Unit test fails in GitHub Actions due to Cloudflare bot protection — proposal to test only PURL redirect header

[alexskr]

test_purl_umls, test_purl_obo, test_purl_owl unit test fails when running in GitHub Actions. The root cause appears to be Cloudflare's bot protection, which blocks the redirect from the PURL server to the BioPortal UI. This doesn't happen locally, but CI consistently hits the anti-bot mechanism.

The test uses Faraday with redirect-following enabled and asserts that the final response is a 200 OK from the BioPortal UI.

Proposal:
Instead of following the redirect to the final UI page (which triggers Cloudflare), we could:

• Disable redirect-following in the HTTP client
• Check only for a 302 response
• Assert that the Location header matches the expected UI URL

This would make the test more robust, reduce external dependency on the prod UI, and still validate that the PURL redirect is functioning correctly.

[alexskr]

per @jvendetti feedback: this change removes the end-to-end PURL redirect test coverage

[alexskr]

relates to #35

[jvendetti]

Compiling some additional notes here (in progress).

test_purl_obo and test_purl_umls fail at the beginning of the methods on the call to find when Cloudflare's Under Attack mode is enabled.

def test_purl_obo
    cls = LinkedData::Client::Models::Class.find(
      'http://purl.obolibrary.org/obo/DOID_4',
      'https://bioportal.bioontology.org/ontologies/DOID'
    )

➜ bundle exec ruby test/models/test_class.rb -n test_purl_obo

  1) Error:
ClassTest#test_purl_obo:
MultiJson::ParseError: Problem loading json
<!DOCTYPE html><html lang="en-US"><head><title>Just a moment...</title>
    ....
    lib/ontologies_api_client/http.rb:89:in `get'
    lib/ontologies_api_client/models/class.rb:62:in `find'
    test/models/test_class.rb:56:in `test_purl_obo'

Reproducible in local dev when Under Attack mode is enabled in production.

[alexskr]

A quick workaround is to add a custom User-Agent string to the Ruby client and create a Cloudflare rule that whitelists it. It’s not a foolproof solution, but it should do the trick.

[jvendetti]

Were you referring to something like this:

Faraday.new do |f|
  f.headers['User-Agent'] = LinkedData::Client.settings.user_agent
  ...

?

If so, any preference on User-Agent string name -- maybe LinkedData-Client-Tests?

[alexskr]

Looks like its already setting NCBO API Ruby Client v2.7.1 User-Agent string; I could use that, unless we want to rename NCBO to something like OntoPortal

[jvendetti]

Ah yes - I see that now. I'm OK w/using the existing string for some initial local dev testing, if you're willing to take care of the Cloudflare whitelisting part.

[alexskr]

Turns out that it is not possible to bypass IUAM with custom WAF Rules