External-Mirrors/keycloak
2
0
Fork 0
mirror of https://github.com/keycloak/keycloak.git synced 2026-01-09 23:12:06 -03:30
Code Issues Packages Projects Releases Wiki Activity

fix: deprecating the default db value in production mode (#35674)

Browse Source 
closes: #23805



Fix typo in docs, some improvements



adding a negative assertion



Update docs/documentation/upgrading/topics/changes/changes-26_1_0.adoc

Signed-off-by: Steven Hawkins <shawkins@redhat.com>
Co-authored-by: Václav Muzikář <vaclav@muzikari.cz>
This commit is contained in:
Steven Hawkins 2024-12-13 05:59:55 -05:00 committed by GitHub
parent 0265cb6254
commit cb1d28d043
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
43 changed files with 211 additions and 140 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
docs/documentation/upgrading/topics/changes/changes-26_1_0.adoc
View File

@ -31,6 +31,10 @@ from the client instead of removing protocol mappers.
This lists functionality that continues to work as before in this release, but will be removed in a future major release.
=== Default `db` option for production deprecated.
In previous releases, the `db` option defaulted to `dev-file` both in production (`start`) and development (`start-dev`) modes while `dev-file` has never been supported in the production mode. In this release, we have deprecated this behaviour and in some future release the `db` option won't default to `dev-file` in production mode. For `build` or non-optimized `start` and non-server commands `import`, `export`, or `bootstrap-admin` in the production profile, a value should be explicitly supplied. This is to prevent the unintentional usage of the `dev-file` (H2) database in a production environment, which is typically indicative of a misconfiguration.
=== Deprecated APIs for JavaScript Authorization client
The following APIs for the JavaScript Authorization client are deprecated and will be removed in the next major release:

2
quarkus/config-api/src/main/java/org/keycloak/config/DatabaseOptions.java
View File

@ -18,7 +18,7 @@ public class DatabaseOptions {
public static final Option<String> DB = new OptionBuilder<>("db", String.class)
.category(OptionCategory.DATABASE)
.description("The database vendor.")
.description("The database vendor. In production mode the default value of 'dev-file' is deprecated, you should explicitly specify the db instead.")
.defaultValue("dev-file")
.expectedValues(Database.getDatabaseAliases())
.buildTime(true)

30
quarkus/runtime/src/main/java/org/keycloak/quarkus/runtime/cli/Picocli.java
View File

@ -41,6 +41,7 @@ import java.util.HashSet;
import java.util.Iterator;
import java.util.List;
import java.util.Map;
import java.util.Objects;
import java.util.Optional;
import java.util.Properties;
import java.util.Set;
@ -385,13 +386,7 @@ public class Picocli {
String configValueStr = configValue.getValue();
// don't consider missing or anything below standard env properties
if (configValueStr == null) {
if (Environment.isRuntimeMode() && mapper.isEnabled() && mapper.isRequired()) {
handleRequired(missingOption, mapper);
}
return;
}
if (!isUserModifiable(configValue)) {
if (configValueStr != null && !isUserModifiable(configValue)) {
return;
}
@ -401,7 +396,7 @@ public class Picocli {
}
// only check build-time for a rebuild, we'll check the runtime later
if (!mapper.isRunTime() || !isRebuild()) {
if (configValueStr != null && (!mapper.isRunTime() || !isRebuild())) {
if (PropertyMapper.isCliOption(configValue)) {
throw new KcUnmatchedArgumentException(abstractCommand.getCommandLine().orElseThrow(), List.of(mapper.getCliFormat()));
} else {
@ -413,13 +408,22 @@ public class Picocli {
if (mapper.isBuildTime() && !options.includeBuildTime) {
String currentValue = getRawPersistedProperty(mapper.getFrom()).orElse(null);
if (!configValueStr.equals(currentValue)) {
if (!Objects.equals(configValueStr, currentValue)) {
ignoredBuildTime.add(mapper.getFrom());
return;
}
}
if (mapper.isRunTime() && !options.includeRuntime) {
ignoredRunTime.add(mapper.getFrom());
if (configValueStr != null) {
ignoredRunTime.add(mapper.getFrom());
}
return;
}
if (configValueStr == null) {
if (mapper.isRequired()) {
handleRequired(missingOption, mapper);
}
return;
}
@ -551,6 +555,10 @@ public class Picocli {
messages.add(sb.toString());
}
public void warn(String text) {
warn(text, getOutWriter());
}
private static void warn(String text, PrintWriter outwriter) {
ColorScheme defaultColorScheme = picocli.CommandLine.Help.defaultColorScheme(Help.Ansi.AUTO);
outwriter.println(defaultColorScheme.apply("WARNING: ", Arrays.asList(Style.fg_yellow, Style.bold)) + text);
@ -589,7 +597,7 @@ public class Picocli {
// only persist build options resolved from config sources and not default values
return;
}
// since we're presisting all quarkus values, this may leak some runtime information - we don't want
// since we're persisting all quarkus values, this may leak some runtime information - we don't want
// to capture expanded expressions that may be referencing environment variables
String stringValue = value.getValue();
if (quarkus && value.getRawValue() != null) {

20
quarkus/runtime/src/main/java/org/keycloak/quarkus/runtime/cli/command/Build.java
View File

@ -18,13 +18,13 @@
package org.keycloak.quarkus.runtime.cli.command;
import static org.keycloak.config.ClassLoaderOptions.QUARKUS_REMOVED_ARTIFACTS_PROPERTY;
import static org.keycloak.config.DatabaseOptions.DB;
import static org.keycloak.quarkus.runtime.Environment.getHomePath;
import static org.keycloak.quarkus.runtime.Environment.isDevProfile;
import static org.keycloak.quarkus.runtime.cli.Picocli.println;
import io.quarkus.runtime.LaunchMode;
import org.keycloak.config.OptionCategory;
import org.keycloak.quarkus.runtime.Environment;
import org.keycloak.quarkus.runtime.Messages;
import org.keycloak.quarkus.runtime.configuration.Configuration;
@ -36,7 +36,6 @@ import io.smallrye.config.ConfigValue;
import picocli.CommandLine;
import picocli.CommandLine.Command;
import java.util.List;
import java.util.Optional;
@Command(name = Build.NAME,
@ -74,10 +73,13 @@ public final class Build extends AbstractCommand implements Runnable {
if (org.keycloak.common.util.Environment.getProfile() == null) {
Environment.setProfile(Environment.PROD_PROFILE_VALUE);
}
exitWithErrorIfDevProfileIsSet();
checkProfileAndDb();
System.setProperty("quarkus.launch.rebuild", "true");
validateConfig();
PersistedConfigSource.getInstance().runWithDisabled(() -> {
validateConfig();
return null;
});
println(spec.commandLine(), "Updating the configuration and installing your custom providers, if any. Please wait.");
@ -114,13 +116,7 @@ public final class Build extends AbstractCommand implements Runnable {
return true;
}
@Override
public List<OptionCategory> getOptionCategories() {
// all options should work for the build command, otherwise re-augmentation might fail due to unknown options
return super.getOptionCategories();
}
private void exitWithErrorIfDevProfileIsSet() {
private void checkProfileAndDb() {
if (Environment.isDevProfile()) {
String cmd = Environment.getParsedCommand().map(AbstractCommand::getName).orElse(getName());
// we allow start-dev, and import|export|bootstrap-admin --profile=dev
@ -128,6 +124,8 @@ public final class Build extends AbstractCommand implements Runnable {
if (Start.NAME.equals(cmd) || Build.NAME.equals(cmd)) {
executionError(spec.commandLine(), Messages.devProfileNotAllowedError(cmd));
}
} else if (Configuration.getConfigValue(DB).getConfigSourceOrdinal() == 0) {
picocli.warn("Usage of the default value for the db option in the production profile is deprecated. Please explicitly set the db instead.");
}
}

4
quarkus/runtime/src/main/java/org/keycloak/quarkus/runtime/configuration/Configuration.java
View File

