shiny/authz_client
6
0
Fork 0
Code Issues 1 Pull Requests 1 Actions Packages Projects Releases 10 Activity

Compare commits

base: shiny:v0.3.1
Branches Tags
shiny:main shiny:next-release
shiny:v0.5.0 shiny:v0.4.1 shiny:v0.4.0 shiny:v0.3.1 shiny:v0.3.0 shiny:v0.2.0 shiny:v0.1.4 shiny:v0.1.3 shiny:v0.1.2 shiny:v0.1.1 shiny:v0.1.0 shiny:v0.0.8 shiny:v0.0.7 shiny:v0.0.6 shiny:v0.0.5 shiny:v0.0.4 shiny:v0.0.3 shiny:v0.0.1 shiny:v0.0.2
...
compare: shiny:v0.4.0
Branches Tags
shiny:next-release shiny:main
shiny:v0.5.0 shiny:v0.4.1 shiny:v0.4.0 shiny:v0.3.1 shiny:v0.3.0 shiny:v0.2.0 shiny:v0.1.4 shiny:v0.1.3 shiny:v0.1.2 shiny:v0.1.1 shiny:v0.1.0 shiny:v0.0.8 shiny:v0.0.7 shiny:v0.0.6 shiny:v0.0.5 shiny:v0.0.4 shiny:v0.0.3 shiny:v0.0.1 shiny:v0.0.2

83 Commits
v0.3.1 ... v0.4.0

Author SHA1 Message Date
argoyle 5b49b36a32 Merge pull request 'chore(release): prepare for v0.4.0' (#244) from next-release into main
Release / release (push) Successful in 1m17s
Details
authz_client / test (push) Successful in 2m41s
Details
authz_client / vulnerabilities (push) Successful in 2m41s
Details
pre-commit / pre-commit (push) Successful in 4m51s
Details 
Reviewed-on: #244
 2026-01-09 08:57:37 +00:00
releaser a06bae1da9 chore(release): prepare for v0.4.0 2026-01-09 08:55:47 +00:00
releaser 90084cc3a4 chore(release): prepare for v0.4.0 2026-01-09 08:55:36 +00:00
argoyle 7825fa17a6 Merge pull request 'ci: add pre-commit and release workflows' (#266) from add-workflows into main
authz_client / vulnerabilities (push) Successful in 1m30s
Details
Release / release (push) Successful in 1m10s
Details
authz_client / test (push) Has been cancelled
Details
pre-commit / pre-commit (push) Has been cancelled
Details 
Reviewed-on: #266
 2026-01-09 08:53:38 +00:00
argoyle 73f854ba06 ci: add pre-commit and release workflows
authz_client / test (pull_request) Successful in 3m9s
Details
authz_client / vulnerabilities (pull_request) Successful in 3m53s
Details
pre-commit / pre-commit (pull_request) Successful in 7m22s
Details
2026-01-09 09:45:06 +01:00
argoyle 5b3527439f Merge pull request 'refactor: update module path to new repository location' (#267) from refactor-update-module-path into main
authz_client / vulnerabilities (push) Successful in 3m12s
Details
authz_client / test (push) Successful in 4m3s
Details 
Reviewed-on: #267
 2026-01-09 08:44:53 +00:00
argoyle 681afe2626 refactor: update module path to new repository location
authz_client / test (pull_request) Successful in 3m25s
Details
authz_client / vulnerabilities (pull_request) Successful in 3m42s
Details 
Remove GitLab CI linter configuration and update module path from 
`gitlab.com/unboundsoftware/shiny/authz_client` to 
`git.unbound.se/shiny/authz_client` in all relevant files. 
These changes reflect a migration to a new hosting service.
 2026-01-09 09:28:16 +01:00
argoyle 2e1eb327e0 Merge pull request 'chore(deps): update pre-commit hook golangci/golangci-lint to v2.8.0' (#265) from renovate/golangci-golangci-lint-2.x into main
authz_client / test (push) Successful in 1m1s
Details
authz_client / vulnerabilities (push) Successful in 1m2s
Details 
Reviewed-on: #265
 2026-01-09 04:11:30 +00:00
renovate 622d907e03 chore(deps): update pre-commit hook golangci/golangci-lint to v2.8.0
authz_client / vulnerabilities (pull_request) Successful in 1m45s
Details
authz_client / test (pull_request) Successful in 1m47s
Details
2026-01-08 21:02:44 +00:00
argoyle 4b38ce4f0f Merge pull request 'chore(deps): update actions/checkout action to v6' (#264) from renovate/actions-checkout-6.x into main
authz_client / test (push) Successful in 3m55s
Details
authz_client / vulnerabilities (push) Successful in 4m13s
Details 
Reviewed-on: #264
 2026-01-08 19:21:16 +00:00
renovate b82e15c49b chore(deps): update actions/checkout action to v6
authz_client / test (pull_request) Successful in 1m16s
Details
authz_client / vulnerabilities (pull_request) Successful in 1m14s
Details
2026-01-08 19:01:10 +00:00
argoyle f0ea0d7d26 Merge pull request 'chore(deps): update actions/setup-go action to v6' (#263) from renovate/actions-setup-go-6.x into main
authz_client / test (push) Successful in 2m42s
Details
authz_client / vulnerabilities (push) Successful in 3m32s
Details 
Reviewed-on: #263
 2026-01-08 18:28:51 +00:00
renovate 26de10c2b9 chore(deps): update actions/setup-go action to v6
authz_client / test (pull_request) Successful in 1m53s
Details
authz_client / vulnerabilities (pull_request) Successful in 1m57s
Details
2026-01-08 18:01:11 +00:00
argoyle 3865b1b5f7 Merge pull request 'feat: migrate from GitLab CI to Gitea Actions' (#262) from feat/gitea-actions into main
authz_client / vulnerabilities (push) Successful in 1m58s
Details
authz_client / test (push) Successful in 2m0s
Details 
Reviewed-on: #262
 2026-01-08 17:59:17 +00:00
argoyle cd84a51f91 feat: migrate from GitLab CI to Gitea Actions
authz_client / test (pull_request) Successful in 1m14s
Details
authz_client / vulnerabilities (pull_request) Successful in 1m23s
Details
2026-01-08 18:33:57 +01:00
Unbound Release eab39dc818 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release 524cad9180 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release b339804535 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release d2ed9ed12a chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release f521fb29c9 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release 123dd2a4c2 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release c5943b41ec chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release 5644b061c0 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release 8330219579 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release 425013f115 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release 7f3b78b000 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release ab8a9809d5 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release 9ef9084ffa chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release e48c5b3bb9 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release 4421bcfbeb chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release 18748ceaad chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release 14d32b3b51 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release d571e92a0b chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release d355edd642 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release abd34b334a chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release da73907913 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release becde50685 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release a84a14a0d3 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release 707e26b420 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release ffa2eca348 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release 76fc782c96 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release 4d3147c65c chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release 6643990160 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release 20d69f9c19 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release d327307539 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release 5dce8a0f2b chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
Unbound Release 6f6272cb02 chore(release): prepare for v0.3.2 2025-12-31 21:12:27 +00:00
argoyle 7eddad8d4b Merge branch 'claude-docs' into 'main' 
docs: add CLAUDE.md for Claude Code integration

See merge request unboundsoftware/shiny/authz_client!258
 2025-12-31 22:10:52 +01:00
argoyle 1fd3ae5123 docs: add CLAUDE.md for Claude Code integration 2025-12-31 22:06:51 +01:00
argoyle 247c04a710 Merge branch 'renovate/golang-1.25.5' into 'main' 
chore(deps): update golang:1.25.5 docker digest to ad03ba9

See merge request unboundsoftware/shiny/authz_client!257
 2025-12-30 16:01:41 +01:00
Renovate 37f6c63025 chore(deps): update golang:1.25.5 docker digest to ad03ba9 2025-12-30 04:04:50 +00:00
argoyle 215a9ed976 Merge branch 'renovate/golang-1.25.5' into 'main' 
chore(deps): update golang:1.25.5 docker digest to 0c27bcf

See merge request unboundsoftware/shiny/authz_client!256
 2025-12-09 09:56:00 +01:00
Renovate 006ebd101e chore(deps): update golang:1.25.5 docker digest to 0c27bcf 2025-12-09 02:18:45 +00:00
argoyle 600653518c Merge branch 'renovate/golangci-golangci-lint-2.x' into 'main' 
chore(deps): update pre-commit hook golangci/golangci-lint to v2.7.2

