Merge pull request #72 from okta/iabdullin/success_state_fix

Unlock account flow: Success status creation failure

Author: IldarAbdullin-okta

OktaAuthNative.xcodeproj/project.pbxproj

@@ -122,6 +122,9 @@
 		A1E7469F2283819700C48A28 /* MFA_ENROLL_ACTIVATE_CALL in Resources */ = {isa = PBXBuildFile; fileRef = A1E7469E2283819700C48A28 /* MFA_ENROLL_ACTIVATE_CALL */; };
 		A1E746A0228381D400C48A28 /* MFA_ENROLL_ACTIVATE_CALL in Resources */ = {isa = PBXBuildFile; fileRef = A1E7469E2283819700C48A28 /* MFA_ENROLL_ACTIVATE_CALL */; };
 		A1E746A22283830F00C48A28 /* OktaFactorOtherTests.swift in Sources */ = {isa = PBXBuildFile; fileRef = A1E746A12283830F00C48A28 /* OktaFactorOtherTests.swift */; };
+		A1F9E5922298729100924F7A /* MFA_ENROLL_ACTIVATE_TOTP in Resources */ = {isa = PBXBuildFile; fileRef = A1F9E5912298729100924F7A /* MFA_ENROLL_ACTIVATE_TOTP */; };
+		A1F9E594229888BC00924F7A /* SUCCESS_UNLOCK in Resources */ = {isa = PBXBuildFile; fileRef = A1F9E593229888BC00924F7A /* SUCCESS_UNLOCK */; };
+		A1F9E5962298895600924F7A /* OktaAuthStatusSuccessTests.swift in Sources */ = {isa = PBXBuildFile; fileRef = A1F9E5952298895500924F7A /* OktaAuthStatusSuccessTests.swift */; };
 		A1FCB12F220A458F0026F522 /* OktaAPIMock.swift in Sources */ = {isa = PBXBuildFile; fileRef = A1FCB12E220A458F0026F522 /* OktaAPIMock.swift */; };
 		FA4ED9A021C1499200A065A1 /* OktaAuth_iOS.h in Headers */ = {isa = PBXBuildFile; fileRef = FA4ED99E21C1499200A065A1 /* OktaAuth_iOS.h */; settings = {ATTRIBUTES = (Public, ); }; };
 		FA4ED9AA21C2895B00A065A1 /* OktaError.swift in Sources */ = {isa = PBXBuildFile; fileRef = FA4ED9A921C2895B00A065A1 /* OktaError.swift */; };
@@ -222,6 +225,9 @@
 		A1E7469C22837E7400C48A28 /* OktaFactorCallTests.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = OktaFactorCallTests.swift; sourceTree = "<group>"; };
 		A1E7469E2283819700C48A28 /* MFA_ENROLL_ACTIVATE_CALL */ = {isa = PBXFileReference; lastKnownFileType = text; path = MFA_ENROLL_ACTIVATE_CALL; sourceTree = "<group>"; };
 		A1E746A12283830F00C48A28 /* OktaFactorOtherTests.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = OktaFactorOtherTests.swift; sourceTree = "<group>"; };
+		A1F9E5912298729100924F7A /* MFA_ENROLL_ACTIVATE_TOTP */ = {isa = PBXFileReference; lastKnownFileType = text; path = MFA_ENROLL_ACTIVATE_TOTP; sourceTree = "<group>"; };
+		A1F9E593229888BC00924F7A /* SUCCESS_UNLOCK */ = {isa = PBXFileReference; lastKnownFileType = text; path = SUCCESS_UNLOCK; sourceTree = "<group>"; };
+		A1F9E5952298895500924F7A /* OktaAuthStatusSuccessTests.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = OktaAuthStatusSuccessTests.swift; sourceTree = "<group>"; };
 		A1FCB12E220A458F0026F522 /* OktaAPIMock.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = OktaAPIMock.swift; sourceTree = "<group>"; };
 		FA4ED99B21C1499200A065A1 /* OktaAuthNative.framework */ = {isa = PBXFileReference; explicitFileType = wrapper.framework; includeInIndex = 0; path = OktaAuthNative.framework; sourceTree = BUILT_PRODUCTS_DIR; };
 		FA4ED99E21C1499200A065A1 /* OktaAuth_iOS.h */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.h; path = OktaAuth_iOS.h; sourceTree = "<group>"; };
@@ -298,6 +304,7 @@
 				A151096B2281FD3F009AF8EB /* OktaAuthStatusPasswordWarningTests.swift */,
 				A1E746432282050F00C48A28 /* OktaAuthStatusRecoveryChallengeTests.swift */,
 				A1E746472282359B00C48A28 /* OktaAuthStatusRecoveryTests.swift */,
+				A1F9E5952298895500924F7A /* OktaAuthStatusSuccessTests.swift */,
 			);
 			path = Statuses;
 			sourceTree = "<group>";
@@ -336,6 +343,8 @@
 				A1E74645228207A800C48A28 /* RECOVERY_CHALLENGE_EMAIL */,
 				A1E7465522834B9800C48A28 /* Questions */,
 				A1E7469E2283819700C48A28 /* MFA_ENROLL_ACTIVATE_CALL */,
+				A1F9E5912298729100924F7A /* MFA_ENROLL_ACTIVATE_TOTP */,
+				A1F9E593229888BC00924F7A /* SUCCESS_UNLOCK */,
 			);
 			path = Resources;
 			sourceTree = "<group>";
@@ -584,12 +593,14 @@
 				2F8155932270B740009FA6C5 /* LOCKED_OUT in Resources */,
 				2F7C3BBF226DED2300A62FD4 /* MFA_ENROLL_NotEnrolled in Resources */,
 				2FF5C85921D3A9E700EECA75 /* OperationNotAllowedError in Resources */,
+				A1F9E594229888BC00924F7A /* SUCCESS_UNLOCK in Resources */,
 				A1671554227BA90700E7801D /* Unknown_State_And_FactorResult in Resources */,
 				2F7C3BC0226DED2300A62FD4 /* MFA_ENROLL_PartiallyEnrolled in Resources */,
 				2F7C3BC1226DED2300A62FD4 /* MFA_ENROLL_ACTIVATE_SMS in Resources */,
 				2F7C3BC5226DED2300A62FD4 /* MFA_CHALLENGE_TOTP in Resources */,
 				2F7C3BBE226DED1E00A62FD4 /* MFA_CHALLENGE_WAITING_PUSH in Resources */,
 				2FF5C85221D1078E00EECA75 /* PrimaryAuthResponse in Resources */,
+				A1F9E5922298729100924F7A /* MFA_ENROLL_ACTIVATE_TOTP in Resources */,
 				A1E74646228207A800C48A28 /* RECOVERY_CHALLENGE_EMAIL in Resources */,
 				2F7C3BBD226DED1B00A62FD4 /* SUCCESS in Resources */,
 			);
@@ -662,6 +673,7 @@
 				A1E746A22283830F00C48A28 /* OktaFactorOtherTests.swift in Sources */,
 				A1920FC122615A97007D50D2 /* OktaAuthStatusPasswordWarning.swift in Sources */,
 				A1920FA622615A97007D50D2 /* OktaAuthStatusRecoveryChallenge.swift in Sources */,
+				A1F9E5962298895600924F7A /* OktaAuthStatusSuccessTests.swift in Sources */,
 				2F7C3B7E2268B83400A62FD4 /* OktaFactorPushTests.swift in Sources */,
 				A1E746482282359B00C48A28 /* OktaAuthStatusRecoveryTests.swift in Sources */,
 				2F7C3B7A2268AF2800A62FD4 /* OktaAPIRequestTests.swift in Sources */,

