Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(auth): update getCurrentUser to check for SessionExpiredException #2882

Merged
merged 4 commits into from
Aug 15, 2024
Merged

chore(auth): update getCurrentUser to check for SessionExpiredException #2882

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
656385f
chore(auth): update getCurrentUser to check for SessionExpiredException
phantumcode Jul 30, 2024
9df82ec
Merge branch 'main' into phantum/getCurrentUser_update
phantumcode Jul 31, 2024
af8a155
Merge branch 'main' into phantum/getCurrentUser_update
phantumcode Aug 9, 2024
6600316
Merge branch 'main' into phantum/getCurrentUser_update
phantumcode Aug 15, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
18 changes: 12 additions & 6 deletions aws-auth-cognito/src/main/java/com/amplifyframework/auth/cognito/RealAWSCognitoAuthPlugin.kt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1820,12 +1820,18 @@ internal class RealAWSCognitoAuthPlugin(
when (authState.authNState) {
is AuthenticationState.SignedIn -> {
GlobalScope.async {
val accessToken = getSession().userPoolTokensResult.value?.accessToken
accessToken?.run {
val userid = SessionHelper.getUserSub(accessToken) ?: ""
val username = SessionHelper.getUsername(accessToken) ?: ""
onSuccess.accept(AuthUser(userid, username))
} ?: onError.accept(InvalidUserPoolConfigurationException())
val userPoolToken = getSession().userPoolTokensResult
val userPoolTokenResultError = userPoolToken.error
if (userPoolTokenResultError != null && userPoolTokenResultError is SessionExpiredException) {
onError.accept(userPoolTokenResultError)
} else {
val accessToken = userPoolToken.value?.accessToken
accessToken?.run {
val userid = SessionHelper.getUserSub(accessToken) ?: ""
val username = SessionHelper.getUsername(accessToken) ?: ""
onSuccess.accept(AuthUser(userid, username))
} ?: onError.accept(InvalidUserPoolConfigurationException())
}
}
}
is AuthenticationState.SignedOut -> {
Expand Down
98 changes: 98 additions & 0 deletions ...h-cognito/src/test/java/com/amplifyframework/auth/cognito/RealAWSCognitoAuthPluginTest.kt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -52,13 +52,15 @@ import com.amplifyframework.auth.AuthCodeDeliveryDetails
import com.amplifyframework.auth.AuthDevice
import com.amplifyframework.auth.AuthException
import com.amplifyframework.auth.AuthSession
import com.amplifyframework.auth.AuthUser
import com.amplifyframework.auth.AuthUserAttribute
import com.amplifyframework.auth.AuthUserAttributeKey
import com.amplifyframework.auth.MFAType
import com.amplifyframework.auth.TOTPSetupDetails
import com.amplifyframework.auth.cognito.exceptions.configuration.InvalidUserPoolConfigurationException
import com.amplifyframework.auth.cognito.helpers.AuthHelper
import com.amplifyframework.auth.cognito.helpers.SRPHelper
import com.amplifyframework.auth.cognito.helpers.SessionHelper
import com.amplifyframework.auth.cognito.options.AWSCognitoAuthResendUserAttributeConfirmationCodeOptions
import com.amplifyframework.auth.cognito.options.AWSCognitoAuthSignInOptions
import com.amplifyframework.auth.cognito.options.AWSCognitoAuthUpdateUserAttributeOptions
Expand All @@ -67,6 +69,7 @@ import com.amplifyframework.auth.cognito.options.AWSCognitoAuthVerifyTOTPSetupOp
import com.amplifyframework.auth.cognito.options.AuthFlowType
import com.amplifyframework.auth.cognito.usecases.ResetPasswordUseCase
import com.amplifyframework.auth.exceptions.InvalidStateException
import com.amplifyframework.auth.exceptions.SessionExpiredException
import com.amplifyframework.auth.exceptions.SignedOutException
import com.amplifyframework.auth.options.AuthConfirmResetPasswordOptions
import com.amplifyframework.auth.options.AuthConfirmSignUpOptions
Expand All @@ -91,6 +94,7 @@ import com.amplifyframework.statemachine.codegen.data.DeviceMetadata
import com.amplifyframework.statemachine.codegen.data.SignInMethod
import com.amplifyframework.statemachine.codegen.data.SignedInData
import com.amplifyframework.statemachine.codegen.data.UserPoolConfiguration
import com.amplifyframework.statemachine.codegen.errors.SessionError
import com.amplifyframework.statemachine.codegen.states.AuthState
import com.amplifyframework.statemachine.codegen.states.AuthenticationState
import com.amplifyframework.statemachine.codegen.states.AuthorizationState
Expand Down Expand Up @@ -242,6 +246,100 @@ class RealAWSCognitoAuthPluginTest {
verify(exactly = 0) { onSuccess.accept(any()) }
}

