BCDA-7415: update test cov (#168)

## 🎫 Ticket

https://jira.cms.gov/browse/BCDA-7415

## 🛠 Changes

- adding additional tests
- removed code comment

## ℹ️ Context for reviewers

Bumping test coverage for quality gate. 

## ✅ Acceptance Validation

new and current tests pass.

## 🔒 Security Implications

- [ ] This PR adds a new software dependency or dependencies.
- [ ] This PR modifies or invalidates one or more of our security
controls.
- [ ] This PR stores or transmits data that was not stored or
transmitted before.
- [ ] This PR requires additional review of its security implications
for other reasons.

If any security implications apply, add Jason Ashbaugh (GitHub username:
StewGoin) as a reviewer and do not merge this PR without his approval.

ssas/service/public/api.go

@@ -101,7 +101,7 @@ func ResetSecret(w http.ResponseWriter, r *http.Request) {
 	}
 
 	if !contains(rd.AllowedGroupIDs, rd.GroupID) || sys.GroupID != rd.GroupID {
-		logger.Error()
+		logger.Error("group id not allowed or does not match system group id")
 		service.JSONError(w, http.StatusUnauthorized, "invalid_client_metadata", "Invalid group")
 		return
 	}

ssas/service/public/api_test.go

@@ -24,6 +24,7 @@ import (
 	"github.com/golang-jwt/jwt/v4"
 	"github.com/pborman/uuid"
 	"github.com/sirupsen/logrus"
+	"github.com/sirupsen/logrus/hooks/test"
 	"github.com/stretchr/testify/assert"
 	m "github.com/stretchr/testify/mock"
 	"github.com/stretchr/testify/require"
@@ -180,6 +181,68 @@ func (s *APITestSuite) TestResetSecretNoSystem() {
 	assert.Nil(s.T(), err)
 }
 
+func (s *APITestSuite) TestResetSecretBadRegData() {
+
+	groupID := "T23234"
+	group := ssas.Group{GroupID: groupID}
+	if err := s.db.Create(&group).Error; err != nil {
+		s.FailNow("unable to create group: " + err.Error())
+	}
+
+	body := strings.NewReader(`{"client_id":"abcd1234"}`)
+	req, err := http.NewRequest("PUT", "/reset", body)
+	if err != nil {
+		s.T().Fail()
+	}
+	req = req.WithContext(context.WithValue(req.Context(), ssas.CtxLoggerKey, s.logEntry))
+
+	logger := ssas.GetLogger(ssas.Logger)
+	logHook := test.NewLocal(logger)
+
+	req = addRegDataContext(s, req, "", []string{groupID})
+	handler := http.Handler(service.GetTransactionID(service.NewCtxLogger(http.HandlerFunc(ResetSecret))))
+	handler.ServeHTTP(s.rr, req)
+	assert.Equal(s.T(), http.StatusUnauthorized, s.rr.Code)
+	assert.Contains(s.T(), s.rr.Body.String(), "Unauthorized")
+
+	entries := logHook.AllEntries()
+	assert.Contains(s.T(), entries[0].Data, "transaction_id")
+
+	err = ssas.CleanDatabase(group)
+	assert.Nil(s.T(), err)
+}
+
+func (s *APITestSuite) TestRegisterSystemBadReg() {
+
+	groupID := "T23234"
+	group := ssas.Group{GroupID: groupID}
+	if err := s.db.Create(&group).Error; err != nil {
+		s.FailNow("unable to create group: " + err.Error())
+	}
+
+	body := strings.NewReader(`{"client_id":"abcd1234"}`)
+	req, err := http.NewRequest("PUT", "/reset", body)
+	if err != nil {
+		s.T().Fail()
+	}
+	req = req.WithContext(context.WithValue(req.Context(), ssas.CtxLoggerKey, s.logEntry))
+
+	logger := ssas.GetLogger(ssas.Logger)
+	logHook := test.NewLocal(logger)
+
+	req = addRegDataContext(s, req, "", []string{groupID})
+	handler := http.Handler(service.GetTransactionID(service.NewCtxLogger(http.HandlerFunc(RegisterSystem))))
+	handler.ServeHTTP(s.rr, req)
+	assert.Equal(s.T(), http.StatusUnauthorized, s.rr.Code)
+	assert.Contains(s.T(), s.rr.Body.String(), "Unauthorized")
+
+	entries := logHook.AllEntries()
+	assert.Contains(s.T(), entries[0].Data, "transaction_id")
+
+	err = ssas.CleanDatabase(group)
+	assert.Nil(s.T(), err)
+}
+
 func (s *APITestSuite) TestResetSecretEmpty() {
 	groupID := "T23234"
 

ssas/service/public/tokens.go

@@ -112,8 +112,6 @@ func tokenValidity(tokenString string, requiredTokenType string) error {
 
 	if service.TokenBlacklist.IsTokenBlacklisted(c.Id) {
 		err = fmt.Errorf("token has been revoked")
-		// tknEvent.Help = err.Error()
-		// ssas.OperationFailed(tknEvent)
 		ssas.Logger.Error(err)
 		return err
 	}