Files
wehub-resource-sync 4b6817381b
CI (OpenClaw E2E) / openclaw test (push) Has been cancelled
CI / coverage-report (push) Has been cancelled
CI / test-kubernetes (push) Has been cancelled
CI / should-run-thorough (push) Has been cancelled
CI / test-thorough (cloudwatch-demo) (push) Has been cancelled
CI / test-thorough (flink-ecs) (push) Has been cancelled
CI / test-thorough (upstream-lambda) (push) Has been cancelled
CI / test-thorough (prefect-ecs-fargate) (push) Has been cancelled
Release / build-binaries (zip, opensre.exe, onefile, windows-latest, windows-x64) (push) Has been cancelled
Benchmark image — build + push to ECR (any adapter) / build + push (push) Has been cancelled
CI / quality (ubuntu-latest) (push) Has been cancelled
CI / test (tools-runtime) (push) Has been cancelled
CI / test (e2e-general) (push) Has been cancelled
CI / test (cli-runtime) (push) Has been cancelled
CI / test (e2e-provider-and-openclaw) (push) Has been cancelled
CI / test (integrations-and-misc) (push) Has been cancelled
Release / verify (push) Has been cancelled
Release / build-python-dist (push) Has been cancelled
Release / build-binaries (tar.gz, opensre, onedir, macos-15-intel, darwin-x64) (push) Has been cancelled
Release / build-binaries (tar.gz, opensre, onedir, macos-latest, darwin-arm64) (push) Has been cancelled
Release / build-binaries (tar.gz, opensre, onedir, ubuntu-22.04, linux-x64) (push) Has been cancelled
Release / publish-release (push) Has been cancelled
Release / publish-main-release (push) Has been cancelled
Interactive Shell Live (PR + post-merge) / turn-checks (no-LLM) (push) Has been cancelled
CodeQL / Analyze (python) (push) Has been cancelled
Interactive Shell Live (PR + post-merge) / turn-live shard ${{ matrix.shard_index }} (push) Has been cancelled
Release / prepare (push) Has been cancelled
Release / build-binaries (tar.gz, opensre, onedir, ubuntu-22.04-arm, linux-arm64) (push) Has been cancelled
Synthetic Deterministic Tests / Synthetic offline (deterministic) (push) Has been cancelled
chore: import upstream snapshot with attribution
2026-07-13 13:10:45 +08:00

161 lines
5.3 KiB
Python

"""Tests for the ``POST /investigate`` endpoint on the gateway web app."""
from __future__ import annotations
from collections.abc import Iterator
from typing import Any
import pytest
from fastapi.testclient import TestClient
from gateway import webapp
_LOOPBACK = ("127.0.0.1", 40000)
_REMOTE = ("203.0.113.9", 40000)
@pytest.fixture(autouse=True)
def _no_token(monkeypatch: pytest.MonkeyPatch) -> Iterator[None]:
monkeypatch.delenv("OPENSRE_ALERT_LISTENER_TOKEN", raising=False)
yield
@pytest.fixture
def client() -> TestClient:
return TestClient(webapp.app, client=_LOOPBACK)
def _fake_payload() -> dict[str, Any]:
return {
"report": "Root cause identified.",
"problem_md": "## Problem\nOrders pipeline timed out.",
"root_cause": "Timeout calling downstream service.",
"is_noise": False,
"validity_score": 0.9,
"tool_calls": [{"key": "logs", "tool_name": "hermes_logs", "data": {}}],
}
def test_investigate_runs_pipeline_and_returns_report(
monkeypatch: pytest.MonkeyPatch, client: TestClient
) -> None:
captured: dict[str, Any] = {}
def _fake_run_investigation_payload(
*, raw_alert: Any, investigation_metadata: Any = None, **_: Any
) -> dict[str, Any]:
captured["raw_alert"] = raw_alert
captured["investigation_metadata"] = investigation_metadata
return _fake_payload()
monkeypatch.setattr(webapp, "run_investigation_payload", _fake_run_investigation_payload)
resp = client.post(
"/investigate",
json={
"raw_alert": {"message": "Orders pipeline failed with timeout."},
"alert_name": "etl-daily-orders-failure",
"pipeline_name": "etl_daily_orders",
"severity": "critical",
},
)
assert resp.status_code == 200
body = resp.json()
assert body["report"] == "Root cause identified."
