recipe-maintainers/cc-ci
0
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(1d): migrate keycloak/cryptpad/matrix-synapse/n8n/lasuite-docs overlays to deploy-once contract (DG7)

Browse Source 
Mechanical port to the assertion-only contract (no softened/skipped assertions): install uses
live_app + generic.assert_serving (extend) + the recipe's http/playwright/api checks; upgrade seeds
its data marker then generic.do_upgrade + asserts survival; backup/restore split into test_backup.py
(seed->do_backup->mutate) + new test_restore.py (do_restore->assert original). Recipe-specifics
preserved verbatim (keycloak realm+admin-console+kc_admin, matrix/lasuite db-service psql markers,
cryptpad/n8n volume markers). No recipe now double-deploys under the deploy-once orchestrator.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
This commit is contained in:
autonomic-bot
2026-05-28 01:32:53 +01:00
parent 9b5bcff92a
commit afd75a48db
21 changed files with 315 additions and 325 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
tests/keycloak/test_install.py
View File

@ -1,22 +1,28 @@
"""keycloak — install stage (recipe #2, DB-backed SSO; D2 install + D3 Playwright)."""
"""keycloak — INSTALL overlay (Phase 1d, DG4): override + extend-by-composition.
Reuses the generic "really serving" assertion, then ADDS the recipe-specific checks: the master
realm endpoint answers 200 over HTTPS (keycloak + mariadb are up), and a real browser loads the
keycloak admin console (D2 install + D3 Playwright). Assertion-only on the shared deployment."""
import os
import sys
sys.path.insert(0, os.path.join(os.path.dirname(__file__), "..", "..", "runner"))
from harness import lifecycle # noqa: E402
from harness import generic, lifecycle # noqa: E402
def test_realm_endpoint_healthy(deployed_app):
"""The master realm endpoint answers 200 over HTTPS (keycloak + mariadb are up)."""
assert lifecycle.http_get(deployed_app, "/realms/master") == 200
def test_serving_and_admin_console(live_app, meta):
# extend-by-composition: reuse the generic "really serving" assertion first ...
generic.assert_serving(live_app, meta)
# ... then the recipe-specific assertions.
# The master realm endpoint answers 200 over HTTPS (keycloak + mariadb are up).
assert lifecycle.http_get(live_app, "/realms/master") == 200
def test_playwright_admin_login(deployed_app):
"""A real browser loads the keycloak admin console (renders the sign-in UI)."""
# A real browser loads the keycloak admin console (renders the sign-in UI).
from playwright.sync_api import sync_playwright
url = f"https://{deployed_app}/admin/master/console/"
url = f"https://{live_app}/admin/master/console/"
with sync_playwright() as p:
browser = p.chromium.launch(args=["--no-sandbox"])
try: