feat(auth): add EntraId integration tests

- Add integration tests for token renewal and re-authentication flows - Update credentials provider to use uniqueId as username instead of account username - Add test utilities for loading Redis endpoint configurations - Split TypeScript configs into separate files for samples and integration tests - Remove `@redis/authx` package and nest it under `@`
redis · Jan 27, 2025 · 5fa5406 · 5fa5406
1 parent ac972bd
commit 5fa5406
Show file tree

Hide file tree

Showing 30 changed files with 718 additions and 211 deletions.
diff --git a/.github/release-drafter/entraid-config.yml b/.github/release-drafter/entraid-config.yml
@@ -0,0 +1,50 @@
+name-template: 'entraid@$NEXT_PATCH_VERSION'
+tag-template: 'entraid@$NEXT_PATCH_VERSION'
+autolabeler:
+  - label: 'chore'
+    files:
+      - '*.md'
+      - '.github/*'
+  - label: 'bug'
+    branch:
+      - '/bug-.+'
+  - label: 'chore'
+    branch:
+      - '/chore-.+'
+  - label: 'feature'
+    branch:
+      - '/feature-.+'
+categories:
+  - title: 'Breaking Changes'
+    labels:
+      - 'breakingchange'
+  - title: '🚀 New Features'
+    labels:
+      - 'feature'
+      - 'enhancement'
+  - title: '🐛 Bug Fixes'
+    labels:
+      - 'fix'
+      - 'bugfix'
+      - 'bug'
+  - title: '🧰 Maintenance'
+    label:
+      - 'chore'
+      - 'maintenance'
+      - 'documentation'
+      - 'docs'
+
+change-template: '- $TITLE (#$NUMBER)'
+include-paths:
+  - 'packages/entraid'
+exclude-labels:
+  - 'skip-changelog'
+template: |
+  ## Changes
+
+  $CHANGES
+
+  ## Contributors
+  We'd like to thank all the contributors who worked on this release!
+
+  $CONTRIBUTORS
diff --git a/.github/workflows/release-drafter-entraid.yml b/.github/workflows/release-drafter-entraid.yml
@@ -0,0 +1,24 @@
+name: Release Drafter
+
+on:
+  push:
+    # branches to consider in the event; optional, defaults to all
+    branches:
+      - master
+
+jobs:
+
+  update_release_draft:
+
+    permissions:
+      contents: write
+      pull-requests: write
+    runs-on: ubuntu-latest
+    steps:
+      # Drafts your next Release notes as Pull Requests are merged into "master"
+      - uses: release-drafter/release-drafter@v5
+        with:
+          # (Optional) specify config name to use, relative to .github/. Default: release-drafter.yml
+           config-name: release-drafter/entraid-config.yml
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
diff --git a/packages/authx/package.json b/packages/authx/package.json
diff --git a/packages/authx/tsconfig.json b/packages/authx/tsconfig.json
diff --git a/packages/authx/lib/credentials-provider.ts → .../client/lib/authx/credentials-provider.ts b/packages/authx/lib/credentials-provider.ts → .../client/lib/authx/credentials-provider.ts
@@ -1,4 +1,4 @@
-
+import { Disposable } from './disposable';
 /**
  * Provides credentials asynchronously.
  */

diff --git a/packages/client/lib/authx/disposable.ts b/packages/client/lib/authx/disposable.ts
@@ -0,0 +1,6 @@
+/**
+ * Represents a resource that can be disposed.
+ */
+export interface Disposable {
+  dispose(): void;
+}
diff --git a/packages/authx/lib/identity-provider.ts → ...ges/client/lib/authx/identity-provider.ts b/packages/authx/lib/identity-provider.ts → ...ges/client/lib/authx/identity-provider.ts
diff --git a/packages/authx/index.ts → packages/client/lib/authx/index.ts b/packages/authx/index.ts → packages/client/lib/authx/index.ts
@@ -1,4 +1,4 @@
-export { TokenManager, TokenManagerConfig, TokenStreamListener, RetryPolicy, IDPError } from './lib/token-manager';
+export { TokenManager, TokenManagerConfig, TokenStreamListener, RetryPolicy, IDPError } from './token-manager';
 export {
   CredentialsProvider,
   StreamingCredentialsProvider,
@@ -8,6 +8,8 @@ export {
   AsyncCredentialsProvider,
   ReAuthenticationError,
   BasicAuth
-} from './lib/credentials-provider';
-export { Token } from './lib/token';
-export { IdentityProvider, TokenResponse } from './lib/identity-provider';
+} from './credentials-provider';
+export { Token } from './token';
+export { IdentityProvider, TokenResponse } from './identity-provider';
+
+export { Disposable } from './disposable'
diff --git a/packages/authx/lib/token-manager.spec.ts → ...es/client/lib/authx/token-manager.spec.ts b/packages/authx/lib/token-manager.spec.ts → ...es/client/lib/authx/token-manager.spec.ts
@@ -278,7 +278,7 @@ describe('TokenManager', () => {
           assert.equal(listener.errors.length, 0, 'Should not have any errors');
           assert.equal(manager.getCurrentToken().value, 'token3', 'Should have current token');
 
