Skip to content

Fix running e2e backend #2710

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 22 commits into
base: feature/e2e-backend
Choose a base branch
from
Open

Fix running e2e backend #2710

Show file tree
Hide file tree
Changes from 2 commits
Commits
Show all changes
22 commits
Select commit Hold shift + click to select a range
cafa25f
Add DB environment variables to e2e.yaml and add csrf_decorate function
ahmedxgouda Nov 24, 2025
fd0aa86
Skip sonar suggestion
ahmedxgouda Nov 24, 2025
9047b0b
Fix rest api internal error
ahmedxgouda Nov 24, 2025
1556873
Add timeout
ahmedxgouda Nov 24, 2025
f506341
Update docs
ahmedxgouda Nov 24, 2025
c35e43f
Update code
ahmedxgouda Nov 26, 2025
a80f661
Revert csrf update
ahmedxgouda Nov 26, 2025
d2d8a58
Add command to dump local data
ahmedxgouda Nov 26, 2025
a96185f
Update dump and load data
ahmedxgouda Nov 27, 2025
74bdb6c
Update rest api config and docs
ahmedxgouda Nov 27, 2025
9893384
Apply check-spelling
ahmedxgouda Nov 27, 2025
3b4c9e2
Use .env.e2e.example for frontend e2e tests in gh actions
ahmedxgouda Nov 27, 2025
f747481
Apply rabbit's suggestions
ahmedxgouda Nov 27, 2025
ddae26b
Migrate dump_data to django command and dump owasp, github, and slack…
ahmedxgouda Nov 28, 2025
95b1391
Apply rabbit's suggestions
ahmedxgouda Nov 28, 2025
4d2e344
Update code
arkid15r Nov 29, 2025
fd2219d
Refactor dump_data
ahmedxgouda Dec 2, 2025
3ea8fc7
Use local cache for e2e
ahmedxgouda Dec 2, 2025
5e2c36c
Remove old load_data command
ahmedxgouda Dec 2, 2025
d3f9aef
Add tests
ahmedxgouda Dec 2, 2025
a1570cf
Skip sonar
ahmedxgouda Dec 2, 2025
ddc7e32
Apply rabbit suggestions
ahmedxgouda Dec 2, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 8 additions & 0 deletions backend/apps/common/utils.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -12,6 +12,7 @@
from django.template.defaultfilters import pluralize
from django.utils.text import Truncator
from django.utils.text import slugify as django_slugify
from django.views.decorators.csrf import csrf_exempt, csrf_protect
from humanize import intword, naturaltime

if TYPE_CHECKING:
Expand Down Expand Up @@ -67,6 +68,13 @@ def clean_url(url: str | None) -> str | None:
return url.strip().rstrip(".,;:!?") or None


def csrf_decorate(view):
Copy link
Collaborator

@arkid15r arkid15r Nov 25, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is there a way to avoid settings based on the running environment? We want it to be as close to production as possible.

Copy link
Collaborator Author

@ahmedxgouda ahmedxgouda Nov 26, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The last time I test sending fuzzing request in the fuzzing PR, it didn't work even with setting csrf header, but it was before a dedicated backend instance for e2e. I will remove this for now and try again in the fuzzing PR.

"""Apply CSRF protection based on settings."""
if settings.IS_E2E_ENVIRONMENT:
return csrf_exempt(view) # NOSONAR
return csrf_protect(view)


def get_absolute_url(path: str) -> str:
"""Return the absolute URL for a given path.

Expand Down
6 changes: 3 additions & 3 deletions backend/settings/urls.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,10 +8,10 @@
from django.conf.urls.static import static
from django.contrib import admin
from django.urls import include, path
from django.views.decorators.csrf import csrf_protect
from strawberry.django.views import GraphQLView

from apps.api.rest.v0 import api as api_v0
from apps.common.utils import csrf_decorate
from apps.core.api.internal.algolia import algolia_search
from apps.core.api.internal.csrf import get_csrf_token
from apps.core.api.internal.status import get_status
Expand All @@ -21,8 +21,8 @@

urlpatterns = [
path("csrf/", get_csrf_token),
path("idx/", csrf_protect(algolia_search)),
path("graphql/", csrf_protect(GraphQLView.as_view(schema=schema, graphiql=settings.DEBUG))),
path("idx/", csrf_decorate(algolia_search)),
path("graphql/", csrf_decorate(GraphQLView.as_view(schema=schema, graphiql=settings.DEBUG))),
path("api/v0/", api_v0.urls),
path("a/", admin.site.urls),
path("owasp/", include(owasp_urls)),
Expand Down
6 changes: 6 additions & 0 deletions docker-compose/e2e.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -12,6 +12,12 @@ services:
db:
condition: service_healthy
env_file: ../backend/.env.e2e.example
environment:
DJANGO_DB_HOST: db
DJANGO_DB_PORT: 5432
DJANGO_DB_NAME: ${DJANGO_DB_NAME:-nest_db_e2e}
DJANGO_DB_USER: ${DJANGO_DB_USER:-nest_user_e2e}
DJANGO_DB_PASSWORD: ${DJANGO_DB_PASSWORD:-nest_user_e2e_password}
networks:
- e2e-nest-network
ports:
Expand Down