Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

30179: resetPassword mutation returns generic error #30230

Merged
merged 5 commits into from
Oct 10, 2020
Merged

30179: resetPassword mutation returns generic error #30230

merged 5 commits into from
Oct 10, 2020

Conversation

sudheers-kensium
Copy link
Contributor

[GraphQL] resetPassword mutation returns generic error

Description (*)

While implementing resetPassword functionality into PWA, an engineer ran into a problem that resulted in this generic error response: Cannot set the customer's password. It took digging through the exception log to discover the provided password didn't meet the minimum password requirements, which was not in the error message.

Related Pull Requests

Fixed Issues (if relevant)

  1. Fixes [PAP][GraphQL] resetPassword mutation returns generic error #30179: [GraphQL] resetPassword mutation returns generic error

Manual testing scenarios (*)

  1. Execute requestPasswordResetEmail mutation and extract token from email
  2. Execute resetPassword mutation with a weak password in newPassword field

Questions or comments

Contribution checklist (*)

  • Pull request has a meaningful description of its purpose
  • All commits are accompanied by meaningful commit messages
  • All new or changed code is covered with unit/integration tests (if applicable)
  • All automated tests passed successfully (all builds are green)

@m2-assistant
Copy link

m2-assistant bot commented Sep 29, 2020

Hi @sudheers-kensium. Thank you for your contribution
Here is some useful tips how you can test your changes using Magento test environment.
Add the comment under your pull request to deploy test or vanilla Magento instance:

  • @magento give me test instance - deploy test instance based on PR changes
  • @magento give me 2.4-develop instance - deploy vanilla Magento instance

❗ Automated tests can be triggered manually with an appropriate comment:

  • @magento run all tests - run or re-run all required tests against the PR changes
  • @magento run <test-build(s)> - run or re-run specific test build(s)
    For example: @magento run Unit Tests

<test-build(s)> is a comma-separated list of build names. Allowed build names are:

  1. Database Compare
  2. Functional Tests CE
  3. Functional Tests EE,
  4. Functional Tests B2B
  5. Integration Tests
  6. Magento Health Index
  7. Sample Data Tests CE
  8. Sample Data Tests EE
  9. Sample Data Tests B2B
  10. Static Tests
  11. Unit Tests
  12. WebAPI Tests

You can find more information about the builds here

ℹ️ Please run only needed test builds instead of all when developing. Please run all test builds before sending your PR for review.

For more details, please, review the Magento Contributor Guide documentation.

⚠️ According to the Magento Contribution requirements, all Pull Requests must go through the Community Contributions Triage process. Community Contributions Triage is a public meeting.

🕙 You can find the schedule on the Magento Community Calendar page.

📞 The triage of Pull Requests happens in the queue order. If you want to speed up the delivery of your contribution, please join the Community Contributions Triage session to discuss the appropriate ticket.

🎥 You can find the recording of the previous Community Contributions Triage on the Magento Youtube Channel

✏️ Feel free to post questions/proposals/feedback related to the Community Contributions Triage process to the corresponding Slack Channel

@ghost ghost added this to Pending Review in Pull Requests Dashboard Sep 29, 2020
@prabhuram93 prabhuram93 added the PAP Partners acceleration program label Sep 29, 2020
@rogyar rogyar self-assigned this Sep 29, 2020
rogyar
rogyar requested changes Sep 29, 2020
View reviewed changes
Copy link
Contributor

@rogyar rogyar left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hi @sudheers-kensium thank you for providing the fix. Could you, please, cover the fix with an API-functional test (or modify an existing one). Basically, the test will check that for different errors, different messages will be returned.

Thank you!

@ghost ghost moved this from Pending Review to Changes Requested in Pull Requests Dashboard Sep 29, 2020
prabhuram93
prabhuram93 suggested changes Sep 30, 2020
View reviewed changes
app/code/Magento/CustomerGraphQl/Model/Resolver/ResetPassword.php Outdated
@@ -118,7 +118,7 @@ public function resolve(
$args['newPassword']
);
} catch (LocalizedException $e) {
throw new GraphQlInputException(__('Cannot set the customer\'s password'), $e);
throw new GraphQlInputException(__('The password must be at least 8 characters long, minimum of 3 different classes of characters: Lower Case, Upper Case, Digits, Special Characters.'), $e);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@sudheers-kensium we try not add new phrases. $e->getMessage() should bubble up the exceptions from the api, which will be more meaningful and is the scope of this bug. $this->customerAccountManagement->resetPassword throws Input Exceptions, you can catch them in the resolver to give meaningful error responses back. For example, I see a bunch of meaningful validations here \Magento\Customer\Model\AccountManagement::checkPasswordStrength
Once you're able to get those messages, you can cover a couple in api functional tests, just to make sure the validation errors are being thrown.

@ghost ghost assigned prabhuram93 Sep 30, 2020
prabhuram93
prabhuram93 reviewed Oct 4, 2020
View reviewed changes
dev/tests/api-functional/testsuite/Magento/GraphQl/Customer/ResetPasswordTest.php Outdated
* @throws Exception
* @throws LocalizedException
*/
public function testNewPasswordCheckCharactersStrenth()
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

minor fix, type here for Strength.

@ghost ghost moved this from Changes Requested to Ready for Testing in Pull Requests Dashboard Oct 4, 2020
@nrkapoor nrkapoor added this to the 2.4.2 milestone Oct 6, 2020
@rogyar rogyar added the Auto-Tests: Covered All changes in Pull Request is covered by auto-tests label Oct 8, 2020
@magento-engcom-team
Copy link
Contributor

Hi @rogyar, thank you for the review.
ENGCOM-8321 has been created to process this Pull Request

@nrkapoor
Copy link

nrkapoor commented Oct 9, 2020

@magento run all tests

@magento-engcom-team magento-engcom-team merged commit 71ed28e into magento:2.4-develop Oct 10, 2020
@m2-assistant
Copy link

m2-assistant bot commented Oct 10, 2020

Hi @sudheers-kensium, thank you for your contribution!
Please, complete Contribution Survey, it will take less than a minute.
Your feedback will help us to improve contribution process.

@sidolov sidolov removed this from Ready for Testing in Pull Requests Dashboard Oct 27, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@rogyar rogyar rogyar approved these changes

@prabhuram93 prabhuram93 prabhuram93 approved these changes

Assignees

@rogyar rogyar

@prabhuram93 prabhuram93

Labels
Auto-Tests: Covered All changes in Pull Request is covered by auto-tests Component: CustomerGraphQl PAP Partners acceleration program Partner: Kensium Solutions LLC partners-contribution Pull Request is created by Magento Partner Progress: ready for testing Project: GraphQL Release Line: 2.4
Projects
None yet
Milestone
2.4.2
Development

Successfully merging this pull request may close these issues.

[PAP][GraphQL] resetPassword mutation returns generic error
6 participants
@sudheers-kensium @magento-engcom-team @nrkapoor @rogyar @prabhuram93 @sidolov