Merge pull request #1274 from Permify/next

test: add Authenticate Id Token test cases for OIDC authentication

docs/api-reference/apidocs.swagger.json

@@ -3,7 +3,7 @@
   "info": {
     "title": "Permify API",
     "description": "Permify is an open source authorization service for creating fine-grained and scalable authorization systems.",
-    "version": "v0.8.8",
+    "version": "v0.9.0",
     "contact": {
       "name": "API Support",
       "url": "https://github.com/Permify/permify/issues",

internal/authn/oidc/authn_test.go

@@ -12,6 +12,7 @@ import (
 	. "github.com/onsi/gomega"
 
 	"github.com/Permify/permify/internal/config"
+	base `github.com/Permify/permify/pkg/pb/base/v1`
 )
 
 var _ = Describe("authn-oidc", func() {
@@ -240,6 +241,55 @@ var _ = Describe("authn-oidc", func() {
 			Expect(err).ShouldNot(Equal(BeNil()))
 		})
 	})
+
+	Context("Authenticate Id Token", func() {
+		It("Case 1", func() {
+			// create authenticator
+			ctx := context.Background()
+			auth, err := NewOidcAuthn(ctx, config.Oidc{
+				Audience: audience,
+				Issuer:   issuerURL,
+			})
+			Expect(err).To(BeNil())
+
+			// authenticate
+			niceMd := make(metautils.NiceMD)
+			niceMd.Set("authorization", "Bearer ")
+			err = auth.Authenticate(niceMd.ToIncoming(ctx))
+			Expect(err.Error()).Should(Equal(base.ErrorCode_ERROR_CODE_INVALID_BEARER_TOKEN.String()))
+		})
+
+		It("Case 2", func() {
+			// create authenticator
+			ctx := context.Background()
+			auth, err := NewOidcAuthn(ctx, config.Oidc{
+				Audience: audience,
+				Issuer:   issuerURL,
+			})
+			Expect(err).To(BeNil())
+
+			// authenticate
+			niceMd := make(metautils.NiceMD)
+			err = auth.Authenticate(niceMd.ToIncoming(ctx))
+			Expect(err.Error()).Should(Equal(base.ErrorCode_ERROR_CODE_MISSING_BEARER_TOKEN.String()))
+		})
+
+		It("Case 3", func() {
+			// create authenticator
+			ctx := context.Background()
+			auth, err := NewOidcAuthn(ctx, config.Oidc{
+				Audience: audience,
+				Issuer:   issuerURL,
+			})
+			Expect(err).To(BeNil())
+
+			// authenticate
+			niceMd := make(metautils.NiceMD)
+			niceMd.Set("authorization", "Bearer asd")
+			err = auth.Authenticate(niceMd.ToIncoming(ctx))
+			Expect(err.Error()).Should(Equal(base.ErrorCode_ERROR_CODE_INVALID_BEARER_TOKEN.String()))
+		})
+	})
 })
 
 func claimOverride(current, overrider *jwt.RegisteredClaims) {

internal/info.go

@@ -23,7 +23,7 @@ var Identifier = ""
 */
 const (
 	// Version is the last release of the Permify (e.g. v0.1.0)
-	Version = "v0.8.8"
+	Version = "v0.9.0"
 )
 
 // Function to create a single line of the ASCII art with centered content and color

internal/storage/postgres/postgres_test.go

@@ -14,6 +14,7 @@ import (
 
 	"github.com/Permify/permify/internal/config"
 	"github.com/Permify/permify/internal/storage"
+	"github.com/Permify/permify/internal/storage/postgres/utils"
 	"github.com/Permify/permify/pkg/database"
 	PQDatabase "github.com/Permify/permify/pkg/database/postgres"
 )
@@ -85,6 +86,9 @@ func postgresDB(postgresVersion string) database.Database {
 		PQDatabase.MaxConnectionLifeTime(cfg.MaxConnectionLifetime),
 	)
 
+	_, err = utils.EnsureDBVersion(db.(*PQDatabase.Postgres).WritePool)
+	Expect(err).ShouldNot(HaveOccurred())
+
 	return db
 }
 

proto/base/v1/openapi.proto

@@ -9,7 +9,7 @@ option (grpc.gateway.protoc_gen_openapiv2.options.openapiv2_swagger) = {
   info: {
     title: "Permify API";
     description: "Permify is an open source authorization service for creating fine-grained and scalable authorization systems.";
-    version: "v0.8.8";
+    version: "v0.9.0";
     contact: {
       name: "API Support";
       url: "https://github.com/Permify/permify/issues";