Fix continuous deployment pipeline

Author: dlzhry2nhs

.github/workflows/continuous-deployment.yml

@@ -29,6 +29,7 @@ jobs:
       APIGEE_PASSWORD: ${{ secrets.APIGEE_PASSWORD }}
       APIGEE_BASIC_AUTH_TOKEN: ${{ secrets.APIGEE_BASIC_AUTH_TOKEN }}
       APIGEE_OTP_KEY: ${{ secrets.APIGEE_OTP_KEY }}
+      CIS2_E2E_USERNAME: ${{ secrets.CIS2_E2E_USERNAME }}
       STATUS_API_KEY: ${{ secrets.STATUS_API_KEY }}
 
   run-sandbox-tests:
@@ -44,6 +45,7 @@ jobs:
       APIGEE_PASSWORD: ${{ secrets.APIGEE_PASSWORD }}
       APIGEE_BASIC_AUTH_TOKEN: ${{ secrets.APIGEE_BASIC_AUTH_TOKEN }}
       APIGEE_OTP_KEY: ${{ secrets.APIGEE_OTP_KEY }}
+      CIS2_E2E_USERNAME: ${{ secrets.CIS2_E2E_USERNAME }}
       STATUS_API_KEY: ${{ secrets.STATUS_API_KEY }}
 
   run-internal-dev-tests:
@@ -59,6 +61,7 @@ jobs:
       APIGEE_PASSWORD: ${{ secrets.APIGEE_PASSWORD }}
       APIGEE_BASIC_AUTH_TOKEN: ${{ secrets.APIGEE_BASIC_AUTH_TOKEN }}
       APIGEE_OTP_KEY: ${{ secrets.APIGEE_OTP_KEY }}
+      CIS2_E2E_USERNAME: ${{ secrets.CIS2_E2E_USERNAME }}
       STATUS_API_KEY: ${{ secrets.STATUS_API_KEY }}
 
   deploy-higher-dev-envs:
@@ -78,11 +81,11 @@ jobs:
     strategy:
       matrix:
         sub_environment_name: [ref, internal-qa]
-      include:
-        - apigee_environment_name: ref
-          required_test_suite: proxy_smoke
-        - apigee_environment_name: internal-qa
-          required_test_suite: smoke
+        include:
+          - sub_environment_name: ref
+            required_test_suite: proxy_smoke
+          - sub_environment_name: internal-qa
+            required_test_suite: smoke
     uses: ./.github/workflows/run-e2e-automation-tests.yml
     with:
       apigee_environment: ${{ matrix.sub_environment_name }}
@@ -94,4 +97,5 @@ jobs:
       APIGEE_PASSWORD: ${{ secrets.APIGEE_PASSWORD }}
       APIGEE_BASIC_AUTH_TOKEN: ${{ secrets.APIGEE_BASIC_AUTH_TOKEN }}
       APIGEE_OTP_KEY: ${{ secrets.APIGEE_OTP_KEY }}
+      CIS2_E2E_USERNAME: ${{ secrets.CIS2_E2E_USERNAME }}
       STATUS_API_KEY: ${{ secrets.STATUS_API_KEY }}

.github/workflows/pr-deploy-and-test.yml

@@ -34,4 +34,5 @@ jobs:
       APIGEE_PASSWORD: ${{ secrets.APIGEE_PASSWORD }}
       APIGEE_BASIC_AUTH_TOKEN: ${{ secrets.APIGEE_BASIC_AUTH_TOKEN }}
       APIGEE_OTP_KEY: ${{ secrets.APIGEE_OTP_KEY }}
+      CIS2_E2E_USERNAME: ${{ secrets.CIS2_E2E_USERNAME }}
       STATUS_API_KEY: ${{ secrets.STATUS_API_KEY }}

.github/workflows/run-e2e-automation-tests.yml

@@ -1,7 +1,7 @@
 name: FHIR API and Batch Automation - E2E Tests
 
 on:
-  workflow call:
+  workflow_call:
     inputs:
       apigee_environment:
         required: true
@@ -25,6 +25,8 @@ on:
         required: true
       APIGEE_OTP_KEY:
         required: true
+      CIS2_E2E_USERNAME:
+        required: true
       STATUS_API_KEY:
         required: true
   workflow_dispatch:
@@ -127,11 +129,9 @@ jobs:
           fi
 
   e2e-tests:
-    # TODO - test. Will we need further permissions for publishing test reports
     permissions:
       id-token: write
-      checks: write
-      contents: read
+      contents: write
     runs-on: ubuntu-latest
     needs: [wait-for-deployment]
     environment: ${{ inputs.apigee_environment }}
@@ -206,7 +206,7 @@ jobs:
           echo "::add-mask::$token"
           echo "APIGEE_ACCESS_TOKEN=$token" >> $GITHUB_ENV
 
