feat(mon-pix): display the generic oidc userInfo

Author: P-Jeremy

mon-pix/app/components/authentication/login-or-register-oidc.hbs

@@ -2,39 +2,46 @@
 <div class="login-or-register-oidc-form__container">
   <div class="login-or-register-oidc-form__register-container">
     <h2 class="login-or-register-oidc-form__subtitle">{{t "pages.login-or-register-oidc.register-form.title"}}</h2>
-    <div>
-      <p class="login-or-register-oidc-form__description">
-        {{! template-lint-disable "no-bare-strings" }}
-        {{t "pages.login-or-register-oidc.register-form.description"}}
-        <em>{{this.identityProviderOrganizationName}}</em>&nbsp;:
-      </p>
-      <div class="login-or-register-oidc-form__information">
-        <ul>
-          <li>{{t "pages.login-or-register-oidc.register-form.information.given-name" givenName=this.givenName}}</li>
-          <li>{{t "pages.login-or-register-oidc.register-form.information.family-name" familyName=this.familyName}}</li>
-        </ul>
+    {{#if this.userClaims.length}}
+      <div>
+        <p class="login-or-register-oidc-form__description">
+          {{! template-lint-disable "no-bare-strings" }}
+          {{t "pages.login-or-register-oidc.register-form.description"}}
+          <em>{{this.identityProviderOrganizationName}}</em>&nbsp;:
+        </p>
+        <div class="login-or-register-oidc-form__information">
+          <ul>
+            {{#each this.userClaims as |userClaim|}}
+              <li>{{userClaim}}</li>
+            {{/each}}
+          </ul>
+        </div>
+      </div>
+      <div class="login-or-register-oidc-form__cgu-container">
+        <PixCheckbox {{on "change" this.onChange}}>
+          <:label>{{t
+              "common.cgu.message"
+              cguUrl=this.cguUrl
+              dataProtectionPolicyUrl=this.dataProtectionPolicyUrl
+              htmlSafe=true
+            }}</:label>
+        </PixCheckbox>
       </div>
-    </div>
-    <div class="login-or-register-oidc-form__cgu-container">
-      <PixCheckbox {{on "change" this.onChange}}>
-        <:label>{{t
-            "common.cgu.message"
-            cguUrl=this.cguUrl
-            dataProtectionPolicyUrl=this.dataProtectionPolicyUrl
-            htmlSafe=true
-          }}</:label>
-      </PixCheckbox>
-    </div>
 
-    {{#if this.registerErrorMessage}}
+      {{#if this.registerErrorMessage}}
+        <PixNotificationAlert @type="error" class="login-or-register-oidc-form__cgu-error">
+          {{this.registerErrorMessage}}
+        </PixNotificationAlert>
+      {{/if}}
+
+      <PixButton @type="submit" @triggerAction={{this.register}} @isLoading={{this.isRegisterLoading}}>
+        {{t "pages.login-or-register-oidc.register-form.button"}}
+      </PixButton>
+    {{else if this.userClaimsErrorMessage}}
       <PixNotificationAlert @type="error" class="login-or-register-oidc-form__cgu-error">
-        {{this.registerErrorMessage}}
+        {{this.userClaimsErrorMessage}}
       </PixNotificationAlert>
     {{/if}}
-
-    <PixButton @type="submit" @triggerAction={{this.register}} @isLoading={{this.isRegisterLoading}}>
-      {{t "pages.login-or-register-oidc.register-form.button"}}
-    </PixButton>
   </div>
 
   <div class="login-or-register-oidc-form__divider"></div>

mon-pix/app/components/authentication/login-or-register-oidc.js

@@ -35,14 +35,6 @@ export default class LoginOrRegisterOidcComponent extends Component {
     return this.oidcIdentityProviders[this.args.identityProviderSlug]?.organizationName;
   }
 
-  get givenName() {
-    return this.args.givenName;
-  }
-
-  get familyName() {
-    return this.args.familyName;
-  }
-
   get currentLanguage() {
     return this.intl.primaryLocale;
   }
@@ -55,6 +47,41 @@ export default class LoginOrRegisterOidcComponent extends Component {
     return this.url.dataProtectionPolicyUrl;
   }
 