@ -104,6 +104,10 @@ public final class Configuration {
return getConfig().getPropertyNames();
}
public static ConfigValue getConfigValue(Option<?> option) {
return getKcConfigValue(option.getKey());
}
public static ConfigValue getConfigValue(String propertyName) {
return getConfig().getConfigValue(propertyName);
}

3
quarkus/runtime/src/main/java/org/keycloak/quarkus/runtime/configuration/mappers/DatabasePropertyMappers.java
View File

@ -2,6 +2,7 @@ package org.keycloak.quarkus.runtime.configuration.mappers;
import io.quarkus.datasource.common.runtime.DatabaseKind;
import io.smallrye.config.ConfigSourceInterceptorContext;
import org.keycloak.config.DatabaseOptions;
import org.keycloak.config.TransactionOptions;
import org.keycloak.config.database.Database;
@ -114,7 +115,7 @@ final class DatabasePropertyMappers {
private static boolean isDevModeDatabase(ConfigSourceInterceptorContext context) {
String db = Configuration.getConfig().getConfigValue("kc.db").getValue();
return Database.getDatabaseKind(db).get().equals(DatabaseKind.H2);
return Database.getDatabaseKind(db).filter(DatabaseKind.H2::equals).isPresent();
}
private static String transformDialect(String db, ConfigSourceInterceptorContext context) {

2
quarkus/runtime/src/main/resources/META-INF/keycloak.conf
View File

@ -1,5 +1,5 @@
# Default and non-production grade database vendor
db=dev-file
%dev.db=dev-file
# Default, and insecure, and non-production grade configuration for the development profile
%dev.http-enabled=true

60
quarkus/runtime/src/test/java/org/keycloak/quarkus/runtime/cli/PicocliTest.java
View File

@ -27,10 +27,12 @@ import static org.junit.Assert.assertTrue;
import java.io.PrintWriter;
import java.io.StringWriter;
import java.util.List;
import java.util.Map;
import java.util.Properties;
import java.util.stream.Stream;
import org.junit.Ignore;
import org.junit.Test;
import org.keycloak.quarkus.runtime.Environment;
import org.keycloak.quarkus.runtime.KeycloakMain;
@ -88,6 +90,12 @@ public class PicocliTest extends AbstractConfigurationTest {
// skip
}
@Override
protected void initProfile(List<String> cliArgs, String currentCommandName) {
super.initProfile(cliArgs, currentCommandName);
config = createConfig();
}
@Override
public void build() throws Throwable {
reaug = true;
@ -99,7 +107,6 @@ public class PicocliTest extends AbstractConfigurationTest {
NonRunningPicocli pseudoLaunch(String... args) {
NonRunningPicocli nonRunningPicocli = new NonRunningPicocli();
ConfigArgsConfigSource.setCliArgs(args);
// TODO: this needs refined, otherwise profile handling will not be correct
nonRunningPicocli.config = createConfig();
KeycloakMain.main(args, nonRunningPicocli);
return nonRunningPicocli;
@ -255,14 +262,14 @@ public class PicocliTest extends AbstractConfigurationTest {
@Test
public void spiRuntimeAllowedWithStart() {
NonRunningPicocli nonRunningPicocli = pseudoLaunch("start", "--http-enabled=true", "--spi-something-pass=changeme");
NonRunningPicocli nonRunningPicocli = pseudoLaunch("start", "--db=dev-file", "--http-enabled=true", "--spi-something-pass=changeme");
assertEquals(CommandLine.ExitCode.OK, nonRunningPicocli.exitCode);
assertThat(nonRunningPicocli.getOutString(), not(containsString("kc.spi-something-pass")));
}
@Test
public void spiRuntimeWarnWithBuild() {
NonRunningPicocli nonRunningPicocli = pseudoLaunch("build", "--spi-something-pass=changeme");
NonRunningPicocli nonRunningPicocli = pseudoLaunch("build", "--db=dev-file", "--spi-something-pass=changeme");
assertEquals(CommandLine.ExitCode.OK, nonRunningPicocli.exitCode);
assertThat(nonRunningPicocli.getOutString(), containsString("The following run time options were found, but will be ignored during build time: kc.spi-something-pass"));
}
@ -290,7 +297,7 @@ public class PicocliTest extends AbstractConfigurationTest {
@Test
public void testReaugFromProdToDev() {
build("build");
build("build", "--db=dev-file");
Environment.setRebuildCheck(); // will be reset by the system properties logic
NonRunningPicocli nonRunningPicocli = pseudoLaunch("start-dev", "--hostname=name", "--http-enabled=true");
@ -309,13 +316,14 @@ public class PicocliTest extends AbstractConfigurationTest {
NonRunningPicocli nonRunningPicocli = pseudoLaunch(args);
assertTrue(nonRunningPicocli.reaug);
assertEquals(CommandLine.ExitCode.OK, nonRunningPicocli.exitCode);
assertFalse(nonRunningPicocli.getOutString(), nonRunningPicocli.getOutString().contains("ignored"));
onAfter();
addPersistedConfigValues((Map)nonRunningPicocli.buildProps);
}
@Test
public void testReaugFromProdToDevExport() {
build("build");
build("build", "--db=dev-file");
Environment.setRebuildCheck(); // will be reset by the system properties logic
NonRunningPicocli nonRunningPicocli = pseudoLaunch("--profile=dev", "export", "--file=file");
@ -325,12 +333,22 @@ public class PicocliTest extends AbstractConfigurationTest {
@Test
public void testNoReaugFromProdToExport() {
build("build");
build("build", "--db=dev-file");
Environment.setRebuildCheck(); // will be reset by the system properties logic
NonRunningPicocli nonRunningPicocli = pseudoLaunch("export", "--db=dev-file", "--file=file");
assertEquals(CommandLine.ExitCode.OK, nonRunningPicocli.exitCode);
assertFalse(nonRunningPicocli.reaug);
}
@Ignore("Not valid until db is required for production")
@Test
public void testDBRequiredAutoBuild() {
build("build", "--db=dev-file");
Environment.setRebuildCheck(); // will be reset by the system properties logic
NonRunningPicocli nonRunningPicocli = pseudoLaunch("export", "--file=file");
assertEquals(CommandLine.ExitCode.OK, nonRunningPicocli.exitCode);
assertFalse(nonRunningPicocli.reaug);
assertEquals(CommandLine.ExitCode.USAGE, nonRunningPicocli.exitCode);
}
@Test
@ -338,7 +356,7 @@ public class PicocliTest extends AbstractConfigurationTest {
build("start-dev");
Environment.setRebuildCheck(); // will be reset by the system properties logic
NonRunningPicocli nonRunningPicocli = pseudoLaunch("start", "--hostname=name", "--http-enabled=true");
NonRunningPicocli nonRunningPicocli = pseudoLaunch("start", "--db=dev-file", "--hostname=name", "--http-enabled=true");
assertEquals(CommandLine.ExitCode.OK, nonRunningPicocli.exitCode);
assertTrue(nonRunningPicocli.reaug);
}
@ -358,7 +376,7 @@ public class PicocliTest extends AbstractConfigurationTest {
build("start-dev");
Environment.setRebuildCheck(); // will be reset by the system properties logic
NonRunningPicocli nonRunningPicocli = pseudoLaunch("export", "--file=file");
NonRunningPicocli nonRunningPicocli = pseudoLaunch("export", "--db=dev-file", "--file=file");
assertEquals(CommandLine.ExitCode.OK, nonRunningPicocli.exitCode);
assertTrue(nonRunningPicocli.reaug);
assertEquals("prod", nonRunningPicocli.buildProps.getProperty(org.keycloak.common.util.Environment.PROFILE));;
@ -366,10 +384,10 @@ public class PicocliTest extends AbstractConfigurationTest {
@Test
public void testOptimizedReaugmentationMessage() {
build("build");
build("build", "--db=dev-file");
Environment.setRebuildCheck(); // will be reset by the system properties logic
NonRunningPicocli nonRunningPicocli = pseudoLaunch("start", "--features=docker", "--hostname=name", "--http-enabled=true");
NonRunningPicocli nonRunningPicocli = pseudoLaunch("start", "--db=dev-file", "--features=docker", "--hostname=name", "--http-enabled=true");
assertEquals(CommandLine.ExitCode.OK, nonRunningPicocli.exitCode);
assertThat(nonRunningPicocli.getOutString(), containsString("features=<unset> > features=docker"));
assertTrue(nonRunningPicocli.reaug);
@ -377,7 +395,7 @@ public class PicocliTest extends AbstractConfigurationTest {
@Test
public void fastStartOptimizedSucceeds() {
build("build");
build("build", "--db=dev-file");
System.setProperty("kc.http-enabled", "true");
System.setProperty("kc.hostname-strict", "false");
@ -411,4 +429,20 @@ public class PicocliTest extends AbstractConfigurationTest {
assertEquals("WARN", value.getValue());
}
@Test
public void warnDBRequired() {
// dev profile has a default
NonRunningPicocli nonRunningPicocli = pseudoLaunch("start-dev");
assertEquals(CommandLine.ExitCode.OK, nonRunningPicocli.exitCode);
assertThat(nonRunningPicocli.getOutString(),
not(containsString("Usage of the default value for the db option")));
onAfter();
// prod profiles warn about db
nonRunningPicocli = pseudoLaunch("build");
assertEquals(CommandLine.ExitCode.OK, nonRunningPicocli.exitCode);
assertThat(nonRunningPicocli.getOutString(),
containsString("Usage of the default value for the db option in the production profile is deprecated. Please explicitly set the db instead."));
}
}

