Allow skipping tests tha require browser auth

Some UAA do not return a Location header.

Author: jorbaum

README.md

@@ -298,6 +298,7 @@ Name | Description
 `TEST_PROXY_USERNAME` | _(Optional)_ The username for a proxy to route all requests through
 `TEST_SKIPSSLVALIDATION` | _(Optional)_ Whether to skip SSL validation when connecting to the Cloud Foundry instance.  Defaults to `false`.
 `UAA_API_REQUEST_LIMIT` | _(Optional)_ If your UAA server does rate limiting and returns 429 errors, set this variable to the smallest limit configured there. Whether your server limits UAA calls is shown in the log, together with the location of the configuration file on the server. Defaults to `0` (no limit).
+`SKIP_BROWSER_AUTH_TESTS` | _(Optional)_ Set to `true` to skip integration tests that require browser-based authentication (e.g., SSO tests). Useful when the Cloud Foundry instance does not support browser-based authentication or when running tests in a non-interactive environment. Defaults to `false`.
 `SKIP_TCP_ROUTING_TESTS` | _(Optional)_ Set to `true` to skip TCP routing integration tests (TcpRoutesTest, RouterGroupsTest). Useful when the Cloud Foundry instance does not have TCP routing configured (i.e., no `routing_endpoint` in the info payload). Defaults to `false`.
 `SKIP_V2_TESTS` | _(Optional)_ Set to `true` to skip all V2 API integration tests. Useful when the Cloud Foundry V2 API is rate-limited or unavailable. When enabled, tests annotated with `@RequiresV2Api` will be skipped, including V3 tests that depend on V2 API calls (e.g., service broker creation). Defaults to `false`.
 

integration-test/src/test/java/org/cloudfoundry/RequiresBrowserAuth.java

@@ -0,0 +1,74 @@
+/*
+ * Copyright 2026 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package org.cloudfoundry;
+
+import java.lang.annotation.Documented;
+import java.lang.annotation.ElementType;
+import java.lang.annotation.Inherited;
+import java.lang.annotation.Retention;
+import java.lang.annotation.RetentionPolicy;
+import java.lang.annotation.Target;
+import org.junit.jupiter.api.extension.ConditionEvaluationResult;
+import org.junit.jupiter.api.extension.ExecutionCondition;
+import org.junit.jupiter.api.extension.ExtendWith;
+import org.junit.jupiter.api.extension.ExtensionContext;
+
+/**
+ * Annotation to mark tests that require browser-based authentication (e.g., OAuth
+ * authorization code grants, implicit grants). Tests annotated with this will be skipped
+ * if the environment variable {@code SKIP_BROWSER_AUTH_TESTS} is set to "true".
+ *
+ * <p>Usage:
+ * <pre>
+ * &#64;RequiresBrowserAuth
+ * public class MyAuthTest extends AbstractIntegrationTest {
+ *     // ...
+ * }
+ * </pre>
+ *
+ * <p>To skip browser auth tests, set the environment variable:
+ * <pre>
+ * export SKIP_BROWSER_AUTH_TESTS=true
+ * </pre>
+ */
+@Target({ElementType.METHOD, ElementType.TYPE})
+@Retention(RetentionPolicy.RUNTIME)
+@Documented
+@Inherited
+@ExtendWith(RequiresBrowserAuth.BrowserAuthCondition.class)
+public @interface RequiresBrowserAuth {
+
+    /**
+     * JUnit 5 ExecutionCondition that checks if Browser Auth tests should be skipped.
+     */
+    class BrowserAuthCondition implements ExecutionCondition {
+
+        private static final String SKIP_BROWSER_AUTH_ENV = "SKIP_BROWSER_AUTH_TESTS";
+
+        @Override
+        public ConditionEvaluationResult evaluateExecutionCondition(ExtensionContext context) {
+            if ("true".equalsIgnoreCase(System.getenv(SKIP_BROWSER_AUTH_ENV))) {
+                return ConditionEvaluationResult.disabled(
+                        "Tests requiring Browser Authentication are disabled via "
+                                + SKIP_BROWSER_AUTH_ENV
+                                + " environment variable");
+            }
+
+            return ConditionEvaluationResult.enabled("Browser authentication tests are enabled");
+        }
+    }
+}

integration-test/src/test/java/org/cloudfoundry/uaa/AuthorizationsTest.java

@@ -21,6 +21,7 @@
 import java.time.Duration;
 import java.util.function.Consumer;
 import org.cloudfoundry.AbstractIntegrationTest;
+import org.cloudfoundry.RequiresBrowserAuth;
 import org.cloudfoundry.uaa.authorizations.AuthorizeByAuthorizationCodeGrantApiRequest;
 import org.cloudfoundry.uaa.authorizations.AuthorizeByAuthorizationCodeGrantBrowserRequest;
 import org.cloudfoundry.uaa.authorizations.AuthorizeByAuthorizationCodeGrantHybridRequest;
@@ -55,6 +56,7 @@ public void authorizeByAuthorizationCodeGrantApi() {
     }
 
     @Test
+    @RequiresBrowserAuth
     public void authorizeByAuthorizationCodeGrantBrowser() {
         this.uaaClient
                 .authorizations()
@@ -70,6 +72,7 @@ public void authorizeByAuthorizationCodeGrantBrowser() {
     }
 
     @Test
+    @RequiresBrowserAuth
     public void authorizeByAuthorizationCodeGrantHybrid() {
         this.uaaClient
                 .authorizations()
@@ -85,6 +88,7 @@ public void authorizeByAuthorizationCodeGrantHybrid() {
     }
 
     @Test
+    @RequiresBrowserAuth
     public void authorizeByImplicitGrantBrowser() {
         this.uaaClient
                 .authorizations()
@@ -100,6 +104,7 @@ public void authorizeByImplicitGrantBrowser() {
     }
 
     @Test
+    @RequiresBrowserAuth
     public void authorizeByOpenIdWithAuthorizationCodeGrant() {
         this.uaaClient
                 .authorizations()
@@ -116,6 +121,7 @@ public void authorizeByOpenIdWithAuthorizationCodeGrant() {
     }
 
     @Test
+    @RequiresBrowserAuth
     public void authorizeByOpenIdWithIdToken() {
         this.uaaClient
                 .authorizations()
@@ -132,6 +138,7 @@ public void authorizeByOpenIdWithIdToken() {
     }
 
     @Test
+    @RequiresBrowserAuth
     public void authorizeByOpenIdWithImplicitGrant() {
         this.uaaClient
                 .authorizations()