chore(hydra): improve test config setup

GitOrigin-RevId: 554890b424d335e9f87234212079894014372e66

Author: zepatrik

CHANGELOG.md

@@ -4,13 +4,13 @@
 <!-- DON'T EDIT THIS SECTION, INSTEAD RE-RUN doctoc TO UPDATE -->
 **Table of Contents**
 
-- [0.0.0 (2025-07-24)](#000-2025-07-24)
+- [0.0.0 (2025-07-03)](#000-2025-07-03)
   - [Breaking Changes](#breaking-changes)
   - [Related issue(s)](#related-issues)
 
 <!-- END doctoc generated TOC please keep comment here to allow auto update -->
 
-# [0.0.0](https://github.com/ory/hydra/compare/v2.3.0...v0.0.0) (2025-07-24)
+# [0.0.0](https://github.com/ory/hydra/compare/v2.3.0...v0.0.0) (2025-07-03)
 ## Breaking Changes
 
 This patch changes the behavior of configuration item `foo` to do bar. To keep the existing
@@ -41,10 +41,6 @@ If this pull request
 
 ### Bug Fixes
 
-* Add repo syncing for polis ([46d17f8](https://github.com/ory/hydra/commit/46d17f8bfdc59e2185e9ce65823eb2652e01f1b8)):
-
-    GitOrigin-RevId: e277a25d594b512b800d39dd18f36ea3d99fcf84
-
 * Allow updating when JWKS URI is set ([#3935](https://github.com/ory/hydra/issues/3935)) ([#3946](https://github.com/ory/hydra/issues/3946)) ([fb1655b](https://github.com/ory/hydra/commit/fb1655ba86077b10141132ed332ba8d6f8c70582)):
 
     The client validator no longer rejects PATCH and PUT updates when `JSONWebKeysURI` is non-empty and `JSONWebKeys` is not nil.
@@ -75,10 +71,6 @@ If this pull request
     GitOrigin-RevId: 61645585277edd95914705499afd7211a85983eb
 
 * CLI usage help examples ([#3943](https://github.com/ory/hydra/issues/3943)) ([e24f9a7](https://github.com/ory/hydra/commit/e24f9a704c22c72690bc20c498439865181d9239))
-* Copybara script ([7b33358](https://github.com/ory/hydra/commit/7b333585bb44a069bf47267c853aa2e91db0efa3)):
-
-    GitOrigin-RevId: 14665e01451ac5fcdda148b473b8fc35d4fe21ef
-
 * Correct multiple instances of 'stragegy' typo ([#3906](https://github.com/ory/hydra/issues/3906)) ([50eefbc](https://github.com/ory/hydra/commit/50eefbc21c2c43d221b6079bbd78a33ef8c754c4)):
 
     This commit addresses several occurrences where 'strategy' was
@@ -101,26 +93,14 @@ If this pull request
 
     ```
 
-* Identity queries ([a30f021](https://github.com/ory/hydra/commit/a30f021fd98969c2dbc31a4dc3e45365d60c1a25)):
-
-    GitOrigin-RevId: b103d25a807c643b521a12d593486d5125f390be
-
 * Ignore flaky keys in Hydra HSM tests ([469b2ad](https://github.com/ory/hydra/commit/469b2ad538865a38738a10f46d270f53d12101ad)):
 
     GitOrigin-RevId: 83312e6544bc33ccc30e1e1e414cc04910429192
 
-* Include go.mod in vendored oryx ([08a3ab4](https://github.com/ory/hydra/commit/08a3ab43ddb1e2a0df430224f969fe3f0ba161bf)):
-
-    GitOrigin-RevId: 20365bbe6b2cf95ac7973bcca9056455d2cb3803
-
 * **infrastructure:** Hydra oss CI ([e846541](https://github.com/ory/hydra/commit/e84654185cdfffbf160d5309f744795d15d723f9)):
 
