Merge pull request #19429 from mozilla/FXA-12355

feat(mfa): handle unexpected error states and resend code success

Author: MagentaManifold

packages/fxa-settings/src/components/Settings/MfaGuard/index.test.tsx

@@ -3,12 +3,13 @@
  * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
 
 import React from 'react';
-import { screen } from '@testing-library/react';
+import { screen, waitFor } from '@testing-library/react';
 import userEvent from '@testing-library/user-event';
-import { renderWithRouter } from '../../../models/mocks';
+import { mockAppContext, renderWithRouter } from '../../../models/mocks';
 import { MfaGuard } from './index';
 import { JwtTokenCache } from '../../../lib/cache';
 import { AuthUiErrors } from '../../../lib/auth-errors/auth-errors';
+import { AppContext } from '../../../models';
 
 const mockSessionToken = 'session-xyz';
 const mockOtp = '123456';
@@ -22,9 +23,8 @@ const mockAuthClient = {
     return Promise.reject(AuthUiErrors.INVALID_EXPIRED_OTP_CODE);
   }),
 };
-const mockFtlMsgResolver = {
-  getMsg: (id: string, fallback: string) => fallback,
-};
+const mockAlertBar = { error: jest.fn() };
+const mockNavigate = jest.fn();
 
 jest.mock('../../../lib/cache', () => {
   const actual = jest.requireActual('../../../lib/cache');
@@ -36,11 +36,24 @@ jest.mock('../../../lib/cache', () => {
 });
 
 jest.mock('../../../models', () => ({
-  useAccount: () => ({ email: '[email protected]' }),
+  ...jest.requireActual('../../../models'),
   useAuthClient: () => mockAuthClient,
-  useFtlMsgResolver: () => mockFtlMsgResolver,
+  useAlertBar: () => mockAlertBar,
+}));
+
+jest.mock('@reach/router', () => ({
+  ...jest.requireActual('@reach/router'),
+  useNavigate: () => mockNavigate,
 }));
 
+async function submitCode(otp: string = mockOtp) {
+  await userEvent.type(
+    screen.getByRole('textbox', { name: 'Enter 6-digit code' }),
+    otp
+  );
+  await userEvent.click(screen.getByRole('button', { name: 'Confirm' }));
+}
+
 describe('MfaGuard', () => {
   beforeEach(() => {
     if (JwtTokenCache.hasToken(mockSessionToken, mockScope)) {
@@ -51,9 +64,11 @@ describe('MfaGuard', () => {
 
   it('requests OTP and shows modal when JWT missing', async () => {
     renderWithRouter(
-      <MfaGuard requiredScope={mockScope}>
-        <div>secured</div>
-      </MfaGuard>
+      <AppContext.Provider value={mockAppContext()}>
+        <MfaGuard requiredScope={mockScope}>
+          <div>secured</div>
+        </MfaGuard>
+      </AppContext.Provider>
     );
 
     expect(mockAuthClient.mfaRequestOtp).toHaveBeenCalledWith(
@@ -65,12 +80,7 @@ describe('MfaGuard', () => {
       await screen.findByText('Enter confirmation code')
     ).toBeInTheDocument();
 
-    // Submit a code to verify integration with onSubmit
-    await userEvent.type(
-      screen.getByRole('textbox', { name: 'Enter 6-digit code' }),
-      mockOtp
-    );
-    await userEvent.click(screen.getByRole('button', { name: 'Confirm' }));
+    await submitCode();
 
     expect(mockAuthClient.mfaOtpVerify).toHaveBeenCalledWith(
       mockSessionToken,
@@ -83,9 +93,11 @@ describe('MfaGuard', () => {
     JwtTokenCache.setToken(mockSessionToken, mockScope, 'jwt-present');
 
     renderWithRouter(
-      <MfaGuard requiredScope={mockScope}>
-        <div>secured</div>
-      </MfaGuard>
+      <AppContext.Provider value={mockAppContext()}>
+        <MfaGuard requiredScope={mockScope}>
+          <div>secured</div>
+        </MfaGuard>
+      </AppContext.Provider>
     );
 
     expect(screen.getByText('secured')).toBeInTheDocument();
@@ -97,17 +109,15 @@ describe('MfaGuard', () => {
 
