test: add comprehensive e2e test suite with shared helpers and DB seeding

Extract shared test runner (helpers.js), add file-based SQLite with setup_db.py for fixture seeding, and add tests for auth guard, credentials management, full registration flow, health endpoint, password auth, and magic link registration errors. 66 checks across 7 test files.
2026-02-16 14:41:14 +01:00 · 2026-02-16 14:41:14 +01:00 · c381896de4
commit c381896de4
parent dbd7449ea1
10 changed files with 422 additions and 30 deletions
--- a/tests/e2e/setup_db.py
+++ b/tests/e2e/setup_db.py
@ -0,0 +1,75 @@
+#!/usr/bin/env python3
+"""Seed the e2e test database with test fixtures.
+
+Outputs JSON with the created test data (magic link tokens, usernames, etc.)
+so the JS tests can use them.
+
+Requires OIDC_OP_SQLITE_PATH env var pointing to the app's SQLite DB.
+"""
+
+import asyncio
+import json
+import os
+import sys
+
+import aiosqlite
+
+from fastapi_oidc_op.authn.password import PasswordService
+from fastapi_oidc_op.invite.service import MagicLinkService
+from fastapi_oidc_op.models import PasswordCredential, User
+from fastapi_oidc_op.store.sqlite.repositories import (
+    SQLiteCredentialRepository,
+    SQLiteMagicLinkRepository,
+    SQLiteUserRepository,
+)
+
+
+async def seed() -> None:
+    db_path = os.environ.get("OIDC_OP_SQLITE_PATH")
+    if not db_path:
+        print("OIDC_OP_SQLITE_PATH not set", file=sys.stderr)
+        sys.exit(1)
+
+    db = await aiosqlite.connect(db_path)
+    db.row_factory = aiosqlite.Row
+
+    user_repo = SQLiteUserRepository(db)
+    cred_repo = SQLiteCredentialRepository(db)
+    magic_link_repo = SQLiteMagicLinkRepository(db)
+    password_service = PasswordService()
+    magic_link_service = MagicLinkService(repo=magic_link_repo)
+
+    result = {}
+
+    # 1. Create a magic link for registration test
+    link = await magic_link_service.create(username="newuser")
+    result["register_token"] = link.token
+    result["register_username"] = "newuser"
+
+    # 2. Create a user with a password for login test
+    user = User(userid="test-user-01", username="testuser", groups=["users"])
+    await user_repo.create(user)
+    password_hash = password_service.hash("testpassword123")
+    await cred_repo.create_password(PasswordCredential(user_id=user.userid, password_hash=password_hash))
+    result["login_username"] = "testuser"
+    result["login_password"] = "testpassword123"
+
+    # 3. Create a separate user for credentials management test
+    cred_user = User(userid="test-user-02", username="creduser", groups=["users"])
+    await user_repo.create(cred_user)
+    cred_password_hash = password_service.hash("credpassword123")
+    await cred_repo.create_password(PasswordCredential(user_id=cred_user.userid, password_hash=cred_password_hash))
+    result["cred_username"] = "creduser"
+    result["cred_password"] = "credpassword123"
+
+    # 4. Create an expired/used magic link for negative test
+    expired_link = await magic_link_service.create(username="expired")
+    await magic_link_service.mark_used(expired_link.token)
+    result["used_token"] = expired_link.token
+
+    await db.commit()
+    await db.close()
+    print(json.dumps(result))
+
+
+asyncio.run(seed())