n8n/cypress/e2e/27-two-factor-authentication.cy.ts

import generateOTPToken from 'cypress-otp';

import { MainSidebar } from './../pages/sidebar/main-sidebar';
import { INSTANCE_OWNER, INSTANCE_ADMIN, BACKEND_BASE_URL } from '../constants';
import { SigninPage } from '../pages';
import { MfaLoginPage } from '../pages/mfa-login';
import { PersonalSettingsPage } from '../pages/settings-personal';

const MFA_SECRET = 'KVKFKRCPNZQUYMLXOVYDSQKJKZDTSRLD';

const RECOVERY_CODE = 'd04ea17f-e8b2-4afa-a9aa-57a2c735b30e';

const user = {
	email: INSTANCE_OWNER.email,
	password: INSTANCE_OWNER.password,
	firstName: 'User',
	lastName: 'A',
	mfaEnabled: false,
	mfaSecret: MFA_SECRET,
	mfaRecoveryCodes: [RECOVERY_CODE],
};

const admin = {
	email: INSTANCE_ADMIN.email,
	password: INSTANCE_ADMIN.password,
	firstName: 'Admin',
	lastName: 'B',
	mfaEnabled: false,
	mfaSecret: MFA_SECRET,
	mfaRecoveryCodes: [RECOVERY_CODE],
};

const mfaLoginPage = new MfaLoginPage();
const signinPage = new SigninPage();
const personalSettingsPage = new PersonalSettingsPage();
const mainSidebar = new MainSidebar();

describe('Two-factor authentication', { disableAutoLogin: true }, () => {
	beforeEach(() => {
		cy.request('POST', `${BACKEND_BASE_URL}/rest/e2e/reset`, {
			owner: user,
			members: [],
			admin,
		});
		cy.on('uncaught:exception', (error) => {
			expect(error.message).to.include('Not logged in');
			return false;
		});
		cy.intercept('GET', '/rest/mfa/qr').as('getMfaQrCode');
	});

	it('Should be able to login with MFA token', () => {
		const { email, password } = user;
		signinPage.actions.loginWithEmailAndPassword(email, password);
		personalSettingsPage.actions.enableMfa();
		mainSidebar.actions.signout();
		const token = generateOTPToken(user.mfaSecret);
		mfaLoginPage.actions.loginWithMfaToken(email, password, token);
		mainSidebar.actions.signout();
	});

	it('Should be able to login with recovery code', () => {
		const { email, password } = user;
		signinPage.actions.loginWithEmailAndPassword(email, password);
		personalSettingsPage.actions.enableMfa();
		mainSidebar.actions.signout();
		mfaLoginPage.actions.loginWithRecoveryCode(email, password, user.mfaRecoveryCodes[0]);
		mainSidebar.actions.signout();
	});

	it('Should be able to disable MFA in account', () => {
		const { email, password } = user;
		signinPage.actions.loginWithEmailAndPassword(email, password);
		personalSettingsPage.actions.enableMfa();
		mainSidebar.actions.signout();
		const token = generateOTPToken(user.mfaSecret);
		mfaLoginPage.actions.loginWithMfaToken(email, password, token);
		personalSettingsPage.actions.disableMfa();
		mainSidebar.actions.signout();
	});
});
refactor: Set up Cypress as pnpm workspace (no-changelog) (#6049) Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in> 2024-06-10 06:49:50 -07:00			`import generateOTPToken from 'cypress-otp';`
refactor: Enable import/order for design-system, workflow and @n8n packages (#10847) 2024-09-18 00:19:33 -07:00
			`import { MainSidebar } from './../pages/sidebar/main-sidebar';`
test: Add user type of admin to E2E tests (#7935) ## Summary Extend existing user types in the E2E database. Currently, we have only owner and member but we need also admin --------- Co-authored-by: Val <68596159+valya@users.noreply.github.com> 2023-12-06 05:31:06 -08:00			`import { INSTANCE_OWNER, INSTANCE_ADMIN, BACKEND_BASE_URL } from '../constants';`
feat(core): Add MFA (#4767) https://linear.app/n8n/issue/ADO-947/sync-branch-with-master-and-fix-fe-e2e-tets --------- Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in> 2023-08-23 19:59:16 -07:00			`import { SigninPage } from '../pages';`
			`import { MfaLoginPage } from '../pages/mfa-login';`
refactor: Enable import/order for design-system, workflow and @n8n packages (#10847) 2024-09-18 00:19:33 -07:00			`import { PersonalSettingsPage } from '../pages/settings-personal';`
feat(core): Add MFA (#4767) https://linear.app/n8n/issue/ADO-947/sync-branch-with-master-and-fix-fe-e2e-tets --------- Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in> 2023-08-23 19:59:16 -07:00
			`const MFA_SECRET = 'KVKFKRCPNZQUYMLXOVYDSQKJKZDTSRLD';`

