2.2.1-2.2.3

Yuki-YuXin · Yuki-YuXin · commit a032c7088a28 · 2025-01-16T17:56:11.000Z
diff --git a/MSAL/test/integration/native_auth/end_to_end/sign_in/MSALNativeAuthSignInUsernameEndToEndTests.swift b/MSAL/test/integration/native_auth/end_to_end/sign_in/MSALNativeAuthSignInUsernameEndToEndTests.swift
@@ -26,6 +26,48 @@ import Foundation
 import XCTest
 
 final class MSALNativeAuthSignInUsernameEndToEndTests: MSALNativeAuthEndToEndBaseTestCase {
+    // Hero Scenario 2.2.1. Sign in - Use email and OTP to get token and sign in
+    func test_signInAndSendingCorrectOTPResultsInSuccess() async throws {
+
+        guard let sut = initialisePublicClientApplication(clientIdType: .code), let username = retrieveUsernameForSignInCode() else {
+            XCTFail("Missing information")
+            return
+        }
+
+        let signInExpectation = expectation(description: "signing in")
+        let signInDelegateSpy = SignInStartDelegateSpy(expectation: signInExpectation)
+
+        sut.signIn(username: username, correlationId: correlationId, delegate: signInDelegateSpy)
+
+        await fulfillment(of: [signInExpectation])
+
+        guard signInDelegateSpy.onSignInCodeRequiredCalled else {
+            XCTFail("onSignInCodeRequired not called")
+            return
+        }
+
+        XCTAssertNotNil(signInDelegateSpy.newStateCodeRequired)
+        XCTAssertNotNil(signInDelegateSpy.sentTo)
+
+        // Now submit the code..
+
+        guard let code = await retrieveCodeFor(email: username) else {
+            XCTFail("OTP code could not be retrieved")
+            return
+        }
+
+        let verifyCodeExpectation = expectation(description: "verifying code")
+        let signInVerifyCodeDelegateSpy = SignInVerifyCodeDelegateSpy(expectation: verifyCodeExpectation)
+
+        signInDelegateSpy.newStateCodeRequired?.submitCode(code: code, delegate: signInVerifyCodeDelegateSpy)
+
+        await fulfillment(of: [verifyCodeExpectation])
+
+        XCTAssertTrue(signInVerifyCodeDelegateSpy.onSignInCompletedCalled)
+        XCTAssertNotNil(signInVerifyCodeDelegateSpy.result)
+        XCTAssertNotNil(signInVerifyCodeDelegateSpy.result?.idToken)
+        XCTAssertEqual(signInVerifyCodeDelegateSpy.result?.account.username, username)
+    }
 
     // Hero Scenario 2.2.2. Sign in - User is not registered with given email
     func test_signInWithUnknownUsernameResultsInError() async throws {
@@ -46,9 +88,10 @@ final class MSALNativeAuthSignInUsernameEndToEndTests: MSALNativeAuthEndToEndBas
         XCTAssertTrue(signInDelegateSpy.onSignInErrorCalled)
         XCTAssertTrue(signInDelegateSpy.error!.isUserNotFound)
     }
-
-    // Hero Scenario 2.2.7. Sign in - Invalid OTP code
-    func test_signInAndSendingIncorrectOTPResultsInError() async throws {
+    
+    // User Case 2.2.3 Sign In - User email is registered with password method, which is not supported by client (aka redirect flow)
+    func test_signInWithInsufficientChallengeInError() async throws {
+        throw XCTSkip("Retrieving OTP failure")
 
         guard let sut = initialisePublicClientApplication(clientIdType: .code), let username = retrieveUsernameForSignInCode() else {
             XCTFail("Missing information")
@@ -62,30 +105,15 @@ final class MSALNativeAuthSignInUsernameEndToEndTests: MSALNativeAuthEndToEndBas
 
         await fulfillment(of: [signInExpectation])
 
