gsadmin/certctl
1
0
Fork 0
mirror of https://github.com/shankar0123/certctl.git synced 2026-06-07 14:21:37 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge Fix 12: Vitest coverage for the 2026-05-10/11 GUI batch

Browse Source
This commit is contained in:
shankar0123
2026-05-11 13:00:25 +00:00
parent ecba4112b7 dfdba5b260
commit 9f617add29
6 changed files with 864 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
CHANGELOG.md
+31
View File
@@ -2,6 +2,37 @@
## Unreleased
### Tests
- **Vitest coverage for the 2026-05-10/11 GUI batch (Audit 2026-05-11 Fix 12).**
The original GUI-batch commit `661b6db` claimed `npx tsc --noEmit PASS`
but shipped no Vitest cases for the new surfaces. The regression-
prevention layer was missing — a future refactor of `KeysPage`'s
assign modal could silently drop scope_type handling, the LOW-1 demo
banner could be hidden by a stray predicate flip, the LOW-11 hide of
the delete button on default roles could disappear and let operators
click straight into a backend 409, and nothing would surface in CI.
This closure adds 35 new test cases across five files:
`web/src/pages/auth/UsersPage.test.tsx` (new, 8 cases pinning the
active/deactivated/reactivate flow + provider filter + empty state +
loading state), `web/src/pages/auth/AuthSettingsPage.test.tsx`
(extended +4 cases pinning the MED-12 runtime-config panel —
alphabetical sort, `(empty)` placeholder, 403 silent-hide),
`web/src/pages/auth/KeysPage.test.tsx` (extended +8 cases pinning
the HIGH-10 GUI half — scope_type=global/profile/issuer body shape,
expires_at omission vs RFC3339 promotion, whitespace-only scope_id
rejection, demo-anon row mutation-button hide),
`web/src/pages/auth/RoleDetailPage.test.tsx` (new, 9 cases pinning
the MED-8 scope picker + the LOW-11 default-role delete-button hide
via the `DEFAULT_ROLE_IDS` set against `r-admin` + `r-auditor`),
`web/src/components/AuthProvider.test.tsx` (new, 5 cases pinning the
LOW-1 demo-banner visibility predicate — `authType==='none' &&
!loading` — across happy/api-key/oidc/loading/rejected branches; the
rejected-fetch path keeps the banner visible because the catch
treats it as an old-server-fallback to demo-mode, and that behavior
is pinned here so a future change surfaces in the diff). 40/40
test-file-scoped pass; `tsc --noEmit` clean.
### Security
- **Demo-mode residual-grants detector + cleanup endpoint + CI guard (Audit 2026-05-11 A-8).**