Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

FI-2787: AuthInfo input skeleton #503

Merged
merged 11 commits into from
Jun 24, 2024
Merged

FI-2787: AuthInfo input skeleton #503

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
febb129
WIP
Jammjammjamm May 28, 2024
3817801
WIP
Jammjammjamm May 31, 2024
305d3f8
WIP
Jammjammjamm Jun 3, 2024
0d8997f
add inputs for auth demo tests
Jammjammjamm Jun 11, 2024
7d6e302
rename auth_input to auth_info
Jammjammjamm Jun 11, 2024
6a8f11f
add placeholder ui for auth info
Jammjammjamm Jun 12, 2024
2214e25
add group for access auth info mode
Jammjammjamm Jun 12, 2024
6a0c729
extract auth info suite
Jammjammjamm Jun 14, 2024
b2845f2
add documentation
Jammjammjamm Jun 14, 2024
ed326ee
ignore cyclomatic complexity warning
Jammjammjamm Jun 14, 2024
f76ccc0
fix js linting
Jammjammjamm Jun 14, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
10 changes: 10 additions & 0 deletions client/src/components/InputsModal/InputFields.tsx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,6 +17,16 @@ const InputFields: FC<InputFieldsProps> = ({ inputs, inputsMap, setInputsMap })
<List>
{inputs.map((requirement: TestInput, index: number) => {
switch (requirement.type) {
case 'auth_info':
return (
<InputTextField
requirement={requirement}
index={index}
inputsMap={inputsMap}
setInputsMap={(newInputsMap) => setInputsMap(newInputsMap)}
key={`input-${index}`}
/>
);
case 'oauth_credentials':
return (
<InputOAuthCredentials
Expand Down
2 changes: 1 addition & 1 deletion client/src/models/testSuiteModels.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -89,7 +89,7 @@ export interface TestInput {
name: string;
title?: string;
value?: unknown;
type?: 'oauth_credentials' | 'checkbox' | 'radio' | 'text' | 'textarea';
type?: 'auth_info' | 'oauth_credentials' | 'checkbox' | 'radio' | 'text' | 'textarea';
description?: string;
default?: string | string[];
optional?: boolean;
Expand Down
345 changes: 345 additions & 0 deletions dev_suites/dev_auth_info/auth_info_suite.rb
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,345 @@
module AuthInfoConstants
AUTH_URL = 'https://inferno-qa.healthit.gov/reference-server/oauth/authorization'.freeze
TOKEN_URL = 'https://inferno-qa.healthit.gov/reference-server/oauth/token'.freeze
REQUESTED_SCOPES = 'launch/patient openid fhirUser patient/*.*'.freeze
REDIRECT_URL = "#{Inferno::Application['base_url']}/custom/smart/redirect".freeze
ENCRYPTION_ALGORITHM = 'ES384'.freeze
JWKS =
{
keys:
[
{
kty: 'EC',
crv: 'P-384',
x: 'JQKTsV6PT5Szf4QtDA1qrs0EJ1pbimQmM2SKvzOlIAqlph3h1OHmZ2i7MXahIF2C',
y: 'bRWWQRJBgDa6CTgwofYrHjVGcO-A7WNEnu4oJA5OUJPPPpczgx1g2NsfinK-D2Rw',
use: 'sig',
key_ops: [
'verify'
],
ext: true,
kid: '4b49a739d1eb115b3225f4cf9beb6d1b',
alg: 'ES384'
},
{
kty: 'EC',
crv: 'P-384',
d: 'kDkn55p7gryKk2tj6z2ij7ExUnhi0ngxXosvqa73y7epwgthFqaJwApmiXXU2yhK',
x: 'JQKTsV6PT5Szf4QtDA1qrs0EJ1pbimQmM2SKvzOlIAqlph3h1OHmZ2i7MXahIF2C',
y: 'bRWWQRJBgDa6CTgwofYrHjVGcO-A7WNEnu4oJA5OUJPPPpczgx1g2NsfinK-D2Rw',
key_ops: [
'sign'
],
ext: true,
kid: '4b49a739d1eb115b3225f4cf9beb6d1b',
alg: 'ES384'
}
]
}.to_json.freeze
KID = '4b49a739d1eb115b3225f4cf9beb6d1b'.freeze

class << self
def public_default
{
client_id: 'SAMPLE_PUBLIC_CLIENT_ID',
requested_scopes: REQUESTED_SCOPES,
pkce_support: 'enabled',
pkce_code_challenge_method: 'S256',
auth_request_method: 'GET'
}.freeze
end

def symmetric_confidential_default
{
token_url: TOKEN_URL,
client_id: 'SAMPLE_CONFIDENTIAL_CLIENT_ID',
client_secret: 'SAMPLE_CONFIDENTIAL_CLIENT_SECRET',
auth_url: AUTH_URL,
requested_scopes: REQUESTED_SCOPES,
pkce_support: 'enabled',
pkce_code_challenge_method: 'S256',
auth_request_method: 'POST',
use_discovery: 'false'
}.freeze
end

def asymmetric_confidential_default
{
client_id: 'SAMPLE_CONFIDENTIAL_CLIENT_ID',
requested_scopes: REQUESTED_SCOPES,
pkce_support: 'disabled',
auth_request_method: 'POST',
encryption_algorithm: ENCRYPTION_ALGORITHM,
jwks: JWKS,
kid: KID
}.freeze
end

def backend_services_default
{
client_id: 'SAMPLE_CONFIDENTIAL_CLIENT_ID',
requested_scopes: REQUESTED_SCOPES,
encryption_algorithm: ENCRYPTION_ALGORITHM,
jwks: JWKS,
kid: KID
}.freeze
end

