test: start migrating dbauthz tests to mocked db #19257
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
DBAuthz tests are taking a long amount of time from the sheer quantity of databases required to be provisioned. This PR adds a framework to move to a mocked db.
Emyrk
commented
Aug 8, 2025
testutil/faker.go
Outdated
Comment on lines
11
to
62
| // Fake will populate any zero fields in the provided struct with fake data. | ||
| // Non-zero fields will remain unchanged. | ||
| // Usage: | ||
| // | ||
| // key := Fake(t, faker, database.APIKey{ | ||
| // TokenName: "keep-my-name", | ||
| // }) | ||
| func Fake[T any](t *testing.T, faker *gofakeit.Faker, seed T) T { | ||
| t.Helper() | ||
|
|
||
| var tmp T | ||
| err := faker.Struct(&tmp) | ||
| require.NoError(t, err, "failed to generate fake data for type %T", tmp) | ||
|
|
||
| mergeZero(&seed, tmp) | ||
| return seed | ||
| } | ||
|
|
||
| // mergeZero merges the fields of src into dst, but only if the field in dst is | ||
| // currently the zero value. | ||
| func mergeZero[T any](dst *T, src T) { | ||
| remain := [][2]reflect.Value{ | ||
| {reflect.ValueOf(dst).Elem(), reflect.ValueOf(src)}, | ||
| } | ||
|
|
||
| // Traverse the struct fields and set them only if they are currently zero. | ||
| // This is a breadth-first traversal of the struct fields. Struct definitions | ||
| // Should not be that deep, so we should not hit any stack overflow issues. | ||
| for { | ||
| if len(remain) == 0 { | ||
| return | ||
| } | ||
| dv, sv := remain[0][0], remain[0][1] | ||
| remain = remain[1:] // | ||
| for i := 0; i < dv.NumField(); i++ { | ||
| df := dv.Field(i) | ||
| sf := sv.Field(i) | ||
| if !df.CanSet() { | ||
| continue | ||
| } | ||
| if reflect.Value.IsZero(df) { // only write if currently zero | ||
| df.Set(sf) | ||
| continue | ||
| } | ||
|
|
||
| if dv.Field(i).Kind() == reflect.Struct { | ||
| // If the field is a struct, we need to traverse it as well. | ||
| remain = append(remain, [2]reflect.Value{df, sf}) | ||
| } | ||
| } | ||
| } | ||
| } |
There was a problem hiding this comment.
This is probably the most objectionable add. It adds a new package https://github.com/brianvoe/gofakeit, and some reflect magic.
But the alternative is to refactor dbgen or copy it and make a different fake for each database type. That feels exhausting. This is just so easy to use, and it is in testutil, so it does not need to be "production worthy".
I debated throwing this into dbauthz_test, but thought it might be helpful elsewhere too.
johnstcn
approved these changes
Aug 8, 2025
| @@ -204,14 +207,15 @@ func defaultIPAddress() pqtype.Inet { | |||
| } | |||
|
|
|||
| func (s *MethodTestSuite) TestAPIKey() { | |||
| s.Run("DeleteAPIKeyByID", s.Subtest(func(db database.Store, check *expects) { | |||
| dbtestutil.DisableForeignKeysAndTriggers(s.T(), db) | |||
deansheather
approved these changes
Aug 8, 2025
Depends on reflect under the hood anyway
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What this does
Starts work on coder/internal#869
DBAuthz tests are taking a long amount of time from the sheer quantity of databases required to be provisioned. This PR adds a framework to move to a mocked db. And therefore massively speed up these tests.
The biggest challenge was to randomly seed data into the various
database.<type>structs, as zero values could hide rbac bugs. In the actual db, we usedbgen. Instead of refactoring out or redoingdbgento allow it to work with mocks, I went with https://github.com/brianvoe/gofakeit to randomly seed data.Since we are not testing the
dbor queries themselves, I feel more ok with actual "random" data. Thedbgenis hand rolled, but those fake values must confine to our data schema.Maybe in the future we can annotate our
modelswithfakertags and merge these ideas. At present, I don't think we can add field tags to sqlc output.Should we be using a real database?
No, not really. The dbauthz tests are just asserting that all database calls have a corresponding authz check. There is no need to test the db layer here. The only reason we used a database, is because we used to have
dbmem, and the tooling for setting up fake data was there and easy to use.An example migrating to a mocked test
Annotated output