Added test cases for the authentication api class changes

pmathew92 · pmathew92 · commit cb618e2f8051 · 2024-10-24T23:17:30.000+05:30
diff --git a/auth0/src/main/java/com/auth0/android/authentication/AuthenticationAPIClient.kt b/auth0/src/main/java/com/auth0/android/authentication/AuthenticationAPIClient.kt
@@ -89,7 +89,8 @@ public class AuthenticationAPIClient @VisibleForTesting(otherwise = VisibleForTe
             .set(USERNAME_KEY, usernameOrEmail)
             .set(PASSWORD_KEY, password)
             .setGrantType(ParameterBuilder.GRANT_TYPE_PASSWORD_REALM)
-            .setRealm(realmOrConnection).asDictionary()
+            .setRealm(realmOrConnection)
+            .asDictionary()
         return loginWithToken(parameters)
     }
 
@@ -175,7 +176,10 @@ public class AuthenticationAPIClient @VisibleForTesting(otherwise = VisibleForTe
         }.asDictionary()
 
         return loginWithToken(params)
-            .addParameter(AUTH_RESPONSE_KEY, Gson().toJsonTree(authResponse)) as AuthenticationRequest
+            .addParameter(
+                AUTH_RESPONSE_KEY,
+                Gson().toJsonTree(authResponse)
+            ) as AuthenticationRequest
     }
 
 
diff --git a/auth0/src/main/java/com/auth0/android/provider/PasskeyAuthProvider.kt b/auth0/src/main/java/com/auth0/android/provider/PasskeyAuthProvider.kt
@@ -3,7 +3,9 @@ package com.auth0.android.provider
 import android.content.Context
 import android.os.Build
 import android.util.Log
+import androidx.credentials.CredentialManager
 import com.auth0.android.Auth0
+import com.auth0.android.authentication.AuthenticationAPIClient
 import com.auth0.android.authentication.AuthenticationException
 import com.auth0.android.authentication.ParameterBuilder
 import com.auth0.android.callback.Callback
@@ -96,7 +98,11 @@ public object PasskeyAuthProvider {
                 callback.onFailure(ex)
                 return
             }
-            val passkeyManager = PasskeyManager(auth0)
+            val passkeyManager =
+                PasskeyManager(
+                    AuthenticationAPIClient(auth0),
+                    CredentialManager.create(context)
+                )
             passkeyManager.signin(context, parameters, callback, executor)
         }
     }
@@ -204,7 +210,11 @@ public object PasskeyAuthProvider {
                 callback.onFailure(ex)
                 return
             }
-            val passkeyManager = PasskeyManager(auth0)
+            val passkeyManager =
+                PasskeyManager(
+                    AuthenticationAPIClient(auth0),
+                    CredentialManager.create(context)
+                )
             val userMetadata = UserMetadataRequest(email, phoneNumber, username, name)
             passkeyManager.signup(
                 context, userMetadata, parameters, callback, executor
diff --git a/auth0/src/main/java/com/auth0/android/provider/PasskeyManager.kt b/auth0/src/main/java/com/auth0/android/provider/PasskeyManager.kt
@@ -22,14 +22,8 @@ import androidx.credentials.exceptions.CreateCredentialProviderConfigurationExce
 import androidx.credentials.exceptions.GetCredentialCancellationException
 import androidx.credentials.exceptions.GetCredentialException
 import androidx.credentials.exceptions.GetCredentialInterruptedException
-import androidx.credentials.exceptions.GetCredentialProviderConfigurationException
-import androidx.credentials.exceptions.GetCredentialUnknownException
 import androidx.credentials.exceptions.GetCredentialUnsupportedException
 import androidx.credentials.exceptions.NoCredentialException
-import androidx.credentials.exceptions.publickeycredential.CreatePublicKeyCredentialDomException
-import androidx.credentials.exceptions.publickeycredential.GetPublicKeyCredentialDomException
-import androidx.credentials.exceptions.publickeycredential.GetPublicKeyCredentialException
-import com.auth0.android.Auth0
 import com.auth0.android.authentication.AuthenticationAPIClient
 import com.auth0.android.authentication.AuthenticationException
 import com.auth0.android.authentication.ParameterBuilder
@@ -44,9 +38,12 @@ import java.util.concurrent.Executor
 import java.util.concurrent.Executors
 
