fix(auth): Enable signIn restart while another signIn is in progress (#2609)

Author: royjit

AmplifyPlugins/Auth/Sources/AWSCognitoAuthPlugin/Operations/Helpers/HostedUISignInHelper.swift

@@ -26,7 +26,6 @@ struct HostedUISignInHelper {
 
     func initiateSignIn() async throws -> AuthSignInResult {
         try await isValidState()
-        await prepareForSignIn()
         return try await doSignIn()
     }
 
@@ -38,38 +37,19 @@ struct HostedUISignInHelper {
             }
             switch authenticationState {
             case .signingIn:
-                continue
+                await sendCancelSignInEvent()
             case .signedIn:
                 throw AuthError.invalidState(
                     "There is already a user in signedIn state. SignOut the user first before calling signIn",
                     AuthPluginErrorConstants.invalidStateError, nil)
-            default:
-                return
-            }
-        }
-    }
-
-    private func prepareForSignIn() async {
-
-        let stateSequences = await authStateMachine.listen()
-
-        for await state in stateSequences {
-            guard case .configured(let authNState, _) = state else { continue }
-
-            switch authNState {
             case .signedOut:
                 return
-
-            case .signingIn:
-                Task {
-                    await sendCancelSignInEvent()
-                }
-            default:
-                continue
+            default: continue
             }
         }
     }
 
+
     private func doSignIn() async throws -> AuthSignInResult {
 
         let oauthConfiguration: OAuthConfigurationData

AmplifyPlugins/Auth/Sources/AWSCognitoAuthPlugin/Task/AWSAuthSignInTask.swift

@@ -56,6 +56,8 @@ class AWSAuthSignInTask: AuthSignInTask {
                     "There is already a user in signedIn state. SignOut the user first before calling signIn",
                     AuthPluginErrorConstants.invalidStateError, nil)
                 throw error
+            case .signingIn:
+                await sendCancelSignInEvent()
             case .signedOut:
                 return
             default: continue
@@ -94,6 +96,11 @@ class AWSAuthSignInTask: AuthSignInTask {
         throw AuthError.unknown("Sign in reached an error state")
     }
 
+    private func sendCancelSignInEvent() async {
+        let event = AuthenticationEvent(eventType: .cancelSignIn)
+        await authStateMachine.send(event)
+    }
+
     private func sendSignInEvent(authflowType: AuthFlowType) async {
         let signInData = SignInEventData(
             username: request.username,

AmplifyPlugins/Auth/Tests/AWSCognitoAuthPluginUnitTests/TaskTests/AWSAuthSignInPluginTests.swift

@@ -1100,4 +1100,70 @@ class AWSAuthSignInPluginTests: BasePluginTest {
             }
         }
     }
+
+    /// Test a signIn restart while another sign in is in progress
+    ///
+    /// - Given: Given an auth plugin with mocked service and a in progress signIn waiting for SMS verification
+    ///
+    /// - When:
+    ///    - I invoke another signIn with valid values
+    /// - Then:
+    ///    - I should get a .done response
+    ///
+    func testRestartSignIn() async {
+
+        self.mockIdentityProvider = MockIdentityProvider(mockInitiateAuthResponse: { _ in
+            InitiateAuthOutputResponse(
+                authenticationResult: .none,
+                challengeName: .passwordVerifier,
+                challengeParameters: InitiateAuthOutputResponse.validChalengeParams,
+                session: "someSession")
+        }, mockRespondToAuthChallengeResponse: { _ in
+            RespondToAuthChallengeOutputResponse(
+                authenticationResult: .none,
+                challengeName: .smsMfa,
+                challengeParameters: [:],
+                session: "session")
+        })
+
+        let pluginOptions = AWSAuthSignInOptions(validationData: ["somekey": "somevalue"],
+                                                 metadata: ["somekey": "somevalue"])
+        let options = AuthSignInRequest.Options(pluginOptions: pluginOptions)
+
+        do {
+            let result = try await plugin.signIn(username: "username", password: "password", options: options)
+            guard case .confirmSignInWithSMSMFACode =  result.nextStep else {
+                XCTFail("Result should be .confirmSignInWithSMSMFACode for next step")
+                return
+            }
+            XCTAssertFalse(result.isSignedIn)
+            self.mockIdentityProvider = MockIdentityProvider(mockInitiateAuthResponse: { _ in
+                InitiateAuthOutputResponse(
+                    authenticationResult: .none,
+                    challengeName: .passwordVerifier,
+                    challengeParameters: InitiateAuthOutputResponse.validChalengeParams,
+                    session: "someSession")
+            }, mockRespondToAuthChallengeResponse: { _ in
+                RespondToAuthChallengeOutputResponse(
+                    authenticationResult: .init(
+                        accessToken: Defaults.validAccessToken,
+                        expiresIn: 300,
+                        idToken: "idToken",
+                        newDeviceMetadata: nil,
+                        refreshToken: "refreshToken",
+                        tokenType: ""),
+                    challengeName: .none,
+                    challengeParameters: [:],
+                    session: "session")
+            })
+            let result2 = try await plugin.signIn(username: "username2", password: "password", options: options)
+            guard case .done =  result2.nextStep else {
+                XCTFail("Result should be .confirmSignInWithSMSMFACode for next step")
+                return
+            }
+            XCTAssertTrue(result2.isSignedIn)
+        } catch {
+            XCTFail("Received failure with error \(error)")
+        }
+    }
 }