def issue_time
@issue_time ||= Time.now.iso8601
end

def token_info
{
access_token: 'SAMPLE_TOKEN',
refresh_token: 'SAMPLE_REFRESH_TOKEN',
expires_in: '3600',
issue_time:
}
end

def public_access_default
public_default.merge(token_info).freeze
end

def symmetric_confidential_access_default
symmetric_confidential_default.merge(token_info).freeze
end

def asymmetric_confidential_access_default
asymmetric_confidential_default.merge(token_info).freeze
end

def backend_services_access_default
backend_services_default.merge(token_info).freeze
end
end
end

module AuthInfoSuite
class Suite < Inferno::TestSuite
id :auth_info
title 'AuthInfo Suite'

group do
id :auth_info_demo
title 'Auth Input Demo'

group do
title 'Auth mode'

test do
title 'Public Auth'
id :public_auth
input :public_auth_info,
type: :auth_info,
options: {
mode: 'auth',
components: [
{
name: :auth_type,
default: 'public',
locked: true
}
]
},
default: AuthInfoConstants.public_default.to_json
run do
AuthInfoConstants.public_default.each do |key, original_value|
received_value = public_auth_info.send(key)
assert received_value == original_value,
"Expected `#{key}` to equal `#{original_value}`, but received `#{received_value}`"
end
end
end

test do
title 'Symmetric Confidential Auth'
id :symmetric_auth
input :symmetric_auth_info,
type: :auth_info,
options: {
mode: 'auth',
components: [
{
name: :auth_type,
default: 'symmetric',
locked: true
}
]
},
default: AuthInfoConstants.symmetric_confidential_default.to_json
run do
AuthInfoConstants.symmetric_confidential_default.each do |key, original_value|
received_value = symmetric_auth_info.send(key)
assert received_value == original_value,
"Expected `#{key}` to equal `#{original_value}`, but received `#{received_value}`"
end
end
end

test do
title 'Asymmetric Confidential Auth'
id :asymmetric_auth
input :asymmetric_auth_info,
type: :auth_info,
options: {
mode: 'auth',
components: [
{
name: :auth_type,
default: 'asymmetric',
locked: true
}
]
},
default: AuthInfoConstants.asymmetric_confidential_default.to_json
run do
AuthInfoConstants.asymmetric_confidential_default.each do |key, original_value|
next if key == :jwks

received_value = asymmetric_auth_info.send(key)
assert received_value == original_value,
"Expected `#{key}` to equal `#{original_value}`, but received `#{received_value}`"
end
end
end

test do
title 'Backend Services Auth'
id :backend_services_auth
input :backend_services_auth_info,
type: :auth_info,
options: {
mode: 'auth',
components: [
{
name: :auth_type,
default: 'backend_services',
locked: true
}
]
},
default: AuthInfoConstants.backend_services_default.to_json
run do
AuthInfoConstants.backend_services_default.each do |key, original_value|
next if key == :jwks

received_value = backend_services_auth_info.send(key)
assert received_value == original_value,
"Expected `#{key}` to equal `#{original_value}`, but received `#{received_value}`"
end
end
end
end

group do
title 'access mode'

test do
title 'Public Auth'
id :public_auth
input :public_access_auth_info,
type: :auth_info,
options: {
mode: 'access',
components: [
{
name: :auth_type,
default: 'public',
locked: true
}
]
},
default: AuthInfoConstants.public_access_default.to_json
run do
AuthInfoConstants.public_access_default.each do |key, original_value|
received_value = public_access_auth_info.send(key)
assert received_value == original_value,
"Expected `#{key}` to equal `#{original_value}`, but received `#{received_value}`"
end
end
end

test do
title 'Symmetric Confidential Auth'
id :symmetric_auth
input :symmetric_access_auth_info,
type: :auth_info,
options: {
mode: 'access',
components: [
{
name: :auth_type,
default: 'symmetric',
locked: true
}
]
},
default: AuthInfoConstants.symmetric_confidential_access_default.to_json
run do
AuthInfoConstants.symmetric_confidential_access_default.each do |key, original_value|
received_value = symmetric_access_auth_info.send(key)
assert received_value == original_value,
"Expected `#{key}` to equal `#{original_value}`, but received `#{received_value}`"
end
end
end

test do
title 'Asymmetric Confidential Auth'
id :asymmetric_auth
input :asymmetric_access_auth_info,
type: :auth_info,
options: {
mode: 'access',
components: [
{
name: :auth_type,
default: 'asymmetric',
locked: true
}
]
},
default: AuthInfoConstants.asymmetric_confidential_access_default.to_json
run do
AuthInfoConstants.asymmetric_confidential_access_default.each do |key, original_value|
next if key == :jwks

received_value = asymmetric_access_auth_info.send(key)
assert received_value == original_value,
"Expected `#{key}` to equal `#{original_value}`, but received `#{received_value}`"
end
end
end

test do
title 'Backend Services Auth'
id :backend_services_auth
input :backend_services_access_auth_info,
type: :auth_info,
options: {
mode: 'access',
components: [
{
name: :auth_type,
default: 'backend_services',
locked: true
}
]
},
default: AuthInfoConstants.backend_services_access_default.to_json
run do
AuthInfoConstants.backend_services_access_default.each do |key, original_value|
next if key == :jwks

received_value = backend_services_access_auth_info.send(key)
assert received_value == original_value,
"Expected `#{key}` to equal `#{original_value}`, but received `#{received_value}`"
end
end
end
end
end
end
end
Loading
Loading