2022-11-03 18:23:12 +08:00
|
|
|
import { SignInIdentifier, SignUpIdentifier } from '@logto/schemas';
|
2022-09-21 11:18:00 +08:00
|
|
|
import { adminConsoleApplicationId } from '@logto/schemas/lib/seeds';
|
2022-08-01 09:51:27 +08:00
|
|
|
import { assert } from '@silverhand/essentials';
|
|
|
|
|
|
|
|
import {
|
|
|
|
mockEmailConnectorId,
|
|
|
|
mockEmailConnectorConfig,
|
|
|
|
mockSmsConnectorId,
|
|
|
|
mockSmsConnectorConfig,
|
|
|
|
} from '@/__mocks__/connectors-mock';
|
|
|
|
import {
|
|
|
|
sendRegisterUserWithEmailPasscode,
|
|
|
|
verifyRegisterUserWithEmailPasscode,
|
|
|
|
sendSignInUserWithEmailPasscode,
|
|
|
|
verifySignInUserWithEmailPasscode,
|
|
|
|
sendRegisterUserWithSmsPasscode,
|
|
|
|
verifyRegisterUserWithSmsPasscode,
|
|
|
|
sendSignInUserWithSmsPasscode,
|
|
|
|
verifySignInUserWithSmsPasscode,
|
|
|
|
disableConnector,
|
2022-08-01 16:28:19 +08:00
|
|
|
signInWithUsernameAndPassword,
|
2022-08-01 09:51:27 +08:00
|
|
|
} from '@/api';
|
|
|
|
import MockClient from '@/client';
|
2022-08-01 16:28:19 +08:00
|
|
|
import {
|
|
|
|
registerNewUser,
|
|
|
|
signIn,
|
|
|
|
setUpConnector,
|
|
|
|
readPasscode,
|
|
|
|
createUserByAdmin,
|
2022-10-20 10:57:49 +08:00
|
|
|
setSignUpIdentifier,
|
2022-11-03 18:23:12 +08:00
|
|
|
setSignInMethod,
|
2022-08-01 16:28:19 +08:00
|
|
|
} from '@/helpers';
|
2022-08-01 09:51:27 +08:00
|
|
|
import { generateUsername, generatePassword, generateEmail, generatePhone } from '@/utils';
|
2022-07-28 10:13:21 +08:00
|
|
|
|
|
|
|
describe('username and password flow', () => {
|
|
|
|
const username = generateUsername();
|
|
|
|
const password = generatePassword();
|
|
|
|
|
|
|
|
it('register with username & password', async () => {
|
|
|
|
await expect(registerNewUser(username, password)).resolves.not.toThrow();
|
|
|
|
});
|
|
|
|
|
|
|
|
it('sign-in with username & password', async () => {
|
|
|
|
await expect(signIn(username, password)).resolves.not.toThrow();
|
|
|
|
});
|
|
|
|
});
|
2022-08-01 09:51:27 +08:00
|
|
|
|
|
|
|
describe('email passwordless flow', () => {
|
|
|
|
beforeAll(async () => {
|
|
|
|
await setUpConnector(mockEmailConnectorId, mockEmailConnectorConfig);
|
2022-10-28 15:05:02 +08:00
|
|
|
await setSignUpIdentifier(SignUpIdentifier.Email, false);
|
2022-11-03 18:23:12 +08:00
|
|
|
await setSignInMethod([
|
|
|
|
{
|
|
|
|
identifier: SignInIdentifier.Username,
|
|
|
|
password: true,
|
|
|
|
verificationCode: false,
|
|
|
|
isPasswordPrimary: true,
|
|
|
|
},
|
|
|
|
{
|
|
|
|
identifier: SignInIdentifier.Email,
|
|
|
|
password: false,
|
|
|
|
verificationCode: true,
|
|
|
|
isPasswordPrimary: false,
|
|
|
|
},
|
|
|
|
]);
|
2022-08-01 09:51:27 +08:00
|
|
|
});
|
|
|
|
|
|
|
|
// Since we can not create a email register user throw admin. Have to run the register then sign-in concurrently.
