Add comprehensive testing infrastructure with xUnit, Playwright, and WebApplicationFactory (#74)

Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: PhantomDave <34485699+PhantomDave@users.noreply.github.com>

Author: Copilot

.gitignore

@@ -7,4 +7,10 @@ riderModule.iml
 /node_modules/**
 
 # Generated GraphQL schema (generated during build)
-frontend/schema.graphql
+frontend/schema.graphql
+
+# Test Results
+TestResults/
+CoverageReport/
+*.trx
+*.coverage

Directory.Packages.props

@@ -25,5 +25,15 @@
     <!-- File Processing -->
     <PackageVersion Include="CsvHelper" Version="33.1.0" />
     <PackageVersion Include="EPPlus" Version="8.2.1" />
+    
+    <!-- Testing -->
+    <PackageVersion Include="xunit" Version="2.9.2" />
+    <PackageVersion Include="xunit.runner.visualstudio" Version="3.0.0" />
+    <PackageVersion Include="Microsoft.NET.Test.Sdk" Version="17.12.0" />
+    <PackageVersion Include="coverlet.collector" Version="6.0.2" />
+    <PackageVersion Include="Microsoft.AspNetCore.Mvc.Testing" Version="10.0.0" />
+    <PackageVersion Include="Moq" Version="4.20.72" />
+    <PackageVersion Include="FluentAssertions" Version="7.0.0" />
+    <PackageVersion Include="Microsoft.EntityFrameworkCore.InMemory" Version="10.0.0" />
   </ItemGroup>
 </Project>

PhantomDave.BankTracking.Api/Program.cs

@@ -103,10 +103,13 @@ public static void Main(string[] args)
 
         var app = builder.Build();
 
-        using (var scope = app.Services.CreateScope())
+        if (!app.Environment.IsEnvironment("Testing"))
         {
-            var dbContext = scope.ServiceProvider.GetRequiredService<BankTrackerDbContext>();
-            dbContext.Database.Migrate();
+            using (var scope = app.Services.CreateScope())
+            {
+                var dbContext = scope.ServiceProvider.GetRequiredService<BankTrackerDbContext>();
+                dbContext.Database.Migrate();
+            }
         }
 
         app.UseCors();