			`const RECOVERY_CODE = 'd04ea17f-e8b2-4afa-a9aa-57a2c735b30e';`

			`const user = {`
			`email: INSTANCE_OWNER.email,`
			`password: INSTANCE_OWNER.password,`
			`firstName: 'User',`
			`lastName: 'A',`
			`mfaEnabled: false,`
			`mfaSecret: MFA_SECRET,`
			`mfaRecoveryCodes: [RECOVERY_CODE],`
			`};`

test: Add user type of admin to E2E tests (#7935) ## Summary Extend existing user types in the E2E database. Currently, we have only owner and member but we need also admin --------- Co-authored-by: Val <68596159+valya@users.noreply.github.com> 2023-12-06 05:31:06 -08:00			`const admin = {`
			`email: INSTANCE_ADMIN.email,`
			`password: INSTANCE_ADMIN.password,`
			`firstName: 'Admin',`
			`lastName: 'B',`
			`mfaEnabled: false,`
			`mfaSecret: MFA_SECRET,`
			`mfaRecoveryCodes: [RECOVERY_CODE],`
			`};`

feat(core): Add MFA (#4767) https://linear.app/n8n/issue/ADO-947/sync-branch-with-master-and-fix-fe-e2e-tets --------- Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in> 2023-08-23 19:59:16 -07:00			`const mfaLoginPage = new MfaLoginPage();`
			`const signinPage = new SigninPage();`
			`const personalSettingsPage = new PersonalSettingsPage();`
			`const mainSidebar = new MainSidebar();`

ci: Refactor e2e tests to be less flaky (no-changelog) (#9695) 2024-06-11 05:45:15 -07:00			`describe('Two-factor authentication', { disableAutoLogin: true }, () => {`
feat(core): Add MFA (#4767) https://linear.app/n8n/issue/ADO-947/sync-branch-with-master-and-fix-fe-e2e-tets --------- Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in> 2023-08-23 19:59:16 -07:00			`beforeEach(() => {`
			cy.request('POST', `${BACKEND_BASE_URL}/rest/e2e/reset`, {
			`owner: user,`
			`members: [],`
test: Add user type of admin to E2E tests (#7935) ## Summary Extend existing user types in the E2E database. Currently, we have only owner and member but we need also admin --------- Co-authored-by: Val <68596159+valya@users.noreply.github.com> 2023-12-06 05:31:06 -08:00			`admin,`
feat(core): Add MFA (#4767) https://linear.app/n8n/issue/ADO-947/sync-branch-with-master-and-fix-fe-e2e-tets --------- Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in> 2023-08-23 19:59:16 -07:00			`});`
refactor: Set up Cypress as pnpm workspace (no-changelog) (#6049) Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in> 2024-06-10 06:49:50 -07:00			`cy.on('uncaught:exception', (error) => {`
			`expect(error.message).to.include('Not logged in');`
feat(core): Add MFA (#4767) https://linear.app/n8n/issue/ADO-947/sync-branch-with-master-and-fix-fe-e2e-tets --------- Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in> 2023-08-23 19:59:16 -07:00			`return false;`
			`});`
fix: Flaky mfa e2e tests (no-changelog) (#7192) Github issue / Community forum post (link here to close automatically): 2023-10-06 02:06:38 -07:00			`cy.intercept('GET', '/rest/mfa/qr').as('getMfaQrCode');`
feat(core): Add MFA (#4767) https://linear.app/n8n/issue/ADO-947/sync-branch-with-master-and-fix-fe-e2e-tets --------- Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in> 2023-08-23 19:59:16 -07:00			`});`