|
|
|
|
const email = generateEmail();
|
|
|
|
|
|
|
|
it('register with email', async () => {
|
|
|
|
const client = new MockClient();
|
|
|
|
|
|
|
|
await client.initSession();
|
|
|
|
assert(client.interactionCookie, new Error('Session not found'));
|
|
|
|
|
|
|
|
await expect(
|
|
|
|
sendRegisterUserWithEmailPasscode(email, client.interactionCookie)
|
|
|
|
).resolves.not.toThrow();
|
|
|
|
|
|
|
|
const passcodeRecord = await readPasscode();
|
|
|
|
|
|
|
|
expect(passcodeRecord).toMatchObject({
|
|
|
|
address: email,
|
|
|
|
type: 'Register',
|
|
|
|
});
|
|
|
|
|
|
|
|
const { code } = passcodeRecord;
|
|
|
|
|
|
|
|
const { redirectTo } = await verifyRegisterUserWithEmailPasscode(
|
|
|
|
email,
|
|
|
|
code,
|
|
|
|
client.interactionCookie
|
|
|
|
);
|
|
|
|
|
|
|
|
await client.processSession(redirectTo);
|
|
|
|
|
2022-09-09 18:37:04 +08:00
|
|
|
await expect(client.isAuthenticated()).resolves.toBe(true);
|
2022-08-01 09:51:27 +08:00
|
|
|
});
|
|
|
|
|
|
|
|
it('sign-in with email', async () => {
|
|
|
|
const client = new MockClient();
|
|
|
|
|
|
|
|
await client.initSession();
|
|
|
|
assert(client.interactionCookie, new Error('Session not found'));
|
|
|
|
|
|
|
|
await expect(
|
|
|
|
sendSignInUserWithEmailPasscode(email, client.interactionCookie)
|
|
|
|
).resolves.not.toThrow();
|
|
|
|
|
|
|
|
const passcodeRecord = await readPasscode();
|
|
|
|
|
|
|
|
expect(passcodeRecord).toMatchObject({
|
|
|
|
address: email,
|
|
|
|
type: 'SignIn',
|
|
|
|
});
|
|
|
|
|
|
|
|
const { code } = passcodeRecord;
|
|
|
|
|
|
|
|
const { redirectTo } = await verifySignInUserWithEmailPasscode(
|
|
|
|
email,
|
|
|
|
code,
|
|
|
|
client.interactionCookie
|
|
|
|
);
|
|
|
|
|
|
|
|
await client.processSession(redirectTo);
|
|
|
|
|
2022-09-09 18:37:04 +08:00
|
|
|
await expect(client.isAuthenticated()).resolves.toBe(true);
|
2022-08-01 09:51:27 +08:00
|
|
|
});
|
|
|
|
|
|
|
|
afterAll(async () => {
|
|
|
|
void disableConnector(mockEmailConnectorId);
|
|
|
|
});
|
|
|
|
});
|
|
|
|
|
|
|
|
describe('sms passwordless flow', () => {
|
|
|
|
beforeAll(async () => {
|
|
|
|
await setUpConnector(mockSmsConnectorId, mockSmsConnectorConfig);
|
2022-10-28 15:05:02 +08:00
|
|
|
await setSignUpIdentifier(SignUpIdentifier.Sms, false);
|
2022-11-03 18:23:12 +08:00
|
|
|
await setSignInMethod([
|
|
|
|
{
|
|
|
|
identifier: SignInIdentifier.Username,
|
|
|
|
password: true,
|
|
|
|
verificationCode: false,
|
|
|
|
isPasswordPrimary: true,
|
|
|
|
},
|
|
|
|
{
|
|
|
|
identifier: SignInIdentifier.Sms,
|
|
|
|
password: false,
|
|
|
|
verificationCode: true,
|
|
|
|
isPasswordPrimary: false,
|
|
|
|
},
|
|
|
|
]);
|
2022-08-01 09:51:27 +08:00
|
|
|
});
|
|
|
|
|
|
|
|
// Since we can not create a sms register user throw admin. Have to run the register then sign-in concurrently.
