test: Improved test coverage in

.github/workflows/maven.yml

@@ -27,14 +27,11 @@ jobs:
         distribution: 'temurin'
         cache: maven
     - name: Build with Maven
-      run: mvn -B package --file pom.xml
-
-    - name: Run tests and verify
-      run: mvn verify -Dgpg.skip=true
+      run: mvn -B clean install --file pom.xml -Dgpg.skip=true
 
     - name: Upload coverage to Codecov
       uses: codecov/codecov-action@v4
       with:
-        files: '**/target/site/jacoco/jacoco.xml'
+        files: '**/target/site/jacoco-aggregate/jacoco.xml'
       env:
         CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }}

kinde-core/pom.xml

@@ -125,19 +125,13 @@
           </execution>
           <execution>
             <id>post-unit-test</id>
-            <phase>test</phase>
+            <phase>verify</phase>
             <goals>
               <goal>report</goal>
             </goals>
             <configuration>
               <outputDirectory>${project.build.directory}/jacoco</outputDirectory>
               <dataFile>${project.build.directory}/jacoco/jacoco.exec</dataFile>
-              <reportFormats>
-                <format>HTML</format>
-                <format>XML</format>
-              </reportFormats>
-              <append>true</append>
-              <skip>false</skip>
               <includes>
                 <include>com/kinde/**</include>
               </includes>

kinde-management/pom.xml

@@ -132,6 +132,21 @@
             <groupId>com.kinde</groupId>
             <artifactId>kinde-core</artifactId>
         </dependency>
+        <!-- Mockito (if you are using it for mocking) -->
+        <dependency>
+            <groupId>org.mockito</groupId>
+            <artifactId>mockito-core</artifactId>
+            <version>5.4.0</version>
+            <scope>test</scope>
+        </dependency>
+
+        <!-- https://mvnrepository.com/artifact/org.projectlombok/lombok -->
+        <dependency>
+            <groupId>org.projectlombok</groupId>
+            <artifactId>lombok</artifactId>
+            <scope>provided</scope>
+        </dependency>
+
     </dependencies>
 
     <build>
@@ -165,7 +180,17 @@
             <plugin>
                 <groupId>org.jacoco</groupId>
                 <artifactId>jacoco-maven-plugin</artifactId>
-                <version>0.8.10</version> <!-- Replace with the latest version -->
+                <version>0.8.12</version> <!-- Replace with the latest version -->
+                <configuration>
+                    <excludes>
+                        <exclude>com/google/inject/**/*.class</exclude>
+                        <exclude>javax/inject/**/*.class</exclude>
+                        <exclude>org/springframework/**/*.class</exclude>
+                        <exclude>**/generated/**</exclude>
+                        <exclude>**/thirdparty/**</exclude>
+                        <exclude>org/openapitools/**</exclude>
+                    </excludes>
+                </configuration>
                 <executions>
                     <execution>
                         <goals>
@@ -181,30 +206,13 @@
                     </execution>
                     <execution>
                         <id>post-unit-test</id>
-                        <phase>test</phase>
+                        <phase>verify</phase>
                         <goals>
                             <goal>report</goal>
                         </goals>
                         <configuration>
                             <outputDirectory>${project.build.directory}/jacoco</outputDirectory>
                             <dataFile>${project.build.directory}/jacoco/jacoco.exec</dataFile>
-                            <reportFormats>
-                                <format>HTML</format>
-                                <format>XML</format>
-                            </reportFormats>
-                            <append>true</append>
-                            <skip>false</skip>
-                            <includes>
-                                <include>com/kinde/**</include>
-                            </includes>
-                            <excludes>
-                                <exclude>com/google/inject/**/*.class</exclude>
-                                <exclude>javax/inject/**/*.class</exclude>
-                                <exclude>org/springframework/**/*.class</exclude>
-                                <exclude>**/generated/**</exclude>
-                                <exclude>**/thirdparty/**</exclude>
-                                <!-- Add more excludes if necessary -->
-                            </excludes>
                         </configuration>
                     </execution>
                 </executions>