     GitOrigin-RevId: 3df0724e5ea4c81a0f4c481c1a3a34529356d073
 
-* Jsonx.ApplyJSONPatch ([c6fa2a6](https://github.com/ory/hydra/commit/c6fa2a6f17f63e43cfecb576bd2a1c1b58c778ed)):
-
-    GitOrigin-RevId: 43c10801f5051e3d5fbea5f4f5e90394f6da0fbb
-
 * JWT documentation link to point to the correct resource ([#3907](https://github.com/ory/hydra/issues/3907)) ([b746e41](https://github.com/ory/hydra/commit/b746e41eda6dc3fe376b147d146a6fcc7dafb455)):
 
     The previous link in the documentation led to a page unrelated to JWT.
@@ -165,14 +145,6 @@ If this pull request
 
     GitOrigin-RevId: 64950988a466bbdb4f25b8d9f5c416ff591c00bf
 
-* Use hard-coded fallback key instead of panic ([e1f6450](https://github.com/ory/hydra/commit/e1f645012f43f62928fdc79710b45d935878367f)):
-
-    GitOrigin-RevId: d7a2270bbf5360288199e9632b2eac6cbc29737c
-
-* Use main branch for polis ([6c24e68](https://github.com/ory/hydra/commit/6c24e68995b8eae9ba0b8872867270ef1d35113b)):
-
-    GitOrigin-RevId: 04533493184c6abdc3a211daffd98f6b68e1c9cc
-
 * Using uuid_generate_v4 function ([#3958](https://github.com/ory/hydra/issues/3958)) ([c206066](https://github.com/ory/hydra/commit/c20606606654af975e5d82998956bb998acee576)):
 
     Removing the md5 function for the uuid generation with native pgsql
@@ -181,13 +153,6 @@ If this pull request
     Closes https://github.com/ory/hydra/issues/3844
 
 
-### Code Refactoring
-
-* Move database meta functions to root x folder for reusability ([7e49133](https://github.com/ory/hydra/commit/7e49133f435d6a0f74a63e8f8d03c5d314d7d3c6)):
-
-    GitOrigin-RevId: 30ee938ea5f1d19bac8967e0ebfe2d595ec27d2b
-
-
 ### Features
 
 * Add error reason to OAuth2TokenExchangeError event ([#3971](https://github.com/ory/hydra/issues/3971)) ([241dd45](https://github.com/ory/hydra/commit/241dd45fa17ed10d1101d890199df47dab4dbce5))
@@ -262,10 +227,6 @@ If this pull request
 
     GitOrigin-RevId: dbb48d171fad1f9b4fd31385f0ef4fb01e39e823
 
-* Move config testhelpers to ory/x ([3a4ba08](https://github.com/ory/hydra/commit/3a4ba084c74cf49a521856f150a8a2c6f3c1aa25)):
-
-    GitOrigin-RevId: fd484445e9715760231f7f86ec212d094e826377
-
 * Revoke Kratos session asynchronously ([#3936](https://github.com/ory/hydra/issues/3936)) ([a0e7ee2](https://github.com/ory/hydra/commit/a0e7ee29298d4f882a7d471e0601b01c6848c40d)):
 
     This change makes the session revocation in Kratos async to improve
@@ -345,18 +306,10 @@ If this pull request
     POST admin/oauth2/auth/sessions/consent?consent_challenge_id=G_TIM3XABG14UwIgDoT1DRfipjhC1uix
     ```
 
-* Use stdlib HTTP router in Kratos ([8f81931](https://github.com/ory/hydra/commit/8f8193179a39dc142d502fbc559891ffa0385ed8)):
-
-    GitOrigin-RevId: 799513e99acbf43a05fe3113ffda45d2fff2a9e0
-
 * Use vendored jackson ([a0a9062](https://github.com/ory/hydra/commit/a0a906211bce4ced3e1f4324eb9d287ef10892a6)):
 
