Kharec/goyco
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

test: ensure refresh token rotation is documented

Browse Source
This commit is contained in:
Sandro CURY CAZZANIGA
2026-01-09 18:43:25 +01:00
parent 05e69c7f36
commit 34fbc2f8b1
1 changed files with 34 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

34
internal/e2e/api_documentation_test.go
View File

@@ -218,5 +218,39 @@ func TestE2E_APIEndpointDocumentation(t *testing.T) {
t.Logf("Auth endpoint %s may use inline request body", endpoint) t.Logf("Auth endpoint %s may use inline request body", endpoint)
} }
} }
refreshEndpointData, ok := paths["/api/auth/refresh"].(map[string]any)
if ok {
postMethod, ok := refreshEndpointData["post"].(map[string]any)
if ok {
responses, ok := postMethod["responses"].(map[string]any)
if ok {
successResponse, ok := responses["200"].(map[string]any)
if ok {
content, ok := successResponse["content"].(map[string]any)
if ok {
applicationJson, ok := content["application/json"].(map[string]any)
if ok {
schema, ok := applicationJson["schema"].(map[string]any)
if ok {
properties, ok := schema["properties"].(map[string]any)
if !ok {
data, ok := schema["data"].(map[string]any)
if ok {
properties, ok = data["properties"].(map[string]any)
}
}
if properties != nil {
if properties["refresh_token"] == nil {
t.Error("Refresh endpoint response schema missing refresh_token field (rotation not documented)")
}
}
}
}
}
}
}
}
}
}) })
} }