35
quarkus/runtime/src/test/java/org/keycloak/quarkus/runtime/configuration/test/AbstractConfigurationTest.java
View File

@ -27,7 +27,6 @@ import io.smallrye.config.ConfigValue.ConfigValueBuilder;
import org.eclipse.microprofile.config.ConfigProvider;
import org.eclipse.microprofile.config.spi.ConfigProviderResolver;
import org.junit.After;
import org.junit.AfterClass;
import org.junit.BeforeClass;
import org.keycloak.Config;
import org.keycloak.common.Profile;
@ -93,6 +92,7 @@ public abstract class AbstractConfigurationTest {
public static void setSystemProperty(String key, String value, Runnable runnable) {
System.setProperty(key, value);
createConfig();
try {
runnable.run();
} finally {
@ -100,32 +100,32 @@ public abstract class AbstractConfigurationTest {
}
}
@AfterClass
public static void resetConfigruation() {
ConfigurationTest.createConfig(); // onAfter doesn't actually reset the config
}
@After
public void onAfter() {
Properties current = System.getProperties();
for (String name : current.stringPropertyNames()) {
if (!SYSTEM_PROPERTIES.containsKey(name)) {
current.remove(name);
}
}
@BeforeClass
public static void resetConfiguration() {
System.setProperties((Properties) SYSTEM_PROPERTIES.clone());
for (String name : new HashMap<>(System.getenv()).keySet()) {
if (!ENVIRONMENT_VARIABLES.containsKey(name)) {
removeEnvVar(name);
}
}
ENVIRONMENT_VARIABLES.forEach((key, value) -> {
if (!System.getenv(key).equals(value)) {
putEnvVar(key, value);
}
});
SmallRyeConfigProviderResolver.class.cast(ConfigProviderResolver.instance()).releaseConfig(ConfigProvider.getConfig());
PropertyMappers.reset();
ConfigArgsConfigSource.setCliArgs();
PersistedConfigSource.getInstance().getConfigValueProperties().clear();
Profile.reset();
ConfigProviderResolver.setInstance(null);
}
@After
public void onAfter() {
resetConfiguration();
}
protected Config.Scope initConfig(String... scope) {
@ -169,6 +169,9 @@ public abstract class AbstractConfigurationTest {
protected static void addPersistedConfigValues(Map<String, String> values) {
var configValueProps = PersistedConfigSource.getInstance().getConfigValueProperties();
values.forEach((k, v) -> configValueProps.put(k, new ConfigValueBuilder().withName(k).withValue(v).build()));
values.forEach((k, v) -> configValueProps.put(k,
new ConfigValueBuilder().withName(k).withValue(v).withRawValue(v)
.withConfigSourceName(PersistedConfigSource.getInstance().getName())
.withConfigSourceOrdinal(PersistedConfigSource.getInstance().getOrdinal()).build()));
}
}

14
quarkus/runtime/src/test/java/org/keycloak/quarkus/runtime/configuration/test/IgnoredArtifactsTest.java
View File

@ -18,7 +18,6 @@
package org.keycloak.quarkus.runtime.configuration.test;
import org.hamcrest.CoreMatchers;
import org.junit.BeforeClass;
import org.junit.Test;
import org.keycloak.common.Profile;
import org.keycloak.common.profile.PropertiesProfileConfigResolver;
@ -26,6 +25,7 @@ import org.keycloak.config.DatabaseOptions;
import org.keycloak.config.HealthOptions;
import org.keycloak.config.MetricsOptions;
import org.keycloak.config.Option;
import org.keycloak.quarkus.runtime.configuration.ConfigArgsConfigSource;
import org.keycloak.quarkus.runtime.configuration.Configuration;
import org.keycloak.quarkus.runtime.configuration.IgnoredArtifacts;
@ -46,14 +46,8 @@ import static org.keycloak.quarkus.runtime.configuration.IgnoredArtifacts.JDBC_M
import static org.keycloak.quarkus.runtime.configuration.IgnoredArtifacts.JDBC_ORACLE;
import static org.keycloak.quarkus.runtime.configuration.IgnoredArtifacts.JDBC_POSTGRES;
import static org.keycloak.quarkus.runtime.configuration.MicroProfileConfigProvider.NS_KEYCLOAK_PREFIX;
import static org.keycloak.quarkus.runtime.configuration.test.ConfigurationTest.setSystemProperty;
public class IgnoredArtifactsTest {
@BeforeClass
public static void resetConfigruation() {
ConfigurationTest.createConfig(); // make sure we're dealing with a clean config
}
public class IgnoredArtifactsTest extends AbstractConfigurationTest {
@Test
public void fipsDisabled() {
@ -113,6 +107,10 @@ public class IgnoredArtifactsTest {
@Test
public void multipleDatasources() {
// initialize the test with a default database
ConfigArgsConfigSource.setCliArgs("--db=dev-file");
createConfig();
var defaultDS = Configuration.getOptionalValue("quarkus.datasource.db-kind");
assertThat(defaultDS.isPresent(), is(true));
assertThat(defaultDS.get(), is("h2"));

1
quarkus/server/pom.xml
View File

@ -77,6 +77,7 @@
<finalName>keycloak</finalName>
<systemProperties>
<kc.home.dir>${kc.home.dir}</kc.home.dir>
<kc.db>dev-file</kc.db>
<java.util.concurrent.ForkJoinPool.common.threadFactory>io.quarkus.bootstrap.forkjoin.QuarkusForkJoinWorkerThreadFactory</java.util.concurrent.ForkJoinPool.common.threadFactory>
</systemProperties>
</configuration>

14
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/BootstrapAdminDistTest.java vendored
View File

