test(Auth): Integration test related to apis for session, signOut (#497)

Author: royjit

AmplifyPlugins/Auth/AWSCognitoAuthPlugin.xcodeproj/project.pbxproj

@@ -106,6 +106,8 @@
 		B41D10092475AB7E0049D08D /* AWSCognitoAuthPlugin+DeviceBehavior.swift in Sources */ = {isa = PBXBuildFile; fileRef = B41D10022475AB7E0049D08D /* AWSCognitoAuthPlugin+DeviceBehavior.swift */; };
 		B41D100A2475AB7E0049D08D /* AWSCognitoAuthPlugin+UserBehavior.swift in Sources */ = {isa = PBXBuildFile; fileRef = B41D10032475AB7E0049D08D /* AWSCognitoAuthPlugin+UserBehavior.swift */; };
 		B43DC74F2410572400D40275 /* AWSCognitoAuthPlugin.framework in Frameworks */ = {isa = PBXBuildFile; fileRef = B43DC7452410572400D40275 /* AWSCognitoAuthPlugin.framework */; };
+		B44373A1247C869100DEF43C /* AuthSessionHelper.swift in Sources */ = {isa = PBXBuildFile; fileRef = B44373A0247C869100DEF43C /* AuthSessionHelper.swift */; };
+		B44373A4247C8CCE00DEF43C /* AuthSignOutTests.swift in Sources */ = {isa = PBXBuildFile; fileRef = B44373A3247C8CCE00DEF43C /* AuthSignOutTests.swift */; };
 		B4F3EA47243A776800F23296 /* Assets.xcassets in Resources */ = {isa = PBXBuildFile; fileRef = B4F3EA41243A776800F23296 /* Assets.xcassets */; };
 		B4F3EA48243A776800F23296 /* LaunchScreen.storyboard in Resources */ = {isa = PBXBuildFile; fileRef = B4F3EA42243A776800F23296 /* LaunchScreen.storyboard */; };
 		B4F3EA49243A776800F23296 /* Main.storyboard in Resources */ = {isa = PBXBuildFile; fileRef = B4F3EA44243A776800F23296 /* Main.storyboard */; };
@@ -255,6 +257,8 @@
 		B41D10032475AB7E0049D08D /* AWSCognitoAuthPlugin+UserBehavior.swift */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.swift; path = "AWSCognitoAuthPlugin+UserBehavior.swift"; sourceTree = "<group>"; };
 		B43DC7452410572400D40275 /* AWSCognitoAuthPlugin.framework */ = {isa = PBXFileReference; explicitFileType = wrapper.framework; includeInIndex = 0; path = AWSCognitoAuthPlugin.framework; sourceTree = BUILT_PRODUCTS_DIR; };
 		B43DC74E2410572400D40275 /* AWSCognitoAuthPluginTests.xctest */ = {isa = PBXFileReference; explicitFileType = wrapper.cfbundle; includeInIndex = 0; path = AWSCognitoAuthPluginTests.xctest; sourceTree = BUILT_PRODUCTS_DIR; };
+		B44373A0247C869100DEF43C /* AuthSessionHelper.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = AuthSessionHelper.swift; sourceTree = "<group>"; };
+		B44373A3247C8CCE00DEF43C /* AuthSignOutTests.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = AuthSignOutTests.swift; sourceTree = "<group>"; };