 
-internal class PasskeyManager(auth0: Auth0) {
+internal class PasskeyManager(
+    private val authenticationAPIClient: AuthenticationAPIClient,
+    private val credentialManager: CredentialManager
+) {
+
     private val TAG = PasskeyManager::class.simpleName
-    private val authenticationAPIClient: AuthenticationAPIClient = AuthenticationAPIClient(auth0)
 
     @RequiresApi(api = Build.VERSION_CODES.P)
     @SuppressLint("PublicKeyCredential")
@@ -57,7 +54,6 @@ internal class PasskeyManager(auth0: Auth0) {
         callback: Callback<Credentials, AuthenticationException>,
         executor: Executor = Executors.newSingleThreadExecutor()
     ) {
-        val credentialManager = CredentialManager.create(context)
 
         authenticationAPIClient.signupWithPasskey(userMetadata, parameters)
             .start(object : Callback<PasskeyRegistrationResponse, AuthenticationException> {
@@ -91,7 +87,9 @@ internal class PasskeyManager(auth0: Auth0) {
                                 )
                                 authenticationAPIClient.signinWithPasskey(
                                     pasKeyRegistrationResponse.authSession, authRequest, parameters
-                                ).start(callback)
+                                )
+                                    .validateClaims()
+                                    .start(callback)
                             }
                         })
 
@@ -112,7 +110,6 @@ internal class PasskeyManager(auth0: Auth0) {
         callback: Callback<Credentials, AuthenticationException>,
         executor: Executor = Executors.newSingleThreadExecutor()
     ) {
-        val credentialManager = CredentialManager.create(context)
         authenticationAPIClient.passkeyChallenge(parameters[ParameterBuilder.REALM_KEY])
             .start(object : Callback<PasskeyChallengeResponse, AuthenticationException> {
                 override fun onSuccess(result: PasskeyChallengeResponse) {
diff --git a/auth0/src/test/java/com/auth0/android/authentication/AuthenticationAPIClientTest.kt b/auth0/src/test/java/com/auth0/android/authentication/AuthenticationAPIClientTest.kt
@@ -9,18 +9,31 @@ import com.auth0.android.request.HttpMethod
 import com.auth0.android.request.NetworkingClient
 import com.auth0.android.request.RequestOptions
 import com.auth0.android.request.ServerResponse
+import com.auth0.android.request.UserMetadataRequest
 import com.auth0.android.request.internal.RequestFactory
 import com.auth0.android.request.internal.ThreadSwitcherShadow
-import com.auth0.android.result.*
+import com.auth0.android.result.Authentication
+import com.auth0.android.result.Challenge
+import com.auth0.android.result.Credentials
+import com.auth0.android.result.DatabaseUser
+import com.auth0.android.result.PasskeyRegistrationResponse
+import com.auth0.android.result.UserProfile
 import com.auth0.android.util.Auth0UserAgent
 import com.auth0.android.util.AuthenticationAPIMockServer
+import com.auth0.android.util.AuthenticationAPIMockServer.Companion.SESSION_ID
 import com.auth0.android.util.AuthenticationCallbackMatcher
 import com.auth0.android.util.MockAuthenticationCallback
 import com.auth0.android.util.SSLTestUtils.testClient
 import com.google.gson.Gson
 import com.google.gson.GsonBuilder
+import com.google.gson.JsonElement
 import com.google.gson.reflect.TypeToken
-import com.nhaarman.mockitokotlin2.*
+import com.nhaarman.mockitokotlin2.any
+import com.nhaarman.mockitokotlin2.argumentCaptor
+import com.nhaarman.mockitokotlin2.eq
+import com.nhaarman.mockitokotlin2.mock
+import com.nhaarman.mockitokotlin2.verify
+import com.nhaarman.mockitokotlin2.whenever
 import kotlinx.coroutines.ExperimentalCoroutinesApi
 import kotlinx.coroutines.test.runTest
 import okhttp3.HttpUrl.Companion.toHttpUrlOrNull
@@ -39,7 +52,7 @@ import java.io.ByteArrayInputStream
 import java.io.FileReader
 import java.io.InputStream
 import java.security.PublicKey
-import java.util.*
+import java.util.Locale
 