-      - name: Run Pytest-BDD ${{ inputs.service_under_test }} tests for with the ${{ inputs.suite_to_run }} filter
+      - name: Run Pytest-BDD ${{ inputs.service_under_test }} tests with the ${{ inputs.suite_to_run }} filter
         working-directory: tests/e2e_automation
         env:
           S3_env: ${{ inputs.sub_environment }}
@@ -231,17 +231,12 @@ jobs:
           MEDICUS_client_Id: ${{ secrets.MEDICUS_client_Id }}
           MEDICUS_client_Secret: ${{ secrets.MEDICUS_client_Secret }}
           aws_token_refresh: "False"
-        run: |
-          TEST_PATH="${{ inputs.service_under_test == 'batch' && 'features/batchTest' || inputs.service_under_test == 'fhir_api' && 'features/APITests' || 'features' }}"
-          TEST_FILTER="${{ inputs.suite_to_run == 'proxy_smoke' && 'Status_feature' || inputs.suite_to_run }}"
+          TEST_PATH: ${{ inputs.service_under_test == 'batch' && 'features/batchTest' || inputs.service_under_test == 'fhir_api' && 'features/APITests' || 'features' }}
+          TEST_FILTER: ${{ inputs.suite_to_run == 'proxy_smoke' && 'Status_feature' || inputs.suite_to_run }}
+        run: poetry run pytest "$TEST_PATH" -m "$TEST_FILTER" --junitxml=output/test-results.xml --alluredir=output/allure-results
 
-          poetry run pytest "$TEST_PATH" -m "$TEST_FILTER" --junitxml=output/test-results.xml --alluredir=output/allure-results
-
-      # Might need to figure out if this needs to be in certain directory, and needs particular permissions
-      - name: Publish test results to GitHub UI
-        working-directory: tests/e2e_automation
+      - uses: dorny/test-reporter@31a54ee7ebcacc03a09ea97a7e5465a47b84aea5
         if: always()
-        uses: dorny/test-reporter@31a54ee7ebcacc03a09ea97a7e5465a47b84aea5
         with:
           name: BDD Test Summary
           path: "**/output/test-results.xml"

immunisation-fhir-api.code-workspace

@@ -42,9 +42,6 @@
         {
             "path": "tests/e2e_automation",
         },
-        {
-            "path": "tests/e2e_batch",
-        },
     ],
     "settings": {},
 }

tests/e2e_automation/features/APITests/status.feature

@@ -1,23 +1,23 @@
 @Status_feature @functional
 Feature: Get the API status
 
-@smoke @sandbox @supplier_name_Postman_Auth
+@smoke @sandbox
 Scenario: Verify that the /ping endpoint works
     When I send a request to the ping endpoint
     Then The request will be successful with the status code '200'
 
-@smoke @sandbox @supplier_name_Postman_Auth
+@smoke @sandbox
 Scenario: Verify that the /status endpoint works
     When I send a request to the status endpoint
     Then The request will be successful with the status code '200'
     And The status response will contain a passing healthcheck
 
-@smoke @supplier_name_Postman_Auth
+@smoke
 Scenario: Verify that clients cannot make a direct connection without mTLS to AWS backend
     When I send a direct request to the AWS backend
     Then The request is rejected
 
-@smoke @supplier_name_Postman_Auth
+@smoke
 Scenario: Verify that unauthenticated clients cannot get a successful response from the API
     When I send an unauthenticated request to the API
     Then The request will be unsuccessful with the status code '401'

tests/e2e_automation/utilities/api_get_header.py

@@ -46,7 +46,7 @@ def get_delete_url_header(context):
         "X-Request-ID": str(uuid.uuid4()),
         "Accept": "application/fhir+json",
         "Content-Type": "application/fhir+json",
-        "Authorization": "Bearer " + context.token,
+        "Authorization": "Bearer " + context.token if context.token is not None else "",
     }
     context.corrID = context.headers["X-Correlation-ID"]
     context.reqID = context.headers["X-Request-ID"]