ahx
diff --git a/‎CHANGELOG.md‎
Lines changed: 11 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 11 additions & 0 deletions
diff --git a/‎Gemfile‎
Lines changed: 2 additions & 0 deletions b/‎Gemfile‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎Gemfile.lock‎
Lines changed: 127 additions & 1 deletion b/‎Gemfile.lock‎
Lines changed: 127 additions & 1 deletion
diff --git a/‎README.md‎
Lines changed: 38 additions & 21 deletions b/‎README.md‎
Lines changed: 38 additions & 21 deletions
diff --git a/‎benchmarks/Gemfile.lock‎
Lines changed: 2 additions & 2 deletions b/‎benchmarks/Gemfile.lock‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎lib/openapi_first/configuration.rb‎
Lines changed: 1 addition & 0 deletions b/‎lib/openapi_first/configuration.rb‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎lib/openapi_first/definition.rb‎
Lines changed: 9 additions & 8 deletions b/‎lib/openapi_first/definition.rb‎
Lines changed: 9 additions & 8 deletions
@@ -2,6 +2,17 @@
 
 ## Unreleased
 
+## 2.8.0
+
+### OpenapiFirst::Test is now stricter and more configurable
+
+Changes:
+- Changed OpenapiFirst::Test to raises an "invalid response" error if it sees an invalid response (https://github.com/ahx/openapi_first/issues/366).
+  You can change this back to the old behavior by setting `OpenapiFirst::Test::Configuration#response_raise_error = false` (but you shouldn't).
+- Added `Test.setup { it.observe(MyApp) }`, `Test.observe(App, api: :my_api)` and internal `Test::Callable[]` to inject request/response validation in rack app as an alternative to overwrite the `app` method in a test
+- Added `Test::Configuration#ignored_unknown_status` to configure response status(es) that do not have to be descriped in the API description. 404 statuses are ignored by default.
+- Changed `OpenapiFirst::Test` to make tests fail if API description is not covered by tests. You can adapt this behavior via `OpenapiFirst::Test.setup` / `skip_response_coverage` or deactivate coverage with `OpenapiFirst::Test::Configuration#report_coverage = false` or `report_coverage = :warn`
+
 ## 2.7.4
 
 - Return 400 if Rack cannot parse query string instead of raising an exception. Fixes https://github.com/ahx/openapi_first/issues/372
 
