Medplum
Officialby medplum
SignInForm.test.tsx•22.8 kB
// SPDX-FileCopyrightText: Copyright Orangebot, Inc. and Medplum contributors
// SPDX-License-Identifier: Apache-2.0
import { Title } from '@mantine/core';
import type { GoogleCredentialResponse } from '@medplum/core';
import { allOk, badRequest, locationUtils, MedplumClient } from '@medplum/core';
import { MedplumProvider } from '@medplum/react-hooks';
import crypto from 'crypto';
import { MemoryRouter } from 'react-router';
import { TextEncoder } from 'util';
import { act, fireEvent, render, screen, waitFor } from '../test-utils/render';
import type { SignInFormProps } from './SignInForm';
import { SignInForm } from './SignInForm';
function mockFetch(url: string, options: any): Promise<any> {
let status = 404;
let result: any;
if (options.method === 'POST' && url.endsWith('/auth/method')) {
const { email } = JSON.parse(options.body);
status = 200;
if (email === 'alice@external.example.com') {
result = {
authorizeUrl: 'https://external.example.com/authorize',
domain: 'external.example.com',
};
} else {
result = {};
}
} else if (options.method === 'POST' && url.endsWith('/auth/login')) {
const { email, password } = JSON.parse(options.body);
if (email === 'admin@example.com' && password === 'admin') {
status = 200;
result = {
login: '1',
code: '1',
};
} else if (email === 'newproject@example.com' && password === 'newproject') {
status = 200;
result = {
login: '1',
};
} else if (email === 'multiple@medplum.com' && password === 'admin') {
status = 200;
result = {
login: '2',
memberships: [
{
id: '100',
profile: {
reference: 'Practitioner/123',
display: 'Alice Smith',
},
project: {
reference: 'Project/1',
display: 'Project 1',
},
},
{
id: '101',
profile: {
reference: 'Practitioner/234',
display: 'Bob Jones',
},
project: {
reference: 'Project/2',
display: 'Project 2',
},
},
],
};
} else if (email === 'mfa-required@medplum.com' && password === 'mfa-required') {
status = 200;
result = {
login: '1',
mfaRequired: true,
};
} else if (email === 'mfa-enroll@medplum.com' && password === 'mfa-enroll') {
status = 200;
result = {
login: '1',
mfaEnrollRequired: true,
enrollQrCode: 'data:image/png;base64,123',
};
} else {
status = 400;
result = {
resourceType: 'OperationOutcome',
issue: [
{
details: {
text: 'Email or password is invalid',
},
},
],
};
}
} else if (options.method === 'POST' && url.endsWith('auth/google')) {
const { googleClientId } = JSON.parse(options.body);
if (googleClientId === 'user-not-found') {
status = 400;
result = badRequest('User not found');
} else {
status = 200;
result = {
login: '1',
code: '1',
};
}
} else if (options.method === 'POST' && url.endsWith('auth/newproject')) {
status = 200;
result = {
login: '1',
code: '1',
};
} else if (options.method === 'POST' && url.endsWith('auth/profile')) {
const { profile } = JSON.parse(options.body);
if (profile === '101') {
status = 400;
result = badRequest('Invalid IP address');
} else {
status = 200;
result = {
login: '1',
code: '1',
};
}
} else if (options.method === 'POST' && url.endsWith('auth/scope')) {
status = 200;
result = {
login: '1',
code: '1',
};
} else if (options.method === 'POST' && url.endsWith('auth/mfa/verify')) {
status = 200;
result = {
login: '1',
code: '1',
};
} else if (options.method === 'POST' && url.endsWith('auth/mfa/login-enroll')) {
status = 200;
result = {
login: '1',
code: '1',
};
} else if (options.method === 'GET' && url.endsWith('Practitioner/123')) {
status = 200;
result = {
resourceType: 'Practitioner',
id: '123',
name: [{ given: ['Medplum'], family: ['Admin'] }],
};
} else if (options.method === 'POST' && url.endsWith('/oauth2/token')) {
status = 200;
result = {
access_token:
'header.' + window.btoa(JSON.stringify({ client_id: 'my-client-id', login_id: '123' })) + '.signature',
refresh_token: 'header.' + window.btoa(JSON.stringify({ client_id: 'my-client-id' })) + '.signature',
expires_in: 1,
token_type: 'Bearer',
scope: 'openid',
project: { reference: 'Project/123' },
profile: { reference: 'Practitioner/123' },
};
} else if (options.method === 'GET' && url.endsWith('auth/me')) {
status = 200;
result = {
profile: {
resourceType: 'Practitioner',
id: '123',
name: [{ given: ['Medplum'], family: ['Admin'] }],
},
};
} else if (url.endsWith('/oauth2/logout')) {
status = 200;
result = allOk;
} else {
console.log(options.method, url);
}
const response: any = {
request: {
url,
options,
},
status,
...result,
};
return Promise.resolve({
status,
ok: status < 400,
headers: { get: () => 'application/fhir+json' },
json: () => Promise.resolve(response),
});
}
const medplum = new MedplumClient({
baseUrl: 'https://example.com/',
clientId: 'my-client-id',
fetch: mockFetch,
