Skip to content

Fix running e2e backend #2710

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 22 commits into
base: feature/e2e-backend
Choose a base branch
from
Open

Fix running e2e backend #2710

Show file tree
Hide file tree
Changes from 8 commits
Commits
Show all changes
22 commits
Select commit Hold shift + click to select a range
cafa25f
Add DB environment variables to e2e.yaml and add csrf_decorate function
ahmedxgouda Nov 24, 2025
fd0aa86
Skip sonar suggestion
ahmedxgouda Nov 24, 2025
9047b0b
Fix rest api internal error
ahmedxgouda Nov 24, 2025
1556873
Add timeout
ahmedxgouda Nov 24, 2025
f506341
Update docs
ahmedxgouda Nov 24, 2025
c35e43f
Update code
ahmedxgouda Nov 26, 2025
a80f661
Revert csrf update
ahmedxgouda Nov 26, 2025
d2d8a58
Add command to dump local data
ahmedxgouda Nov 26, 2025
a96185f
Update dump and load data
ahmedxgouda Nov 27, 2025
74bdb6c
Update rest api config and docs
ahmedxgouda Nov 27, 2025
9893384
Apply check-spelling
ahmedxgouda Nov 27, 2025
3b4c9e2
Use .env.e2e.example for frontend e2e tests in gh actions
ahmedxgouda Nov 27, 2025
f747481
Apply rabbit's suggestions
ahmedxgouda Nov 27, 2025
ddae26b
Migrate dump_data to django command and dump owasp, github, and slack…
ahmedxgouda Nov 28, 2025
95b1391
Apply rabbit's suggestions
ahmedxgouda Nov 28, 2025
4d2e344
Update code
arkid15r Nov 29, 2025
fd2219d
Refactor dump_data
ahmedxgouda Dec 2, 2025
3ea8fc7
Use local cache for e2e
ahmedxgouda Dec 2, 2025
5e2c36c
Remove old load_data command
ahmedxgouda Dec 2, 2025
d3f9aef
Add tests
ahmedxgouda Dec 2, 2025
a1570cf
Skip sonar
ahmedxgouda Dec 2, 2025
ddc7e32
Apply rabbit suggestions
ahmedxgouda Dec 2, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
21 changes: 13 additions & 8 deletions .github/workflows/setup-e2e-environment/action.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,10 +7,12 @@ runs:
steps:
- name: Wait for database to be ready
run: |
until docker exec ${{ job.services.db.id }} pg_isready -U nest_user_e2e -d nest_db_e2e; do
echo "Waiting for database..."
sleep 5
done
timeout 1m bash -c '
until docker exec ${{ job.services.db.id }} pg_isready -U nest_user_e2e -d nest_db_e2e; do
echo "Waiting for database..."
sleep 5
done
'
shell: bash

- name: Install PostgreSQL client
Expand Down Expand Up @@ -43,6 +45,7 @@ runs:
--env-file backend/.env.e2e.example \
--network host \
-p 9000:9000 \
-e DJANGO_DB_HOST=localhost \
owasp/nest:test-backend-e2e-latest \
sh -c '
gunicorn wsgi:application --bind 0.0.0.0:9000
Expand All @@ -51,9 +54,11 @@ runs:

- name: Waiting for the backend to be ready
run: |
until wget --spider http://localhost:9000/a; do
echo "Waiting for backend..."
sleep 5
done
timeout 1m bash -c '
until wget --spider http://localhost:9000/a; do
echo "Waiting for backend..."
sleep 5
done
'
echo "Backend is up!"
shell: bash
28 changes: 28 additions & 0 deletions CONTRIBUTING.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -441,6 +441,34 @@ Follow these steps to setup your e2e testing environment:

**Please note that you only need to do these steps once.**

#### Updating e2e Test Data
Copy link
Collaborator

@arkid15r arkid15r Nov 25, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

My data file update comment was not about the instructions for the data loading. It was about how to maintain the nest-e2e..sql.gz file.


If you need to update the e2e test data, follow these steps:

1. Delete the e2e db container from `Docker Desktop Dashboard` or with the following command:

```bash
docker rm -f e2e-nest-db
```

2. Delete the e2e db volume from `Docker Desktop Dashboard` or with the following command:

```bash
docker volume rm nest-e2e_e2e-db-data
```

3. Re-run the e2e backend instance with the following command:

```bash
make run-backend-e2e
```

4. Load the updated data into the e2e db with the following command (in another terminal session):

```bash
make load-data-e2e
```

### Test Coverage

- There is a **minimum test coverage requirement** for the **backend** code -- see [pyproject.toml](https://github.com/OWASP/Nest/blob/main/backend/pyproject.toml).
Expand Down
2 changes: 1 addition & 1 deletion backend/.env.e2e.example
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@ DJANGO_AWS_ACCESS_KEY_ID=None
DJANGO_AWS_SECRET_ACCESS_KEY=None
DJANGO_SETTINGS_MODULE=settings.e2e
DJANGO_CONFIGURATION=E2E
DJANGO_DB_HOST=None
DJANGO_DB_HOST=db
DJANGO_DB_NAME=nest_db_e2e
DJANGO_DB_USER=nest_user_e2e
DJANGO_DB_PASSWORD=nest_user_e2e_password
Expand Down
4 changes: 4 additions & 0 deletions backend/Makefile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -66,6 +66,10 @@ dump-data-e2e:
@echo "Dumping Nest e2e data"
@CMD="pg_dumpall -U nest_user_e2e --clean | gzip -9 > backend/data/nest-e2e.sql.gz" $(MAKE) exec-db-command-e2e

dump-data-local:
Copy link
Collaborator

@arkid15r arkid15r Nov 26, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Let's look at this one more time. Are we going to use our full data snapshot for e2e testing (e.g. the entire data from nest.json.gz)? If so I'd prefer to keep it simple and have just a single data file -- without nest-e2e.sql.gz introduction.

Copy link
Collaborator Author

@ahmedxgouda ahmedxgouda Nov 27, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Maybe we can use nest.sql.gz instead of nest.json.gz. As it is extremely faster to load.

@echo "Dumping Nest local data"
@CMD="pg_dumpall -U nest_user_dev --clean | gzip -9 > backend/data/nest-e2e.sql.gz" $(MAKE) exec-db-command-it

enrich-data: \
github-enrich-issues \
owasp-enrich-chapters \
Expand Down
2 changes: 2 additions & 0 deletions backend/apps/api/decorators/cache.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -36,6 +36,8 @@ def cache_response(
def decorator(view_func):
@wraps(view_func)
def _wrapper(request, *args, **kwargs):
if settings.IS_E2E_ENVIRONMENT:
Copy link
Collaborator

@arkid15r arkid15r Nov 26, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why e2e needs this change?

Copy link
Collaborator Author

@ahmedxgouda ahmedxgouda Nov 27, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We didn't setup cache for e2e, so when it tries to access cache it gives 500 internal error. I think there is an option to setup redis cache in CI/CD. Maybe we can do that or keep it simple.

Copy link
Collaborator

@arkid15r arkid15r Nov 27, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, let's add cache service for e2e instead. The closer to production architecture the better -- for both local and CI/CD cases.

Copy link
Collaborator Author

@ahmedxgouda ahmedxgouda Nov 28, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ok I will add the cache in another PR after this one.

Copy link
Collaborator

@arkid15r arkid15r Nov 29, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Let's configure the cache backed for e2e via Django settings (locmem for now)

return view_func(request, *args, **kwargs)
if request.method not in ("GET", "HEAD"):
return view_func(request, *args, **kwargs)

Expand Down
2 changes: 1 addition & 1 deletion backend/apps/api/rest/v0/__init__.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -46,7 +46,7 @@
}

api_settings_customization = {}
if settings.IS_LOCAL_ENVIRONMENT:
if settings.IS_LOCAL_ENVIRONMENT or settings.IS_E2E_ENVIRONMENT:
api_settings_customization = {
"auth": None,
"servers": [
Expand Down
2 changes: 1 addition & 1 deletion backend/settings/e2e.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -9,6 +9,7 @@ class E2E(Base):
"""End-to-end testing configuration."""

APP_NAME = "OWASP Nest E2E Testing"
SITE_URL = "http://localhost:9000"

ALLOWED_ORIGINS = (
"http://frontend:3000", # NOSONAR
Expand All @@ -17,7 +18,6 @@ class E2E(Base):
CORS_ALLOWED_ORIGINS = ALLOWED_ORIGINS
CSRF_TRUSTED_ORIGINS = ALLOWED_ORIGINS

DEBUG = False
IS_E2E_ENVIRONMENT = True
LOGGING = {}
PUBLIC_IP_ADDRESS = values.Value()