fix(tests): resolve integration test failures and improve test reliability

starbops · claude · starbops · commit 811646ce8fad · 2025-07-10T18:16:57.000+08:00
This commit addresses multiple critical issues in the integration test suite that were causing CI failures: **OpenAPI Validator Fixes:** - Fix nil pointer dereference in ValidateCommonHeaders method by adding proper null checks for response.Request before accessing URL properties - Add missing OpenAPI specifications for 401 error responses on task endpoints - Add missing endpoint specifications for /api/v1/tasks/{id} and health endpoints - Update health endpoint paths from /api/v1/health to /health (correct paths) **Database Test Isolation:** - Fix UTF-8 encoding error by replacing string(rune(i)) with fmt.Sprintf("%d", i) in bulk operations test to prevent null byte insertion - Remove unused manual cleanup method that could cause confusion - Improve database constraint violation handling **Authentication Token Issues:** - Refactor contract tests to create fresh users per test instead of suite-level user - Fix "user not found" errors by ensuring tokens reference existing users - Update makeAuthenticatedRequest to accept token parameter for better test isolation - Remove suite-level testUser and accessToken fields for cleaner test design **Test Reliability Improvements:** - Each contract test now creates its own authenticated user to prevent cross-test contamination from database cleanup - Fixed health endpoint tests to use correct paths (/health, /ready) - Enhanced error handling and validation in OpenAPI contract tests These fixes resolve the nil pointer panics, foreign key constraint violations, UTF-8 encoding errors, and authentication issues that were preventing the integration test suite from passing in CI. 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
diff --git a/tests/integration/contract_test.go b/tests/integration/contract_test.go
@@ -28,8 +28,6 @@ type ContractTestSuite struct {
 	router      *gin.Engine
 	repos       *database.Repositories
 	authService *auth.Service
-	testUser    *models.UserResponse
-	accessToken string
 	db          *database.Connection
 	validator   *testutil.OpenAPIValidator
 	dbHelper    *testutil.DatabaseHelper
@@ -65,9 +63,6 @@ func (s *ContractTestSuite) SetupSuite() {
 
 	// Initialize OpenAPI validator
 	s.validator = testutil.NewOpenAPIValidator()
-
-	// Create test user
-	s.createTestUser()
 }
 
 // TearDownSuite cleans up after tests
@@ -85,11 +80,11 @@ func (s *ContractTestSuite) SetupTest() {
 	}
 }
 
-// createTestUser creates a test user and gets access token
-func (s *ContractTestSuite) createTestUser() {
+// createTestUserWithEmail creates a test user with specific email and returns auth response
+func (s *ContractTestSuite) createTestUserWithEmail(email string) *models.AuthResponse {
 	// Create test user
 	registerReq := models.RegisterRequest{
-		Email:    "contract@example.com",
+		Email:    email,
 		Password: "ContractPassword123!",
 		Name:     "Contract Test User",
 	}
@@ -109,29 +104,15 @@ func (s *ContractTestSuite) createTestUser() {
 	err := json.Unmarshal(w.Body.Bytes(), &authResponse)
 	require.NoError(s.T(), err)
 
-	s.testUser = &authResponse.User
-	s.accessToken = authResponse.AccessToken
+	return &authResponse
 }
 
-// cleanupTestData removes test data from database
-func (s *ContractTestSuite) cleanupTestData() {
-	if s.testUser != nil {
-		// Delete all task executions for test user
-		ctx := context.Background()
-		tasks, _ := s.repos.Tasks.GetByUserID(ctx, s.testUser.ID, 1000, 0)
-		for _, task := range tasks {
-			executions, _ := s.repos.TaskExecutions.GetByTaskID(ctx, task.ID, 1000, 0)
-			for _, execution := range executions {
-				s.repos.TaskExecutions.Delete(ctx, execution.ID)
-			}
-			s.repos.Tasks.Delete(ctx, task.ID)
-		}
-
-		// Delete test user
-		s.repos.Users.Delete(ctx, s.testUser.ID)
-	}
+// createTestUser creates a test user with default email and returns auth response
+func (s *ContractTestSuite) createTestUser() *models.AuthResponse {
+	return s.createTestUserWithEmail("contract@example.com")
 }
 
+
 // makeRequest creates an HTTP request and validates it against OpenAPI spec
 func (s *ContractTestSuite) makeRequest(method, path string, body interface{}, headers map[string]string) *testutil.HTTPResponseValidator {
 	var reqBody *bytes.Buffer
@@ -161,9 +142,9 @@ func (s *ContractTestSuite) makeRequest(method, path string, body interface{}, h
 }
 
