test(providers): cover CopilotRequestPolicy headers and plugin wiring

Aaronontheweb · Aaronontheweb · commit fbfc1ee3da39 · 2026-05-20T02:19:15.000Z
Adds two test files:

CopilotRequestPolicyTests
- ProcessAsync_AppliesAllFourRequiredHeaders: asserts Authorization
  (Bearer + Copilot token), copilot-integration-id, editor-version,
  and openai-intent all land on the outbound request, and that the
  next policy in the pipeline runs.
- ProcessAsync_OverwritesPreviousAuthorizationHeader: confirms the
  placeholder ApiKeyCredential the SDK sets is replaced with the real
  short-lived Copilot bearer on every call (the production failure
  mode this guards against is a stale placeholder reaching the API).

GitHubCopilotProviderPluginTests
- CreateChatClient_DefaultEndpoint_ReturnsNonNullClient
- CreateChatClient_CustomEndpoint_DoesNotThrow
- Plugin_AdvertisesGitHubCopilotTypeKey

Brings the Copilot test count from 14 to 19. Closes the gap noted in
the PR review around 'no integration test for the chat-completion path'.
diff --git a/src/Netclaw.Daemon.Tests/Providers/GitHubCopilot/CopilotRequestPolicyTests.cs b/src/Netclaw.Daemon.Tests/Providers/GitHubCopilot/CopilotRequestPolicyTests.cs
@@ -0,0 +1,119 @@
+// -----------------------------------------------------------------------
+// <copyright file="CopilotRequestPolicyTests.cs" company="Petabridge, LLC">
+//      Copyright (C) 2026 - 2026 Petabridge, LLC <https://petabridge.com>
+// </copyright>
+// -----------------------------------------------------------------------
+using System.ClientModel.Primitives;
+using System.Net;
+using System.Text;
+using System.Text.Json;
+using Netclaw.Configuration;
+using Netclaw.Providers.GitHubCopilot;
+using Netclaw.Tests.Utilities;
+using Xunit;
+
+namespace Netclaw.Daemon.Tests.Providers.GitHubCopilot;
+
+public sealed class CopilotRequestPolicyTests
+{
+    private static ProviderEntry OAuthEntry(string token = "oauth-1") =>
+        new()
+        {
+            Type = "github-copilot",
+            AuthMethod = AuthMethod.OAuthDevice,
+            OAuthAccessToken = new SensitiveString(token),
+        };
+
+    private static CopilotTokenExchanger ExchangerReturning(string copilotToken)
+    {
+        var handler = new FakeHttpMessageHandler(_ => new HttpResponseMessage(HttpStatusCode.OK)
+        {
+            Content = new StringContent(
+                JsonSerializer.Serialize(new
+                {
+                    token = copilotToken,
+                    expires_at = DateTimeOffset.UtcNow.AddMinutes(30).ToUnixTimeSeconds(),
+                }),
+                Encoding.UTF8,
+                "application/json"),
+        });
+        return new CopilotTokenExchanger(new HttpClient(handler));
+    }
+
+    [Fact]
+    public async Task ProcessAsync_AppliesAllFourRequiredHeaders()
+    {
+        var policy = new CopilotRequestPolicy(
+            ExchangerReturning("copilot-bearer"), OAuthEntry());
+
+        var clientPipeline = ClientPipeline.Create(new ClientPipelineOptions());
+        using var message = clientPipeline.CreateMessage();
+        message.Request.Method = "POST";
+        message.Request.Uri = new Uri("https://api.githubcopilot.com/chat/completions");
+
+        var captured = false;
+        var terminal = new TerminalCapturingPolicy(() => captured = true);
+        IReadOnlyList<PipelinePolicy> pipeline = [policy, terminal];
+
+        await policy.ProcessAsync(message, pipeline, 0);
+
+        Assert.True(captured);
+
+        message.Request.Headers.TryGetValue("Authorization", out var auth);
+        Assert.Equal("Bearer copilot-bearer", auth);
+
+        message.Request.Headers.TryGetValue("copilot-integration-id", out var integrationId);
+        Assert.Equal("vscode-chat", integrationId);
+
+        message.Request.Headers.TryGetValue("editor-version", out var editorVersion);
+        Assert.False(string.IsNullOrWhiteSpace(editorVersion),
+            "editor-version header must be present");
+
+        message.Request.Headers.TryGetValue("openai-intent", out var intent);
+        Assert.Equal("conversation-agent", intent);
+    }
+
+    [Fact]
+    public async Task ProcessAsync_OverwritesPreviousAuthorizationHeader()
+    {
+        // The OpenAI SDK populates Authorization from the placeholder ApiKeyCredential
+        // we pass in. The policy must overwrite it on every call with the real
+        // short-lived Copilot token; a stale placeholder bearer is a 401 in production.
+        var policy = new CopilotRequestPolicy(
+            ExchangerReturning("copilot-real"), OAuthEntry());
+
