@live-change/db-admin 0.5.6

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2021 Michał Łaszczewski
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/e2e/codecept.conf.js

@@ -0,0 +1,60 @@
+const { devices } = require('playwright');
+
+const testServerPort = process.env.TEST_URL ? 0 : require('get-port-sync')() 
+const testServerUrl = process.env.TEST_URL || `http://localhost:${testServerPort}`
+
+const device = devices['Pixel 2']
+
+exports.config = {
+  tests: './*.test.js',
+  output: './output',
+  helpers: {
+    LiveChange: {
+      require: '@live-change/codeceptjs-helper',
+      startServer: !process.env.TEST_URL,
+      enableSessions: true,
+      initScript: "./init.js",
+      port: testServerPort,
+      dev: true
+    },
+    VideoHelper: {
+      require: 'codeceptjs-video-helper'
+    },
+    AssertWrapper : {
+      require: "codeceptjs-assert"
+    },
+    Playwright: {
+      browser: 'chromium',
+      url: testServerUrl,
+      show: true,
+      emulate: {
+        ...device,
+        recordVideo: process.env.RECORD_TESTS ? {
+          dir: "./output",
+          //size: { width: 1080, height: 1920 }
+        } : undefined,
+      },
+      chromium: {
+        args: [`--force-device-scale-factor=${device.deviceScaleFactor}`]
+      }
+    }
+  },
+  include: {
+    I: './steps_file.js'
+  },
+  bootstrap: null,
+  mocha: {},
+  name: 'e2e',
+  plugins: {
+    pauseOnFail: {},
+    retryFailedStep: {
+      enabled: true
+    },
+    tryTo: {
+      enabled: true
+    },
+    screenshotOnFail: {
+      enabled: true
+    }
+  }
+}

package/e2e/connectEmailCode.test.js

@@ -0,0 +1,61 @@
+const app = require('@live-change/framework').app()
+const randomProfile = require('random-profile-generator')
+
+const email = randomProfile.profile().firstName.toLowerCase() + '@test.com' // test domain - emails not sent
+const email2 = randomProfile.profile().firstName.toLowerCase() + '2@test.com' // test domain - emails not sent
+
+const happyPath = false
+
+Feature('user')
+
+Scenario('connect email with code', async ({ I }) => {
+
+  const user = app.generateUid()
+
+  const User = await I.haveModel('user', 'User')
+  const Email = await I.haveModel('email', 'Email')
+  const AuthenticatedUser = await I.haveModel('user', 'AuthenticatedUser')
+
+  await User.create({ id: user, roles: [] })
+  await Email.create({ id: email, email, user })
+  I.amOnPage('/')
+  const session = await I.executeScript(() => api.client.value.session)
+  await AuthenticatedUser.create({ id: session, user, session })
+
+  I.amOnPage('/connected')
+  I.see(email)
+  I.dontSee(email2)
+
+  I.click('button#connect')
+
+  I.seeInCurrentUrl('/connect')
+
+  if(!happyPath) {
+    I.fillField('input#email', email)
+    I.click('button[type=submit]')
+    I.seeInCurrentUrl('/connect')
+  }
+
+  I.fillField('input#email', email2)
+  I.click('button[type=submit]')
+
+  I.seeInCurrentUrl('/sent/')
+
+  const url = await I.grabCurrentUrl()
+  const authentication = url.split('/').pop()
+
+  const authenticationData = await I.grabObject('messageAuthentication', 'Authentication', authentication)
+  console.log("AUTHENTICATION DATA", authenticationData)
+  I.assert(!!authenticationData, true, 'authentication created')
+  I.assert(authenticationData?.messageData?.user, user, 'authentication contains user')
+
+  await I.useSecretCode(authentication, happyPath)
+
+  I.seeInCurrentUrl('/connect-finished')
+
+  if(!happyPath) {
+    I.amOnPage(url)
+    I.seeInCurrentUrl('/connect-finished')
+  }
+
+})

