Ilia Denisov
92f48a3b12
CI / changes (pull_request) Successful in 1s
CI / unit (pull_request) Successful in 9s
CI / integration (pull_request) Successful in 12s
CI / ui (pull_request) Successful in 44s
CI / gate (pull_request) Successful in 0s
CI / deploy (pull_request) Successful in 1m9s
A single tile that only extended a word perpendicular to the client-declared direction was rejected: the UI always sent dir=H for one-tile plays (the dirOverride/Controls toggle was orphaned in the Stage 7 game rework), so placing "А" above "БАК" to form "АБАК" failed the solver's main-word-length check even though the word is in the dictionary. Make the backend infer a play's orientation from the placed tiles and the board (internal/engine.resolveDirection): two or more tiles by the line they share, a lone tile by the axis it abuts (longer word wins, horizontal on a tie). Direction becomes an output, not an input: drop dir from the SubmitPlay/Eval wire requests and add it to EvalResult. Journal replay keeps trusting the stored "H"/"V" (SubmitPlayDir) so a rebuilt game matches the one committed. UI: stop computing/sending direction; the preview now shows the words a move forms with its total score (game.previewWords); the make-move control is disabled until the play is confirmed legal; the "your turn" label hides while tiles are pending. Delete the orphaned Controls.svelte. Regenerate the FlatBuffers bindings (Go + TS) and update the gateway transcode and the loadtest edge client to the new contract. Bake the decision into ARCHITECTURE.md (§5/§9.1), FUNCTIONAL.md (+ _ru) and the backend README.
110 lines
3.9 KiB
Go
110 lines
3.9 KiB
Go
package server
|
|
|
|
import (
|
|
"net/http"
|
|
"net/http/httptest"
|
|
"strings"
|
|
"testing"
|
|
|
|
"github.com/google/uuid"
|
|
|
|
"scrabble/backend/internal/account"
|
|
"scrabble/backend/internal/game"
|
|
"scrabble/backend/internal/ratewatch"
|
|
"scrabble/backend/internal/session"
|
|
)
|
|
|
|
// newRoutingServer builds a Server with non-nil (zero-value) services so the
|
|
// routes register. The tests below exercise only the request-validation and
|
|
// routing layers, which return before any service method is called; full
|
|
// endpoint behaviour against real services is covered by the integration suite.
|
|
func newRoutingServer() *Server {
|
|
return New(":0", Deps{
|
|
Sessions: &session.Service{},
|
|
Accounts: &account.Store{},
|
|
Games: &game.Service{},
|
|
})
|
|
}
|
|
|
|
func do(t *testing.T, s *Server, method, path, body string, headers map[string]string) *httptest.ResponseRecorder {
|
|
t.Helper()
|
|
var rdr *strings.Reader
|
|
if body != "" {
|
|
rdr = strings.NewReader(body)
|
|
} else {
|
|
rdr = strings.NewReader("")
|
|
}
|
|
req := httptest.NewRequest(method, path, rdr)
|
|
req.Header.Set("Content-Type", "application/json")
|
|
for k, v := range headers {
|
|
req.Header.Set(k, v)
|
|
}
|
|
rec := httptest.NewRecorder()
|
|
s.Handler().ServeHTTP(rec, req)
|
|
return rec
|
|
}
|
|
|
|
func TestProfileRequiresUserID(t *testing.T) {
|
|
rec := do(t, newRoutingServer(), http.MethodGet, "/api/v1/user/profile", "", nil)
|
|
if rec.Code != http.StatusUnauthorized {
|
|
t.Fatalf("profile without X-User-ID = %d, want 401", rec.Code)
|
|
}
|
|
}
|
|
|
|
func TestResolveSessionRejectsEmptyToken(t *testing.T) {
|
|
rec := do(t, newRoutingServer(), http.MethodPost, "/api/v1/internal/sessions/resolve", `{}`, nil)
|
|
if rec.Code != http.StatusBadRequest {
|
|
t.Fatalf("resolve with empty token = %d, want 400", rec.Code)
|
|
}
|
|
}
|
|
|
|
// TestRateLimitReportEndpoint covers the internal report route: a malformed
|
|
// body is a 400, a valid report lands in the rate watch with 204.
|
|
func TestRateLimitReportEndpoint(t *testing.T) {
|
|
watch := ratewatch.New(ratewatch.DefaultConfig(), nil, nil)
|
|
s := New(":0", Deps{RateWatch: watch})
|
|
if rec := do(t, s, http.MethodPost, "/api/v1/internal/ratelimit/report", `{bad`, nil); rec.Code != http.StatusBadRequest {
|
|
t.Fatalf("malformed report = %d, want 400", rec.Code)
|
|
}
|
|
body := `{"window_seconds":30,"entries":[{"class":"user","key":"` + uuid.NewString() + `","rejected":7}]}`
|
|
if rec := do(t, s, http.MethodPost, "/api/v1/internal/ratelimit/report", body, nil); rec.Code != http.StatusNoContent {
|
|
t.Fatalf("report = %d, want 204", rec.Code)
|
|
}
|
|
if eps := watch.Recent(); len(eps) != 1 || eps[0].Rejected != 7 {
|
|
t.Fatalf("watch episodes = %+v, want one entry with rejected=7", eps)
|
|
}
|
|
}
|
|
|
|
func TestSubmitPlayRejectsBadGameID(t *testing.T) {
|
|
headers := map[string]string{"X-User-ID": uuid.New().String()}
|
|
rec := do(t, newRoutingServer(), http.MethodPost, "/api/v1/user/games/not-a-uuid/play", `{}`, headers)
|
|
if rec.Code != http.StatusBadRequest {
|
|
t.Fatalf("submit play bad game id = %d, want 400", rec.Code)
|
|
}
|
|
}
|
|
|
|
func TestGetDraftRequiresUserID(t *testing.T) {
|
|
path := "/api/v1/user/games/" + uuid.New().String() + "/draft"
|
|
rec := do(t, newRoutingServer(), http.MethodGet, path, "", nil)
|
|
if rec.Code != http.StatusUnauthorized {
|
|
t.Fatalf("get draft without X-User-ID = %d, want 401", rec.Code)
|
|
}
|
|
}
|
|
|
|
func TestSaveDraftRejectsBadGameID(t *testing.T) {
|
|
headers := map[string]string{"X-User-ID": uuid.New().String()}
|
|
rec := do(t, newRoutingServer(), http.MethodPut, "/api/v1/user/games/not-a-uuid/draft", `{"rack_order":"","board_tiles":[]}`, headers)
|
|
if rec.Code != http.StatusBadRequest {
|
|
t.Fatalf("save draft bad game id = %d, want 400", rec.Code)
|
|
}
|
|
}
|
|
|
|
func TestSaveDraftRejectsBadBody(t *testing.T) {
|
|
headers := map[string]string{"X-User-ID": uuid.New().String()}
|
|
path := "/api/v1/user/games/" + uuid.New().String() + "/draft"
|
|
rec := do(t, newRoutingServer(), http.MethodPut, path, `not json`, headers)
|
|
if rec.Code != http.StatusBadRequest {
|
|
t.Fatalf("save draft bad body = %d, want 400", rec.Code)
|
|
}
|
|
}
|