+        var clientPipeline = ClientPipeline.Create(new ClientPipelineOptions());
+        using var message = clientPipeline.CreateMessage();
+        message.Request.Method = "POST";
+        message.Request.Uri = new Uri("https://api.githubcopilot.com/chat/completions");
+        message.Request.Headers.Set("Authorization", "Bearer placeholder");
+
+        IReadOnlyList<PipelinePolicy> pipeline = [policy, new TerminalCapturingPolicy(() => { })];
+
+        await policy.ProcessAsync(message, pipeline, 0);
+
+        message.Request.Headers.TryGetValue("Authorization", out var auth);
+        Assert.Equal("Bearer copilot-real", auth);
+    }
+
+    /// <summary>
+    /// No-op terminal policy that records whether the previous policy invoked
+    /// the chain. Used so ProcessNextAsync has somewhere to land without
+    /// pulling in a real HTTP transport.
+    /// </summary>
+    private sealed class TerminalCapturingPolicy(Action onInvoke) : PipelinePolicy
+    {
+        public override void Process(
+            PipelineMessage message, IReadOnlyList<PipelinePolicy> pipeline, int currentIndex)
+        {
+            onInvoke();
+        }
+
+        public override ValueTask ProcessAsync(
+            PipelineMessage message, IReadOnlyList<PipelinePolicy> pipeline, int currentIndex)
+        {
+            onInvoke();
+            return ValueTask.CompletedTask;
+        }
+    }
+}
diff --git a/src/Netclaw.Daemon.Tests/Providers/GitHubCopilot/GitHubCopilotProviderPluginTests.cs b/src/Netclaw.Daemon.Tests/Providers/GitHubCopilot/GitHubCopilotProviderPluginTests.cs
@@ -0,0 +1,86 @@
+// -----------------------------------------------------------------------
+// <copyright file="GitHubCopilotProviderPluginTests.cs" company="Petabridge, LLC">
+//      Copyright (C) 2026 - 2026 Petabridge, LLC <https://petabridge.com>
+// </copyright>
+// -----------------------------------------------------------------------
+using System.Net;
+using System.Text;
+using System.Text.Json;
+using Netclaw.Configuration;
+using Netclaw.Providers.GitHubCopilot;
+using Netclaw.Tests.Utilities;
+using Xunit;
+
+namespace Netclaw.Daemon.Tests.Providers.GitHubCopilot;
+
+public sealed class GitHubCopilotProviderPluginTests
+{
+    private static CopilotTokenExchanger NewExchanger()
+    {
+        var handler = new FakeHttpMessageHandler(_ => new HttpResponseMessage(HttpStatusCode.OK)
+        {
+            Content = new StringContent(
+                JsonSerializer.Serialize(new
+                {
+                    token = "copilot-token",
+                    expires_at = DateTimeOffset.UtcNow.AddMinutes(30).ToUnixTimeSeconds(),
+                }),
+                Encoding.UTF8,
+                "application/json"),
+        });
+        return new CopilotTokenExchanger(new HttpClient(handler));
+    }
+
+    private static GitHubCopilotProviderPlugin NewPlugin()
+    {
+        var exchanger = NewExchanger();
+        var descriptor = new GitHubCopilotDescriptor(new HttpClient(), exchanger);
+        return new GitHubCopilotProviderPlugin(descriptor, exchanger);
+    }
+
+    [Fact]
+    public void CreateChatClient_DefaultEndpoint_ReturnsNonNullClient()
+    {
+        var plugin = NewPlugin();
+        var entry = new ProviderEntry
+        {
+            Type = "github-copilot",
+            AuthMethod = AuthMethod.OAuthDevice,
+            OAuthAccessToken = new SensitiveString("oauth-1"),
+        };
+        var model = new ModelReference { Provider = "my-copilot", ModelId = "gpt-4o" };
+
+        var client = plugin.CreateChatClient(entry, model);
+
+        Assert.NotNull(client);
+    }
+
+    [Fact]
+    public void CreateChatClient_CustomEndpoint_DoesNotThrow()
+    {
+        // Operators may point the entry at a corporate proxy in front of
+        // api.githubcopilot.com. The plugin must respect the override and
+        // not double-up the trailing slash.
+        var plugin = NewPlugin();
+        var entry = new ProviderEntry
+        {
+            Type = "github-copilot",
+            AuthMethod = AuthMethod.OAuthDevice,
+            OAuthAccessToken = new SensitiveString("oauth-1"),
+            Endpoint = "https://copilot-proxy.example.com/",
+        };
+        var model = new ModelReference { Provider = "my-copilot", ModelId = "gpt-4o" };
+
+        var client = plugin.CreateChatClient(entry, model);
+
+        Assert.NotNull(client);
+    }
+
+    [Fact]
+    public void Plugin_AdvertisesGitHubCopilotTypeKey()
+    {
+        var plugin = NewPlugin();
+        Assert.Equal("github-copilot", plugin.TypeKey);
+        Assert.Equal("GitHub Copilot", plugin.DisplayName);
+    }
+}
