Feature/cdapi 144#131
Conversation
williamjameswillis
left a comment
williamjameswillis
left a comment
There was a problem hiding this comment.
added some comments also my AI pointed out the following extras:
'The ticket explicitly requires: "Verify observability (logs, correlation IDs, traceability across systems)". No test in the IntEnvi suite checks response headers for a correlation ID (e.g. x-correlation-id). This is a direct gap against the acceptance criteria.'
There is no IntEnvi test for:
A missing Bearer token → expected HTTP 401
An invalid/expired Bearer token → expected HTTP 401
INTEGRATION.bru environment file is incomplete
environments/INTEGRATION.bru only declares secret variable names (PRIVATE_KEY_PATH, KID, PR_NUMBER, JWT_SECRET). However, Get_Auth_Token.bru uses {{APIM_ENV}} in its URL, which is not defined in the INTEGRATION environment. Running the auth token fetch against the integration environment will fail unless this is configured separately.
Added relevant logs from Cloudwatch on the ticket. |
samdasari11
force-pushed
the
feature/CDAPI-144
branch
3 times, most recently
from
7c2561b to
7496887
Compare
williamjameswillis
left a comment
williamjameswillis
left a comment
There was a problem hiding this comment.
re-approving after fixing the signed commit issue
samdasari11
force-pushed
the
feature/CDAPI-144
branch
from
7496887 to
cadc505
Compare
|
|
Deployment Complete
|
) <!-- markdownlint-disable-next-line first-line-heading --> ## Description <!-- Describe your changes in detail. --> ## Context <!-- Why is this change required? What problem does it solve? --> ## Type of changes <!-- What types of changes does your code introduce? Put an `x` in all the boxes that apply. --> - [ ] Refactoring (non-breaking change) - [ ] New feature (non-breaking change which adds functionality) - [ ] Breaking change (fix or feature that would change existing functionality) - [ ] Bug fix (non-breaking change which fixes an issue) ## Checklist <!-- Go over all the following points, and put an `x` in all the boxes that apply. --> - [ ] I have followed the code style of the project - [ ] I have added tests to cover my changes - [ ] I have updated the documentation accordingly - [ ] This PR is a result of pair or mob programming - [ ] Exceptions/Exclusions to coding standards (e.g. #noqa or #NOSONAR) are included within this Pull Request. --- ## Sensitive Information Declaration To ensure the utmost confidentiality and protect your and others privacy, we kindly ask you to NOT including [PII (Personal Identifiable Information) / PID (Personal Identifiable Data)](https://digital.nhs.uk/data-and-information/keeping-data-safe-and-benefitting-the-public) or any other sensitive data in this PR (Pull Request) and the codebase changes. We will remove any PR that do contain any sensitive information. We really appreciate your cooperation in this matter. - [ ] I confirm that neither PII/PID nor sensitive data are included in this PR and the codebase changes.
2 participants
Description
Context
Type of changes
Checklist
Sensitive Information Declaration
To ensure the utmost confidentiality and protect your and others privacy, we kindly ask you to NOT including PII (Personal Identifiable Information) / PID (Personal Identifiable Data) or any other sensitive data in this PR (Pull Request) and the codebase changes. We will remove any PR that do contain any sensitive information. We really appreciate your cooperation in this matter.