Add Authorization, Improve Code Generation, Enhance E2E Testing and Much More by MelbourneDeveloper · Pull Request #11 · MelbourneDeveloper/DataProvider

MelbourneDeveloper · 2025-12-29T11:57:10Z

Add Authorization, Improve Code Generation, and Enhance E2E Testing

TLDR

Adds JWT-based authorization to Clinical and Scheduling APIs, improves code generator to support nullable parameters, adds comprehensive E2E test coverage for Dashboard integration, and includes various bug fixes and improvements across the codebase.

Brief Details

Authorization System

New Authorization project (Samples/Shared/Authorization/) with shared authentication helpers
JWT token validation with role-based access control (RBAC)
Permission-based endpoint filtering using ASP.NET Core endpoint filters
Test token helper for integration testing with configurable claims
Permission constants for clinical and scheduling operations (read/write patients, encounters, appointments, etc.)

Code Generation Improvements

Nullable parameter support: Code generator now produces string? parameters for nullable database columns
Null safety: Added #nullable enable directive to generated files
Connection null checks: Generated code validates transaction.Connection before use, returning proper Result<T> errors instead of throwing
Bulk operations: Added bulk insert and upsert method generation with proper null handling

Dashboard E2E Testing

Split monolithic test file into focused test classes:
- AuthE2ETests - Authentication and authorization flows
- PatientE2ETests - Patient CRUD operations
- PractitionerE2ETests - Practitioner management
- AppointmentE2ETests - Appointment scheduling
- CalendarE2ETests - Calendar view functionality
- NavigationE2ETests - UI navigation
- SyncE2ETests - Data synchronization
New E2EFixture base class for shared test infrastructure
CORS testing for API endpoints

Clinical & Scheduling API Updates

Integrated authorization middleware
Sync worker runs as part of the API process (no separate service needed)
Fault tolerance improvements in sync workers
Authorization tests covering all endpoints

Migration Enhancements

LQL default value translation for portable schema definitions
Schema diff and migration testing improvements
PostgreSQL and SQLite migration test coverage

Other Changes

CI workflow added (.github/workflows/ci.yml)
Removed obsolete docker-compose.yml from Sync
Various code cleanup and formatting fixes
Updated to .NET 9.0 patterns

How Do The Tests Prove This Works?

Authorization Tests

Clinical.Api.Tests/AuthorizationTests.cs - 19 tests verifying:
- Unauthenticated requests return 401
- Invalid tokens return 401
- Missing permissions return 403
- Valid tokens with correct permissions succeed
Scheduling.Api.Tests/AuthorizationTests.cs - Similar coverage for scheduling endpoints

Code Generation Tests

DataProvider.Tests/BulkOperationsTests.cs - Tests bulk insert/upsert with nullable values
All Clinical.Api endpoint tests pass (85 tests) with nullable parameters flowing through generated code
Generated files compile without nullable warnings

E2E Integration Tests

Dashboard.Integration.Tests/ - 50+ E2E tests covering:
- Full user workflows (create patient -> schedule appointment -> view calendar)
- API integration with both Clinical and Scheduling backends
- Sync operations between APIs and dashboard
- Error handling and edge cases

Migration Tests

Migration.Tests/SqliteMigrationTests.cs - SQLite schema migration scenarios
Migration.Tests/PostgresMigrationTests.cs - PostgreSQL migration scenarios
Migration.Tests/LqlDefaultsTests.cs - Default value translation
Migration.Tests/SchemaDiffTests.cs - Schema comparison logic

Sync Tests

SyncWorkerFaultToleranceTests.cs - Verifies sync continues after failures
SyncE2ETests.cs - End-to-end sync between APIs

MelbourneDeveloper added 30 commits December 23, 2025 06:07

Implement auth and run sync as part of the app

9779a82

Split the dashboard tests up and fix others

0182635

Changes from the gigs project

b839543

Fixes

9ed756b

Fixes

67ffe33

Fixes

8a13350

Cleanup

67f0fe9

Merge the two branches

742414b

Fixes

525161c

fix tests

53895a0

Formatting and test fixes

7dfda15

Fixes

2e40792

PR prep

a4ccf0b

Fixes

34f2bd4

Stuff

bcef625

Fixes

4892c1e

Spec work

17dc7f0

Reorient the migrations system

55d9919

Fixing up migrations

e0e82bb

Fixes

d8f5c61

Fixes

e60a0d2

Remove antlr n stuff

38e793f

Fix build

4391e3f

add h5

b45c8ab

fix h5 compiler

995cc65

Try fix

fe9bdd9

try fix playwright

755bea1

try fix tests

a567b5e

Try fix

4bc293b

Try fix

a3f6948

MelbourneDeveloper merged commit 360afd4 into main Jan 1, 2026
16 checks passed

MelbourneDeveloper deleted the newstuff branch January 1, 2026 01:21

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add Authorization, Improve Code Generation, Enhance E2E Testing and Much More#11

Add Authorization, Improve Code Generation, Enhance E2E Testing and Much More#11
MelbourneDeveloper merged 30 commits intomainfrom
newstuff

MelbourneDeveloper commented Dec 29, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

MelbourneDeveloper commented Dec 29, 2025

Add Authorization, Improve Code Generation, and Enhance E2E Testing

TLDR

Brief Details

Authorization System

Code Generation Improvements

Dashboard E2E Testing

Clinical & Scheduling API Updates

Migration Enhancements

Other Changes

How Do The Tests Prove This Works?

Authorization Tests

Code Generation Tests

E2E Integration Tests

Migration Tests

Sync Tests

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant