bb5a5dd65e
系统性地修复、补充和强化项目的自动化测试能力: 1. 测试基础设施修复 - 修复 stubConcurrencyCache 缺失方法和构造函数参数不匹配 - 创建 testutil 共享包(stubs.go, fixtures.go, httptest.go) - 为所有 Stub 添加编译期接口断言 2. 中间件测试补充 - 新增 JWT 认证中间件测试(有效/过期/篡改/缺失 Token) - 补充 rate_limiter 和 recovery 中间件测试场景 3. 网关核心路径测试 - 新增账户选择、等待队列、流式响应、并发控制、计费、Claude Code 检测测试 - 覆盖负载均衡、粘性会话、SSE 转发、槽位管理等关键逻辑 4. 前端测试体系(11个新测试文件,163个测试用例) - Pinia stores: auth, app, subscriptions - API client: 请求拦截器、响应拦截器、401 刷新 - Router guards: 认证重定向、管理员权限、简易模式限制 - Composables: useForm, useTableLoader, useClipboard - Components: LoginForm, ApiKeyCreate, Dashboard 5. CI/CD 流水线重构 - 重构 backend-ci.yml 为统一的 ci.yml - 前后端 4 个并行 Job + Postgres/Redis services - Race 检测、覆盖率收集与门禁、Docker 构建验证 6. E2E 自动化测试 - e2e-test.sh 自动化脚本(Docker 启动→健康检查→测试→清理) - 用户注册→登录→API Key→网关调用完整链路测试 - Mock 模式和 API Key 脱敏支持 7. 修复预存问题 - tlsfingerprint dialer_test.go 缺失 build tag 导致集成测试编译冲突 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
144 lines
4.3 KiB
Go
144 lines
4.3 KiB
Go
package middleware
|
|
|
|
import (
|
|
"context"
|
|
"net/http"
|
|
"net/http/httptest"
|
|
"testing"
|
|
"time"
|
|
|
|
"github.com/gin-gonic/gin"
|
|
"github.com/redis/go-redis/v9"
|
|
"github.com/stretchr/testify/require"
|
|
)
|
|
|
|
func TestWindowTTLMillis(t *testing.T) {
|
|
require.Equal(t, int64(1), windowTTLMillis(500*time.Microsecond))
|
|
require.Equal(t, int64(1), windowTTLMillis(1500*time.Microsecond))
|
|
require.Equal(t, int64(2), windowTTLMillis(2500*time.Microsecond))
|
|
}
|
|
|
|
func TestRateLimiterFailureModes(t *testing.T) {
|
|
gin.SetMode(gin.TestMode)
|
|
|
|
rdb := redis.NewClient(&redis.Options{
|
|
Addr: "127.0.0.1:1",
|
|
DialTimeout: 50 * time.Millisecond,
|
|
ReadTimeout: 50 * time.Millisecond,
|
|
WriteTimeout: 50 * time.Millisecond,
|
|
})
|
|
t.Cleanup(func() {
|
|
_ = rdb.Close()
|
|
})
|
|
|
|
limiter := NewRateLimiter(rdb)
|
|
|
|
failOpenRouter := gin.New()
|
|
failOpenRouter.Use(limiter.Limit("test", 1, time.Second))
|
|
failOpenRouter.GET("/test", func(c *gin.Context) {
|
|
c.JSON(http.StatusOK, gin.H{"ok": true})
|
|
})
|
|
|
|
req := httptest.NewRequest(http.MethodGet, "/test", nil)
|
|
req.RemoteAddr = "127.0.0.1:1234"
|
|
recorder := httptest.NewRecorder()
|
|
failOpenRouter.ServeHTTP(recorder, req)
|
|
require.Equal(t, http.StatusOK, recorder.Code)
|
|
|
|
failCloseRouter := gin.New()
|
|
failCloseRouter.Use(limiter.LimitWithOptions("test", 1, time.Second, RateLimitOptions{
|
|
FailureMode: RateLimitFailClose,
|
|
}))
|
|
failCloseRouter.GET("/test", func(c *gin.Context) {
|
|
c.JSON(http.StatusOK, gin.H{"ok": true})
|
|
})
|
|
|
|
req = httptest.NewRequest(http.MethodGet, "/test", nil)
|
|
req.RemoteAddr = "127.0.0.1:1234"
|
|
recorder = httptest.NewRecorder()
|
|
failCloseRouter.ServeHTTP(recorder, req)
|
|
require.Equal(t, http.StatusTooManyRequests, recorder.Code)