Source/Factors/OktaFactorTotp.swift

@@ -14,6 +14,24 @@ import Foundation
 
 open class OktaFactorTotp : OktaFactor {
 
+    public var activation: EmbeddedResponse.Factor.Embedded.Activation? {
+        get {
+            return factor.embedded?.activation
+        }
+    }
+
+    public var activationLinks: LinksResponse? {
+        get {
+            return factor.embedded?.activation?.links
+        }
+    }
+
+    public var qrCodeLink: LinksResponse.QRCode? {
+        get {
+            return factor.embedded?.activation?.links?.qrcode
+        }
+    }
+
     public func enroll(onStatusChange: @escaping (_ newStatus: OktaAuthStatus) -> Void,
                        onError: @escaping (_ error: OktaError) -> Void) {
         self.enroll(questionId: nil,

Source/Statuses/OktaAuthStatusSuccess.swift

@@ -14,13 +14,16 @@ import Foundation
 
 open class OktaAuthStatusSuccess : OktaAuthStatus {
 
-    public var sessionToken: String
+    open var recoveryType: OktaAPISuccessResponse.RecoveryType? {
+        get {
+            return model.recoveryType
+        }
+    }
+
+    public var sessionToken: String?
 
     public override init(currentState: OktaAuthStatus, model: OktaAPISuccessResponse) throws {
-        guard let sessionToken = model.sessionToken else {
-            throw OktaError.invalidResponse
-        }
-        self.sessionToken = sessionToken
+        self.sessionToken = model.sessionToken
         try super.init(currentState: currentState, model: model)
         statusType = .success
     }

Tests/Factors/OktaFactorTotpTests.swift

@@ -14,6 +14,21 @@ import XCTest
 @testable import OktaAuthNative
 
 class OktaFactorTotpTests: OktaFactorTestCase {
+
+    func testActivation() {
+        guard let factor: OktaFactorTotp = createFactor(from: .MFA_ENROLL_ACTIVATE_TOTP, type: .TOTP) else {
+            XCTFail()
+            return
+        }
+        
+        XCTAssertNotNil(factor.activation)
+        XCTAssertNotNil(factor.activationLinks)
+        XCTAssertNotNil(factor.activationLinks?.qrcode)
+        XCTAssertEqual(
+            "https://test.domain.com.com/api/v1/users/factors/qr/cQYp5xpm",
+            factor.qrCodeLink?.href.absoluteString
+        )
+    }
 
