Skip to content

Fix: Default error_scenario.enabled to true when configured #14

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
chrisw-dev merged 3 commits into from
Oct 26, 2025
Merged

Fix: Default error_scenario.enabled to true when configured #14

chrisw-dev merged 3 commits into from
Oct 26, 2025

Conversation

Copy link
Contributor

Copilot AI commented Oct 26, 2025
edited
Loading

External tests failed to trigger OAuth error scenarios because the enabled field defaulted to false and wasn't documented. Users configured error scenarios without knowing to set "enabled": true, causing scenarios to be stored but never activated.

Changes

Config Handler (internal/handlers/config.go)

  • Changed ErrorScenario.Enabled from bool to *bool to distinguish unset (nil) from explicit false
  • Default to true when nil, allowing {"endpoint": "authorize", "error": "unauthorized_client"} to work immediately

Documentation (README.md)

  • Added complete list of supported OAuth2 error codes per endpoint (authorize, token, userinfo)
  • Clarified enabled field is optional and defaults to true

Tests (internal/handlers/config_test.go)

  • Added coverage for default-enabled behavior and explicit disable

Example

Before (broken):

{
  "error_scenario": {
    "endpoint": "authorize",
    "error": "unauthorized_client"
  }
}

Error stored but never triggers (enabled defaults to false).

After (fixed):

{
  "error_scenario": {
    "endpoint": "authorize", 
    "error": "unauthorized_client"
  }
}

Works immediately. Set "enabled": false to explicitly disable.

Impact

Fixes all 5 previously-failing error scenarios: unauthorized_client, invalid_scope, temporarily_unavailable, invalid_request, unsupported_response_type. Backward compatible with existing configs.

Original prompt

This section details on the original issue you should resolve

<issue_title>[FEATURE] extend error scenarios</issue_title>
<issue_description>## Summary

After re-running the previously skipped OAuth error scenario tests, we discovered that the mock OAuth server has been partially updated and now supports some error scenarios!

Test Results

✅ Tests Now Passing (10 total)

Basic OAuth Flow (7 tests):

  1. ✅ should complete OAuth flow with mock server
  2. ✅ should receive session cookie after authentication
  3. ✅ should show user information on dashboard
  4. ✅ should be able to logout
  5. ✅ should redirect to dashboard after login
  6. ✅ Basic Page Navigation: should load home page
  7. ✅ Basic Page Navigation: should have navigation links on home page

OAuth Error Scenarios (3 tests - NOW WORKING!):
8. ✅ should handle OAuth access denied error ⭐ NEW
9. ✅ should handle server error from OAuth provider ⭐ NEW
10. ✅ should handle token endpoint error ⭐ NEW

⏭️ Tests Still Skipped (7 total)

Requires mock OAuth server improvements:

  1. ⏭️ should redirect to login when accessing dashboard without authentication

    • Issue: Navigating to /dashboard without auth still completes OAuth flow
    • Needs: Proper unauthenticated redirect handling

  2. ⏭️ should handle unauthorized client error

    • Issue: Error scenario not properly blocking authentication

  3. ⏭️ should handle invalid scope error

    • Issue: Error scenario not properly blocking authentication

  4. ⏭️ should handle temporarily unavailable error

    • Issue: Error scenario not properly blocking authentication

  5. ⏭️ should handle invalid request error

    • Issue: Error scenario not properly blocking authentication

  6. ⏭️ should handle unsupported response type error

    • Issue: Error scenario not properly blocking authentication

  7. ⏭️ should recover from error scenario when disabled

    • Issue: Depends on other error scenarios working first

Mock OAuth Server Status

Current Version:

Error Scenarios - Support Status:

Error Type Status Notes
access_denied ✅ WORKS Properly blocks auth and redirects
server_error ✅ WORKS Properly handled
Token endpoint errors ✅ WORKS invalid_grant working
unauthorized_client ❌ FAILS Still auto-approves
invalid_scope ❌ FAILS Still auto-approves
temporarily_unavailable ❌ FAILS Still auto-approves
invalid_request ❌ FAILS Still auto-approves
unsupported_response_type ❌ FAILS Still auto-approves

Progress

Before (original issue):

  • 9 tests failing
  • 1 test skipped
  • 7 tests passing

After mock OAuth update:

  • 0 tests failing ✨
  • 7 tests skipped (waiting on mock OAuth improvements)
  • 10 tests passing ✅ (+3 new passing tests!)
    </issue_description>

Comments on the Issue (you are @copilot in this section)

💡 You can make Copilot smarter by setting up custom instructions, customizing its development environment and configuring Model Context Protocol (MCP) servers. Learn more Copilot coding agent tips in the docs.

Copilot AI and others added 2 commits October 26, 2025 07:53
@chrisw-dev
Fix: Default error scenarios to enabled when configured
e19b2bf 
The 'enabled' field now defaults to true when configuring error scenarios.
This resolves the UX issue where external tests couldn't trigger error
scenarios without explicitly setting "enabled": true.

Changes:
- Changed 'enabled' field to *bool (pointer) to distinguish nil from false
- Default 'enabled' to true when error scenario is configured (nil)
- Allow explicit "enabled": false to disable scenarios
- Updated README documentation to clarify the enabled field behavior
- Added comprehensive test coverage for default enabled behavior
- Listed all supported OAuth2 error codes in documentation

Co-authored-by: chrisw-dev <68233262+chrisw-dev@users.noreply.github.com>
@chrisw-dev
Refactor: Address code review feedback
617ce92 
- Extract duplicated boolean expression to variable for readability
- Update misleading comment about default nil behavior

Co-authored-by: chrisw-dev <68233262+chrisw-dev@users.noreply.github.com>
Copilot AI changed the title [WIP] Extend error scenarios for OAuth tests Fix: Default error_scenario.enabled to true when configured Oct 26, 2025
Copilot AI requested a review from chrisw-dev October 26, 2025 07:57
Copilot finished work on behalf of chrisw-dev October 26, 2025 07:57
@chrisw-dev chrisw-dev marked this pull request as ready for review October 26, 2025 21:46
@chrisw-dev chrisw-dev merged commit 335c556 into main Oct 26, 2025
2 checks passed
@chrisw-dev chrisw-dev deleted the copilot/extend-oauth-error-scenarios branch October 26, 2025 21:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@chrisw-dev chrisw-dev chrisw-dev approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@chrisw-dev chrisw-dev

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[FEATURE] extend error scenarios

2 participants

@chrisw-dev