Address GitHub review comments

Author: mtodor

cmd/stackrox-mcp/main_test.go

@@ -11,47 +11,43 @@ import (
 	"github.com/rs/zerolog"
 	"github.com/stackrox/stackrox-mcp/internal/config"
 	"github.com/stackrox/stackrox-mcp/internal/server"
+	"github.com/stackrox/stackrox-mcp/internal/testutil"
 	"github.com/stackrox/stackrox-mcp/internal/toolsets"
 	"github.com/stretchr/testify/assert"
 	"github.com/stretchr/testify/require"
 )
 
-// waitForServerReady polls the server until it's ready to accept connections
-func waitForServerReady(address string, timeout time.Duration) error {
-	deadline := time.Now().Add(timeout)
-	client := &http.Client{Timeout: 100 * time.Millisecond}
-
-	for time.Now().Before(deadline) {
-		resp, err := client.Get(address)
-		if err == nil {
-			_ = resp.Body.Close()
-			return nil
-		}
-		time.Sleep(100 * time.Millisecond)
-	}
-
-	return fmt.Errorf("server did not become ready within %v", timeout)
-}
-
-func TestSetupLogging(t *testing.T) {
-	setupLogging()
-	assert.Equal(t, zerolog.InfoLevel, zerolog.GlobalLevel())
-}
-
-func TestGetToolsets(t *testing.T) {
-	cfg := &config.Config{
+func getDefaultConfig() *config.Config {
+	return &config.Config{
+		Global: config.GlobalConfig{
+			ReadOnlyTools: false,
+		},
 		Central: config.CentralConfig{
 			URL: "central.example.com:8443",
 		},
+		Server: config.ServerConfig{
+			Address: "localhost",
+			Port:    8080,
+		},
 		Tools: config.ToolsConfig{
 			Vulnerability: config.VulnerabilityConfig{
 				Enabled: true,
 			},
 			ConfigManager: config.ConfigManagerConfig{
-				Enabled: true,
+				Enabled: false,
 			},
 		},
 	}
+}
+
+func TestSetupLogging(t *testing.T) {
+	setupLogging()
+	assert.Equal(t, zerolog.InfoLevel, zerolog.GlobalLevel())
+}
+
+func TestGetToolsets(t *testing.T) {
+	cfg := getDefaultConfig()
+	cfg.Tools.ConfigManager.Enabled = true
 
 	allToolsets := getToolsets(cfg)
 	require.NotNil(t, allToolsets)
@@ -68,9 +64,7 @@ func TestGracefulShutdown(t *testing.T) {
 	cfg, err := config.LoadConfig("")
 	require.NoError(t, err)
 	require.NotNil(t, cfg)
-
-	// Use a different port to avoid conflicts
-	cfg.Server.Port = 9999
+	cfg.Server.Port = testutil.GetPortForTest(t)
 
 	registry := toolsets.NewRegistry(cfg, getToolsets(cfg))
 	srv := server.NewServer(cfg, registry)
@@ -84,7 +78,7 @@ func TestGracefulShutdown(t *testing.T) {
 
 	// Wait for server to be ready by polling
 	serverURL := fmt.Sprintf("http://%s:%d", cfg.Server.Address, cfg.Server.Port)
-	err = waitForServerReady(serverURL, 3*time.Second)
+	err = testutil.WaitForServerReady(serverURL, 3*time.Second)
 	require.NoError(t, err, "Server should start within timeout")
 
 	// Establish actual HTTP connection to verify server is responding

internal/config/config_test.go

@@ -2,17 +2,32 @@ package config
 
 import (
 	"os"
-	"path/filepath"
 	"testing"
 
+	"github.com/stackrox/stackrox-mcp/internal/testutil"
 	"github.com/stretchr/testify/assert"
 	"github.com/stretchr/testify/require"
 )
 
