copy tokens from UI

katieperry4 · katieperry4 · commit c63b67c04b55 · 2025-07-30T11:37:27.000-04:00
diff --git a/frontend/src/__tests__/cypress/cypress/pages/modelServing.ts b/frontend/src/__tests__/cypress/cypress/pages/modelServing.ts
@@ -108,6 +108,13 @@ class ModelServingGlobal {
   findServingRuntime(name: string) {
     return this.findModelsTable().find(`[data-label=Serving Runtime]`).contains(name);
   }
+
+  findTokenCopyButton(index: number) {
+    if (index === 0) {
+      return cy.findAllByTestId('token-secret').findAllByRole('button').eq(0);
+    }
+    return cy.findAllByTestId('token-secret').eq(index).findAllByRole('button').eq(0);
+  }
 }
 
 class ServingRuntimeGroup extends Contextual<HTMLElement> {}
@@ -243,7 +250,7 @@ class InferenceServiceModal extends ServingModal {
     return this.find().findByTestId('service-account-form-name');
   }
 
-  findSpecificServiceAccountNameInput(index: number) {
+  findServiceAccountIndex(index: number) {
     return this.find().findAllByTestId('service-account-form-name').eq(index);
   }
 
diff --git a/frontend/src/__tests__/cypress/cypress/tests/e2e/dataScienceProjects/models/testModelTokenAuth.cy.ts b/frontend/src/__tests__/cypress/cypress/tests/e2e/dataScienceProjects/models/testModelTokenAuth.cy.ts
@@ -11,7 +11,6 @@ import { retryableBefore } from '#~/__tests__/cypress/cypress/utils/retryableHoo
 import { generateTestUUID } from '#~/__tests__/cypress/cypress/utils/uuidGenerator';
 import {
   checkInferenceServiceState,
-  getModelExternalToken,
   modelExternalTester,
   provisionProjectForModelServing,
   verifyModelExternalToken,
@@ -55,89 +54,114 @@ describe('A model can be deployed with token auth', () => {
     deleteOpenShiftProject(projectName, { wait: true, ignoreNotFound: true, timeout: 300000 });
   });
 
