feat: adds dev/release tag pipelines (#911)

* feat: add mochawesome reporter

* update: makes test utils/server use applications

- Removes Start/Stop/Clean/Setup ST functions
- Adds a `/test/setup` endpoint to use `setupApp`
- Adds generic backend hook endpoints

* feat: setup mochawesome

- Adds screenshots to report
- Adds defaults to `.mocharc.yml`

* update: `emailverification` tests use core apps

- Each test runs independently
- Adds some additional steps to ensure tests are independent
- Cleans up test hooks
- Fixes verification failure test that relied on core being stopped
    - Adds intercept to fail verification query

* update: `embed` tests use core apps

- Each test runs independently
- Adds some additional steps to ensure tests are independent
- Cleans up test hooks

* update: `generalerror` tests use core apps

* update: `getRedirectionURL` tests use core apps

* update: remove assertion on creating new apps

- Same appId can be re-used and will not create new apps

* update: `mfa.chooserscreen` tests use core apps

* feat: adds mocha envs to test config

* lint: format code

* update: `accountlinking` tests use core apps

- Each test runs independently
- Adds some additional steps to ensure tests are independent
- Cleans up test hooks

* update: `mfa.default_reqs` tests use core apps

- Each test runs independently
- Cleans up test hooks

* refactor: split app creation and ST setup utils

* update: `mfa.factorscreen.otp` tests use core apps

* refactor: split app creation and ST setup utils

* update: `mfa.factorscreen.totp` tests use core apps

* update: add missing backend hooks

* update: `mfa.firstFactors` tests use core apps

* update: `mfa.requirement_handling` tests use core apps

* update: `mfa.signin` tests use core apps

* update: `multitenancy.dynamic_login_methods` tests use core apps

* update: `multitenancy.tenant_interactions` tests use core apps

* update: `oauth2provider` tests use core apps

* update: `resetpasswordusingtoken` tests use core apps

* update: `signin-rrdv5/6` tests use core apps

* update: few `thirdparty` tests use core apps

* update: removes `visual` tests

* removes usages of old helper functions

* update: `userContext`/`userroles` tests use core apps

* fix: broken tests, update configs

* update: remove log

* fix: correct setup ST url

* test: only run few tests

* revert: test: only run few tests

* Fix package-lock issues

* Add some fixes for userContext and test server

* Port all webauthn tests to use updated test structure

* update: remove spec config in mocha

* Add init workflow for auth-react e2e tests

* Whitelist ci branch for tests

* Remove cdi version related code

* Add support for starting core in the tests

* Add compose for starting up core

* Explicitly pass APP_SERVER port in envs

* Use alternative approach to pass spec files to test action

* Parse the spec array into JSON to iterate through it

* Make some improvements in the workflow

* Add changes to run tests in a different workflow

* Update workflow to make it ready for merge

* Add workflow for unit tests

* Remove current branch from list of allowed branches in unit test

* Get rid of using random UUID for appId

* Rename Core test to Core Functionality

* Get rid of a TODO

* Get rid of using timeout in tests

* Get rid of setting appId from tests directly

* fix: failing auth-react tests [0.49] (#895)

* fix: awaits `setupST` calls

* fix: `after` hook page close failures

* feat: webauthn test flows (#883)

## Summary of change

This PR adds e2e test flows for webauthn and accountlinking

## Related issues

## Test Plan

All webauthn accountlinking tests should pass

## Documentation changes

(If relevant, please create a PR in our [docs repo](https://github.com/supertokens/docs), or create a checklist here highlighting the necessary changes)

## Checklist for important updates

-   [ ] Changelog has been updated
-   [ ] `frontendDriverInterfaceSupported.json` file has been updated (if needed)
-   [ ] Changes to the version if needed
    -   In `package.json`
    -   In `package-lock.json`
    -   In `lib/ts/version.ts`
-   [x] Had run `npm run build-pretty`
-   [x] Had installed and ran the pre-commit hook
-   [x] Issue this PR against the latest non released version branch.
    -   To know which one it is, run find the latest released tag (`git tag`) in the format `vX.Y.Z`, and then find the latest branch (`git branch --all`) whose `X.Y` is greater than the latest released tag.
    -   If no such branch exists, then create one from the latest released branch.
-   [ ] If added a new recipe interface, then make sure that the implementation of it uses NON arrow functions only (like `someFunc: function () {..}`).
-   [ ] If I added a new recipe, I also added the recipe entry point into the `size-limit` section of `package.json` with the size limit set to the current size rounded up.
-   [ ] If I added a new recipe, I also added the recipe entry point into the `rollup.config.mjs`
-   [ ] If I added a new login method, I modified the list in `lib/ts/types.ts`
-   [ ] If I added a factor id, I modified the list in `lib/ts/recipe/multifactorauth/types.ts`