See merge request unboundsoftware/shiny/authz_client!255
 2025-12-08 09:49:47 +01:00
Renovate c95cd1c80a chore(deps): update pre-commit hook golangci/golangci-lint to v2.7.2 2025-12-07 17:05:12 +00:00
argoyle 881a6f0e3c Merge branch 'renovate/golangci-golangci-lint-2.x' into 'main' 
chore(deps): update pre-commit hook golangci/golangci-lint to v2.7.1

See merge request unboundsoftware/shiny/authz_client!254
 2025-12-04 17:29:56 +01:00
Renovate 84939fa04b chore(deps): update pre-commit hook golangci/golangci-lint to v2.7.1 2025-12-04 15:07:58 +00:00
argoyle 0821cbb6eb Merge branch 'renovate/golangci-golangci-lint-2.x' into 'main' 
chore(deps): update pre-commit hook golangci/golangci-lint to v2.7.0

See merge request unboundsoftware/shiny/authz_client!253
 2025-12-04 08:31:19 +01:00
Renovate 0cb8363ab1 chore(deps): update pre-commit hook golangci/golangci-lint to v2.7.0 2025-12-03 20:05:00 +00:00
argoyle 8a440bd28c Merge branch 'renovate/golang-1.x' into 'main' 
chore(deps): update golang docker tag to v1.25.5

See merge request unboundsoftware/shiny/authz_client!252
 2025-12-02 20:15:25 +01:00
argoyle 13461b43e3 Merge branch 'renovate/go-1.x' into 'main' 
chore(deps): update dependency go to v1.25.5

See merge request unboundsoftware/shiny/authz_client!251
 2025-12-02 19:31:56 +01:00
Renovate 49100894e9 chore(deps): update golang docker tag to v1.25.5 2025-12-02 18:19:27 +00:00
Renovate 7818f97a7c chore(deps): update dependency go to v1.25.5 2025-12-02 17:17:24 +00:00
argoyle 66c429bde1 Merge branch 'renovate/gitleaks-gitleaks-8.x' into 'main' 
chore(deps): update pre-commit hook gitleaks/gitleaks to v8.30.0

See merge request unboundsoftware/shiny/authz_client!250
 2025-11-27 00:08:10 +01:00
Renovate 585fa5dfa4 chore(deps): update pre-commit hook gitleaks/gitleaks to v8.30.0 2025-11-26 19:06:23 +00:00
argoyle 82cca9b09c Merge branch 'renovate/gitleaks-gitleaks-8.x' into 'main' 
chore(deps): update pre-commit hook gitleaks/gitleaks to v8.29.1

See merge request unboundsoftware/shiny/authz_client!249
 2025-11-20 09:26:39 +01:00
Renovate bcbddac138 chore(deps): update pre-commit hook gitleaks/gitleaks to v8.29.1 2025-11-19 22:05:31 +00:00
argoyle e62257d933 Merge branch 'renovate/golang-1.25.4' into 'main' 
chore(deps): update golang:1.25.4 docker digest to efe81fa

See merge request unboundsoftware/shiny/authz_client!248
 2025-11-18 15:46:41 +01:00
Renovate f45918bac8 chore(deps): update golang:1.25.4 docker digest to efe81fa 2025-11-18 12:05:17 +00:00
argoyle 77ac58202a Merge branch 'renovate/golangci-golangci-lint-2.x' into 'main' 
chore(deps): update pre-commit hook golangci/golangci-lint to v2.6.2

See merge request unboundsoftware/shiny/authz_client!247
 2025-11-14 16:25:46 +01:00
Renovate 257a97f191 chore(deps): update pre-commit hook golangci/golangci-lint to v2.6.2 2025-11-14 14:06:05 +00:00
argoyle 32e8127273 Merge branch 'renovate/golang-1.x' into 'main' 
chore(deps): update golang docker tag to v1.25.4

See merge request unboundsoftware/shiny/authz_client!246
 2025-11-06 07:06:32 +01:00
Renovate 223f65396d chore(deps): update golang docker tag to v1.25.4 2025-11-05 22:18:16 +00:00
argoyle 01d4a4bc9f Merge branch 'renovate/go-1.x' into 'main' 
chore(deps): update dependency go to v1.25.4