 		B4672B5524777C7500C83E96 /* Amplify.framework */ = {isa = PBXFileReference; explicitFileType = wrapper.framework; path = Amplify.framework; sourceTree = BUILT_PRODUCTS_DIR; };
 		B4672B5624777C7500C83E96 /* AmplifyTestCommon.framework */ = {isa = PBXFileReference; explicitFileType = wrapper.framework; path = AmplifyTestCommon.framework; sourceTree = BUILT_PRODUCTS_DIR; };
 		B4672B5724777C7500C83E96 /* AWSAuthCore.framework */ = {isa = PBXFileReference; explicitFileType = wrapper.framework; path = AWSAuthCore.framework; sourceTree = BUILT_PRODUCTS_DIR; };
@@ -322,6 +326,7 @@
 				B40F167824784B3400CDB920 /* AuthDeviceTests */,
 				B40F167424784B3400CDB920 /* AuthSessionTests */,
 				B40F167224784B3400CDB920 /* AuthSignInTests */,
+				B44373A2247C8A0C00DEF43C /* AuthSignOutTests */,
 				B40F166E24784B3400CDB920 /* AuthSignUpTests */,
 				B40F166C24784B3400CDB920 /* AuthUserTests */,
 				B40F166424784B3400CDB920 /* Configuration */,
@@ -352,6 +357,7 @@
 			children = (
 				B40F166B24784B3400CDB920 /* AuthConfigurationHelper.swift */,
 				B40F166A24784B3400CDB920 /* AuthSignInHelper.swift */,
+				B44373A0247C869100DEF43C /* AuthSessionHelper.swift */,
 			);
 			path = Support;
 			sourceTree = "<group>";
@@ -656,6 +662,14 @@
 			name = Products;
 			sourceTree = "<group>";
 		};
+		B44373A2247C8A0C00DEF43C /* AuthSignOutTests */ = {
+			isa = PBXGroup;
+			children = (
+				B44373A3247C8CCE00DEF43C /* AuthSignOutTests.swift */,
+			);
+			path = AuthSignOutTests;
+			sourceTree = "<group>";
+		};
 		B4F3EA21243A65BD00F23296 /* HostApp */ = {
 			isa = PBXGroup;
 			children = (
@@ -1204,10 +1218,12 @@
 				B40F168724784B3400CDB920 /* AuthDeviceOperationTests.swift in Sources */,
 				B40F168124784B3400CDB920 /* AuthConfirmSignUpTests.swift in Sources */,
 				B40F167E24784B3400CDB920 /* AuthConfigurationHelper.swift in Sources */,
+				B44373A1247C869100DEF43C /* AuthSessionHelper.swift in Sources */,
 				B40F167F24784B3400CDB920 /* AuthUserTests.swift in Sources */,
 				B40F168224784B3400CDB920 /* AuthResendSignUpCodeTests.swift in Sources */,
 				B40F168524784B3400CDB920 /* SignedInAuthSessionTests.swift in Sources */,
 				B40F168324784B3400CDB920 /* AuthUsernamePasswordSignInTests.swift in Sources */,
+				B44373A4247C8CCE00DEF43C /* AuthSignOutTests.swift in Sources */,
 				B40F168424784B3400CDB920 /* SignedOutAuthSessionTests.swift in Sources */,
 				B40F167D24784B3400CDB920 /* AuthSignInHelper.swift in Sources */,
 				B40F168024784B3400CDB920 /* AuthSignUpTests.swift in Sources */,

