removed usage of old refresh token, updated test case to properly check for invalidTokens error in case the API returns a null token

Author: ekjotmultani

AmplifyPlugins/Auth/Sources/AWSCognitoAuthPlugin/Actions/RefreshAuthorizationSession/UserPool/RefreshUserPoolTokens.swift

@@ -5,11 +5,11 @@
 // SPDX-License-Identifier: Apache-2.0
 //
 
-import Amplify
-import AWSPluginsCore
 import AWSCognitoIdentityProvider
-import Foundation
+import AWSPluginsCore
+import Amplify
 import ClientRuntime
+import Foundation
 
 struct RefreshUserPoolTokens: Action {
 
@@ -35,7 +35,7 @@ struct RefreshUserPoolTokens: Action {
             let deviceMetadata = await DeviceMetadataHelper.getDeviceMetadata(
                 for: existingSignedIndata.username,
                 with: environment)
-            
+
             let deviceKey: String? = {
                 if case .metadata(let data) = deviceMetadata {
                     return data.deviceKey
@@ -51,17 +51,20 @@ struct RefreshUserPoolTokens: Action {
                 refreshToken: existingTokens.refreshToken
             )
 
-            logVerbose("\(#fileID) Starting get tokens from refresh token", environment: environment)
+            logVerbose(
+                "\(#fileID) Starting get tokens from refresh token", environment: environment)
 
             let response = try await client?.getTokensFromRefreshToken(input: input)
 
-            logVerbose("\(#fileID) Get tokens from refresh token response received", environment: environment)
+            logVerbose(
+                "\(#fileID) Get tokens from refresh token response received",
+                environment: environment)
 
             guard let authenticationResult = response?.authenticationResult,
-                  let idToken = authenticationResult.idToken,
-                  let accessToken = authenticationResult.accessToken
+                let idToken = authenticationResult.idToken,
+                let accessToken = authenticationResult.accessToken,
+                let refreshToken = authenticationResult.refreshToken
             else {
-
                 let event = RefreshSessionEvent(eventType: .throwError(.invalidTokens))
                 await dispatcher.send(event)
                 logVerbose("\(#fileID) Sending event \(event.type)", environment: environment)
@@ -71,8 +74,9 @@ struct RefreshUserPoolTokens: Action {
             let userPoolTokens = AWSCognitoUserPoolTokens(
                 idToken: idToken,
                 accessToken: accessToken,
-                refreshToken: authenticationResult.refreshToken ?? existingTokens.refreshToken
+                refreshToken: refreshToken
             )
+            
             let signedInData = SignedInData(
                 signedInDate: existingSignedIndata.signedInDate,
                 signInMethod: existingSignedIndata.signInMethod,
@@ -103,7 +107,8 @@ struct RefreshUserPoolTokens: Action {
 
 extension RefreshUserPoolTokens: DefaultLogger {
     public static var log: Logger {
-        Amplify.Logging.logger(forCategory: CategoryType.auth.displayName, forNamespace: String(describing: self))
+        Amplify.Logging.logger(
+            forCategory: CategoryType.auth.displayName, forNamespace: String(describing: self))
     }
 
     public var log: Logger {
@@ -115,7 +120,7 @@ extension RefreshUserPoolTokens: CustomDebugDictionaryConvertible {
     var debugDictionary: [String: Any] {
         [
             "identifier": identifier,
-            "existingSignedInData": existingSignedIndata
+            "existingSignedInData": existingSignedIndata,
         ]
     }
 }

AmplifyPlugins/Auth/Tests/AWSCognitoAuthPluginUnitTests/ActionTests/FetchAuthSession/FetchUserPoolTokens/RefreshUserPoolTokensTests.swift

@@ -5,10 +5,10 @@
 // SPDX-License-Identifier: Apache-2.0
 //
 
-import XCTest
-import Amplify
-import AWSPluginsCore
 import AWSCognitoIdentityProvider
+import AWSPluginsCore
+import Amplify
+import XCTest
 
 @testable import AWSCognitoAuthPlugin
 
@@ -20,18 +20,19 @@ class RefreshUserPoolTokensTests: XCTestCase {
 
         let action = RefreshUserPoolTokens(existingSignedIndata: .testData)
 
-        await action.execute(withDispatcher: MockDispatcher { event in
+        await action.execute(
+            withDispatcher: MockDispatcher { event in
 
-            guard let event = event as? RefreshSessionEvent else {
-                return
-            }
+                guard let event = event as? RefreshSessionEvent else {
+                    return
+                }
 
-            if case let .throwError(error) = event.eventType {
-                XCTAssertNotNil(error)
-                XCTAssertEqual(error, .noUserPool)
-                expectation.fulfill()
-            }
-        }, environment: MockInvalidEnvironment()
+                if case let .throwError(error) = event.eventType {
+                    XCTAssertNotNil(error)
+                    XCTAssertEqual(error, .noUserPool)
+                    expectation.fulfill()
+                }
+            }, environment: MockInvalidEnvironment()
         )
 
         await fulfillment(
@@ -53,17 +54,19 @@ class RefreshUserPoolTokensTests: XCTestCase {
 
         let action = RefreshUserPoolTokens(existingSignedIndata: .testData)
 
-        await action.execute(withDispatcher: MockDispatcher { event in
+        await action.execute(
+            withDispatcher: MockDispatcher { event in
 
-            guard let event = event as? RefreshSessionEvent else { return }
+                guard let event = event as? RefreshSessionEvent else { return }
 
