upstream/prometheus
1
0
Fork 0
mirror of https://github.com/prometheus/prometheus.git synced 2026-02-03 20:39:32 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions 13
prometheus/web/api/testhelpers/openapi.go
Julien 75f94903b3
Add OpenAPI 3.2 specification generation for Prometheus HTTP API (#17825) 
* Add OpenAPI 3.2 specification generation for Prometheus HTTP API

This commit introduces an OpenAPI specification for the Prometheus API.
After testing multiple code-generation servers with built-in APIs, this
implementation uses an independent spec file outside of the critical path.
This spec file is tested with a framework present in this pull request.

The specification helps clients know which parameters they can use and is
served at /api/v1/openapi.yaml. The spec file will evolve with the
Prometheus API and has the same version number.

Downstream projects can tune the APIs presented in the spec file with
configuration options using the IncludePaths setting for path filtering.

In the future, there is room to generate a server from this spec file
(e.g. with interfaces), but this is out of scope for this pull request.

Architecture:
- Core OpenAPI infrastructure (openapi.go): Dynamic spec building,
  caching, and thread-safe spec generation
- Schema definitions (openapi_schemas.go): Complete type definitions
  for all API request and response types
- Path specifications (openapi_paths.go): Endpoint definitions with
  parameters, request bodies, and response schemas
- Examples (openapi_examples.go): Realistic request/response examples
- Helper functions (openapi_helpers.go): Reusable builders for common
  OpenAPI structures

Testing:
- Comprehensive test suite with golden file validation
- Test helpers package for API testing infrastructure
- OpenAPI compliance validation utilities

The golden file captures the complete specification for snapshot testing.
Update with: go test -run TestOpenAPIGolden -update-openapi-spec

REVIEWERS: The most important thing to check would be the OpenAPI golden
file (web/api/v1/testdata/openapi_golden.yaml). Test scenarios are important
as they test the actual OpenAPI spec validity.

Signed-off-by: Julien Pivotto <291750+roidelapluie@users.noreply.github.com>

* Add OpenAPI 3.1 support with version selection

Add support for both OpenAPI 3.1 and 3.2 specifications with version
selection via openapi_version query parameter. Defaults to 3.1 for
broader compatibility

Signed-off-by: Julien Pivotto <291750+roidelapluie@users.noreply.github.com>

* Enhance OpenAPI examples and add helper functions

- Add timestampExamples helper for consistent time formatting
- Add exampleMap helper to simplify example creation
- Improve example summaries with query details
- Add matrix result example for range vector queries

Signed-off-by: Julien Pivotto <291750+roidelapluie@users.noreply.github.com>

* web/api: Add AtST method to test helper iterators

Implement the AtST() method required by chunkenc.Iterator interface
for FakeSeriesIterator and FakeHistogramSeriesIterator test helpers.
The method returns 0 as these test helpers don't use start timestamps

Signed-off-by: Julien Pivotto <291750+roidelapluie@users.noreply.github.com>

* OpenAPI: Add minimum coverage test

Signed-off-by: Julien Pivotto <291750+roidelapluie@users.noreply.github.com>

* OpenAPI: Improve examples handling

Signed-off-by: Julien Pivotto <291750+roidelapluie@users.noreply.github.com>

---------

Signed-off-by: Julien Pivotto <291750+roidelapluie@users.noreply.github.com>
2026-01-29 13:36:13 +01:00

