test: write tests for legacyFetchSignInWithEmail

Author: russellwheatley

auth/src/test/java/com/firebase/ui/auth/configuration/AuthUIConfigurationTest.kt

@@ -88,6 +88,7 @@ class AuthUIConfigurationTest {
         assertThat(config.isNewEmailAccountsAllowed).isTrue()
         assertThat(config.isDisplayNameRequired).isTrue()
         assertThat(config.isProviderChoiceAlwaysShown).isFalse()
+        assertThat(config.legacyFetchSignInWithEmail).isFalse()
     }
 
     @Test
@@ -129,6 +130,7 @@ class AuthUIConfigurationTest {
             isNewEmailAccountsAllowed = false
             isDisplayNameRequired = false
             isProviderChoiceAlwaysShown = true
+            legacyFetchSignInWithEmail = true
         }
 
         assertThat(config.context).isEqualTo(applicationContext)
@@ -147,6 +149,7 @@ class AuthUIConfigurationTest {
         assertThat(config.isNewEmailAccountsAllowed).isFalse()
         assertThat(config.isDisplayNameRequired).isFalse()
         assertThat(config.isProviderChoiceAlwaysShown).isTrue()
+        assertThat(config.legacyFetchSignInWithEmail).isTrue()
     }
 
     @Test
@@ -465,6 +468,7 @@ class AuthUIConfigurationTest {
             "isNewEmailAccountsAllowed",
             "isDisplayNameRequired",
             "isProviderChoiceAlwaysShown",
+            "legacyFetchSignInWithEmail",
             "transitions"
         )
 

auth/src/test/java/com/firebase/ui/auth/configuration/auth_provider/EmailAuthProviderFirebaseAuthUITest.kt

@@ -37,6 +37,7 @@ import com.google.firebase.auth.FirebaseAuthInvalidUserException
 import com.google.firebase.auth.FirebaseAuthUserCollisionException
 import com.google.firebase.auth.FirebaseUser
 import com.google.firebase.auth.GoogleAuthProvider
+import com.google.firebase.auth.SignInMethodQueryResult
 import kotlinx.coroutines.CancellationException
 import kotlinx.coroutines.flow.first
 import kotlinx.coroutines.test.runTest
@@ -413,6 +414,156 @@ class EmailAuthProviderFirebaseAuthUITest {
         }
     }
 
