nsecbunkerd

aiolabs/nsecbunkerd

Fork 0

Commit graph

Author	SHA1	Message	Date
Padreug	e2cf10a66d	test(acl)(#25 ): extract pure grantIsLive/liveWhere + unit tests Some checks failed Docker image / build-and-push-image (push) Has been cancelled Details Move the lifecycle predicate into lib/acl/lifecycle.ts (re-exported from the ACL module) so it can be unit-tested without a database. Adds Node built-in test-runner coverage for the boundary conditions that define the fix: past expiry -> dead, expiry == now -> dead (exclusive), revoke beats a future expiry, and liveWhere kept in lockstep with grantIsLive. Runner is node:test via ts-node (no new dependency; pnpm add is blocked by the nix-built node_modules hoist pattern). 'npm test' -> 7 passing. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>	2026-06-19 15:16:37 +02:00

Author

SHA1

Message

Date

Padreug

e2cf10a66d

test(acl)(#25 ): extract pure grantIsLive/liveWhere + unit tests

Docker image / build-and-push-image (push) Has been cancelled

Details

Move the lifecycle predicate into lib/acl/lifecycle.ts (re-exported from
the ACL module) so it can be unit-tested without a database. Adds Node
built-in test-runner coverage for the boundary conditions that define
the fix: past expiry -> dead, expiry == now -> dead (exclusive), revoke
beats a future expiry, and liveWhere kept in lockstep with grantIsLive.

Runner is node:test via ts-node (no new dependency; pnpm add is blocked
by the nix-built node_modules hoist pattern). 'npm test' -> 7 passing.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>

2026-06-19 15:16:37 +02:00

1 commit