     GitOrigin-RevId: 591238768218ba2b5af93f91ac7e16f4c170da5b
 
-* Use vendored ory/x ([6581e01](https://github.com/ory/hydra/commit/6581e01679b2e146433061cbaaebb80a0e3905b5)):
-
-    GitOrigin-RevId: 994f3b754946ca5b2bd1bab0fe20532f5d5ab62f
-
 
 ### Performance Improvements
 
@@ -367,19 +320,8 @@ If this pull request
 
 ### Tests
 
-* **hydra:** Clean oauth2 session setup ([699e382](https://github.com/ory/hydra/commit/699e38238220f857148b503dfb96d9b057bb4583)):
-
-    GitOrigin-RevId: e05097c7439096cf40fdcf059b3396970b2f1219
-
 * Parallelize and improve ([#3989](https://github.com/ory/hydra/issues/3989)) ([a47e395](https://github.com/ory/hydra/commit/a47e39513f1f08076849f77517977abffa195364))
 
-### Unclassified
-
-* Merge 3834fab8c161a7dc98d43f32acf8efd9e6e95352 into 4dae0f4a8785eb36d8dbb27137f6b924c1e0f0b5 ([dc84053](https://github.com/ory/hydra/commit/dc840535c19d58caf130966e00d3d2fe9f3eb577)):
-
-    GitOrigin-RevId: 0c2dcaa065b64d2aafbcfd49c79363a214c5b2aa
-
-
 
 # [2.3.0](https://github.com/ory/hydra/compare/v2.2.0...v2.3.0) (2025-01-17)
 

aead/aead_test.go

@@ -17,6 +17,7 @@ import (
 	"github.com/ory/hydra/v2/aead"
 	"github.com/ory/hydra/v2/driver/config"
 	"github.com/ory/hydra/v2/internal/testhelpers"
+	"github.com/ory/x/configx"
 )
 
 func secret(t *testing.T) string {
@@ -43,8 +44,7 @@ func TestAEAD(t *testing.T) {
 			t.Run("case=without-rotation", func(t *testing.T) {
 				t.Parallel()
 				ctx := context.Background()
-				c := testhelpers.NewConfigurationWithDefaults()
-				c.MustSet(ctx, config.KeyGetSystemSecret, []string{secret(t)})
+				c := testhelpers.NewConfigurationWithDefaults(t, configx.WithValue(config.KeyGetSystemSecret, []string{secret(t)}))
 				a := NewCipher(c)
 
 				plain := []byte(uuid.New())
@@ -63,8 +63,7 @@ func TestAEAD(t *testing.T) {
 			t.Run("case=wrong-secret", func(t *testing.T) {
 				t.Parallel()
 				ctx := context.Background()
-				c := testhelpers.NewConfigurationWithDefaults()
-				c.MustSet(ctx, config.KeyGetSystemSecret, []string{secret(t)})
+				c := testhelpers.NewConfigurationWithDefaults(t, configx.WithValue(config.KeyGetSystemSecret, []string{secret(t)}))
 				a := NewCipher(c)
 
 				ct, err := a.Encrypt(ctx, []byte(uuid.New()), nil)
@@ -78,9 +77,8 @@ func TestAEAD(t *testing.T) {
 			t.Run("case=with-rotation", func(t *testing.T) {
 				t.Parallel()
 				ctx := context.Background()
-				c := testhelpers.NewConfigurationWithDefaults()
 				old := secret(t)
-				c.MustSet(ctx, config.KeyGetSystemSecret, []string{old})
+				c := testhelpers.NewConfigurationWithDefaults(t, configx.WithValue(config.KeyGetSystemSecret, []string{old}))
 				a := NewCipher(c)
 