package/e2e/connectEmailLink.test.js

@@ -0,0 +1,60 @@
+const app = require('@live-change/framework').app()
+const randomProfile = require('random-profile-generator')
+
+const email = randomProfile.profile().firstName.toLowerCase() + '@test.com' // test domain - emails not sent
+const email2 = randomProfile.profile().firstName.toLowerCase() + '2@test.com' // test domain - emails not sent
+
+const happyPath = false
+
+Feature('user')
+
+Scenario('sign in with email link', async ({ I }) => {
+
+  const user = app.generateUid()
+
+  const User = await I.haveModel('user', 'User')
+  const Email = await I.haveModel('email', 'Email')
+  const AuthenticatedUser = await I.haveModel('user', 'AuthenticatedUser')
+
+  await User.create({ id: user, roles: [] })
+  await Email.create({ id: email, email, user })
+  I.amOnPage('/')
+  const session = await I.executeScript(() => api.client.value.session)
+  await AuthenticatedUser.create({ id: session, user, session })
+
+  I.amOnPage('/connected')
+  I.see(email)
+  I.dontSee(email2)
+
+  I.click('button#connect')
+
+  I.seeInCurrentUrl('/connect')
+
+  if(!happyPath) {
+    I.fillField('input#email', email)
+    I.click('button[type=submit]')
+    I.see('')
+  }
+
+  I.fillField('input#email', email2)
+  I.click('button[type=submit]')
+
+  I.seeInCurrentUrl('/sent/')
+  const url = await I.grabCurrentUrl()
+  const authentication = url.split('/').pop()
+
+  const authenticationData = await I.grabObject('messageAuthentication', 'Authentication', authentication)
+  console.log("AUTHENTICATION DATA", authenticationData)
+  I.assert(!!authenticationData, true, 'authentication created')
+  I.assert(authenticationData?.messageData?.user, user, 'authentication contains user')
+
+  const linkData = await I.useSecretLink(authentication, happyPath)
+
+  I.seeInCurrentUrl('/connect-finished')
+
+  if(!happyPath) {
+    I.amOnPage('/link/' + linkData.secretCode)
+    I.see('Link used')
+  }
+
+})

package/e2e/delete.test.js

@@ -0,0 +1,44 @@
+const app = require('@live-change/framework').app()
+const randomProfile = require('random-profile-generator')
+
+const name = randomProfile.profile().firstName.toLowerCase()
+const email = name + '@test.com' // test domain - emails not sent
+
+const happyPath = false
+
+Feature('user')
+
+Scenario('delete account', async ({ I }) => {
+
+  const user = app.generateUid()
+
+  const User = await I.haveModel('user', 'User')
+  const Email = await I.haveModel('email', 'Email')
+  const AuthenticatedUser = await I.haveModel('user', 'AuthenticatedUser')
+
+  await User.create({ id: user, roles: [] })
+  await Email.create({ id: email, email, user })
+  I.amOnPage('/')
+  const session = await I.executeScript(() => api.client.value.session)
+  await AuthenticatedUser.create({ id: session, user, session })
+
+  await I.wait(0.2)
+  const clientUser = await I.executeScript(() => api.client.value.user)
+  I.assert(user, clientUser, 'client logged in')
+
+  I.amOnPage('/delete')
+  I.click('.p-checkbox-box')
+  I.click('button#delete')
+
+  I.seeInCurrentUrl('/delete-finished')
+
+  await I.wait(0.3)
+  const clientUserAfterDelete = await I.executeScript(() => api.client.value.user)
+  I.assert(!!clientUserAfterDelete, false, 'user logged out')
+
+  const deletedUser = await User.get(user)
+  I.assert(!!deletedUser, false, 'user deleted')
+
+  const deletedEmail = await Email.get(email)
+  I.assert(!!deletedEmail, false, 'email deleted')
+})

package/e2e/disconnectEmail.test.js

@@ -0,0 +1,42 @@
+const app = require('@live-change/framework').app()
+const randomProfile = require('random-profile-generator')
+
+const name = randomProfile.profile().firstName.toLowerCase()
+const email = name + '@test.com' // test domain - emails not sent
+const email2 = name + '2@test.com' // test domain - emails not sent
+
+const happyPath = false
+
+Feature('user')
+
+Scenario('disconnect email', async ({ I }) => {
+
+  const user = app.generateUid()
+
+  const User = await I.haveModel('user', 'User')
+  const Email = await I.haveModel('email', 'Email')
+  const AuthenticatedUser = await I.haveModel('user', 'AuthenticatedUser')
+
+  await User.create({ id: user, roles: [] })
+  await Email.create({ id: email, email, user })
+  await Email.create({ id: email2, email: email2, user })
+  I.amOnPage('/')
+  const session = await I.executeScript(() => api.client.value.session)
+  await AuthenticatedUser.create({ id: session, user, session })
+
+  I.amOnPage('/connected')
+  I.see(email)
+  I.see(email2)
+
+  I.click('span.pi-times') // delete button
+  I.click('Yes')
+
+  I.dontSee(email2)
+
+  if(!happyPath) {
+    I.dontSeeElement('span.pi-times') // delete button
+    //I.click('Yes')
+    //I.see(email)
+  }
+
+})

package/e2e/resetPasswordWithEmailCode.test.js

@@ -0,0 +1,62 @@
+const app = require('@live-change/framework').app()
+const randomProfile = require('random-profile-generator')
+const passwordGenerator = require('generate-password')
+
+const email = randomProfile.profile().firstName.toLowerCase() + '@test.com' // test domain - emails not sent
+const email2 = randomProfile.profile().firstName.toLowerCase() + '2@test.com' // test domain - emails not sent
+
+const happyPath = false
+
+Feature('user')
+
+Scenario('reset password with email code', async ({ I }) => {
+
+  const user = app.generateUid()
+
+  const User = await I.haveModel('user', 'User')
+  const Email = await I.haveModel('email', 'Email')
+
+  await User.create({ id: user, roles: [] })
+  await Email.create({ id: email, email, user })
+  I.amOnPage('/')
+  const session = await I.executeScript(() => api.client.value.session)
+
+  I.amOnPage('/reset-password')
+  I.fillField('input#email', email)
+
+  I.click('button[type=submit]')
+
+  I.seeInCurrentUrl('/sent')
+  let url = await I.grabCurrentUrl()
+  const authentication = url.split('/').pop()
+
+  const authenticationData = await I.grabObject('messageAuthentication', 'Authentication', authentication)
+  console.log("AUTHENTICATION DATA", authenticationData)
+  I.assert(!!authenticationData, true, 'authentication created')
+  I.assert(authenticationData?.messageData?.user, user, 'authentication message data contains user')
+  I.assert(authenticationData?.actionProperties?.user, user, 'authentication action properties contains user')
+
+  await I.useSecretCode(authentication, happyPath)
+
+  I.seeInCurrentUrl('/set-new-password/')
+  url = await I.grabCurrentUrl()
+  const resetPasswordAuthentication = url.split('/').pop()
+  await I.wait(0.1)
+  const ResetPasswordAuthentication = await I.haveModel('passwordAuthentication', 'ResetPasswordAuthentication')
+  const resetPasswordAuthenticationData =
+      await ResetPasswordAuthentication.indexObjectGet('byKey', resetPasswordAuthentication)
+  I.assert(!!resetPasswordAuthenticationData, true, 'reset password authentication created')
+
+  I.see('Reset password')
+
+  const password = passwordGenerator.generate({
+    length: 10,
+    numbers: true
+  })+(Math.random()*10).toFixed()
+  I.fillField('input#newPassword', password)
+  I.fillField('input#reenterPassword', password)
+
+  I.click('button[type=submit]')
+  I.seeInCurrentUrl('/reset-password-finished')
+
+})

package/e2e/resetPasswordWithEmailLink.test.js

@@ -0,0 +1,62 @@
+const app = require('@live-change/framework').app()
+const randomProfile = require('random-profile-generator')
+const passwordGenerator = require('generate-password')
+
+const email = randomProfile.profile().firstName.toLowerCase() + '@test.com' // test domain - emails not sent
+const email2 = randomProfile.profile().firstName.toLowerCase() + '2@test.com' // test domain - emails not sent
+
+const happyPath = false
+
+Feature('user')
+
+Scenario('reset password with email code', async ({ I }) => {
+
+  const user = app.generateUid()
+
+  const User = await I.haveModel('user', 'User')
+  const Email = await I.haveModel('email', 'Email')
+
+  await User.create({ id: user, roles: [] })
+  await Email.create({ id: email, email, user })
+  I.amOnPage('/')
+  const session = await I.executeScript(() => api.client.value.session)
+
+  I.amOnPage('/reset-password')
+  I.fillField('input#email', email)
+
+  I.click('button[type=submit]')
+
+  I.seeInCurrentUrl('/sent')
+  let url = await I.grabCurrentUrl()
+  const authentication = url.split('/').pop()
+
+  const authenticationData = await I.grabObject('messageAuthentication', 'Authentication', authentication)
+  console.log("AUTHENTICATION DATA", authenticationData)
+  I.assert(!!authenticationData, true, 'authentication created')
+  I.assert(authenticationData?.messageData?.user, user, 'authentication message data contains user')
+  I.assert(authenticationData?.actionProperties?.user, user, 'authentication action properties contains user')
+
+  await I.useSecretLink(authentication, happyPath)
+
+  I.seeInCurrentUrl('/set-new-password/')
+  url = await I.grabCurrentUrl()
+  const resetPasswordAuthentication = url.split('/').pop()
+  await I.wait(0.1)
+  const ResetPasswordAuthentication = await I.haveModel('passwordAuthentication', 'ResetPasswordAuthentication')
+  const resetPasswordAuthenticationData =
+      await ResetPasswordAuthentication.indexObjectGet('byKey', resetPasswordAuthentication)
+  I.assert(!!resetPasswordAuthenticationData, true, 'reset password authentication created')
+
+  I.see('Reset password')
+
+  const password = passwordGenerator.generate({
+    length: 10,
+    numbers: true
+  })+(Math.random()*10).toFixed()
+  I.fillField('input#newPassword', password)
+  I.fillField('input#reenterPassword', password)
+  I.click('button[type=submit]')
+
+  I.seeInCurrentUrl('/reset-password-finished')
+
+})

package/e2e/setPassword.test.js

@@ -0,0 +1,70 @@
+const app = require('@live-change/framework').app()
+const randomProfile = require('random-profile-generator')
+const passwordGenerator = require('generate-password')
+
+const name = randomProfile.profile().firstName.toLowerCase()
+const email = name + '@test.com' // test domain - emails not sent
+
+const happyPath = false
+
+Feature('user')
+
+Scenario('setPassword', async ({ I }) => {
+
+  const user = app.generateUid()
+
+  const User = await I.haveModel('user', 'User')
+  const Email = await I.haveModel('email', 'Email')
+  const AuthenticatedUser = await I.haveModel('user', 'AuthenticatedUser')
+  const PasswordAuthentication = await I.haveModel('passwordAuthentication', 'PasswordAuthentication')
+
+  await User.create({ id: user, roles: [] })
+  await Email.create({ id: email, email, user })
+  I.amOnPage('/')
+  const session = await I.executeScript(() => api.client.value.session)
+  await AuthenticatedUser.create({ id: session, user, session })
+
+  await I.wait(0.2)
+  const clientUser = await I.executeScript(() => api.client.value.user)
+  I.assert(user, clientUser, 'client logged in')
+
+  const emptyPasswordAuthenticationData = await PasswordAuthentication.get(user)
+  I.assert(emptyPasswordAuthenticationData, null, 'password not set')
+
+  I.amOnPage('/change-password')
+  I.see('Set password')
+
+  const firstPassword = passwordGenerator.generate({
+    length: 10,
+    numbers: true
+  })+(Math.random()*10).toFixed()
+  I.fillField('input#newPassword', firstPassword)
+  I.fillField('input#reenterPassword', firstPassword)
+  I.click('button[type=submit]')
+
+  I.seeInCurrentUrl('/change-password-finished')
+
+  await I.wait(0.2)
+  const firstPasswordAuthenticationData = await PasswordAuthentication.get(user)
+  I.assert(!!firstPasswordAuthenticationData, true, 'password set')
+
+  I.amOnPage('/change-password')
+  I.see('Change password')
+
+  const secondPassword = passwordGenerator.generate({
+    length: 10,
+    numbers: true
+  })+(Math.random()*10).toFixed()
+
+  I.fillField('input#currentPassword', firstPassword)
+  I.fillField('input#newPassword', secondPassword)
+  I.fillField('input#reenterPassword', secondPassword)
+  I.click('button[type=submit]')
+
+  await I.wait(0.2)
+  const secondPasswordAuthenticationData = await PasswordAuthentication.get(user)
+  I.assert(!!secondPasswordAuthenticationData, true, 'password set')
+  I.assertNotEqual(secondPasswordAuthenticationData.passwordHash, firstPasswordAuthenticationData.passwordHash,
+      'password changed')
+
+})

package/e2e/signInEmailCode.test.js

@@ -0,0 +1,52 @@
+const app = require('@live-change/framework').app()
+const randomProfile = require('random-profile-generator')
+
+const randomUserData = randomProfile.profile()
+randomUserData.email = randomUserData.firstName.toLowerCase() + '@test.com' // test domain - emails not sent
+
+const happyPath = false
+
+Feature('user')
+
+Scenario('sign in with email code', async ({ I }) => {
+
+  const user = app.generateUid()
+  const email = randomUserData.email
+
+  const User = await I.haveModel('user', 'User')
+  const Email = await I.haveModel('email', 'Email')
+
+  await User.create({ id: user, roles: [] })
+  await Email.create({ id: email, email, user })
+
+  I.amOnPage('/sign-in')
+  I.fillField('input#email', email)
+  I.click('button[type=submit]')
+
+  I.seeInCurrentUrl('/sent/')
+  const url = await I.grabCurrentUrl()
+  const authentication = url.split('/').pop()
+
+  const authenticationData = await I.grabObject('messageAuthentication', 'Authentication', authentication)
+  console.log("AUTHENTICATION DATA", authenticationData)
+  I.assert(!!authenticationData, true, 'authentication created')
+  I.assert(authenticationData?.messageData?.user, user, 'authentication contains user')
+
+  await I.useSecretCode(authentication, happyPath)
+
+  I.seeInCurrentUrl('/sign-in-finished')
+  const clientSession = await I.executeScript(() => api.client.value.session)
+  const AuthenticatedUser = await I.haveModel('user', 'AuthenticatedUser')
+  const authenticatedUserData = await AuthenticatedUser.get(clientSession)
+  I.assert(!!authenticatedUserData, true, 'user authenticated server-side')
+  const clientUser = await I.executeScript(() => api.client.value.user)
+  console.log("CLIENT USER", clientUser)
+  console.log("SERVER AUTHENTICATION", authenticatedUserData)
+  I.assert(clientUser, authenticatedUserData.user, 'user authenticated')
+
+  if(!happyPath) {
+    I.amOnPage(url)
+    I.seeInCurrentUrl('/sign-in-finished')
+  }
+
+})

package/e2e/signInEmailLink.test.js

@@ -0,0 +1,52 @@
+const app = require('@live-change/framework').app()
+const randomProfile = require('random-profile-generator')
+
+const randomUserData = randomProfile.profile()
+randomUserData.email = randomUserData.firstName.toLowerCase() + '@test.com' // test domain - emails not sent
+
+const happyPath = false
+
+Feature('user')
+
+Scenario('sign in with email link', async ({ I }) => {
+
+  const user = app.generateUid()
+  const email = randomUserData.email
+
+  const User = await I.haveModel('user', 'User')
+  const Email = await I.haveModel('email', 'Email')
+
+  await User.create({ id: user, roles: [] })
+  await Email.create({ id: email, email, user })
+
+  I.amOnPage('/sign-in')
+  I.fillField('input#email', email)
+  I.click('button[type=submit]')
+
+  I.seeInCurrentUrl('/sent/')
+  const url = await I.grabCurrentUrl()
+  const authentication = url.split('/').pop()
+
+  const authenticationData = await I.grabObject('messageAuthentication', 'Authentication', authentication)
+  console.log("AUTHENTICATION DATA", authenticationData)
+  I.assert(!!authenticationData, true, 'authentication created')
+  I.assert(authenticationData?.messageData?.user, user, 'authentication contains user')
+
+  const linkData = await I.useSecretLink(authentication, happyPath)
+
+  I.seeInCurrentUrl('/sign-in-finished')
+  const clientSession = await I.executeScript(() => api.client.value.session)
+  const AuthenticatedUser = await I.haveModel('user', 'AuthenticatedUser')
+  const authenticatedUserData = await AuthenticatedUser.get(clientSession)
+  I.assert(!!authenticatedUserData, true, 'user authenticated server-side')
+  const clientUser = await I.executeScript(() => api.client.value.user)
+  console.log("CLIENT USER", clientUser)
+  console.log("SERVER AUTHENTICATION", authenticatedUserData)
+  I.assert(clientUser, authenticatedUserData.user, 'user authenticated')
+
+  if(!happyPath) {
+    I.amOnPage('/link/' + linkData.secretCode)
+    I.see('Link used')
+  }
+
+})

package/e2e/signInEmailPassword.test.js

@@ -0,0 +1,47 @@
+const app = require('@live-change/framework').app()
+const randomProfile = require('random-profile-generator')
+const crypto = require('crypto')
+const passwordGenerator = require('generate-password')
+
+const randomUserData = randomProfile.profile()
+randomUserData.email = randomUserData.firstName.toLowerCase() + '@test.com' // test domain - emails not sent
+
+const happyPath = false
+
+Feature('user')
+
+Scenario('sign in with email and password', async ({ I }) => {
+
+  const user = app.generateUid()
+  const email = randomUserData.email
+  const password = passwordGenerator.generate({
+    length: 10,
+    numbers: true
+  })+(Math.random()*10).toFixed()
+  const passwordHash = crypto.createHash('sha256').update(password).digest('hex')
+
+  const User = await I.haveModel('user', 'User')
+  const Email = await I.haveModel('email', 'Email')
+  const PasswordAuthentication = await I.haveModel('passwordAuthentication', 'PasswordAuthentication')
+
+  await User.create({ id: user, roles: [] })
+  await Email.create({ id: email, email, user })
+  await PasswordAuthentication.create({ id: user, user, passwordHash })
+
+  I.amOnPage('/sign-in')
+  I.fillField('input#email', email)
+  I.fillField('input#password', password)
+  I.click('button[type=submit]')
+
+  I.seeInCurrentUrl('/sign-in-finished')
+  await I.wait(0.2)
+  const clientSession = await I.executeScript(() => api.client.value.session)
+  const AuthenticatedUser = await I.haveModel('user', 'AuthenticatedUser')
+  const authenticatedUserData = await AuthenticatedUser.get(clientSession)
+  I.assert(!!authenticatedUserData, true, 'user authenticated server-side')
+  const clientUser = await I.executeScript(() => api.client.value.user)
+  console.log("CLIENT USER", clientUser)
+  console.log("SERVER AUTHENTICATION", authenticatedUserData)
+  I.assert(clientUser, authenticatedUserData.user, 'user authenticated')
+
+})

package/e2e/signOut.test.js

@@ -0,0 +1,41 @@
+const app = require('@live-change/framework').app()
+const randomProfile = require('random-profile-generator')
+
+const name = randomProfile.profile().firstName.toLowerCase()
+const email = name + '@test.com' // test domain - emails not sent
+
+const happyPath = false
+
+Feature('user')
+
+Scenario('sign out', async ({ I }) => {
+
+  const user = app.generateUid()
+
+  const User = await I.haveModel('user', 'User')
+  const Email = await I.haveModel('email', 'Email')
+  const AuthenticatedUser = await I.haveModel('user', 'AuthenticatedUser')
+
+  await User.create({ id: user, roles: [] })
+  await Email.create({ id: email, email, user })
+  I.amOnPage('/')
+  const session = await I.executeScript(() => api.client.value.session)
+  await AuthenticatedUser.create({ id: session, user, session })
+
+  await I.wait(0.2)
+  const clientUser = await I.executeScript(() => api.client.value.user)
+  I.assert(user, clientUser, 'client logged in')
+
+  I.amOnPage('/sign-out')
+  I.seeInCurrentUrl('/sign-out-finished')
+
+  await I.wait(1.0)
+  const clientUser2 = await I.executeScript(() => api.client.value.user)
+  console.log("CLIENT USER2", clientUser2)
+  const authenticatedUserData = await AuthenticatedUser.get(session)
+  console.log("AUTHENTICATED USER", authenticatedUserData)
+
+  I.assert(!!authenticatedUserData, false, 'no server user')
+  I.assert(!!clientUser2, false, 'no client user')
+
+})