 @RunWith(RobolectricTestRunner::class)
 @Config(shadows = [ThreadSwitcherShadow::class])
@@ -175,6 +188,84 @@ public class AuthenticationAPIClientTest {
         assertThat(body, Matchers.not(Matchers.hasKey("connection")))
     }
 
+    @Test
+    public fun shouldSigninWithPasskey() {
+        mockAPI.willReturnSuccessfulLogin()
+        val callback = MockAuthenticationCallback<Credentials>()
+        val auth0 = auth0
+        val client = AuthenticationAPIClient(auth0)
+        client.signinWithPasskey("auth-session", mock(), emptyMap())
+            .start(callback)
+        ShadowLooper.idleMainLooper()
+        assertThat(
+            callback, AuthenticationCallbackMatcher.hasPayloadOfType(
+                Credentials::class.java
+            )
+        )
+        val request = mockAPI.takeRequest()
+        assertThat(
+            request.getHeader("Accept-Language"), Matchers.`is`(
+                defaultLocale
+            )
+        )
+        val body = bodyFromRequest<String>(request)
+        assertThat(request.path, Matchers.equalTo("/oauth/token"))
+        assertThat(body, Matchers.hasEntry("client_id", CLIENT_ID))
+        assertThat(
+            body,
+            Matchers.hasEntry("grant_type", "urn:okta:params:oauth:grant-type:webauthn")
+        )
+        assertThat(body, Matchers.hasKey("authn_response"))
+        assertThat(body, Matchers.hasEntry("auth_session", "auth-session"))
+    }
+
+    @Test
+    public fun shouldSignupWithPasskey() {
+        mockAPI.willReturnSuccessfulPasskeyRegistration()
+        val auth0 = auth0
+        val client = AuthenticationAPIClient(auth0)
+        val registrationResponse = client.signupWithPasskey(
+            mock(),
+            mapOf("realm" to MY_CONNECTION)
+        )
+            .execute()
+        val request = mockAPI.takeRequest()
+        assertThat(
+            request.getHeader("Accept-Language"), Matchers.`is`(
+                defaultLocale
+            )
+        )
+        val body = bodyFromRequest<String>(request)
+        assertThat(request.path, Matchers.equalTo("/passkey/register"))
+        assertThat(body, Matchers.hasEntry("client_id", CLIENT_ID))
+        assertThat(body, Matchers.hasEntry("realm", MY_CONNECTION))
+        assertThat(body, Matchers.hasKey("user_profile"))
+        assertThat(registrationResponse, Matchers.`is`(Matchers.notNullValue()))
+        assertThat(registrationResponse.authSession, Matchers.comparesEqualTo(SESSION_ID))
+    }
+
+    @Test
+    public fun shouldGetPasskeyChallenge() {
+        mockAPI.willReturnSuccessfulPasskeyChallenge()
+        val auth0 = auth0
+        val client = AuthenticationAPIClient(auth0)
+        val challengeResponse = client.passkeyChallenge(MY_CONNECTION)
+            .execute()
+        val request = mockAPI.takeRequest()
+        assertThat(
+            request.getHeader("Accept-Language"), Matchers.`is`(
+                defaultLocale
+            )
+        )
+        val body = bodyFromRequest<String>(request)
+        assertThat(request.path, Matchers.equalTo("/passkey/challenge"))
+        assertThat(body, Matchers.hasEntry("client_id", CLIENT_ID))
+        assertThat(body, Matchers.hasEntry("realm", MY_CONNECTION))
+        assertThat(challengeResponse, Matchers.`is`(Matchers.notNullValue()))
+        assertThat(challengeResponse.authSession, Matchers.comparesEqualTo(SESSION_ID))
+
+    }
+
     @Test
     public fun shouldLoginWithMFARecoveryCode() {
         mockAPI.willReturnSuccessfulLoginWithRecoveryCode()
diff --git a/auth0/src/test/java/com/auth0/android/authentication/request/AuthenticationRequestMock.java b/auth0/src/test/java/com/auth0/android/authentication/request/AuthenticationRequestMock.java
@@ -6,6 +6,7 @@
 import com.auth0.android.authentication.AuthenticationException;
 import com.auth0.android.callback.Callback;
 import com.auth0.android.request.AuthenticationRequest;
+import com.auth0.android.request.Request;
 import com.auth0.android.result.Credentials;
 
 import java.util.Map;
@@ -48,6 +49,12 @@ public AuthenticationRequest addParameter(@NonNull String name, @NonNull String
         return this;
     }
 
