Port all webauthn tests to use updated test structure

deepjyoti30-st · deepjyoti30-st · commit 5836ea351021 · 2025-03-27T12:13:39.000+05:30
diff --git a/test/end-to-end/webauthn.recover_account.test.js b/test/end-to-end/webauthn.recover_account.test.js
@@ -1,14 +1,14 @@
-import fetch from "isomorphic-fetch";
-import { TEST_SERVER_BASE_URL } from "../constants";
 import {
-    backendBeforeEach,
     setupBrowser,
     screenshotOnFailure,
     clearBrowserCookiesWithoutAffectingConsole,
     getTestEmail,
     waitForSTElement,
     submitFormUnsafe,
     isWebauthnSupported,
+    backendHook,
+    setupCoreApp,
+    setupST,
 } from "../helpers";
 import { openRecoveryWithToken, signUpAndSendRecoveryEmail, getTokenFromEmail } from "./webauthn.helpers";
 import assert from "assert";
@@ -25,11 +25,10 @@ describe("SuperTokens Webauthn Recover Account", () => {
             skipped = true;
             this.skip();
         }
-        await backendBeforeEach();
 
-        await fetch(`${TEST_SERVER_BASE_URL}/startst`, {
-            method: "POST",
-        }).catch(console.error);
+        await backendHook("before");
+        const coreUrl = await setupCoreApp();
+        await setupST({ coreUrl });
 
         browser = await setupBrowser();
         page = await browser.newPage();
@@ -45,21 +44,18 @@ describe("SuperTokens Webauthn Recover Account", () => {
         if (skipped) {
             return;
         }
-        await browser.close();
-        await fetch(`${TEST_SERVER_BASE_URL}/after`, {
-            method: "POST",
-        }).catch(console.error);
-
-        await fetch(`${TEST_SERVER_BASE_URL}/stopst`, {
-            method: "POST",
-        }).catch(console.error);
+        await page?.close();
+        await browser?.close();
+        await backendHook("after");
     });
 
-    afterEach(function () {
-        return screenshotOnFailure(this, browser);
+    afterEach(async function () {
+        await screenshotOnFailure(this, browser);
+        await backendHook("afterEach");
     });
 
     beforeEach(async function () {
+        await backendHook("beforeEach");
         consoleLogs = [];
         consoleLogs = await clearBrowserCookiesWithoutAffectingConsole(page, consoleLogs);
 
diff --git a/test/end-to-end/webauthn.recovery_email.test.js b/test/end-to-end/webauthn.recovery_email.test.js
@@ -1,14 +1,14 @@
-import fetch from "isomorphic-fetch";
-import { TEST_SERVER_BASE_URL } from "../constants";
 import {
-    backendBeforeEach,
+    backendHook,
     setupBrowser,
     screenshotOnFailure,
     clearBrowserCookiesWithoutAffectingConsole,
     toggleSignInSignUp,
     waitForSTElement,
     getTestEmail,
     isWebauthnSupported,
+    setupCoreApp,
+    setupST,
 } from "../helpers";
 import { openRecoveryAccountPage, signUpAndSendRecoveryEmail, getTokenFromEmail } from "./webauthn.helpers";
 import assert from "assert";
@@ -24,11 +24,10 @@ describe("SuperTokens Webauthn Recovery Email", () => {
             skipped = true;
             this.skip();
         }
-        await backendBeforeEach();
 
-        await fetch(`${TEST_SERVER_BASE_URL}/startst`, {
-            method: "POST",
-        }).catch(console.error);
+        await backendHook("before");
+        const coreUrl = await setupCoreApp();
+        await setupST({ coreUrl });
 
         browser = await setupBrowser();
         page = await browser.newPage();
@@ -44,21 +43,18 @@ describe("SuperTokens Webauthn Recovery Email", () => {
         if (skipped) {
             return;
         }
-        await browser.close();
-        await fetch(`${TEST_SERVER_BASE_URL}/after`, {
-            method: "POST",
-        }).catch(console.error);
-
-        await fetch(`${TEST_SERVER_BASE_URL}/stopst`, {
-            method: "POST",
-        }).catch(console.error);
+        await page?.close();
+        await browser?.close();
+        await backendHook("after");
     });
 