-        guard signInDelegateSpy.onSignInCodeRequiredCalled else {
-            XCTFail("OTP not sent")
-            return
-        }
-        XCTAssertNotNil(signInDelegateSpy.newStateCodeRequired)
-        XCTAssertNotNil(signInDelegateSpy.sentTo)
-
-        // Now submit the code..
-
-        let verifyCodeExpectation = expectation(description: "verifying code")
-        let signInVerifyCodeDelegateSpy = SignInVerifyCodeDelegateSpy(expectation: verifyCodeExpectation)
-
-        signInDelegateSpy.newStateCodeRequired?.submitCode(code: "00000000", delegate: signInVerifyCodeDelegateSpy)
-
-        await fulfillment(of: [verifyCodeExpectation])
-
-        XCTAssertTrue(signInVerifyCodeDelegateSpy.onSignInVerifyCodeErrorCalled)
-        XCTAssertNotNil(signInVerifyCodeDelegateSpy.error)
-        XCTAssertEqual(signInVerifyCodeDelegateSpy.error?.isInvalidCode, true)
+        // Verify error condition
+        XCTAssertTrue(signInDelegateSpy.onSignInErrorCalled)
+        XCTAssertEqual(signInDelegateSpy.error?.isBrowserRequired, true)
     }
 
-    // Hero Scenario 2.2.1. Sign in - Use email and OTP to get token and sign in
-    func test_signInAndSendingCorrectOTPResultsInSuccess() async throws {
-
+    // Hero Scenario 2.2.7. Sign in - Invalid OTP code
+    func test_signInAndSendingIncorrectOTPResultsInError() async throws {
+        throw XCTSkip("The test account is locked")
+        
         guard let sut = initialisePublicClientApplication(clientIdType: .code), let username = retrieveUsernameForSignInCode() else {
             XCTFail("Missing information")
             return
@@ -99,31 +127,24 @@ final class MSALNativeAuthSignInUsernameEndToEndTests: MSALNativeAuthEndToEndBas
         await fulfillment(of: [signInExpectation])
 
         guard signInDelegateSpy.onSignInCodeRequiredCalled else {
-            XCTFail("onSignInCodeRequired not called")
+            XCTFail("OTP not sent")
             return
         }
-
         XCTAssertNotNil(signInDelegateSpy.newStateCodeRequired)
         XCTAssertNotNil(signInDelegateSpy.sentTo)
 
         // Now submit the code..
 
-        guard let code = await retrieveCodeFor(email: username) else {
-            XCTFail("OTP code could not be retrieved")
-            return
-        }
-
         let verifyCodeExpectation = expectation(description: "verifying code")
         let signInVerifyCodeDelegateSpy = SignInVerifyCodeDelegateSpy(expectation: verifyCodeExpectation)
 
-        signInDelegateSpy.newStateCodeRequired?.submitCode(code: code, delegate: signInVerifyCodeDelegateSpy)
+        signInDelegateSpy.newStateCodeRequired?.submitCode(code: "00000000", delegate: signInVerifyCodeDelegateSpy)
 
         await fulfillment(of: [verifyCodeExpectation])
 
-        XCTAssertTrue(signInVerifyCodeDelegateSpy.onSignInCompletedCalled)
-        XCTAssertNotNil(signInVerifyCodeDelegateSpy.result)
-        XCTAssertNotNil(signInVerifyCodeDelegateSpy.result?.idToken)
-        XCTAssertEqual(signInVerifyCodeDelegateSpy.result?.account.username, username)
+        XCTAssertTrue(signInVerifyCodeDelegateSpy.onSignInVerifyCodeErrorCalled)
+        XCTAssertNotNil(signInVerifyCodeDelegateSpy.error)
+        XCTAssertEqual(signInVerifyCodeDelegateSpy.error?.isInvalidCode, true)
     }
     
     // Sign In - Verify Custom URL Domain - "https://<tenantName>.ciamlogin.com/<tenantName>.onmicrosoft.com"