@@ -12,9 +12,11 @@ group :test, :development do
   gem 'bundler'
   gem 'minitest'
   gem 'rack-test'
+  gem 'rails'
   gem 'rake'
   gem 'rspec'
   gem 'rubocop'
   gem 'rubocop-performance'
   gem 'simplecov'
+  gem 'sinatra'
 end
@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    openapi_first (2.7.4)
+    openapi_first (2.8.0)
       hana (~> 1.3)
       json_schemer (>= 2.1, < 3.0)
       openapi_parameters (>= 0.5.1, < 2.0)
@@ -10,6 +10,26 @@ PATH
 GEM
   remote: https://rubygems.org/
   specs:
+    actioncable (8.0.2)
+      actionpack (= 8.0.2)
+      activesupport (= 8.0.2)
+      nio4r (~> 2.0)
+      websocket-driver (>= 0.6.1)
+      zeitwerk (~> 2.6)
+    actionmailbox (8.0.2)
+      actionpack (= 8.0.2)
+      activejob (= 8.0.2)
+      activerecord (= 8.0.2)
+      activestorage (= 8.0.2)
+      activesupport (= 8.0.2)
+      mail (>= 2.8.0)
+    actionmailer (8.0.2)
+      actionpack (= 8.0.2)
+      actionview (= 8.0.2)
+      activejob (= 8.0.2)
+      activesupport (= 8.0.2)
+      mail (>= 2.8.0)
+      rails-dom-testing (~> 2.2)
     actionpack (8.0.2)
       actionview (= 8.0.2)
       activesupport (= 8.0.2)
@@ -20,12 +40,34 @@ GEM
       rails-dom-testing (~> 2.2)
       rails-html-sanitizer (~> 1.6)
       useragent (~> 0.16)
+    actiontext (8.0.2)
+      actionpack (= 8.0.2)
+      activerecord (= 8.0.2)
+      activestorage (= 8.0.2)
+      activesupport (= 8.0.2)
+      globalid (>= 0.6.0)
+      nokogiri (>= 1.8.5)
     actionview (8.0.2)
       activesupport (= 8.0.2)
       builder (~> 3.1)
       erubi (~> 1.11)
       rails-dom-testing (~> 2.2)
       rails-html-sanitizer (~> 1.6)
+    activejob (8.0.2)
+      activesupport (= 8.0.2)
+      globalid (>= 0.3.6)
+    activemodel (8.0.2)
+      activesupport (= 8.0.2)
+    activerecord (8.0.2)
+      activemodel (= 8.0.2)
+      activesupport (= 8.0.2)
+      timeout (>= 0.4.0)
+    activestorage (8.0.2)
+      actionpack (= 8.0.2)
+      activejob (= 8.0.2)
+      activerecord (= 8.0.2)
+      activesupport (= 8.0.2)
+      marcel (~> 1.0)
     activesupport (8.0.2)
       base64
       benchmark (>= 0.3)
@@ -47,13 +89,22 @@ GEM
     concurrent-ruby (1.3.5)
     connection_pool (2.5.3)
     crass (1.0.6)
+    date (3.4.1)
     diff-lcs (1.6.2)
     docile (1.4.1)
     drb (2.2.3)
+    erb (5.0.1)
     erubi (1.13.1)
+    globalid (1.2.1)
+      activesupport (>= 6.1)
     hana (1.3.7)
     i18n (1.14.7)
       concurrent-ruby (~> 1.0)
+    io-console (0.8.0)
+    irb (1.15.2)
+      pp (>= 0.6.0)
+      rdoc (>= 4.0.0)
+      reline (>= 0.4.2)
     json (2.12.2)
     json_schemer (2.4.0)
       bigdecimal
@@ -66,7 +117,26 @@ GEM
     loofah (2.24.1)
       crass (~> 1.0.2)
       nokogiri (>= 1.12.0)
+    mail (2.8.1)
+      mini_mime (>= 0.1.1)
+      net-imap
+      net-pop
+      net-smtp
+    marcel (1.0.4)
+    mini_mime (1.1.5)
     minitest (5.25.5)
+    mustermann (3.0.3)
