mirror of
https://github.com/zitadel/zitadel.git
synced 2025-03-02 22:21:44 +00:00
563f74640e
# Which Problems Are Solved - If a SCIM endpoint is called with an orgID in the URL that is not the resource owner, no error is returned, and the action is executed. # How the Problems Are Solved - The orgID provided in the SCIM URL path must match the resource owner of the target user. Otherwise, an error will be returned. # Additional Context Part of https://github.com/zitadel/zitadel/issues/8140
47 lines
1.2 KiB
Go
47 lines
1.2 KiB
Go
//go:build integration
|
|
|
|
package integration_test
|
|
|
|
import (
|
|
"context"
|
|
"os"
|
|
"regexp"
|
|
"testing"
|
|
"time"
|
|
|
|
"github.com/brianvoe/gofakeit/v6"
|
|
|
|
"github.com/zitadel/zitadel/internal/integration"
|
|
"github.com/zitadel/zitadel/pkg/grpc/org/v2"
|
|
)
|
|
|
|
var (
|
|
Instance *integration.Instance
|
|
SecondaryOrganization *org.AddOrganizationResponse
|
|
CTX context.Context
|
|
|
|
// remove comments in the json, as the default golang json unmarshaler cannot handle them
|
|
// some test files (e.g. bulk, patch) are much easier to maintain with comments
|
|
removeCommentsRegex = regexp.MustCompile("(?s)//.*?\n|/\\*.*?\\*/")
|
|
)
|
|
|
|
func TestMain(m *testing.M) {
|
|
os.Exit(func() int {
|
|
ctx, cancel := context.WithTimeout(context.Background(), 15*time.Minute)
|
|
defer cancel()
|
|
|
|
Instance = integration.NewInstance(ctx)
|
|
|
|
CTX = Instance.WithAuthorization(ctx, integration.UserTypeOrgOwner)
|
|
|
|
iamOwnerCtx := Instance.WithAuthorization(CTX, integration.UserTypeIAMOwner)
|
|
SecondaryOrganization = Instance.CreateOrganization(iamOwnerCtx, gofakeit.Name(), gofakeit.Email())
|
|
|
|
return m.Run()
|
|
}())
|
|
}
|
|
|
|
func removeComments(json []byte) []byte {
|
|
return removeCommentsRegex.ReplaceAll(json, nil)
|
|
}
|