-          disposable?.[Symbol.dispose]();
+          disposable?.dispose();
         });
       });
     });
@@ -328,7 +328,7 @@ describe('TokenManager', () => {
         assert.equal(listener.receivedTokens.length, 1, 'Should not receive new token after failure');
         assert.equal(listener.errors.length, 1, 'Should receive error');
         assert.equal(listener.errors[0].message, 'Fatal error', 'Should have correct error message');
-        assert.equal(listener.errors[0].isFatal, true, 'Should be a fatal error');
+        assert.equal(listener.errors[0].isRetryable, false, 'Should be a fatal error');
 
         // verify that the token manager is stopped and no more requests are made after the error and expected refresh time
         await delay(80);
@@ -338,7 +338,7 @@ describe('TokenManager', () => {
         assert.equal(listener.errors.length, 1, 'Should not receive more errors after error');
         assert.equal(manager.isRunning(), false, 'Should stop token manager after error');
 
-        disposable?.[Symbol.dispose]();
+        disposable?.dispose();
       });
 
       it('should handle retries with exponential backoff', async () => {
@@ -352,7 +352,7 @@ describe('TokenManager', () => {
             initialDelayMs: 100,
             maxDelayMs: 1000,
             backoffMultiplier: 2,
-            shouldRetry: (error: unknown) => error instanceof Error && error.message === 'Temporary failure'
+            isRetryable: (error: unknown) => error instanceof Error && error.message === 'Temporary failure'
           }
         };
 
@@ -389,7 +389,7 @@ describe('TokenManager', () => {
         // Should have first error but not stop due to retry config
         assert.equal(listener.errors.length, 1, 'Should have first error');
         assert.ok(listener.errors[0].message.includes('attempt 1'), 'Error should indicate first attempt');
-        assert.equal(listener.errors[0].isFatal, false, 'Should not be a fatal error');
+        assert.equal(listener.errors[0].isRetryable, true, 'Should not be a fatal error');
         assert.equal(manager.isRunning(), true, 'Should continue running during retries');
 
         // Advance past first retry (delay: 100ms due to backoff)
@@ -401,7 +401,7 @@ describe('TokenManager', () => {
 
         assert.equal(listener.errors.length, 2, 'Should have second error');
         assert.ok(listener.errors[1].message.includes('attempt 2'), 'Error should indicate second attempt');
-        assert.equal(listener.errors[0].isFatal, false, 'Should not be a fatal error');
+        assert.equal(listener.errors[0].isRetryable, true, 'Should not be a fatal error');
         assert.equal(manager.isRunning(), true, 'Should continue running during retries');
 
         // Advance past second retry (delay: 200ms due to backoff)
@@ -420,7 +420,7 @@ describe('TokenManager', () => {
         assert.equal(manager.isRunning(), true, 'Should continue running after recovery');
         assert.equal(identityProvider.getRequestCount(), 4, 'Should have made exactly 4 requests');
 
-        disposable?.[Symbol.dispose]();
+        disposable?.dispose();
       });
 
       it('should stop after max retries exceeded', async () => {
@@ -435,7 +435,7 @@ describe('TokenManager', () => {
             maxDelayMs: 1000,
             backoffMultiplier: 2,
             jitterPercentage: 0,
-            shouldRetry: (error: unknown) => error instanceof Error && error.message === 'Temporary failure'
+            isRetryable: (error: unknown) => error instanceof Error && error.message === 'Temporary failure'
           }
         };
 
@@ -470,7 +470,7 @@ describe('TokenManager', () => {
         // First error
         assert.equal(listener.errors.length, 1, 'Should have first error');
         assert.equal(manager.isRunning(), true, 'Should continue running after first error');
-        assert.equal(listener.errors[0].isFatal, false, 'Should not be a fatal error');
+        assert.equal(listener.errors[0].isRetryable, true, 'Should not be a fatal error');
 
         // Advance past first retry
         await delay(100);
@@ -483,7 +483,7 @@ describe('TokenManager', () => {
         // Second error
         assert.equal(listener.errors.length, 2, 'Should have second error');
         assert.equal(manager.isRunning(), true, 'Should continue running after second error');
-        assert.equal(listener.errors[1].isFatal, false, 'Should not be a fatal error');
+        assert.equal(listener.errors[1].isRetryable, true, 'Should not be a fatal error');
 
         // Advance past second retry
         await delay(200);
@@ -495,11 +495,11 @@ describe('TokenManager', () => {
 
         // Should stop after max retries
         assert.equal(listener.errors.length, 3, 'Should have final error');
-        assert.equal(listener.errors[2].isFatal, true, 'Should not be a fatal error');
+        assert.equal(listener.errors[2].isRetryable, false, 'Should be a fatal error');
         assert.equal(manager.isRunning(), false, 'Should stop after max retries exceeded');
         assert.equal(identityProvider.getRequestCount(), 4, 'Should have made exactly 4 requests');
 
-        disposable?.[Symbol.dispose]();
+        disposable?.dispose();
 
       });
     });