PhantomDave.BankTracking.IntegrationTests/GraphQL/AccountIntegrationTests.cs

@@ -0,0 +1,258 @@
+using System.Net.Http.Json;
+using System.Text;
+using System.Text.Json;
+using FluentAssertions;
+using PhantomDave.BankTracking.IntegrationTests.Helpers;
+
+namespace PhantomDave.BankTracking.IntegrationTests.GraphQL;
+
+public class AccountIntegrationTests : IClassFixture<GraphQLTestFactory>
+{
+    private readonly HttpClient _client;
+    private readonly GraphQLTestFactory _factory;
+
+    public AccountIntegrationTests(GraphQLTestFactory factory)
+    {
+        _factory = factory;
+        _client = factory.CreateClient();
+    }
+
+    [Fact]
+    public async Task GraphQL_Endpoint_IsAccessible()
+    {
+        // Arrange & Act
+        var response = await _client.GetAsync("/graphql?sdl");
+
+        // Assert
+        response.EnsureSuccessStatusCode();
+        var content = await response.Content.ReadAsStringAsync();
+        content.Should().Contain("type Query");
+    }
+
+    [Fact]
+    public async Task CreateAccount_WithValidData_ReturnsSuccess()
+    {
+        // Arrange
+        var query = @"
+            mutation {
+                createAccount(email: ""test@example.com"", password: ""Password123!"") {
+                    id
+                    email
+                    createdAt
+                }
+            }";
+
+        var request = new
+        {
+            query = query
+        };
+
+        // Act
+        var response = await _client.PostAsJsonAsync("/graphql", request);
+
+        // Assert
+        response.StatusCode.Should().Be(System.Net.HttpStatusCode.OK);
+        var content = await response.Content.ReadAsStringAsync();
+        
+        if (content.Contains("errors"))
+        {
+            content.Should().Contain("test@example.com", "Even with errors, successful account creation should return email");
+        }
+        else
+        {
+            content.Should().Contain("test@example.com");
+            content.Should().Contain("\"id\"");
+        }
+    }
+
+    [Fact]
+    public async Task CreateAccount_WithDuplicateEmail_ReturnsError()
+    {
+        // Arrange
+        var createQuery = @"
+            mutation {
+                createAccount(email: ""duplicate@example.com"", password: ""Password123!"") {
+                    id
+                    email
+                }
+            }";
+
+        await _client.PostAsJsonAsync("/graphql", new { query = createQuery });
+
+        // Act
+        var response = await _client.PostAsJsonAsync("/graphql", new { query = createQuery });
+
+        // Assert
+        var content = await response.Content.ReadAsStringAsync();
+        content.Should().Contain("errors");
+    }
+
+    [Fact]
+    public async Task Login_WithValidCredentials_ReturnsToken()
+    {
+        // Arrange
+        var email = "login@example.com";
+        var password = "Password123!";
+
+        var createQuery = $@"
+            mutation {{
+                createAccount(email: ""{email}"", password: ""{password}"") {{
+                    id
+                }}
+            }}";
+
+        await _client.PostAsJsonAsync("/graphql", new { query = createQuery });
+
+        var loginQuery = $@"
+            mutation {{
+                loginAccount(email: ""{email}"", password: ""{password}"") {{
+                    token
+                    account {{
+                        id
+                        email
+                    }}
+                }}
+            }}";
+
+        // Act
+        var response = await _client.PostAsJsonAsync("/graphql", new { query = loginQuery });
+
+        // Assert
+        response.EnsureSuccessStatusCode();
+        var content = await response.Content.ReadAsStringAsync();
+        content.Should().Contain("token");
+        content.Should().Contain(email);
+    }
+
+    [Fact]
+    public async Task Login_WithInvalidPassword_ReturnsError()
+    {
+        // Arrange
+        var email = "wrongpass@example.com";
+        var correctPassword = "CorrectPassword123!";
+        var wrongPassword = "WrongPassword123!";
+
+        var createQuery = $@"
+            mutation {{
+                createAccount(email: ""{email}"", password: ""{correctPassword}"") {{
+                    id
+                }}
+            }}";
+
+        await _client.PostAsJsonAsync("/graphql", new { query = createQuery });
+
+        var loginQuery = $@"
+            mutation {{
+                loginAccount(email: ""{email}"", password: ""{wrongPassword}"") {{
+                    token
+                }}
+            }}";
+
+        // Act
+        var response = await _client.PostAsJsonAsync("/graphql", new { query = loginQuery });
+
+        // Assert
+        var content = await response.Content.ReadAsStringAsync();
+        content.Should().Contain("errors");
+    }
+
+    [Fact]
+    public async Task VerifyToken_WithValidToken_ReturnsAccountInfo()
+    {
+        // Arrange
+        var email = "verify@example.com";
+        var password = "Password123!";
+
+        var createQuery = $@"
+            mutation {{
+                createAccount(email: ""{email}"", password: ""{password}"") {{
+                    id
+                }}
+            }}";
+
+        await _client.PostAsJsonAsync("/graphql", new { query = createQuery });
+
+        var loginQuery = $@"
+            mutation {{
+                loginAccount(email: ""{email}"", password: ""{password}"") {{
+                    token
+                }}
+            }}";
+
+        var loginResponse = await _client.PostAsJsonAsync("/graphql", new { query = loginQuery });
+        var loginContent = await loginResponse.Content.ReadAsStringAsync();
+        
+        using var doc = JsonDocument.Parse(loginContent);
+        var token = doc.RootElement.GetProperty("data").GetProperty("loginAccount").GetProperty("token").GetString();
+
+        var verifyQuery = $@"
+            mutation {{
+                verifyToken(token: ""{token}"") {{
+                    id
+                    email
+                }}
+            }}";
+
+        // Act
+        var response = await _client.PostAsJsonAsync("/graphql", new { query = verifyQuery });
+
+        // Assert
+        response.EnsureSuccessStatusCode();
+        var content = await response.Content.ReadAsStringAsync();
+        content.Should().Contain(email);
+    }
+
+    [Fact]
+    public async Task GetAccount_WithAuthentication_ReturnsAccountData()
+    {
+        // Arrange
+        var email = "getaccount@example.com";
+        var password = "Password123!";
+
+        var createQuery = $@"
+            mutation {{
+                createAccount(email: ""{email}"", password: ""{password}"") {{
+                    id
+                }}
+            }}";
+
+        await _client.PostAsJsonAsync("/graphql", new { query = createQuery });
+
+        var loginQuery = $@"
+            mutation {{
+                loginAccount(email: ""{email}"", password: ""{password}"") {{
+                    token
+                    account {{
+                        id
+                    }}
+                }}
+            }}";
+
+        var loginResponse = await _client.PostAsJsonAsync("/graphql", new { query = loginQuery });
+        var loginContent = await loginResponse.Content.ReadAsStringAsync();
+        
+        using var doc = JsonDocument.Parse(loginContent);
+        var token = doc.RootElement.GetProperty("data").GetProperty("loginAccount").GetProperty("token").GetString();
+        var accountId = doc.RootElement.GetProperty("data").GetProperty("loginAccount").GetProperty("account").GetProperty("id").GetInt32();
+
+        _client.DefaultRequestHeaders.Authorization = new System.Net.Http.Headers.AuthenticationHeaderValue("Bearer", token);
+
+        var getAccountQuery = $@"
+            query {{
+                getAccount(id: {accountId}) {{
+                    id
+                    email
+                    currentBalance
+                }}
+            }}";
+
+        // Act
+        var response = await _client.PostAsJsonAsync("/graphql", new { query = getAccountQuery });
+
+        // Assert
+        response.EnsureSuccessStatusCode();
+        var content = await response.Content.ReadAsStringAsync();
+        content.Should().Contain(email);
+        content.Should().Contain("currentBalance");
+    }
+}

