nyrn
/
openclaw
mirror of https://github.com/openclaw/openclaw.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

test: simplify runtime config coverage

This commit is contained in:
Peter Steinberger 2026-03-13 18:00:03 +00:00
parent e25fa446e8
commit 1f85c9af68
1 changed files with 57 additions and 42 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

81
src/gateway/server-runtime-config.test.ts
View File

@ -201,58 +201,73 @@ describe("resolveGatewayRuntimeConfig", () => {
);
});
it("rejects non-loopback control UI when allowed origins are missing", async () => {
await expect(
resolveGatewayRuntimeConfig({
it.each([
{
name: "rejects non-loopback control UI when allowed origins are missing",
cfg: {
gateway: {
bind: "lan",
bind: "lan" as const,
auth: TOKEN_AUTH,
},
},
port: 18789,
}),
).rejects.toThrow("non-loopback Control UI requires gateway.controlUi.allowedOrigins");
});
it("allows non-loopback control UI without allowed origins when dangerous fallback is enabled", async () => {
const result = await resolveGatewayRuntimeConfig({
expectedError: "non-loopback Control UI requires gateway.controlUi.allowedOrigins",
},
{
name: "allows non-loopback control UI without allowed origins when dangerous fallback is enabled",
cfg: {
gateway: {
bind: "lan",
bind: "lan" as const,
auth: TOKEN_AUTH,
controlUi: {
dangerouslyAllowHostHeaderOriginFallback: true,
},
},
},
port: 18789,
});
expect(result.bindHost).toBe("0.0.0.0");
expectedBindHost: "0.0.0.0",
},
{
name: "allows non-loopback control UI when allowed origins collapse after trimming",
cfg: {
gateway: {
bind: "lan" as const,
auth: TOKEN_AUTH,
controlUi: {
allowedOrigins: [" https://control.example.com "],
},
},
},
expectedBindHost: "0.0.0.0",
},
])("$name", async ({ cfg, expectedError, expectedBindHost }) => {
if (expectedError) {
await expect(resolveGatewayRuntimeConfig({ cfg, port: 18789 })).rejects.toThrow(
expectedError,
);
return;
}
const result = await resolveGatewayRuntimeConfig({ cfg, port: 18789 });
expect(result.bindHost).toBe(expectedBindHost);
});
});
describe("HTTP security headers", () => {
it("resolves strict transport security header from config", async () => {
const result = await resolveGatewayRuntimeConfig({
cfg: {
gateway: {
bind: "loopback",
auth: { mode: "none" },
http: {
securityHeaders: {
it.each([
{
name: "resolves strict transport security headers from config",
strictTransportSecurity: " max-age=31536000; includeSubDomains ",
expected: "max-age=31536000; includeSubDomains",
},
{
name: "does not set strict transport security when explicitly disabled",
strictTransportSecurity: false,
expected: undefined,
},
{
name: "does not set strict transport security when the value is blank",
strictTransportSecurity: " ",
expected: undefined,
},
},
port: 18789,
});
expect(result.strictTransportSecurityHeader).toBe("max-age=31536000; includeSubDomains");
});
it("does not set strict transport security when explicitly disabled", async () => {
])("$name", async ({ strictTransportSecurity, expected }) => {
const result = await resolveGatewayRuntimeConfig({
cfg: {
gateway: {
@ -260,7 +275,7 @@ describe("resolveGatewayRuntimeConfig", () => {
auth: { mode: "none" },
http: {
securityHeaders: {
strictTransportSecurity: false,
strictTransportSecurity,
},
},
},
@ -268,7 +283,7 @@ describe("resolveGatewayRuntimeConfig", () => {
port: 18789,
});
expect(result.strictTransportSecurityHeader).toBeUndefined();
expect(result.strictTransportSecurityHeader).toBe(expected);
});
});
});