+    @NonNull
+    @Override
+    public Request<Credentials, AuthenticationException> addParameter(@NonNull String name, @NonNull Object value) {
+        return this;
+    }
+
     @NonNull
     @Override
     public AuthenticationRequest addHeader(@NonNull String name, @NonNull String value) {
diff --git a/auth0/src/test/java/com/auth0/android/authentication/request/RequestMock.java b/auth0/src/test/java/com/auth0/android/authentication/request/RequestMock.java
@@ -55,4 +55,10 @@ public void start(@NonNull Callback<T, U> callback) {
     public T execute() throws Auth0Exception {
         return null;
     }
+
+    @NonNull
+    @Override
+    public Request<T, U> addParameter(@NonNull String name, @NonNull Object value) {
+        return this;
+    }
 }
diff --git a/auth0/src/test/java/com/auth0/android/util/AuthenticationAPIMockServer.kt b/auth0/src/test/java/com/auth0/android/util/AuthenticationAPIMockServer.kt
@@ -47,6 +47,55 @@ internal class AuthenticationAPIMockServer : APIMockServer() {
         return this
     }
 
+    fun willReturnSuccessfulPasskeyRegistration(): AuthenticationAPIMockServer {
+        val json = """{
+            "authn_params_public_key":{
+                "challenge": "$CHALLENGE",
+                "timeout": 6046456,
+                "rp": {
+                    "id": "auth0.passkey.com",
+                    "name": "Passkey Test"
+                },
+                "pubKeyCredParams": [
+                    {
+                        "type": "public-key",
+                        "alg": -7
+                    },
+                    {
+                        "type": "public-key",
+                        "alg": -257
+                    }
+                ],
+                "authenticatorSelection": {
+                    "authenticatorAttachment": "platform",
+                    "residentKey": "required"
+                },
+                "user": {
+                       "id": "53b995f8bce68d9fc900099c",
+                       "name": "p",
+                       "displayName": "d"
+                   }
+                },
+                 "auth_session": "$SESSION_ID"
+            }"""
+        server.enqueue(responseWithJSON(json, 200))
+        return this
+    }
+
+    fun willReturnSuccessfulPasskeyChallenge():AuthenticationAPIMockServer{
+        val json = """{
+            "authn_params_public_key":{
+                "challenge": "$CHALLENGE",
+                "timeout": 604645,
+                "rpId": "domain",
+                "userVerification":"preferred"
+                },
+                 "auth_session": "$SESSION_ID"
+            }"""
+        server.enqueue(responseWithJSON(json, 200))
+        return this
+    }
+
     fun willReturnSuccessfulLoginWithRecoveryCode(): AuthenticationAPIMockServer {
         val json = """{
           "refresh_token": "$REFRESH_TOKEN",
@@ -155,6 +204,8 @@ internal class AuthenticationAPIMockServer : APIMockServer() {
         const val REFRESH_TOKEN = "REFRESH_TOKEN"
         const val ID_TOKEN = "ID_TOKEN"
         const val ACCESS_TOKEN = "ACCESS_TOKEN"
+        const val SESSION_ID = "SESSION_ID"
         private const val BEARER = "BEARER"
+        private const val CHALLENGE = "CHALLENGE"
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -55,4 +55,10 @@ public void start(@NonNull Callback<T, U> callback) {`
`55`	`55`	`public T execute() throws Auth0Exception {`
`56`	`56`	`return null;`
`57`	`57`	`}`
	`58`	`+`
	`59`	`+ @NonNull`
	`60`	`+ @Override`
	`61`	`+ public Request<T, U> addParameter(@NonNull String name, @NonNull Object value) {`
	`62`	`+ return this;`
	`63`	`+ }`
`58`	`64`	`}`