// account1 - authenticated // account2 - invalid refreshToken import { account1, account2 } from '../fixtures/accounts.json'; const multiAccount = createState(); const multiAccountWithBadTokens = createState(); const singleAccount = createState(); singleAccount.accounts.available = singleAccount.accounts.available.filter( account => account.id === singleAccount.accounts.active ); describe("when user's token and refreshToken are invalid", () => { before(() => // ensure we always have one account with correct token cy.visit('/').then(() => fetch('/api/authentication/login', { method: 'POST', headers: { 'Content-Type': 'application/x-www-form-urlencoded; charset=UTF-8' }, body: `login=${account1.login}&password=${account1.password}` }) .then(resp => resp.json()) .then(resp => { const account = multiAccount.accounts.available.find( account => account.username === account1.username ); account.token = resp.access_token; }) ) ); beforeEach(() => localStorage.setItem('redux-storage', JSON.stringify(multiAccount)) ); it('should ask for password', () => { cy.visit('/'); cy.url().should('include', '/password'); cy.get('[name="password"]').type(`${account2.password}{enter}`); cy.location('pathname', { timeout: 15000 }).should('eq', '/'); cy.contains('account preferences'); }); it('should not allow to return to profile using toolbar', () => { cy.visit('/'); cy.url().should('include', '/password'); cy.get('[data-e2e-toolbar] a') .contains('Ely.by') .click(); // TODO: currently we can not skip redirect to /, but we will in future cy.location('pathname', { timeout: 15000 }).should('eq', '/'); cy.url({ timeout: 15000 }).should('include', '/password'); }); it('should allow select account', () => { // TODO: need a way to get valid token for one of the accounts cy.visit('/'); cy.get('[data-e2e-go-back]').click(); cy.url().should('include', '/choose-account'); cy.get('[data-e2e-content]') .contains(account2.email) .should('not.exist'); cy.get('[data-e2e-content]') .contains(account1.username) .click(); cy.location('pathname', { timeout: 15000 }).should('eq', '/'); cy.contains('account preferences'); }); it('it should redirect to login, when one account and clicking back', () => { cy.url().should(() => localStorage.setItem('redux-storage', JSON.stringify(singleAccount)) ); cy.visit('/'); cy.url().should('include', '/password'); cy.get('[data-e2e-go-back]').click(); cy.url().should('include', '/login'); cy.get('[data-e2e-toolbar]').contains('Join'); }); it('should allow logout', () => { cy.visit('/'); cy.get('@fetch', { timeout: 15000 }).should( 'be.calledWith', `/api/v1/accounts/${account2.id}` ); cy.get('[data-e2e-toolbar]') .contains(account2.username) .click(); cy.get('[data-e2e-toolbar]') .contains('Log out') .click(); cy.get('@fetch', { timeout: 15000 }).should( 'be.calledWith', '/api/authentication/logout' ); cy.get('[data-e2e-toolbar]') .contains(account2.email) .should('not.exist'); cy.get('[data-e2e-toolbar]') .contains(account2.username) .should('not.exist'); }); it('should allow enter new login from choose account', () => { cy.visit('/'); cy.get('@fetch', { timeout: 15000 }).should( 'be.calledWith', `/api/v1/accounts/${account2.id}` ); cy.url().should('include', '/password'); cy.get('[data-e2e-go-back]').click(); cy.get('[name=password]').should('not.exist'); // wait till panel transition end cy.url().should('include', '/choose-account'); cy.contains('Log into another').click(); cy.url().should('include', '/login'); cy.get('[name=login]').type(`${account1.login}{enter}`); cy.url().should('include', '/password'); cy.get('[name=password]').type(account1.password); cy.get('[name=rememberMe]').should('be.checked'); cy.get('[type=submit]').click(); cy.location('pathname', { timeout: 15000 }).should('eq', '/'); }); it('should allow logout from all accounts while choosing an account', () => { cy.visit('/'); cy.get('[data-e2e-go-back]').click(); cy.url().should('include', '/choose-account'); cy.contains('Log