test(integrations): Add permission, IDOR, and edge case tests for bulk code mappings#109786
Open
romtsn wants to merge 2 commits intorz/feat/bulk-code-mappings-endpointfrom
Open
test(integrations): Add permission, IDOR, and edge case tests for bulk code mappings#109786romtsn wants to merge 2 commits intorz/feat/bulk-code-mappings-endpointfrom
romtsn wants to merge 2 commits intorz/feat/bulk-code-mappings-endpointfrom
Conversation
a7c3d3c to
bba4e7d
Compare
Contributor
There was a problem hiding this comment.
Cursor Bugbot has reviewed your changes and found 1 potential issue.
Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, enable autofix in the Cursor dashboard.
tests/sentry/integrations/api/endpoints/test_organization_code_mappings_bulk.py
Show resolved
Hide resolved
bba4e7d to
fb4125f
Compare
388490d to
f859e09
Compare
fb4125f to
7c50a5e
Compare
7c50a5e to
7a39daa
Compare
7a39daa to
63d0d0c
Compare
63d0d0c to
84754bc
Compare
84754bc to
7a5a034
Compare
7a5a034 to
1627b8f
Compare
8a88ceb to
e78bac9
Compare
1627b8f to
2802318
Compare
…k code mappings Add tests for org:ci token auth, project access checks, cross-org IDOR prevention, duplicate stackRoot handling, and multiple repos with the same name.
2802318 to
2def8c1
Compare
The setUp login_as establishes a session that takes precedence over the Bearer token, so the test was passing via session auth, not the org:ci token. Adding logout ensures only token auth is exercised.
This was referenced Mar 11, 2026
Draft
scttcper
approved these changes
Mar 12, 2026
scttcper
reviewed
Mar 12, 2026
| ) | ||
| assert config._skip_post_save is False | ||
|
|
||
| # --- Permissions --- |
Member
There was a problem hiding this comment.
could remove these again, they typically don't get followed over time
Suggested change
| # --- Permissions --- |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
org:citoken authentication (sentry-cli CI use case)Depends on #109785
Closes getsentry/sentry-android-gradle-plugin#1075
Test plan