AmplifyPlugins/Auth/AWSCognitoAuthPlugin/Support/Utils/AuthErrorHelper.swift

@@ -133,7 +133,6 @@ struct AuthErrorHelper {
         .unableToSignIn(let message), // Called in signout, releaseSignInWait.
         .idTokenNotIssued(let message), // Not used anywhere.
         .userPoolNotConfigured(let message):
-            // TODO: Hanlde the above errors inside the plugin #172336364
             return AuthError.unknown(message)
 
         case .badRequest(let message),
@@ -145,7 +144,6 @@ struct AuthErrorHelper {
             return AuthError.unknown(message)
 
         case .expiredRefreshToken(let message):
-            // TODO: Should be handled by Auth.fetchSession #172336364
             return AuthError.unknown(message)
 
         // These errors arise from the escape hatch methods.

AmplifyPlugins/Auth/AWSCognitoAuthPluginIntegrationTests/AuthSessionTests/SignedInAuthSessionTests.swift

@@ -6,8 +6,10 @@
 //
 
 import XCTest
+@testable import AWSMobileClient
 @testable import Amplify
 import AWSCognitoAuthPlugin
+import AWSPluginsCore
 
 class SignedInAuthSessionTests: AWSAuthBaseTest {
 
@@ -22,6 +24,14 @@ class SignedInAuthSessionTests: AWSAuthBaseTest {
         sleep(2)
     }
 
+    /// Test if successful session is retreived after a user signin
+    ///
+    /// - Given: A signedout Amplify Auth Category
+    /// - When:
+    ///    - I sign in to the Auth Category
+    /// - Then:
+    ///    - I should receive a valid session in signed in state
+    ///
     func testSuccessfulSessionFetch() {
         let username = "integTest\(UUID().uuidString)"
         let password = "P123@\(UUID().uuidString)"
@@ -46,4 +56,60 @@ class SignedInAuthSessionTests: AWSAuthBaseTest {
         }
         wait(for: [authSessionExpectation], timeout: networkTimeout)
     }
+
+    /// Test if I get sessionExpired error on session expiry
+    ///
+    /// - Given: Valid signedIn session
+    /// - When:
+    ///    - The session expired and I try to fetch the auth session
+    /// - Then:
+    ///    - I should get the signedin state as true but with token result as sessionExpired
+    ///
+    func testSessionExpired() {
+        let username = "integTest\(UUID().uuidString)"
+        let password = "P123@\(UUID().uuidString)"
+        let signInExpectation = expectation(description: "SignIn operation should complete")
+        AuthSignInHelper.registerAndSignInUser(username: username, password: password) { didSucceed, error in
+            signInExpectation.fulfill()
+            XCTAssertTrue(didSucceed, "SignIn operation failed - \(String(describing: error))")
+        }
+        wait(for: [signInExpectation], timeout: networkTimeout)
+
+        let authSessionExpectation = expectation(description: "Received event result from fetchAuth")
+        _ = Amplify.Auth.fetchAuthSession { result in
+            defer {
+                authSessionExpectation.fulfill()
+            }
+
+            do {
+                let authSession = try result.get() as? AuthCognitoTokensProvider
+                _ = try authSession?.getCognitoTokens().get()
+            } catch {
+                XCTFail("Should not receive error \(error)")
+            }
+        }
+        wait(for: [authSessionExpectation], timeout: networkTimeout)
+
+        // Manually invalidate the tokens and then try to fetch the session.
+        AuthSessionHelper.invalidateSession(username: username)
+        let authSessionExpiredExpectation = expectation(description: "Received event result from fetchAuth")
+        _ = Amplify.Auth.fetchAuthSession { result in
+            defer {
+                authSessionExpiredExpectation.fulfill()
+            }
+
+            do {
+                let authSession = try result.get() as? AuthCognitoTokensProvider
+                _ = try authSession?.getCognitoTokens().get()
+                XCTFail("Should not receive a valid token")
+            } catch {
+                guard let authError = error as? AuthError,
+                    case .sessionExpired(_, _, _) = authError else {
+                    XCTFail("Should receive a session expired error")
+                    return
+                }
+            }
+        }
+        wait(for: [authSessionExpiredExpectation], timeout: networkTimeout)
+    }
 }

AmplifyPlugins/Auth/AWSCognitoAuthPluginIntegrationTests/AuthSignOutTests/AuthSignOutTests.swift

