NEW: added github mocking service for integration testing

Author: oduludo

integration_tests/docker-compose.yaml

@@ -1,6 +1,6 @@
 include:
   - ../docker-compose.yml # Defines the `db` service
-  - ../../github-static-mock/docker-compose.yaml
+  - ./services/github-static-mock/docker-compose.yaml # Defines the `github` mock backend service
 
 services:
   integration_tests:

integration_tests/services/github-static-mock/Dockerfile

@@ -0,0 +1,13 @@
+FROM python:3.13
+
+WORKDIR /app
+
+# Install Poetry in a place that's already in $PATH
+ENV POETRY_HOME=/usr/local
+RUN curl -sSL https://install.python-poetry.org | python3 -
+
+COPY . .
+RUN poetry install
+
+EXPOSE 9000
+CMD ["poetry", "run", "start"]

integration_tests/services/github-static-mock/README.md

@@ -0,0 +1,55 @@
+# Static oauth GitHub mock
+This project mocks GitHub oauth server's [web application flow](https://docs.github.com/en/apps/oauth-apps/building-oauth-apps/authorizing-oauth-apps#web-application-flow).
+As this is a static project, codes and tokens are hardcoded. An endpoint is available to set the user data to be 
+returned on the next call to the `/user` endpoint. By doing this, a webpage with form input on the mocked user is 
+avoided, keeping this simple for automated tests.
+
+WARNING: This is a project for testing purposes only. Nothing about this implementation is secure.
+
+## Running the project
+Currently only the Redis cache runs on Docker Compose. This stores the upcoming user's data. Run it with 
+`docker compose up`.
+
+The web application itself can be run with `poetry run start` after running `poetry install`.
+
+## Endpoints
+### Authorization mechanics
+The oauth endpoints mocked facilitate the web application flow. Calls in order are:
+1. Call `/system/upcoming-user` to set the next mocked user data.
+2. Call `/login/oauth/authorize` to have the application return a response with a code and state.
+3. Call `/login/oauth/access_token` to mock exchanging the code for a bearer token.
+4. Call `/user` to obtain user data.
+
+## /system/upcoming-user
+Example call (using [HTTPie](https://httpie.io/)):
+
+```shell
+http "http://localhost:9000/system/upcoming-user" name="John Smith" login=jsmith
+```
+
+## /login/oauth/authorize
+Authorization requires query parameters: response_type, client_id, scope, state and redirect_uri. The redirect_uri is 
+used to redirect the client. The state is included in the redirect URI for further use by the client. The code in the
+redirect URI is hardcoded.
+
+```shell
+http "http://localhost:9000/login/oauth/authorize?response_type=code&client_id=Ov23liuEhYT3CT9Yh6VA&scope=user%3Alogin%2Cname&state=JQOy3kw1PDiQh662ln4DuTGX20ajwb&redirect_uri=http%3A%2F%2Flocalhost%3A8000%2Foauth%2Fgithub%2Fcallback"
+```
+
+## /login/oauth/access_token
+This endpoint takes a token and returns a bearer token. The bearer token is hardcoded. This endpoint requires 
+application/x-www-form-urlencoded data.
+
+```shell
+http --form POST "http://localhost:9000/login/oauth/access_token" grant_type=authorization_code code=SplxlOBeZQQYbYS6WxSbIA
+```
+
+## /user
+Finally, the user endpoint is called. This returns the user's profile data. The `login` and `name` in the response are 
+retrieved from Redis and are the values set via the `/system/upcoming-user` endpoint. This endpoint requires an 
+Authorization header containing `Bearer `, the token itself is not evaluated. Calling this endpoint without setting an 
+upcoming user in cache results in an HTTP400 Bad Request.
+
+```shell
+http "http://localhost:9000/user" "Authorization: Bearer gho_xxx"
+```

integration_tests/services/github-static-mock/docker-compose.yaml

@@ -0,0 +1,18 @@
+services:
+  cache:
+    image: redis
+    restart: always
+    ports:
+      - '6379:6379'
+    profiles:
+      - test
+  github:
+    build: .
+    ports:
+      - '9000:9000'
+    environment:
+      CACHE_HOST: 'cache'
+      ELEKTO_HOST: 'elekto'
+      ELEKTO_PORT: '8000'
+    profiles:
+      - test

