Duplicate redirect tests for popup

Author: sam-gc

config/mocharc.node.js

@@ -25,7 +25,7 @@
 const config = {
   require: 'ts-node/register',
   timeout: 5000,
-  retries: 5,
+  retries: 0,
   exit: true
 };
 

packages-exp/auth-exp/test/integration/webdriver/popup.test.ts

@@ -0,0 +1,272 @@
+/**
+ * @license
+ * Copyright 2021 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+import {
+  OperationType,
+  UserCredential,
+  User,
+  OAuthCredential
+  // eslint-disable-next-line import/no-extraneous-dependencies
+} from '@firebase/auth-exp';
+import { expect, use } from 'chai';
+import { IdPPage } from './util/idp_page';
+import * as chaiAsPromised from 'chai-as-promised';
+import { browserDescribe } from './util/test_runner';
+import { AnonFunction, CoreFunction, PopupFunction } from './util/functions';
+
+use(chaiAsPromised);
+
+browserDescribe('Popup IdP tests', driver => {
+  it('allows users to sign in', async () => {
+    await driver.callNoWait(PopupFunction.IDP_POPUP);
+    await driver.selectPopupWindow();
+    const widget = new IdPPage(driver.webDriver);
+
+    // We're now on the widget page; wait for load
+    await widget.pageLoad();
+    await widget.clickAddAccount();
+    await widget.fillEmail('[email protected]');
+    await widget.fillDisplayName('Bob Test');
+    await widget.fillScreenName('bob.test');
+    await widget.fillProfilePhoto('http://bob.test/bob.png');
+    await widget.clickSignIn();
+
+    await driver.selectMainWindow();
+    const result: UserCredential = await driver.call(PopupFunction.POPUP_RESULT);
+    const currentUser = await driver.getUserSnapshot();
+    expect(currentUser.email).to.eq('[email protected]');
+    expect(currentUser.displayName).to.eq('Bob Test');
+    expect(currentUser.photoURL).to.eq('http://bob.test/bob.png');
+
+    expect(result.operationType).to.eq(OperationType.SIGN_IN);
+    expect(result.user).to.eql(currentUser);
+  });
+
+  it('can link with another account account', async () => {
+    // First, sign in anonymously
+    const { user: anonUser }: UserCredential = await driver.call(
+      AnonFunction.SIGN_IN_ANONYMOUSLY
+    );
+
+    // Then, link with popup
+    await driver.callNoWait(PopupFunction.IDP_LINK_POPUP);
+    await driver.selectPopupWindow();
+    const widget = new IdPPage(driver.webDriver);
+    await widget.pageLoad();
+    await widget.clickAddAccount();
+    await widget.fillEmail('[email protected]');
+    await widget.clickSignIn();
+
+    await driver.selectMainWindow();
+    // Back on main page; check for the current user matching the anonymous
+    // account as well as the new IdP account
+    const user: User = await driver.getUserSnapshot();
+    expect(user.uid).to.eq(anonUser.uid);
+    expect(user.email).to.eq('[email protected]');
+  });
+
+  it('can be converted to a credential', async () => {
+    // Start with popup
+    await driver.callNoWait(PopupFunction.IDP_POPUP);
+    await driver.selectPopupWindow();
+    const widget = new IdPPage(driver.webDriver);
+    await widget.pageLoad();
+    await widget.clickAddAccount();
+    await widget.fillEmail('[email protected]');
+    await widget.clickSignIn();
+
+    // Generate a credential, then store it on the window before logging out
+    await driver.selectMainWindow();
+    const first = await driver.getUserSnapshot();
+    const cred: OAuthCredential = await driver.call(
+      PopupFunction.GENERATE_CREDENTIAL_FROM_RESULT
+    );
+    expect(cred.accessToken).to.be.a('string');
+    expect(cred.idToken).to.be.a('string');
+    expect(cred.signInMethod).to.eq('google.com');
+
+    // We've now generated that credential. Sign out and sign back in using it
+    await driver.call(CoreFunction.SIGN_OUT);
+    const { user: second }: UserCredential = await driver.call(
+      PopupFunction.SIGN_IN_WITH_POPUP_CREDENTIAL
+    );
+    expect(second.uid).to.eq(first.uid);
+    expect(second.providerData).to.eql(first.providerData);
+  });
+
+  it('handles account exists different credential errors', async () => {
+    // Start with popup and a verified account
+    await driver.callNoWait(PopupFunction.IDP_POPUP);
+    await driver.selectPopupWindow();
+    const widget = new IdPPage(driver.webDriver);
+    await widget.pageLoad();
+    await widget.clickAddAccount();
+    await widget.fillEmail('[email protected]');
+    await widget.clickSignIn();
+
+    await driver.selectMainWindow();
+    const original = await driver.getUserSnapshot();
+    expect(original.emailVerified).to.be.true;
+
+    // Try to sign in with an unverified Facebook account
+    // TODO: Convert this to the widget once unverified accounts work
+    // Come back and verify error / prepare for link
+    await expect(
+      driver.call(PopupFunction.TRY_TO_SIGN_IN_UNVERIFIED, '"[email protected]"')
+    ).to.be.rejected.and.eventually.have.property(
+      'code',
+      'auth/account-exists-with-different-credential'
+    );
+
+    // Now do the link
+    await driver.call(PopupFunction.LINK_WITH_ERROR_CREDENTIAL);
+
+    // Check the user for both providers
+    const user = await driver.getUserSnapshot();
+    expect(user.uid).to.eq(original.uid);
+    expect(user.providerData.map(d => d.providerId)).to.have.members([
+      'google.com',
+      'facebook.com'
+    ]);
+  });
+
+  context('with existing user', () => {
+    let user1: User;
+    let user2: User;
+
+    beforeEach(async () => {
+      // Create a couple existing users
+      let cred: UserCredential = await driver.call(
+        PopupFunction.CREATE_FAKE_GOOGLE_USER,
+        '"[email protected]"'
+      );
+      user1 = cred.user;
+      cred = await driver.call(
+        PopupFunction.CREATE_FAKE_GOOGLE_USER,
+        '"[email protected]"'
+      );
+      user2 = cred.user;
+      await driver.call(CoreFunction.SIGN_OUT);
+    });
+
+    it('a user can sign in again', async () => {
+      // Sign in using pre-poulated user
+      await driver.callNoWait(PopupFunction.IDP_POPUP);
+      await driver.selectPopupWindow();
+
+      // This time, select an existing account
+      const widget = new IdPPage(driver.webDriver);
+      await widget.pageLoad();
+      await widget.selectExistingAccountByEmail(user1.email!);
+
+      // Double check the new sign in matches the old
+      await driver.selectMainWindow();
+      const user = await driver.getUserSnapshot();
+      expect(user.uid).to.eq(user1.uid);
+      expect(user.email).to.eq(user1.email);
+    });
+
+    it('reauthenticate works for the correct user', async () => {
+      // Sign in using pre-poulated user
+      await driver.callNoWait(PopupFunction.IDP_POPUP);
+      await driver.selectPopupWindow();
+
+      const widget = new IdPPage(driver.webDriver);
+      await widget.pageLoad();
+      await widget.selectExistingAccountByEmail(user1.email!);
+
+      // Double check the new sign in matches the old
+      await driver.selectMainWindow();
+      let user = await driver.getUserSnapshot();
+      expect(user.uid).to.eq(user1.uid);
+      expect(user.email).to.eq(user1.email);
+
+      // Reauthenticate specifically
+      await driver.callNoWait(PopupFunction.IDP_REAUTH_POPUP);
+      await driver.selectPopupWindow();
+      await widget.pageLoad();
+      await widget.selectExistingAccountByEmail(user1.email!);
+
+      await driver.selectMainWindow();
+      user = await driver.getUserSnapshot();
+      expect(user.uid).to.eq(user1.uid);
+      expect(user.email).to.eq(user1.email);
+    });
+
+    it('reauthenticate throws for wrong user', async () => {
+      // Sign in using pre-poulated user
+      await driver.callNoWait(PopupFunction.IDP_POPUP);
+      await driver.selectPopupWindow();
+
+      const widget = new IdPPage(driver.webDriver);
+      await widget.pageLoad();
+      await widget.selectExistingAccountByEmail(user1.email!);
+
+      // Immediately reauth but with the wrong user
+      await driver.selectMainWindow();
+      await driver.callNoWait(PopupFunction.IDP_REAUTH_POPUP);
+      await driver.selectPopupWindow();
+      await widget.pageLoad();
+      await widget.selectExistingAccountByEmail(user2.email!);
+
+      await driver.selectMainWindow();
+      await expect(
+        driver.call(PopupFunction.POPUP_RESULT)
+      ).to.be.rejected.and.eventually.have.property(
+        'code',
+        'auth/user-mismatch'
+      );
+    });
+
+    it('handles aborted sign ins', async () => {
+      await driver.callNoWait(PopupFunction.IDP_POPUP);
+      await driver.selectPopupWindow();
+      const widget = new IdPPage(driver.webDriver);
+
+      // Don't actually sign in; go back to the previous page
+      await widget.pageLoad();
+      await driver.closePopup();
+      await expect(driver.call(PopupFunction.POPUP_RESULT)).to.be.rejected.and.eventually.have.property('code', 'auth/popup-closed-by-user');
+      expect(await driver.getUserSnapshot()).to.be.null;
+
+      // Now do sign in
+      await driver.callNoWait(PopupFunction.IDP_POPUP);
+      await driver.selectPopupWindow();
+      // Use user1
+      await widget.pageLoad();
+      await widget.selectExistingAccountByEmail(user1.email!);
+
+      // Ensure the user was signed in...
+      await driver.selectMainWindow();
+      let user = await driver.getUserSnapshot();
+      expect(user.uid).to.eq(user1.uid);
+      expect(user.email).to.eq(user1.email);
+
+      // Now open another sign in, but return
+      await driver.callNoWait(PopupFunction.IDP_REAUTH_POPUP);
+      await driver.selectPopupWindow();
+      await widget.pageLoad();
+      await driver.closePopup();
+      await expect(driver.call(PopupFunction.POPUP_RESULT)).to.be.rejected.and.eventually.have.property('code', 'auth/popup-closed-by-user');
+
+      // Make sure state remained
+      user = await driver.getUserSnapshot();
+      expect(user.uid).to.eq(user1.uid);
+      expect(user.email).to.eq(user1.email);
+    }).timeout(12_000);  // Test takes a while due to the closed-by-user errors
+  });
+});

