cal.pub0.org/apps/web/playwright/auth/forgot-password.e2e.ts

import { expect } from "@playwright/test";
import { uuid } from "short-uuid";

import { verifyPassword } from "@calcom/features/auth/lib/verifyPassword";
import prisma from "@calcom/prisma";

import { test } from "../lib/fixtures";

test.afterEach(({ users }) => users.deleteAll());

test("Can reset forgotten password", async ({ page, users }) => {
  const user = await users.create();

  // Got to reset password flow
  await page.goto("/auth/forgot-password");

  await page.fill('input[name="email"]', `${user.username}@example.com`);
  await page.press('input[name="email"]', "Enter");

  // wait for confirm page.
  await page.waitForSelector("text=Reset link sent");

  // As a workaround, we query the db for the last created password request
  // there should be one, otherwise we throw
  const { id } = await prisma.resetPasswordRequest.findFirstOrThrow({
    where: {
      email: `${user.username}@example.com`,
    },
    select: {
      id: true,
    },
    orderBy: {
      createdAt: "desc",
    },
  });

  // Test when a user changes his email after starting the password reset flow
  await prisma.user.update({
    where: {
      email: `${user.username}@example.com`,
    },
    data: {
      email: `${user.username}-2@example.com`,
    },
  });

  await page.goto(`/auth/forgot-password/${id}`);

  await page.waitForSelector("text=That request is expired.");

  // Change the email back to continue testing.
  await prisma.user.update({
    where: {
      email: `${user.username}-2@example.com`,
    },
    data: {
      email: `${user.username}@example.com`,
    },
  });

  await page.goto(`/auth/forgot-password/${id}`);

  const newPassword = `${user.username}-123CAL-${uuid().toString()}`; // To match the password policy

  // Wait for page to fully load
  await page.waitForSelector("text=Reset Password");

  await page.fill('input[name="new_password"]', newPassword);
  await page.click('button[type="submit"]');

  await page.waitForSelector("text=Password updated");

  await expect(page.locator(`text=Password updated`)).toBeVisible();
  // now we check our DB to confirm the password was indeed updated.
  // we're not logging in to the UI to speed up test performance.
  const updatedUser = await prisma.user.findUniqueOrThrow({
    where: {
      email: `${user.username}@example.com`,
    },
    select: {
      id: true,
      password: true,
    },
  });

  // eslint-disable-next-line @typescript-eslint/no-non-null-assertion
  await expect(await verifyPassword(newPassword, updatedUser.password!)).toBeTruthy();

  // finally, make sure the same URL cannot be used to reset the password again, as it should be expired.
  await page.goto(`/auth/forgot-password/${id}`);

  await page.waitForSelector("text=That request is expired.");
});
E2E fixtures (#2747) 2022-05-14 03:02:10 +00:00			`import { expect } from "@playwright/test";`
fix: Password reset tests & better expiry checking (#10102) 2023-07-12 17:27:41 +00:00			`import { uuid } from "short-uuid";`

			`import { verifyPassword } from "@calcom/features/auth/lib/verifyPassword";`
			`import prisma from "@calcom/prisma";`
Upgrades next-auth to v4 (#1185) * Upgrades next-auth to v4 * Fixes next-auth session types * Type fixes * Fixes login issue * Team page fixes * Type fixes * Fixes secret * Adds test for forgotten password * Skips if pw secret is undefined * Prevents error if PW secret is undefined * Adds PLAYWRIGHT_SECRET explainer * Adds pending auth TODOs * Adds missing secret * Fixed imports * Fixed imports * Type fixes * Test fixes Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> 2022-01-07 20:23:37 +00:00
E2E fixtures (#2747) 2022-05-14 03:02:10 +00:00			`import { test } from "../lib/fixtures";`

Adds missing cleanups to e2e tests 2023-03-01 20:18:51 +00:00			`test.afterEach(({ users }) => users.deleteAll());`