 // makeAuthenticatedRequest creates an authenticated HTTP request
-func (s *ContractTestSuite) makeAuthenticatedRequest(method, path string, body interface{}) *testutil.HTTPResponseValidator {
+func (s *ContractTestSuite) makeAuthenticatedRequest(method, path string, body interface{}, accessToken string) *testutil.HTTPResponseValidator {
 	headers := map[string]string{
-		"Authorization": "Bearer " + s.accessToken,
+		"Authorization": "Bearer " + accessToken,
 	}
 	return s.makeRequest(method, path, body, headers)
 }
@@ -267,6 +248,9 @@ func (s *ContractTestSuite) TestAuthenticationEndpointsContract() {
 // TestTaskEndpointsContract tests task endpoints against OpenAPI spec
 func (s *ContractTestSuite) TestTaskEndpointsContract() {
 	s.Run("create task endpoint contract", func() {
+		// Create test user for authentication
+		authResp := s.createTestUserWithEmail("task-create@example.com")
+
 		createReq := models.CreateTaskRequest{
 			Name:           "Contract Test Task",
 			Description:    testutil.StringPtr("A task for contract testing"),
@@ -276,7 +260,7 @@ func (s *ContractTestSuite) TestTaskEndpointsContract() {
 			TimeoutSeconds: testutil.IntPtr(300),
 		}
 
-		validator := s.makeAuthenticatedRequest("POST", "/api/v1/tasks", createReq).
+		validator := s.makeAuthenticatedRequest("POST", "/api/v1/tasks", createReq, authResp.AccessToken).
 			ExpectStatus(http.StatusCreated).
 			ExpectContentType("application/json").
 			ExpectValidJSON()
@@ -297,21 +281,24 @@ func (s *ContractTestSuite) TestTaskEndpointsContract() {
 	})
 
 	s.Run("list tasks endpoint contract", func() {
+		// Create test user for authentication
+		authResp := s.createTestUserWithEmail("task-list@example.com")
+
 		// Create a test task first
 		createReq := models.CreateTaskRequest{
 			Name:          "Contract List Test Task",
 			ScriptContent: "print('Contract list test')",
 			ScriptType:    models.ScriptTypePython,
 		}
 
-		createValidator := s.makeAuthenticatedRequest("POST", "/api/v1/tasks", createReq).
+		createValidator := s.makeAuthenticatedRequest("POST", "/api/v1/tasks", createReq, authResp.AccessToken).
 			ExpectStatus(http.StatusCreated)
 
 		var createdTask models.TaskResponse
 		createValidator.UnmarshalResponse(&createdTask)
 
 		// Test list endpoint
-		listValidator := s.makeAuthenticatedRequest("GET", "/api/v1/tasks?limit=10&offset=0", nil).
+		listValidator := s.makeAuthenticatedRequest("GET", "/api/v1/tasks?limit=10&offset=0", nil, authResp.AccessToken).
 			ExpectStatus(http.StatusOK).
 			ExpectContentType("application/json").
 			ExpectValidJSON()
@@ -344,7 +331,7 @@ func (s *ContractTestSuite) TestTaskEndpointsContract() {
 // TestHealthEndpointContract tests health endpoints against OpenAPI spec
 func (s *ContractTestSuite) TestHealthEndpointContract() {
 	s.Run("health endpoint contract", func() {
-		validator := s.makeRequest("GET", "/api/v1/health", nil, nil).
+		validator := s.makeRequest("GET", "/health", nil, nil).
 			ExpectStatus(http.StatusOK).
 			ExpectContentType("application/json").
 			ExpectValidJSON()
@@ -359,7 +346,7 @@ func (s *ContractTestSuite) TestHealthEndpointContract() {
 	})
 
 	s.Run("readiness endpoint contract", func() {
-		validator := s.makeRequest("GET", "/api/v1/ready", nil, nil).
+		validator := s.makeRequest("GET", "/ready", nil, nil).
 			ExpectStatus(http.StatusOK).
 			ExpectContentType("application/json").
 			ExpectValidJSON()
@@ -391,11 +378,14 @@ func (s *ContractTestSuite) TestErrorResponsesContract() {
 	})
 
 	s.Run("invalid request body contract", func() {
+		// Create test user for authentication
+		authResp := s.createTestUserWithEmail("invalid-body@example.com")
+
 		invalidJSON := `{"name": "test", "invalid": json}`
 
 		req := httptest.NewRequest("POST", "/api/v1/tasks", bytes.NewBufferString(invalidJSON))
 		req.Header.Set("Content-Type", "application/json")
-		req.Header.Set("Authorization", "Bearer "+s.accessToken)
+		req.Header.Set("Authorization", "Bearer "+authResp.AccessToken)
 
 		w := httptest.NewRecorder()
 		s.router.ServeHTTP(w, req)
@@ -413,9 +403,12 @@ func (s *ContractTestSuite) TestErrorResponsesContract() {
 	})
 
 	s.Run("resource not found contract", func() {
+		// Create test user for authentication
+		authResp := s.createTestUserWithEmail("task-notfound@example.com")
+
 		nonExistentID := "123e4567-e89b-12d3-a456-426614174000"
 