-func TestLoadConfig_FromYAML(t *testing.T) {
-	tmpDir := t.TempDir()
-	configPath := filepath.Join(tmpDir, "config.yaml")
+// getDefaultConfig returns a default config for testing validation logic.
+func getDefaultConfig() *Config {
+	return &Config{
+		Central: CentralConfig{
+			URL: "central.example.com:8443",
+		},
+		Server: ServerConfig{
+			Address: "localhost",
+			Port:    8080,
+		},
+		Tools: ToolsConfig{
+			Vulnerability: VulnerabilityConfig{
+				Enabled: true,
+			},
+		},
+	}
+}
 
+func TestLoadConfig_FromYAML(t *testing.T) {
 	yamlContent := `
 central:
   url: central.example.com:8443
@@ -26,10 +41,7 @@ tools:
   config_manager:
     enabled: False
 `
-	err := os.WriteFile(configPath, []byte(yamlContent), 0644)
-	require.NoError(t, err)
-	defer func() { assert.NoError(t, os.Remove(configPath)) }()
-
+	configPath := testutil.WriteYAMLFile(t, yamlContent)
 	cfg, err := LoadConfig(configPath)
 	require.NoError(t, err)
 	require.NotNil(t, cfg)
@@ -50,12 +62,7 @@ tools:
   vulnerability:
     enabled: false
 `
-
-	tmpDir := t.TempDir()
-	configPath := filepath.Join(tmpDir, "config.yaml")
-	err := os.WriteFile(configPath, []byte(yamlContent), 0644)
-	require.NoError(t, err)
-	defer func() { assert.NoError(t, os.Remove(configPath)) }()
+	configPath := testutil.WriteYAMLFile(t, yamlContent)
 
 	assert.NoError(t, os.Setenv("STACKROX_MCP__CENTRAL__URL", "override.example.com:443"))
 	assert.NoError(t, os.Setenv("STACKROX_MCP__TOOLS__VULNERABILITY__ENABLED", "true"))
@@ -136,46 +143,30 @@ func TestLoadConfig_MissingFile(t *testing.T) {
 }
 
 func TestLoadConfig_InvalidYAML(t *testing.T) {
-	tmpDir := t.TempDir()
-	configPath := filepath.Join(tmpDir, "config.yaml")
-
 	invalidYAML := `
 central:
   url: central.example.com:8443
   invalid yaml syntax here: [[[
 `
+	configPath := testutil.WriteYAMLFile(t, invalidYAML)
 
-	err := os.WriteFile(configPath, []byte(invalidYAML), 0644)
-	require.NoError(t, err)
-	defer func() { assert.NoError(t, os.Remove(configPath)) }()
-
-	_, err = LoadConfig(configPath)
+	_, err := LoadConfig(configPath)
 	assert.Error(t, err)
 }
 
 func TestLoadConfig_UnmarshalFailure(t *testing.T) {
-	tmpDir := t.TempDir()
-	configPath := filepath.Join(tmpDir, "config.yaml")
-
 	// YAML with type mismatch - port should be int
 	invalidTypeYAML := `
 server:
   port: "not-a-number"
 `
-
-	err := os.WriteFile(configPath, []byte(invalidTypeYAML), 0644)
-	require.NoError(t, err)
-	defer func() { assert.NoError(t, os.Remove(configPath)) }()
-
-	_, err = LoadConfig(configPath)
+	configPath := testutil.WriteYAMLFile(t, invalidTypeYAML)
+	_, err := LoadConfig(configPath)
 	require.Error(t, err)
 	assert.Contains(t, err.Error(), "failed to unmarshal config")
 }
 
 func TestLoadConfig_ValidationFailure(t *testing.T) {
-	tmpDir := t.TempDir()
-	configPath := filepath.Join(tmpDir, "config.yaml")
-
 	// Valid YAML but fails on central URL validation (no URL)
 	validYAMLInvalidConfig := `
 central:
@@ -188,124 +179,60 @@ tools:
     enabled: true
 `
 