@ -36,7 +36,7 @@ import static org.junit.jupiter.api.Assertions.assertTrue;
public class BootstrapAdminDistTest {
@Test
@Launch({ "bootstrap-admin", "user", "--no-prompt" })
@Launch({ "bootstrap-admin", "user", "--db=dev-file", "--no-prompt" })
void failNoPassword(LaunchResult result) {
assertTrue(result.getErrorOutput().contains("No password provided"),
() -> "The Output:\n" + result.getErrorOutput() + "doesn't contains the expected string.");
@ -44,14 +44,14 @@ public class BootstrapAdminDistTest {
/**
@Test
@Launch({ "bootstrap-admin", "user", "--expiration=tomorrow" })
@Launch({ "bootstrap-admin", "user", "--db=dev-file", "--expiration=tomorrow" })
void failBadExpiration(LaunchResult result) {
assertTrue(result.getErrorOutput().contains("Invalid value for option '--expiration': 'tomorrow' is not an int"),
() -> "The Output:\n" + result.getErrorOutput() + "doesn't contains the expected string.");
}*/
@Test
@Launch({ "bootstrap-admin", "user", "--username=admin", "--password:env=MY_PASSWORD" })
@Launch({ "bootstrap-admin", "user", "--db=dev-file", "--username=admin", "--password:env=MY_PASSWORD" })
void failEnvNotSet(LaunchResult result) {
assertTrue(result.getErrorOutput().contains("Environment variable MY_PASSWORD not found"),
() -> "The Output:\n" + result.getErrorOutput() + "doesn't contains the expected string.");
@ -59,7 +59,7 @@ public class BootstrapAdminDistTest {
@Test
@WithEnvVars({"MY_PASSWORD", "admin123"})
@Launch({ "bootstrap-admin", "user", "--username=admin", "--password:env=MY_PASSWORD" })
@Launch({ "bootstrap-admin", "user", "--db=dev-file", "--username=admin", "--password:env=MY_PASSWORD" })
void createAdmin(LaunchResult result) {
assertTrue(result.getErrorOutput().isEmpty(), result.getErrorOutput());
}
@ -72,14 +72,14 @@ public class BootstrapAdminDistTest {
}
@Test
@Launch({ "bootstrap-admin", "service", "--no-prompt" })
@Launch({ "bootstrap-admin", "service", "--db=dev-file", "--no-prompt" })
void failServiceAccountNoSecret(LaunchResult result) {
assertTrue(result.getErrorOutput().contains("No client secret provided"),
() -> "The Output:\n" + result.getErrorOutput() + "doesn't contains the expected string.");
}
@Test
@Launch({ "bootstrap-admin", "service", "--client-id=admin", "--client-secret:env=MY_SECRET" })
@Launch({ "bootstrap-admin", "service", "--db=dev-file", "--client-id=admin", "--client-secret:env=MY_SECRET" })
void failServiceAccountEnvNotSet(LaunchResult result) {
assertTrue(result.getErrorOutput().contains("Environment variable MY_SECRET not found"),
() -> "The Output:\n" + result.getErrorOutput() + "doesn't contains the expected string.");
@ -89,7 +89,7 @@ public class BootstrapAdminDistTest {
@WithEnvVars({"MY_SECRET", "admin123"})
void createAndUseSericeAccountAdmin(KeycloakDistribution dist) throws Exception {
RawKeycloakDistribution rawDist = dist.unwrap(RawKeycloakDistribution.class);
CLIResult result = rawDist.run("bootstrap-admin", "service", "--client-id=admin", "--client-secret:env=MY_SECRET");
CLIResult result = rawDist.run("bootstrap-admin", "service", "--db=dev-file", "--client-id=admin", "--client-secret:env=MY_SECRET");
assertTrue(result.getErrorOutput().isEmpty(), result.getErrorOutput());

3
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/BuildAndStartDistTest.java vendored
View File

@ -46,7 +46,7 @@ public class BuildAndStartDistTest {
void testBuildAndStart(KeycloakDistribution dist) {
RawKeycloakDistribution rawDist = dist.unwrap(RawKeycloakDistribution.class);
// start using based on the build options set via CLI
CLIResult cliResult = rawDist.run("build");
CLIResult cliResult = rawDist.run("build", "--db=dev-file");
cliResult.assertBuild();
cliResult = rawDist.run("start", "--http-enabled=true", "--hostname-strict=false", OPTIMIZED_BUILD_OPTION_LONG);
cliResult.assertNoBuild();
@ -56,6 +56,7 @@ public class BuildAndStartDistTest {
rawDist.setProperty("http-enabled", "true");
rawDist.setProperty("hostname-strict", "false");
rawDist.setProperty("http-relative-path", "/auth");
rawDist.setProperty("db", "dev-file");
cliResult = rawDist.run("build");
cliResult.assertBuild();
cliResult = rawDist.run("start", OPTIMIZED_BUILD_OPTION_LONG);

2
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/BuildCommandDistTest.java vendored
View File

@ -39,7 +39,7 @@ import java.nio.file.Paths;
class BuildCommandDistTest {
@Test
@Launch({ "build" })
@Launch({ "build", "--db=dev-file" })
void resetConfig(CLIResult result) {
assertTrue(result.getOutput().contains("Updating the configuration and installing your custom providers, if any. Please wait."),
() -> "The Output:\n" + result.getOutput() + "doesn't contains the expected string.");

4
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/ClusterConfigDistTest.java vendored
View File

@ -87,7 +87,7 @@ public class ClusterConfigDistTest {
@Test
@EnabledOnOs(value = { OS.LINUX, OS.MAC }, disabledReason = "different shell escaping behaviour on Windows.")
@Launch({ "start", "--log-level=info,org.infinispan.remoting.transport.jgroups.JGroupsTransport:debug","--http-enabled=true", "--hostname-strict=false" })
@Launch({ "start", "--db=dev-file", "--log-level=info,org.infinispan.remoting.transport.jgroups.JGroupsTransport:debug","--http-enabled=true", "--hostname-strict=false" })
void testStartDefaultsToClustering(CLIResult result) {
result.assertStarted();
result.assertClusteredCache();
@ -96,7 +96,7 @@ public class ClusterConfigDistTest {
@Test
@EnabledOnOs(value = { OS.WINDOWS }, disabledReason = "different shell behaviour on Windows.")
@Launch({ "start", "--log-level=\"info,org.infinispan.remoting.transport.jgroups.JGroupsTransport:debug\"","--http-enabled=true", "--hostname-strict=false" })
@Launch({ "start", "--db=dev-file", "--log-level=\"info,org.infinispan.remoting.transport.jgroups.JGroupsTransport:debug\"","--http-enabled=true", "--hostname-strict=false" })
void testWinStartDefaultsToClustering(CLIResult result) {
result.assertStarted();
result.assertClusteredCache();

2
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/ExportDistTest.java vendored
View File

@ -25,7 +25,7 @@ import org.keycloak.it.junit5.extension.RawDistOnly;
import org.keycloak.it.utils.KeycloakDistribution;
@RawDistOnly(reason = "Containers are immutable")
@DistributionTest
@DistributionTest(defaultOptions = "--db=dev-file")
@Tag(DistributionTest.SMOKE)
public class ExportDistTest {

2
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/FeaturesDistTest.java vendored
View File

@ -37,7 +37,7 @@ public class FeaturesDistTest {
@Test
public void testEnableOnBuild(KeycloakDistribution dist) {
CLIResult cliResult = dist.run(Build.NAME, "--features=preview");
CLIResult cliResult = dist.run(Build.NAME, "--db=dev-file", "--features=preview");
cliResult.assertBuild();
assertPreviewFeaturesEnabled(cliResult);

2
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/FipsDistTest.java vendored
View File

@ -31,7 +31,7 @@ import org.keycloak.it.utils.RawKeycloakDistribution;
import io.quarkus.test.junit.main.Launch;
import io.quarkus.test.junit.main.LaunchResult;
@DistributionTest(keepAlive = true, defaultOptions = { "--features=fips", "--http-enabled=true", "--hostname-strict=false", "--log-level=org.keycloak.common.crypto.CryptoIntegration:trace" })
@DistributionTest(keepAlive = true, defaultOptions = { "--db=dev-file", "--features=fips", "--http-enabled=true", "--hostname-strict=false", "--log-level=org.keycloak.common.crypto.CryptoIntegration:trace" })
@RawDistOnly(reason = "Containers are immutable")
@Tag(DistributionTest.SLOW)
public class FipsDistTest {

2
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/HostnameV2DistTest.java vendored
View File

@ -31,7 +31,7 @@ import static org.hamcrest.MatcherAssert.assertThat;
@RawDistOnly(reason = "Containers are immutable")
public class HostnameV2DistTest {
@Test
@Launch({"start", "--http-enabled=true"})
@Launch({"start", "--db=dev-file", "--http-enabled=true"})
public void testServerFailsToStartWithoutHostnameSpecified(LaunchResult result) {
assertThat(result.getErrorOutput(), containsString("ERROR: hostname is not configured; either configure hostname, or set hostname-strict to false"));
}

6
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/ImportAtStartupDistTest.java vendored
View File