@@ -0,0 +1,184 @@
+//
+// Copyright 2018-2020 Amazon.com,
+// Inc. or its affiliates. All Rights Reserved.
+//
+// SPDX-License-Identifier: Apache-2.0
+//
+
+import XCTest
+@testable import AWSMobileClient
+@testable import Amplify
+import AWSCognitoAuthPlugin
+import AWSPluginsCore
+
+class AuthSignedOutTests: AWSAuthBaseTest {
+
+    override func setUp() {
+        super.setUp()
+        initializeAmplify()
+    }
+
+    override func tearDown() {
+        super.tearDown()
+        Amplify.reset()
+        sleep(2)
+    }
+
+    /// Test if invoking signOut without unauthenticate state does not fail
+    ///
+    /// - Given: An unauthenticated state
+    /// - When:
+    ///    - I invoke signOut
+    /// - Then:
+    ///    - I should get a successul result
+    ///
+    func testSignedOutWithUnAuthState() {
+        let operationExpectation = expectation(description: "Operation should complete")
+        let operation = Amplify.Auth.signOut { result in
+            defer {
+                operationExpectation.fulfill()
+            }
+            switch result {
+            case .success:
+                print("Success signout")
+            case .failure(let error):
+                XCTFail("SignOut should not fail - \(error)")
+            }
+        }
+        XCTAssertNotNil(operation, "SignOut operation should not be nil")
+        wait(for: [operationExpectation], timeout: networkTimeout)
+    }
+
+    /// Test signOut in authenticated state
+    ///
+    /// - Given: An authenticated state
+    /// - When:
+    ///    - I invoke signout
+    /// - Then:
+    ///    - I should get successul result and the auth session should be signedout
+    ///
+    func testSignedOutFromAuthState() {
+
+        let username = "integTest\(UUID().uuidString)"
+        let password = "P123@\(UUID().uuidString)"
+
+        let signInExpectation = expectation(description: "SignIn operation should complete")
+        AuthSignInHelper.registerAndSignInUser(username: username, password: password) { didSucceed, error in
+            signInExpectation.fulfill()
+            XCTAssertTrue(didSucceed, "SignIn operation failed - \(String(describing: error))")
+        }
+        wait(for: [signInExpectation], timeout: networkTimeout)
+
+        // Check if the auth session is signed in
+        let authSignedInSessionExpectation = expectation(description: "Operation should complete")
+        _ = Amplify.Auth.fetchAuthSession { result in
+            defer {
+                authSignedInSessionExpectation.fulfill()
+            }
+            do {
+                let session = try result.get()
+                XCTAssertTrue(session.isSignedIn, "Auth session should be signedin")
+            } catch {
+                XCTFail("Fetch auth session failed with error - \(error)")
+            }
+        }
+        wait(for: [authSignedInSessionExpectation], timeout: networkTimeout)
+
+        let operationExpectation = expectation(description: "Operation should complete")
+        let operation = Amplify.Auth.signOut { result in
+            defer {
+                operationExpectation.fulfill()
+            }
+            switch result {
+            case .success:
+                print("Success signout")
+            case .failure(let error):
+                XCTFail("SignOut should not fail - \(error)")
+            }
+        }
+        XCTAssertNotNil(operation, "SignOut operation should not be nil")
+        wait(for: [operationExpectation], timeout: networkTimeout)
+
+        // Check if the auth session is signed out
+        let authSignedOutSessionExpectation = expectation(description: "Operation should complete")
+        _ = Amplify.Auth.fetchAuthSession { result in
+            defer {
+                authSignedOutSessionExpectation.fulfill()
+            }
+            do {
+                let session = try result.get()
+                XCTAssertFalse(session.isSignedIn, "Auth session should be signedin")
+            } catch {
+                XCTFail("Fetch auth session failed with error - \(error)")
+            }
+        }
+        wait(for: [authSignedOutSessionExpectation], timeout: networkTimeout)
+    }
+
+    /// Test signOut in authenticated session expired state
+    ///
+    /// - Given: An authenticated state with expired session
+    /// - When:
+    ///    - I invoke signout
+    /// - Then:
+    ///    - I should get successul result and the auth session should be signedout
+    ///
+    func testSignedOutFromSessionExpiredState() {
+
+        let username = "integTest\(UUID().uuidString)"
+        let password = "P123@\(UUID().uuidString)"
+
+        let signInExpectation = expectation(description: "SignIn operation should complete")
+        AuthSignInHelper.registerAndSignInUser(username: username, password: password) { didSucceed, error in
+            signInExpectation.fulfill()
+            XCTAssertTrue(didSucceed, "SignIn operation failed - \(String(describing: error))")
+        }
+        wait(for: [signInExpectation], timeout: networkTimeout)
+        AuthSessionHelper.invalidateSession(username: username)
+
+        // Check if the auth session is signed in
+        let authSignedInSessionExpectation = expectation(description: "Operation should complete")
+        _ = Amplify.Auth.fetchAuthSession { result in
+            defer {
+                authSignedInSessionExpectation.fulfill()
+            }
+            do {
+                let session = try result.get()
+                XCTAssertTrue(session.isSignedIn, "Auth session should be signedin")
+            } catch {
+                XCTFail("Fetch auth session failed with error - \(error)")
+            }
+        }
+        wait(for: [authSignedInSessionExpectation], timeout: networkTimeout)
+
+        let operationExpectation = expectation(description: "Operation should complete")
+        let operation = Amplify.Auth.signOut { result in
+            defer {
+                operationExpectation.fulfill()
+            }
+            switch result {
+            case .success:
+                print("Success signout")
+            case .failure(let error):
+                XCTFail("SignOut should not fail - \(error)")
+            }
+        }
+        XCTAssertNotNil(operation, "SignOut operation should not be nil")
+        wait(for: [operationExpectation], timeout: networkTimeout)
+
+        // Check if the auth session is signed out
+        let authSignedOutSessionExpectation = expectation(description: "Operation should complete")
+        _ = Amplify.Auth.fetchAuthSession { result in
+            defer {
+                authSignedOutSessionExpectation.fulfill()
+            }
+            do {
+                let session = try result.get()
+                XCTAssertFalse(session.isSignedIn, "Auth session should be signedin")
+            } catch {
+                XCTFail("Fetch auth session failed with error - \(error)")
+            }
+        }
+        wait(for: [authSignedOutSessionExpectation], timeout: networkTimeout)
+    }
+}

