Эхлэл Бүгдийг харах Тусламж
Нэвтрэх
chiappa
/
irdb
-ын хуулбар https://git.snix.ch/chiappa/irdb.git
1
0
Салаа 0
Файлууд Асуудлууд 0
Мод: 98497796c9
Салаанууд Тагууд
irdb
/
api
/
tests
/
Integration
/
Internal
/
JobsEndpointsTest.php

JobsEndpointsTest.php 10 KB
Түүх Анхны өгөгдөл

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264 
  1. <?php
    2. 

  2. 

  3. declare(strict_types=1);
    4. 

  4. 

  5. namespace App\Tests\Integration\Internal;
    6. 

  6. 

  7. use App\Tests\Integration\Support\AppTestCase;
    8. 

  8. 

  9. /**
    10. 

  10.  * End-to-end coverage for `/internal/jobs/*`. The AppTestCase boots a Slim
    11. 

  11.  * app whose ServerRequestFactory does NOT populate REMOTE_ADDR — so we
    12. 

  12.  * inject one explicitly via the request() helper override below to satisfy
    13. 

  13.  * InternalNetworkMiddleware.
    14. 

  14.  */
    15. 

  15. final class JobsEndpointsTest extends AppTestCase
    16. 

  16. {
    17. 

  17.     private const TOKEN = 'test-internal-token';
    18. 

  18. 

  19.     protected function setUp(): void
    20. 

  20.     {
    21. 

  21.         // Ensure the container picks up our internal token.
    22. 

  22.         putenv('INTERNAL_JOB_TOKEN=' . self::TOKEN);
    23. 

  23.         $_ENV['INTERNAL_JOB_TOKEN'] = self::TOKEN;
    24. 

  24.         $_SERVER['INTERNAL_JOB_TOKEN'] = self::TOKEN;
    25. 

  25. 

  26.         parent::setUp();
    27. 

  27. 

  28.         // Override the internal-token middleware in the container so the
    29. 

  29.         // running Slim app validates against our test token. The base
    30. 

  30.         // AppTestCase wires a settings bundle that doesn't include the
    31. 

  31.         // token, so we patch the InternalTokenMiddleware factory directly.
    32. 

  32.         if (method_exists($this->container, 'set')) {
    33. 

  33.             /** @var \DI\Container $container */
    34. 

  34.             $container = $this->container;
    35. 

  35.             $container->set(
    36. 

  36.                 \App\Infrastructure\Http\Middleware\InternalTokenMiddleware::class,
    37. 

  37.                 new \App\Infrastructure\Http\Middleware\InternalTokenMiddleware(
    38. 

  38.                     new \Slim\Psr7\Factory\ResponseFactory(),
    39. 

  39.                     self::TOKEN,
    40. 

  40.                 ),
    41. 

  41.             );
    42. 

  42.         }
    43. 

  43.         // Rebuild the app so it picks up the patched middleware.
    44. 

  44.         $this->app = \App\App\AppFactory::build($this->container);
    45. 

  45.     }
    46. 

  46. 

  47.     public function testTickRequiresToken(): void
    48. 

  48.     {
    49. 

  49.         $resp = $this->internalRequest('POST', '/internal/jobs/tick', headers: []);
    50. 

  50.         self::assertSame(401, $resp->getStatusCode());
    51. 

  51.     }
    52. 

  52. 

  53.     public function testTickRejectsWrongToken(): void
    54. 

  54.     {
    55. 

  55.         $resp = $this->internalRequest(
    56. 

  56.             'POST',
    57. 

  57.             '/internal/jobs/tick',
    58. 

  58.             headers: ['Authorization' => 'Bearer wrong'],
    59. 

  59.         );
    60. 

  60.         self::assertSame(401, $resp->getStatusCode());
    61. 

  61.     }
    62. 

  62. 

  63.     public function testExternalSourceReturns404OpaquePerSpec(): void
    64. 

  64.     {
    65. 

  65.         $resp = $this->internalRequest(
    66. 

  66.             'POST',
    67. 

  67.             '/internal/jobs/tick',
    68. 

  68.             headers: ['Authorization' => 'Bearer ' . self::TOKEN],
    69. 

  69.             remoteAddr: '8.8.8.8',
    70. 

  70.         );
    71. 

  71.         self::assertSame(404, $resp->getStatusCode());
    72. 

  72.     }
    73. 

  73. 

  74.     public function testTickSuccessProducesEnvelope(): void
    75. 

  75.     {
    76. 

  76.         $resp = $this->internalRequest(
    77. 

  77.             'POST',
    78. 

  78.             '/internal/jobs/tick',
    79. 

  79.             headers: ['Authorization' => 'Bearer ' . self::TOKEN],
    80. 

  80.         );
    81. 

  81.         self::assertSame(200, $resp->getStatusCode());
    82. 

  82.         $body = $this->decode($resp);
    83. 

  83.         self::assertSame('tick', $body['job']);
    84. 

  84.         self::assertSame('success', $body['status']);
    85. 

  85.         self::assertArrayHasKey('run_id', $body);
    86. 

  86.         self::assertArrayHasKey('duration_ms', $body);
    87. 

  87.     }
    88. 

  88. 

  89.     public function testRecomputeSucceedsWithEmptyTables(): void
    90. 

  90.     {
    91. 

  91.         $resp = $this->internalRequest(
    92. 

  92.             'POST',
    93. 

  93.             '/internal/jobs/recompute-scores',
    94. 

  94.             headers: ['Authorization' => 'Bearer ' . self::TOKEN],
    95. 

  95.         );
    96. 

  96.         self::assertSame(200, $resp->getStatusCode());
    97. 

  97.         $body = $this->decode($resp);
    98. 

  98.         self::assertSame('recompute-scores', $body['job']);
    99. 

  99.         self::assertSame('success', $body['status']);
    100. 

  100.     }
    101. 

  101. 

  102.     public function testConcurrentRecomputeProducesOneSuccessOneSkipped(): void
    103. 

  103.     {
    104. 

  104.         // Pre-acquire the lock to simulate "another worker is busy". The
    105. 

  105.         // second HTTP call must come back 409 with skipped_locked.
    106. 

  106.         $now = (new \DateTimeImmutable('now', new \DateTimeZone('UTC')));
    107. 

  107.         $lockSql = 'INSERT INTO job_locks (job_name, acquired_by, acquired_at, expires_at) '
    108. 

  108.             . 'VALUES (:job, :owner, :acquired, :expires)';
    109. 

  109.         $this->db->executeStatement($lockSql, [
    110. 

  110.             'job' => 'recompute-scores',
    111. 

  111.             'owner' => 'OTHER',
    112. 

  112.             'acquired' => $now->format('Y-m-d H:i:s'),
    113. 

  113.             'expires' => $now->modify('+5 minutes')->format('Y-m-d H:i:s'),
    114. 

  114.         ]);
    115. 

  115. 

  116.         $resp = $this->internalRequest(
    117. 

  117.             'POST',
    118. 

  118.             '/internal/jobs/recompute-scores',
    119. 

  119.             headers: ['Authorization' => 'Bearer ' . self::TOKEN],
    120. 

  120.             body: '{"full": true}',
    121. 

  121.         );
    122. 

  122.         self::assertSame(409, $resp->getStatusCode());
    123. 

  123.         $body = $this->decode($resp);
    124. 

  124.         self::assertSame('skipped_locked', $body['status']);
    125. 

  125.     }
    126. 

  126. 

  127.     public function testRefreshGeoipDoesNotShortCircuitOnDbipDefault(): void
    128. 

  128.     {
    129. 

  129.         // dbip is the default test provider; requiresCredential() is false.
    130. 

  130.         // dry_run avoids the actual download.
    131. 

  131.         $resp = $this->internalRequest(
    132. 