assert body["root_cause"] == "Timeout calling downstream service."
assert body["is_noise"] is False
assert captured["raw_alert"] == {"message": "Orders pipeline failed with timeout."}
assert captured["investigation_metadata"] == (
"etl-daily-orders-failure",
"etl_daily_orders",
"critical",
)
def test_investigate_resolves_metadata_from_raw_alert_when_overrides_missing(
monkeypatch: pytest.MonkeyPatch, client: TestClient
) -> None:
captured: dict[str, Any] = {}
def _fake_run_investigation_payload(
*, investigation_metadata: Any = None, **_: Any
) -> dict[str, Any]:
captured["investigation_metadata"] = investigation_metadata
return _fake_payload()
monkeypatch.setattr(webapp, "run_investigation_payload", _fake_run_investigation_payload)
resp = client.post(
"/investigate",
json={"raw_alert": {"alert_name": "High CPU", "severity": "warning"}},
)
assert resp.status_code == 200
assert captured["investigation_metadata"] == ("High CPU", "unknown", "warning")
def test_investigate_missing_raw_alert_returns_422(client: TestClient) -> None:
resp = client.post("/investigate", json={"alert_name": "x"})
assert resp.status_code == 422
def test_investigate_pipeline_failure_returns_503_without_leaking_exception_text(
monkeypatch: pytest.MonkeyPatch, client: TestClient
) -> None:
def _boom(**_: Any) -> dict[str, Any]:
raise RuntimeError("llm unavailable at s3://internal-bucket/creds.json")
monkeypatch.setattr(webapp, "run_investigation_payload", _boom)
resp = client.post("/investigate", json={"raw_alert": {"alert_name": "x"}})
assert resp.status_code == 503
body = resp.json()
assert body["error"] == "investigation failed: RuntimeError"
assert "llm unavailable" not in body["error"]
assert "s3://internal-bucket" not in body["error"]
def test_investigate_malformed_pipeline_result_returns_503(
monkeypatch: pytest.MonkeyPatch, client: TestClient
) -> None:
"""A result dict that fails InvestigateResponse validation is caught too."""
def _malformed(**_: Any) -> dict[str, Any]:
return {"report": None, "problem_md": "p", "root_cause": "c"}
monkeypatch.setattr(webapp, "run_investigation_payload", _malformed)
resp = client.post("/investigate", json={"raw_alert": {"alert_name": "x"}})
assert resp.status_code == 503
assert resp.json()["error"] == "investigation failed: ValidationError"
def test_investigate_non_loopback_without_token_returns_403(
monkeypatch: pytest.MonkeyPatch,
) -> None:
monkeypatch.setattr(webapp, "run_investigation_payload", lambda **_: _fake_payload())
remote = TestClient(webapp.app, client=_REMOTE)
resp = remote.post("/investigate", json={"raw_alert": {"alert_name": "x"}})
assert resp.status_code == 403
def test_investigate_token_auth(monkeypatch: pytest.MonkeyPatch) -> None:
monkeypatch.setenv("OPENSRE_ALERT_LISTENER_TOKEN", "sekret")
monkeypatch.setattr(webapp, "run_investigation_payload", lambda **_: _fake_payload())
remote = TestClient(webapp.app, client=_REMOTE)
assert remote.post("/investigate", json={"raw_alert": {"alert_name": "x"}}).status_code == 401
assert (
remote.post(
"/investigate",
json={"raw_alert": {"alert_name": "x"}},
headers={"Authorization": "Bearer sekret"},
).status_code
== 200
)