-    afterEach(function () {
-        return screenshotOnFailure(this, browser);
+    afterEach(async function () {
+        await screenshotOnFailure(this, browser);
+        await backendHook("afterEach");
     });
 
     beforeEach(async function () {
+        await backendHook("beforeEach");
         consoleLogs = [];
         consoleLogs = await clearBrowserCookiesWithoutAffectingConsole(page, consoleLogs);
         await toggleSignInSignUp(page);
diff --git a/test/end-to-end/webauthn.signin.test.js b/test/end-to-end/webauthn.signin.test.js
@@ -1,17 +1,16 @@
-import fetch from "isomorphic-fetch";
-import { TEST_SERVER_BASE_URL } from "../constants";
 import {
-    backendBeforeEach,
     setupBrowser,
     screenshotOnFailure,
     clearBrowserCookiesWithoutAffectingConsole,
     toggleSignInSignUp,
-    setEnabledRecipes,
     waitForSTElement,
     submitFormUnsafe,
     waitForUrl,
     getUserIdFromSessionContext,
     isWebauthnSupported,
+    backendHook,
+    setupCoreApp,
+    setupST,
 } from "../helpers";
 import { tryWebauthnSignIn } from "./webauthn.helpers";
 import assert from "assert";
@@ -21,19 +20,20 @@ describe("SuperTokens Webauthn SignIn", () => {
     let page;
     let consoleLogs = [];
     let skipped = false;
+    const appConfig = {
+        enabledRecipes: ["webauthn", "emailpassword", "session", "dashboard", "userroles", "multifactorauth"],
+    };
 
     before(async function () {
         if (!(await isWebauthnSupported())) {
             skipped = true;
             this.skip();
         }
-        await backendBeforeEach();
 
-        await fetch(`${TEST_SERVER_BASE_URL}/startst`, {
-            method: "POST",
-        }).catch(console.error);
-
-        await setEnabledRecipes(["webauthn", "emailpassword", "session", "dashboard", "userroles", "multifactorauth"]);
+        await backendHook("before");
+        const coreUrl = await setupCoreApp();
+        appConfig.coreUrl = coreUrl;
+        await setupST(appConfig);
 
         browser = await setupBrowser();
         page = await browser.newPage();
@@ -49,21 +49,18 @@ describe("SuperTokens Webauthn SignIn", () => {
         if (skipped) {
             return;
         }
-        await browser.close();
-        await fetch(`${TEST_SERVER_BASE_URL}/after`, {
-            method: "POST",
-        }).catch(console.error);
-
-        await fetch(`${TEST_SERVER_BASE_URL}/stopst`, {
-            method: "POST",
-        }).catch(console.error);
+        await page?.close();
+        await browser?.close();
+        await backendHook("after");
     });
 
-    afterEach(function () {
-        return screenshotOnFailure(this, browser);
+    afterEach(async function () {
+        await screenshotOnFailure(this, browser);
+        await backendHook("afterEach");
     });
 
     beforeEach(async function () {
+        await backendHook("beforeEach");
         consoleLogs = [];
         consoleLogs = await clearBrowserCookiesWithoutAffectingConsole(page, consoleLogs);
         await toggleSignInSignUp(page);
diff --git a/test/end-to-end/webauthn.signup.test.js b/test/end-to-end/webauthn.signup.test.js
@@ -1,19 +1,18 @@
-import fetch from "isomorphic-fetch";
-import { TEST_SERVER_BASE_URL } from "../constants";
 import {
-    backendBeforeEach,
     setupBrowser,
     screenshotOnFailure,
     clearBrowserCookiesWithoutAffectingConsole,
     toggleSignInSignUp,
     getTestEmail,
     waitForSTElement,
     submitFormUnsafe,
-    setEnabledRecipes,
     setInputValues,
     isWebauthnSupported,
     waitForUrl,
     getUserIdFromSessionContext,
+    backendHook,
+    setupCoreApp,
+    setupST,
 } from "../helpers";
 import { tryWebauthnSignUp, openWebauthnSignUp } from "./webauthn.helpers";
 import assert from "assert";
@@ -23,20 +22,20 @@ describe("SuperTokens Webauthn SignUp", () => {
     let page;
     let consoleLogs = [];
     let skipped = false;
+    const appConfig = {
+        enabledRecipes: ["webauthn", "emailpassword", "session", "dashboard", "userroles", "multifactorauth"],
+    };
 
     before(async function () {
         if (!(await isWebauthnSupported())) {
             skipped = true;
             this.skip();
         }
 
-        await backendBeforeEach();
-
-        await fetch(`${TEST_SERVER_BASE_URL}/startst`, {
-            method: "POST",
-        }).catch(console.error);
-
-        await setEnabledRecipes(["webauthn", "emailpassword", "session", "dashboard", "userroles", "multifactorauth"]);
+        await backendHook("before");
+        const coreUrl = await setupCoreApp();
+        appConfig.coreUrl = coreUrl;
+        await setupST(appConfig);
 
         browser = await setupBrowser();
         page = await browser.newPage();
@@ -53,29 +52,26 @@ describe("SuperTokens Webauthn SignUp", () => {
             return;
         }
 