-            if case let .throwError(error) = event.eventType {
-                XCTAssertNotNil(error)
-                XCTAssertEqual(error, .invalidTokens)
-                expectation.fulfill()
-            }
-        }, environment: Defaults.makeDefaultAuthEnvironment(
-            userPoolFactory: identityProviderFactory)
+                if case let .throwError(error) = event.eventType {
+                    XCTAssertNotNil(error)
+                    XCTAssertEqual(error, .invalidTokens)
+                    expectation.fulfill()
+                }
+            },
+            environment: Defaults.makeDefaultAuthEnvironment(
+                userPoolFactory: identityProviderFactory)
         )
 
         await fulfillment(
@@ -90,14 +93,17 @@ class RefreshUserPoolTokensTests: XCTestCase {
 
         let action = RefreshUserPoolTokens(existingSignedIndata: .testData)
 
-        await action.execute(withDispatcher: MockDispatcher { event in
+        await action.execute(
+            withDispatcher: MockDispatcher { event in
 
-            if let userPoolEvent = event as? RefreshSessionEvent,
-               case .refreshIdentityInfo = userPoolEvent.eventType {
-                expectation.fulfill()
-            }
-        }, environment: Defaults.makeDefaultAuthEnvironment(
-            userPoolFactory: identityProviderFactory)
+                if let userPoolEvent = event as? RefreshSessionEvent,
+                    case .refreshIdentityInfo = userPoolEvent.eventType
+                {
+                    expectation.fulfill()
+                }
+            },
+            environment: Defaults.makeDefaultAuthEnvironment(
+                userPoolFactory: identityProviderFactory)
         )
 
         await fulfillment(
@@ -128,15 +134,17 @@ class RefreshUserPoolTokensTests: XCTestCase {
 
         let action = RefreshUserPoolTokens(existingSignedIndata: .testData)
 
-        await action.execute(withDispatcher: MockDispatcher { event in
+        await action.execute(
+            withDispatcher: MockDispatcher { event in
 
-            if let userPoolEvent = event as? RefreshSessionEvent,
-               case let .throwError(error) = userPoolEvent.eventType {
-                XCTAssertNotNil(error)
-                XCTAssertEqual(error, .service(testError))
-                expectation.fulfill()
-            }
-        }, environment: environment)
+                if let userPoolEvent = event as? RefreshSessionEvent,
+                    case let .throwError(error) = userPoolEvent.eventType
+                {
+                    XCTAssertNotNil(error)
+                    XCTAssertEqual(error, .service(testError))
+                    expectation.fulfill()
+                }
+            }, environment: environment)
 
         await fulfillment(
             of: [expectation],
@@ -162,26 +170,29 @@ class RefreshUserPoolTokensTests: XCTestCase {
 
         let action = RefreshUserPoolTokens(existingSignedIndata: .testData)
 
-        await action.execute(withDispatcher: MockDispatcher { event in
+        await action.execute(
+            withDispatcher: MockDispatcher { event in
 
-            if let userPoolEvent = event as? RefreshSessionEvent,
-               case let .refreshIdentityInfo(signedInData, _) = userPoolEvent.eventType {
-                XCTAssertEqual(signedInData.cognitoUserPoolTokens.refreshToken, "refreshTokenRotated")
-                expectation.fulfill()
-            }
-        }, environment: Defaults.makeDefaultAuthEnvironment(
-            userPoolFactory: identityProviderFactory)
+                if let userPoolEvent = event as? RefreshSessionEvent,
+                    case let .refreshIdentityInfo(signedInData, _) = userPoolEvent.eventType
+                {
+                    XCTAssertEqual(
+                        signedInData.cognitoUserPoolTokens.refreshToken, "refreshTokenRotated")
+                    expectation.fulfill()
+                }
+            },
+            environment: Defaults.makeDefaultAuthEnvironment(
+                userPoolFactory: identityProviderFactory)
         )
 
         await fulfillment(
             of: [expectation],
             timeout: 0.1
         )
     }
+    func testRefreshTokenMissing() async {
 
-    func testRefreshTokenNoRotation() async {
-
-        let expectation = expectation(description: "refreshTokenNoRotation")
+        let expectation = expectation(description: "refreshTokenMissing")
         let identityProviderFactory: BasicSRPAuthEnvironment.CognitoUserPoolFactory = {
             MockIdentityProvider(
                 mockGetTokensFromRefreshTokenResponse: { _ in
@@ -197,21 +208,23 @@ class RefreshUserPoolTokensTests: XCTestCase {
 
         let action = RefreshUserPoolTokens(existingSignedIndata: .testData)
 
-        await action.execute(withDispatcher: MockDispatcher { event in
+        await action.execute(
+            withDispatcher: MockDispatcher { event in
 
-            if let userPoolEvent = event as? RefreshSessionEvent,
-               case let .refreshIdentityInfo(signedInData, _) = userPoolEvent.eventType {
-                XCTAssertEqual(signedInData.cognitoUserPoolTokens.refreshToken, "refreshToken")
-                expectation.fulfill()
-            }
-        }, environment: Defaults.makeDefaultAuthEnvironment(
-            userPoolFactory: identityProviderFactory)
+                if let userPoolEvent = event as? RefreshSessionEvent,
+                    case let .throwError(error) = userPoolEvent.eventType
+                {
+                    XCTAssertEqual(error, .invalidTokens)
+                    expectation.fulfill()
+                }
+            },
+            environment: Defaults.makeDefaultAuthEnvironment(
+                userPoolFactory: identityProviderFactory)
         )
 
         await fulfillment(
             of: [expectation],
             timeout: 0.1
         )
     }
-
 }