+    @Test
+    fun `signInWithEmailAndPassword - uses legacy provider recovery when configured`() = runTest {
+        val invalidCredentialsException = FirebaseAuthInvalidCredentialsException(
+            "ERROR_WRONG_PASSWORD",
+            "Wrong password"
+        )
+        val signInTask = TaskCompletionSource<AuthResult>()
+        signInTask.setException(invalidCredentialsException)
+        `when`(mockFirebaseAuth.signInWithEmailAndPassword("test@example.com", "Pass@123"))
+            .thenReturn(signInTask.task)
+
+        val queryResult = mock(SignInMethodQueryResult::class.java)
+        `when`(queryResult.signInMethods).thenReturn(listOf(GoogleAuthProvider.PROVIDER_ID))
+        val fetchTask = TaskCompletionSource<SignInMethodQueryResult>()
+        fetchTask.setResult(queryResult)
+        `when`(mockFirebaseAuth.fetchSignInMethodsForEmail("test@example.com"))
+            .thenReturn(fetchTask.task)
+
+        val instance = FirebaseAuthUI.create(firebaseApp, mockFirebaseAuth)
+        val emailProvider = AuthProvider.Email(
+            emailLinkActionCodeSettings = null,
+            passwordValidationRules = emptyList()
+        )
+        val config = authUIConfiguration {
+            context = applicationContext
+            providers {
+                provider(emailProvider)
+                provider(
+                    AuthProvider.Google(
+                        scopes = emptyList(),
+                        serverClientId = "test-client-id"
+                    )
+                )
+            }
+            legacyFetchSignInWithEmail = true
+        }
+
+        try {
+            instance.signInWithEmailAndPassword(
+                context = applicationContext,
+                config = config,
+                email = "test@example.com",
+                password = "Pass@123"
+            )
+            assertThat(false).isTrue()
+        } catch (e: AuthException.DifferentSignInMethodRequiredException) {
+            assertThat(e.email).isEqualTo("test@example.com")
+            assertThat(e.signInMethods).containsExactly(GoogleAuthProvider.PROVIDER_ID)
+            assertThat(e.suggestedSignInMethod).isEqualTo(GoogleAuthProvider.PROVIDER_ID)
+            assertThat(e.cause).isEqualTo(invalidCredentialsException)
+        }
+
+        val currentState = instance.authStateFlow().first { it is AuthState.Error }
+        val errorState = currentState as AuthState.Error
+        assertThat(errorState.exception)
+            .isInstanceOf(AuthException.DifferentSignInMethodRequiredException::class.java)
+        verify(mockFirebaseAuth).fetchSignInMethodsForEmail("test@example.com")
+    }
+
+    @Test
+    fun `signInWithEmailAndPassword - keeps invalid credentials when password sign in is available`() = runTest {
+        val invalidCredentialsException = FirebaseAuthInvalidCredentialsException(
+            "ERROR_WRONG_PASSWORD",
+            "Wrong password"
+        )
+        val signInTask = TaskCompletionSource<AuthResult>()
+        signInTask.setException(invalidCredentialsException)
+        `when`(mockFirebaseAuth.signInWithEmailAndPassword("test@example.com", "Pass@123"))
+            .thenReturn(signInTask.task)
+
+        val queryResult = mock(SignInMethodQueryResult::class.java)
+        `when`(queryResult.signInMethods)
+            .thenReturn(listOf(com.google.firebase.auth.EmailAuthProvider.EMAIL_PASSWORD_SIGN_IN_METHOD))
+        val fetchTask = TaskCompletionSource<SignInMethodQueryResult>()
+        fetchTask.setResult(queryResult)
+        `when`(mockFirebaseAuth.fetchSignInMethodsForEmail("test@example.com"))
+            .thenReturn(fetchTask.task)
+
+        val instance = FirebaseAuthUI.create(firebaseApp, mockFirebaseAuth)
+        val emailProvider = AuthProvider.Email(
+            emailLinkActionCodeSettings = null,
+            passwordValidationRules = emptyList()
+        )
+        val config = authUIConfiguration {
+            context = applicationContext
+            providers {
+                provider(emailProvider)
+            }
+            legacyFetchSignInWithEmail = true
+        }
+
+        try {
+            instance.signInWithEmailAndPassword(
+                context = applicationContext,
+                config = config,
+                email = "test@example.com",
+                password = "Pass@123"
+            )
+            assertThat(false).isTrue()
+        } catch (e: AuthException.InvalidCredentialsException) {
+            assertThat(e.cause).isEqualTo(invalidCredentialsException)
+        }
+
+        verify(mockFirebaseAuth).fetchSignInMethodsForEmail("test@example.com")
+    }
+
+    @Test
+    fun `signInWithEmailAndPassword - does not use legacy provider recovery when disabled`() = runTest {
+        val invalidCredentialsException = FirebaseAuthInvalidCredentialsException(
+            "ERROR_WRONG_PASSWORD",
+            "Wrong password"
+        )
+        val signInTask = TaskCompletionSource<AuthResult>()
+        signInTask.setException(invalidCredentialsException)
+        `when`(mockFirebaseAuth.signInWithEmailAndPassword("test@example.com", "Pass@123"))
+            .thenReturn(signInTask.task)
+
+        val instance = FirebaseAuthUI.create(firebaseApp, mockFirebaseAuth)
+        val emailProvider = AuthProvider.Email(
+            emailLinkActionCodeSettings = null,
+            passwordValidationRules = emptyList()
+        )
+        val config = authUIConfiguration {
+            context = applicationContext
+            providers {
+                provider(emailProvider)
+                provider(
+                    AuthProvider.Google(
+                        scopes = emptyList(),
+                        serverClientId = "test-client-id"
+                    )
+                )
+            }
+        }
+
+        try {
+            instance.signInWithEmailAndPassword(
+                context = applicationContext,
+                config = config,
+                email = "test@example.com",
+                password = "Pass@123"
+            )
+            assertThat(false).isTrue()
+        } catch (e: AuthException.InvalidCredentialsException) {
+            assertThat(e.cause).isEqualTo(invalidCredentialsException)
+        }
+
+        verify(mockFirebaseAuth, never()).fetchSignInMethodsForEmail(anyString())
+    }
+
     @Test
     fun `signInWithEmailAndPassword - handles user not found`() = runTest {
         val userNotFoundException = FirebaseAuthInvalidUserException(

auth/src/test/java/com/firebase/ui/auth/ui/components/ErrorRecoveryDialogLogicTest.kt

