Merging to release-5.8: [TT-7306] Revert allow list to migrated mock response (#6946)

[buger]

User description

TT-7306 Revert allow list to migrated mock response (#6946)

User description

TT-7306

Summary	[OAS:migration] Migrate Mock Response from Classic API Definition to OAS API Definition
Type	Bug
Status	In Dev
Points	N/A
Labels	QA_Fail

---

Description

This PR makes sure that allow_list is not removed from migrated mock
responses

Related Issue

https://tyktech.atlassian.net/browse/TT-7306

Motivation and Context

How This Has Been Tested

Screenshots (if appropriate)

Types of changes

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing
  functionality to change)
• Refactoring or add test (improvements in base code or adds test
  coverage to functionality)

Checklist

• I ensured that the documentation is up to date
• I explained why this PR updates go.mod in detail with reasoning
  why it's required
• I would like a code coverage CI quality gate exception and have
  explained why

---

PR Type

• Enhancement
• Tests

---

Description

• Remove resetting of allow list in OAS operations.

• Update fixture tests with structured allow and block settings.

• Add new test cases for block list and classic mock response.

---

Changes walkthrough 📝

	Relevant files
Enhancement	operation.go Remove nil-reset of allow in operation config.                      apidef/oas/operation.go Removed resetting allow property to nil. Preserve allow configuration for mock responses. +0/-2
Tests	mock_response.yml Update mock response fixtures allow/block configuration.  apidef/oas/testdata/fixtures/mock_response.yml Replace allow: with explicit allow block. Add new block list test and update response settings. Enable allow list with enabled flag in fixtures. +96/-4

---

Need help?

Type /help how to

... in the comments thread for any questions about PR-Agent
usage.

Check out the documentation
for more information.

---

PR Type

• Enhancement
• Tests

---

Description

• Removed resetting of allow in operation configuration.

• Updated fixtures with explicit allow and block settings.

• Added new test cases for classic mock responses.

---

Changes walkthrough 📝

	Relevant files
Enhancement	operation.go Remove resetting allow field in operation code                      apidef/oas/operation.go Removed tykOperation.Allow = nil line. Preserves allow configuration for mock responses. +0/-2
Tests	mock_response.yml Update mock response fixtures allow/block settings              apidef/oas/testdata/fixtures/mock_response.yml Replaced allow with explicit settings. Added block configuration for test GET operations. Introduced new test cases for classic mock responses. +96/-4

---

Need help?

Type /help how to ... in the comments thread for any questions about PR-Agent usage.

Check out the documentation for more information.

[github-actions]

API Changes

no api changes detected

[github-actions]

PR Reviewer Guide 🔍

Here are some key observations to aid the review process:

🎫 Ticket compliance analysis 🔶 6946 - Partially compliant Compliant requirements: Allow list is preserved in operation configuration. Fixture tests now have explicit allow settings and include new block list cases. Non-compliant requirements: [] Requires further human verification: Verify that the legacy (classic) configuration using allow: is handled as expected.

⏱️ Estimated effort to review: 3 🔵🔵🔵⚪⚪

🧪 PR contains tests

🔒 No security concerns identified

⚡ Recommended focus areas for review Config Consistency Review the consistency in the new explicit allow and block settings across different test cases to ensure they align with expected behavior for both migrated and classic responses. - desc: "block list - classic" source: "classic" input: version_data: versions: "": extended_paths: black_list: - path: "/test" method: "" ignore_case: false disabled: false method_actions: GET: action: "reply" code: 200 headers: Content-Type: "application/json" data: '{"message": "success"}' output: paths: /test: get: operationId: testGET responses: "200": description: '' x-tyk-api-gateway: middleware: operations: testGET: allow: <nil> block: enabled: true mockResponse: enabled: true code: 200 body: '{"message": "success"}' headers: - name: Content-Type value: application/json ignoreAuthentication: enabled: true - desc: "basic mock response - classic" source: "classic" input: version_data: versions: "": extended_paths: ignored: - path: "/test" method: "" ignore_case: false disabled: false method_actions: GET: action: "reply" code: 200 headers: Content-Type: "application/json" data: '{"message": "success"}' output: paths: /test: get: operationId: testGET responses: "200": description: '' x-tyk-api-gateway: middleware: operations: testGET: allow: <nil> block: <nil> mockResponse: enabled: true code: 200 body: '{"message": "success"}' headers: - name: Content-Type value: application/json ignoreAuthentication: enabled: true

[github-actions]

PR Code Suggestions ✨

Explore these optional code suggestions:

Category	Suggestion	Impact
General	Unify configuration booleans Verify that the differing boolean and nil configurations for allow and block in similar test cases are intentional to avoid unexpected test behaviors. apidef/oas/testdata/fixtures/mock_response.yml [376-420] ... -# In "block list - classic": - allow: <nil> +# Unify test case configuration if consistent behavior is intended: + allow: + enabled: true block: - enabled: true + enabled: false ... -# In "basic mock response - classic": - allow: <nil> - block: <nil> Suggestion importance[1-10]: 3 __ Why: The suggestion calls for verifying and potentially unifying the differing configurations between similar test cases, but it is more a prompt for review than a concrete actionable change, resulting in only a modest potential impact.	Low