* fix: separate helper method from test file (#900)

## Summary of change

This PR removes a util method from the accountlinking test file and moves it to the helper file since it is used in 2 test files (accountlinking and webauthn) and the while running the webauthn tests, the accountlinking ones were also getting triggered because the helper was being imported from that file.

## Related issues

## Test Plan

All accountlinking and webauthn accountlinking tests should pass

## Documentation changes

(If relevant, please create a PR in our [docs repo](https://github.com/supertokens/docs), or create a checklist here highlighting the necessary changes)

## Checklist for important updates

-   [ ] Changelog has been updated
-   [ ] `frontendDriverInterfaceSupported.json` file has been updated (if needed)
-   [ ] Changes to the version if needed
    -   In `package.json`
    -   In `package-lock.json`
    -   In `lib/ts/version.ts`
-   [x] Had run `npm run build-pretty`
-   [x] Had installed and ran the pre-commit hook
-   [x] Issue this PR against the latest non released version branch.
    -   To know which one it is, run find the latest released tag (`git tag`) in the format `vX.Y.Z`, and then find the latest branch (`git branch --all`) whose `X.Y` is greater than the latest released tag.
    -   If no such branch exists, then create one from the latest released branch.
-   [ ] If added a new recipe interface, then make sure that the implementation of it uses NON arrow functions only (like `someFunc: function () {..}`).
-   [ ] If I added a new recipe, I also added the recipe entry point into the `size-limit` section of `package.json` with the size limit set to the current size rounded up.
-   [ ] If I added a new recipe, I also added the recipe entry point into the `rollup.config.mjs`
-   [ ] If I added a new login method, I modified the list in `lib/ts/types.ts`
-   [ ] If I added a factor id, I modified the list in `lib/ts/recipe/multifactorauth/types.ts`

## Remaining TODOs for this PR

* feat: adds dev/release tag pipelines

- Sets up dev/release tag pipelines
- Adds script to populate common constants
- Updates workflows to run on PRs and dev-tags

* update: makes chromatic tests run on dev tag

- Ensures chromatic statuses are checked in the release checks

* update: web js interface variable to match action output

* doc: adds changelog

* update: GHA concurrency to cancel runs if new commit pushed

---------

Co-authored-by: Deepjyoti Barman <[email protected]>
Co-authored-by: Sattvik Chakravarthy <[email protected]>

