[GPCAPIM-289]-[Pass integration tests through APIM proxy (with mock CIS2)]-[RP]

[BJSS-russell-pollock]

Description

To allow for the CI process to run before the APIM integration has been completed, the tests are currently executed against a container running within the same process, which invokes the lambda in the same way as it would be ran within AWS. This ticket looks to alter the target of the tests to instead point at the deployed APIM proxy for the Pull Request.

Type of changes

• Refactoring (non-breaking change)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would change existing functionality)
• Bug fix (non-breaking change which fixes an issue)

Checklist

• I have followed the code style of the project
• I have added tests to cover my changes
• I have updated the documentation accordingly
• This PR is a result of pair or mob programming
• Exceptions/Exclusions to coding standards (e.g. #noqa or #NOSONAR) are included within this Pull Request.

---

Sensitive Information Declaration

To ensure the utmost confidentiality and protect your and others privacy, we kindly ask you to NOT including PII (Personal Identifiable Information) / PID (Personal Identifiable Data) or any other sensitive data in this PR (Pull Request) and the codebase changes. We will remove any PR that do contain any sensitive information. We really appreciate your cooperation in this matter.

• I confirm that neither PII/PID nor sensitive data are included in this PR and the codebase changes.

[github-actions]

✅ Trivy gate: no Critical/High vulnerabilities.

Trivy Filesystem Scan Summary

Filesystem: infrastructure/environments/preview

Severity	Count
CRITICAL	0
HIGH	0
MEDIUM	0
LOW	0
UNKNOWN	0

✅ No vulnerabilities found.

[github-actions]

✅ Trivy gate: no Critical/High vulnerabilities.

Trivy Filesystem Scan Summary

Filesystem: .

Severity	Count
CRITICAL	0
HIGH	0
MEDIUM	0
LOW	0
UNKNOWN	0

✅ No vulnerabilities found.

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
100.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[github-actions]

Deployment Complete

• Preview URL: https://feature-gpcapim-289.dev.endpoints.clinical-data-gateway.national.nhs.uk — Health endpoint
  • Smoke Test: ✅ Passed (HTTP 200)
• Proxy URL: https://internal-dev.api.service.nhs.uk/clinical-data-gateway-api-poc-pr-101
• ECS Cluster: ecs-cluster
• ECS Service: pr-feature-gpcapim-289
• ALB Target: arn:aws:elasticloadbalancing:eu-west-2:900119715266:targetgroup/gpcapim-289/2fba30c5dfce7c5a

[williamjameswillis]

Composite action that can run any one of the test types: unit/contract/schema/integration/acceptance

[williamjameswillis]

or

Composite action that is used to run the test types:

[williamjameswillis]

junit and html

[williamjameswillis]

if the env defaults to remote:

env:
description: "Environment: local or remote"
required: false
default: "remote"

as you have further down - should this 'apigee-access-token' default to true as you say above that this token is required for a remote run?

[williamjameswillis]

what does this do?

if it masks the log when why log it out?

[williamjameswillis]

run: set -euo pipefail

[williamjameswillis]

same question about the mask

[williamjameswillis]

does this need the mask?

[williamjameswillis]

if we are setting the ENV as remote or local on each of the specific test jobs why do we need it here?