     // MARK: - verify
 

Tests/Resources/MFA_ENROLL_ACTIVATE_TOTP

@@ -0,0 +1,62 @@
+{
+"stateToken":"00_id3fUof3vX9Fy1H3qejz7izKh1gou0rOWkwJesi",
+"expiresAt":"2019-04-18T15:43:41.000Z",
+"status":"MFA_ENROLL_ACTIVATE",
+"_embedded":{
+"user":{
+"id":"00ujbyedtoxuuXn9l0h7",
+"passwordChanged":"2019-02-11T14:09:22.000Z",
+"profile":{
+"login":"ayurok",
+"firstName":"ayurok",
+"lastName":"ayurok",
+"locale":"en",
+"timeZone":"America/Los_Angeles"
+}
+},
+"factor":{
+"id":"opfkdh40kws5XarDb0h7",
+"factorType":"token:software:totp",
+"provider":"OKTA",
+"vendorName":"OKTA",
+"_embedded":{
+"activation":{
+"expiresAt":"2019-04-18T15:48:41.000Z",
+"_links":{
+"qrcode":{
+"href":"https://test.domain.com.com/api/v1/users/factors/qr/cQYp5xpm",
+"type":"image/png"
+}
+}
+}
+}
+}
+},
+"_links":{
+"next":{
+"name":"activate",
+"href":"https://test.domain.com/api/v1/authn/factors/mbljbyz1nyglPZm000h7/lifecycle/activate",
+"hints":{
+"allow":[
+"POST"
+]
+}
+},
+"cancel":{
+"href":"https://test.domain.com/api/v1/authn/cancel",
+"hints":{
+"allow":[
+"POST"
+]
+}
+},
+"prev":{
+"href":"https://test.domain.com/api/v1/authn/previous",
+"hints":{
+"allow":[
+"POST"
+]
+}
+}
+}
+}

Tests/Resources/SUCCESS_UNLOCK

@@ -0,0 +1 @@
+{"status":"SUCCESS","recoveryType":"UNLOCK","_embedded":{"user":{"id":"00u2rejxahomC7fZP0g7","passwordChanged":"2019-05-23T20:17:50.000Z","profile":{"login":"ildar.abdullin@okta.com","firstName":"Ildar","lastName":"Abdullin","locale":"en","timeZone":"America/Los_Angeles"}}}}

Tests/Statuses/OktaAuthStatusSuccessTests.swift

@@ -0,0 +1,51 @@
+/*
+ * Copyright (c) 2019, Okta, Inc. and/or its affiliates. All rights reserved.
+ * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.")
+ *
+ * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *
+ * See the License for the specific language governing permissions and limitations under the License.
+ */
+
+import XCTest
+
+class OktaAuthStatusSuccessTests: XCTestCase {
+    
+    func testSuccessSignIn() {
+        guard let status = createStatus() else {
+            XCTFail()
+            return
+        }
+        
+        XCTAssertNotNil(status.sessionToken)
+        XCTAssertNil(status.recoveryType)
+    }
+    
+    func testSuccessUnlock() {
+        guard let status = createStatus(from: OktaAuthStatusUnauthenticated(oktaDomain: URL(string: "http://test.com")!),
+                                        withResponse: .SUCCESS_UNLOCK) else {
+            XCTFail()
+            return
+        }
+        
+        XCTAssertNil(status.sessionToken)
+        XCTAssertNotNil(status.recoveryType)
+    }
+    
+    // MARK: - Utils
+    
+    func createStatus(
+        from currentStatus: OktaAuthStatus = OktaAuthStatusUnauthenticated(oktaDomain: URL(string: "http://test.com")!),
+        withResponse response: TestResponse = .SUCCESS)
+        -> OktaAuthStatusSuccess? {
+            
+            guard let response = response.parse() else {
+                return nil
+            }
+            
+            return try? OktaAuthStatusSuccess(currentState: currentStatus, model: response)
+    }
+}

Tests/Utils/TestResponse.swift

@@ -20,11 +20,13 @@ enum TestResponse: String {
     case MFA_ENROLL_ACTIVATE_SMS = "MFA_ENROLL_ACTIVATE_SMS"
     case MFA_ENROLL_ACTIVATE_CALL = "MFA_ENROLL_ACTIVATE_CALL"
     case MFA_ENROLL_ACTIVATE_Push = "MFA_ENROLL_ACTIVATE_Push"
+    case MFA_ENROLL_ACTIVATE_TOTP = "MFA_ENROLL_ACTIVATE_TOTP"
     case MFA_REQUIRED = "MFA_REQUIRED"
     case MFA_CHALLENGE_SMS = "MFA_CHALLENGE_SMS"
     case MFA_CHALLENGE_TOTP = "MFA_CHALLENGE_TOTP"
     case MFA_CHALLENGE_WAITING_PUSH = "MFA_CHALLENGE_WAITING_PUSH"
     case SUCCESS = "SUCCESS"
+    case SUCCESS_UNLOCK = "SUCCESS_UNLOCK"
     case PASSWORD_WARNING = "PASSWORD_WARN"
     case PASSWORD_EXPIRED = "PASSWORD_EXPIRED"
     case PASSWORD_RESET = "PASSWORD_RESET"