Merge tag 'v0.21.1' into hotfix

Release v0.21.1

Author: KFloodBCGov

.conventional-changelog.mjs

@@ -1 +1 @@
-** @ychung-mot @larsenle @aldudin @Richand101 @OleksandrBohuslavskyi
+** @KFloodBCGov @skmetpalli

.github/CODEOWNERS

@@ -18,6 +18,7 @@ on:
       - crunchydb/**
       - backup-container/**
       - gateway/**
+      - .github/**
 
 jobs:
   test-backend:

.github/workflows/deploy-dev.yml

@@ -148,7 +148,7 @@ jobs:
       with:
         ref: main
     - name: ZAP Scan
-      uses: zaproxy/action-full-scan@c8994d4f913cf872ec9964ac2d998c9bec369060
+      uses: zaproxy/action-full-scan@v0.12.0
       with:
         token: ${{ secrets.GITHUB_TOKEN }}
         target: https://dev.strdata.gov.bc.ca/

.github/workflows/deploy-test.yml

@@ -0,0 +1,44 @@
+name: Run ZAP API Scan
+
+on:
+  workflow_dispatch:
+    inputs:
+      spec_url:
+        type: string
+        description: The URL of the OpenAPI/GraphQL spec
+        default: https://dev.strdata.gov.bc.ca/api/swagger/strdata/swagger.json
+      auth_header_name:
+        type: string
+        description: The name of the authentication header
+        default: Authorization
+      auth_header_value:
+        type: string
+        description: The value of the authentication header
+        default: Bearer your_token
+
+jobs:
+  zap-api-scan:
+    runs-on: ubuntu-22.04
+    timeout-minutes: 30
+    permissions:
+      contents: read
+      issues: write
+    env:
+      ZAP_AUTH_HEADER_NAME: ${{ github.event.inputs.auth_header_name }}
+      ZAP_AUTH_HEADER_VALUE: ${{ github.event.inputs.auth_header_value }}
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          ref: main
+
+      - name: ZAP API Scan
+        uses: zaproxy/action-api-scan@v0.9.0
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
+          docker_name: 'ghcr.io/zaproxy/zaproxy:stable'
+          format: openapi
+          target: ${{ github.event.inputs.spec_url }}
+          rules_file_name: '.zap/rules.tsv'
+          cmd_options: '-O https://uat.strdata.gov.bc.ca'

.github/workflows/zap-api-scan.yml

@@ -25,7 +25,7 @@ jobs:
       with:
         ref: main
     - name: ZAP Scan
-      uses: zaproxy/action-full-scan@v0.10.0
+      uses: zaproxy/action-full-scan@v0.12.0
       with:
         token: ${{ secrets.GITHUB_TOKEN }}
         target: ${{ github.event.inputs.url }}

.github/workflows/zap-scan.yml

@@ -4,6 +4,7 @@ note
 **/Properties/launchSettings.json
 secrets
 .terraform
+.vs
 docker.env
 backup.sql
 docker-compose.yml
@@ -12,3 +13,4 @@ Scaffolding.txt
 /Test/UITest/Configuration/AppSettings.dev.json
 /Test/UITest/Configuration/AppSettings.test.json
 /Test/UITest/Configuration/AppSettings.uat.json
+zap-results

.gitignore

@@ -1,16 +1,16 @@
 {
   "Users": {
 
-    "User1": "password",
-    "User2": "password"
+    "User1": "UserPW",
+    "User2": "UserPW"
   },
   "Servers": {
     "dev": "https://URL:PORT",
     "default": "http://URL:PORT"
   },
   "ConnectionStrings": {
-    "dev": "Host=localhost; Database=<DatabaseName>; Username=<DBUSER>; Password=<DBPASSWORD>",
-    "default": "Host=localhost; Database=<DatabaseName>; Username=<DBUSER>; Password=<DBPASSWORD>"
+    "dev": "Host=localhost; Database=<DatabaseName>; Username=<DBUSER>; Password=<DBPW>",
+    "default": "Host=localhost; Database=<DatabaseName>; Username=<DBUSER>; Password=<DBPW>"
   },
   "ListingFiles": {
     "File1": "C:\\<PATHTOLISTINGFILE>\\listing-valid-2024-03.csv"

Test/UITest/Configuration/AppSettings.environment.json

@@ -0,0 +1,34 @@
+Feature: ManageJurisdiction
+Link to a feature: https://hous-hpb.atlassian.net/browse/DSS-860
+
+@ManageJurisdiction
+Scenario: ManageJurisdiction
+#User Authentication
+	Given I am an authenticated CEU staff member "<UserName>"  with the appropriate permissions (ADD) and the expected result is "<ExpectedResult>" and I am a "<UserType>" user
+
+#Accessing the feature
+	When I log in and navigate to the Manage Jurisdictions feature
+	Then I should be presented with a list of platforms with a list of local government jurisdictions
+
+#Jurisdiction Information
+	When I view the list of jurisdictions 
+	Then I should see key information about each one
+
+		#Principle Residence Requirement Applies
+		#Business Licence Requirement 
+		#STRs prohibited
+		#Business Licence format
+		#Local Government Code 
+
+#Edit Jurisdiction Information
+	And I should have the ability to edit key information about each one (as above)
+
+Examples:
+	| UserName | UserType  | Environment | ExpectedResult |
+	| CEUaTST  | ceu_admin | all         | pass           |
+
+
+
+
+
+