fix: Flaky mfa e2e tests (no-changelog) (#7192) Github issue / Community forum post (link here to close automatically): 2023-10-06 02:06:38 -07:00			`it('Should be able to login with MFA token', () => {`
feat(core): Add MFA (#4767) https://linear.app/n8n/issue/ADO-947/sync-branch-with-master-and-fix-fe-e2e-tets --------- Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in> 2023-08-23 19:59:16 -07:00			`const { email, password } = user;`
			`signinPage.actions.loginWithEmailAndPassword(email, password);`
			`personalSettingsPage.actions.enableMfa();`
			`mainSidebar.actions.signout();`
ci: Fix prettier auto-formatting (no-changelog) (#7063) 2023-09-01 04:29:31 -07:00			`const token = generateOTPToken(user.mfaSecret);`
fix(core): Fix AddMfaColumns migration for sqlite (no-changelog) (#7006) When ever we have migrations that use `.addColumn` or `.dropColumn`, typeorm recreates tables for sqlite. so, we need to disable foreign key enforcement for sqlite, or else data in some tables can get deleted because of `ON DELETE CASCADE` [This has happened in the past](https://github.com/n8n-io/n8n/pull/6739), and we should really come up with a way to prevent this from happening again. --------- Signed-off-by: Oleg Ivaniv <me@olegivaniv.com> Co-authored-by: Oleg Ivaniv <me@olegivaniv.com> 2023-08-24 06:31:37 -07:00			`mfaLoginPage.actions.loginWithMfaToken(email, password, token);`
			`mainSidebar.actions.signout();`
feat(core): Add MFA (#4767) https://linear.app/n8n/issue/ADO-947/sync-branch-with-master-and-fix-fe-e2e-tets --------- Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in> 2023-08-23 19:59:16 -07:00			`});`

fix: Flaky mfa e2e tests (no-changelog) (#7192) Github issue / Community forum post (link here to close automatically): 2023-10-06 02:06:38 -07:00			`it('Should be able to login with recovery code', () => {`
feat(core): Add MFA (#4767) https://linear.app/n8n/issue/ADO-947/sync-branch-with-master-and-fix-fe-e2e-tets --------- Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in> 2023-08-23 19:59:16 -07:00			`const { email, password } = user;`
			`signinPage.actions.loginWithEmailAndPassword(email, password);`
			`personalSettingsPage.actions.enableMfa();`
			`mainSidebar.actions.signout();`
			`mfaLoginPage.actions.loginWithRecoveryCode(email, password, user.mfaRecoveryCodes[0]);`
			`mainSidebar.actions.signout();`
			`});`

fix: Flaky mfa e2e tests (no-changelog) (#7192) Github issue / Community forum post (link here to close automatically): 2023-10-06 02:06:38 -07:00			`it('Should be able to disable MFA in account', () => {`
feat(core): Add MFA (#4767) https://linear.app/n8n/issue/ADO-947/sync-branch-with-master-and-fix-fe-e2e-tets --------- Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in> 2023-08-23 19:59:16 -07:00			`const { email, password } = user;`
			`signinPage.actions.loginWithEmailAndPassword(email, password);`
			`personalSettingsPage.actions.enableMfa();`
			`mainSidebar.actions.signout();`
ci: Fix prettier auto-formatting (no-changelog) (#7063) 2023-09-01 04:29:31 -07:00			`const token = generateOTPToken(user.mfaSecret);`
fix(core): Fix AddMfaColumns migration for sqlite (no-changelog) (#7006) When ever we have migrations that use `.addColumn` or `.dropColumn`, typeorm recreates tables for sqlite. so, we need to disable foreign key enforcement for sqlite, or else data in some tables can get deleted because of `ON DELETE CASCADE` [This has happened in the past](https://github.com/n8n-io/n8n/pull/6739), and we should really come up with a way to prevent this from happening again. --------- Signed-off-by: Oleg Ivaniv <me@olegivaniv.com> Co-authored-by: Oleg Ivaniv <me@olegivaniv.com> 2023-08-24 06:31:37 -07:00			`mfaLoginPage.actions.loginWithMfaToken(email, password, token);`
			`personalSettingsPage.actions.disableMfa();`
			`mainSidebar.actions.signout();`
feat(core): Add MFA (#4767) https://linear.app/n8n/issue/ADO-947/sync-branch-with-master-and-fix-fe-e2e-tets --------- Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in> 2023-08-23 19:59:16 -07:00			`});`
			`});`