pplate/plate-auth
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

test(w7): greenfield consumer integration test
CI / build (push) Failing after 33s
Details
Release / publish-maven (push) Failing after 25s
Details
Release / publish-npm (push) Failing after 1m7s
Details

Browse Source 
Integration test module (it/) simulates a zero-code consumer of plate-auth-starter:
- TestConsumerApplication: minimal @SpringBootApplication
- AuthBootstrapIT: verifies all required beans are present + PermissiveOrgValidator default
- ExchangeFlowIT: full exchange flow (valid envelope → tokens, tampered sig → 401, replay → 401)
- PlateAuthFlywayMigrationIT: V1-V6 migration test (CI-only, requires Docker/Testcontainers)

Also adds:
- SecurityConfig: extracted from auto-config to separate @Configuration for proper bean ordering
- PlateAuthExceptionHandler: SecurityException → 401, IllegalArgument → 400
- PlateAuthFlywayConfig: @ConditionalOnProperty(plate.auth.flyway.enabled) for test flexibility
- @AutoConfigurationPackage for entity scanning from starter JAR
- @Order(-100) on SecurityFilterChain for priority over defaults
- CORS: allowedOriginPatterns(*) when no origins configured (dev-friendly)

All 5 tests green locally (2 Docker-dependent skipped without CI env).
This commit is contained in:
Patrick Plate
2026-06-24 16:11:38 +02:00
parent a2e4393d05
commit 9d314a49c6
12 changed files with 509 additions and 68 deletions
Download Patch File Download Diff File Expand all files Collapse all files
plate-auth-starter/src/main/java/de/platesoft/auth/config/PlateAuthExceptionHandler.java
+29
View File
@@ -0,0 +1,29 @@
package de.platesoft.auth.config;
import org.springframework.http.HttpStatus;
import org.springframework.http.ResponseEntity;
import org.springframework.web.bind.annotation.ExceptionHandler;
import org.springframework.web.bind.annotation.RestControllerAdvice;
/**
* Global exception handler for plate-auth controllers.
*/
@RestControllerAdvice(basePackages = "de.platesoft.auth.controller")
public class PlateAuthExceptionHandler {
@ExceptionHandler(SecurityException.class)
public ResponseEntity<String> handleSecurityException(SecurityException e) {
return ResponseEntity.status(HttpStatus.UNAUTHORIZED).body(e.getMessage());
}
@ExceptionHandler(IllegalArgumentException.class)
public ResponseEntity<String> handleIllegalArgument(IllegalArgumentException e) {
return ResponseEntity.badRequest().body(e.getMessage());
}
@ExceptionHandler(Exception.class)
public ResponseEntity<String> handleGenericException(Exception e) {
return ResponseEntity.status(HttpStatus.INTERNAL_SERVER_ERROR)
.body("Internal error: " + e.getClass().getSimpleName() + ": " + e.getMessage());
}
}