Author: 3 people

.github/workflows/auth-react-test-1.yml

@@ -0,0 +1,83 @@
+name: Auth-React Tests - L1
+
+on:
+    pull_request:
+        types:
+            - opened
+            - reopened
+            - synchronize
+    push:
+        tags:
+            - dev-v[0-9]+.[0-9]+.[0-9]+
+
+# Only one instance of this workflow will run on the same ref (PR/Branch/Tag)
+# Previous runs will be cancelled.
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
+jobs:
+    define-versions:
+        runs-on: ubuntu-latest
+        outputs:
+            fdiVersions: ${{ steps.versions.outputs.fdiVersions }}
+        steps:
+            - uses: actions/checkout@v4
+            - uses: supertokens/get-supported-versions-action@main
+              id: versions
+              with:
+                  has-fdi: true
+
+    setup-auth-react:
+        runs-on: ubuntu-latest
+        needs: define-versions
+        strategy:
+            fail-fast: true
+            matrix:
+                fdi-version: ${{ fromJSON(needs.define-versions.outputs.fdiVersions) }}
+
+        outputs:
+            AUTH_REACT__LOG_DIR: ${{ steps.envs.outputs.AUTH_REACT__LOG_DIR }}
+            AUTH_REACT__SCREENSHOT_DIR: ${{ steps.envs.outputs.AUTH_REACT__SCREENSHOT_DIR }}
+            AUTH_REACT__NODE_PORT: ${{ steps.envs.outputs.AUTH_REACT__NODE_PORT }}
+            AUTH_REACT__APP_SERVER: ${{ steps.envs.outputs.AUTH_REACT__NODE_PORT }}
+            AUTH_REACT__TEST_MODE: ${{ steps.envs.outputs.AUTH_REACT__TEST_MODE }}
+            AUTH_REACT__PORT: ${{ steps.envs.outputs.AUTH_REACT__PORT }}
+            specs: ${{ steps.envs.outputs.specs }}
+            fdiVersions: ${{ needs.define-versions.outputs.fdiVersions }}
+
+        steps:
+            - uses: supertokens/get-versions-action@main
+              id: versions
+              with:
+                  driver-name: node
+                  fdi-version: ${{ matrix.fdi-version }}
+              env:
+                  SUPERTOKENS_API_KEY: ${{ secrets.SUPERTOKENS_API_KEY }}
+
+            - uses: supertokens/auth-react-testing-action/setup@main
+              id: envs
+              with:
+                  auth-react-version: ${{ github.sha }}
+                  node-sdk-version: ${{ steps.versions.outputs.nodeTag }}
+                  fdi-version: ${{ matrix.fdi-version }}
+                  use-common-app-and-test-server: "true"
+
+    launch-test-workflow:
+        uses: ./.github/workflows/auth-react-test-2.yml
+        needs: setup-auth-react
+        name: FDI ${{ matrix.fdi-version }}
+        strategy:
+            max-parallel: 1 # This is important to avoid ddos GHA API
+            fail-fast: false # Don't fail fast to avoid locking TF State
+            matrix:
+                fdi-version: ${{ fromJSON(needs.setup-auth-react.outputs.fdiVersions) }}
+        with:
+            fdi-version: ${{ matrix.fdi-version }}
+            specs: ${{ needs.setup-auth-react.outputs.specs }}
+            AUTH_REACT__LOG_DIR: ${{ needs.setup-auth-react.outputs.AUTH_REACT__LOG_DIR }}
+            AUTH_REACT__SCREENSHOT_DIR: ${{ needs.setup-auth-react.outputs.AUTH_REACT__SCREENSHOT_DIR }}
+            AUTH_REACT__APP_SERVER: ${{ needs.setup-auth-react.outputs.AUTH_REACT__APP_SERVER }}
+            AUTH_REACT__NODE_PORT: ${{ needs.setup-auth-react.outputs.AUTH_REACT__NODE_PORT }}
+            AUTH_REACT__TEST_MODE: ${{ needs.setup-auth-react.outputs.AUTH_REACT__TEST_MODE }}
+            AUTH_REACT__PORT: ${{ needs.setup-auth-react.outputs.AUTH_REACT__PORT }}

.github/workflows/auth-react-test-2.yml

@@ -0,0 +1,82 @@
+name: Auth-React Tests - L2
+on:
+    workflow_call:
+        inputs:
+            fdi-version:
+                description: "FDI Version"
+                required: true
+                type: string
+
+            specs:
+                description: "Spec Files"
+                required: true
+                type: string
+
+            AUTH_REACT__LOG_DIR:
+                description: AUTH_REACT__LOG_DIR
+                required: true
+                type: string
+
+            AUTH_REACT__SCREENSHOT_DIR:
+                description: AUTH_REACT__SCREENSHOT_DIR
+                required: true
+                type: string
+
+            AUTH_REACT__APP_SERVER:
+                description: AUTH_REACT__APP_SERVER
+                required: true
+                type: string
+
+            AUTH_REACT__NODE_PORT:
+                description: AUTH_REACT__NODE_PORT
+                required: true
+                type: string
+
+            AUTH_REACT__TEST_MODE:
+                description: AUTH_REACT__TEST_MODE
+                required: true
+                type: string
+
+            AUTH_REACT__PORT:
+                description: AUTH_REACT__PORT
+                required: true
+                type: string
+
+jobs:
+    test:
+        runs-on: ubuntu-latest
+
+        strategy:
+            max-parallel: 10
+            fail-fast: false
+            matrix:
+                spec: ${{ fromJSON(inputs.specs) }}
+
+        env:
+            SUPERTOKENS_CORE_PORT: 3567
+            SUPERTOKENS_CORE_HOST: localhost
+            TEST_MODE: testing
+            # Auth react setup envs
+            AUTH_REACT__LOG_DIR: ${{ inputs.AUTH_REACT__LOG_DIR }}
+            AUTH_REACT__SCREENSHOT_DIR: ${{ inputs.AUTH_REACT__SCREENSHOT_DIR }}
+            AUTH_REACT__NODE_PORT: ${{ inputs.AUTH_REACT__NODE_PORT }}
+            AUTH_REACT__APP_SERVER: ${{ inputs.AUTH_REACT__NODE_PORT }}
+            AUTH_REACT__TEST_MODE: ${{ inputs.AUTH_REACT__TEST_MODE }}
+            AUTH_REACT__PORT: ${{ inputs.AUTH_REACT__PORT }}
+
+        steps:
+            - uses: actions/checkout@v4
+              with:
+                  path: supertokens-auth-react
+
+            - name: Start core
+              run: docker compose up --wait
+              working-directory: supertokens-auth-react
+
+            - uses: supertokens/auth-react-testing-action@main
+              name: test ${{ matrix.spec }} for ${{ inputs.fdi-version }}
+              with:
+                  fdi-version: ${{ inputs.fdi-version }}
+                  check-name-suffix: "[FDI=${{ inputs.fdi-version }}][Spec=${{ matrix.spec }}]"
+                  path: supertokens-auth-react
+                  spec: ${{ matrix.spec }}