AmplifyPlugins/Auth/Tests/AWSCognitoAuthPluginUnitTests/TaskTests/HostedUITests/AWSAuthHostedUISignInTests.swift

@@ -11,11 +11,13 @@ import XCTest
 @testable import Amplify
 @testable import AWSCognitoAuthPlugin
 import AuthenticationServices
+import AWSCognitoIdentityProvider
 
 class AWSAuthHostedUISignInTests: XCTestCase {
 
-    var plugin: AWSCognitoAuthPlugin?
+    var plugin: AWSCognitoAuthPlugin!
     let networkTimeout = TimeInterval(5)
+    var mockIdentityProvider: CognitoUserPoolBehavior!
     var mockHostedUIResult: Result<[URLQueryItem], HostedUIError>!
     var mockTokenResult = ["id_token": AWSCognitoUserPoolTokens.testData.idToken,
                            "access_token": AWSCognitoUserPoolTokens.testData.accessToken,
@@ -57,11 +59,15 @@ class AWSAuthHostedUISignInTests: XCTestCase {
                                                    hostedUISessionFactory: sessionFactory,
                                                    urlSessionFactory: urlSessionMock,
                                                    randomStringFactory: mockRandomString)
-        let authEnvironment = Defaults.makeDefaultAuthEnvironment(hostedUIEnvironment: environment)
-        let stateMachine = Defaults.authStateMachineWith(environment: authEnvironment,
-                                                         initialState: initialState)
+        let authEnvironment = Defaults.makeDefaultAuthEnvironment(
+            userPoolFactory: { self.mockIdentityProvider },
+            hostedUIEnvironment: environment)
+        let stateMachine = Defaults.authStateMachineWith(
+            environment: authEnvironment,
+            initialState: initialState
+        )
 
-        plugin?.configure(
+        plugin.configure(
             authConfiguration: Defaults.makeDefaultAuthConfigData(withHostedUI: configuration),
             authEnvironment: authEnvironment,
             authStateMachine: stateMachine,
@@ -76,16 +82,16 @@ class AWSAuthHostedUISignInTests: XCTestCase {
             .init(name: "state", value: mockState),
             .init(name: "code", value: mockProof)
         ])
-        let result = try await plugin?.signInWithWebUI(presentationAnchor: ASPresentationAnchor(), options: nil)
-        XCTAssertTrue(result!.isSignedIn)
+        let result = try await plugin.signInWithWebUI(presentationAnchor: ASPresentationAnchor(), options: nil)
+        XCTAssertTrue(result.isSignedIn)
     }
 
     @MainActor
     func testUserCancelSignIn() async {
         mockHostedUIResult = .failure(.cancelled)
         let expectation  = expectation(description: "SignIn operation should complete")
         do {
-            _ = try await plugin?.signInWithWebUI(presentationAnchor: ASPresentationAnchor(), options: nil)
+            _ = try await plugin.signInWithWebUI(presentationAnchor: ASPresentationAnchor(), options: nil)
             XCTFail("Should not succeed")
         } catch {
             guard case AuthError.service(_, _, let underlyingError) = error,
@@ -103,7 +109,7 @@ class AWSAuthHostedUISignInTests: XCTestCase {
         mockHostedUIResult = .failure(.cancelled)
         let errorExpectation  = expectation(description: "SignIn operation should complete")
         do {
-            _ = try await plugin?.signInWithWebUI(presentationAnchor: ASPresentationAnchor(), options: nil)
+            _ = try await plugin.signInWithWebUI(presentationAnchor: ASPresentationAnchor(), options: nil)
             XCTFail("Should not succeed")
         } catch {
             guard case AuthError.service(_, _, let underlyingError) = error,
@@ -121,8 +127,8 @@ class AWSAuthHostedUISignInTests: XCTestCase {
         ])
         let signInExpectation = expectation(description: "SignIn operation should complete")
         do {
-            let result = try await plugin?.signInWithWebUI(presentationAnchor: ASPresentationAnchor(), options: nil)
-            XCTAssertTrue(result!.isSignedIn)
+            let result = try await plugin.signInWithWebUI(presentationAnchor: ASPresentationAnchor(), options: nil)
+            XCTAssertTrue(result.isSignedIn)
             signInExpectation.fulfill()
         } catch {
             XCTFail("Should not fail with error = \(error)")
@@ -138,7 +144,7 @@ class AWSAuthHostedUISignInTests: XCTestCase {
         ])
         let expectation  = expectation(description: "SignIn operation should complete")
         do {
-            _ = try await plugin?.signInWithWebUI(presentationAnchor: ASPresentationAnchor(), options: nil)
+            _ = try await plugin.signInWithWebUI(presentationAnchor: ASPresentationAnchor(), options: nil)
             XCTFail("Should not succeed")
         } catch {
             guard case AuthError.service = error else {
@@ -155,7 +161,7 @@ class AWSAuthHostedUISignInTests: XCTestCase {
         mockHostedUIResult = .failure(.invalidContext)
         let expectation  = expectation(description: "SignIn operation should complete")
         do {
-            _ = try await plugin?.signInWithWebUI(presentationAnchor: ASPresentationAnchor(), options: nil)
+            _ = try await plugin.signInWithWebUI(presentationAnchor: ASPresentationAnchor(), options: nil)
             XCTFail("Should not succeed")
         } catch {
             guard case AuthError.invalidState = error else {
@@ -183,7 +189,7 @@ class AWSAuthHostedUISignInTests: XCTestCase {
 