kinde-management/src/main/java/com/kinde/admin/KindeAdminSessionImpl.java

@@ -25,7 +25,10 @@
     @Override
     public ApiClient initClient() {
         if (kindeClient == null) {
-            return new ApiClient();
+            Map<String, Authentication> authMap = new HashMap<>();
+            authMap.put("ManagementAPI",new OAuth(
+                    "https://kinde.com","http://kinde.com/oauth2/token"));
+            return new ApiClient(authMap);
         }
         KindeTokens kindeTokens = kindeClient.clientSession().retrieveTokens();
         if (kindeTokens.getAccessToken() == null) {

kinde-management/src/test/java/com/kinde/admin/KindeAdminSessionImplTest.java

@@ -0,0 +1,50 @@
+package com.kinde.admin;
+
+import com.kinde.KindeClient;
+import com.kinde.KindeClientSession;
+import com.kinde.client.OidcMetaData;
+import com.kinde.config.KindeConfig;
+import com.kinde.token.AccessToken;
+import com.kinde.token.IDToken;
+import com.kinde.token.KindeTokens;
+import com.kinde.token.RefreshToken;
+import com.kinde.token.jwt.JwtGenerator;
+import com.nimbusds.oauth2.sdk.id.Issuer;
+import com.nimbusds.openid.connect.sdk.SubjectType;
+import com.nimbusds.openid.connect.sdk.op.OIDCProviderMetadata;
+import org.junit.jupiter.api.Test;
+import org.mockito.Mockito;
+import org.openapitools.client.ApiClient;
+
+import java.net.URI;
+import java.util.Arrays;
+
+import static org.mockito.Mockito.when;
+
+public class KindeAdminSessionImplTest {
+
+    @Test
+    public void testInitClient() throws Exception {
+        KindeAdminSessionImpl kindeAdminSession1 = new KindeAdminSessionImpl(null);
+        ApiClient apiClient = kindeAdminSession1.initClient();
+
+        KindeClient kindeClient = Mockito.mock(KindeClient.class);
+        KindeClientSession kindeClientSession = Mockito.mock(KindeClientSession.class);
+        when(kindeClient.clientSession()).thenReturn(kindeClientSession);
+        KindeConfig kindeConfig = Mockito.mock(KindeConfig.class);
+        when(kindeClient.kindeConfig()).thenReturn(kindeConfig);
+        OidcMetaData oidcMetaData = Mockito.mock(OidcMetaData.class);
+        when(kindeClient.oidcMetaData()).thenReturn(oidcMetaData);
+        OIDCProviderMetadata oidcProviderMetadata = new OIDCProviderMetadata(new Issuer("https://kinde.com"),
+                Arrays.asList(SubjectType.PUBLIC), new URI("https://kinde.com"));
+        oidcProviderMetadata.setTokenEndpointURI(new URI("https://kinde.com"));
+        when(oidcMetaData.getOpMetadata()).thenReturn(oidcProviderMetadata);
+        IDToken idToken = IDToken.init(JwtGenerator.generateIDToken(),true);
+        AccessToken accessToken = AccessToken.init(JwtGenerator.generateAccessToken(),true);
+        RefreshToken refreshToken = RefreshToken.init(JwtGenerator.refreshToken(),true);
+        KindeTokens kindeTokens = new KindeTokens(Arrays.asList(),idToken,accessToken,refreshToken);
+        when(kindeClientSession.retrieveTokens()).thenReturn(kindeTokens);
+        KindeAdminSessionImpl kindeAdminSession2 = new KindeAdminSessionImpl(kindeClient);
+        kindeAdminSession2.initClient();
+    }
+}