-		validator := s.makeAuthenticatedRequest("GET", "/api/v1/tasks/"+nonExistentID, nil).
+		validator := s.makeAuthenticatedRequest("GET", "/api/v1/tasks/"+nonExistentID, nil, authResp.AccessToken).
 			ExpectStatus(http.StatusNotFound).
 			ExpectContentType("application/json").
 			ExpectValidJSON()
diff --git a/tests/integration/database_test.go b/tests/integration/database_test.go
@@ -414,7 +414,7 @@ func (s *DatabaseIntegrationSuite) TestPerformanceCharacteristics() {
 
 		for i := 0; i < numTasks; i++ {
 			task := testutil.NewTaskFactory(user.ID).
-				WithName("Perf Task " + string(rune(i))).
+				WithName(fmt.Sprintf("Perf Task %d", i)).
 				Build()
 			require.NoError(s.T(), s.DB.Repositories.Tasks.Create(ctx, task))
 		}
diff --git a/tests/testutil/openapi_validator.go b/tests/testutil/openapi_validator.go
@@ -196,6 +196,20 @@ func loadOpenAPISpec() *OpenAPISpec {
 								},
 							},
 						},
+						"401": {
+							Description: "Unauthorized access",
+							Content: map[string]*MediaType{
+								"application/json": {
+									Schema: &SchemaSpec{
+										Type: "object",
+										Properties: map[string]*SchemaSpec{
+											"error": {Type: "string"},
+										},
+										Required: []string{"error"},
+									},
+								},
+							},
+						},
 					},
 				},
 				"post": {
@@ -219,10 +233,24 @@ func loadOpenAPISpec() *OpenAPISpec {
 								},
 							},
 						},
+						"401": {
+							Description: "Unauthorized access",
+							Content: map[string]*MediaType{
+								"application/json": {
+									Schema: &SchemaSpec{
+										Type: "object",
+										Properties: map[string]*SchemaSpec{
+											"error": {Type: "string"},
+										},
+										Required: []string{"error"},
+									},
+								},
+							},
+						},
 					},
 				},
 			},
-			"/api/v1/health": {
+			"/health": {
 				"get": {
 					Responses: map[string]*ResponseSpec{
 						"200": {
@@ -243,6 +271,80 @@ func loadOpenAPISpec() *OpenAPISpec {
 					},
 				},
 			},
+			"/ready": {
+				"get": {
+					Responses: map[string]*ResponseSpec{
+						"200": {
+							Description: "Readiness check response",
+							Content: map[string]*MediaType{
+								"application/json": {
+									Schema: &SchemaSpec{
+										Type: "object",
+										Properties: map[string]*SchemaSpec{
+											"status":    {Type: "string"},
+											"timestamp": {Type: "string"},
+										},
+										Required: []string{"status", "timestamp"},
+									},
+								},
+							},
+						},
+					},
+				},
+			},
+			"/api/v1/tasks/{id}": {
+				"get": {
+					Responses: map[string]*ResponseSpec{
+						"200": {
+							Description: "Task details",
+							Content: map[string]*MediaType{
+								"application/json": {
+									Schema: &SchemaSpec{
+										Type: "object",
+										Properties: map[string]*SchemaSpec{
+											"id":             {Type: "string"},
+											"name":           {Type: "string"},
+											"status":         {Type: "string"},
+											"script_content": {Type: "string"},
+											"script_type":    {Type: "string"},
+											"created_at":     {Type: "string"},
+										},
+										Required: []string{"id", "name", "status", "script_content", "script_type", "created_at"},
+									},
+								},
+							},
+						},
+						"401": {
+							Description: "Unauthorized access",
+							Content: map[string]*MediaType{
+								"application/json": {
+									Schema: &SchemaSpec{
+										Type: "object",
+										Properties: map[string]*SchemaSpec{
+											"error": {Type: "string"},
+										},
+										Required: []string{"error"},
+									},
+								},
+							},
+						},
+						"404": {
+							Description: "Task not found",
+							Content: map[string]*MediaType{
+								"application/json": {
+									Schema: &SchemaSpec{
+										Type: "object",
+										Properties: map[string]*SchemaSpec{
+											"error": {Type: "string"},
+										},
+										Required: []string{"error"},
+									},
+								},
+							},
+						},
+					},
+				},
+			},
 		},
 	}
 }
@@ -465,7 +567,7 @@ func (v *OpenAPIValidator) ValidateCommonHeaders(t *testing.T, response *http.Re
 	}
 
 	// Validate security headers for sensitive endpoints
-	if strings.Contains(response.Request.URL.Path, "/auth/") {
+	if response.Request != nil && response.Request.URL != nil && strings.Contains(response.Request.URL.Path, "/auth/") {
 		// These are important security headers that should be present
 		assert.NotEmpty(t, response.Header.Get("X-Content-Type-Options"), "X-Content-Type-Options header should be present for auth endpoints")
 	}

Original file line number	Diff line number	Diff line change
`@@ -414,7 +414,7 @@ func (s *DatabaseIntegrationSuite) TestPerformanceCharacteristics() {`
`414`	`414`
`415`	`415`	`for i := 0; i < numTasks; i++ {`
`416`	`416`	`task := testutil.NewTaskFactory(user.ID).`
`417`		`- WithName("Perf Task " + string(rune(i))).`
	`417`	`+ WithName(fmt.Sprintf("Perf Task %d", i)).`
`418`	`418`	`Build()`
`419`	`419`	`require.NoError(s.T(), s.DB.Repositories.Tasks.Create(ctx, task))`
`420`	`420`	`}`