@ -92,7 +92,7 @@ public class ImportAtStartupDistTest {
@BeforeStartDistribution(CreateRealmConfigurationFile.class)
void testImportFromFileCreatedByExportAllRealms(KeycloakDistribution dist) throws IOException {
dist.run("start-dev", "--import-realm");
dist.run("export", "--file=../data/import/realm.json");
dist.run("--profile=dev", "export", "--file=../data/import/realm.json");
RawKeycloakDistribution rawDist = dist.unwrap(RawKeycloakDistribution.class);
FileUtil.deleteDirectory(rawDist.getDistPath().resolve("data").resolve("h2").toAbsolutePath());
@ -107,7 +107,7 @@ public class ImportAtStartupDistTest {
@BeforeStartDistribution(CreateRealmConfigurationFile.class)
void testImportFromFileCreatedByExportSingleRealm(KeycloakDistribution dist) throws IOException {
dist.run("start-dev", "--import-realm");
dist.run("export", "--realm=quickstart-realm", "--file=../data/import/realm.json");
dist.run("--profile=dev", "export", "--realm=quickstart-realm", "--file=../data/import/realm.json");
RawKeycloakDistribution rawDist = dist.unwrap(RawKeycloakDistribution.class);
FileUtil.deleteDirectory(rawDist.getDistPath().resolve("data").resolve("h2").toAbsolutePath());
@ -123,7 +123,7 @@ public class ImportAtStartupDistTest {
dist.run("start-dev", "--import-realm");
RawKeycloakDistribution rawDist = dist.unwrap(RawKeycloakDistribution.class);
FileUtil.deleteDirectory(rawDist.getDistPath().resolve("data").resolve("import").toAbsolutePath());
dist.run("export", "--dir=../data/import");
dist.run("--profile=dev", "export", "--dir=../data/import");
FileUtil.deleteDirectory(rawDist.getDistPath().resolve("data").resolve("h2").toAbsolutePath());

2
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/ImportDistTest.java vendored
View File

@ -32,7 +32,7 @@ import org.keycloak.it.utils.KeycloakDistribution;
import com.fasterxml.jackson.databind.ObjectMapper;
import com.fasterxml.jackson.databind.node.ObjectNode;
@DistributionTest
@DistributionTest(defaultOptions = "--db=dev-file")
@RawDistOnly(reason = "Containers are immutable")
@TestMethodOrder(MethodOrderer.OrderAnnotation.class)
@Tag(DistributionTest.SMOKE)

2
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/IpStackDistTest.java vendored
View File

@ -31,7 +31,7 @@ import static org.hamcrest.CoreMatchers.is;
import static org.hamcrest.MatcherAssert.assertThat;
import static org.junit.jupiter.api.Assertions.assertThrows;
@DistributionTest(keepAlive = true, defaultOptions = {"--http-enabled=true", "--hostname-strict=false"})
@DistributionTest(keepAlive = true, defaultOptions = { "--db=dev-file", "--http-enabled=true", "--hostname-strict=false"})
@RawDistOnly(reason = "Containers are immutable")
public class IpStackDistTest {

2
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/ManagementDistTest.java vendored
View File

@ -37,7 +37,7 @@ import static org.hamcrest.CoreMatchers.is;
import static org.junit.jupiter.api.Assertions.assertThrows;
@DistributionTest(keepAlive = true,
defaultOptions = {"--health-enabled=true", "--metrics-enabled=true"},
defaultOptions = {"--db=dev-file", "--health-enabled=true", "--metrics-enabled=true"},
requestPort = 9000,
containerExposedPorts = {9000, 8080, 9005})
@TestMethodOrder(MethodOrderer.OrderAnnotation.class)

2
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/ManagementHttpsDistTest.java vendored
View File

@ -31,7 +31,7 @@ import static org.hamcrest.CoreMatchers.is;
@DistributionTest(keepAlive = true,
enableTls = true,
defaultOptions = {"--health-enabled=true", "--metrics-enabled=true"},
defaultOptions = {"--db=dev-file", "--health-enabled=true", "--metrics-enabled=true"},
requestPort = 9000)
@RawDistOnly(reason = "We do not test TLS in containers")
public class ManagementHttpsDistTest {

12
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/OptionsDistTest.java vendored
View File

@ -52,7 +52,7 @@ public class OptionsDistTest {
@DryRun
@Test
@Order(2)
@Launch({"start", "--test=invalid"})
@Launch({"start", "--db=dev-file", "--test=invalid"})
public void testServerDoesNotStartIfValidationFailDuringReAugStart(LaunchResult result) {
assertEquals(1, result.getErrorStream().stream().filter(s -> s.contains("Unknown option: '--test'")).count());
}
@ -60,7 +60,7 @@ public class OptionsDistTest {
@DryRun
@Test
@Order(3)
@Launch({"start", "--log=console", "--log-file-output=json", "--http-enabled=true", "--hostname-strict=false"})
@Launch({"start", "--db=dev-file", "--log=console", "--log-file-output=json", "--http-enabled=true", "--hostname-strict=false"})
public void testServerDoesNotStartIfDisabledFileLogOption(LaunchResult result) {
assertEquals(1, result.getErrorStream().stream().filter(s -> s.contains("Disabled option: '--log-file-output'. Available only when File log handler is activated")).count());
assertEquals(1, result.getErrorStream().stream().filter(s -> s.contains("Possible solutions: --log, --log-console-output, --log-console-level, --log-console-format, --log-console-color, --log-level")).count());
@ -69,7 +69,7 @@ public class OptionsDistTest {
@DryRun
@Test
@Order(4)
@Launch({"start", "--log=file", "--log-file-output=json", "--http-enabled=true", "--hostname-strict=false"})
@Launch({"start", "--db=dev-file", "--log=file", "--log-file-output=json", "--http-enabled=true", "--hostname-strict=false"})
public void testServerStartIfEnabledFileLogOption(LaunchResult result) {
assertEquals(0, result.getErrorStream().stream().filter(s -> s.contains("Disabled option: '--log-file-output'. Available only when File log handler is activated")).count());
}
@ -77,7 +77,7 @@ public class OptionsDistTest {
@Test
@Order(5)
@WithEnvVars({"KC_LOG", "console", "KC_LOG_CONSOLE_COLOR", "true", "KC_LOG_FILE", "something-env", "KC_HTTP_ENABLED", "true", "KC_HOSTNAME_STRICT", "false"})
@Launch({"start"})
@Launch({"start", "--db=dev-file"})
public void testSettingEnvVars(CLIResult cliResult) {
cliResult.assertMessage("The following used run time options are UNAVAILABLE and will be ignored during build time:");
cliResult.assertMessage("- log-file: Available only when File log handler is activated.");
@ -91,7 +91,7 @@ public class OptionsDistTest {
@RawDistOnly(reason = "Raw is enough and we avoid issues with including custom conf file in the container")
public void testExpressionsInConfigFile(KeycloakDistribution distribution) {
distribution.setEnvVar("MY_LOG_LEVEL", "warn");
CLIResult result = distribution.run(CONFIG_FILE_LONG_NAME + "=" + Paths.get("src/test/resources/OptionsDistTest/keycloak.conf").toAbsolutePath().normalize(), "start", "--http-enabled=true", "--hostname-strict=false");
CLIResult result = distribution.run(CONFIG_FILE_LONG_NAME + "=" + Paths.get("src/test/resources/OptionsDistTest/keycloak.conf").toAbsolutePath().normalize(), "start", "--db=dev-file", "--http-enabled=true", "--hostname-strict=false");
result.assertNoMessage("INFO [io.quarkus]");
result.assertNoMessage("Listening on:");
@ -103,7 +103,7 @@ public class OptionsDistTest {
@Test
@Order(7)
@Launch({"start", "--cache-embedded-mtls-enabled=true", "--http-enabled=true", "--hostname-strict=false"})
@Launch({"start", "--db=dev-file", "--cache-embedded-mtls-enabled=true", "--http-enabled=true", "--hostname-strict=false"})
public void testCacheEmbeddedMtlsEnabled(LaunchResult result) {
assertTrue(result.getOutputStream().stream().anyMatch(s -> s.contains("Property cache-embedded-mtls-key-store-file required but not specified")));
}