  132.             'POST',
    133. 

  133.             '/internal/jobs/refresh-geoip?dry_run=1',
    134. 

  134.             headers: ['Authorization' => 'Bearer ' . self::TOKEN],
    135. 

  135.         );
    136. 

  136.         self::assertNotSame(412, $resp->getStatusCode());
    137. 

  137.     }
    138. 

  138. 

  139.     public function testRefreshGeoipReturns412WithoutCredentialOnMaxmind(): void
    140. 

  140.     {
    141. 

  141.         // Patch the container's downloader to MaxMind without a key.
    142. 

  142.         $this->swapDownloader(new \App\Infrastructure\Enrichment\Downloaders\MaxMindDownloader(
    143. 

  143.             new \GuzzleHttp\Client(),
    144. 

  144.             licenseKey: '',
    145. 

  145.         ));
    146. 

  146.         $resp = $this->internalRequest(
    147. 

  147.             'POST',
    148. 

  148.             '/internal/jobs/refresh-geoip',
    149. 

  149.             headers: ['Authorization' => 'Bearer ' . self::TOKEN],
    150. 

  150.         );
    151. 

  151.         self::assertSame(412, $resp->getStatusCode());
    152. 

  152.         $body = $this->decode($resp);
    153. 

  153.         self::assertSame('no_credential', $body['error']);
    154. 

  154.         self::assertSame('maxmind', $body['provider']);
    155. 

  155.         self::assertSame('MAXMIND_LICENSE_KEY', $body['missing']);
    156. 

  156.     }
    157. 

  157. 

  158.     public function testRefreshGeoipReturns412WithoutTokenOnIpinfo(): void
    159. 

  159.     {
    160. 

  160.         $this->swapDownloader(new \App\Infrastructure\Enrichment\Downloaders\IPinfoDownloader(
    161. 

  161.             new \GuzzleHttp\Client(),
    162. 

  162.             token: '',
    163. 

  163.         ));
    164. 

  164.         $resp = $this->internalRequest(
    165. 

  165.             'POST',
    166. 

  166.             '/internal/jobs/refresh-geoip',
    167. 

  167.             headers: ['Authorization' => 'Bearer ' . self::TOKEN],
    168. 

  168.         );
    169. 

  169.         self::assertSame(412, $resp->getStatusCode());
    170. 

  170.         $body = $this->decode($resp);
    171. 

  171.         self::assertSame('ipinfo', $body['provider']);
    172. 

  172.         self::assertSame('IPINFO_TOKEN', $body['missing']);
    173. 

  173.     }
    174. 

  174. 

  175.     public function testEnrichPendingNoOpsCleanlyWithoutDbs(): void
    176. 

  176.     {
    177. 

  177.         $resp = $this->internalRequest(
    178. 

  178.             'POST',
    179. 

  179.             '/internal/jobs/enrich-pending',
    180. 

  180.             headers: ['Authorization' => 'Bearer ' . self::TOKEN],
    181. 

  181.         );
    182. 

  182.         self::assertSame(200, $resp->getStatusCode());
    183. 

  183.         $body = $this->decode($resp);
    184. 

  184.         self::assertSame('enrich-pending', $body['job']);
    185. 

  185.         self::assertSame('success', $body['status']);
    186. 

  186.         self::assertSame(0, $body['items_processed']);
    187. 

  187.     }
    188. 

  188. 

  189.     public function testStatusListsAllRegisteredJobs(): void
    190. 

  190.     {
    191. 

  191.         $resp = $this->internalRequest(
    192. 

  192.             'GET',
    193. 

  193.             '/internal/jobs/status',
    194. 

  194.             headers: ['Authorization' => 'Bearer ' . self::TOKEN],
    195. 

  195.         );
    196. 

  196.         self::assertSame(200, $resp->getStatusCode());
    197. 

  197.         $body = $this->decode($resp);
    198. 

  198.         self::assertArrayHasKey('jobs', $body);
    199. 