integration_tests/services/github-static-mock/poetry.lock

@@ -0,0 +1,25 @@
+[project]
+name = "github-static-mock"
+version = "0.1.0"
+description = ""
+authors = [
+    {name = "Your Name",email = "you@example.com"}
+]
+readme = "README.md"
+requires-python = ">=3.13"
+dependencies = [
+    "fastapi (>=0.116.1,<0.117.0)",
+    "uvicorn (>=0.35.0,<0.36.0)",
+    "python-multipart (>=0.0.20,<0.0.21)",
+    "redis (>=6.4.0,<7.0.0)"
+]
+
+[tool.poetry]
+packages = [{include = "github_static_mock", from = "src"}]
+
+[tool.poetry.scripts]
+start = "github_static_mock.app:start"
+
+[build-system]
+requires = ["poetry-core>=2.0.0,<3.0.0"]
+build-backend = "poetry.core.masonry.api"

integration_tests/services/github-static-mock/pyproject.toml

@@ -0,0 +1,142 @@
+import json
+import logging
+import os
+
+from typing import Annotated
+
+from redis.asyncio import Redis
+
+from fastapi import FastAPI, Form, Response, Request, Query, status, HTTPException
+import uvicorn
+
+from github_static_mock.exceptions import NoUpcomingUserException
+from github_static_mock.models import AuthorizeQueryParams, AccessTokenResponse, UserResponse, UpcomingUser
+
+logger = logging.getLogger(__name__)
+app = FastAPI()
+
+CACHE_HOST = os.environ.get("CACHE_HOST", "localhost")
+
+
+async def get_upcoming_user() -> UpcomingUser:
+    cache = Redis(host=CACHE_HOST, port=6379, db=0)
+    raw_data = await cache.get('upcoming_user')
+
+    if raw_data is None:
+        raise NoUpcomingUserException()
+
+    return UpcomingUser(**json.loads(raw_data.decode('utf-8')))
+
+
+@app.get('/login/oauth/authorize')
+def authorize(query: Annotated[AuthorizeQueryParams, Query()]) -> Response:
+    """
+    Authorize application.
+
+    http://localhost:9000/login/oauth/authorize?response_type=code&client_id=Ov23liuEhYT3CT9Yh6VA&scope=user%3Alogin%2Cname&state=JQOy3kw1PDiQh662ln4DuTGX20ajwb&redirect_uri=http%3A%2F%2Flocalhost%3A8000%2Foauth%2Fgithub%2Fcallback
+
+    :param request:
+    :param query:
+    :return:
+    """
+    logger.info(f'Authorize request: {query.model_dump_json()}')
+    print(query.redirect_uri)
+
+    return Response(
+        status_code=status.HTTP_302_FOUND,
+        headers={
+            'Location': f'{query.redirect_uri}?code=SplxlOBeZQQYbYS6WxSbIA&state={query.state}'
+        },
+    )
+
+
+@app.post('/login/oauth/access_token')
+async def access_token(grant_type: Annotated[str, Form()], code: Annotated[str, Form()]) -> AccessTokenResponse:
+    """
+    Exchange code for access token.
+
+    NOTE: This endpoint receives form data (application/x-www-form-urlencoded), not JSON. This is the standard for the
+    GitHub API. While GitHub also supports application/json and application/xml, this mock does not.
+
+    As this endpoint implementation is static, the grant_type and code are ignored. The access token is specific to the
+    mocked user (using the login name) to prevent the client application perceiving all requests as coming from the same
+    user.
+
+    :return:
+    """
+    upcoming_user = await get_upcoming_user()
+
+    return AccessTokenResponse(
+        access_token=f'gho_myososecretbearertoken_{upcoming_user.login}',
+        token_type='bearer',
+        scope=''
+    )
+
+
+@app.get('/user')
+async def user(request: Request) -> UserResponse:
+    if 'Bearer ' not in request.headers.get('Authorization', ''):
+        raise HTTPException(
+            status_code=status.HTTP_401_UNAUTHORIZED,
+        )
+
+    upcoming_user = await get_upcoming_user()
+
+    return UserResponse(**{
+        'login': upcoming_user.login,
+        'id': 14993302,
+        'node_id': 'MDQ6VXNlcjE0OTkzMzAy',
+        'avatar_url': 'https://avatars.githubusercontent.com/u/14993302?v=4',
+        'gravatar_id': '',
+        'url': 'https://api.github.com/users/oduludo',
+        'html_url': 'https://github.com/oduludo',
+        'followers_url': 'https://api.github.com/users/oduludo/followers',
+        'following_url': 'https://api.github.com/users/oduludo/following{/other_user}',
+        'gists_url': 'https://api.github.com/users/oduludo/gists{/gist_id}',
+        'starred_url': 'https://api.github.com/users/oduludo/starred{/owner}{/repo}',
+        'subscriptions_url': 'https://api.github.com/users/oduludo/subscriptions',
+        'organizations_url': 'https://api.github.com/users/oduludo/orgs',
+        'repos_url': 'https://api.github.com/users/oduludo/repos',
+        'events_url': 'https://api.github.com/users/oduludo/events{/privacy}',
+        'received_events_url': 'https://api.github.com/users/oduludo/received_events',
+        'type': 'User',
+        'user_view_type': 'public',
+        'site_admin': False,
+        'name': upcoming_user.name,
+        'company': 'Monsters, Inc.',
+        'blog': '',
+        'location': 'The Netherlands',
+        'email': None,
+        'hireable': None,
+        'bio': None,
+        'twitter_username': None,
+        'notification_email': None,
+        'public_repos': 6,
+        'public_gists': 3,
+        'followers': 7,
+        'following': 5,
+        'created_at': '2015-10-06T08:40:53Z',
+        'updated_at': '2025-08-06T15:43:33Z'
+    })
+
+
+@app.post('/system/upcoming-user')
+async def store_upcoming_user(request: Request, data: UpcomingUser) -> Response:
+    """
+    Set the upcoming user's data to be returned from the next call to the /user endpoint.
+
+    :param request:
+    :param data:
+    :return:
+    """
+    cache = Redis(host=CACHE_HOST, port=6379, db=0)
+    await cache.set('upcoming_user', data.model_dump_json())
+    return Response(status_code=status.HTTP_201_CREATED)
+
+
+def start() -> None:
+    """Launched with `poetry run start` at root level"""
+    uvicorn.run('github_static_mock.app:app', host='0.0.0.0', port=9000, reload=True)
+
+if __name__ == '__main__':
+    start()