E2E fixtures (#2747) 2022-05-14 03:02:10 +00:00			`test("Can reset forgotten password", async ({ page, users }) => {`
			`const user = await users.create();`
fix: Password reset tests & better expiry checking (#10102) 2023-07-12 17:27:41 +00:00
Upgrades next-auth to v4 (#1185) * Upgrades next-auth to v4 * Fixes next-auth session types * Type fixes * Fixes login issue * Team page fixes * Type fixes * Fixes secret * Adds test for forgotten password * Skips if pw secret is undefined * Prevents error if PW secret is undefined * Adds PLAYWRIGHT_SECRET explainer * Adds pending auth TODOs * Adds missing secret * Fixed imports * Fixed imports * Type fixes * Test fixes Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> 2022-01-07 20:23:37 +00:00			`// Got to reset password flow`
			`await page.goto("/auth/forgot-password");`

E2E fixtures (#2747) 2022-05-14 03:02:10 +00:00			await page.fill('input[name="email"]', `${user.username}@example.com`);
fix: Password reset tests & better expiry checking (#10102) 2023-07-12 17:27:41 +00:00			`await page.press('input[name="email"]', "Enter");`

			`// wait for confirm page.`
			`await page.waitForSelector("text=Reset link sent");`

			`// As a workaround, we query the db for the last created password request`
			`// there should be one, otherwise we throw`
			`const { id } = await prisma.resetPasswordRequest.findFirstOrThrow({`
			`where: {`
			email: `${user.username}@example.com`,
			`},`
			`select: {`
			`id: true,`
			`},`
			`orderBy: {`
			`createdAt: "desc",`
			`},`
			`});`

			`// Test when a user changes his email after starting the password reset flow`
			`await prisma.user.update({`
			`where: {`
			email: `${user.username}@example.com`,
			`},`
			`data: {`
			email: `${user.username}-2@example.com`,
			`},`
			`});`

			await page.goto(`/auth/forgot-password/${id}`);

			`await page.waitForSelector("text=That request is expired.");`
Upgrades next-auth to v4 (#1185) * Upgrades next-auth to v4 * Fixes next-auth session types * Type fixes * Fixes login issue * Team page fixes * Type fixes * Fixes secret * Adds test for forgotten password * Skips if pw secret is undefined * Prevents error if PW secret is undefined * Adds PLAYWRIGHT_SECRET explainer * Adds pending auth TODOs * Adds missing secret * Fixed imports * Fixed imports * Type fixes * Test fixes Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> 2022-01-07 20:23:37 +00:00
fix: Password reset tests & better expiry checking (#10102) 2023-07-12 17:27:41 +00:00			`// Change the email back to continue testing.`
			`await prisma.user.update({`
			`where: {`
			email: `${user.username}-2@example.com`,
			`},`
			`data: {`
			email: `${user.username}@example.com`,
			`},`
			`});`

			await page.goto(`/auth/forgot-password/${id}`);

			const newPassword = `${user.username}-123CAL-${uuid().toString()}`; // To match the password policy
Upgrades next-auth to v4 (#1185) * Upgrades next-auth to v4 * Fixes next-auth session types * Type fixes * Fixes login issue * Team page fixes * Type fixes * Fixes secret * Adds test for forgotten password * Skips if pw secret is undefined * Prevents error if PW secret is undefined * Adds PLAYWRIGHT_SECRET explainer * Adds pending auth TODOs * Adds missing secret * Fixed imports * Fixed imports * Type fixes * Test fixes Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> 2022-01-07 20:23:37 +00:00
Forgot password test troubleshooting (#1538) * Removes e2e retries and videos * Forgot password test troubleshooting Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> 2022-01-19 15:54:54 +00:00			`// Wait for page to fully load`
			`await page.waitForSelector("text=Reset Password");`
Upgrades next-auth to v4 (#1185) * Upgrades next-auth to v4 * Fixes next-auth session types * Type fixes * Fixes login issue * Team page fixes * Type fixes * Fixes secret * Adds test for forgotten password * Skips if pw secret is undefined * Prevents error if PW secret is undefined * Adds PLAYWRIGHT_SECRET explainer * Adds pending auth TODOs * Adds missing secret * Fixed imports * Fixed imports * Type fixes * Test fixes Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> 2022-01-07 20:23:37 +00:00
fix: Password reset tests & better expiry checking (#10102) 2023-07-12 17:27:41 +00:00			`await page.fill('input[name="new_password"]', newPassword);`
Upgrades next-auth to v4 (#1185) * Upgrades next-auth to v4 * Fixes next-auth session types * Type fixes * Fixes login issue * Team page fixes * Type fixes * Fixes secret * Adds test for forgotten password * Skips if pw secret is undefined * Prevents error if PW secret is undefined * Adds PLAYWRIGHT_SECRET explainer * Adds pending auth TODOs * Adds missing secret * Fixed imports * Fixed imports * Type fixes * Test fixes Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> 2022-01-07 20:23:37 +00:00			`await page.click('button[type="submit"]');`