2
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/QuarkusPropertiesAutoBuildDistTest.java vendored
View File

@ -32,7 +32,7 @@ import org.keycloak.it.utils.KeycloakDistribution;
import io.quarkus.test.junit.main.Launch;
@DistributionTest(defaultOptions = {"--http-enabled=true", "--hostname-strict=false"})
@DistributionTest(defaultOptions = {"--db=dev-file", "--http-enabled=true", "--hostname-strict=false"})
@RawDistOnly(reason = "Containers are immutable")
@TestMethodOrder(OrderAnnotation.class)
public class QuarkusPropertiesAutoBuildDistTest {

4
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/QuarkusPropertiesDistTest.java vendored
View File

@ -44,7 +44,7 @@ import static org.hamcrest.Matchers.containsString;
import static org.junit.jupiter.api.Assertions.assertTrue;
import static org.keycloak.quarkus.runtime.cli.command.AbstractStartCommand.OPTIMIZED_BUILD_OPTION_LONG;
@DistributionTest(reInstall = DistributionTest.ReInstall.NEVER)
@DistributionTest(reInstall = DistributionTest.ReInstall.NEVER, defaultOptions = "--db=dev-file")
@RawDistOnly(reason = "Containers are immutable")
@Tag(DistributionTest.WIN)
@TestMethodOrder(OrderAnnotation.class)
@ -134,7 +134,7 @@ public class QuarkusPropertiesDistTest {
@Test
@KeepServerAlive
@Launch({ "start", "--http-enabled=true", "--hostname-strict=false", OPTIMIZED_BUILD_OPTION_LONG})
@Launch({ "start", "--http-enabled=true", "--hostname-strict=false", "--metrics-enabled=true"})
@Order(8)
void testUnknownQuarkusBuildTimePropertyApplied(CLIResult cliResult) {
cliResult.assertNoBuild();

4
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/ShowConfigCommandDistTest.java vendored
View File

@ -29,7 +29,7 @@ public class ShowConfigCommandDistTest {
void testShowConfigPicksUpRightConfigDependingOnCurrentMode(KeycloakDistribution distribution) {
CLIResult initialResult = distribution.run("show-config");
initialResult.assertMessage("Current Mode: production");
initialResult.assertMessage("kc.db = dev-file");
initialResult.assertNoMessage("kc.db = dev-file");
distribution.run("start-dev");
@ -37,7 +37,7 @@ public class ShowConfigCommandDistTest {
devModeResult.assertMessage("Current Mode: development");
devModeResult.assertMessage("kc.db = dev-file");
distribution.run("build");
distribution.run("build", "--db=dev-file");
CLIResult resetResult = distribution.run("show-config");
resetResult.assertMessage("Current Mode: production");

7
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/StartAutoBuildDistTest.java vendored
View File

@ -41,7 +41,7 @@ public class StartAutoBuildDistTest {
@DryRun
@Test
@Launch({ "--verbose", "start", "--http-enabled=true", "--hostname-strict=false" })
@Launch({ "--verbose", "start", "--db=dev-file", "--http-enabled=true", "--hostname-strict=false" })
@Order(1)
void testStartAutoBuild(CLIResult cliResult) {
cliResult.assertMessage("Changes detected in configuration. Updating the server image.");
@ -56,7 +56,7 @@ public class StartAutoBuildDistTest {
@DryRun
@Test
@Launch({ "start", "--http-enabled=true", "--hostname-strict=false" })
@Launch({ "start", "--db=dev-file", "--http-enabled=true", "--hostname-strict=false" })
@Order(2)
void testShouldNotReAugIfConfigIsSame(CLIResult cliResult) {
cliResult.assertNoBuild();
@ -91,7 +91,7 @@ public class StartAutoBuildDistTest {
@DryRun
@Test
@Launch({ "start", "--http-enabled=true", "--hostname-strict=false" })
@Launch({ "start", "--db=dev-file", "--http-enabled=true", "--hostname-strict=false" })
@Order(6)
void testReAugWhenNoOptionAfterBuild(CLIResult cliResult) {
cliResult.assertBuild();
@ -129,6 +129,7 @@ public class StartAutoBuildDistTest {
@Order(9)
void testShouldNotReAugStartDevIfConfigIsSame(CLIResult cliResult) {
cliResult.assertNoMessage("Updating the configuration and installing your custom providers, if any. Please wait.");
cliResult.assertNoBuild();
cliResult.assertStartedDevMode();
}

38
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/StartCommandDistTest.java vendored
View File