packages-exp/auth-exp/test/integration/webdriver/static/index.js

@@ -18,12 +18,14 @@
 import * as redirect from './redirect';
 import * as anonymous from './anonymous';
 import * as core from './core';
+import * as popup from './popup';
 import { initializeApp } from '@firebase/app-exp';
 import { getAuth, useAuthEmulator } from '@firebase/auth-exp';
 
-window.core = core;
-window.anonymous = anonymous;
-window.redirect = redirect;
+window.core = {...core};
+window.anonymous = {...anonymous};
+window.redirect = {...redirect};
+window.popup = {...popup};
 
 // The config and emulator URL are injected by the test. The test framework
 // calls this function after that injection.

packages-exp/auth-exp/test/integration/webdriver/static/popup.js

@@ -0,0 +1,94 @@
+/**
+ * @license
+ * Copyright 2020 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+import {
+  FacebookAuthProvider,
+  GoogleAuthProvider,
+  linkWithCredential,
+  linkWithPopup,
+  OAuthProvider,
+  reauthenticateWithPopup,
+  signInWithCredential,
+  signInWithPopup
+} from '@firebase/auth-exp';
+
+// These functions are a little funky: WebDriver relies on callbacks to
+// pass data back to the main Node process. Because of that setup, we can't
+// return the popup tasks as pending promises as they won't resolve until
+// the WebDriver is allowed to do other stuff. Instead, we'll store the
+// promises on the window and provide a way to retrieve them later, unblocking
+// the WebDriver process.
+
+export function idpPopup(optProvider) {
+  const provider = optProvider
+    ? new OAuthProvider(optProvider)
+    : new GoogleAuthProvider();
+  window.popup.popupPromise = signInWithPopup(auth, provider);
+}
+
+export function idpReauthPopup() {
+  window.popup.popupPromise =
+      reauthenticateWithPopup(auth.currentUser, new GoogleAuthProvider());
+}
+
+export function idpLinkPopup() {
+  window.popup.popupPromise = linkWithPopup(auth.currentUser, new GoogleAuthProvider());
+}
+
+export function popupResult() {
+  return window.popup.popupPromise;
+}
+
+export async function generateCredentialFromResult() {
+  const result = await window.popup.popupPromise;
+  window.popup.popupCred = GoogleAuthProvider.credentialFromResult(result);
+  return window.popup.popupCred;
+}
+
+export async function signInWithPopupCredential() {
+  return signInWithCredential(auth, window.popup.popupCred);
+}
+
+export async function linkWithErrorCredential() {
+  await linkWithCredential(auth.currentUser, window.popup.errorCred);
+}
+
+// These below are not technically popup functions but they're helpers for
+// the popup tests.
+
+export function createFakeGoogleUser(email) {
+  return signInWithCredential(
+    auth,
+    GoogleAuthProvider.credential(
+      `{"sub": "__${email}__", "email": "${email}", "email_verified": true}`
+    )
+  );
+}
+
+export async function tryToSignInUnverified(email) {
+  try {
+    await signInWithCredential(
+      auth,
+      FacebookAuthProvider.credential(
+        `{"sub": "$$${email}$$", "email": "${email}", "email_verified": false}`
+      )
+    );
+  } catch (e) {
+    window.popup.errorCred = FacebookAuthProvider.credentialFromError(e);
+    throw e;
+  }
+}