 				plain := []byte(uuid.New())
@@ -106,8 +104,7 @@ func TestAEAD(t *testing.T) {
 			t.Run("case=with-rotation-wrong-secret", func(t *testing.T) {
 				t.Parallel()
 				ctx := context.Background()
-				c := testhelpers.NewConfigurationWithDefaults()
-				c.MustSet(ctx, config.KeyGetSystemSecret, []string{secret(t)})
+				c := testhelpers.NewConfigurationWithDefaults(t, configx.WithValue(config.KeyGetSystemSecret, []string{secret(t)}))
 				a := NewCipher(c)
 
 				plain := []byte(uuid.New())
@@ -123,8 +120,7 @@ func TestAEAD(t *testing.T) {
 			t.Run("suite=with additional data", func(t *testing.T) {
 				t.Parallel()
 				ctx := context.Background()
-				c := testhelpers.NewConfigurationWithDefaults()
-				c.MustSet(ctx, config.KeyGetSystemSecret, []string{secret(t)})
+				c := testhelpers.NewConfigurationWithDefaults(t, configx.WithValue(config.KeyGetSystemSecret, []string{secret(t)}))
 				a := NewCipher(c)
 
 				plain := []byte(uuid.New())

client/handler_test.go

@@ -55,7 +55,7 @@ func getClientID(body string) string {
 
 func TestHandler(t *testing.T) {
 	ctx := context.Background()
-	reg := testhelpers.NewMockedRegistry(t, &contextx.Default{})
+	reg := testhelpers.NewRegistryMemory(t)
 	h := client.NewHandler(reg)
 	reg.WithContextualizer(&contextx.TestContextualizer{})
 

client/sdk_test.go

@@ -23,7 +23,7 @@ import (
 	"github.com/ory/hydra/v2/oauth2"
 	"github.com/ory/hydra/v2/x"
 	"github.com/ory/x/assertx"
-	"github.com/ory/x/contextx"
+	"github.com/ory/x/configx"
 	"github.com/ory/x/ioutilx"
 	"github.com/ory/x/pointerx"
 	"github.com/ory/x/uuidx"
@@ -60,35 +60,35 @@ var defaultIgnoreFields = []string{"client_id", "registration_access_token", "re
 
 func TestClientSDK(t *testing.T) {
 	ctx := context.Background()
-	conf := testhelpers.NewConfigurationWithDefaults()
-	conf.MustSet(ctx, config.KeySubjectTypesSupported, []string{"public"})
-	conf.MustSet(ctx, config.KeyDefaultClientScope, []string{"foo", "bar"})
-	conf.MustSet(ctx, config.KeyPublicAllowDynamicRegistration, true)
-	r := testhelpers.NewRegistryMemory(t, conf, &contextx.Static{C: conf.Source(ctx)})
+	r := testhelpers.NewRegistryMemory(t, configx.WithValues(map[string]any{
+		config.KeySubjectTypesSupported:          []string{"public"},
+		config.KeyDefaultClientScope:             []string{"foo", "bar"},
+		config.KeyPublicAllowDynamicRegistration: true,
+	}))
 
-	routerAdmin := x.NewRouterAdmin(conf.AdminURL)
+	routerAdmin := x.NewRouterAdmin(r.Config().AdminURL)
 	routerPublic := x.NewRouterPublic()
 	clHandler := client.NewHandler(r)
 	clHandler.SetPublicRoutes(routerPublic)
 	clHandler.SetAdminRoutes(routerAdmin)
-	o2Handler := oauth2.NewHandler(r, conf)
+	o2Handler := oauth2.NewHandler(r)
 	o2Handler.SetPublicRoutes(routerPublic, func(h http.Handler) http.Handler { return h })
 	o2Handler.SetAdminRoutes(routerAdmin)
 
 	server := httptest.NewServer(routerAdmin)
 	t.Cleanup(server.Close)
 	publicServer := httptest.NewServer(routerPublic)
 	t.Cleanup(publicServer.Close)
-	conf.MustSet(ctx, config.KeyAdminURL, server.URL)
-	conf.MustSet(ctx, config.KeyOAuth2TokenURL, publicServer.URL+"/oauth2/token")
+	r.Config().MustSet(ctx, config.KeyAdminURL, server.URL)
+	r.Config().MustSet(ctx, config.KeyOAuth2TokenURL, publicServer.URL+"/oauth2/token")
 
