test cases working with verified email

Author: bhparijat

packages/auth/test/helpers/integration/helpers.d.ts

@@ -21,127 +21,205 @@
  import sinonChai from 'sinon-chai';
 
 //import { mockTotp } from '../../helpers/integration/helpers';
-import {Auth, createUserWithEmailAndPassword, multiFactor, signInAnonymously, signInWithEmailAndPassword, UserCredential} from '@firebase/auth';
-
+import {Auth, createUserWithEmailAndPassword, multiFactor, signInWithEmailAndPassword, UserCredential, sendEmailVerification, applyActionCode, getMultiFactorResolver} from '@firebase/auth';
+import { FirebaseError, getApp } from '@firebase/app';
 import {
   cleanUpTestInstance,
+  code,
   getTestInstance,
-  mockTotp,
+  getTotpCode,
+  delay,
   randomEmail
 } from '../../helpers/integration/helpers';
 import { MultiFactorAssertionImpl } from '../../../src/mfa/mfa_assertion';
 
 import { MultiFactorSessionImpl } from '../../../src/mfa/mfa_session';
-import { TotpMultiFactorAssertionImpl, TotpMultiFactorGenerator, TotpSecret } from '../../../src/mfa/assertions/totp';
+import { TotpMultiFactorGenerator, TotpSecret } from '../../../src/mfa/assertions/totp';
 import * as MFA from '../../../src/api/account_management/mfa';
-import { FirebaseError } from '@firebase/util';
+import { async } from '@firebase/util';
+import { UserCredentialImpl } from '../../../src/core/user/user_credential_impl';
+import { resolve } from 'dns';
+import { UserCredentialInternal } from '../../../internal';
 
 
 
 use(chaiAsPromised);
 use(sinonChai);
 
-const TOTP_COMB_A = {
-
-    response: { sharedSecretKey: 'secretKey3',
-              verificationCodeLength: 30,
-              hashingAlgorithm: 'sha1',
-              periodSec:30,
-              sessionInfo: 'testsSessionInfo',
-              finalizeEnrollmentTime:  Date.now()
-              },
-    code: '...'
-  };
-  
-  const TOTP_COMB_B = {
-
-    response: { sharedSecretKey: 'secretKey2',
-    verificationCodeLength: 30,
-    hashingAlgorithm: 'sha1',
-    periodSec: 30,
-    sessionInfo: 'testsSessionInfo',
-    finalizeEnrollmentTime:  Date.now()
-    },
-    code: '...'
-  };
-
 describe(' Integration tests: Mfa TOTP', () => {
+
+    
     let auth: Auth;
     let idToken: string;
     let signUpCred: UserCredential;
+    let totpSecret: TotpSecret;
     let email: string;
     let assertion: MultiFactorAssertionImpl;
     let _request: MFA.StartTotpMfaEnrollmentRequest;
     let startMfaResponse: MFA.StartTotpMfaEnrollmentResponse;
     let displayName: string;
   beforeEach(async () => {
     auth = getTestInstance();
-    email =randomEmail();
-    idToken = 'testIdToken';
-    signUpCred = await createUserWithEmailAndPassword(
-      auth,
-      email,
-      'password'
-    );
-    await auth.signOut();
+    email = '[email protected]';
+    displayName = 'totp-integration-test';
+    // signUpCred = await createUserWithEmailAndPassword(
+
+    //   auth,
+    //   email,
+    //   'password'
+    // );
+    // await auth.signOut();
   });
 
   afterEach(async () => {
     await cleanUpTestInstance(auth);
 
   });
-    it('should verify using otp', async () => {
 
+  it('should not enroll if incorrect totp supplied', async () => {
+    let session;
+    console.log(email);
+    console.log('session info for: ', getApp().options.projectId);
+    console.log('auth current User:', auth.currentUser);  
+    const cr = await signInWithEmailAndPassword(auth, email, 'password');
+
+    console.log('signed In for totp');
+    const mfaUser =  multiFactor(cr.user);
+
+    console.log('session info for: ');
+    session =  await mfaUser.getSession();
+    console.log(JSON.stringify(session));
+    
+    
+    totpSecret = await TotpMultiFactorGenerator.generateSecret(
+      session
+    );
+
+    console.log("**** totpSecret****");
+    console.log(totpSecret.secretKey);
+    console.log(totpSecret.codeLength);
+    console.log(totpSecret.codeIntervalSeconds);
+    console.log(totpSecret.hashingAlgorithm);
+
+    const totpVerificationCode =  getTotpCode(totpSecret.secretKey, totpSecret.codeIntervalSeconds, totpSecret.codeLength,  totpSecret.hashingAlgorithm);
+    
+    const multiFactorAssertion = TotpMultiFactorGenerator.assertionForEnrollment(
+      totpSecret,
+      totpVerificationCode + '0'
+    );
+
+    console.log(totpVerificationCode);
+    await expect(mfaUser.enroll(multiFactorAssertion, displayName)).to.be.rejectedWith('auth/invalid-verification-code');
+    await auth.signOut();
+  })
+    it('should enroll using correct otp', async () => {
+
+      let session;
       console.log(email);
+      console.log('session info for: ', getApp().options.projectId);
+      console.log('auth current User:', auth.currentUser);  
       const cr = await signInWithEmailAndPassword(auth, email, 'password');
 
