Dan Milne d8d8000b92 Add tests for forward auth cache gaps: invalidation, rate limiting, and debounce ...

- Test ApplicationGroup cache busting on add and remove
- Test first failure persists in rate limit cache (increment fallback)
- Test bearer token failures count toward rate limit
- Test rd parameter rejected for deactivated applications
- Test last_activity_at updates after debounce window expires
- Test successful requests don't reset failure counter

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-21 23:59:18 +11:00

..

controllers

Add tests for forward auth cache gaps: invalidation, rate limiting, and debounce

2026-03-21 23:59:18 +11:00

fixtures

OpenID Conformance: user info endpoint should support get and post requets, not just get

2026-01-02 15:26:39 +11:00

helpers

First commit

2025-10-23 16:19:56 +11:00

integration

Clean up forward auth caching: remove duplication, fix rate limiting, and plug cache gaps

2026-03-21 23:54:19 +11:00

jobs

StandardRB fixes

2026-01-01 13:29:44 +11:00

lib

Add test files, update checklist

2026-01-05 23:28:55 +11:00

mailers

First crack

2025-10-23 16:45:00 +11:00

models

Add API keys / bearer tokens for forward auth

2026-03-05 21:45:40 +11:00

services

Return only scopes requested, add tests ( OpenID conformance test )

2026-01-02 14:55:06 +11:00

system

Move integration tests into right directory

2026-01-01 13:43:13 +11:00

test_helpers

First crack

2025-10-23 16:45:00 +11:00

application_system_test_case.rb

StandardRB fixes

2026-01-01 13:29:44 +11:00

test_helper.rb

Add rate limiting and in-memory caching for forward auth endpoint

2026-03-07 11:15:54 +11:00