test: verify Secret Manager API enablement for Developer Connect changes#10653
Open
annajowang wants to merge 1 commit into
Open
test: verify Secret Manager API enablement for Developer Connect changes#10653annajowang wants to merge 1 commit into
annajowang wants to merge 1 commit into
Conversation
### Description Ensures that the Firebase App Hosting onboarding flow explicitly enables the Secret Manager API alongside the Developer Connect API. Developer Connect is undergoing changes starting September 21, 2026, where it will no longer automatically enable the Secret Manager API. This PR adds unit tests to `backend.spec.ts` verifying that `ensureRequiredApisEnabled` and `createGitRepoLink` correctly and explicitly enable the Secret Manager API. The codebase already explicitly enables this API in these locations, so this change guarantees that the flow will not break when the dependency is removed. Fixes b/524212868 ### Scenarios Tested - Ran `npx mocha src/apphosting/backend.spec.ts` to verify tests pass. - Ran `npm run lint:changed-files` to ensure formatting/linting is clean. ### Sample Commands npx mocha src/apphosting/backend.spec.ts
![gemini-code-assist[bot]](https://avatars.githubusercontent.com/in/956858?s=60&v=4){kind=small}
Contributor
There was a problem hiding this comment.
Code Review
This pull request adds unit tests for ensureRequiredApisEnabled and createGitRepoLink in src/apphosting/backend.spec.ts. The review feedback recommends removing a redundant try-finally block in the createGitRepoLink test, as stubs are already automatically restored in the afterEach hook. Removing this block simplifies the test structure and aligns with the repository's style guide to minimize nesting.
Comment on lines
+565
to
+587
| try { | ||
| await createGitRepoLink(projectId, location, "connectionId"); | ||
| expect(ensureStub).to.have.been.calledWith( | ||
| projectId, | ||
| developerConnectOrigin(), | ||
| "apphosting", | ||
| true, | ||
| ); | ||
| expect(ensureStub).to.have.been.calledWith( | ||
| projectId, | ||
| secretManagerOrigin(), | ||
| "apphosting", | ||
| true, | ||
| ); | ||
| expect(ensureStub).to.have.been.calledWith(projectId, iamOrigin(), "apphosting", true); | ||
| expect(linkGitHubRepositoryStub).to.have.been.calledWith( | ||
| projectId, | ||
| location, | ||
| "connectionId", | ||
| ); | ||
| } finally { | ||
| linkGitHubRepositoryStub.restore(); | ||
| } |
Contributor
There was a problem hiding this comment.
The try-finally block is redundant here because sinon.verifyAndRestore() is already called in the afterEach hook (line 88), which automatically restores all stubs created on the default sandbox. Removing the try-finally block reduces unnecessary nesting and improves readability, adhering to the repository style guide's recommendation to reduce nesting as much as possible.
await createGitRepoLink(projectId, location, "connectionId");
expect(ensureStub).to.have.been.calledWith(
projectId,
developerConnectOrigin(),
"apphosting",
true,
);
expect(ensureStub).to.have.been.calledWith(
projectId,
secretManagerOrigin(),
"apphosting",
true,
);
expect(ensureStub).to.have.been.calledWith(projectId, iamOrigin(), "apphosting", true);
expect(linkGitHubRepositoryStub).to.have.been.calledWith(
projectId,
location,
"connectionId",
);References
- Reduce nesting as much as possible. Code should avoid unnecessarily deep nesting or long periods of nesting. (link)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Description
Ensures that the Firebase App Hosting onboarding flow explicitly enables the Secret Manager API alongside the Developer Connect API. Developer Connect is undergoing changes starting September 21, 2026, where it will no longer automatically enable the Secret Manager API.
This PR adds unit tests to
backend.spec.tsverifying thatensureRequiredApisEnabledandcreateGitRepoLinkcorrectly and explicitly enable the Secret Manager API. The codebase already explicitly enables this API in these locations, so this change guarantees that the flow will not break when the dependency is removed.Fixes b/524212868
Scenarios Tested
npx mocha src/apphosting/backend.spec.tsto verify tests pass.npm run lint:changed-filesto ensure formatting/linting is clean.Sample Commands
npx mocha src/apphosting/backend.spec.ts