This repository has been archived by the owner on Apr 22, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 1
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
7 changed files
with
163 additions
and
57 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,28 +1,29 @@ | ||
# How to Contribute | ||
|
||
We'd love to accept your patches and contributions to this project. There are | ||
just a few small guidelines you need to follow. | ||
|
||
## Contributor License Agreement | ||
|
||
Contributions to this project must be accompanied by a Contributor License | ||
Agreement. You (or your employer) retain the copyright to your contribution; | ||
this simply gives us permission to use and redistribute your contributions as | ||
part of the project. Head over to <https://cla.developers.google.com/> to see | ||
your current agreements on file or to sign a new one. | ||
|
||
You generally only need to submit a CLA once, so if you've already submitted one | ||
(even if it was for a different project), you probably don't need to do it | ||
again. | ||
|
||
## Code reviews | ||
|
||
All submissions, including submissions by project members, require review. We | ||
use GitHub pull requests for this purpose. Consult | ||
[GitHub Help](https://help.github.com/articles/about-pull-requests/) for more | ||
information on using pull requests. | ||
|
||
## Community Guidelines | ||
|
||
This project follows [Google's Open Source Community | ||
Guidelines](https://opensource.google.com/conduct/). | ||
# Contributing | ||
|
||
We welcome contributions from the community. Please read the following guidelines carefully to | ||
maximize the chances of your PR being merged. | ||
|
||
## Coding Style | ||
|
||
* To ensure your change passes format checks, run `make check`. To format your files, you can run `make format`. | ||
* We follow standard Go table-driven tests and use the `testify` library to assert correctness. | ||
To verify all tests pass, you can run `make test`. | ||
|
||
## Code Reviews | ||
|
||
* The pull request title should describe what the change does and not embed issue numbers. | ||
The pull request should only be blank when the change is minor. Any feature should include | ||
a description of the change and what motivated it. If the change or design changes through | ||
review, please keep the title and description updated accordingly. | ||
* A single approval is sufficient to merge. If a reviewer asks for | ||
changes in a PR they should be addressed before the PR is merged, | ||
even if another reviewer has already approved the PR. | ||
* During the review, address the comments and commit the changes | ||
_without_ squashing the commits. This facilitates incremental reviews | ||
since the reviewer does not go through all the code again to find out | ||
what has changed since the last review. When a change goes out of sync with main, | ||
please rebase and force push, keeping the original commits where practical. | ||
* Commits are squashed prior to merging a pull request, using the title | ||
as commit message by default. Maintainers may request contributors to | ||
edit the pull request tite to ensure that it remains descriptive as a | ||
commit message. Alternatively, maintainers may change the commit message directly. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,78 @@ | ||
# Developer guide | ||
|
||
All the build targets are self-explanatory and can be listed with: | ||
|
||
```bash | ||
$ make help | ||
``` | ||
|
||
|
||
## Generating the API code | ||
|
||
The configuration options are defined in the [config](config/) directory using [Protocol Buffers](https://protobuf.dev/). | ||
To generate the configuration API code after doing changes to the `.proto` files, run: | ||
|
||
```bash | ||
$ make generate | ||
``` | ||
|
||
There is no need to run `generate` after checking out the code; it's only needed when changes are made to | ||
the `.proto` files. | ||
|
||
|
||
## Building the binary | ||
|
||
To build the binary simply run: | ||
|
||
```bash | ||
$ make build # Builds a dynamically linked normal binary | ||
$ make static # Builds a statically linked binary | ||
``` | ||
|
||
The resulting binaries will be in the [bin](bin/) directory. You can play with the | ||
`TARGETS` environment variable to control the operating systems and architectures you want | ||
to build for. | ||
|
||
|
||
## Docker image | ||
|
||
To build the Docker image, run: | ||
|
||
```bash | ||
$ make docker # Build a single-arch Docker image tagged with "-latest-$arch" | ||
$ make docker-push # Build and push the multi-arch Docker images to the registry | ||
``` | ||
|
||
This will automatically build the required binaries and create a Docker image with them. | ||
|
||
The `make docker` target will produce images that are suitable to be used in the `e2e` tests. | ||
The `make docker-push` target will produce multi-arch images and push them to the registry. | ||
You can use the `DOCKER_TARGETS` environment variable to control the operating systems and architectures | ||
you want to build the Docker images for. | ||
|
||
|
||
## Testing | ||
|
||
The main testing targets are: | ||
|
||
```bash | ||
$ make test # Run the unit tests | ||
$ make lint # Run the linters | ||
$ make e2e # Run the end-to-end tests | ||
``` | ||
|
||
### e2e tests | ||
|
||
The end-to-end tests are found in the [e2e](e2e/) directory. Each subdirectory contains a test suite | ||
that can be run independently. The `make e2e` target will run all the test suites by default. | ||
|
||
To run individual suites, simply run `make e2e/<suite>`. For example: | ||
|
||
```bash | ||
$ make e2e/keycloak # Run the 'keycloak' e2e suite | ||
``` | ||
|
||
The end-to-end tests use Docker Compose to set up the required infrastructure before running the tests. | ||
Once the tests are done, the infrastructure is automatically torn down if tests pass, or left running | ||
if tests fail, to facilitate troubleshooting. Container logs are also captured upon test failure, to | ||
aid in debugging. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,22 @@ | ||
# Keycloak e2e tests | ||
|
||
The Keycloak e2e test suite contains tests that use the Keycloak OIDC provider. A | ||
Keycloak instance is deployed and configured in the Docker environment as the backend | ||
OIDC provider. | ||
|
||
The setup is performed in the [setup-keycloak.sh](setup-keycloak.sh) script, which | ||
configures the default `master` realm with: | ||
|
||
* A user named `authservice` with a predefined password. | ||
* A client named `authservice` with a predefined secret. | ||
|
||
The user and client will be used in the e2e tests to verify the entire Authorization Code flow. | ||
|
||
## Docker host name resolution | ||
|
||
The Keycloak end-to-end tests rely on the host `host.docker.internal` to resolve to the host machine, | ||
so you may need to add an entry to your `/etc/hosts` file to make it work. For example: | ||
|
||
```bash | ||
$ echo "127.0.0.1 host.docker.internal" >> /etc/hosts | ||
``` |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,7 @@ | ||
# Mock e2e tests | ||
|
||
The `mock` e2e test suite contains tests that use the `mock` OIDC provider. | ||
The suite is mostly used to verify the correct behavior of the different configuration | ||
options without making real requests to an OIDC provider. | ||
|
||
It can be used for rapid prorotyping and development of new features. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,5 @@ | ||
# Redis e2e tests | ||
|
||
The Redis e2e test suite contains tests that verify the correct behavior of the Redis | ||
session store for the OIDC providers. It targets the `SessionStore` interface directly | ||
and verifies the contents of the Redis database on each operation. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters