booth 0.0.1 → 0.0.2

data/lib/booth/test/userland/logins/username_password_and_webauth.rb

@@ -1,86 +0,0 @@
-module Booth
-  module Test
-    module Userland
-      module Logins
-        class UsernamePasswordAndWebauth
-          include ::Booth::MethodObject
-          include ::Booth::Test::Helpers
-
-          option :page
-          option :scope
-          option :show_onboarding_path
-          option :new_login_path
-
-          def call
-            # Setup
-
-            credential = ::Booth::Models::Credential.create!(
-              username: 'alice',
-              password: 'qwrasfyxv',
-              scope:,
-              mode: :username_password_and_webauth,
-              allowed_modes: [:username_password_and_webauth]
-            )
-
-            onboarding = ::Booth::Models::Onboarding.create!(
-              credential_id: credential.id,
-              mode: :username_password_and_webauth
-            )
-
-            page.visit show_onboarding_path.sub('ID', onboarding.secret_key)
-            create_virtual_authenticator
-
-            assert_userland_partial controller: :onboarding, step: :choose_password
-
-            # Choose password
-
-            page.fill_in :password, with: 'qwrasfyxv'
-            page.click_on :submit
-
-            page.fill_in :password, with: 'qwrasfyxv'
-            page.click_on :submit
-
-            # Choose Webauth
-
-            page.click_on :register
-            page.fill_in :nickname, with: 'Yubikey'
-            page.click_on :submit
-
-            page.click_on :authenticate
-
-            assert_userland_partial controller: :onboarding, step: :completed
-            assert_logged_in credential: credential
-
-            soft_reset_session
-            assert_logged_out
-
-            # Login
-
-            page.visit new_login_path
-
-            assert_userland_partial controller: :login, step: :enter_username
-
-            page.fill_in :username, with: 'alice'
-            page.click_on :submit
-
-            assert_userland_partial controller: :login, step: :remote_session_available
-            # TODO: Not really needed if there were no other active session (created by onboarding)
-            page.click_on :skip
-
-            assert_userland_partial controller: :login, step: :enter_password
-
-            page.fill_in :password, with: 'qwrasfyxv'
-            page.click_on :submit
-
-            assert_userland_partial controller: :login, step: :enter_webauth
-
-            page.click_on :authenticate
-            sleep 1
-
-            assert_logged_in credential:
-          end
-        end
-      end
-    end
-  end
-end

data/lib/booth/test/userland/onboardings/already_logged_in.rb

@@ -1,64 +0,0 @@
-module Booth
-  module Test
-    module Userland
-      module Onboardings
-        class AlreadyLoggedIn
-          include ::Booth::MethodObject
-          include ::Booth::Test::Helpers
-
-          option :page
-          option :scope
-          option :show_onboarding_path
-          option :new_login_path
-
-          def call
-            # Setup
-
-            alice = ::Booth::Models::Credential.create!(
-              username: 'alice',
-              password: 'qwrasfyxv',
-              scope:,
-              mode: :username_and_password,
-              allowed_modes: [:username_and_password]
-            )
-
-            bobby = ::Booth::Models::Credential.create!(
-              username: 'bobby',
-              password: 'qwrasfyxv',
-              scope:,
-              mode: :username_and_password,
-              allowed_modes: [:username_and_password]
-            )
-
-            onboarding = ::Booth::Models::Onboarding.create!(
-              credential_id: bobby.id,
-              mode: :username_and_password
-            )
-
-            # Loging in Alice
-
-            page.visit new_login_path
-
-            assert_userland_partial controller: :login, step: :enter_username
-
-            page.fill_in :username, with: 'alice'
-            page.click_on :submit
-
-            assert_userland_partial controller: :login, step: :enter_password
-
-            page.fill_in :password, with: 'qwrasfyxv'
-            page.click_on :submit
-
-            assert_logged_in credential: alice
-
-            # Onboarding as Bobby
-
-            page.visit show_onboarding_path.sub('ID', onboarding.secret_key)
-
-            assert_userland_partial controller: :onboarding, step: :already_logged_in
-          end
-        end
-      end
-    end
-  end
-end

data/lib/booth/test/userland/onboardings/otp.rb

@@ -1,63 +0,0 @@
-module Booth
-  module Test
-    module Userland
-      module Onboardings
-        class Otp
-          include ::Booth::MethodObject
-          include ::Booth::Test::Helpers
-
-          option :page
-          option :scope
-          option :show_onboarding_path
-          option :new_login_path
-
-          def call
-            # Setup
-
-            credential = ::Booth::Models::Credential.create!(
-              username: 'alice',
-              password: 'qwrasfyxv',
-              scope:,
-              mode: :username_password_and_otp,
-              allowed_modes: %i[username_password_and_otp username_and_webauth]
-            )
-
-            onboarding = ::Booth::Models::Onboarding.create!(
-              credential_id: credential.id,
-              mode: :first_time
-            )
-
-            # Onboarding
-
-            page.visit show_onboarding_path.sub('ID', onboarding.secret_key)
-
-            assert_userland_partial controller: :onboarding, step: :choose_mode
-
-            page.click_on :choose_username_password_and_otp
-
-            assert_userland_partial controller: :onboarding, step: :choose_password
-
-            page.fill_in :password, with: 'qwrasfyxv'
-            page.click_on :submit
-
-            assert_userland_partial controller: :onboarding, step: :confirm_password
-
-            page.fill_in :password, with: 'qwrasfyxv'
-            page.click_on :submit
-
-            assert_userland_partial controller: :onboarding, step: :register_otp
-
-            page.click_on :confirm
-
-            assert_userland_partial controller: :onboarding, step: :confirm_otp
-
-            page.fill_in :code, with: onboarding.reload.otp_code
-            page.click_on :submit
-
-            assert_logged_in credential:
-          end
-        end
-      end
-    end
-  end
-end

data/lib/booth/test/userland/onboardings/password.rb

@@ -1,49 +0,0 @@
-module Booth
-  module Test
-    module Userland
-      module Onboardings
-        class Password
-          include ::Booth::MethodObject
-          include ::Booth::Test::Helpers
-
-          option :page
-          option :scope
-          option :show_onboarding_path
-
-          def call
-            # Setup
-
-            credential = ::Booth::Models::Credential.create!(
-              username: 'alice',
-              password: 'qwrasfyxv',
-              scope:,
-              mode: :username_and_password,
-              allowed_modes: %i[username_and_password username_and_webauth]
-            )
-
-            onboarding = ::Booth::Models::Onboarding.create!(
-              credential_id: credential.id,
-              mode: :first_time
-            )
-
-            # Onboarding
-
-            page.visit show_onboarding_path.sub('ID', onboarding.secret_key)
-
-            assert_userland_partial controller: :onboarding, step: :choose_mode
-
-            page.click_on :choose_username_and_password
-
-            page.fill_in :password, with: 'qwrasfyxv'
-            page.click_on :submit
-
-            page.fill_in :password, with: 'qwrasfyxv'
-            page.click_on :submit
-
-            assert_logged_in credential:
-          end
-        end
-      end
-    end
-  end
-end

