feat(mcp-alpaca): leverage_cap + paper resolver + environment_info

services/mcp-alpaca/tests/test_environment_info.py

@@ -0,0 +1,51 @@
+from __future__ import annotations
+
+from unittest.mock import AsyncMock, MagicMock
+
+from fastapi.testclient import TestClient
+
+from mcp_common.auth import Principal, TokenStore
+from mcp_common.environment import EnvironmentInfo
+from mcp_alpaca.server import create_app
+
+
+def _make_app(env_info, creds):
+    c = MagicMock()
+    c.paper = True
+    store = TokenStore(tokens={
+        "ct": Principal("core", {"core"}),
+        "ot": Principal("observer", {"observer"}),
+    })
+    return create_app(client=c, token_store=store, creds=creds, env_info=env_info)
+
+
+def test_environment_info_paper_is_testnet():
+    """Alpaca: 'paper' nel secret mappa a environment='testnet'."""
+    env = EnvironmentInfo(
+        exchange="alpaca",
+        environment="testnet",
+        source="env",
+        env_value="true",
+        base_url="https://paper-api.alpaca.markets",
+    )
+    app = _make_app(env, creds={"max_leverage": 1})
+    c = TestClient(app)
+    r = c.post("/tools/environment_info", headers={"Authorization": "Bearer ot"})
+    assert r.status_code == 200
+    body = r.json()
+    assert body["exchange"] == "alpaca"
+    assert body["environment"] == "testnet"
+    assert body["source"] == "env"
+    assert body["base_url"] == "https://paper-api.alpaca.markets"
+    assert body["max_leverage"] == 1
+
+
+def test_environment_info_requires_auth():
+    env = EnvironmentInfo(
+        exchange="alpaca", environment="testnet", source="default",
+        env_value=None, base_url="https://paper-api.alpaca.markets",
+    )
+    app = _make_app(env, creds={"max_leverage": 1})
+    c = TestClient(app)
+    r = c.post("/tools/environment_info")
+    assert r.status_code == 401

services/mcp-alpaca/tests/test_leverage_cap.py

@@ -0,0 +1,47 @@
+from __future__ import annotations
+
+import pytest
+from fastapi import HTTPException
+
+from mcp_alpaca.leverage_cap import enforce_leverage, get_max_leverage
+
+
+def test_get_max_leverage_returns_creds_value():
+    creds = {"max_leverage": 4}
+    assert get_max_leverage(creds) == 4
+
+
+def test_get_max_leverage_default_when_missing():
+    """Default 1 (cash) se il secret non ha max_leverage."""
+    assert get_max_leverage({}) == 1
+
+
+def test_enforce_leverage_pass_at_cap_one():
+    """Alpaca cash account: cap 1, leverage 1 OK."""
+    creds = {"max_leverage": 1}
+    enforce_leverage(1, creds=creds, exchange="alpaca")  # no raise
+
+
+def test_enforce_leverage_reject_over_cap_one():
+    creds = {"max_leverage": 1}
+    with pytest.raises(HTTPException) as exc:
+        enforce_leverage(2, creds=creds, exchange="alpaca")
+    assert exc.value.status_code == 403
+    assert exc.value.detail["error"] == "LEVERAGE_CAP_EXCEEDED"
+    assert exc.value.detail["exchange"] == "alpaca"
+    assert exc.value.detail["requested"] == 2
+    assert exc.value.detail["max"] == 1
+
+
+def test_enforce_leverage_reject_when_below_one():
+    creds = {"max_leverage": 1}
+    with pytest.raises(HTTPException) as exc:
+        enforce_leverage(0, creds=creds, exchange="alpaca")
+    assert exc.value.status_code == 403
+
+
+def test_enforce_leverage_default_when_none():
+    """Se requested è None, applica il cap come default."""
+    creds = {"max_leverage": 1}
+    result = enforce_leverage(None, creds=creds, exchange="alpaca")
+    assert result == 1

services/mcp-alpaca/tests/test_server_acl.py

@@ -44,7 +44,7 @@ def mock_client():
 
 @pytest.fixture
 def http(mock_client, token_store):
-    app = create_app(client=mock_client, token_store=token_store)
+    app = create_app(client=mock_client, token_store=token_store, creds={"max_leverage": 1})
     return TestClient(app)