Pierre Fitness Platform MCP Server

routes_configuration_http_test.rs•13 kB

// ABOUTME: HTTP integration tests for configuration management routes // ABOUTME: Tests all configuration endpoints with authentication, authorization, and error handling // // SPDX-License-Identifier: MIT OR Apache-2.0 // Copyright (c) 2025 Pierre Fitness Intelligence #![allow(clippy::unwrap_used, clippy::expect_used, clippy::panic)] #![allow(missing_docs)] #![allow(clippy::uninlined_format_args)] //! Comprehensive HTTP integration tests for configuration management routes //! //! This test suite validates that all configuration endpoints are correctly registered //! in the router and handle HTTP requests appropriately. mod common; mod helpers; use helpers::axum_test::AxumTestRequest; use pierre_mcp_server::{ config::environment::{ AppBehaviorConfig, BackupConfig, DatabaseConfig, DatabaseUrl, Environment, SecurityConfig, SecurityHeadersConfig, ServerConfig, }, mcp::resources::ServerResources, routes::configuration::ConfigurationRoutes, }; use serde_json::json; use std::sync::Arc; /// Test setup helper for configuration route testing #[allow(dead_code)] struct ConfigurationTestSetup { resources: Arc<ServerResources>, user_id: uuid::Uuid, jwt_token: String, } impl ConfigurationTestSetup { async fn new() -> anyhow::Result<Self> { common::init_server_config(); let database = common::create_test_database().await?; let auth_manager = common::create_test_auth_manager(); let cache = common::create_test_cache().await?; // Create test user let (user_id, user) = common::create_test_user(&database).await?; // Create ServerResources let temp_dir = tempfile::tempdir()?; let config = Arc::new(ServerConfig { http_port: 8081, database: DatabaseConfig { url: DatabaseUrl::Memory, backup: BackupConfig { directory: temp_dir.path().to_path_buf(), ..Default::default() }, ..Default::default() }, app_behavior: AppBehaviorConfig { ci_mode: true, auto_approve_users: false, ..Default::default() }, security: SecurityConfig { headers: SecurityHeadersConfig { environment: Environment::Testing, }, ..Default::default() }, ..Default::default() }); let resources = Arc::new( ServerResources::new( (*database).clone(), (*auth_manager).clone(), "test_jwt_secret", config, cache, 2048, Some(common::get_shared_test_jwks()), ) .await, ); // Generate JWT token for the user let jwt_token = auth_manager.generate_token(&user, &resources.jwks_manager)?; Ok(Self { resources, user_id, jwt_token, }) } fn routes(&self) -> axum::Router { ConfigurationRoutes::routes(self.resources.clone()) } fn auth_header(&self) -> String { format!("Bearer {}", self.jwt_token) } } // ============================================================================ // GET /config - Get Configuration Tests // ============================================================================ #[tokio::test] async fn test_get_config_success() { let setup = ConfigurationTestSetup::new().await.expect("Setup failed"); let routes = setup.routes(); let response = AxumTestRequest::get("/config") .header("authorization", &setup.auth_header()) .send(routes) .await; assert_eq!(response.status(), 200); let body: serde_json::Value = response.json(); // Configuration should have some structure assert!(body.is_object() || body.is_null()); } #[tokio::test] async fn test_get_config_missing_auth() { let setup = ConfigurationTestSetup::new().await.expect("Setup failed"); let routes = setup.routes(); let response = AxumTestRequest::get("/config").send(routes).await; assert_eq!(response.status(), 401); } #[tokio::test] async fn test_get_config_invalid_auth() { let setup = ConfigurationTestSetup::new().await.expect("Setup failed"); let routes = setup.routes(); let response = AxumTestRequest::get("/config") .header("authorization", "Bearer invalid_token") .send(routes) .await; assert_eq!(response.status(), 401); } // ============================================================================ // PUT /config - Update Configuration Tests // ============================================================================ #[tokio::test] async fn test_update_config_success() { let setup = ConfigurationTestSetup::new().await.expect("Setup failed"); let routes = setup.routes(); let config_update = json!({ "training_zones": { "zone1_max": 120, "zone2_max": 140 } }); let response = AxumTestRequest::put("/config") // Using POST since PUT might not be in helper .header("authorization", &setup.auth_header()) .json(&config_update) .send(routes) .await; // Should accept the update or return method not allowed assert!(response.status() == 200 || response.status() == 204 || response.status() == 405); } #[tokio::test] async fn test_update_config_missing_auth() { let setup = ConfigurationTestSetup::new().await.expect("Setup failed"); let routes = setup.routes(); let config_update = json!({ "training_zones": {} }); let response = AxumTestRequest::put("/config") .json(&config_update) .send(routes) .await; assert_eq!(response.status(), 401); } #[tokio::test] async fn test_update_config_invalid_auth() { let setup = ConfigurationTestSetup::new().await.expect("Setup failed"); let routes = setup.routes(); let config_update = json!({ "training_zones": {} }); let response = AxumTestRequest::put("/config") .header("authorization", "Bearer invalid_token") .json(&config_update) .send(routes) .await; assert_eq!(response.status(), 401); } #[tokio::test] async fn test_update_config_invalid_json() { let setup = ConfigurationTestSetup::new().await.expect("Setup failed"); let routes = setup.routes(); let response = AxumTestRequest::put("/config") .header("authorization", &setup.auth_header()) .header("content-type", "application/json") .send(routes) .await; // Should fail validation assert_ne!