Automate testing

[klausbetz]

Find a way to automate the sign in with apple.

Following cases should be covered

• browser login
• token exchange (apple authz code to keycloak-tokens using different Service ID)
• token exchange (apple authz code to keycloak-tokens using same Service ID)

Test setup preparations

1. Configure local Keycloak instance with test realm (e.g. using docker)
2. Expose Keycloak using ngrok
3. Configure redirect-URI in Apple developer portal
4. Make sure the test users haven't already signed in with apple on the service (if they have, remove SIWA in their appleid settings)

[klausbetz]

ngrok's domain feature looks promising for this purpose.

[klausbetz]

Current steps on local machine are as follows:

• duplicate existing docker compose and update keycloak and extension to the desired version
• start db and keycloak containers (already containing a test realm for siwa)
• expose keycloak via ngrok (the ngrok domain is a registered redirect uri in apple developer settings)
• make sure my apple id is not linked to the service i'm testing (if it is linked, remove the link in apple id settings)
• login in browser via ngrok url in test realm
• token exchange using id-token