add unit tests

harsh62 · harsh62 · commit 0e598431fe94 · 2025-12-04T12:35:04.000-05:00
diff --git a/Tests/AuthenticatorTests/Mocks/MockAuthenticationService.swift b/Tests/AuthenticatorTests/Mocks/MockAuthenticationService.swift
@@ -14,9 +14,26 @@ class MockAuthenticationService: AuthenticationService {
     // MARK: - Sign In
 
     var signInCount = 0
+    var signInUsername: String?
+    var signInPassword: String?
+    var signInOptions: AuthSignInRequest.Options?
     var mockedSignInResult: AuthSignInResult?
+    var mockedSignInError: Error?
+    var signInHandler: ((String?, String?, AuthSignInRequest.Options?) throws -> AuthSignInResult)?
     func signIn(username: String?, password: String?, options: AuthSignInRequest.Options?) async throws -> AuthSignInResult {
         signInCount += 1
+        signInUsername = username
+        signInPassword = password
+        signInOptions = options
+        
+        if let mockedSignInError = mockedSignInError {
+            throw mockedSignInError
+        }
+        
+        if let signInHandler = signInHandler {
+            return try signInHandler(username, password, options)
+        }
+        
         if let mockedSignInResult = mockedSignInResult {
             return mockedSignInResult
         }
diff --git a/Tests/AuthenticatorTests/States/SignInSelectAuthFactorStateTests.swift b/Tests/AuthenticatorTests/States/SignInSelectAuthFactorStateTests.swift
@@ -117,6 +117,7 @@ class SignInSelectAuthFactorStateTests: XCTestCase {
         XCTAssertEqual(authenticatorState.setCurrentStepCount, 1)
     }
 
+    @MainActor
     @available(iOS 17.4, macOS 13.5, visionOS 1.0, *)
     func testSelectAuthFactor_withWebAuthn_shouldInitiateWebAuthn() async throws {
         // Given
@@ -287,6 +288,193 @@ class SignInSelectAuthFactorStateTests: XCTestCase {
         state.selectedAuthFactor = .password(srp: true)
         XCTAssertEqual(state.selectedAuthFactor, .password(srp: true))
     }
+    
+    // MARK: - Auth Factor Re-selection Tests (Flow Restart)
+    
+    @MainActor
+    func testSelectAuthFactor_firstTimeSelection_shouldUseConfirmSignIn() async throws {
+        // Given - No previous selection (credentials.selectedAuthFactor is nil)
+        state.selectedAuthFactor = .emailOtp
+        XCTAssertNil(state.credentials.selectedAuthFactor, "Should start with no previous selection")
+        
+        // Mock OTP sending
+        authenticationService.mockedConfirmSignInResult = AuthSignInResult(
+            nextStep: .confirmSignInWithOTP(.init(destination: .email("test@example.com")))
+        )
+        
+        // When
+        try await state.selectAuthFactor()
+        
+        // Then - Should use confirmSignIn (not signIn)
+        XCTAssertEqual(authenticationService.confirmSignInCount, 1, "Should call confirmSignIn for first-time selection")
+        XCTAssertEqual(authenticationService.signInCount, 0, "Should NOT call signIn for first-time selection")
+        
+        // And - Should track the selection
+        XCTAssertEqual(state.credentials.selectedAuthFactor, .emailOtp)
+    }
+    
+    @MainActor
+    func testSelectAuthFactor_reselection_shouldRestartSignInFlow() async throws {
+        // Given - User has already selected an auth factor previously
+        state.credentials.username = "testuser"
+        state.credentials.selectedAuthFactor = .webAuthn  // Previous selection
+        state.selectedAuthFactor = .emailOtp  // New selection
+        
+        // Mock the restart flow - signIn should return factor selection again, then OTP
+        authenticationService.mockedSignInResult = AuthSignInResult(
+            nextStep: .confirmSignInWithOTP(.init(destination: .email("test@example.com")))
+        )
+        
+        // When
+        try await state.selectAuthFactor()
+        
+        // Then - Should call signIn (restart flow) instead of confirmSignIn
+        XCTAssertEqual(authenticationService.signInCount, 1, "Should call signIn to restart flow")
+        XCTAssertEqual(authenticationService.confirmSignInCount, 0, "Should NOT call confirmSignIn for re-selection")
+        
+        // And - Should update the tracked selection
+        XCTAssertEqual(state.credentials.selectedAuthFactor, .emailOtp)