See merge request unboundsoftware/shiny/authz_client!245
 2025-11-05 21:40:35 +01:00
Renovate 1038cff1d9 chore(deps): update dependency go to v1.25.4 2025-11-05 20:16:30 +00:00
argoyle f961bf91f7 Merge branch 'renovate/gitleaks-gitleaks-8.x' into 'main' 
chore(deps): update pre-commit hook gitleaks/gitleaks to v8.29.0

See merge request unboundsoftware/shiny/authz_client!244
 2025-11-05 08:34:23 +01:00
Renovate 721cb1be91 chore(deps): update pre-commit hook gitleaks/gitleaks to v8.29.0 2025-11-05 02:05:39 +00:00
argoyle 2f570a0638 Merge branch 'renovate/golangci-golangci-lint-2.x' into 'main' 
chore(deps): update pre-commit hook golangci/golangci-lint to v2.6.1

See merge request unboundsoftware/shiny/authz_client!243
 2025-11-04 14:13:27 +01:00
argoyle ee52c50e76 Merge branch 'renovate/golang-1.25.3' into 'main' 
chore(deps): update golang:1.25.3 docker digest to 9ac0edc

See merge request unboundsoftware/shiny/authz_client!242
 2025-11-04 14:13:03 +01:00
Renovate 675ac0338f chore(deps): update pre-commit hook golangci/golangci-lint to v2.6.1 2025-11-04 12:07:17 +00:00
Renovate f708a18960 chore(deps): update golang:1.25.3 docker digest to 9ac0edc 2025-11-04 12:07:15 +00:00
argoyle a8ba5635e3 Merge branch 'test-concurrent-fetch-read-privileges' into 'main' 
test: add concurrent fetch and read tests for privileges