  199.         self::assertArrayHasKey('recompute-scores', $body['jobs']);
    200. 

  200.         self::assertArrayHasKey('cleanup-audit', $body['jobs']);
    201. 

  201.         self::assertArrayHasKey('enrich-pending', $body['jobs']);
    202. 

  202.         self::assertArrayHasKey('refresh-geoip', $body['jobs']);
    203. 

  203.         self::assertArrayHasKey('tick', $body['jobs']);
    204. 

  204.     }
    205. 

  205. 

  206.     private function swapDownloader(\App\Infrastructure\Enrichment\Downloaders\GeoIpDownloader $downloader): void
    207. 

  207.     {
    208. 

  208.         if (!method_exists($this->container, 'set')) {
    209. 

  209.             return;
    210. 

  210.         }
    211. 

  211.         /** @var \DI\Container $container */
    212. 

  212.         $container = $this->container;
    213. 

  213.         $container->set(\App\Infrastructure\Enrichment\Downloaders\GeoIpDownloader::class, $downloader);
    214. 

  214.         // PHP-DI caches singletons, so JobsController already holds the
    215. 

  215.         // previous downloader. Replace it with a freshly built one
    216. 

  216.         // (via container->make) so it picks up the new binding.
    217. 

  217.         $container->set(\App\Application\Internal\JobsController::class, $container->make(\App\Application\Internal\JobsController::class));
    218. 

  218.         $this->app = \App\App\AppFactory::build($this->container);
    219. 

  219.     }
    220. 

  220. 

  221.     public function testCleanupAuditSucceedsAndRecordsRun(): void
    222. 

  222.     {
    223. 

  223.         $resp = $this->internalRequest(
    224. 

  224.             'POST',
    225. 

  225.             '/internal/jobs/cleanup-audit',
    226. 

  226.             headers: ['Authorization' => 'Bearer ' . self::TOKEN],
    227. 

  227.         );
    228. 

  228.         self::assertSame(200, $resp->getStatusCode());
    229. 

  229.         $body = $this->decode($resp);
    230. 

  230.         self::assertSame('cleanup-audit', $body['job']);
    231. 

  231.         self::assertSame('success', $body['status']);
    232. 

  232. 

  233.         $row = $this->db->fetchAssociative(
    234. 

  234.             "SELECT triggered_by, status FROM job_runs WHERE job_name = 'cleanup-audit'"
    235. 

  235.         );
    236. 

  236.         self::assertNotFalse($row);
    237. 

  237.         self::assertSame('schedule', $row['triggered_by']);
    238. 

  238.         self::assertSame('success', $row['status']);
    239. 

  239.     }
    240. 

  240. 

  241.     /**
    242. 

  242.      * @param array<string, string> $headers
    243. 

  243.      */
    244. 

  244.     private function internalRequest(
    245. 

  245.         string $method,
    246. 

  246.         string $path,
    247. 

  247.         array $headers = [],
    248. 

  248.         ?string $body = null,
    249. 

  249.         string $remoteAddr = '127.0.0.1',
    250. 

  250.     ): \Psr\Http\Message\ResponseInterface {
    251. 

  251.         $factory = new \Slim\Psr7\Factory\ServerRequestFactory();
    252. 

  252.         $request = $factory->createServerRequest($method, $path, ['REMOTE_ADDR' => $remoteAddr]);
    253. 

  253.         foreach ($headers as $name => $value) {
    254. 

  254.             $request = $request->withHeader($name, $value);
    255. 

  255.         }
    256. 

  256.         if ($body !== null) {
    257. 

  257.             $stream = (new \Slim\Psr7\Factory\StreamFactory())->createStream($body);
    258. 

  258.             $request = $request->withBody($stream);
    259. 

  259.             $request = $request->withHeader('Content-Type', 'application/json');
    260. 

  260.         }
    261. 

  261. 

  262.         return $this->app->handle($request);
    263. 

  263.     }
    264. 

  264. }
    265.