Skip to content

Add RDP E2E tests #230

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Draft
bernie-g wants to merge 14 commits into
base: feat/pam-rdp-recording
Choose a base branch
from
Draft

Add RDP E2E tests #230

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
14 commits
Select commit Hold shift + click to select a range
71aba63
fix: detect and clean up dead gateway connections to prevent OOM
x032205 May 8, 2026
786fcd7
codex review fix
x032205 May 8, 2026
f9dd5b6
address claude review
x032205 May 8, 2026
3ccfec6
Merge branch 'main' into PAM-205
x032205 May 8, 2026
19a086f
move session cleanup to only run if a session was found and cancelled
x032205 May 8, 2026
268a8e6
tiny noise fix
x032205 May 8, 2026
171b125
Merge pull request #223 from Infisical/PAM-205
x032205 May 8, 2026
bfab685
fix(release): remove create-release-draft and fix --skip=build
bernie-g May 8, 2026
fc0ac97
Merge pull request #225 from Infisical/fix/goreleaser-skip-build
bernie-g May 8, 2026
d422e12
feat(pam): add Oracle DB access support (#192)
saifsmailbox98 May 9, 2026
9ad910b
fix(pam): fix SSH e2e test flakes from container readiness races (#228)
saifsmailbox98 May 11, 2026
33db99f
add RDP E2E tests for PAM module
bernie-g May 11, 2026
fbc6fdf
fix(e2e): seed recording config before creating Windows PAM resources
bernie-g May 11, 2026
a46575e
Merge remote-tracking branch 'origin/main' into feat/pam-rdp-tests
bernie-g May 11, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
49 changes: 6 additions & 43 deletions .github/workflows/release_build_infisical_cli.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -31,37 +31,6 @@ jobs:
build-rdp-bridge:
uses: ./.github/workflows/build-rdp-bridge.yml

# Create the GitHub release draft up front so both goreleaser
# (ubuntu) and goreleaser-darwin (macos) can append to it in
# parallel instead of serializing on ubuntu creating the draft.
# Skipped on dry-run since --snapshot doesn't touch GitHub at all.
create-release-draft:
if: |
always() &&
(needs.validate-tag-branch.result == 'success' || needs.validate-tag-branch.result == 'skipped') &&
needs.cli-tests.result == 'success' &&
(github.event_name == 'push' || (github.event_name == 'workflow_dispatch' && !inputs.dry_run))
needs:
- validate-tag-branch
- cli-tests
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- name: Create GitHub release draft (idempotent)
run: |
if gh release view "${{ github.ref_name }}" >/dev/null 2>&1; then
echo "Release for ${{ github.ref_name }} already exists, skipping creation"
else
gh release create "${{ github.ref_name }}" \
--draft \
--title "${{ github.ref_name }}" \
--generate-notes
fi
env:
GH_TOKEN: ${{ secrets.GO_RELEASER_GITHUB_TOKEN }}

# cli-integration-tests:
# name: Run tests before deployment
# uses: ./.github/workflows/run-cli-tests.yml
Expand Down Expand Up @@ -136,12 +105,10 @@ jobs:
- validate-tag-branch
- cli-tests
- build-rdp-bridge
- create-release-draft
if: |
always() &&
needs.cli-tests.result == 'success' &&
needs.build-rdp-bridge.result == 'success' &&
(needs.create-release-draft.result == 'success' || needs.create-release-draft.result == 'skipped') &&
(github.event_name == 'workflow_dispatch' || needs.validate-tag-branch.result == 'success')
steps:
- uses: actions/checkout@v3
Expand Down Expand Up @@ -218,14 +185,13 @@ jobs:
mkdir -p "$target_dir"
cp "/tmp/rdp-bridge-artifacts/rdp-bridge-$triple/libinfisical_rdp_bridge.a" "$target_dir/"
done
- name: GoReleaser (build, no publish)
- name: GoReleaser (dry-run snapshot)
if: github.event_name == 'workflow_dispatch' && inputs.dry_run
uses: goreleaser/goreleaser-action@v4
with:
distribution: goreleaser-pro
version: v1.26.2-pro
args: >-
release --clean --skip=publish,announce
${{ (github.event_name == 'workflow_dispatch' && inputs.dry_run) && '--snapshot' || '' }}
args: release --clean --snapshot --skip=publish
env:
GITHUB_TOKEN: ${{ secrets.GO_RELEASER_GITHUB_TOKEN }}
POSTHOG_API_KEY_FOR_CLI: ${{ secrets.POSTHOG_API_KEY_FOR_CLI }}
Expand All @@ -240,6 +206,7 @@ jobs:
path: dist/
retention-days: 7
- name: Smoke test linux binary across supported distros
if: github.event_name == 'workflow_dispatch' && inputs.dry_run
run: |
set -uo pipefail
fail=0
Expand Down Expand Up @@ -282,13 +249,13 @@ jobs:
echo "::endgroup::"