+      ruby2_keywords (~> 0.0.1)
+    net-imap (0.5.9)
+      date
+      net-protocol
+    net-pop (0.1.2)
+      net-protocol
+    net-protocol (0.2.2)
+      timeout
+    net-smtp (0.5.1)
+      net-protocol
+    nio4r (2.7.4)
     nokogiri (1.18.8-arm64-darwin)
       racc (~> 1.4)
     nokogiri (1.18.8-x86_64-linux-gnu)
@@ -77,26 +147,63 @@ GEM
     parser (3.3.8.0)
       ast (~> 2.4.1)
       racc
+    pp (0.6.2)
+      prettyprint
+    prettyprint (0.2.0)
     prism (1.4.0)
+    psych (5.2.6)
+      date
+      stringio
     racc (1.8.1)
     rack (3.1.16)
+    rack-protection (4.1.1)
+      base64 (>= 0.1.0)
+      logger (>= 1.6.0)
+      rack (>= 3.0.0, < 4)
     rack-session (2.1.1)
       base64 (>= 0.1.0)
       rack (>= 3.0.0)
     rack-test (2.2.0)
       rack (>= 1.3)
     rackup (2.2.1)
       rack (>= 3)
+    rails (8.0.2)
+      actioncable (= 8.0.2)
+      actionmailbox (= 8.0.2)
+      actionmailer (= 8.0.2)
+      actionpack (= 8.0.2)
+      actiontext (= 8.0.2)
+      actionview (= 8.0.2)
+      activejob (= 8.0.2)
+      activemodel (= 8.0.2)
+      activerecord (= 8.0.2)
+      activestorage (= 8.0.2)
+      activesupport (= 8.0.2)
+      bundler (>= 1.15.0)
+      railties (= 8.0.2)
     rails-dom-testing (2.3.0)
       activesupport (>= 5.0.0)
       minitest
       nokogiri (>= 1.6)
     rails-html-sanitizer (1.6.2)
       loofah (~> 2.21)
       nokogiri (>= 1.15.7, != 1.16.7, != 1.16.6, != 1.16.5, != 1.16.4, != 1.16.3, != 1.16.2, != 1.16.1, != 1.16.0.rc1, != 1.16.0)
+    railties (8.0.2)
+      actionpack (= 8.0.2)
+      activesupport (= 8.0.2)
+      irb (~> 1.13)
+      rackup (>= 1.0.0)
+      rake (>= 12.2)
+      thor (~> 1.0, >= 1.2.2)
+      zeitwerk (~> 2.6)
     rainbow (3.1.1)
     rake (13.3.0)
+    rdoc (6.14.1)
+      erb
+      psych (>= 4.0.0)
     regexp_parser (2.10.0)
+    reline (0.6.1)
+      io-console (~> 0.5)
     rspec (3.13.1)
       rspec-core (~> 3.13.0)
       rspec-expectations (~> 3.13.0)
@@ -129,6 +236,7 @@ GEM
       rubocop (>= 1.75.0, < 2.0)
       rubocop-ast (>= 1.38.0, < 2.0)
     ruby-progressbar (1.13.0)
+    ruby2_keywords (0.0.5)
     securerandom (0.4.1)
     simplecov (0.22.0)
       docile (~> 1.1)
@@ -137,13 +245,29 @@ GEM
     simplecov-html (0.13.1)
     simplecov_json_formatter (0.1.4)
     simpleidn (0.2.3)
+    sinatra (4.1.1)
+      logger (>= 1.6.0)
+      mustermann (~> 3.0)
+      rack (>= 3.0.0, < 4)
+      rack-protection (= 4.1.1)
+      rack-session (>= 2.0.0, < 3)
+      tilt (~> 2.0)
+    stringio (3.1.7)
+    thor (1.3.2)
+    tilt (2.6.0)
+    timeout (0.4.3)
     tzinfo (2.0.6)
       concurrent-ruby (~> 1.0)
     unicode-display_width (3.1.4)
       unicode-emoji (~> 4.0, >= 4.0.4)
     unicode-emoji (4.0.4)
     uri (1.0.3)
     useragent (0.16.11)
+    websocket-driver (0.8.0)
+      base64
+      websocket-extensions (>= 0.1.0)
+    websocket-extensions (0.1.5)
+    zeitwerk (2.7.3)
 