-	err := os.WriteFile(configPath, []byte(validYAMLInvalidConfig), 0644)
-	require.NoError(t, err)
-	defer func() { assert.NoError(t, os.Remove(configPath)) }()
-
-	_, err = LoadConfig(configPath)
+	configPath := testutil.WriteYAMLFile(t, validYAMLInvalidConfig)
+	_, err := LoadConfig(configPath)
 	require.Error(t, err)
 	assert.Contains(t, err.Error(), "invalid configuration")
 	assert.Contains(t, err.Error(), "central.url is required")
 }
 
 func TestValidate_MissingURL(t *testing.T) {
-	cfg := &Config{
-		Central: CentralConfig{
-			URL: "",
-		},
-		Tools: ToolsConfig{
-			Vulnerability: VulnerabilityConfig{
-				Enabled: true,
-			},
-		},
-	}
+	cfg := getDefaultConfig()
+	cfg.Central.URL = ""
 
 	err := cfg.Validate()
 	require.Error(t, err)
 	assert.Contains(t, err.Error(), "central.url is required")
 }
 
 func TestValidate_AtLeastOneTool(t *testing.T) {
-	cfg := &Config{
-		Central: CentralConfig{
-			URL: "central.example.com:8443",
-		},
-		Server: ServerConfig{
-			Address: "localhost",
-			Port:    8080,
-		},
-	}
+	cfg := getDefaultConfig()
+	cfg.Tools.Vulnerability.Enabled = false
 
 	err := cfg.Validate()
 	require.Error(t, err)
 	assert.Contains(t, err.Error(), "at least one tool has to be enabled")
 }
 
 func TestValidate_ValidConfig(t *testing.T) {
-	cfg := &Config{
-		Central: CentralConfig{
-			URL:        "central.example.com:8443",
-			Insecure:   false,
-			ForceHTTP1: false,
-		},
-		Global: GlobalConfig{
-			ReadOnlyTools: true,
-		},
-		Server: ServerConfig{
-			Address: "localhost",
-			Port:    8080,
-		},
-		Tools: ToolsConfig{
-			Vulnerability: VulnerabilityConfig{
-				Enabled: true,
-			},
-			ConfigManager: ConfigManagerConfig{
-				Enabled: false,
-			},
-		},
-	}
+	cfg := getDefaultConfig()
 
 	err := cfg.Validate()
 	assert.NoError(t, err)
 }
 
 func TestValidate_MissingServerAddress(t *testing.T) {
-	cfg := &Config{
-		Central: CentralConfig{
-			URL: "central.example.com:8443",
-		},
-		Server: ServerConfig{
-			Address: "",
-			Port:    8080,
-		},
-		Tools: ToolsConfig{
-			Vulnerability: VulnerabilityConfig{
-				Enabled: true,
-			},
-		},
-	}
+	cfg := getDefaultConfig()
+	cfg.Server.Address = ""
 
 	err := cfg.Validate()
 	require.Error(t, err)
 	assert.Contains(t, err.Error(), "server.address is required")
 }
 
 func TestValidate_InvalidServerPort(t *testing.T) {
-	tests := []struct {
-		name string
+	tests := map[string]struct {
 		port int
 	}{
-		{"zero port", 0},
-		{"negative port", -1},
-		{"port too high", 65536},
+		"zero port":     {port: 0},
+		"negative port": {port: -1},
+		"port too high": {port: 65536},
 	}
 
-	for _, tt := range tests {
-		t.Run(tt.name, func(t *testing.T) {
-			cfg := &Config{
-				Central: CentralConfig{
-					URL: "central.example.com:8443",
-				},
-				Server: ServerConfig{
-					Address: "localhost",
-					Port:    tt.port,
-				},
-				Tools: ToolsConfig{
-					Vulnerability: VulnerabilityConfig{
-						Enabled: true,
-					},
-				},
-			}
+	for name, tt := range tests {
+		t.Run(name, func(t *testing.T) {
+			cfg := getDefaultConfig()
+			cfg.Server.Port = tt.port
 
 			err := cfg.Validate()
 			require.Error(t, err)