PhantomDave.BankTracking.IntegrationTests/Helpers/GraphQLTestFactory.cs

@@ -0,0 +1,46 @@
+using Microsoft.AspNetCore.Hosting;
+using Microsoft.AspNetCore.Mvc.Testing;
+using Microsoft.AspNetCore.TestHost;
+using Microsoft.EntityFrameworkCore;
+using Microsoft.Extensions.Configuration;
+using Microsoft.Extensions.DependencyInjection;
+using Microsoft.Extensions.DependencyInjection.Extensions;
+using PhantomDave.BankTracking.Data.Context;
+
+namespace PhantomDave.BankTracking.IntegrationTests.Helpers;
+
+public class GraphQLTestFactory : WebApplicationFactory<PhantomDave.BankTracking.Api.Program>
+{
+    protected override void ConfigureWebHost(IWebHostBuilder builder)
+    {
+        builder.ConfigureAppConfiguration((context, config) =>
+        {
+            config.AddInMemoryCollection(new Dictionary<string, string?>
+            {
+                ["ConnectionStrings:DefaultConnection"] = "Host=localhost;Database=banktrackertest;Username=test;Password=test",
+                ["Jwt:Secret"] = "ThisIsASecretKeyForTestingPurposesOnly123456789",
+                ["Jwt:Issuer"] = "BankTrackerTestIssuer",
+                ["Jwt:Audience"] = "BankTrackerTestAudience",
+                ["Jwt:ExpiryMinutes"] = "60"
+            });
+        });
+
+        builder.ConfigureTestServices(services =>
+        {
+            var descriptor = services.SingleOrDefault(
+                d => d.ServiceType == typeof(DbContextOptions<BankTrackerDbContext>));
+            
+            if (descriptor != null)
+            {
+                services.Remove(descriptor);
+            }
+            
+            services.AddDbContext<BankTrackerDbContext>(options =>
+            {
+                options.UseInMemoryDatabase("InMemoryTestDb");
+            });
+        });
+
+        builder.UseEnvironment("Testing");
+    }
+}

PhantomDave.BankTracking.IntegrationTests/PhantomDave.BankTracking.IntegrationTests.csproj

@@ -0,0 +1,28 @@
+<Project Sdk="Microsoft.NET.Sdk">
+
+  <PropertyGroup>
+    <TargetFramework>net10.0</TargetFramework>
+    <ImplicitUsings>enable</ImplicitUsings>
+    <Nullable>enable</Nullable>
+    <IsPackable>false</IsPackable>
+  </PropertyGroup>
+
+  <ItemGroup>
+    <PackageReference Include="coverlet.collector" />
+    <PackageReference Include="Microsoft.NET.Test.Sdk" />
+    <PackageReference Include="xunit" />
+    <PackageReference Include="xunit.runner.visualstudio" />
+    <PackageReference Include="Microsoft.AspNetCore.Mvc.Testing" />
+    <PackageReference Include="FluentAssertions" />
+    <PackageReference Include="Microsoft.EntityFrameworkCore.InMemory" />
+  </ItemGroup>
+
+  <ItemGroup>
+    <Using Include="Xunit" />
+  </ItemGroup>
+
+  <ItemGroup>
+    <ProjectReference Include="..\PhantomDave.BankTracking.Api\PhantomDave.BankTracking.Api.csproj" />
+  </ItemGroup>
+
+</Project>