See merge request unboundsoftware/shiny/authz_client!240
 2025-11-03 12:46:01 +01:00
argoyle 4efc6572ee test: add concurrent fetch and read tests for privileges 
Adds multiple tests to verify the thread-safety of the 
Fetch method and the handling of privileges in concurrent 
operations. Tests include concurrent fetching, reading 
privileges, and processing with multiple goroutines. 
Ensures no errors occur during operations and verifies 
privileges are set correctly.
 2025-11-03 12:40:14 +01:00
12 changed files with 446 additions and 18 deletions
Expand all files Collapse all files
.gitea/workflows/ci.yaml
+30
View File
@@ -0,0 +1,30 @@
name: authz_client
on:
push:
branches: [main]
pull_request:
branches: [main]
jobs:
test:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v6
- uses: actions/setup-go@v6
with:
go-version: 'stable'
- name: Run tests
run: go test -race -coverprofile=coverage.txt ./...
vulnerabilities:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v6
- uses: actions/setup-go@v6
with:
go-version: 'stable'
- name: Check vulnerabilities
run: |
go install golang.org/x/vuln/cmd/govulncheck@latest
govulncheck ./...
.gitea/workflows/pre-commit.yaml
+25
View File
@@ -0,0 +1,25 @@
name: pre-commit
permissions: read-all
on:
pull_request:
push:
branches:
- main
jobs:
pre-commit:
runs-on: ubuntu-latest
env:
SKIP: no-commit-to-branch
steps:
- uses: actions/checkout@v6
- uses: actions/setup-go@v6
with:
go-version: stable
- uses: actions/setup-python@v5
with:
python-version: '3.14'
- name: Install goimports
run: go install golang.org/x/tools/cmd/goimports@latest
- uses: pre-commit/action@v3.0.1
.gitea/workflows/release.yaml
+9
View File
@@ -0,0 +1,9 @@
name: Release
on:
push:
branches: [main]
jobs:
release:
uses: unboundsoftware/shared-workflows/.gitea/workflows/Release.yml@main
.gitignore
+2
View File
@@ -1,2 +1,4 @@
.idea
.claude
/release
coverage.txt
.gitlab-ci.yml
+2 -2
View File
@@ -7,7 +7,7 @@ include:
- project: unboundsoftware/ci-templates
file: Pre-Commit-Go.gitlab-ci.yml
image: amd64/golang:1.25.3@sha256:69d10098be2e990bb1d987daec0e36d18ad287e139450dc7d98a0ded3498888d
image: amd64/golang:1.25.5@sha256:ad03ba93327b8a6143b49373790b5d92c28067bdb814418509466122ee9c9e63
stages:
- deps
@@ -32,7 +32,7 @@ test:
vulnerabilities:
stage: test
image: amd64/golang:1.25.3@sha256:69d10098be2e990bb1d987daec0e36d18ad287e139450dc7d98a0ded3498888d
image: amd64/golang:1.25.5@sha256:ad03ba93327b8a6143b49373790b5d92c28067bdb814418509466122ee9c9e63
script:
- go install golang.org/x/vuln/cmd/govulncheck@latest
- govulncheck ./...
.pre-commit-config.yaml
+3 -10
View File
@@ -10,13 +10,6 @@ repos:
args:
- --allow-multiple-documents
- id: check-added-large-files
- repo: https://gitlab.com/devopshq/gitlab-ci-linter
rev: v1.0.6
hooks:
- id: gitlab-ci-linter
args:
- --project
- unboundsoftware/shiny/authz_client
- repo: https://github.com/alessandrojcm/commitlint-pre-commit-hook
rev: v9.23.0
hooks:
@@ -30,17 +23,17 @@ repos:
- id: go-imports
args:
- -local
- gitlab.com/unboundsoftware/shiny/authz_client
- git.unbound.se/shiny/authz_client
- repo: https://github.com/lietu/go-pre-commit
rev: v1.0.0
hooks:
- id: go-test
- id: gofumpt
- repo: https://github.com/golangci/golangci-lint
rev: v2.6.0
rev: v2.8.0
hooks:
- id: golangci-lint-full
- repo: https://github.com/gitleaks/gitleaks
rev: v8.28.0
rev: v8.30.0
hooks:
- id: gitleaks
.version
+3 -1
View File
@@ -1 +1,3 @@
{"version":"v0.3.1"}
{
"version": "v0.4.0"
}
CHANGELOG.md
+41
View File
@@ -2,6 +2,47 @@
All notable changes to this project will be documented in this file.
## [0.4.0] - 2026-01-09
### 🚀 Features
- Migrate from GitLab CI to Gitea Actions
### 🚜 Refactor
- Update module path to new repository location
### 📚 Documentation
- Add CLAUDE.md for Claude Code integration
### 🧪 Testing
- Add concurrent fetch and read tests for privileges
### ⚙️ Miscellaneous Tasks
- *(deps)* Update golang:1.25.3 docker digest to 9ac0edc
- *(deps)* Update pre-commit hook golangci/golangci-lint to v2.6.1
- *(deps)* Update pre-commit hook gitleaks/gitleaks to v8.29.0
- *(deps)* Update dependency go to v1.25.4
- *(deps)* Update golang docker tag to v1.25.4
- *(deps)* Update pre-commit hook golangci/golangci-lint to v2.6.2
- *(deps)* Update golang:1.25.4 docker digest to efe81fa
- *(deps)* Update pre-commit hook gitleaks/gitleaks to v8.29.1
- *(deps)* Update pre-commit hook gitleaks/gitleaks to v8.30.0
- *(deps)* Update dependency go to v1.25.5
- *(deps)* Update golang docker tag to v1.25.5
- *(deps)* Update pre-commit hook golangci/golangci-lint to v2.7.0
- *(deps)* Update pre-commit hook golangci/golangci-lint to v2.7.1
- *(deps)* Update pre-commit hook golangci/golangci-lint to v2.7.2
- *(deps)* Update golang:1.25.5 docker digest to 0c27bcf
- *(deps)* Update golang:1.25.5 docker digest to ad03ba9
- *(deps)* Update actions/setup-go action to v6
- *(deps)* Update actions/checkout action to v6
- *(deps)* Update pre-commit hook golangci/golangci-lint to v2.8.0
- Add pre-commit and release workflows
## [0.3.1] - 2025-11-02
### 🐛 Bug Fixes
CLAUDE.md
+46
View File
@@ -0,0 +1,46 @@
# authz_client
Shared Go library for authorization service client integration.
## Shared Documentation
@../docs/claude/architecture.md
@../docs/claude/go-services.md
@../docs/claude/conventions.md
## Library Information
### Purpose
Provides a client for the authz-service, handling privilege management for users across companies. Used by all microservices that need to check user permissions.
### Usage
```go
import client "git.unbound.se/shiny/authz_client"
// Create handler with options
handler := client.New(client.WithBaseURL("http://authz-service"))
// Check user privileges
privileges := handler.Get(email, companyID)
if privileges.Invoicing {
// User has invoicing privileges
}
```
### Privileges
The `CompanyPrivileges` struct contains permission flags:
- `Admin` - Administrative access
- `Company` - Company management
- `Consumer` - Consumer/customer access
- `Time` - Time tracking
- `Invoicing` - Invoice management
- `Accounting` - Accounting access
- `Supplier` - Supplier management
- `Salary` - Salary/payroll access
### Event Handling
Implements `goamqp` message handlers to receive privilege update events from the authz-service, keeping the local privilege cache up-to-date.
README.md
-3
View File
@@ -1,4 +1 @@
# Shiny authz-client
[![Build Status](https://gitlab.com/unboundsoftware/shiny/authz_client/badges/main/pipeline.svg)](https://gitlab.com/unboundsoftware/shiny/authz_client/commits/main)
[![codecov](https://codecov.io/gl/unboundsoftware:shiny/authz_client/branch/main/graph/badge.svg?token=AQS7QVLCEQ)](https://codecov.io/gl/unboundsoftware:shiny/authz_client)
client_test.go
+283
View File
@@ -5,6 +5,7 @@ import (
"net/http"
"net/http/httptest"
"sort"
"sync"
"testing"
"github.com/sparetimecoders/goamqp"
@@ -332,3 +333,285 @@ func TestPrivilegeHandler_Fetch_Valid(t *testing.T) {
}
assert.Equal(t, expectedPrivileges, handler.privileges)
}
func TestPrivilegeHandler_Fetch_Concurrent_Fetches(t *testing.T) {
privileges := `
{
"jim@example.org": {
"00010203-0405-4607-8809-0a0b0c0d0e0f": {
"admin": false,
"company": true,
"consumer": false,
"time": true,
"invoicing": true,
"accounting": false,
"supplier": false,
"salary": true
}
}
}`
server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
_, _ = w.Write([]byte(privileges))
}))
defer server.Close()
baseURL := server.Listener.Addr().String()
handler := New(WithBaseURL(fmt.Sprintf("http://%s", baseURL)))
// Run multiple Fetch calls concurrently to test thread-safety
var wg sync.WaitGroup
errors := make(chan error, 10)
for i := 0; i < 10; i++ {
wg.Add(1)
go func() {
defer wg.Done()
if err := handler.Fetch(); err != nil {
errors <- err
}
}()
}
wg.Wait()
close(errors)
// Check no errors occurred
for err := range errors {
assert.NoError(t, err)
}
// Verify privileges were set correctly
expectedPrivileges := map[string]map[string]*CompanyPrivileges{
"jim@example.org": {
"00010203-0405-4607-8809-0a0b0c0d0e0f": {
Admin: false,
Company: true,
Consumer: false,
Time: true,
Invoicing: true,
Accounting: false,
Supplier: false,
Salary: true,
},
},
}
assert.Equal(t, expectedPrivileges, handler.privileges)
}
func TestPrivilegeHandler_Concurrent_Fetch_And_Read(t *testing.T) {
privileges := `
{
"jim@example.org": {
"abc-123": {
"admin": true,
"company": true,
"consumer": false,
"time": false,
"invoicing": false,
"accounting": false,
"supplier": false,
"salary": false
}
}
}`
server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
_, _ = w.Write([]byte(privileges))
}))
defer server.Close()
baseURL := server.Listener.Addr().String()
handler := New(WithBaseURL(fmt.Sprintf("http://%s", baseURL)))
var wg sync.WaitGroup
errors := make(chan error, 100)