Fix tests flakyness 2023-05-30 03:12:17 +00:00			`await page.waitForSelector("text=Password updated");`
fix/playwright test (#1533) * add: playright-test eslint plugin * add: missed awaits in playwright tests 2022-01-17 18:15:18 +00:00
V2 password reset design (#4327) * using new v2 buttons in password reset * Forgot password UI * Logo updates * change error copy * Fix tests Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> Co-authored-by: sean-brydon <55134778+sean-brydon@users.noreply.github.com> Co-authored-by: Hariom Balhara <hariombalhara@gmail.com> 2022-09-12 09:25:54 +00:00			await expect(page.locator(`text=Password updated`)).toBeVisible();
fix: Password reset tests & better expiry checking (#10102) 2023-07-12 17:27:41 +00:00			`// now we check our DB to confirm the password was indeed updated.`
			`// we're not logging in to the UI to speed up test performance.`
			`const updatedUser = await prisma.user.findUniqueOrThrow({`
			`where: {`
			email: `${user.username}@example.com`,
			`},`
			`select: {`
			`id: true,`
			`password: true,`
			`},`
			`});`
Upgrades next-auth to v4 (#1185) * Upgrades next-auth to v4 * Fixes next-auth session types * Type fixes * Fixes login issue * Team page fixes * Type fixes * Fixes secret * Adds test for forgotten password * Skips if pw secret is undefined * Prevents error if PW secret is undefined * Adds PLAYWRIGHT_SECRET explainer * Adds pending auth TODOs * Adds missing secret * Fixed imports * Fixed imports * Type fixes * Test fixes Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> 2022-01-07 20:23:37 +00:00
fix: Password reset tests & better expiry checking (#10102) 2023-07-12 17:27:41 +00:00			`// eslint-disable-next-line @typescript-eslint/no-non-null-assertion`
			`await expect(await verifyPassword(newPassword, updatedUser.password!)).toBeTruthy();`

			`// finally, make sure the same URL cannot be used to reset the password again, as it should be expired.`
			await page.goto(`/auth/forgot-password/${id}`);
fix/playwright test (#1533) * add: playright-test eslint plugin * add: missed awaits in playwright tests 2022-01-17 18:15:18 +00:00
fix: Password reset tests & better expiry checking (#10102) 2023-07-12 17:27:41 +00:00			`await page.waitForSelector("text=That request is expired.");`
Upgrades next-auth to v4 (#1185) * Upgrades next-auth to v4 * Fixes next-auth session types * Type fixes * Fixes login issue * Team page fixes * Type fixes * Fixes secret * Adds test for forgotten password * Skips if pw secret is undefined * Prevents error if PW secret is undefined * Adds PLAYWRIGHT_SECRET explainer * Adds pending auth TODOs * Adds missing secret * Fixed imports * Fixed imports * Type fixes * Test fixes Co-authored-by: kodiakhq[bot] <49736102+kodiakhq[bot]@users.noreply.github.com> 2022-01-07 20:23:37 +00:00			`});`