data/lib/booth/test/userland/onboardings/timeout.rb

@@ -1,47 +0,0 @@
-module Booth
-  module Test
-    module Userland
-      module Onboardings
-        class Timeout
-          include ::Booth::MethodObject
-          include ::Booth::Test::Helpers
-          include ActiveSupport::Testing::TimeHelpers
-
-          option :page
-          option :scope
-          option :show_onboarding_path
-
-          def call
-            # Setup
-            freeze_time
-
-            credential = ::Booth::Models::Credential.create!(
-              username: 'alice',
-              password: 'qwrasfyxv',
-              scope:,
-              mode: :username_and_password,
-              allowed_modes: %i[username_and_password username_and_webauth]
-            )
-
-            onboarding = ::Booth::Models::Onboarding.create!(
-              credential_id: credential.id,
-              mode: :first_time
-            )
-
-            # Onboarding
-
-            travel 7.days - 1.minute
-
-            page.visit show_onboarding_path.sub('ID', onboarding.secret_key)
-            assert_userland_partial controller: :onboarding, step: :choose_mode
-
-            travel 2.minutes
-
-            page.visit show_onboarding_path.sub('ID', onboarding.secret_key)
-            assert_userland_partial controller: :onboarding, step: :timed_out
-          end
-        end
-      end
-    end
-  end
-end

data/lib/booth/test/userland/otps/manage.rb

@@ -1,86 +0,0 @@
-module Booth
-  module Test
-    module Userland
-      module Otps
-        class Manage
-          include ::Booth::MethodObject
-          include ::Booth::Test::Helpers
-
-          option :page
-          option :scope
-          option :new_login_path
-          option :show_otp_path
-          option :after_credential, default: -> {}
-
-          def call
-            # Setup
-
-            credential = ::Booth::Models::Credential.create!(
-              username: 'alice',
-              password: 'qwrasfyxv',
-              scope:,
-              mode: :username_and_password,
-              allowed_modes: %i[username_and_password username_password_and_otp]
-            )
-            after_credential&.call(credential.id)
-
-            # Login
-
-            page.visit new_login_path
-
-            assert_userland_partial controller: :login, step: :enter_username
-            page.fill_in :username, with: 'alice'
-            page.click_on :submit
-
-            assert_userland_partial controller: :login, step: :enter_password
-            page.fill_in :password, with: 'qwrasfyxv'
-            page.click_on :submit
-
-            # Add OTP
-
-            assert_logged_in credential: credential
-            page.visit show_otp_path
-
-            assert_userland_partial controller: :otp, step: :add
-            page.click_on :add
-
-            assert_userland_partial controller: :otp, step: :register
-            page.assert_selector '[data-booth=otpqr]'
-            page.assert_text 'otpauth://totp/'
-            page.click_on :registered
-
-            # Back one step
-
-            assert_userland_partial controller: :otp, step: :confirm
-            page.click_on :change
-
-            # Continue adding OTP
-
-            assert_userland_partial controller: :otp, step: :register
-            code = extract_otp_secret_key_and_generate_code
-            page.click_on :registered
-
-            assert_userland_partial controller: :otp, step: :confirm
-            page.fill_in :code, with: code
-            page.click_on :submit
-
-            assert_userland_partial controller: :otp, step: :successfully_changed
-
-            page.visit show_otp_path
-            assert_userland_partial controller: :otp, step: :show
-            page.assert_selector '[data-booth=otpqr]'
-            page.assert_text 'otpauth://totp/'
-
-            travel 19.minutes
-            page.visit show_otp_path
-            assert_userland_partial controller: :otp, step: :show
-
-            travel 2.minutes
-            page.visit show_otp_path
-            assert_userland_partial controller: :otp, step: :sudo
-          end
-        end
-      end
-    end
-  end
-end

data/lib/booth/test/userland/password_resets/reset.rb

@@ -1,102 +0,0 @@
-module Booth
-  module Test
-    module Userland
-      module PasswordResets
-        class Reset
-          include ::Booth::MethodObject
-          include ::Booth::Test::Helpers
-
-          option :page
-          option :scope
-          option :new_login_path
-          option :new_password_reset_path
-          option :show_password_reset_path
-
-          def call
-            # Setup
-            alice = ::Booth::Models::Credential.create!(
-              username: 'alice',
-              password: 'qwrasfyxv',
-              scope:,
-              mode: :username_and_password,
-              allowed_modes: %i[username_and_password]
-            )
-
-            bobby = ::Booth::Models::Credential.create!(
-              username: 'bobby',
-              password: 'qwrasfyxv',
-              scope:,
-              mode: :username_and_password,
-              allowed_modes: %i[username_and_password]
-            )
-
-            bobbys_password_reset = ::Booth::Models::PasswordReset.create!(
-              credential: bobby,
-              creator_ip: '198.51.100.50'
-            )
-
-            bobbys_other_password_reset = ::Booth::Models::PasswordReset.create!(
-              credential: bobby,
-              creator_ip: '198.51.100.51'
-            )
-
-            # Request Password Reset
-            page.visit new_login_path
-            assert_userland_partial controller: :login, step: :enter_username
-            page.fill_in :username, with: 'alice'
-            page.click_on :submit
-            assert_userland_partial controller: :login, step: :enter_password
-            page.click_on :forgot
-            assert_userland_partial controller: :password_reset, step: :new
-            page.fill_in :email, with: 'alice@example.com'
-            page.click_on :submit
-            assert_userland_partial controller: :password_reset, step: :check_your_mail
-
-            # Forgot Login password
-            page.visit new_login_path
-            assert_userland_partial controller: :login, step: :enter_password
-            page.fill_in :password, with: 'qwrasfyxv'
-            page.click_on :submit
-            assert_logged_in credential: alice
-            page.visit new_password_reset_path
-            assert_userland_partial controller: :password_reset, step: :logout_first
-
-            # Reset password as wrong user
-            page.visit show_password_reset_path.sub('ID', bobbys_password_reset.secret_key)
-            assert_userland_partial controller: :password_reset, step: :wrong_user_logged_in
-            page.click_on :logout
-            assert_logged_out
-
-            # Timed out
-            travel 2.hours + 1.second
-            page.visit show_password_reset_path.sub('ID', bobbys_password_reset.secret_key)
-            assert_userland_partial controller: :password_reset, step: :timed_out
-            travel_back
-
-            # Reset password
-            page.visit show_password_reset_path.sub('ID', bobbys_password_reset.secret_key)
-            assert_userland_partial controller: :password_reset, step: :choose_password
-            page.fill_in :password, with: 'wetsdgxcb'
-            page.click_on :submit
-            page.click_on :change
-            assert_userland_partial controller: :password_reset, step: :choose_password
-            page.fill_in :password, with: 'rtufgjvbm'
-            page.click_on :submit
-            assert_userland_partial controller: :password_reset, step: :confirm_password
-            page.fill_in :password, with: 'rtufgjvbm'
-            page.click_on :submit
-            assert_userland_partial controller: :password_reset, step: :completed
-
-            # Refresh page
-            page.visit show_password_reset_path.sub('ID', bobbys_password_reset.secret_key)
-            assert_userland_partial controller: :password_reset, step: :completed
-
-            # Try a revoked token
-            page.visit show_password_reset_path.sub('ID', bobbys_other_password_reset.secret_key)
-            assert_userland_partial controller: :password_reset, step: :revoked
-          end
-        end
-      end
-    end
-  end
-end