-        await browser.close();
-        await fetch(`${TEST_SERVER_BASE_URL}/after`, {
-            method: "POST",
-        }).catch(console.error);
-
-        await fetch(`${TEST_SERVER_BASE_URL}/stopst`, {
-            method: "POST",
-        }).catch(console.error);
+        await page?.close();
+        await browser?.close();
+        await backendHook("after");
     });
 
-    afterEach(function () {
-        return screenshotOnFailure(this, browser);
+    afterEach(async function () {
+        await screenshotOnFailure(this, browser);
+        await backendHook("afterEach");
     });
 
     beforeEach(async function () {
+        await backendHook("beforeEach");
         consoleLogs = [];
         consoleLogs = await clearBrowserCookiesWithoutAffectingConsole(page, consoleLogs);
         await toggleSignInSignUp(page);
     });
 
     describe("SignUp test", () => {
         it("should not show the back button and continue without passkey button if there is only one recipe", async () => {
-            await setEnabledRecipes(["webauthn", "multifactorauth"]);
+            await setupST({ ...appConfig, enabledRecipes: ["webauthn", "multifactorauth"] });
             await openWebauthnSignUp(page);
 
             // Use puppeteer to check if the back button is not shown
@@ -100,14 +96,7 @@ describe("SuperTokens Webauthn SignUp", () => {
             assert.strictEqual(continueWithoutPasskeyBtnAfterSubmit, null);
 
             // Reset the recipes after test is done
-            await setEnabledRecipes([
-                "webauthn",
-                "emailpassword",
-                "session",
-                "dashboard",
-                "userroles",
-                "multifactorauth",
-            ]);
+            await setupST({ ...appConfig });
         });
         it("should show the create a passkey successfully", async () => {
             const email = await getTestEmail();
diff --git a/test/server/index.js b/test/server/index.js
@@ -79,6 +79,7 @@ try {
     WebauthnRaw = require("supertokens-node/lib/build/recipe/webauthn/recipe").default;
     Webauthn = require("supertokens-node/recipe/webauthn");
 } catch {
+    console.log("Webauthn is not supported by the tested version of the node SDK");
     // Webauthn is not supported by the tested version of the node SDK
 }
 
@@ -979,6 +980,10 @@ app.get("/test/featureFlags", (req, res) => {
     available.push("oauth2");
     available.push("accountlinking-fixes");
 
+    if (Webauthn !== undefined) {
+        available.push("webauthn");
+    }
+
     res.send({
         available,
     });
@@ -993,6 +998,55 @@ app.post("/test/create-oauth2-client", async (req, res, next) => {
     }
 });
 
+app.get("/test/webauthn/get-token", async (req, res) => {
+    const webauthn = webauthnStore.get(req.query.email);
+    if (!webauthn) {
+        res.status(404).send({ error: "Webauthn not found" });
+        return;
+    }
+    res.send({ token: webauthn.token });
+});
+
+app.post("/test/webauthn/create-and-assert-credential", async (req, res) => {
+    try {
+        const { registerOptionsResponse, signInOptionsResponse, rpId, rpName, origin } = req.body;
+
+        const { createAndAssertCredential } = await getWebauthnLib();
+        const credential = createAndAssertCredential(registerOptionsResponse, signInOptionsResponse, {
+            rpId,
+            rpName,
+            origin,
+            userNotPresent: false,
+            userNotVerified: false,
+        });
+
+        res.send({ credential });
+    } catch (error) {
+        console.error("Error in create-and-assert-credential:", error);
+        res.status(500).send({ error: error.message });
+    }
+});
+
+app.post("/test/webauthn/create-credential", async (req, res) => {
+    try {
+        const { registerOptionsResponse, rpId, rpName, origin } = req.body;
+
+        const { createCredential } = await getWebauthnLib();
+        const credential = createCredential(registerOptionsResponse, {
+            rpId,
+            rpName,
+            origin,
+            userNotPresent: false,
+            userNotVerified: false,
+        });
+
+        res.send({ credential });
+    } catch (error) {
+        console.error("Error in create-credential:", error);
+        res.status(500).send({ error: error.message });
+    }
+});
+
 app.use(errorHandler());
 
 app.use(async (err, req, res, next) => {
diff --git a/test/server/package-lock.json b/test/server/package-lock.json