 PLATFORMS
   arm64-darwin-21
@@ -159,11 +283,13 @@ DEPENDENCIES
   rack (>= 3.0.0)
   rack-test
   rackup
+  rails
   rake
   rspec
   rubocop
   rubocop-performance
   simplecov
+  sinatra
 
 BUNDLED WITH
    2.3.10
@@ -1,8 +1,24 @@
 # openapi_first
 
-openapi_first is a Ruby gem for request / response validation and contract-testing against an [OpenAPI](https://www.openapis.org/) 3.0 or 3.1 API description. It makes an APIFirst workflow easy and reliable.
+openapi_first is a Ruby gem for request / response validation and contract-testing against an [OpenAPI](https://www.openapis.org/) 3.0 or 3.1 Openapi API description (OAD). It makes an APIFirst workflow easy and reliable.
 
-You can use openapi_first on production for [request validation](#request-validation) and in your [tests](#contract-testing) to avoid API drift with it's request/response validation and coverage features.
+## Usage
+
+Use an OAD to validate incoming requests in production:
+```ruby
+use OpenapiFirst::Middlewares::RequestValidation, 'openapi/openapi.yaml'
+```
+
+Turn your request tests into contract tests against an OAD:
+```ruby
+# spec_helper.rb
+require 'openapi_first'
+OpenapiFirst::Test.setup do |config|
+  config.register('openapi/openapi.yaml')
+end
+require 'application' # Load Application code
+OpenapiFirst::Test.observe(Application)
+```
 
 ## Contents
 
@@ -35,27 +51,28 @@ Here is how to set it up:
   This should go at the top of your test helper file before loading your application code.
     ```ruby
     require 'openapi_first'
-    OpenapiFirst::Test.setup do |test|
-      test.register('openapi/openapi.yaml')
-      # Optional: Make tests fail if coverage is below minimum
-      test.minimum_coverage = 100
-      # Optional: Skip certain responses, which are described in your API description, but need no test coverage
-      test.skip_response_coverage { it.status == '500' } #
-    end
-    ```
-2. Add an `app` method to your tests by including a Module. This `app` method wraps your application with silent request / response validation. This validates all requests/responses in your test run. (✷1)
-    ```ruby
-    RSpec.configure do |config|
-      config.include OpenapiFirst::Test::Methods[MyApp], type: :request
-    end
-    ```
-    Or add the `app` method yourself:
-
-    ```ruby
-    def app
-      OpenapiFirst::Test.app(MyApp)
+    OpenapiFirst::Test.setup do |config|
+      config.register('openapi/openapi.yaml')
     end
     ```
+2. Observe your application. You can do this in one of two ways:
+    - Inject a Module to wrap (prepend) the `call` method of your Rack app Class.
+      ```ruby
+      OpenapiFirst::Test.observe(MyApplication)
+      ```
+    - Or add an `app` method to your tests, which wraps your application with silent request / response validation. (✷1)
+      ```ruby
+      RSpec.configure do |config|
+        config.include OpenapiFirst::Test::Methods[MyApp], type: :request
+      end
+      ```
+      Or add the `app` method yourself:
+
+      ```ruby
+      def app
+        OpenapiFirst::Test.app(MyApp)
+      end
+      ```
 3. Run your tests. The Coverage feature will tell you about missing or invalid requests/responses.
 
 (✷1): It does not matter what method of openapi_first you use to validate requests/responses. Instead of using `OpenapiFirstTest.app` to wrap your application, you could also use the [middlewares](#rack-middlewares) or [test assertion method](#test-assertions), but you would have to do that for all requests/responses defined in your API description to make coverage work.
 
@@ -1,7 +1,7 @@
 PATH
   remote: ..
   specs:
-    openapi_first (2.7.4)
+    openapi_first (2.8.0)
       hana (~> 1.3)
       json_schemer (>= 2.1, < 3.0)
       openapi_parameters (>= 0.5.1, < 2.0)
@@ -15,7 +15,7 @@ GEM
     benchmark-ips (2.14.0)
     benchmark-memory (0.2.0)
       memory_profiler (~> 1)
-    bigdecimal (3.2.1)
+    bigdecimal (3.2.2)
     committee (5.5.4)
       json_schema (~> 0.14, >= 0.14.3)
       openapi_parser (~> 2.0)
 
@@ -30,6 +30,7 @@ def clone
     HOOKS.each do |hook|
       define_method(hook) do |&block|
         hooks[hook] << block
+        block
       end
     end
 
 
@@ -86,14 +86,15 @@ def validate_response(rack_request, rack_response, raise_error: false)
 
       response_match = route.match_response(status: rack_response.status, content_type: rack_response.content_type)
       error = response_match.error
-      if error
-        ValidatedResponse.new(rack_response, error:)
-      else
-        response_match.response.validate(rack_response)
-      end.tap do |validated|
-        @config.hooks[:after_response_validation]&.each { |hook| hook.call(validated, rack_request, self) }
-        raise validated.error.exception(validated) if raise_error && validated.invalid?
-      end
+      validated = if error
+                    ValidatedResponse.new(rack_response, error:)
+                  else
+                    response_match.response.validate(rack_response)
+                  end
+      @config.hooks[:after_response_validation]&.each { |hook| hook.call(validated, rack_request, self) }
+      raise validated.error.exception(validated) if raise_error && validated.invalid?
+
+      validated
     end
 
     private