+    }
+    
+    @MainActor
+    func testSelectAuthFactor_reselectionWithPassword_shouldIncludePassword() async throws {
+        // Given - User previously selected webAuthn, now selecting password
+        state.credentials.username = "testuser"
+        state.credentials.selectedAuthFactor = .webAuthn  // Previous selection
+        state.selectedAuthFactor = .password(srp: true)  // New selection
+        state.password = "mypassword123"
+        
+        // Mock the restart flow with password - should go through 2-step flow
+        authenticationService.mockedSignInResult = AuthSignInResult(nextStep: .done)
+        authenticationService.mockedCurrentUser = MockAuthenticationService.User(
+            username: "testuser",
+            userId: "user-123"
+        )
+        authenticationService.mockedUnverifiedAttributes = []
+        
+        // When
+        try await state.selectAuthFactor()
+        
+        // Then - Should call signIn with password
+        XCTAssertEqual(authenticationService.signInCount, 1, "Should call signIn to restart flow")
+        XCTAssertEqual(authenticationService.signInUsername, "testuser")
+        XCTAssertEqual(authenticationService.signInPassword, "mypassword123", "Should include password in restart")
+        
+        // And - Should update credentials
+        XCTAssertEqual(state.credentials.password, "mypassword123")
+        XCTAssertEqual(state.credentials.selectedAuthFactor, .password(srp: true))
+    }
+    
+    @MainActor
+    func testSelectAuthFactor_reselectionWithNonPassword_shouldNotIncludePassword() async throws {
+        // Given - User previously selected password, now selecting SMS OTP
+        state.credentials.username = "testuser"
+        state.credentials.selectedAuthFactor = .password(srp: true)  // Previous selection
+        state.selectedAuthFactor = .smsOtp  // New selection
+        state.password = "leftoverpassword"  // Should not be sent
+        
+        // Mock the restart flow
+        authenticationService.mockedSignInResult = AuthSignInResult(
+            nextStep: .confirmSignInWithOTP(.init(destination: .phone("+1234567890")))
+        )
+        
+        // When
+        try await state.selectAuthFactor()
+        
+        // Then - Should call signIn without password
+        XCTAssertEqual(authenticationService.signInCount, 1)
+        XCTAssertEqual(authenticationService.signInUsername, "testuser")
+        XCTAssertNil(authenticationService.signInPassword, "Should NOT include password for non-password factor")
+    }
+    
+    @MainActor
+    func testSelectAuthFactor_cancelPasskeyThenSelectEmail_shouldWork() async throws {
+        // This is the critical bug scenario from the Android PR
+        // Given - User selected webAuthn (passkey) and it was tracked
+        state.credentials.username = "testuser"
+        state.credentials.selectedAuthFactor = .webAuthn  // Simulates previous passkey selection (then cancel)
+        state.selectedAuthFactor = .emailOtp  // User now wants email
+        
+        // Mock successful restart with email OTP
+        authenticationService.mockedSignInResult = AuthSignInResult(
+            nextStep: .confirmSignInWithOTP(.init(destination: .email("test@example.com")))
+        )
+        
+        // When
+        try await state.selectAuthFactor()
+        
+        // Then - Should successfully restart and transition to OTP confirmation
+        XCTAssertEqual(authenticationService.signInCount, 1, "Should restart sign-in flow")
+        XCTAssertEqual(authenticatorState.setCurrentStepCount, 1)
+        
+        if case .confirmSignInWithOTP = authenticatorState.setCurrentStepValue {
+            // Success - correct step
+        } else {
+            XCTFail("Expected to transition to .confirmSignInWithOTP step")
+        }
+    }
+    
+    @MainActor
+    func testSelectAuthFactor_multipleReselections_shouldAlwaysRestartFlow() async throws {
+        // Given - Simulate multiple re-selections
+        state.credentials.username = "testuser"
+        
+        // First selection (no previous)
+        state.selectedAuthFactor = .emailOtp
+        authenticationService.mockedConfirmSignInResult = AuthSignInResult(