204 lines
6.6 KiB
Go
Raw Blame History

// Copyright The Prometheus Authors
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
// This file provides OpenAPI-specific test utilities for validating spec compliance.
package testhelpers
import (
"bytes"
"fmt"
"io"
"net/http"
"os"
"path/filepath"
"strings"
"sync"
"github.com/pb33f/libopenapi"
validator "github.com/pb33f/libopenapi-validator"
valerrors "github.com/pb33f/libopenapi-validator/errors"
"github.com/stretchr/testify/require"
)
var (
openAPIValidator31 validator.Validator
openAPIValidator32 validator.Validator
openAPIValidatorOnce sync.Once
openAPIValidatorErr error
)
// loadOpenAPIValidators loads and caches both OpenAPI 3.1 and 3.2 validators from golden files.
func loadOpenAPIValidators() (v31, v32 validator.Validator, err error) {
openAPIValidatorOnce.Do(func() {
// Load OpenAPI 3.1 validator.
goldenPath31 := filepath.Join("testdata", "openapi_3.1_golden.yaml")
specBytes31, err := os.ReadFile(goldenPath31)
if err != nil {
openAPIValidatorErr = fmt.Errorf("failed to read OpenAPI 3.1 spec from %s: %w", goldenPath31, err)
return
}
doc31, err := libopenapi.NewDocument(specBytes31)
if err != nil {
openAPIValidatorErr = fmt.Errorf("failed to parse OpenAPI 3.1 document: %w", err)
return
}
v31, errs := validator.NewValidator(doc31)
if len(errs) > 0 {
openAPIValidatorErr = fmt.Errorf("failed to create OpenAPI 3.1 validator: %v", errs)
return
}
openAPIValidator31 = v31
// Load OpenAPI 3.2 validator.
goldenPath32 := filepath.Join("testdata", "openapi_3.2_golden.yaml")
specBytes32, err := os.ReadFile(goldenPath32)
if err != nil {
openAPIValidatorErr = fmt.Errorf("failed to read OpenAPI 3.2 spec from %s: %w", goldenPath32, err)
return
}
doc32, err := libopenapi.NewDocument(specBytes32)
if err != nil {
openAPIValidatorErr = fmt.Errorf("failed to parse OpenAPI 3.2 document: %w", err)
return
}
v32, errs := validator.NewValidator(doc32)
if len(errs) > 0 {
openAPIValidatorErr = fmt.Errorf("failed to create OpenAPI 3.2 validator: %v", errs)
return
}
openAPIValidator32 = v32
})
if openAPIValidatorErr != nil {
return nil, nil, openAPIValidatorErr
}
return openAPIValidator31, openAPIValidator32, nil
}
// ValidateOpenAPI validates the request and response against both OpenAPI 3.1 and 3.2 specifications.
// This ensures API endpoints are compatible with both OpenAPI versions.
// Returns the response for chaining.
func (r *Response) ValidateOpenAPI() *Response {
r.t.Helper()
// Load both validators (cached after first call).
v31, v32, err := loadOpenAPIValidators()
require.NoError(r.t, err, "failed to load OpenAPI validators")
// Validate against OpenAPI 3.1 spec.
if r.request != nil {
r.validateRequestWithVersion(v31, "3.1")
}
r.validateResponseWithVersion(v31, "3.1")
// Validate against OpenAPI 3.2 spec.
if r.request != nil {
r.validateRequestWithVersion(v32, "3.2")
}
r.validateResponseWithVersion(v32, "3.2")
return r
}
// validateRequestWithVersion validates the HTTP request against a specific OpenAPI version's spec.
func (r *Response) validateRequestWithVersion(v validator.Validator, version string) {
r.t.Helper()
// Create a validation request from the original request.
validationReq := &http.Request{
Method: r.request.Method,
URL: r.request.URL,
Header: r.request.Header,
Body: io.NopCloser(bytes.NewReader(r.requestBody)),
}
// Validate the request.
valid, errors := v.ValidateHttpRequest(validationReq)
if !valid {
// Check if the error is because the path doesn't exist in this version.
// Some endpoints (like /notifications/live) only exist in 3.2, not 3.1.
if isPathNotFoundError(errors) && version == "3.1" && strings.Contains(r.request.URL.Path, "/notifications/live") {
// Expected: /notifications/live is only in OpenAPI 3.2.
return
}
var errorMessages []string
for _, e := range errors {
errorMessages = append(errorMessages, e.Error())
}
require.Fail(r.t, fmt.Sprintf("OpenAPI %s request validation failed", version),
"Request to %s %s failed OpenAPI %s validation:\n%v",
r.request.Method, r.request.URL.Path, version, errorMessages)
}
}
// validateResponseWithVersion validates the HTTP response against a specific OpenAPI version's spec.
func (r *Response) validateResponseWithVersion(v validator.Validator, version string) {
r.t.Helper()
// Create a validation request (needed for response validation context).
validationReq := &http.Request{
Method: r.request.Method,
URL: r.request.URL,
Header: r.request.Header,
}
// Create a response for validation.
validationResp := &http.Response{
StatusCode: r.StatusCode,
Header: r.responseHeader,
Body: io.NopCloser(bytes.NewReader([]byte(r.Body))),
Request: validationReq,
}
// Validate the response.
valid, errors := v.ValidateHttpResponse(validationReq, validationResp)
if !valid {
// Check if the error is because the path doesn't exist in this version.
// Some endpoints (like /notifications/live) only exist in 3.2, not 3.1.
if isPathNotFoundError(errors) && version == "3.1" && strings.Contains(r.request.URL.Path, "/notifications/live") {
// Expected: /notifications/live is only in OpenAPI 3.2.
return
}
var errorMessages []string
for _, e := range errors {
errorMessages = append(errorMessages, e.Error())
}
require.Fail(r.t, fmt.Sprintf("OpenAPI %s response validation failed", version),
"Response from %s %s (status %d) failed OpenAPI %s validation:\n%v",
r.request.Method, r.request.URL.Path, r.StatusCode, version, errorMessages)
}
}
// isPathNotFoundError checks if the validation errors indicate a path was not found in the spec.
func isPathNotFoundError(errors []*valerrors.ValidationError) bool {
for _, err := range errors {
errStr := err.Error()
// Check for common "path not found" error messages from libopenapi-validator.
if strings.Contains(errStr, "path") && (strings.Contains(errStr, "not found") || strings.Contains(errStr, "does not exist")) {
return true
}
if strings.Contains(errStr, "GET /notifications/live") || strings.Contains(errStr, "/notifications/live not found") {
return true
}
}
return false
}
Reference in a new issue View git blame Copy permalink