Coverage of weird edge cases #24966
Coverage of weird edge cases #24966
Conversation
| email_already_taken_redirect \ | ||
| provider: AuthenticationOption::GOOGLE, | ||
| found_provider: looked_up_user.provider, | ||
| email: user.email |
There was a problem hiding this comment.
This code is unreachable because:
It falls beneath the if clause above:
Which is defined thus:
code-dot-org/dashboard/app/controllers/omniauth_callbacks_controller.rb
Lines 438 to 443 in 90b09b5
Let's break these cases into named clauses to help work out the logic:
A: AuthenticationOption::SILENT_TAKEOVER_CREDENTIAL_TYPES.include?(auth_hash.provider.to_s)B: User.find_by_email_or_hashed_email(oauth_user.email)C: !oauth_user.persisted?
So we can express our branching logic this way:
if A && B && C
silent takeover and sign in
elsif B
case we want to eliminate
else
register new user
Now let's simplify some things:
- Because this is in the Google-specific callback,
Ais alwaystrueand can simply be eliminated from this expression. BandCdo not vary independently:User.from_omniauthwill persist a google user if and only if that user's email is not already taken. (This is not true for all providers - more on that later). Therefore, we can say ifBis true, thenCmust also be true. (If B is false then C may be true or false). ThereforeB && Cdepends entirely on the value ofBandCcan be eliminated from this expression.
That reduces our logic to:
if B
silent takeover and sign in
elsif B
case we want to eliminate
else
register new user
We can safely eliminate the second case.
| @@ -666,6 +666,44 @@ class OmniauthCallbacksControllerTest < ActionController::TestCase | |||
| assert_equal User.last.id, signed_in_user_id | |||
| end | |||
|
|
|||
| test 'sign_up_clever: email taken redirect if _two_ users are already using your email address' do | |||
There was a problem hiding this comment.
That second case can't be eliminated for Clever because User.from_omniauth may persist a user whose email is already taken, so I wanted to work out test cases that actually exercise this path.
It turns out this only happens if
- You are signing in with an untrusted email provider, like Clever.
- You are a teacher so we actually keep and care about your email address.
- A prior account already exists in our system using your email address.
- A second prior account also exists that was created with an untrusted email provider (like Clever) resulting in an email like 'me@example.com.oauthemailalreadytaken'.
- Neither of the above accounts match your OAuth credentials.
For example, this might be an issue if many Clever teacher accounts have the same email address (apparently possible in their system).
For extra weirdness, the resulting redirect and the message we eventually display to the teacher varies depending on whether the second account (created in step 4, above) is a Clever account or some other untrusted email account - maybe a mistake?
I'd eventually like creation to fail at the second account (step 4) above and direct the teacher to perform a password reset on their existing account, and link Clever via the accounts page. Once that is true we will have a strong guarantee that User.from_omniauth will not persist users with an email conflict, and we'll be able to tear out these tests and the corresponding code they cover. For now though, I'll settle for test coverage of these weird cases.
|
I wonder if a contributing factor here is how much code lives in |
|
Re @joshlory's comment: I think that's a little bit of the problem, but maybe less than some other cleanliness issues here (and we're all loath to move code into |
Trying to figure out how I can tear out some weird edge cases in our sign-up code. Here I've proven a little of it is unreachable and torn it out, and worked out the bizarre circumstances that allow some other code to run. Descriptions inline.