integration_tests/services/github-static-mock/src/github_static_mock/__init__.py

@@ -0,0 +1,10 @@
+from fastapi.exceptions import HTTPException
+from starlette import status
+
+
+class NoUpcomingUserException(HTTPException):
+    def __init__(self):
+        super().__init__(
+            status_code=status.HTTP_400_BAD_REQUEST,
+            detail='No upcoming user configured.'
+        )

integration_tests/services/github-static-mock/src/github_static_mock/app.py

@@ -0,0 +1,63 @@
+import os
+from typing import Literal
+
+from pydantic import BaseModel, HttpUrl
+
+ELEKTO_HOST = os.environ.get('ELEKTO_HOST', 'localhost')
+ELEKTO_PORT = os.environ.get('ELEKTO_PORT', '8000')
+
+
+class AuthorizeQueryParams(BaseModel):
+    client_id: str
+    response_type: Literal['code']
+    scope: str
+    state: str
+    redirect_uri: HttpUrl = f'http://{ELEKTO_HOST}:{ELEKTO_PORT}/oauth/github/callback'
+
+
+class AccessTokenResponse(BaseModel):
+    access_token: str
+    token_type: str
+    scope: str
+
+
+class UserResponse(BaseModel):
+    login: str
+    id: int
+    node_id: str
+    avatar_url: str
+    gravatar_id: str
+    url: str
+    html_url: str
+    followers_url: str
+    following_url: str
+    gists_url: str
+    starred_url: str
+    subscriptions_url: str
+    organizations_url: str
+    repos_url: str
+    events_url: str
+    received_events_url: str
+    type: str
+    user_view_type: str
+    site_admin: bool
+    name: str
+    company: str
+    blog: str
+    location: str
+    email: str | None
+    hireable: bool | None
+    bio: str | None
+    twitter_username: str | None
+    notification_email: str | None
+    public_repos: int
+    public_gists: int
+    followers: int
+    following: int
+    created_at: str
+    updated_at: str
+
+
+class UpcomingUser(BaseModel):
+    name: str
+    login: str