.github/workflows/chromatic.yml

@@ -2,9 +2,19 @@ name: "Chromatic"
 
 on:
     push:
-        branches: [master, "[0-9]*.[0-9]*"]
+        branches:
+            - master
+            - "[0-9]*.[0-9]*"
+        tags:
+            - dev-v[0-9]+.[0-9]+.[0-9]+
     workflow_dispatch:
 
+# Only one instance of this workflow will run on the same ref (PR/Branch/Tag)
+# Previous runs will be cancelled.
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
 jobs:
     chromatic:
         runs-on: ubuntu-latest

.github/workflows/pipeline-dev-tag.yml

@@ -0,0 +1,153 @@
+name: "Dev Tag Pipeline"
+
+on:
+    workflow_dispatch:
+        inputs:
+            branch:
+                description: The branch to create the dev tag on
+                type: string
+                required: true
+
+permissions:
+    contents: write
+
+jobs:
+    setup:
+        runs-on: ubuntu-latest
+
+        outputs:
+            packageVersion: ${{ steps.versions.outputs.packageVersion }}
+            packageVersionXy: ${{ steps.versions.outputs.packageVersionXy }}
+            packageLockVersion: ${{ steps.versions.outputs.packageLockVersion }}
+            packageLockVersionXy: ${{ steps.versions.outputs.packageLockVersionXy }}
+            newestVersion: ${{ steps.versions.outputs.newestVersion }}
+            targetBranch: ${{ steps.versions.outputs.targetBranch }}
+            devTag: ${{ steps.versions.outputs.devTag }}
+            releaseTag: ${{ steps.versions.outputs.releaseTag }}
+
+        steps:
+            - uses: actions/checkout@v4
+              with:
+                  ref: ${{ inputs.branch }}
+                  # Need a complete fetch to make the master merge check work
+                  fetch-depth: 0
+                  fetch-tags: true
+                  token: ${{ secrets.ALL_REPO_PAT }}
+
+            - name: Setup git
+              run: |
+                  # NOTE: The user email is {user.id}+{user.login}@users.noreply.github.com.
+                  # See users API: https://api.github.com/users/github-actions%5Bbot%5D
+                  git config user.name "github-actions[bot]"
+                  git config user.email "41898282+github-actions[bot]@users.noreply.github.com"
+
+                  git fetch origin master
+
+            - name: Check if branch needs master merge
+              run: |
+                  if [[ $(git log origin/master ^HEAD) != "" ]]; then
+                    echo "You need to merge master into this branch."
+                    exit 1
+                  fi
+
+            - name: Populate variables
+              id: versions
+              run: |
+                  . ./hooks/populate-hook-constants.sh
+
+                  echo "packageVersion=$packageVersion" | tee -a "$GITHUB_OUTPUT" "$GITHUB_ENV"
+                  echo "packageVersionXy=$packageVersionXy" | tee -a "$GITHUB_OUTPUT" "$GITHUB_ENV"
+                  echo "packageLockVersion=$packageLockVersion" | tee -a "$GITHUB_OUTPUT" "$GITHUB_ENV"
+                  echo "packageLockVersionXy=$packageLockVersionXy" | tee -a "$GITHUB_OUTPUT" "$GITHUB_ENV"
+                  echo "newestVersion=$newestVersion" | tee -a "$GITHUB_OUTPUT" "$GITHUB_ENV"
+                  echo "targetBranch=$targetBranch" | tee -a "$GITHUB_OUTPUT" "$GITHUB_ENV"
+
+                  echo "devTag=dev-v$packageLockVersion" | tee -a "$GITHUB_OUTPUT" "$GITHUB_ENV"
+                  echo "releaseTag=v$packageLockVersion" | tee -a "$GITHUB_OUTPUT" "$GITHUB_ENV"
+
+            - name: Check tag and branch correctness
+              run: |