@Test
fun testGetCurrentUserSucceedsIfSignedIn() {
// GIVEN
val onSuccess = mockk<Consumer<AuthUser>>()
val onError = mockk<Consumer<AuthException>>()
mockkObject(SessionHelper)
every { SessionHelper.getUsername(any()) } returns "username"
every { SessionHelper.getUserSub(any()) } returns "sub"
// WHEN
plugin.getCurrentUser(onSuccess, onError)

// THEN
verify { onSuccess.accept(any()) }
verify(exactly = 0) { onError.accept(any()) }
}

@Test
fun testGetCurrentUserFailsWithInvalidStateException() {
// GIVEN
val onSuccess = mockk<Consumer<AuthUser>>()
val onError = mockk<Consumer<AuthException>>(relaxed = true)

setupCurrentAuthState(authNState = AuthenticationState.NotConfigured())

// WHEN
plugin.getCurrentUser(onSuccess, onError)

// THEN
verify(exactly = 0) { onSuccess.accept(any()) }
verify { onError.accept(InvalidStateException()) }
}

@Test
fun testGetCurrentUserFailsWithSignedOutException() {
// GIVEN
val onSuccess = mockk<Consumer<AuthUser>>()
val onError = mockk<Consumer<AuthException>>(relaxed = true)

setupCurrentAuthState(
authNState = AuthenticationState.SignedOut(mockk()),
authZState = AuthorizationState.Configured()
)
// WHEN
plugin.getCurrentUser(onSuccess, onError)

// THEN
verify(exactly = 0) { onSuccess.accept(any()) }
verify { onError.accept(SignedOutException()) }
}

@Test
fun testGetCurrentUserFailsWithExpiredSessionException() {
// GIVEN
val onGetCurrentUserSuccess = mockk<Consumer<AuthUser>>()
val onGetCurrentUserError = mockk<Consumer<AuthException>>(relaxed = true)
val sessionExpiredException = SessionExpiredException()
val sessionError = SessionError(sessionExpiredException, credentials)
val authNState = AuthenticationState.SignedIn(
mockk {
every { username } returns "username"
},
mockk()
)
val authZState = AuthorizationState.Error(sessionError)

setupCurrentAuthState(
authNState = authNState,
authZState = authZState
)

val sessionErrorState = mockk<AuthState> {
every { [email protected] } returns AuthenticationState.SignedIn(
mockk {
every { username } returns "username"
},
mockk()
)
every { [email protected] } returns AuthorizationState.Error(sessionError)
}

every {
authStateMachine.listen(any(), captureLambda(), null)
} answers {
lambda<(AuthState) -> Unit>().invoke(sessionErrorState)
}

// WHEN
plugin.getCurrentUser(onGetCurrentUserSuccess, onGetCurrentUserError)

// THEN
verify(exactly = 0) { onGetCurrentUserSuccess.accept(any()) }
verify(timeout = 1000L) { onGetCurrentUserError.accept(sessionExpiredException) }
}

@Test
fun testCustomSignInWithSRPSucceedsWithChallenge() {
// GIVEN
Expand Down
Loading