AmplifyPlugins/Auth/AWSCognitoAuthPluginIntegrationTests/AuthSignUpTests/AuthConfirmSignUpTests.swift

@@ -68,7 +68,9 @@ class AuthConfirmSignUpTests: AWSAuthBaseTest {
                                                     }
                                                     switch result {
                                                     case .success:
-                                                        XCTFail("confirmSignUp with validation error should not succeed")
+                                                        XCTFail("""
+                                                    confirmSignUp with validation error should not succeed
+                                                    """)
                                                     case .failure(let error):
                                                         guard case .validation(_, _, _, _) = error else {
                                                             XCTFail("Should return validation error")

AmplifyPlugins/Auth/AWSCognitoAuthPluginIntegrationTests/README.md

@@ -68,7 +68,6 @@ Please edit the file in your editor:
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.handler = async (event) => {
     event.response.autoConfirmUser = true;
-    event.response.autoVerifyEmail = true;
     return event;
 };
 

AmplifyPlugins/Auth/AWSCognitoAuthPluginIntegrationTests/Support/AuthSessionHelper.swift

@@ -0,0 +1,26 @@
+//
+// Copyright 2018-2020 Amazon.com,
+// Inc. or its affiliates. All Rights Reserved.
+//
+// SPDX-License-Identifier: Apache-2.0
+//
+
+@testable import AWSMobileClient
+@testable import Amplify
+import AWSCognitoAuthPlugin
+
+struct AuthSessionHelper {
+
+    static func invalidateSession(username: String) {
+        let bundleID = Bundle.main.bundleIdentifier
+        let keychain = AWSUICKeyChainStore(service: "\(bundleID!).\(AWSCognitoIdentityUserPool.self)")
+        let namespace = "\(AWSMobileClient.default().userPoolClient!.userPoolConfiguration.clientId).\(username)"
+        let expirationKey = "\(namespace).tokenExpiration"
+        let refreshTokenKey = "\(namespace).refreshToken"
+        if keychain[expirationKey] == nil {
+            print("No expiration key found in keychain")
+        }
+        keychain[expirationKey] = "2020-05-27T21:01:03Z"
+        keychain[refreshTokenKey] = "invalid"
+    }
+}