not affect another)
QA'd all new/changed functionality manually