custom claim 타입보정 UI. 대표테넌트 노출 보정

2026-06-11 11:27:11 +09:00
parent 0bb3ccb850
commit f60b15a17b
37 changed files with 2952 additions and 417 deletions
--- a/devfront/tests/devfront-consents.spec.ts
+++ b/devfront/tests/devfront-consents.spec.ts
@@ -6,6 +6,7 @@ import {
  seedAuth,
 } from "./helpers/devfront-fixtures";
 import { captureEvidence } from "./helpers/evidence";
+import { installDevFrontStaticRoutes } from "./helpers/static-devfront";

 test.describe("DevFront consents", () => {
  test.afterEach(async ({ page }, testInfo) => {
@@ -15,6 +16,7 @@ test.describe("DevFront consents", () => {
  });

  test.beforeEach(async ({ page }) => {
+    await installDevFrontStaticRoutes(page);
    page.on("dialog", async (dialog) => {
      await dialog.accept();
    });
@@ -81,7 +83,7 @@ test.describe("DevFront consents", () => {
    };
    await installDevApiMock(page, state);

-    await page.goto("/clients/client-consent/consents");
+    await page.goto("http://devfront.test/clients/client-consent/consents");
    await expect(page.getByText("Alice")).toBeVisible();
    await expect(page.getByText("Tenant A")).toBeVisible();
    await expect(page.getByText(/approvalLevel:\s*A/)).toBeVisible();
@@ -127,4 +129,43 @@ test.describe("DevFront consents", () => {
    await page.getByRole("button", { name: /권한 철회|철회|Revoke/i }).click();
    await expect(page.getByText(/Revoked|철회/i).first()).toBeVisible();
  });
+
+  test("does not allow adding undefined RP claims from consents and claims", async ({
+    page,
+  }) => {
+    const state = {
+      clients: [
+        makeClient("client-consent", {
+          name: "Consent app",
+          metadata: {},
+        }),
+      ],
+      consents: [
+        {
+          subject: "user-1",
+          userName: "Alice",
+          clientId: "client-consent",
+          clientName: "Consent app",
+          grantedScopes: ["openid", "profile"],
+          authenticatedAt: "2026-03-03T08:00:00.000Z",
+          createdAt: "2026-03-02T08:00:00.000Z",
+          status: "active",
+          tenantId: "tenant-a",
+          tenantName: "Tenant A",
+          rpMetadata: {},
+        },
+      ] as Consent[],
+      auditLogsByCursor: undefined,
+    };
+    await installDevApiMock(page, state);
+
+    await page.goto("http://devfront.test/clients/client-consent/consents");
+    await page.getByRole("button", { name: /Claims|Claim/i }).click();
+
+    await expect(page.getByText("RP Custom Claims")).toBeVisible();
+    await expect(
+      page.getByRole("button", { name: /^추가$|^Add$/ }),
+    ).toHaveCount(0);
+    await expect(page.getByPlaceholder(/claim_key/i)).toHaveCount(0);
+  });
 });