zitadel/internal/api/grpc/session/v2beta/integration_test/server_test.go

//go:build integration

package session_test

import (
	"context"
	"os"
	"testing"
	"time"

	"github.com/zitadel/logging"

	"github.com/zitadel/zitadel/internal/integration"
	session "github.com/zitadel/zitadel/pkg/grpc/session/v2beta"
	"github.com/zitadel/zitadel/pkg/grpc/user/v2"
)

var (
	CTX             context.Context
	IAMOwnerCTX     context.Context
	UserCTX         context.Context
	Instance        *integration.Instance
	Client          session.SessionServiceClient
	User            *user.AddHumanUserResponse
	DeactivatedUser *user.AddHumanUserResponse
	LockedUser      *user.AddHumanUserResponse
)

func TestMain(m *testing.M) {
	os.Exit(func() int {
		ctx, cancel := context.WithTimeout(context.Background(), 15*time.Minute)
		defer cancel()

		Instance = integration.NewInstance(ctx)
		Client = Instance.Client.SessionV2beta

		CTX = Instance.WithAuthorization(ctx, integration.UserTypeOrgOwner)
		IAMOwnerCTX = Instance.WithAuthorization(ctx, integration.UserTypeIAMOwner)
		UserCTX = Instance.WithAuthorization(ctx, integration.UserTypeNoPermission)
		User = createFullUser(CTX)
		DeactivatedUser = createDeactivatedUser(CTX)
		LockedUser = createLockedUser(CTX)
		return m.Run()
	}())
}

func createFullUser(ctx context.Context) *user.AddHumanUserResponse {
	userResp := Instance.CreateHumanUser(ctx)
	Instance.Client.UserV2.VerifyEmail(ctx, &user.VerifyEmailRequest{
		UserId:           userResp.GetUserId(),
		VerificationCode: userResp.GetEmailCode(),
	})
	Instance.Client.UserV2.VerifyPhone(ctx, &user.VerifyPhoneRequest{
		UserId:           userResp.GetUserId(),
		VerificationCode: userResp.GetPhoneCode(),
	})
	Instance.SetUserPassword(ctx, userResp.GetUserId(), integration.UserPassword, false)
	Instance.RegisterUserPasskey(ctx, userResp.GetUserId())
	return userResp
}

func createDeactivatedUser(ctx context.Context) *user.AddHumanUserResponse {
	userResp := Instance.CreateHumanUser(ctx)
	_, err := Instance.Client.UserV2.DeactivateUser(ctx, &user.DeactivateUserRequest{UserId: userResp.GetUserId()})
	logging.OnError(err).Fatal("deactivate human user")
	return userResp
}

func createLockedUser(ctx context.Context) *user.AddHumanUserResponse {
	userResp := Instance.CreateHumanUser(ctx)
	_, err := Instance.Client.UserV2.LockUser(ctx, &user.LockUserRequest{UserId: userResp.GetUserId()})
	logging.OnError(err).Fatal("lock human user")
	return userResp
}
fix(session v2): allow searching for own sessions or user agent (fingerprintID) (#9110) # Which Problems Are Solved ListSessions only works to list the sessions that you are the creator of. # How the Problems Are Solved Add options to search for sessions created by other users, sessions belonging to the same useragent and sessions belonging to your user. Possible through additional search parameters which as default use the information contained in your session token but can also be filled with specific IDs. # Additional Changes Remodel integration tests, to separate the Create and Get of sessions correctly. # Additional Context Closes #8301 --------- Co-authored-by: Livio Spring <livio.a@gmail.com> 2025-01-14 14:15:59 +01:00			`//go:build integration`

			`package session_test`

			`import (`
			`"context"`
			`"os"`
			`"testing"`
			`"time"`

			`"github.com/zitadel/logging"`

			`"github.com/zitadel/zitadel/internal/integration"`
			`session "github.com/zitadel/zitadel/pkg/grpc/session/v2beta"`
			`"github.com/zitadel/zitadel/pkg/grpc/user/v2"`
			`)`

			`var (`
			`CTX context.Context`
			`IAMOwnerCTX context.Context`
			`UserCTX context.Context`
			`Instance *integration.Instance`
			`Client session.SessionServiceClient`
			`User *user.AddHumanUserResponse`
			`DeactivatedUser *user.AddHumanUserResponse`
			`LockedUser *user.AddHumanUserResponse`
			`)`

			`func TestMain(m *testing.M) {`
			`os.Exit(func() int {`
			`ctx, cancel := context.WithTimeout(context.Background(), 15*time.Minute)`
			`defer cancel()`

			`Instance = integration.NewInstance(ctx)`
			`Client = Instance.Client.SessionV2beta`

			`CTX = Instance.WithAuthorization(ctx, integration.UserTypeOrgOwner)`
			`IAMOwnerCTX = Instance.WithAuthorization(ctx, integration.UserTypeIAMOwner)`
			`UserCTX = Instance.WithAuthorization(ctx, integration.UserTypeNoPermission)`
			`User = createFullUser(CTX)`
			`DeactivatedUser = createDeactivatedUser(CTX)`
			`LockedUser = createLockedUser(CTX)`
			`return m.Run()`
			`}())`
			`}`

			`func createFullUser(ctx context.Context) *user.AddHumanUserResponse {`
			`userResp := Instance.CreateHumanUser(ctx)`
			`Instance.Client.UserV2.VerifyEmail(ctx, &user.VerifyEmailRequest{`
			`UserId: userResp.GetUserId(),`
			`VerificationCode: userResp.GetEmailCode(),`
			`})`
			`Instance.Client.UserV2.VerifyPhone(ctx, &user.VerifyPhoneRequest{`
			`UserId: userResp.GetUserId(),`
			`VerificationCode: userResp.GetPhoneCode(),`
			`})`
			`Instance.SetUserPassword(ctx, userResp.GetUserId(), integration.UserPassword, false)`
			`Instance.RegisterUserPasskey(ctx, userResp.GetUserId())`
			`return userResp`
			`}`

			`func createDeactivatedUser(ctx context.Context) *user.AddHumanUserResponse {`
			`userResp := Instance.CreateHumanUser(ctx)`
			`_, err := Instance.Client.UserV2.DeactivateUser(ctx, &user.DeactivateUserRequest{UserId: userResp.GetUserId()})`
			`logging.OnError(err).Fatal("deactivate human user")`
			`return userResp`
			`}`

			`func createLockedUser(ctx context.Context) *user.AddHumanUserResponse {`
			`userResp := Instance.CreateHumanUser(ctx)`
			`_, err := Instance.Client.UserV2.LockUser(ctx, &user.LockUserRequest{UserId: userResp.GetUserId()})`
			`logging.OnError(err).Fatal("lock human user")`
			`return userResp`
			`}`