         let expectation  = expectation(description: "SignIn operation should complete")
         do {
-            _ = try await plugin?.signInWithWebUI(presentationAnchor: ASPresentationAnchor(), options: nil)
+            _ = try await plugin.signInWithWebUI(presentationAnchor: ASPresentationAnchor(), options: nil)
             XCTFail("Should not succeed")
         } catch {
             guard case AuthError.service = error else {
@@ -211,7 +217,7 @@ class AWSAuthHostedUISignInTests: XCTestCase {
 
         let expectation  = expectation(description: "SignIn operation should complete")
         do {
-            _ = try await plugin?.signInWithWebUI(presentationAnchor: ASPresentationAnchor(), options: nil)
+            _ = try await plugin.signInWithWebUI(presentationAnchor: ASPresentationAnchor(), options: nil)
             XCTFail("Should not succeed")
         } catch {
             guard case AuthError.service = error else {
@@ -223,4 +229,53 @@ class AWSAuthHostedUISignInTests: XCTestCase {
         wait(for: [expectation], timeout: networkTimeout)
     }
 
+
+
+    /// Test a signIn restart while another sign in is in progress
+    ///
+    /// - Given: Given an auth plugin with mocked service and a in progress signIn waiting for SMS verification
+    ///
+    /// - When:
+    ///    - I invoke another signIn with valid values
+    /// - Then:
+    ///    - I should get a .done response
+    ///
+    @MainActor
+    func testRestartSignInWithWebUI() async {
+
+        self.mockIdentityProvider = MockIdentityProvider(mockInitiateAuthResponse: { _ in
+            InitiateAuthOutputResponse(
+                authenticationResult: .none,
+                challengeName: .passwordVerifier,
+                challengeParameters: InitiateAuthOutputResponse.validChalengeParams,
+                session: "someSession")
+        }, mockRespondToAuthChallengeResponse: { _ in
+            RespondToAuthChallengeOutputResponse(
+                authenticationResult: .none,
+                challengeName: .smsMfa,
+                challengeParameters: [:],
+                session: "session")
+        })
+
+        let pluginOptions = AWSAuthSignInOptions(validationData: ["somekey": "somevalue"],
+                                                 metadata: ["somekey": "somevalue"])
+        let options = AuthSignInRequest.Options(pluginOptions: pluginOptions)
+
+        do {
+            let result = try await plugin.signIn(username: "username", password: "password", options: options)
+            guard case .confirmSignInWithSMSMFACode =  result.nextStep else {
+                XCTFail("Result should be .confirmSignInWithSMSMFACode for next step")
+                return
+            }
+            XCTAssertFalse(result.isSignedIn)
+            mockHostedUIResult = .success([
+                .init(name: "state", value: mockState),
+                .init(name: "code", value: mockProof)
+            ])
+            let result2 = try await plugin.signInWithWebUI(presentationAnchor: ASPresentationAnchor(), options: nil)
+            XCTAssertTrue(result2.isSignedIn)
+        } catch {
+            XCTFail("Received failure with error \(error)")
+        }
+    }
 }

AmplifyPlugins/Auth/Tests/AuthHostApp/AuthHostApp.xcodeproj/project.xcworkspace/xcshareddata/swiftpm/Package.resolved

@@ -318,7 +318,7 @@ class AuthSRPSignInTests: AWSAuthBaseTest {
             signInExpectation.fulfill()
         }
 
-        wait(for: [signInExpectation, fetchAuthSessionExpectation], timeout: networkTimeout)
+        wait(for: [signInExpectation, fetchAuthSessionExpectation], timeout: 10)
     }
 
 }