Fix 3 CI test failures: PerSessionAuth proxy init, McpAndAgents prompt/tool mismatch, session destroy before resume

Agent-Logs-Url: https://github.com/github/copilot-sdk-java/sessions/1cce7322-6672-4e54-be77-b026e33610d7

Co-authored-by: edburns <75821+edburns@users.noreply.github.com>

Author: Copilot

src/test/java/com/github/copilot/sdk/E2ETestContext.java

@@ -327,6 +327,33 @@ public void setCopilotUserByToken(String token, String login, String copilotPlan
         proxy.setCopilotUserByToken(token, login, copilotPlan, apiUrl, telemetryUrl, analyticsTrackingId);
     }
 
+    /**
+     * Initializes the proxy state without loading a snapshot.
+     * <p>
+     * Use this for tests that need the proxy to be active (e.g., for per-session
+     * auth token resolution via {@code /copilot_internal/user}) but do not make AI
+     * completion requests and therefore have no snapshot to load.
+     * </p>
+     * <p>
+     * The proxy requires its internal {@code state} to be initialized before it can
+     * handle most endpoints. Without this call the proxy throws an error and
+     * returns HTTP 500 for any request that arrives before a {@code /config} POST
+     * has been made.
+     * </p>
+     *
+     * @throws IOException
+     *             if the proxy configuration request fails
+     * @throws InterruptedException
+     *             if the request is interrupted
+     */
+    public void initializeProxy() throws IOException, InterruptedException {
+        ensureProxyAlive();
+        // Pass a non-existent snapshot path. The proxy initializes its state even when
+        // the file is absent (storedData simply remains undefined), which is fine for
+        // tests that never make AI chat-completion requests.
+        proxy.configure(workDir.resolve("no-snapshot.yaml").toString(), workDir.toString());
+    }
+
     @Override
     public void close() throws Exception {
         proxy.stop();

src/test/java/com/github/copilot/sdk/McpAndAgentsTest.java

@@ -8,6 +8,8 @@
 
 import java.util.HashMap;
 import java.util.List;
+import java.util.Map;
+import java.util.concurrent.CompletableFuture;
 import java.util.concurrent.TimeUnit;
 
 import org.junit.jupiter.api.AfterAll;
@@ -23,6 +25,7 @@
 import com.github.copilot.sdk.json.PermissionHandler;
 import com.github.copilot.sdk.json.ResumeSessionConfig;
 import com.github.copilot.sdk.json.SessionConfig;
+import com.github.copilot.sdk.json.ToolDefinition;
 
 /**
  * Tests for MCP Servers and Custom Agents functionality.
@@ -349,17 +352,33 @@ void testShouldHideExcludedToolsFromDefaultAgent() throws Exception {
         ctx.configureForTest("mcp_and_agents", "should_hide_excluded_tools_from_default_agent");
 
         try (CopilotClient client = ctx.createClient()) {
+            // Register a secret_tool and exclude it from the default agent — the LLM
+            // should report it has no access to the tool.
+            Map<String, Object> parameters = new HashMap<>();
+            parameters.put("type", "object");
+            parameters.put("properties", Map.of("input", Map.of("type", "string")));
+            parameters.put("required", List.of("input"));
+
+            ToolDefinition secretTool = ToolDefinition.create("secret_tool",
+                    "A secret tool hidden from the default agent", parameters,
+                    invocation -> CompletableFuture.completedFuture("SECRET"));
+
             SessionConfig config = new SessionConfig().setOnPermissionRequest(PermissionHandler.APPROVE_ALL)
-                    .setDefaultAgent(new DefaultAgentConfig().setExcludedTools(List.of("view")));
+                    .setTools(List.of(secretTool))
+                    .setDefaultAgent(new DefaultAgentConfig().setExcludedTools(List.of("secret_tool")));
 
             CopilotSession session = client.createSession(config).get();
 
             assertNotNull(session.getSessionId());
 
-            AssistantMessageEvent response = session.sendAndWait(new MessageOptions().setPrompt("What is 2+2?")).get(60,
-                    TimeUnit.SECONDS);
+            AssistantMessageEvent response = session
+                    .sendAndWait(new MessageOptions()
+                            .setPrompt("Do you have access to a tool called secret_tool? Answer yes or no."))
+                    .get(60, TimeUnit.SECONDS);
 
             assertNotNull(response);
+            assertTrue(response.getData().content().toLowerCase().contains("no"),
+                    "Response should indicate that secret_tool is not accessible: " + response.getData().content());
             session.close();
         }
     }
@@ -380,7 +399,11 @@ void testShouldAcceptDefaultAgentConfigurationOnSessionResume() throws Exception
 
             assertNotNull(session.getSessionId());
             String sessionId = session.getSessionId();
-            session.close();
+            // Do not call session.close() here — that invokes session.destroy on the
+            // server,
+            // which removes the session and causes the subsequent resumeSession to fail
+            // with "Session not found". The session handle is simply abandoned and the
+            // server-side session remains alive for the resume call below.
 
             CopilotSession resumedSession = client.resumeSession(sessionId,
                     new ResumeSessionConfig().setOnPermissionRequest(PermissionHandler.APPROVE_ALL)

src/test/java/com/github/copilot/sdk/PerSessionAuthTest.java

@@ -54,6 +54,10 @@ private CopilotClient createAuthTestClient() {
     }
 
     private void setupCopilotUsers() throws Exception {
+        // Initialize proxy state before registering tokens — the proxy requires its
+        // internal state to be initialized (via /config) before it can handle the
+        // /copilot_internal/user endpoint used for per-session auth resolution.
+        ctx.initializeProxy();
         ctx.setCopilotUserByToken("token-alice", "alice", "individual_pro", ctx.getProxyUrl(),
                 "https://localhost:1/telemetry", "alice-tracking-id");
         ctx.setCopilotUserByToken("token-bob", "bob", "business", ctx.getProxyUrl(), "https://localhost:1/telemetry",