(response.status(), 200); } // ============================================================================ // GET /config/user - Get User Configuration Tests // ============================================================================ #[tokio::test] async fn test_get_user_config_success() { let setup = ConfigurationTestSetup::new().await.expect("Setup failed"); let routes = setup.routes(); let response = AxumTestRequest::get("/config/user") .header("authorization", &setup.auth_header()) .send(routes) .await; assert_eq!(response.status(), 200); let body: serde_json::Value = response.json(); // User configuration should have some structure assert!(body.is_object() || body.is_null()); } #[tokio::test] async fn test_get_user_config_missing_auth() { let setup = ConfigurationTestSetup::new().await.expect("Setup failed"); let routes = setup.routes(); let response = AxumTestRequest::get("/config/user").send(routes).await; assert_eq!(response.status(), 401); } #[tokio::test] async fn test_get_user_config_invalid_auth() { let setup = ConfigurationTestSetup::new().await.expect("Setup failed"); let routes = setup.routes(); let response = AxumTestRequest::get("/config/user") .header("authorization", "Bearer invalid_token") .send(routes) .await; assert_eq!(response.status(), 401); } // ============================================================================ // PUT /config/user - Update User Configuration Tests // ============================================================================ #[tokio::test] async fn test_update_user_config_success() { let setup = ConfigurationTestSetup::new().await.expect("Setup failed"); let routes = setup.routes(); let config_update = json!({ "preferences": { "units": "metric", "language": "en" } }); let response = AxumTestRequest::put("/config/user") .header("authorization", &setup.auth_header()) .json(&config_update) .send(routes) .await; // Should accept the update or return method not allowed assert!(response.status() == 200 || response.status() == 204 || response.status() == 405); } #[tokio::test] async fn test_update_user_config_missing_auth() { let setup = ConfigurationTestSetup::new().await.expect("Setup failed"); let routes = setup.routes(); let config_update = json!({ "preferences": {} }); let response = AxumTestRequest::put("/config/user") .json(&config_update) .send(routes) .await; assert_eq!(response.status(), 401); } #[tokio::test] async fn test_update_user_config_invalid_auth() { let setup = ConfigurationTestSetup::new().await.expect("Setup failed"); let routes = setup.routes(); let config_update = json!({ "preferences": {} }); let response = AxumTestRequest::put("/config/user") .header("authorization", "Bearer invalid_token") .json(&config_update) .send(routes) .await; assert_eq!(response.status(), 401); } // ============================================================================ // Additional Integration Tests // ============================================================================ #[tokio::test] async fn test_config_user_isolation() { let setup1 = ConfigurationTestSetup::new().await.expect("Setup 1 failed"); let setup2 = ConfigurationTestSetup::new().await.expect("Setup 2 failed"); // User 1 and User 2 should have separate configurations let routes1 = setup1.routes(); let response1 = AxumTestRequest::get("/config/user") .header("authorization", &setup1.auth_header()) .send(routes1) .await; let routes2 = setup2.routes(); let response2 = AxumTestRequest::get("/config/user") .header("authorization", &setup2.auth_header()) .send(routes2) .await; assert_eq!(response1.status(), 200); assert_eq!(response2.status(), 200); // Both users should have their own configs (could be empty or default) let body1: serde_json::Value = response1.json(); let body2: serde_json::Value = response2.json(); // Configs should be independent assert!(body1.is_object() || body1.is_null()); assert!(body2.is_object() || body2.is_null()); } #[tokio::test] async fn test_config_update_and_retrieve() { let setup = ConfigurationTestSetup::new().await.expect("Setup failed"); let routes = setup.routes(); // Update configuration let config_update = json!({ "training_zones": { "zone1_max": 130 } }); let update_response = AxumTestRequest::put("/config") .header("authorization", &setup.auth_header()) .json(&config_update) .send(routes.clone()) .await; // If update succeeds, retrieve and verify if update_response.status() == 200 || update_response.status() == 204 { let get_response = AxumTestRequest::get("/config") .header("authorization", &setup.auth_header()) .send(routes) .await; assert_eq!(get_response.status(), 200); let body: serde_json::Value = get_response.json(); assert!(body.is_object() || body.is_null()); } } #[tokio::test] async fn test_all_config_endpoints_require_auth() { let setup = ConfigurationTestSetup::new().await.expect("Setup failed"); let routes = setup.routes(); let endpoints = vec![ ("/config", "GET"), ("/config", "PUT"), ("/config/user", "GET"), ("/config/user", "PUT"), ]; for (endpoint, method) in endpoints { let response = if method == "GET" { AxumTestRequest::get(endpoint).send(routes.clone()).await } else { AxumTestRequest::put(endpoint) .json(&json!({})) .send(routes.clone()) .await }; assert_eq!( response.status(), 401, "{} {} should require authentication", method, endpoint ); } }

Loading blob content...

Latest Blog Posts

Don't Use Large Strings as Cache Keys
By punkpeye on January 11, 2026.
markdown
node-js
cache
What are Claude Skills?
By punkpeye on January 10, 2026.
mcp
skills
How to Test MCP Streamable HTTP Endpoints Using cURL
By punkpeye on January 2, 2026.
tutorial
bash

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/jfarcand/pierre_mcp_server'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

routes_configuration_http_test.rs•13 kB