|
|
|
|
const phone = generatePhone();
|
|
|
|
|
|
|
|
it('register with sms', async () => {
|
|
|
|
const client = new MockClient();
|
|
|
|
|
|
|
|
await client.initSession();
|
|
|
|
assert(client.interactionCookie, new Error('Session not found'));
|
|
|
|
|
|
|
|
await expect(
|
|
|
|
sendRegisterUserWithSmsPasscode(phone, client.interactionCookie)
|
|
|
|
).resolves.not.toThrow();
|
|
|
|
|
|
|
|
const passcodeRecord = await readPasscode();
|
|
|
|
|
|
|
|
expect(passcodeRecord).toMatchObject({
|
|
|
|
phone,
|
|
|
|
type: 'Register',
|
|
|
|
});
|
|
|
|
|
|
|
|
const { code } = passcodeRecord;
|
|
|
|
|
|
|
|
const { redirectTo } = await verifyRegisterUserWithSmsPasscode(
|
|
|
|
phone,
|
|
|
|
code,
|
|
|
|
client.interactionCookie
|
|
|
|
);
|
|
|
|
|
|
|
|
await client.processSession(redirectTo);
|
|
|
|
|
2022-09-09 18:37:04 +08:00
|
|
|
await expect(client.isAuthenticated()).resolves.toBe(true);
|
2022-08-01 09:51:27 +08:00
|
|
|
});
|
|
|
|
|
2022-08-26 16:25:08 +08:00
|
|
|
it('sign-in with sms', async () => {
|
2022-08-01 09:51:27 +08:00
|
|
|
const client = new MockClient();
|
|
|
|
|
|
|
|
await client.initSession();
|
|
|
|
assert(client.interactionCookie, new Error('Session not found'));
|
|
|
|
|
|
|
|
await expect(
|
|
|
|
sendSignInUserWithSmsPasscode(phone, client.interactionCookie)
|
|
|
|
).resolves.not.toThrow();
|
|
|
|
|
|
|
|
const passcodeRecord = await readPasscode();
|
|
|
|
|
|
|
|
expect(passcodeRecord).toMatchObject({
|
|
|
|
phone,
|
|
|
|
type: 'SignIn',
|
|
|
|
});
|
|
|
|
|
|
|
|
const { code } = passcodeRecord;
|
|
|
|
|
|
|
|
const { redirectTo } = await verifySignInUserWithSmsPasscode(
|
|
|
|
phone,
|
|
|
|
code,
|
|
|
|
client.interactionCookie
|
|
|
|
);
|
|
|
|
|
|
|
|
await client.processSession(redirectTo);
|
|
|
|
|
2022-09-09 18:37:04 +08:00
|
|
|
await expect(client.isAuthenticated()).resolves.toBe(true);
|
2022-08-01 09:51:27 +08:00
|
|
|
});
|
|
|
|
|
|
|
|
afterAll(async () => {
|
|
|
|
void disableConnector(mockSmsConnectorId);
|
|
|
|
});
|
|
|
|
});
|
2022-08-01 16:28:19 +08:00
|
|
|
|
|
|
|
describe('sign-in and sign-out', () => {
|
|
|
|
const username = generateUsername();
|
|
|
|
const password = generatePassword();
|
|
|
|
|
|
|
|
beforeAll(async () => {
|
|
|
|
await createUserByAdmin(username, password);
|
2022-10-20 10:57:49 +08:00
|
|
|
await setSignUpIdentifier(SignUpIdentifier.Username);
|
2022-08-01 16:28:19 +08:00
|
|
|
});
|
|
|
|
|
|
|
|
it('verify sign-in and then sign-out', async () => {
|
|
|
|
const client = new MockClient();
|
|
|
|
await client.initSession();
|
|
|
|
|
|
|
|
assert(client.interactionCookie, new Error('Session not found'));
|
|
|
|
|
|
|
|
const { redirectTo } = await signInWithUsernameAndPassword(
|
|
|
|
username,
|
|
|
|
password,
|
|
|
|
client.interactionCookie
|
|
|
|
);
|
|
|
|
|
|
|
|
await client.processSession(redirectTo);
|
|
|
|
|
2022-09-09 18:37:04 +08:00
|
|
|
await expect(client.isAuthenticated()).resolves.toBe(true);
|
2022-08-01 16:28:19 +08:00
|
|
|
|
|
|
|
await client.signOut();
|
|
|
|
|
2022-09-09 18:37:04 +08:00
|
|
|
await expect(client.isAuthenticated()).resolves.toBe(false);
|
2022-08-01 16:28:19 +08:00
|
|
|
});
|
|
|
|
});
|
2022-09-21 11:18:00 +08:00
|
|
|
|
|
|
|
describe('sign-in to demo app and revisit Admin Console', () => {
|
|
|
|
const username = generateUsername();
|
|
|
|
const password = generatePassword();
|
|
|
|
|
|
|
|
beforeAll(async () => {
|
|
|
|
await createUserByAdmin(username, password);
|
|
|
|
});
|
|
|
|
|
|
|
|
it('should throw in Admin Console consent step if a logged in user does not have admin role', async () => {
|
|
|
|
const client = new MockClient();
|
|
|
|
await client.initSession();
|
|
|
|
|
|
|
|
assert(client.interactionCookie, new Error('Session not found'));
|
|
|
|
|
|
|
|
const { redirectTo } = await signInWithUsernameAndPassword(
|
|
|
|
username,
|
|
|
|
password,
|
|
|
|
client.interactionCookie
|
|
|
|
);
|
|
|
|
|
|
|
|
await client.processSession(redirectTo);
|
|
|
|
|
|
|
|
await expect(client.isAuthenticated()).resolves.toBe(true);
|
|
|
|
|
|
|
|
const { interactionCookie } = client;
|
|
|
|
const acClient = new MockClient({ appId: adminConsoleApplicationId });
|
|
|
|
|
|
|
|
acClient.assignCookie(interactionCookie);
|
|
|
|
|
|
|
|
await expect(acClient.initSession()).rejects.toThrow();
|
|
|
|
});
|
|
|
|
});
|