audit work, fixed StellaOps.sln warnings/errors, fixed tests, sprints work, new advisories

2026-01-07 18:49:59 +02:00
parent 04ec098046
commit 608a7f85c0
866 changed files with 56323 additions and 6231 deletions
--- a/src/Authority/StellaOps.Authority/StellaOps.Authority.Plugin.Ldap/LdapIdentityProviderPlugin.cs
+++ b/src/Authority/StellaOps.Authority/StellaOps.Authority.Plugin.Ldap/LdapIdentityProviderPlugin.cs
@@ -22,6 +22,7 @@ internal sealed class LdapIdentityProviderPlugin : IIdentityProviderPlugin
    private readonly IOptionsMonitor<LdapPluginOptions> optionsMonitor;
    private readonly LdapClientProvisioningStore clientProvisioningStore;
    private readonly ILogger<LdapIdentityProviderPlugin> logger;
+    private readonly TimeProvider timeProvider;
    private readonly LdapCapabilityProbe capabilityProbe;
    private readonly AuthorityIdentityProviderCapabilities manifestCapabilities;
    private readonly SemaphoreSlim capabilityGate = new(1, 1);
@@ -38,7 +39,8 @@ internal sealed class LdapIdentityProviderPlugin : IIdentityProviderPlugin
        ILdapConnectionFactory connectionFactory,
        IOptionsMonitor<LdapPluginOptions> optionsMonitor,
        LdapClientProvisioningStore clientProvisioningStore,
-        ILogger<LdapIdentityProviderPlugin> logger)
+        ILogger<LdapIdentityProviderPlugin> logger,
+        TimeProvider? timeProvider = null)
    {
        this.pluginContext = pluginContext ?? throw new ArgumentNullException(nameof(pluginContext));
        this.credentialStore = credentialStore ?? throw new ArgumentNullException(nameof(credentialStore));
@@ -47,6 +49,7 @@ internal sealed class LdapIdentityProviderPlugin : IIdentityProviderPlugin
        this.optionsMonitor = optionsMonitor ?? throw new ArgumentNullException(nameof(optionsMonitor));
        this.clientProvisioningStore = clientProvisioningStore ?? throw new ArgumentNullException(nameof(clientProvisioningStore));
        this.logger = logger ?? throw new ArgumentNullException(nameof(logger));
+        this.timeProvider = timeProvider ?? TimeProvider.System;

        capabilityProbe = new LdapCapabilityProbe(pluginContext.Manifest.Name, connectionFactory, logger);

@@ -142,7 +145,7 @@ internal sealed class LdapIdentityProviderPlugin : IIdentityProviderPlugin
        var checkBootstrap = manifestCapabilities.SupportsBootstrap && options.Bootstrap.Enabled;
        var fingerprint = LdapCapabilitySnapshotCache.ComputeFingerprint(options, checkProvisioning, checkBootstrap);

-        if (LdapCapabilitySnapshotCache.TryGet(Name, fingerprint, DateTimeOffset.UtcNow, out var snapshot))
+        if (LdapCapabilitySnapshotCache.TryGet(Name, fingerprint, timeProvider.GetUtcNow(), out var snapshot))
        {
            UpdateCapabilities(snapshot, checkProvisioning, checkBootstrap, logDegrade: true);
        }
@@ -158,7 +161,7 @@ internal sealed class LdapIdentityProviderPlugin : IIdentityProviderPlugin
        var checkProvisioning = manifestCapabilities.SupportsClientProvisioning && options.ClientProvisioning.Enabled;
        var checkBootstrap = manifestCapabilities.SupportsBootstrap && options.Bootstrap.Enabled;
        var fingerprint = LdapCapabilitySnapshotCache.ComputeFingerprint(options, checkProvisioning, checkBootstrap);
-        var now = DateTimeOffset.UtcNow;
+        var now = timeProvider.GetUtcNow();

        if (LdapCapabilitySnapshotCache.TryGet(Name, fingerprint, now, out var cached))
        {
@@ -169,7 +172,7 @@ internal sealed class LdapIdentityProviderPlugin : IIdentityProviderPlugin
        await capabilityGate.WaitAsync(cancellationToken).ConfigureAwait(false);
        try
        {
-            if (LdapCapabilitySnapshotCache.TryGet(Name, fingerprint, DateTimeOffset.UtcNow, out cached))
+            if (LdapCapabilitySnapshotCache.TryGet(Name, fingerprint, timeProvider.GetUtcNow(), out cached))
            {
                UpdateCapabilities(cached, checkProvisioning, checkBootstrap, logDegrade: true);
                return;
@@ -183,7 +186,7 @@ internal sealed class LdapIdentityProviderPlugin : IIdentityProviderPlugin
                    cancellationToken)
                .ConfigureAwait(false);

-            LdapCapabilitySnapshotCache.Set(Name, fingerprint, DateTimeOffset.UtcNow, options.CapabilityProbe.CacheTtl, snapshot);
+            LdapCapabilitySnapshotCache.Set(Name, fingerprint, timeProvider.GetUtcNow(), options.CapabilityProbe.CacheTtl, snapshot);
            UpdateCapabilities(snapshot, checkProvisioning, checkBootstrap, logDegrade: true);
        }
        finally