});
async function setup(args?: SignInFormProps): Promise<void> {
await medplum.signOut();
const props = {
onSuccess: jest.fn(),
...args,
};
await act(async () => {
render(
<MemoryRouter>
<MedplumProvider medplum={medplum}>
<SignInForm {...props}>
<Title>Sign in to Medplum</Title>
</SignInForm>
</MedplumProvider>
</MemoryRouter>
);
});
}
describe('SignInForm', () => {
beforeAll(() => {
Object.defineProperty(global, 'TextEncoder', {
value: TextEncoder,
});
Object.defineProperty(global.self, 'crypto', {
value: crypto.webcrypto,
});
});
test('Renders', async () => {
await setup();
const input = screen.getByText('Sign in to Medplum') as HTMLButtonElement;
expect(input.innerHTML).toBe('Sign in to Medplum');
});
test('Submit success', async () => {
let success = false;
await setup({
onSuccess: () => (success = true),
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Email', { exact: false }), {
target: { value: 'admin@example.com' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Continue'));
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Password', { exact: false }), {
target: { value: 'admin' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Sign In'));
});
await waitFor(() => expect(medplum.getProfile()).toBeDefined());
expect(success).toBe(true);
});
test('Submit success with onCode', async () => {
let code: string | undefined = undefined;
await setup({
onCode: (c) => (code = c),
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Email', { exact: false }), {
target: { value: 'admin@example.com' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Continue'));
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Password', { exact: false }), {
target: { value: 'admin' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Sign In'));
});
await waitFor(() => expect(code).toBeDefined());
expect(code).toBeDefined();
});
test('Submit success without callback', async () => {
await setup({});
expect(medplum.getProfile()).toBeUndefined();
await act(async () => {
fireEvent.change(screen.getByLabelText('Email', { exact: false }), {
target: { value: 'admin@example.com' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Continue'));
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Password', { exact: false }), {
target: { value: 'admin' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Sign In'));
});
await waitFor(() => expect(medplum.getProfile()).toBeDefined());
expect(medplum.getProfile()).toBeDefined();
});
test('Submit success multiple profiles', async () => {
let success = false;
await setup({
onSuccess: () => (success = true),
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Email', { exact: false }), {
target: { value: 'multiple@medplum.com' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Continue'));
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Password', { exact: false }), {
target: { value: 'admin' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Sign In'));
});
expect(await screen.findByText('Choose a Project')).toBeInTheDocument();
expect(screen.getByText('Alice Smith')).toBeInTheDocument();
expect(screen.getByText('Bob Jones')).toBeInTheDocument();
await act(async () => {
fireEvent.click(screen.getByText('Alice Smith'));
});
await waitFor(() => expect(medplum.getProfile()).toBeDefined());
expect(success).toBe(true);
});
test('Multiple profiles invalid IP address', async () => {
let success = false;
await setup({
onSuccess: () => (success = true),
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Email', { exact: false }), {
target: { value: 'multiple@medplum.com' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Continue'));
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Password', { exact: false }), {
target: { value: 'admin' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Sign In'));
});
expect(await screen.findByText('Choose a Project')).toBeInTheDocument();
expect(screen.getByText('Alice Smith')).toBeInTheDocument();
expect(screen.getByText('Bob Jones')).toBeInTheDocument();
await act(async () => {
fireEvent.click(screen.getByText('Bob Jones'));
});
expect(await screen.findByText('Invalid IP address')).toBeInTheDocument();
expect(success).toBe(false);
});
test('Choose scope', async () => {
const successFn = jest.fn();
await setup({
chooseScopes: true,
scope: 'openid profile',
onSuccess: successFn,
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Email', { exact: false }), {
target: { value: 'admin@example.com' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Continue'));
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Password', { exact: false }), {
target: { value: 'admin' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Sign In'));