+  get userClaimsErrorMessage() {
+    const { userClaims } = this.args;
+
+    if (!userClaims) {
+      return this.intl.t(`pages.login-or-register-oidc.register-form.information.error`);
+    } else {
+      return null;
+    }
+  }
+
+  get userClaims() {
+    const { userClaims } = this.args;
+
+    const result = [];
+
+    if (userClaims) {
+      const { firstName, lastName, ...rest } = userClaims;
+      result.push(`${this.intl.t(`pages.login-or-register-oidc.register-form.information.firstName`)} ${firstName}`);
+      result.push(`${this.intl.t(`pages.login-or-register-oidc.register-form.information.lastName`)} ${lastName}`);
+
+      Object.entries(rest).map(([key, value]) => {
+        let label = `${this.intl.t(`pages.login-or-register-oidc.register-form.information.${key}`)}`;
+        const translation = `${this.intl.t(`pages.login-or-register-oidc.register-form.information.${key}`)}`;
+
+        if (translation.includes('Missing translation')) {
+          label = `${key} :`;
+        }
+
+        return result.push(`${label} ${value}`);
+      });
+    }
+
+    return result;
+  }
+
   @action
   async login(event) {
     event.preventDefault();

mon-pix/app/controllers/authentication/login-or-register-oidc.js

@@ -3,8 +3,12 @@ import { action } from '@ember/object';
 import { service } from '@ember/service';
 import { tracked } from '@glimmer/tracking';
 
+import { SessionStorageEntry } from '../../utils/session-storage-entry';
+
+const oidcUserAuthenticationStorage = new SessionStorageEntry('oidcUserAuthentication');
+
 export default class LoginOrRegisterOidcController extends Controller {
-  queryParams = ['authenticationKey', 'identityProviderSlug', 'givenName', 'familyName'];
+  queryParams = ['identityProviderSlug'];
 
   @service url;
   @service oidcIdentityProviders;
@@ -15,7 +19,6 @@ export default class LoginOrRegisterOidcController extends Controller {
   @service currentDomain;
 
   @tracked showOidcReconciliation = false;
-  @tracked authenticationKey = null;
   @tracked identityProviderSlug = null;
   @tracked email = '';
   @tracked fullNameFromPix = '';
@@ -27,6 +30,14 @@ export default class LoginOrRegisterOidcController extends Controller {
     return this.url.showcase;
   }
 
+  get oidcUserAuthenticationStorage() {
+    return oidcUserAuthenticationStorage.get();
+  }
+
+  get userClaims() {
+    return this.oidcUserAuthenticationStorage.userClaims ?? null;
+  }
+
   get isInternationalDomain() {
     return !this.currentDomain.isFranceDomain;
   }
@@ -35,6 +46,10 @@ export default class LoginOrRegisterOidcController extends Controller {
     return this.intl.primaryLocale;
   }
 
+  get authenticationKey() {
+    return this.oidcUserAuthenticationStorage.authenticationKey ?? null;
+  }
+
   @action
   onLanguageChange(language) {
     this.locale.setLocale(language);

mon-pix/app/routes/authentication/login-oidc.js

@@ -6,6 +6,10 @@ import ENV from 'mon-pix/config/environment';
 import { createTranslatedApplicationError } from 'mon-pix/errors/factories/create-application-error';
 import JSONApiError from 'mon-pix/errors/json-api-error';
 
+import { SessionStorageEntry } from '../../utils/session-storage-entry';
+
+const oidcUserAuthenticationStorage = new SessionStorageEntry('oidcUserAuthentication');
+
 export default class LoginOidcRoute extends Route {
   @service intl;
   @service location;
@@ -37,23 +41,21 @@ export default class LoginOidcRoute extends Route {
 
   async model(params, transition) {
     const queryParams = transition.to.queryParams;
+
     const identityProviderSlug = params.identity_provider_slug;
     if (queryParams.code) {
       return this._handleCallbackRequest(queryParams.code, queryParams.state, queryParams.iss, identityProviderSlug);
     }
   }
 
-  afterModel({ shouldValidateCgu, authenticationKey, identityProviderSlug, givenName, familyName } = {}) {
-    const shouldCreateAnAccountForUser = shouldValidateCgu && authenticationKey;
+  afterModel({ shouldValidateCgu, identityProviderSlug } = {}) {
+    const shouldCreateAnAccountForUser = shouldValidateCgu && oidcUserAuthenticationStorage.get().authenticationKey;
 
     if (!shouldCreateAnAccountForUser) return;
 
     return this.router.replaceWith('authentication.login-or-register-oidc', {
       queryParams: {
-        authenticationKey,
         identityProviderSlug,
-        givenName,
-        familyName,
       },
     });
   }
@@ -76,9 +78,10 @@ export default class LoginOidcRoute extends Route {
       const error = new JSONApiError(apiError.detail, apiError);
 