@@ -3,6 +3,8 @@ package com.firebase.ui.auth.ui.components
 import com.firebase.ui.auth.AuthException
 import com.firebase.ui.auth.configuration.string_provider.AuthUIStringProvider
 import com.google.common.truth.Truth
+import com.google.firebase.auth.EmailAuthProvider
+import com.google.firebase.auth.GoogleAuthProvider
 import org.junit.Test
 import org.junit.runner.RunWith
 import org.mockito.Mockito
@@ -20,6 +22,8 @@ class ErrorRecoveryDialogLogicTest {
         Mockito.`when`(retryAction).thenReturn("Try again")
         Mockito.`when`(continueText).thenReturn("Continue")
         Mockito.`when`(signInDefault).thenReturn("Sign in")
+        Mockito.`when`(continueWithGoogle).thenReturn("Continue with Google")
+        Mockito.`when`(signInWithEmailLink).thenReturn("Sign in with email link")
         Mockito.`when`(networkErrorRecoveryMessage).thenReturn("Network error, check your internet connection.")
         Mockito.`when`(invalidCredentialsRecoveryMessage).thenReturn("Incorrect password.")
         Mockito.`when`(userNotFoundRecoveryMessage).thenReturn("That email address doesn't match an existing account")
@@ -216,6 +220,34 @@ class ErrorRecoveryDialogLogicTest {
         Truth.assertThat(actionText).isEqualTo("Continue")
     }
 
+    @Test
+    fun `getRecoveryActionText returns provider specific action for DifferentSignInMethodRequiredException`() {
+        val error = AuthException.DifferentSignInMethodRequiredException(
+            message = "Use a different sign-in method",
+            email = "test@example.com",
+            signInMethods = listOf(GoogleAuthProvider.PROVIDER_ID),
+            suggestedSignInMethod = GoogleAuthProvider.PROVIDER_ID
+        )
+
+        val actionText = getRecoveryActionText(error, mockStringProvider)
+
+        Truth.assertThat(actionText).isEqualTo("Continue with Google")
+    }
+
+    @Test
+    fun `getRecoveryActionText returns email link action for DifferentSignInMethodRequiredException`() {
+        val error = AuthException.DifferentSignInMethodRequiredException(
+            message = "Use a different sign-in method",
+            email = "test@example.com",
+            signInMethods = listOf(EmailAuthProvider.EMAIL_LINK_SIGN_IN_METHOD),
+            suggestedSignInMethod = EmailAuthProvider.EMAIL_LINK_SIGN_IN_METHOD
+        )
+
+        val actionText = getRecoveryActionText(error, mockStringProvider)
+
+        Truth.assertThat(actionText).isEqualTo("Sign in with email link")
+    }
+
     @Test
     fun `getRecoveryActionText returns continue for MfaRequiredException`() {
         // Arrange
@@ -302,6 +334,8 @@ class ErrorRecoveryDialogLogicTest {
             is AuthException.TooManyRequestsException -> stringProvider.tooManyRequestsRecoveryMessage
             is AuthException.MfaRequiredException -> stringProvider.mfaRequiredRecoveryMessage
             is AuthException.AccountLinkingRequiredException -> stringProvider.accountLinkingRequiredRecoveryMessage
+            is AuthException.DifferentSignInMethodRequiredException ->
+                error.message ?: stringProvider.accountLinkingRequiredRecoveryMessage
             is AuthException.AuthCancelledException -> stringProvider.authCancelledRecoveryMessage
             is AuthException.UnknownException -> stringProvider.unknownErrorRecoveryMessage
             else -> stringProvider.unknownErrorRecoveryMessage
@@ -313,6 +347,11 @@ class ErrorRecoveryDialogLogicTest {
             is AuthException.AuthCancelledException -> stringProvider.continueText
             is AuthException.EmailAlreadyInUseException -> stringProvider.signInDefault
             is AuthException.AccountLinkingRequiredException -> stringProvider.continueText
+            is AuthException.DifferentSignInMethodRequiredException -> when (error.suggestedSignInMethod) {
+                GoogleAuthProvider.PROVIDER_ID -> stringProvider.continueWithGoogle
+                EmailAuthProvider.EMAIL_LINK_SIGN_IN_METHOD -> stringProvider.signInWithEmailLink
+                else -> stringProvider.continueText
+            }
             is AuthException.MfaRequiredException -> stringProvider.continueText
             is AuthException.NetworkException,
             is AuthException.InvalidCredentialsException,
@@ -334,9 +373,10 @@ class ErrorRecoveryDialogLogicTest {
             is AuthException.TooManyRequestsException -> false
             is AuthException.MfaRequiredException -> true
             is AuthException.AccountLinkingRequiredException -> true
+            is AuthException.DifferentSignInMethodRequiredException -> true
             is AuthException.AuthCancelledException -> true
             is AuthException.UnknownException -> true
             else -> true
         }
     }
-}
+}