+                  if [[ "${{ steps.versions.outputs.packageVersion }}" != "${{ steps.versions.outputs.packageLockVersion }}" ]]
+                  then
+                      echo "The package version and package lock version do not match."
+                      exit 1
+                  fi
+
+                  if [[ "${{ steps.versions.outputs.packageVersion }}" != ${{ inputs.branch }}* ]]
+                  then
+                      echo "Adding tag to wrong branch"
+                      exit 1
+                  fi
+
+                  if git rev-parse ${{ steps.versions.outputs.releaseTag }} >/dev/null 2>&1
+                  then
+                      echo "The released version of this tag already exists."
+                      exit 1
+                  fi
+
+            - name: Delete tag if already tagged
+              run: |
+                  git tag --delete ${{ steps.versions.outputs.devTag }} || true
+                  git push --delete origin ${{ steps.versions.outputs.devTag }} || true
+
+            - name: Install dependencies
+              run: npm install
+
+            - name: Build docs
+              run: |
+                  npm run build-pretty
+                  npm run build-docs
+
+            - name: Commit doc changes
+              run: |
+                  git add --all
+                  git commit --allow-empty -nm "doc: update docs for ${{ steps.versions.outputs.releaseTag }} tag"
+                  git push
+
+            - name: Create and push tag
+              run: |
+                  # NOTE: The user email is {user.id}+{user.login}@users.noreply.github.com.
+                  # See users API: https://api.github.com/users/github-actions%5Bbot%5D
+                  git config user.name "github-actions[bot]"
+                  git config user.email "41898282+github-actions[bot]@users.noreply.github.com"
+
+                  git tag ${{ steps.versions.outputs.devTag }}
+                  git push --tags --follow-tags
+
+    mark-dev-tag-as-not-passed:
+        runs-on: ubuntu-latest
+        needs:
+            - setup
+
+        steps:
+            - uses: actions/checkout@v4
+              with:
+                  ref: ${{ needs.setup.outputs.devTag }}
+                  fetch-tags: true
+
+            - id: versions
+              uses: supertokens/get-supported-versions-action@main
+              with:
+                  has-cdi: false
+                  has-fdi: true
+                  has-web-js: true
+
+            - id: escape-versions
+              run: |
+                  echo "fdiVersions=$(sed 's/"/\\"/g' <<< '${{ steps.versions.outputs.fdiVersions }}')" | tee -a "$GITHUB_OUTPUT" "$GITHUB_ENV"
+                  echo "webJsInterfaceVersion=$(sed 's/"/\\"/g' <<< '${{ steps.versions.outputs.webJsInterfaceVersion }}')" | tee -a "$GITHUB_OUTPUT" "$GITHUB_ENV"
+
+            - run: |
+                  ./hooks/populate-hook-constants.sh
+
+                  curl --fail-with-body -X PUT \
+                      https://api.supertokens.io/0/frontend \
+                      -H 'Content-Type: application/json' \
+                      -H 'api-version: 1' \
+                      -d "{
+                          \"password\": \"${{ secrets.SUPERTOKENS_API_KEY }}\",
+                          \"version\":\"${{ needs.setup.outputs.packageVersion }}\",
+                          \"name\": \"auth-react\",
+                          \"frontendDriverInterfaces\": ${{ steps.escape-versions.outputs.fdiVersions }},
+                          \"webJsInterface\": \"${{ steps.escape-versions.outputs.webJsInterfaceVersion }}\"
+                      }"