});
expect(await screen.findByText('Choose scope')).toBeInTheDocument();
expect(screen.getByText('openid')).toBeInTheDocument();
expect(screen.getByText('profile')).toBeInTheDocument();
await act(async () => {
fireEvent.click(screen.getByText('Set Scope'));
});
expect(successFn).toHaveBeenCalled();
});
test('Submit success new project', async () => {
let success = false;
await setup({
onSuccess: () => (success = true),
projectId: 'new',
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Email', { exact: false }), {
target: { value: 'newproject@example.com' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Continue'));
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Password', { exact: false }), { target: { value: 'newproject' } });
});
await act(async () => {
fireEvent.click(screen.getByText('Sign In'));
});
expect(await screen.findByLabelText('Project Name', { exact: false })).toBeInTheDocument();
await act(async () => {
fireEvent.change(screen.getByLabelText('Project Name', { exact: false }), { target: { value: 'My Project' } });
});
await act(async () => {
fireEvent.click(screen.getByRole('button', { name: 'Create Project' }));
});
expect(success).toBe(true);
});
test('User not found', async () => {
await setup();
await act(async () => {
fireEvent.change(screen.getByLabelText('Email', { exact: false }), {
target: { value: 'not-found@example.com' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Continue'));
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Password', { exact: false }), {
target: { value: 'admin' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Sign In'));
});
expect(await screen.findByTestId('text-field-error')).toBeInTheDocument();
expect(screen.getByTestId('text-field-error')).toBeInTheDocument();
expect(screen.getByText('Email or password is invalid')).toBeInTheDocument();
});
test('Incorrect password', async () => {
await setup();
await act(async () => {
fireEvent.change(screen.getByLabelText('Email', { exact: false }), {
target: { value: 'not-found@example.com' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Continue'));
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Password', { exact: false }), {
target: { value: 'admin' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Sign In'));
});
expect(await screen.findByTestId('text-field-error')).toBeInTheDocument();
expect(screen.getByText('Email or password is invalid')).toBeInTheDocument();
});
test('Forgot password', async () => {
const props = {
onForgotPassword: jest.fn(),
onSuccess: jest.fn(),
};
await setup(props);
await act(async () => {
fireEvent.change(screen.getByLabelText('Email', { exact: false }), {
target: { value: 'forgot@example.com' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Continue'));
});
await act(async () => {
fireEvent.click(screen.getByText('Reset Password'));
});
expect(props.onForgotPassword).toHaveBeenCalled();
});
test('Register', async () => {
const props = {
onRegister: jest.fn(),
onSuccess: jest.fn(),
};
await setup(props);
await act(async () => {
fireEvent.click(screen.getByText('Register'));
});
expect(props.onRegister).toHaveBeenCalled();
});
test('Disable Email', async () => {
const onSuccess = jest.fn();
await act(async () => {
await setup({
onSuccess,
disableEmailAuth: true,
googleClientId: '123',
});
});
expect(screen.queryByText('Email', { exact: false })).toBeNull();
expect(screen.queryByText('Continue')).toBeNull();
expect(screen.queryByText('or')).toBeNull();
});
test('Disable Google auth', async () => {
const google = {
accounts: {
id: {
initialize: jest.fn(),
renderButton: jest.fn(),
},
},
};
(window as any).google = google;
const onSuccess = jest.fn();
await act(async () => {
await setup({
onSuccess,
disableGoogleAuth: true,
googleClientId: '123',
});
});
expect(await screen.findByLabelText('Email', { exact: false })).toBeInTheDocument();
expect(screen.queryByText('Sign in with Google')).toBeNull();
expect(google.accounts.id.initialize).not.toHaveBeenCalled();
expect(google.accounts.id.renderButton).not.toHaveBeenCalled();
});
test('Google success', async () => {
const clientId = '123';
let callback: ((response: GoogleCredentialResponse) => void) | undefined = undefined;
const google = {
accounts: {
id: {
initialize: jest.fn((args: any) => {
callback = args.callback;
}),
renderButton: jest.fn((parent: HTMLElement) => {
const button = document.createElement('div');
button.innerHTML = 'Sign in with Google';
button.addEventListener('click', () => google.accounts.id.prompt());
parent.appendChild(button);
}),
prompt: jest.fn(() => {
if (callback) {
callback({
clientId,
credential: '123123123',
});
}
}),
},
},
};