-      startMfaResponse = { totpSessionInfo: TOTP_COMB_A.response}
 
+    //  await sendEmailVerification(cr.user);
 
-     
-      const mfaUser =  multiFactor(cr.user);
-      sinon.spy(MultiFactorSessionImpl, '_fromIdtoken');
- 
-      sinon.stub(mfaUser, 'getSession').returns(
-       Promise.resolve(MultiFactorSessionImpl._fromIdtoken(idToken, auth as any)));
-        
-      sinon.stub(MFA, 'startEnrollTotpMfa').callsFake((_auth,_request)=>{
+    //   //Apply the email verification code
+    //   await applyActionCode(auth, (await code(email)).oobCode);
+    //   await cr.user.reload();
+    //   expect(cr.user.emailVerified).to.be.true;
 
-        return Promise.resolve(startMfaResponse)
-      })
+      console.log('signed In for totp');
+      const mfaUser =  multiFactor(cr.user);
 
-     
+      console.log('session info for: ');
 
-      const session =  await mfaUser.getSession();
-       
-      console.log(session);
+
+      session =  await mfaUser.getSession();
+
+      
+      console.log('session');
+      console.log(JSON.stringify(session));
+      
 
-      const totpSecret = await TotpMultiFactorGenerator.generateSecret(
+      totpSecret = await TotpMultiFactorGenerator.generateSecret(
         session
       );
 
-      console.log("**** totpSecret"+ totpSecret);
-      // https://stackoverflow.com/questions/48931815/sinon-stub-not-replacing-function
-      // https://stackoverflow.com/questions/61051247/chai-spies-expect-to-have-been-called-is-failing-on-local-methods
-      expect(MultiFactorSessionImpl._fromIdtoken).to.have.been.calledOnce;
-      //expect(TotpSecret._fromStartTotpMfaEnrollmentResponse).to.have.been.calledOnce;
-      expect(MFA.startEnrollTotpMfa).to.have.been.calledOnce;
+      console.log("**** totpSecret****");
+
+      console.log(totpSecret.secretKey);
+      console.log(totpSecret.codeLength);
+      console.log(totpSecret.codeIntervalSeconds);
+      console.log(totpSecret.hashingAlgorithm);
 
-      expect(await MFA.startEnrollTotpMfa(auth as any, _request)).to.eql(startMfaResponse)
-      
-      expect(totpSecret.secretKey).to.eql(startMfaResponse.totpSessionInfo.sharedSecretKey)
-      expect(totpSecret.codeLength).to.eql(startMfaResponse.totpSessionInfo.verificationCodeLength)
 
-      const totpVerificationCode = await mockTotp(totpSecret.secretKey, totpSecret.codeLength, totpSecret.codeIntervalSeconds);
+     
+   
+      const totpVerificationCode = getTotpCode(totpSecret.secretKey, totpSecret.codeIntervalSeconds, totpSecret.codeLength,  totpSecret.hashingAlgorithm);
 
       const multiFactorAssertion = TotpMultiFactorGenerator.assertionForEnrollment(
         totpSecret,
         totpVerificationCode
       );
       console.log(totpVerificationCode);
-      // auth/invalid-idToken
-      await expect(mfaUser.enroll(multiFactorAssertion, displayName)).to.be.rejectedWith('auth/invalid-user-token')
+   
+      await expect(mfaUser.enroll(multiFactorAssertion, displayName)).to.be.fulfilled;
 
+      await auth.signOut();
+
+      //await expect(signInWithEmailAndPassword(auth, email, 'password')).to.be.rejectedWith('auth/multi-factor-auth-required');
+      
+     
+      //await expect().to.be.rejectedWith(FirebaseError);
+
+    })
+
+    it('should allow sign-in for correct totp',  async () => {
+      let session;
+      let cr;
+      let resolver;
+      console.log(email);
+      console.log('session info for: ', getApp().options.projectId);
+      
+      await delay(15*1000);
+      try{
+
+        const userCredential = await signInWithEmailAndPassword(auth, email, 'password');
+
+        console.log('success: ', userCredential);
+        
+        throw new Error('Signin should not have been successful');
+
+      } catch(error ){
+
+        
+        console.log('error occured: ', (error as any).code);
+        expect((error as any).code).to.eql('auth/multi-factor-auth-required');
+
+        resolver = getMultiFactorResolver(auth,error as any);
+        console.log(resolver.hints, totpSecret.secretKey);
+        expect(resolver.hints).to.have.length(1);
+
+        const totpVerificationCode = getTotpCode(totpSecret.secretKey, totpSecret.codeIntervalSeconds, totpSecret.codeLength,  totpSecret.hashingAlgorithm);
+        console.log(totpVerificationCode, resolver.hints[0].uid )
+        const assertion = TotpMultiFactorGenerator.assertionForSignIn(
+          resolver.hints[0].uid,
+          totpVerificationCode + '0'
+        );
+
+        console.log(assertion);
+
+        
+        await expect(resolver.resolveSignIn(assertion)).to.be.rejectedWith('nothing');
+        
+        await auth.signOut();
+     
+    }
+       
+      
+    })
+
+    it('should allow sign-in with for correct totp and unenroll successfully', async() => {
 
     })
 })