 	c := hydra.NewAPIClient(hydra.NewConfiguration())
 	c.GetConfig().Servers = hydra.ServerConfigurations{{URL: server.URL}}
 
 	t.Run("case=client default scopes are set", func(t *testing.T) {
 		result, _, err := c.OAuth2API.CreateOAuth2Client(ctx).OAuth2Client(hydra.OAuth2Client{}).Execute()
 		require.NoError(t, err)
-		assert.EqualValues(t, conf.DefaultClientScope(ctx), strings.Split(*result.Scope, " "))
+		assert.EqualValues(t, r.Config().DefaultClientScope(ctx), strings.Split(*result.Scope, " "))
 
 		_, err = c.OAuth2API.DeleteOAuth2Client(ctx, *result.ClientId).Execute()
 		require.NoError(t, err)
@@ -212,12 +212,12 @@ func TestClientSDK(t *testing.T) {
 		path := "/id"
 		value := "foo"
 
-		client := createTestClient("")
-		created, res, err := c.OAuth2API.CreateOAuth2Client(context.Background()).OAuth2Client(client).Execute()
+		cl := createTestClient("")
+		created, res, err := c.OAuth2API.CreateOAuth2Client(context.Background()).OAuth2Client(cl).Execute()
 		require.NoError(t, err, "%s", ioutilx.MustReadAll(res.Body))
-		client.ClientId = created.ClientId
+		cl.ClientId = created.ClientId
 
-		_, _, err = c.OAuth2API.PatchOAuth2Client(context.Background(), *client.ClientId).JsonPatch([]hydra.JsonPatch{{Op: op, Path: path, Value: value}}).Execute()
+		_, _, err = c.OAuth2API.PatchOAuth2Client(context.Background(), *cl.ClientId).JsonPatch([]hydra.JsonPatch{{Op: op, Path: path, Value: value}}).Execute()
 		require.Error(t, err)
 	})
 
@@ -229,7 +229,7 @@ func TestClientSDK(t *testing.T) {
 		cc := clientcredentials.Config{
 			ClientID:     *created.ClientId,
 			ClientSecret: "secret",
-			TokenURL:     conf.OAuth2TokenURL(t.Context()).String(),
+			TokenURL:     r.Config().OAuth2TokenURL(t.Context()).String(),
 			AuthStyle:    goauth2.AuthStyleInHeader,
 		}
 		token, err := cc.Token(t.Context())
@@ -267,13 +267,13 @@ func TestClientSDK(t *testing.T) {
 		path := "/client_name"
 		value := "test"
 
-		client := createTestClient("")
-		client.SetJwksUri("https://example.org/.well-known/jwks.json")
-		created, _, err := c.OAuth2API.CreateOAuth2Client(context.Background()).OAuth2Client(client).Execute()
+		cl := createTestClient("")
+		cl.SetJwksUri("https://example.org/.well-known/jwks.json")
+		created, _, err := c.OAuth2API.CreateOAuth2Client(context.Background()).OAuth2Client(cl).Execute()
 		require.NoError(t, err)
-		client.ClientId = created.ClientId
+		cl.ClientId = created.ClientId
 
-		result, _, err := c.OAuth2API.PatchOAuth2Client(context.Background(), *client.ClientId).JsonPatch([]hydra.JsonPatch{{Op: op, Path: path, Value: value}}).Execute()
+		result, _, err := c.OAuth2API.PatchOAuth2Client(context.Background(), *cl.ClientId).JsonPatch([]hydra.JsonPatch{{Op: op, Path: path, Value: value}}).Execute()
 		require.NoError(t, err)
 		require.Equal(t, value, pointerx.Deref(result.ClientName))
 	})