-  it('Verify that a model can be deployed with token auth', () => {
-    cy.log('Model Name:', modelName);
-    cy.step(`Log into the application with ${HTPASSWD_CLUSTER_ADMIN_USER.USERNAME}`);
-    cy.visitWithLogin('/', HTPASSWD_CLUSTER_ADMIN_USER);
-
-    // Project navigation
-    cy.step(`Navigate to the Project list tab and search for ${projectName}`);
-    projectListPage.navigate();
-    projectListPage.filterProjectByName(projectName);
-    projectListPage.findProjectLink(projectName).click();
-
-    // Navigate to Model Serving tab and Deploy a model
-    cy.step('Navigate to Model Serving and click to Deploy a model');
-    projectDetails.findSectionTab('model-server').click();
-    modelServingGlobal.findSingleServingModelButton().click();
-    modelServingGlobal.findDeployModelButton().click();
-
-    // Launch a model
-    cy.step('Launch a Single Serving Model using Openvino');
-    inferenceServiceModal.findModelNameInput().type(testData.singleModelName);
-    inferenceServiceModal.findServingRuntimeTemplateSearchSelector().click();
-    inferenceServiceModal.findGlobalScopedTemplateOption('OpenVINO Model Server').click();
-    inferenceServiceModal.findModelFrameworkSelect().click();
-    inferenceServiceModal.findOpenVinoIROpSet13().click();
-
-    // Enable Model access through an external route
-    cy.step('Enable Model access through an external route');
-    inferenceServiceModal.findDeployedModelRouteCheckbox().click();
-    inferenceServiceModal.findDeployedModelRouteCheckbox().should('be.checked');
-    inferenceServiceModal.findSpecificServiceAccountNameInput(0).clear();
-    inferenceServiceModal.findSpecificServiceAccountNameInput(0).type('secret');
-    inferenceServiceModal.findAddServiceAccountButton().click();
-    inferenceServiceModal.findSpecificServiceAccountNameInput(1).clear();
-    inferenceServiceModal.findSpecificServiceAccountNameInput(1).type('secret2');
-    inferenceServiceModal.findLocationPathInput().type(modelFilePath);
-    inferenceServiceModal.findSubmitButton().click();
-    inferenceServiceModal.shouldBeOpen(false);
-
-    // Verify the model created
-    cy.step('Verify that the Model is running');
-    checkInferenceServiceState(testData.singleModelName, projectName, {
-      checkReady: true,
-      checkLatestDeploymentReady: true,
-    });
-
-    // Verify the model is not accessible without a token
-    cy.step('Verify the model is not accessible without a token');
-    modelExternalTester(modelName, projectName).then(({ response }) => {
-      expect(response.status).to.equal(401);
-    });
-
-    // Verify the model is accessible with a token
-    cy.step('Verify the model is accessible with a token');
-    getModelExternalToken(projectName, 'secret', modelName)
-      .then((token) => verifyModelExternalToken(modelName, projectName, token))
-      .then((response) => {
-        expect(response.status).to.equal(200);
+  it(
+    'Verify that a model can be deployed with token auth',
+    { tags: ['@Smoke', '@SmokeSet3', '@Dashboard', '@ModelServing'] },
+    () => {
+      cy.log('Model Name:', modelName);
+      cy.step(`Log into the application with ${HTPASSWD_CLUSTER_ADMIN_USER.USERNAME}`);
+      cy.visitWithLogin('/', HTPASSWD_CLUSTER_ADMIN_USER);
+
+      // Project navigation
+      cy.step(`Navigate to the Project list tab and search for ${projectName}`);
+      projectListPage.navigate();
+      projectListPage.filterProjectByName(projectName);
+      projectListPage.findProjectLink(projectName).click();
+
+      // Navigate to Model Serving tab and Deploy a model
+      cy.step('Navigate to Model Serving and click to Deploy a model');
+      projectDetails.findSectionTab('model-server').click();
+      modelServingGlobal.findSingleServingModelButton().click();
+      modelServingGlobal.findDeployModelButton().click();
+
+      // Launch a model
+      cy.step('Launch a Single Serving Model using Openvino');
+      inferenceServiceModal.findModelNameInput().type(testData.singleModelName);
+      inferenceServiceModal.findServingRuntimeTemplateSearchSelector().click();
+      inferenceServiceModal.findGlobalScopedTemplateOption('OpenVINO Model Server').click();
+      inferenceServiceModal.findModelFrameworkSelect().click();
+      inferenceServiceModal.findOpenVinoIROpSet13().click();
+
+      // Enable Model access through an external route
+      cy.step('Enable Model access through an external route');
+      inferenceServiceModal.findDeployedModelRouteCheckbox().click();
+      inferenceServiceModal.findDeployedModelRouteCheckbox().should('be.checked');
+      inferenceServiceModal.findServiceAccountIndex(0).clear();
+      inferenceServiceModal.findServiceAccountIndex(0).type('secret');
+      inferenceServiceModal.findAddServiceAccountButton().click();
+      inferenceServiceModal.findServiceAccountIndex(1).clear();
+      inferenceServiceModal.findServiceAccountIndex(1).type('secret2');
+      inferenceServiceModal.findLocationPathInput().type(modelFilePath);
+      inferenceServiceModal.findSubmitButton().click();
+      inferenceServiceModal.shouldBeOpen(false);
+
+      // Verify the model created
+      cy.step('Verify that the Model is running');
+      checkInferenceServiceState(testData.singleModelName, projectName, {
+        checkReady: true,
+        checkLatestDeploymentReady: true,
       });
-    getModelExternalToken(projectName, 'secret2', modelName)
-      .then((token) => verifyModelExternalToken(modelName, projectName, token))
-      .then((response) => {
-        expect(response.status).to.equal(200);
+
+      // Verify the model is not accessible without a token
+      cy.step('Verify the model is not accessible without a token');
+      modelExternalTester(modelName, projectName).then(({ response }) => {
+        expect(response.status).to.equal(401);
       });
 