   it('shows error banner on invalid OTP', async () => {
     renderWithRouter(
-      <MfaGuard requiredScope={mockScope}>
-        <div>secured</div>
-      </MfaGuard>
+      <AppContext.Provider value={mockAppContext()}>
+        <MfaGuard requiredScope={mockScope}>
+          <div>secured</div>
+        </MfaGuard>
+      </AppContext.Provider>
     );
 
     expect(screen.queryByText('Enter confirmation code')).toBeInTheDocument();
-    await userEvent.type(
-      screen.getByRole('textbox', { name: 'Enter 6-digit code' }),
-      '654321'
-    );
-    await userEvent.click(screen.getByRole('button', { name: 'Confirm' }));
+    await submitCode('654321');
 
     expect(
       await screen.findByText('Invalid or expired confirmation code')
@@ -116,26 +126,98 @@ describe('MfaGuard', () => {
 
   it('clears error banner on input change', async () => {
     renderWithRouter(
-      <MfaGuard requiredScope={mockScope}>
-        <div>secured</div>
-      </MfaGuard>
+      <AppContext.Provider value={mockAppContext()}>
+        <MfaGuard requiredScope={mockScope}>
+          <div>secured</div>
+        </MfaGuard>
+      </AppContext.Provider>
     );
 
     expect(screen.getByText('Enter confirmation code')).toBeInTheDocument();
+    await submitCode('654321');
+    expect(
+      await screen.findByText('Invalid or expired confirmation code')
+    ).toBeInTheDocument();
+
+    await userEvent.clear(screen.getByRole('textbox'));
+
+    expect(
+      screen.queryByText('Invalid or expired confirmation code')
+    ).not.toBeInTheDocument();
+  });
+
+  it('shows resend success banner and hides error banner on resend success', async () => {
+    renderWithRouter(
+      <AppContext.Provider value={mockAppContext()}>
+        <MfaGuard requiredScope={mockScope}>
+          <div>secured</div>
+        </MfaGuard>
+      </AppContext.Provider>
+    );
+
+    // Trigger an error first
     await userEvent.type(
       screen.getByRole('textbox', { name: 'Enter 6-digit code' }),
       '654321'
     );
     await userEvent.click(screen.getByRole('button', { name: 'Confirm' }));
-
     expect(
       await screen.findByText('Invalid or expired confirmation code')
     ).toBeInTheDocument();
 
-    await userEvent.clear(screen.getByRole('textbox'));
-
+    await userEvent.click(
+      screen.getByRole('button', { name: 'Email new code.' })
+    );
+    expect(
+      await screen.findByText('A new code was sent to your email.')
+    ).toBeInTheDocument();
     expect(
       screen.queryByText('Invalid or expired confirmation code')
     ).not.toBeInTheDocument();
   });
+
+  it('shows error banner and hide success banner on resend error', async () => {
+    renderWithRouter(
+      <AppContext.Provider value={mockAppContext()}>
+        <MfaGuard requiredScope={mockScope}>
+          <div>secured</div>
+        </MfaGuard>
+      </AppContext.Provider>
+    );
+
+    await userEvent.click(
+      screen.getByRole('button', { name: 'Email new code.' })
+    );
+    expect(
+      await screen.findByText('A new code was sent to your email.')
+    ).toBeInTheDocument();
+
+    mockAuthClient.mfaRequestOtp.mockRejectedValueOnce(
+      AuthUiErrors.UNEXPECTED_ERROR
+    );
+
+    await userEvent.click(
+      screen.getByRole('button', { name: 'Email new code.' })
+    );
+    expect(await screen.findByText('Unexpected error')).toBeInTheDocument();
+  });
+
+  it('goes home and shows error alert bar if request for OTP fails', async () => {
+    mockAuthClient.mfaRequestOtp.mockRejectedValueOnce(
+      AuthUiErrors.UNEXPECTED_ERROR
+    );
+
+    renderWithRouter(
+      <AppContext.Provider value={mockAppContext()}>
+        <MfaGuard requiredScope={mockScope}>
+          <div>secured</div>
+        </MfaGuard>
+      </AppContext.Provider>
+    );
+
+    await waitFor(() => {
+      expect(mockNavigate).toHaveBeenCalledWith('/settings');
+      expect(mockAlertBar.error).toHaveBeenCalledWith('Unexpected error');
+    });
+  });
 });