@ -47,7 +47,7 @@ public class StartCommandDistTest {
@DryRun
@Test
@Launch({ "start", "--hostname-strict=false" })
@Launch({ "start", "--db=dev-file", "--hostname-strict=false" })
void failNoTls(CLIResult cliResult) {
assertTrue(cliResult.getErrorOutput().contains("Key material not provided to setup HTTPS"),
() -> "The Output:\n" + cliResult.getErrorOutput() + "doesn't contains the expected string.");
@ -55,7 +55,7 @@ public class StartCommandDistTest {
@DryRun
@Test
@Launch({ "start", "--spi-events-listener-jboss-logging-success-level" })
@Launch({ "start", "--db=dev-file", "--spi-events-listener-jboss-logging-success-level" })
void failSpiArgMissingValue(CLIResult cliResult) {
assertTrue(cliResult.getErrorOutput().contains("spi argument --spi-events-listener-jboss-logging-success-level requires a value"),
() -> "The Output:\n" + cliResult.getErrorOutput() + "doesn't contains the expected string.");
@ -63,7 +63,7 @@ public class StartCommandDistTest {
@DryRun
@Test
@Launch({ "build", "--spi-events-listener-jboss-logging-success-level=debug" })
@Launch({ "build", "--db=dev-file", "--spi-events-listener-jboss-logging-success-level=debug" })
void warnSpiRuntimeAtBuildtime(CLIResult cliResult) {
assertTrue(cliResult.getOutput().contains("The following run time options were found, but will be ignored during build time: kc.spi-events-listener-jboss-logging-success-level"),
() -> "The Output:\n" + cliResult.getOutput() + "doesn't contains the expected string.");
@ -73,7 +73,7 @@ public class StartCommandDistTest {
@Test
@RawDistOnly(reason = "Containers are immutable")
void errorSpiBuildtimeAtRuntime(KeycloakDistribution dist) {
CLIResult cliResult = dist.run("build");
CLIResult cliResult = dist.run("build", "--db=dev-file");
cliResult.assertBuild();
cliResult = dist.run("start", "--optimized", "--http-enabled=true", "--hostname-strict=false", "--spi-events-listener-jboss-logging-enabled=false");
@ -85,7 +85,7 @@ public class StartCommandDistTest {
@Test
@RawDistOnly(reason = "Containers are immutable")
void noErrorSpiBuildtimeNotChanged(KeycloakDistribution dist) {
CLIResult cliResult = dist.run("build");
CLIResult cliResult = dist.run("build", "--db=dev-file");
cliResult.assertBuild();
cliResult = dist.run("start", "--optimized", "--http-enabled=true", "--hostname-strict=false");
@ -94,14 +94,14 @@ public class StartCommandDistTest {
@DryRun
@Test
@Launch({ "--profile=dev", "start" })
@Launch({ "--profile=dev", "start", "--db=dev-file" })
void failUsingDevProfile(CLIResult cliResult) {
assertTrue(cliResult.getErrorOutput().contains("ERROR: You can not 'start' the server in development mode. Please re-build the server first, using 'kc.sh build' for the default production mode."),
() -> "The Output:\n" + cliResult.getErrorOutput() + "doesn't contains the expected string.");
}
@Test
@Launch({ "-v", "start", "--http-enabled=true", "--hostname-strict=false" })
@Launch({ "-v", "start", "--db=dev-file", "--http-enabled=true", "--hostname-strict=false" })
void testHttpEnabled(CLIResult cliResult) {
cliResult.assertStarted();
}
@ -139,7 +139,7 @@ public class StartCommandDistTest {
}
@Test
@Launch({ "start", "--http-enabled=true" })
@Launch({ "start", "--db=dev-file", "--http-enabled=true" })
void failNoHostnameNotSet(CLIResult cliResult) {
assertTrue(cliResult.getErrorOutput().contains("ERROR: hostname is not configured; either configure hostname, or set hostname-strict to false"),
() -> "The Output:\n" + cliResult.getOutput() + "doesn't contains the expected string.");
@ -147,7 +147,7 @@ public class StartCommandDistTest {
@DryRun
@Test
@Launch({ "start", "--http-enabled=true", "--hostname-strict=false", "--metrics-enabled=true" })
@Launch({ "start", "--db=dev-file", "--http-enabled=true", "--hostname-strict=false", "--metrics-enabled=true" })
void testStartUsingAutoBuild(CLIResult cliResult) {
cliResult.assertNoMessage("ignored during build");
cliResult.assertMessage("Changes detected in configuration. Updating the server image.");
@ -169,7 +169,7 @@ public class StartCommandDistTest {
@DryRun
@Test
@Launch({ "start", "--http-enabled=true", "--cache-remote-host=localhost", "--hostname-strict=false", "--cache-remote-tls-enabled=false", "--transaction-xa-enabled=true" })
@Launch({ "start", "--db=dev-file", "--http-enabled=true", "--cache-remote-host=localhost", "--hostname-strict=false", "--cache-remote-tls-enabled=false", "--transaction-xa-enabled=true" })
void testStartNoWarningOnDisabledRuntimeOption(CLIResult cliResult) {
cliResult.assertNoMessage("cache-remote-tls-enabled: Available only when remote host is set");
}
@ -177,7 +177,7 @@ public class StartCommandDistTest {
@DryRun
@Test
@WithEnvVars({"KC_LOG", "invalid"})
@Launch({ "start", "--http-enabled=false", "--hostname-strict=false" })
@Launch({ "start", "--db=dev-file", "--http-enabled=false", "--hostname-strict=false" })
void testStartUsingOptimizedInvalidEnvOption(CLIResult cliResult) {
cliResult.assertError("Invalid value for option 'KC_LOG': invalid. Expected values are: console, file, syslog");
}
@ -188,7 +188,7 @@ public class StartCommandDistTest {
void testWarningWhenOverridingBuildOptionsDuringStart(KeycloakDistribution dist) {
CLIResult cliResult = dist.run("build", "--db=postgres", "--features=preview");
cliResult.assertBuild();
cliResult = dist.run("start", "--hostname=localhost", "--http-enabled=true");
cliResult = dist.run("start", "--db=dev-file", "--hostname=localhost", "--http-enabled=true");
cliResult.assertMessage("The previous optimized build will be overridden with the following build options:");
cliResult.assertMessage("- db=postgres > db=dev-file"); // back to the default value
cliResult.assertMessage("- features=preview > features=<unset>"); // no default value, the <unset> is shown
@ -200,7 +200,7 @@ public class StartCommandDistTest {
cliResult.assertNoMessage("The previous optimized build will be overridden with the following build options:");
assertTrue(cliResult.getErrorOutput().isBlank());
dist.run("build", "--db=postgres");
cliResult = dist.run("start", "--hostname=localhost", "--http-enabled=true");
cliResult = dist.run("start", "--db=dev-file", "--hostname=localhost", "--http-enabled=true");
cliResult.assertMessage("- db=postgres > db=dev-file");
cliResult.assertNoMessage("- features=preview > features=<unset>");
assertTrue(cliResult.getErrorOutput().isBlank());
@ -224,7 +224,7 @@ public class StartCommandDistTest {
CLIResult cliResult = dist.run("start-dev");
cliResult.assertStartedDevMode();
cliResult = dist.run("start", "--http-enabled", "true", "--hostname-strict", "false");
cliResult = dist.run("start", "--db=dev-file", "--http-enabled", "true", "--hostname-strict", "false");
cliResult.assertNotDevMode();
assertTrue(cliResult.getErrorOutput().isBlank());
}
@ -233,7 +233,7 @@ public class StartCommandDistTest {
@Test
@RawDistOnly(reason = "Containers are immutable")
void testErrorWhenOverridingNonCliBuildOptionsDuringStart(KeycloakDistribution dist) {
CLIResult cliResult = dist.run("build", "--features=preview");
CLIResult cliResult = dist.run("build", "--db=dev-file", "--features=preview");
cliResult.assertBuild();
dist.setEnvVar("KC_DB", "postgres");
cliResult = dist.run("start", "--optimized", "--hostname=localhost", "--http-enabled=true");
@ -242,7 +242,7 @@ public class StartCommandDistTest {
@DryRun
@Test
@Launch({CONFIG_FILE_LONG_NAME + "=src/test/resources/non-existing.conf", "start"})
@Launch({CONFIG_FILE_LONG_NAME + "=src/test/resources/non-existing.conf", "start", "--db=dev-file"})
void testInvalidConfigFileOption(CLIResult cliResult) {
cliResult.assertError("File specified via '--config-file' or '-cf' option does not exist.");
cliResult.assertError(String.format("Try '%s --help' for more information on the available options.", KeycloakDistribution.SCRIPT_CMD));
@ -253,17 +253,17 @@ public class StartCommandDistTest {
void testRuntimeValuesAreNotCaptured(KeycloakDistribution dist) {
// confirm that the invalid value prevents startup - if this passes, then we need to use a different
// spi provider
CLIResult cliResult = dist.run("start", "--spi-events-listener-jboss-logging-success-level=invalid", "--http-enabled", "true", "--hostname-strict", "false");
CLIResult cliResult = dist.run("start", "--db=dev-file", "--spi-events-listener-jboss-logging-success-level=invalid", "--http-enabled", "true", "--hostname-strict", "false");
cliResult.assertError("Failed to start quarkus");
// if there was no auto-build use an explicit build to potentially capture the runtime default
if (!cliResult.getOutput().contains("Server configuration updated and persisted")) {
cliResult = dist.run("build", "--spi-events-listener-jboss-logging-success-level=invalid");
cliResult = dist.run("build", "--db=dev-file", "--spi-events-listener-jboss-logging-success-level=invalid");
cliResult.assertBuild();
}
// the invalid value should not be the default
cliResult = dist.run("start", "--http-enabled", "true", "--hostname-strict", "false");
cliResult = dist.run("start", "--db=dev-file", "--http-enabled", "true", "--hostname-strict", "false");
cliResult.assertNoBuild();
cliResult.assertStarted();
}

2
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/StartDevCommandDistTest.java vendored
View File

@ -66,7 +66,7 @@ public class StartDevCommandDistTest {
@DryRun
@Test
@Launch({ "build", "--debug" })
@Launch({ "build", "--debug", "--db=dev-file" })
void testBuildMustNotRunTwoJVMs(CLIResult cliResult) {
cliResult.assertMessageWasShownExactlyNumberOfTimes("Listening for transport dt_socket at address:", 1);
cliResult.assertBuild();

2
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/TracingDistTest.java vendored
View File

@ -83,7 +83,7 @@ public class TracingDistTest {
@Test
@Order(5)
@Launch({"build", "--tracing-enabled=true"})
@Launch({"build", "--db=dev-file", "--tracing-enabled=true"})
void buildTracingEnabled(LaunchResult result) {
CLIResult cliResult = (CLIResult) result;

4
quarkus/tests/integration/src/test/java/org/keycloak/it/cli/dist/TruststoreDistTest.java vendored
View File