-    // Remove the token
-    cy.step('Remove the token');
-    modelServingSection
-      .getKServeRow(testData.singleModelName)
-      .find()
-      .findKebabAction('Edit')
-      .click();
-    // Check the service accounts are showing up in the UI
-    kserveModalEdit.findSpecificServiceAccountNameInput(0).should('have.value', 'secret');
-    kserveModalEdit.findSpecificServiceAccountNameInput(1).should('have.value', 'secret2');
-    kserveModalEdit.findTokenAuthenticationCheckbox().click();
-    kserveModalEdit.findTokenAuthenticationCheckbox().should('not.be.checked');
-    kserveModalEdit.findSubmitButton().click();
-    kserveModalEdit.shouldBeOpen(false);
-
-    // Verify the model is accessible without a token
-    cy.step('Verify the model is accessible without a token');
-    verifyModelExternalToken(modelName, projectName).then((response) => {
-      expect(response.status).to.equal(200);
-    });
-  });
+      // Get the tokens from the UI
+      cy.step('Get the tokens from the UI');
+      const kserveRow = modelServingSection.getKServeRow(testData.singleModelName);
+      kserveRow.findToggleButton().click();
+
+      //cy.window({ log: false }).then((win) => win.focus());
+
+      cy.window().then((win) => {
+        const copied: string[] = [];
+        cy.wrap(copied).as('copiedTokens');
+
+        cy.stub(win.navigator.clipboard, 'writeText').callsFake((text: string) => {
+          copied.push(text);
+          return Promise.resolve();
+        });
+      });
+
+      // Click the two copy buttons
+      modelServingGlobal.findTokenCopyButton(0).click();
+      modelServingGlobal.findTokenCopyButton(1).click();
+
+      // Use the copied tokens
+      cy.get<string[]>('@copiedTokens')
+        .should('have.length.at.least', 2)
+        .then((tokens) => {
+          const [token1, token2] = tokens;
+          verifyModelExternalToken(modelName, projectName, token1).then((r) =>
+            expect(r.status).to.equal(200),
+          );
+          verifyModelExternalToken(modelName, projectName, token2).then((r) =>
+            expect(r.status).to.equal(200),
+          );
+        });
+
+      // Remove the token
+      cy.step('Remove the token');
+      modelServingSection
+        .getKServeRow(testData.singleModelName)
+        .find()
+        .findKebabAction('Edit')
+        .click();
+      // Check the service accounts are showing up in the UI
+      kserveModalEdit.findServiceAccountIndex(0).should('have.value', 'secret');
+      kserveModalEdit.findServiceAccountIndex(1).should('have.value', 'secret2');
+      kserveModalEdit.findTokenAuthenticationCheckbox().click();
+      kserveModalEdit.findTokenAuthenticationCheckbox().should('not.be.checked');
+      kserveModalEdit.findSubmitButton().click();
+      kserveModalEdit.shouldBeOpen(false);
+
+      // Verify the model is accessible without a token
+      cy.step('Verify the model is accessible without a token');
+      verifyModelExternalToken(modelName, projectName).then((response) => {
+        expect(response.status).to.equal(200);
+      });
+    },
+  );
 });

Original file line number	Diff line number	Diff line change
`@@ -108,6 +108,13 @@ class ModelServingGlobal {`
`108`	`108`	`findServingRuntime(name: string) {`
`109`	`109`	return this.findModelsTable().find(`[data-label=Serving Runtime]`).contains(name);
`110`	`110`	`}`
	`111`	`+`
	`112`	`+ findTokenCopyButton(index: number) {`
	`113`	`+ if (index === 0) {`
	`114`	`+ return cy.findAllByTestId('token-secret').findAllByRole('button').eq(0);`
	`115`	`+ }`
	`116`	`+ return cy.findAllByTestId('token-secret').eq(index).findAllByRole('button').eq(0);`
	`117`	`+ }`
`111`	`118`	`}`
`112`	`119`
`113`	`120`	`class ServingRuntimeGroup extends Contextual<HTMLElement> {}`
`@@ -243,7 +250,7 @@ class InferenceServiceModal extends ServingModal {`
`243`	`250`	`return this.find().findByTestId('service-account-form-name');`
`244`	`251`	`}`
`245`	`252`
`246`		`- findSpecificServiceAccountNameInput(index: number) {`
	`253`	`+ findServiceAccountIndex(index: number) {`
`247`	`254`	`return this.find().findAllByTestId('service-account-form-name').eq(index);`
`248`	`255`	`}`
`249`	`256`