kinde-management/src/test/java/com/kinde/token/jwt/JwtGenerator.java

@@ -0,0 +1,117 @@
+package com.kinde.token.jwt;
+
+import com.nimbusds.jose.JWSAlgorithm;
+import com.nimbusds.jose.JWSHeader;
+import com.nimbusds.jose.JWSSigner;
+import com.nimbusds.jose.crypto.RSASSASigner;
+import com.nimbusds.jose.jwk.RSAKey;
+import com.nimbusds.jose.jwk.gen.RSAKeyGenerator;
+import com.nimbusds.jwt.JWTClaimsSet;
+import com.nimbusds.jwt.SignedJWT;
+import lombok.SneakyThrows;
+
+import java.util.*;
+
+public class JwtGenerator {
+    @SneakyThrows
+    public static String generateAccessToken() {
+
+        // generate a new signed token
+        RSAKey rsaJWK = new RSAKeyGenerator(2048)
+                .keyID("123")
+                .generate();
+        RSAKey rsaPublicJWK = rsaJWK.toPublicJWK();
+
+        JWSSigner signer = new RSASSASigner(rsaJWK);
+
+        Date now = new Date();
+
+        JWTClaimsSet jwtClaims = new JWTClaimsSet.Builder()
+                .issuer("https://openid.net")
+                .subject("test")
+                .audience(Arrays.asList("https://kinde.com"))
+                .expirationTime(new Date(now.getTime() + 1000*60*10)) // expires in 10 minutes
+                .notBeforeTime(now)
+                .issueTime(now)
+                .claim("permissions",Arrays.asList("test1","test1"))
+                .jwtID(UUID.randomUUID().toString())
+                .build();
+
+        SignedJWT signedJWT = new SignedJWT(
+                new JWSHeader.Builder(JWSAlgorithm.RS256).keyID(rsaJWK.getKeyID()).build(),
+                jwtClaims);
+
+        signedJWT.sign(signer);
+        return signedJWT.serialize();
+    }
+
+    @SneakyThrows
+    public static String generateIDToken() {
+        // generate a new signed token
+        RSAKey rsaJWK = new RSAKeyGenerator(2048)
+                .keyID("123")
+                .generate();
+        RSAKey rsaPublicJWK = rsaJWK.toPublicJWK();
+
+        JWSSigner signer = new RSASSASigner(rsaJWK);
+
+        Date now = new Date();
+
+        Map<String,Object> featureFlags = new HashMap<>();
+
+        featureFlags.put("test_str","test_str");
+        featureFlags.put("test_integer",Integer.valueOf(1));
+        featureFlags.put("test_boolean",Boolean.valueOf(false));
+
+        JWTClaimsSet jwtClaims = new JWTClaimsSet.Builder()
+                .issuer("https://openid.net")
+                .subject("test")
+                .audience(Arrays.asList("https://kinde.com"))
+                .expirationTime(new Date(now.getTime() + 1000*60*10)) // expires in 10 minutes
+                .notBeforeTime(now)
+                .issueTime(now)
+                .claim("permissions",Arrays.asList("test1","test1"))
+                .claim("org_codes",Arrays.asList("test1","test1"))
+                .claim("feature_flags",featureFlags)
+                .jwtID(UUID.randomUUID().toString())
+                .build();
+
+        SignedJWT signedJWT = new SignedJWT(
+                new JWSHeader.Builder(JWSAlgorithm.RS256).keyID(rsaJWK.getKeyID()).build(),
+                jwtClaims);
+
+        signedJWT.sign(signer);
+        return signedJWT.serialize();
+    }
+
+    @SneakyThrows
+    public static String refreshToken() {
+        // generate a new signed token
+        RSAKey rsaJWK = new RSAKeyGenerator(2048)
+                .keyID("123")
+                .generate();
+        RSAKey rsaPublicJWK = rsaJWK.toPublicJWK();
+
+        JWSSigner signer = new RSASSASigner(rsaJWK);
+
+        Date now = new Date();
+
+        JWTClaimsSet jwtClaims = new JWTClaimsSet.Builder()
+                .issuer("https://openid.net")
+                .subject("test")
+                .audience(Arrays.asList("https://kinde.com"))
+                .expirationTime(new Date(now.getTime() + 1000*60*10)) // expires in 10 minutes
+                .notBeforeTime(now)
+                .issueTime(now)
+                .claim("permissions",Arrays.asList("test1","test1"))
+                .jwtID(UUID.randomUUID().toString())
+                .build();
+
+        SignedJWT signedJWT = new SignedJWT(
+                new JWSHeader.Builder(JWSAlgorithm.RS256).keyID(rsaJWK.getKeyID()).build(),
+                jwtClaims);
+
+        signedJWT.sign(signer);
+        return signedJWT.serialize();
+    }
+}

