Skip to content

Run sigma-api integration tests in CI against Postgres + Redis#19

Merged
lai3d merged 1 commit into
mainfrom
claude/ci-run-tests
May 20, 2026
Merged

Run sigma-api integration tests in CI against Postgres + Redis#19
lai3d merged 1 commit into
mainfrom
claude/ci-run-tests

Conversation

@lai3d
Copy link
Copy Markdown
Owner

@lai3d lai3d commented May 20, 2026

Summary

  • build-api.yml previously only ran docker buildx build for the API image. The integration tests added in Gate /api/ai/triage on admin or operator role #13Audit-log /api/ai/triage requests #17 (RBAC for /api/ai/triage, per-user LLM rate limiting, audit logging) were compile-checked at best — and not even that, since the Docker build wasn't running cargo build against the test target. A regression in any of those security-sensitive paths would have merged green.
  • Added a test-api job that runs before the Docker build, with postgres:16 and redis:7 as GitHub Actions service containers, health-checked and exposed on localhost:5432 / localhost:6379.
  • Sets DATABASE_URL=postgres://sigma:sigma@localhost:5432/sigma_test and REDIS_URL=redis://localhost:6379 — matching what sigma-api/tests/common/mod.rs::setup_with_llm_limit reads. Migrations are run by the tests themselves via sqlx::migrate::Migrator::new("./migrations"), so the workflow just provides empty services.
  • Runs cargo test -p sigma-api -- --test-threads=1. Single-threaded because every test calls setup() which TRUNCATEs shared tables and re-seeds the admin user — parallel runs would race on the shared DB.
  • The existing build-api Docker job is preserved and now needs: test-api, so a red test suite blocks the image build.
  • Added Swatinem/rust-cache@v2 scoped to sigma-api to keep the test job fast on subsequent runs.

Test plan

  • CI green on this PR (the test-api job actually runs the integration suite, not just compiles it)
  • build-api job still produces the API image after test-api passes
  • Confirm in the Actions log that Postgres 16 + Redis 7 service containers come up healthy
  • Confirm cargo test -p sigma-api output shows the ai_triage_test, audit_logs_test, auth_test, providers_test, tickets_test, and users_test targets executing

🤖 Generated with Claude Code

@lai3d @claude
Run sigma-api integration tests in CI against Postgres and Redis
e64b1fd 
The recent RBAC, rate-limit, and audit-log work added a real integration
suite under sigma-api/tests/, but build-api.yml only ran a Docker image
build — the tests were compile-checked at best and never executed on PRs.
A regression in any of those security-sensitive paths would land green.

This adds a test-api job that spins up postgres:16 and redis:7 as service
containers, exposes DATABASE_URL/REDIS_URL matching what tests/common/mod.rs
expects, and runs `cargo test -p sigma-api`. Migrations are applied by the
tests themselves, so the workflow just provides empty services. The Docker
image build now gates on tests passing.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
@lai3d lai3d merged commit 4efedac into main May 20, 2026
@lai3d lai3d deleted the claude/ci-run-tests branch May 20, 2026 09:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@lai3d