data/lib/booth/test/userland.rb

@@ -1,38 +0,0 @@
-module Booth
-  module Test
-    module Userland
-      class Scenario
-        attr_accessor :page, :scope, :new_login_path, :show_onboarding_path, :show_otp_path, :new_password_reset_path,
-                      :show_password_reset_path, :after_credential
-
-        def initialize(klass)
-          @klass = klass
-        end
-
-        def name
-          @klass.to_s.underscore.parameterize(separator: '_')
-        end
-
-        def call
-          arguments = @klass.dry_initializer.public_attributes(self)
-          @klass.call(**arguments)
-        end
-      end
-
-      def self.scenarios(skip_password_resets: false) # rubocop:disable Metrics/AbcSize, Metrics/MethodLength
-        yield Scenario.new(Booth::Test::Userland::Logins::MissingAuthenticators)
-        yield Scenario.new(Booth::Test::Userland::Logins::MissingOnboarding)
-        yield Scenario.new(Booth::Test::Userland::Logins::UsernameAndPassword)
-        yield Scenario.new(Booth::Test::Userland::Logins::UsernameAndWebauth)
-        yield Scenario.new(Booth::Test::Userland::Logins::UsernamePasswordAndOtp)
-        yield Scenario.new(Booth::Test::Userland::Logins::UsernamePasswordAndWebauth)
-        yield Scenario.new(Booth::Test::Userland::Onboardings::AlreadyLoggedIn)
-        yield Scenario.new(Booth::Test::Userland::Onboardings::Otp)
-        yield Scenario.new(Booth::Test::Userland::Onboardings::Password)
-        yield Scenario.new(Booth::Test::Userland::Onboardings::Timeout)
-        yield Scenario.new(Booth::Test::Userland::Otps::Manage)
-        yield Scenario.new(Booth::Test::Userland::PasswordResets::Reset) unless skip_password_resets
-      end
-    end
-  end
-end

data/lib/booth/test/webauthn/disable.rb

@@ -1,17 +0,0 @@
-module Booth
-  module Test
-    module Webauthn
-      class Disable
-        include ::Booth::Logging
-        include ::Booth::MethodObject
-
-        option :devtools
-
-        def call
-          debug { 'Disabling Chrome Virtual Authenticator Environment...' }
-          devtools.send_cmd 'WebAuthn.disable'
-        end
-      end
-    end
-  end
-end

data/lib/booth/test/webauthn/enable.rb

@@ -1,19 +0,0 @@
-module Booth
-  module Test
-    module Webauthn
-      class Enable
-        include ::Booth::Logging
-        include ::Booth::MethodObject
-
-        option :devtools
-
-        def call
-          WebAuthn.configuration.origin = Capybara.current_session.server.base_url
-
-          debug { 'Ensuring enabled Chrome Virtual Authenticator Environment...' }
-          devtools.send_cmd 'WebAuthn.enable'
-        end
-      end
-    end
-  end
-end

data/lib/booth/test/webauthn/virtual_authenticators/create.rb

@@ -1,38 +0,0 @@
-module Booth
-  module Test
-    module Webauthn
-      module VirtualAuthenticators
-        class Create
-          include ::Booth::Logging
-          include ::Booth::MethodObject
-
-          option :page
-          option :has_user_verification
-
-          def call
-            options = ::Selenium::WebDriver::VirtualAuthenticatorOptions.new
-            options.user_verification = has_user_verification
-            options.user_verified = true
-
-            debug { "Registering Virtual Authenticator... #{options.as_json}" }
-            page.driver.browser.add_virtual_authenticator(options)
-
-            # debug { "Created #{authenticator.id}" }
-          end
-
-          # See https://chromedevtools.github.io/devtools-protocol/tot/WebAuthn/#type-VirtualAuthenticatorOptions
-          # def options
-          #   {
-          #     protocol: :ctap2,
-          #     transport: :internal,
-          #     hasResidentKey: false, # Chrome should not have to reveal a list of existing virtual authenticator IDs.
-          #     # isUserConsenting: true, # Not sure, this option exists in selenium but not in chrome?
-          #     hasUserVerification: has_user_verification,
-          #     isUserVerified: true,
-          #   }
-          # end
-        end
-      end
-    end
-  end
-end

data/lib/booth/test/webauthn/virtual_authenticators/destroy.rb

@@ -1,20 +0,0 @@
-module Booth
-  module Test
-    module Webauthn
-      module VirtualAuthenticators
-        class Destroy
-          include ::Booth::Logging
-          include ::Booth::MethodObject
-
-          option :devtools
-          option :id
-
-          def call
-            debug { "Removing Virtual Authenticator with ID #{id}" }
-            devtools.send_cmd 'WebAuthn.removeVirtualAuthenticator', authenticatorId: id
-          end
-        end
-      end
-    end
-  end
-end