       const shouldValidateCgu = error.code === 'SHOULD_VALIDATE_CGU';
-      const { authenticationKey, givenName, familyName } = error.meta ?? {};
-      if (shouldValidateCgu && authenticationKey) {
-        return { shouldValidateCgu, authenticationKey, identityProviderSlug, givenName, familyName };
+
+      if (shouldValidateCgu && error.meta.authenticationKey) {
+        oidcUserAuthenticationStorage.set(error.meta);
+        return { shouldValidateCgu, identityProviderSlug };
       }
 
       throw error;

mon-pix/app/templates/authentication/login-or-register-oidc.hbs

@@ -21,8 +21,7 @@
       <Authentication::LoginOrRegisterOidc
         @identityProviderSlug={{this.identityProviderSlug}}
         @authenticationKey={{this.authenticationKey}}
-        @givenName={{this.givenName}}
-        @familyName={{this.familyName}}
+        @userClaims={{this.userClaims}}
         @onLogin={{this.onLogin}}
       />
     {{/if}}

mon-pix/mirage/routes/authentication/oidc/index.js

@@ -8,7 +8,10 @@ export default function (config) {
         {},
         {
           errors: [
-            { code: 'SHOULD_VALIDATE_CGU', meta: { authenticationKey: 'key', familyName: 'PIX', givenName: 'test' } },
+            {
+              code: 'SHOULD_VALIDATE_CGU',
+              meta: { authenticationKey: 'key', userClaims: { lastName: 'PIX', firstName: 'test' } },
+            },
           ],
         },
       );

mon-pix/tests/acceptance/authentication/login-or-register-oidc-test.js

@@ -19,10 +19,7 @@ module('Acceptance | Login or register oidc', function (hooks) {
         const screen = await visit('/connexion/oidc-partner?code=oidc_example_code&state=auth_session_state');
 
         // then
-        assert.strictEqual(
-          currentURL(),
-          '/connexion/oidc?authenticationKey=key&familyName=PIX&givenName=test&identityProviderSlug=oidc-partner',
-        );
+        assert.strictEqual(currentURL(), '/connexion/oidc?identityProviderSlug=oidc-partner');
         assert.dom(screen.getByRole('button', { name: 'Sélectionnez une langue' })).exists();
       });
     });

mon-pix/tests/acceptance/oidc/start-campaigns-workflow-for-oidc-partner-test.js

@@ -7,7 +7,6 @@ import { setupMirage } from 'ember-cli-mirage/test-support';
 import { t } from 'ember-intl/test-support';
 import { setupApplicationTest } from 'ember-qunit';
 import { currentSession } from 'ember-simple-auth/test-support';
-import { Response } from 'miragejs';
 import { module, test } from 'qunit';
 import sinon from 'sinon';
 
@@ -70,28 +69,12 @@ module('Acceptance | Campaigns | Start Campaigns workflow | OIDC', function (hoo
         const state = 'state';
         const session = currentSession();
         session.set('data.state', state);
-        this.server.post('oidc/token', () => {
-          return new Response(
-            401,
-            {},
-            {
-              errors: [
-                {
-                  code: 'SHOULD_VALIDATE_CGU',
-                  meta: {
-                    authenticationKey: 'key',
-                  },
-                },
-              ],
-            },
-          );
-        });
 
         // when
         const screen = await visit(`/connexion/oidc-partner?code=test&state=${state}`);
 
         // then
-        assert.strictEqual(currentURL(), `/connexion/oidc?authenticationKey=key&identityProviderSlug=oidc-partner`);
+        assert.strictEqual(currentURL(), `/connexion/oidc?identityProviderSlug=oidc-partner`);
         assert.ok(screen.getByRole('heading', { name: t('pages.login-or-register-oidc.title') }));
       });
 
@@ -106,7 +89,8 @@ module('Acceptance | Campaigns | Start Campaigns workflow | OIDC', function (hoo
         sessionStorage.setItem('campaigns', JSON.stringify(data));
 
         // when
-        const screen = await visit(`/connexion/oidc?authenticationKey=key&identityProviderSlug=oidc-partner`);
+        const screen = await visit(`/connexion/oidc?identityProviderSlug=oidc-partner`);
+
         await click(screen.getByRole('checkbox', { name: t('common.cgu.label') }));
         await click(screen.getByRole('button', { name: 'Je crée mon compte' }));