test: add unit tests for key server/models validation types#230
Merged
asdek merged 3 commits intovxcontrol:mainfrom Apr 7, 2026
Merged
test: add unit tests for key server/models validation types#230asdek merged 3 commits intovxcontrol:mainfrom
asdek merged 3 commits intovxcontrol:mainfrom
Conversation
Add comprehensive test coverage for the server/models package validation logic including enum types, struct validators, and custom validators. Test files added: - users_test.go: UserStatus, UserType, Login, Password, User, UserPassword, AuthCallback, UserRole, UserPreferences validation - providers_test.go: ProviderType, Provider, CreateProvider, PatchProvider, ProviderInfo validation - api_tokens_test.go: TokenStatus, APIToken, CreateAPITokenRequest, UpdateAPITokenRequest, APITokenClaims validation - flows_test.go: FlowStatus, TaskStatus, SubtaskStatus, ContainerStatus, ContainerType, Role, Privilege, RolePrivileges, PatchFlow validation - init_test.go: Custom validators (stpass, vmail, oauth_min_scope, solid, semver, semverex) and scanFromJSON helper
There was a problem hiding this comment.
Pull request overview
Adds unit test coverage for backend/pkg/server/models validation logic to ensure core model validators (users, providers, flows, API tokens, and custom validators) are exercised and regressions are caught early.
Changes:
- Introduces table-driven unit tests for enum/string validators and
Valid()methods across key models. - Adds boundary/negative-case tests for security-sensitive validation rules (password strength, OAuth scopes, JWT-related claims).
- Adds tests for helper/validator initialization and JSON scan helpers.
Reviewed changes
Copilot reviewed 5 out of 5 changed files in this pull request and generated 19 comments.
Show a summary per file
| File | Description |
|---|---|
| backend/pkg/server/models/users_test.go | Adds tests for user/login/password models, role linking, and preferences JSON scan/value behavior. |
| backend/pkg/server/models/providers_test.go | Adds tests for provider type validation and provider create/patch/info payload validation. |
| backend/pkg/server/models/api_tokens_test.go | Adds tests for API token status/struct validation, TTL boundaries, and claims validation. |
| backend/pkg/server/models/flows_test.go | Adds tests for flow/task/subtask/container status/type validation and patch action validation. |
| backend/pkg/server/models/init_test.go | Adds tests for custom validators (stpass, vmail, oauth_min_scope, solid, semver, semverex) and scanFromJSON. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
Comment on lines
+401
to
+402
| assert.Error(t, up.Valid()) | ||
| assert.Contains(t, up.Valid().Error(), "user_id is required") |
There was a problem hiding this comment.
This assertion calls up.Valid() twice; the second call is unnecessary and can hide issues if Valid() becomes stateful. Store the error once (e.g., err := up.Valid()) and assert on err/err.Error().
Suggested change
| assert.Error(t, up.Valid()) | |
| assert.Contains(t, up.Valid().Error(), "user_id is required") | |
| err := up.Valid() | |
| assert.Error(t, err) | |
| assert.Contains(t, err.Error(), "user_id is required") |
Add missing test coverage identified by cross-review: New files: - assistants_test.go: AssistantStatus enum, Assistant struct, CreateAssistant, PatchAssistant (stop/input actions), AssistantFlow nested validation - prompts_test.go: PromptType enum (8 valid constants from templates pkg), Prompt struct, PatchPrompt validation Extended existing files: - users_test.go: add AuthCallback positive-path test, UserRolePrivileges validation, fix brittle double-call assertion in UserPreferences test - api_tokens_test.go: add APITokenWithSecret validation (valid, invalid embedded token, invalid JWT) - flows_test.go: add Flow.Valid, FlowTasksSubtasks.Valid, FlowContainers.Valid, Task.Valid, TaskSubtasks.Valid, Subtask.Valid, Container.Valid with valid/invalid/missing-field cases
mason5052
changed the title
Contributor
|
hey @mason5052 there are correct notice from Copilot side, you need to change these syntax constructions to make immutable |
Add tt := tt inside each for-range loop before t.Run to ensure parallel subtests capture their own immutable copy of the test case.
Contributor
Author
|
Fixed -- added |
asdek
approved these changes
Apr 7, 2026
Contributor
asdek
left a comment
asdek
left a comment
There was a problem hiding this comment.
Thank you for PR and fixes!
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
What
Add unit tests for validation logic across key
server/modelstypes: users, providers, API tokens, flows, tasks, containers, assistants, prompts, roles, and custom validators.This does not cover every exported validator in the package (log models, analytics, msgchains, screenshots, and vecstore models are not included).
Why
These model types contain security-sensitive validation functions (password strength, OAuth scope, JWT claims, API token TTL bounds) and core domain validation (enum status types, struct field requirements, nested model validation). None had test coverage.
Test Files
users_test.goproviders_test.goapi_tokens_test.goflows_test.goinit_test.goassistants_test.goprompts_test.goTest Approach
t.Parallel()for fast executionvalidateandscanFromJSONVerification