[ "$fail" -eq 0 ] || exit 1
- name: GoReleaser (publish)
- name: GoReleaser (release)
if: github.event_name == 'push' || (github.event_name == 'workflow_dispatch' && !inputs.dry_run)
uses: goreleaser/goreleaser-action@v4
with:
distribution: goreleaser-pro
version: v1.26.2-pro
args: release --skip=build,validate,before
args: release --clean
env:
GITHUB_TOKEN: ${{ secrets.GO_RELEASER_GITHUB_TOKEN }}
POSTHOG_API_KEY_FOR_CLI: ${{ secrets.POSTHOG_API_KEY_FOR_CLI }}
Expand Down Expand Up @@ -344,12 +311,10 @@ jobs:
- validate-tag-branch
- cli-tests
- build-rdp-bridge
- create-release-draft
if: |
always() &&
needs.cli-tests.result == 'success' &&
needs.build-rdp-bridge.result == 'success' &&
(needs.create-release-draft.result == 'success' || needs.create-release-draft.result == 'skipped') &&
(github.event_name == 'workflow_dispatch' || needs.validate-tag-branch.result == 'success')
steps:
- uses: actions/checkout@v4
Expand Down Expand Up @@ -426,11 +391,9 @@ jobs:
needs:
- validate-tag-branch
- cli-tests
- create-release-draft
if: |
always() &&
needs.cli-tests.result == 'success' &&
(needs.create-release-draft.result == 'success' || needs.create-release-draft.result == 'skipped') &&
(github.event_name == 'workflow_dispatch' || needs.validate-tag-branch.result == 'success')
steps:
- uses: actions/checkout@v3
Expand Down
19 changes: 18 additions & 1 deletion .github/workflows/run-cli-e2e-tests.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -82,8 +82,25 @@ jobs:
go-version: "1.25.9"
- name: Install dependencies
run: go get .
- name: Cache cargo registry + target
uses: actions/cache@v4
with:
path: |
~/.cargo/registry
~/.cargo/git
packages/pam/handlers/rdp/native/target
key: rdp-bridge-cargo-${{ runner.os }}-${{ hashFiles('packages/pam/handlers/rdp/native/Cargo.lock') }}
restore-keys: rdp-bridge-cargo-${{ runner.os }}-
- name: Install pinned Rust toolchain
working-directory: packages/pam/handlers/rdp/native
run: rustup show active-toolchain
- name: Build Rust RDP bridge
working-directory: packages/pam/handlers/rdp/native
run: cargo build --release
- name: Build the CLI
run: go build -o infisical-cli
run: CGO_ENABLED=1 go build -tags rdp -o infisical-cli
- name: Install RDP test dependencies
run: sudo apt-get update && sudo apt-get install -y --no-install-recommends freerdp2-x11 xvfb
- name: Checkout infisical repo
uses: actions/checkout@v6
with:
Expand Down
2 changes: 1 addition & 1 deletion .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -14,5 +14,5 @@ infisical

/agent-testing
.vscode/
# PAM CLI session artifacts (local testing only)
.idea/
/session/
2 changes: 0 additions & 2 deletions .goreleaser-darwin.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -45,9 +45,7 @@ archives:
- manpages/*
- completions/*

# Append to the release draft created by the ubuntu goreleaser job.
release:
replace_existing_draft: false
mode: append

checksum:
Expand Down
2 changes: 0 additions & 2 deletions .goreleaser-windows.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,4 @@
# Append to the release draft created by the ubuntu goreleaser job.
release:
replace_existing_draft: false
mode: append

builds:
Expand Down
4 changes: 0 additions & 4 deletions .goreleaser.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -161,10 +161,6 @@ archives:
- completions/*

release:
# The draft is created up front by the create-release-draft workflow
# job, so both this config and .goreleaser-darwin.yaml use append mode
# to add their artifacts in parallel.
replace_existing_draft: false
mode: append

checksum:
Expand Down
2 changes: 2 additions & 0 deletions e2e/openapi-cfg.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -37,3 +37,5 @@ output-options:
- createSshPamResource
- createSshPamAccount
- createRedisPamAccount
- createWindowsPamResource
- createWindowsPamAccount
Loading
Loading