(window as any).google = google;
const onSuccess = jest.fn();
await act(async () => {
await setup({
onSuccess,
googleClientId: clientId,
});
});
expect(await screen.findByText('Sign in with Google')).toBeInTheDocument();
await act(async () => {
fireEvent.click(screen.getByText('Sign in with Google'));
});
await waitFor(() => expect(onSuccess).toHaveBeenCalled());
expect(await screen.findByText('Success')).toBeInTheDocument();
expect(google.accounts.id.initialize).toHaveBeenCalled();
expect(google.accounts.id.renderButton).toHaveBeenCalled();
expect(google.accounts.id.prompt).toHaveBeenCalled();
});
test('Google user not found', async () => {
const clientId = 'user-not-found';
let callback: ((response: GoogleCredentialResponse) => void) | undefined = undefined;
const google = {
accounts: {
id: {
initialize: jest.fn((args: any) => {
callback = args.callback;
}),
renderButton: jest.fn((parent: HTMLElement) => {
const button = document.createElement('div');
button.innerHTML = 'Sign in with Google';
button.addEventListener('click', () => google.accounts.id.prompt());
parent.appendChild(button);
}),
prompt: jest.fn(() => {
if (callback) {
callback({
clientId,
credential: '123123123',
});
}
}),
},
},
};
(window as any).google = google;
const onSuccess = jest.fn();
await act(async () => {
await setup({
onSuccess,
googleClientId: clientId,
});
});
expect(await screen.findByText('Sign in with Google')).toBeInTheDocument();
await act(async () => {
fireEvent.click(screen.getByText('Sign in with Google'));
});
expect(await screen.findByText('User not found')).toBeInTheDocument();
expect(onSuccess).not.toHaveBeenCalled();
expect(google.accounts.id.initialize).toHaveBeenCalled();
expect(google.accounts.id.renderButton).toHaveBeenCalled();
expect(google.accounts.id.prompt).toHaveBeenCalled();
});
test('Redirect to external auth', async () => {
const assignSpy = jest.spyOn(locationUtils, 'assign').mockImplementation(() => {});
await setup({});
await act(async () => {
fireEvent.change(screen.getByLabelText('Email', { exact: false }), {
target: { value: 'alice@external.example.com' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Continue'));
});
await waitFor(() => expect(assignSpy).toHaveBeenCalled());
expect(assignSpy).toHaveBeenCalled();
});
test('MFA -- Success', async () => {
let success = false;
await setup({
onSuccess: () => (success = true),
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Email', { exact: false }), {
target: { value: 'mfa-required@medplum.com' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Continue'));
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Password', { exact: false }), {
target: { value: 'mfa-required' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Sign In'));
});
await expect(screen.findByLabelText(/mfa code*/i)).resolves.toBeInTheDocument();
expect(screen.getByText('Enter MFA code')).toBeInTheDocument();
expect(screen.getByText('Enter the code from your authenticator app.')).toBeInTheDocument();
await act(async () => {
fireEvent.change(screen.getByLabelText(/mfa code*/i), { target: { value: '1234567890' } });
});
await act(async () => {
fireEvent.click(screen.getByRole('button', { name: /submit code/i }));
});
await waitFor(() => expect(medplum.getProfile()).toBeDefined());
expect(success).toBe(true);
});
test('MFA -- Enroll', async () => {
let success = false;
await setup({
onSuccess: () => (success = true),
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Email', { exact: false }), {
target: { value: 'mfa-enroll@medplum.com' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Continue'));
});
await act(async () => {
fireEvent.change(screen.getByLabelText('Password', { exact: false }), {
target: { value: 'mfa-enroll' },
});
});
await act(async () => {
fireEvent.click(screen.getByText('Sign In'));
});
await expect(screen.findByLabelText(/mfa code*/i)).resolves.toBeInTheDocument();
expect(screen.getByText('Enroll in MFA')).toBeInTheDocument();
expect(screen.getByText('Scan this QR code with your authenticator app.')).toBeInTheDocument();
await act(async () => {
fireEvent.change(screen.getByLabelText(/mfa code*/i), { target: { value: '123456' } });
});
await act(async () => {
fireEvent.click(screen.getByRole('button', { name: 'Enroll' }));
});
await waitFor(() => expect(medplum.getProfile()).toBeDefined());
expect(success).toBe(true);
});
});
Latest Blog Posts
- MCP Moves to the Linux Foundation: Neutral Stewardship for Agentic InfrastructureBy Om-Shree-0709 on .mcpanthropicLinux Foundation
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/medplum/medplum'
If you have feedback or need assistance with the MCP directory API, please join our Discord server