out from all accounts').click(); cy.url().should('include', '/login'); cy.get('[data-e2e-toolbar]').contains('a', 'Join'); }); it('should ask for password if selected account with bad token', () => { cy.url().should(() => localStorage.setItem( 'redux-storage', JSON.stringify(multiAccountWithBadTokens) ) ); cy.visit('/'); cy.get('[data-e2e-go-back]').click(); cy.url().should('include', '/choose-account'); cy.get('[data-e2e-content]') .contains(account1.username) .click(); cy.url().should('include', '/password'); // TODO: remove wait and fix logic so that // it won't show 'Please enter E‑mail or username' error cy.wait(1000); cy.get('[name="password"]').type(`${account1.password}{enter}`); cy.location('pathname', { timeout: 15000 }).should('eq', '/'); cy.contains('account preferences'); }); /** * This is a regression test for the edge case, when user tries to register new * account during a passowrd request to get new refreshToken for the current * active account * * Expected result: * It should show register page, when user clicks 'Register new account' * * Actual result: * User was redirected from register page back to password page due to recursive * atempt to get new refreshToken * * @see https://trello.com/c/iINbZ2l2 */ it('should allow enter register page during password request for other account with invalid token', () => { cy.visit('/'); cy.url().should('contain', '/password'); cy.get('[data-e2e-go-back]').click(); cy.get('[name=password]').should('not.exist'); // wait till panel transition end cy.contains('[type=submit]', 'Log into another account').click(); cy.contains('a', 'Create new account').click(); cy.url().should('contain', '/register'); }); /** * This is a regression test for the edge case, when user tries to register new * account via direct sign up page link * * Expected result: * It should show register page * * Actual result: * User was redirected from register page back to password page due to recursive * atempt to get new refreshToken * * @see https://trello.com/c/iINbZ2l2 */ it('should allow enter register page, when current account has invalid token', () => { cy.visit('/register'); cy.url().should('contain', '/register'); }); it('should allow oauth', () => { cy.visit( '/oauth2/v1/ely?client_id=ely&redirect_uri=http%3A%2F%2Fely.by%2Fauthorization%2Foauth&response_type=code&scope=account_info%2Caccount_email' ); cy.url().should('contain', '/password'); cy.get('[name=password]').type(`${account2.password}{enter}`); cy.url({ timeout: 15000 }).should('contain', '/oauth/choose-account'); cy.get('[data-e2e-content]') .contains(account2.username) .click(); cy.url().should('contain', '//ely.by'); }); }); function createState() { return { accounts: { available: [ { id: 7, username: 'SleepWalker', email: 'danilenkos@auroraglobal.com', token: 'eyJhbGciOiJIUzI1NiJ9.eyJlbHktc2NvcGVzIjoiYWNjb3VudHNfd2ViX3VzZXIiLCJpYXQiOjE1MTgzNzM4MDksImV4cCI6MTUxODM3NzQwOSwic3ViIjoiZWx5fDciLCJqdGkiOjM1NDh9.Fv4AbJ0iDbrH3bhbgF0ViJLfYYiwH78deR4fMlMhKrQ', refreshToken: '3gh6ZZ3R9jGeFdp0TmlY7sd0zBxH6Zfq48M86eUAv952RcAKx32RAnjlKkgd6i-MV-RKbjtADIdoRwMUWOYQjEYtwwXPjcQJ' }, { id: 102, username: 'test', email: 'admin@udf.su', token: 'eyJhbGciOiJIUzI1NiJ9.eyJlbHktc2NvcGVzIjoiYWNjb3VudHNfd2ViX3VzZXIiLCJpYXQiOjE1MTgzNzM4NjUsImV4cCI6MTUxODM3NzQ2NSwic3ViIjoiZWx5fDEwMiIsImp0aSI6MzU0OX0.eJEgvXT3leGqBe3tYNGZb0E4WEvWfrLPjcD7eNjyQYO', refreshToken: 'Al75SIx-LFOCP7kaqZBVqMVmSljJw9_bdFQGyuM64c6ShP7YsXbkCD8vPOundAwUDfRZqsIbOHUROmAHPB0VBfjLfw96yqxx' } ], active: 102 }, user: { id: 102, uuid: 'e49cafdc-6e0c-442d-b608-dacdb864ee34', username: 'test', token: '', email: 'admin@udf.su', maskedEmail: '', avatar: '', lang: 'en', isActive: true, isOtpEnabled: true, shouldAcceptRules: false, passwordChangedAt: 1478961317, hasMojangUsernameCollision: true, isGuest: false, registeredAt: 1478961317, elyProfileLink: 'http://ely.by/u102' } }; }