+            nextStep: .confirmSignInWithOTP(.init(destination: .email("test@example.com")))
+        )
+        
+        try await state.selectAuthFactor()
+        XCTAssertEqual(authenticationService.confirmSignInCount, 1, "First selection uses confirmSignIn")
+        XCTAssertEqual(authenticationService.signInCount, 0)
+        
+        // Reset mock counts
+        authenticationService.confirmSignInCount = 0
+        
+        // Second selection (re-selection)
+        state.selectedAuthFactor = .smsOtp
+        authenticationService.mockedSignInResult = AuthSignInResult(
+            nextStep: .confirmSignInWithOTP(.init(destination: .phone("+1234567890")))
+        )
+        
+        try await state.selectAuthFactor()
+        XCTAssertEqual(authenticationService.signInCount, 1, "Second selection restarts flow")
+        XCTAssertEqual(authenticationService.confirmSignInCount, 0, "Should not use confirmSignIn")
+        
+        // Third selection (another re-selection)
+        state.selectedAuthFactor = .emailOtp
+        authenticationService.signInCount = 0
+        authenticationService.mockedSignInResult = AuthSignInResult(
+            nextStep: .confirmSignInWithOTP(.init(destination: .email("test@example.com")))
+        )
+        
+        try await state.selectAuthFactor()
+        XCTAssertEqual(authenticationService.signInCount, 1, "Third selection also restarts flow")
+    }
+    
+    @MainActor
+    func testSelectAuthFactor_reselectionWithError_shouldSetErrorMessage() async throws {
+        // Given - User re-selecting after previous selection
+        state.credentials.username = "testuser"
+        state.credentials.selectedAuthFactor = .webAuthn
+        state.selectedAuthFactor = .emailOtp
+        
+        // Mock error on restart
+        authenticationService.mockedSignInError = AuthError.notAuthorized(
+            "Session expired",
+            "Please try again"
+        )
+        
+        // When/Then
+        do {
+            try await state.selectAuthFactor()
+            XCTFail("Should throw error")
+        } catch {
+            XCTAssertEqual(authenticationService.signInCount, 1)
+            // Error should be thrown and handled
+        }
+    }
 }
 
 // MARK: - AuthFactor Helper Tests
diff --git a/Tests/AuthenticatorTests/States/SignInStateTests.swift b/Tests/AuthenticatorTests/States/SignInStateTests.swift
@@ -226,4 +226,43 @@ class SignInStateTests: XCTestCase {
         XCTAssertEqual(authenticatorState.moveToCount, 1)
         XCTAssertEqual(authenticatorState.moveToValue, .signUp)
     }
+    
+    // MARK: - Selected Auth Factor Reset Tests
+    
+    @MainActor
+    func testSignIn_shouldResetSelectedAuthFactor() async throws {
+        // Given - credentials has a previously selected auth factor
+        state.credentials.selectedAuthFactor = .emailOtp
+        state.username = "testuser"
+        
+        authenticationService.mockedSignInResult = .init(nextStep: .done)
+        authenticationService.mockedCurrentUser = MockAuthenticationService.User(
+            username: "testuser",
+            userId: "userId"
+        )
+        
+        // When
+        try await state.signIn()
+        
+        // Then - selectedAuthFactor should be reset to nil
+        XCTAssertNil(state.credentials.selectedAuthFactor, "selectedAuthFactor should be reset on new sign-in")
+    }
+    
+    @MainActor
+    func testSignIn_withPreviousWebAuthnSelection_shouldResetForFreshFlow() async throws {
+        // Given - User previously selected webAuthn (simulating cancel scenario)
+        state.credentials.selectedAuthFactor = .webAuthn
+        state.username = "testuser"
+        
+        // Mock factor selection step (user will need to select again)
+        authenticationService.mockedSignInResult = .init(
+            nextStep: .continueSignInWithFirstFactorSelection([.emailOTP, .smsOTP, .passwordSRP])
+        )
+        
+        // When
+        try await state.signIn()
+        
+        // Then - selectedAuthFactor should be reset so first selection uses confirmSignIn
+        XCTAssertNil(state.credentials.selectedAuthFactor, "selectedAuthFactor should be reset for fresh flow")
+    }
 }