// Start multiple Fetch operations
for i := 0; i < 10; i++ {
wg.Add(1)
go func() {
defer wg.Done()
if err := handler.Fetch(); err != nil {
errors <- err
}
}()
}
// Concurrently read privileges while Fetch is running
for i := 0; i < 50; i++ {
wg.Add(1)
go func() {
defer wg.Done()
_ = handler.CompaniesByUser("jim@example.org", func(privileges CompanyPrivileges) bool {
return privileges.Admin
})
}()
}
// Concurrently check privileges while Fetch is running
for i := 0; i < 50; i++ {
wg.Add(1)
go func() {
defer wg.Done()
_ = handler.IsAllowed("jim@example.org", "abc-123", func(privileges CompanyPrivileges) bool {
return privileges.Admin
})
}()
}
wg.Wait()
close(errors)
// Check no errors occurred
for err := range errors {
assert.NoError(t, err)
}
// Verify privileges are correct after all concurrent operations
companies := handler.CompaniesByUser("jim@example.org", func(privileges CompanyPrivileges) bool {
return privileges.Admin
})
assert.Equal(t, []string{"abc-123"}, companies)
isAllowed := handler.IsAllowed("jim@example.org", "abc-123", func(privileges CompanyPrivileges) bool {
return privileges.Admin && privileges.Company
})
assert.True(t, isAllowed)
}
func TestPrivilegeHandler_Concurrent_Process_And_Read(t *testing.T) {
handler := New(WithBaseURL("base"))
var wg sync.WaitGroup
// Concurrently add privileges via Process
for i := 0; i < 100; i++ {
wg.Add(1)
companyID := fmt.Sprintf("company-%d", i%10)
go func(id string) {
defer wg.Done()
_, _ = handler.Process(&PrivilegeAdded{
Email: "jim@example.org",
CompanyID: id,
Privilege: PrivilegeAdmin,
}, goamqp.Headers{})
}(companyID)
}
// Concurrently read privileges while Process is running
for i := 0; i < 100; i++ {
wg.Add(1)
go func() {
defer wg.Done()
_ = handler.CompaniesByUser("jim@example.org", func(privileges CompanyPrivileges) bool {
return privileges.Admin
})
}()
}
wg.Wait()
// Verify all companies were added
companies := handler.CompaniesByUser("jim@example.org", func(privileges CompanyPrivileges) bool {
return privileges.Admin
})
sort.Strings(companies)
expected := make([]string, 10)
for i := 0; i < 10; i++ {
expected[i] = fmt.Sprintf("company-%d", i)
}
sort.Strings(expected)
assert.Equal(t, expected, companies)
}
func TestPrivilegeHandler_Concurrent_Multiple_Operations(t *testing.T) {
privileges := `
{
"jim@example.org": {
"initial-company": {
"admin": true,
"company": true,
"consumer": false,
"time": false,
"invoicing": false,
"accounting": false,
"supplier": false,
"salary": false
}
}
}`
server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
_, _ = w.Write([]byte(privileges))
}))
defer server.Close()
baseURL := server.Listener.Addr().String()
handler := New(WithBaseURL(fmt.Sprintf("http://%s", baseURL)))
var wg sync.WaitGroup
// Fetch
for i := 0; i < 5; i++ {
wg.Add(1)
go func() {
defer wg.Done()
_ = handler.Fetch()
}()
}
// Process PrivilegeAdded
for i := 0; i < 20; i++ {
wg.Add(1)
go func(idx int) {
defer wg.Done()
_, _ = handler.Process(&PrivilegeAdded{
Email: "jane@example.org",
CompanyID: fmt.Sprintf("company-%d", idx%5),
Privilege: PrivilegeCompany,
}, goamqp.Headers{})
}(i)
}
// CompaniesByUser reads
for i := 0; i < 50; i++ {
wg.Add(1)
email := "jim@example.org"
if i%2 == 0 {
email = "jane@example.org"
}
go func(e string) {
defer wg.Done()
_ = handler.CompaniesByUser(e, func(privileges CompanyPrivileges) bool {
return privileges.Admin || privileges.Company
})
}(email)
}
// IsAllowed reads
for i := 0; i < 50; i++ {
wg.Add(1)
go func() {
defer wg.Done()
_ = handler.IsAllowed("jim@example.org", "initial-company", func(privileges CompanyPrivileges) bool {
return privileges.Admin
})
}()
}
wg.Wait()
// Verify final state is consistent
jimCompanies := handler.CompaniesByUser("jim@example.org", func(privileges CompanyPrivileges) bool {
return privileges.Admin
})
assert.Contains(t, jimCompanies, "initial-company")
janeCompanies := handler.CompaniesByUser("jane@example.org", func(privileges CompanyPrivileges) bool {
return privileges.Company
})
sort.Strings(janeCompanies)
expectedJane := []string{"company-0", "company-1", "company-2", "company-3", "company-4"}
assert.Equal(t, expectedJane, janeCompanies)
}
go.mod
+2 -2
View File
@@ -1,8 +1,8 @@
module gitlab.com/unboundsoftware/shiny/authz_client
module git.unbound.se/shiny/authz_client
go 1.22.12
toolchain go1.25.3
toolchain go1.25.5
require (
github.com/sparetimecoders/goamqp v0.3.3