kinde-springboot/kinde-springboot-core/src/test/java/com/kinde/spring/config/KindeOAuth2PropertiesTest.java

@@ -0,0 +1,44 @@
+package com.kinde.spring.config;
+
+import org.junit.Assert;
+import org.junit.jupiter.api.Test;
+import org.mockito.Mockito;
+import org.springframework.boot.autoconfigure.security.oauth2.client.OAuth2ClientProperties;
+
+public class KindeOAuth2PropertiesTest {
+
+    @Test
+    public void testKindeOAuth2Properties() {
+        OAuth2ClientProperties clientProperties = Mockito.mock(OAuth2ClientProperties.class);
+        KindeOAuth2Properties kindeOAuth2Properties = new KindeOAuth2Properties(clientProperties);
+
+        Assert.assertNull(kindeOAuth2Properties.getRedirectUri());
+        Assert.assertNull(kindeOAuth2Properties.getClientId());
+        Assert.assertNull(kindeOAuth2Properties.getClientSecret());
+        Assert.assertNull(kindeOAuth2Properties.getAuthorizationGrantType());
+        Assert.assertNull(kindeOAuth2Properties.getDomain());
+        Assert.assertEquals("api://default",kindeOAuth2Properties.getAudience());
+        Assert.assertNull(kindeOAuth2Properties.getPostLogoutRedirectUri());
+        Assert.assertNull(kindeOAuth2Properties.getProxy());
+        Assert.assertNull(kindeOAuth2Properties.getScopes());
+
+        Assert.assertNotNull(kindeOAuth2Properties.getPermissionsClaim());
+
+        kindeOAuth2Properties.setRedirectUri("https://kinde.com");
+        Assert.assertEquals("https://kinde.com",kindeOAuth2Properties.getRedirectUri());
+
+        kindeOAuth2Properties.setClientId("client-id");
+        Assert.assertEquals("client-id",kindeOAuth2Properties.getClientId());
+
+        kindeOAuth2Properties.setClientSecret("client-secret");
+        Assert.assertEquals("client-secret",kindeOAuth2Properties.getClientSecret());
+
+        kindeOAuth2Properties.setDomain("https://kinde.com");
+        Assert.assertEquals("https://kinde.com",kindeOAuth2Properties.getDomain());
+
+        kindeOAuth2Properties.setAudience("https://kinde.com/api");
+        Assert.assertEquals("https://kinde.com/api",kindeOAuth2Properties.getAudience());
+    }
+
+
+}

kinde-springboot/pom.xml

@@ -44,6 +44,20 @@
             <groupId>org.sonatype.plugins</groupId>
             <artifactId>nexus-staging-maven-plugin</artifactId>
         </plugin>
+        <plugin>
+          <groupId>org.jacoco</groupId>
+          <artifactId>jacoco-maven-plugin</artifactId>
+          <version>0.8.12</version>
+          <executions>
+            <execution>
+              <id>report-aggregate</id>
+              <phase>verify</phase>
+              <goals>
+                <goal>report-aggregate</goal>
+              </goals>
+            </execution>
+          </executions>
+        </plugin>
     </plugins>
   </build>
 </project>