|
|
}
|
|
|
|
func TestRateLimiterDifferentIPsIndependent(t *testing.T) {
|
|
gin.SetMode(gin.TestMode)
|
|
|
|
callCounts := make(map[string]int64)
|
|
originalRun := rateLimitRun
|
|
rateLimitRun = func(ctx context.Context, client *redis.Client, key string, windowMillis int64) (int64, bool, error) {
|
|
callCounts[key]++
|
|
return callCounts[key], false, nil
|
|
}
|
|
t.Cleanup(func() {
|
|
rateLimitRun = originalRun
|
|
})
|
|
|
|
limiter := NewRateLimiter(redis.NewClient(&redis.Options{Addr: "127.0.0.1:1"}))
|
|
|
|
router := gin.New()
|
|
router.Use(limiter.Limit("api", 1, time.Second))
|
|
router.GET("/test", func(c *gin.Context) {
|
|
c.JSON(http.StatusOK, gin.H{"ok": true})
|
|
})
|
|
|
|
// 第一个 IP 的请求应通过
|
|
req1 := httptest.NewRequest(http.MethodGet, "/test", nil)
|
|
req1.RemoteAddr = "10.0.0.1:1234"
|
|
rec1 := httptest.NewRecorder()
|
|
router.ServeHTTP(rec1, req1)
|
|
require.Equal(t, http.StatusOK, rec1.Code, "第一个 IP 的第一次请求应通过")
|
|
|
|
// 第二个 IP 的请求应独立通过(不受第一个 IP 的计数影响)
|
|
req2 := httptest.NewRequest(http.MethodGet, "/test", nil)
|
|
req2.RemoteAddr = "10.0.0.2:5678"
|
|
rec2 := httptest.NewRecorder()
|
|
router.ServeHTTP(rec2, req2)
|
|
require.Equal(t, http.StatusOK, rec2.Code, "第二个 IP 的第一次请求应独立通过")
|
|
|
|
// 第一个 IP 的第二次请求应被限流
|
|
req3 := httptest.NewRequest(http.MethodGet, "/test", nil)
|
|
req3.RemoteAddr = "10.0.0.1:1234"
|
|
rec3 := httptest.NewRecorder()
|
|
router.ServeHTTP(rec3, req3)
|
|
require.Equal(t, http.StatusTooManyRequests, rec3.Code, "第一个 IP 的第二次请求应被限流")
|
|
}
|
|
|
|
func TestRateLimiterSuccessAndLimit(t *testing.T) {
|
|
gin.SetMode(gin.TestMode)
|
|
|
|
originalRun := rateLimitRun
|
|
counts := []int64{1, 2}
|
|
callIndex := 0
|
|
rateLimitRun = func(ctx context.Context, client *redis.Client, key string, windowMillis int64) (int64, bool, error) {
|
|
if callIndex >= len(counts) {
|
|
return counts[len(counts)-1], false, nil
|
|
}
|
|
value := counts[callIndex]
|
|
callIndex++
|
|
return value, false, nil
|
|
}
|
|
t.Cleanup(func() {
|
|
rateLimitRun = originalRun
|
|
})
|
|
|
|
limiter := NewRateLimiter(redis.NewClient(&redis.Options{Addr: "127.0.0.1:1"}))
|
|
|
|
router := gin.New()
|
|
router.Use(limiter.Limit("test", 1, time.Second))
|
|
router.GET("/test", func(c *gin.Context) {
|
|
c.JSON(http.StatusOK, gin.H{"ok": true})
|
|
})
|
|
|
|
req := httptest.NewRequest(http.MethodGet, "/test", nil)
|
|
req.RemoteAddr = "127.0.0.1:1234"
|
|
recorder := httptest.NewRecorder()
|
|
router.ServeHTTP(recorder, req)
|
|
require.Equal(t, http.StatusOK, recorder.Code)
|
|
|
|
req = httptest.NewRequest(http.MethodGet, "/test", nil)
|
|
req.RemoteAddr = "127.0.0.1:1234"
|
|
recorder = httptest.NewRecorder()
|
|
router.ServeHTTP(recorder, req)
|
|
require.Equal(t, http.StatusTooManyRequests, recorder.Code)
|
|
}
|