@ -58,7 +58,7 @@ public class TruststoreDistTest {
dist.copyOrReplaceFileFromClasspath("/self-signed.p12", Path.of("conf", "self-signed.p12"));
Path keyStore = rawDist.getDistPath().resolve("conf").resolve("self-signed.p12").toAbsolutePath();
rawDist.run("--verbose", "start", "--http-enabled=true", "--hostname=mykeycloak.org",
rawDist.run("--verbose", "start", "--db=dev-file", "--http-enabled=true", "--hostname=mykeycloak.org",
"--truststore-paths=" + paths, "--https-client-auth=required", "--https-key-store-file=" + keyStore);
given().trustStore(TruststoreDistTest.class.getResource("/self-signed-truststore.p12").getPath(), TruststoreBuilder.DUMMY_PASSWORD)
@ -77,7 +77,7 @@ public class TruststoreDistTest {
dist.copyOrReplaceFileFromClasspath("/self-signed.p12", Path.of("conf", "self-signed.p12"));
Path keyStore = rawDist.getDistPath().resolve("conf").resolve("self-signed.p12").toAbsolutePath();
rawDist.run("--verbose", "start", "--http-enabled=true", "--hostname=mykeycloak.org",
rawDist.run("--verbose", "start", "--db=dev-file", "--http-enabled=true", "--hostname=mykeycloak.org",
"--https-client-auth=required", "--https-key-store-file=" + keyStore);
given().trustStore(TruststoreDistTest.class.getResource("/self-signed-truststore.p12").getPath(), TruststoreBuilder.DUMMY_PASSWORD)

6
quarkus/tests/integration/src/test/resources/org/keycloak/it/cli/dist/approvals/cli/help/HelpCommandDistTest.testBuildHelp.approved.txt vendored
View File

@ -19,8 +19,10 @@ Options:
Database:
--db <vendor> The database vendor. Possible values are: dev-file, dev-mem, mariadb, mssql,
mysql, oracle, postgres. Default: dev-file.
--db <vendor> The database vendor. In production mode the default value of 'dev-file' is
deprecated, you should explicitly specify the db instead. Possible values
are: dev-file, dev-mem, mariadb, mssql, mysql, oracle, postgres. Default:
dev-file.
--db-driver <driver> The fully qualified class name of the JDBC driver. If not set, a default
driver is set accordingly to the chosen database.

6
quarkus/tests/integration/src/test/resources/org/keycloak/it/cli/dist/approvals/cli/help/HelpCommandDistTest.testExportHelp.approved.txt vendored
View File

@ -25,8 +25,10 @@ Config:
Database:
--db <vendor> The database vendor. Possible values are: dev-file, dev-mem, mariadb, mssql,
mysql, oracle, postgres. Default: dev-file.
--db <vendor> The database vendor. In production mode the default value of 'dev-file' is
deprecated, you should explicitly specify the db instead. Possible values
are: dev-file, dev-mem, mariadb, mssql, mysql, oracle, postgres. Default:
dev-file.
--db-driver <driver> The fully qualified class name of the JDBC driver. If not set, a default
driver is set accordingly to the chosen database.
--db-password <password>

6
quarkus/tests/integration/src/test/resources/org/keycloak/it/cli/dist/approvals/cli/help/HelpCommandDistTest.testExportHelpAll.approved.txt vendored
View File

@ -25,8 +25,10 @@ Config:
Database:
--db <vendor> The database vendor. Possible values are: dev-file, dev-mem, mariadb, mssql,
mysql, oracle, postgres. Default: dev-file.
--db <vendor> The database vendor. In production mode the default value of 'dev-file' is
deprecated, you should explicitly specify the db instead. Possible values
are: dev-file, dev-mem, mariadb, mssql, mysql, oracle, postgres. Default:
dev-file.
--db-driver <driver> The fully qualified class name of the JDBC driver. If not set, a default
driver is set accordingly to the chosen database.
--db-password <password>

6
quarkus/tests/integration/src/test/resources/org/keycloak/it/cli/dist/approvals/cli/help/HelpCommandDistTest.testImportHelp.approved.txt vendored
View File

@ -25,8 +25,10 @@ Config:
Database:
--db <vendor> The database vendor. Possible values are: dev-file, dev-mem, mariadb, mssql,
mysql, oracle, postgres. Default: dev-file.
--db <vendor> The database vendor. In production mode the default value of 'dev-file' is
deprecated, you should explicitly specify the db instead. Possible values
are: dev-file, dev-mem, mariadb, mssql, mysql, oracle, postgres. Default:
dev-file.
--db-driver <driver> The fully qualified class name of the JDBC driver. If not set, a default
driver is set accordingly to the chosen database.
--db-password <password>

6
quarkus/tests/integration/src/test/resources/org/keycloak/it/cli/dist/approvals/cli/help/HelpCommandDistTest.testImportHelpAll.approved.txt vendored
View File

@ -25,8 +25,10 @@ Config:
Database:
--db <vendor> The database vendor. Possible values are: dev-file, dev-mem, mariadb, mssql,
mysql, oracle, postgres. Default: dev-file.
--db <vendor> The database vendor. In production mode the default value of 'dev-file' is
deprecated, you should explicitly specify the db instead. Possible values
are: dev-file, dev-mem, mariadb, mssql, mysql, oracle, postgres. Default:
dev-file.
--db-driver <driver> The fully qualified class name of the JDBC driver. If not set, a default
driver is set accordingly to the chosen database.
--db-password <password>

6
quarkus/tests/integration/src/test/resources/org/keycloak/it/cli/dist/approvals/cli/help/HelpCommandDistTest.testStartDevHelp.approved.txt vendored
View File

@ -79,8 +79,10 @@ Config:
Database:
--db <vendor> The database vendor. Possible values are: dev-file, dev-mem, mariadb, mssql,
mysql, oracle, postgres. Default: dev-file.
--db <vendor> The database vendor. In production mode the default value of 'dev-file' is
deprecated, you should explicitly specify the db instead. Possible values
are: dev-file, dev-mem, mariadb, mssql, mysql, oracle, postgres. Default:
dev-file.
--db-driver <driver> The fully qualified class name of the JDBC driver. If not set, a default
driver is set accordingly to the chosen database.
--db-password <password>

6
quarkus/tests/integration/src/test/resources/org/keycloak/it/cli/dist/approvals/cli/help/HelpCommandDistTest.testStartDevHelpAll.approved.txt vendored
View File

@ -105,8 +105,10 @@ Config:
Database:
--db <vendor> The database vendor. Possible values are: dev-file, dev-mem, mariadb, mssql,
mysql, oracle, postgres. Default: dev-file.
--db <vendor> The database vendor. In production mode the default value of 'dev-file' is
deprecated, you should explicitly specify the db instead. Possible values
are: dev-file, dev-mem, mariadb, mssql, mysql, oracle, postgres. Default:
dev-file.
--db-driver <driver> The fully qualified class name of the JDBC driver. If not set, a default
driver is set accordingly to the chosen database.
--db-password <password>

6
quarkus/tests/integration/src/test/resources/org/keycloak/it/cli/dist/approvals/cli/help/HelpCommandDistTest.testStartHelp.approved.txt vendored
View File

@ -86,8 +86,10 @@ Config:
Database:
--db <vendor> The database vendor. Possible values are: dev-file, dev-mem, mariadb, mssql,
mysql, oracle, postgres. Default: dev-file.
--db <vendor> The database vendor. In production mode the default value of 'dev-file' is
deprecated, you should explicitly specify the db instead. Possible values
are: dev-file, dev-mem, mariadb, mssql, mysql, oracle, postgres. Default:
dev-file.
--db-driver <driver> The fully qualified class name of the JDBC driver. If not set, a default
driver is set accordingly to the chosen database.
--db-password <password>

6
quarkus/tests/integration/src/test/resources/org/keycloak/it/cli/dist/approvals/cli/help/HelpCommandDistTest.testStartHelpAll.approved.txt vendored
View File

@ -106,8 +106,10 @@ Config:
Database:
--db <vendor> The database vendor. Possible values are: dev-file, dev-mem, mariadb, mssql,
mysql, oracle, postgres. Default: dev-file.
--db <vendor> The database vendor. In production mode the default value of 'dev-file' is
deprecated, you should explicitly specify the db instead. Possible values
are: dev-file, dev-mem, mariadb, mssql, mysql, oracle, postgres. Default:
dev-file.
--db-driver <driver> The fully qualified class name of the JDBC driver. If not set, a default
driver is set accordingly to the chosen database.
--db-password <password>

2
testsuite/integration-arquillian/servers/auth-server/quarkus/pom.xml
View File

@ -269,7 +269,7 @@
<executions>
<execution>
<id>ant-generate-default</id>
<phase>generate-resources</phase>
<phase>compile</phase>
<goals>
<goal>run</goal>
</goals>