feat(api): add otp (sms and email) checks in session api (#6422)

* feat: add otp (sms and email) checks in session api * implement sending * fix tests * add tests * add integration tests * fix merge main and add tests * put default OTP Email url into config --------- Co-authored-by: Stefan Benz <46600784+stebenz@users.noreply.github.com>
2025-08-11 19:07:30 +00:00 · 2023-08-24 11:41:52 +02:00
parent 29fa3d417c
commit bb40e173bd
27 changed files with 2077 additions and 151 deletions
--- a/internal/command/crypto_test.go
+++ b/internal/command/crypto_test.go
@@ -33,6 +33,21 @@ func mockCode(code string, exp time.Duration) cryptoCodeFunc {
 	}
 }

+func mockCodeWithDefault(code string, exp time.Duration) cryptoCodeWithDefaultFunc {
+	return func(ctx context.Context, filter preparation.FilterToQueryReducer, _ domain.SecretGeneratorType, alg crypto.Crypto, _ *crypto.GeneratorConfig) (*CryptoCode, error) {
+		return &CryptoCode{
+			Crypted: &crypto.CryptoValue{
+				CryptoType: crypto.TypeEncryption,
+				Algorithm:  "enc",
+				KeyID:      "id",
+				Crypted:    []byte(code),
+			},
+			Plain:  code,
+			Expiry: exp,
+		}, nil
+	}
+}
+
 var (
 	testGeneratorConfig = crypto.GeneratorConfig{
 		Length:              12,
@@ -175,8 +190,9 @@ func Test_verifyCryptoCode(t *testing.T) {

 func Test_secretGenerator(t *testing.T) {
 	type args struct {
-		typ domain.SecretGeneratorType
-		alg crypto.Crypto
+		typ           domain.SecretGeneratorType
+		alg           crypto.Crypto
+		defaultConfig *crypto.GeneratorConfig
 	}
 	tests := []struct {
 		name      string
@@ -190,8 +206,9 @@ func Test_secretGenerator(t *testing.T) {
 			name:      "filter config error",
 			eventsore: eventstoreExpect(t, expectFilterError(io.ErrClosedPipe)),
 			args: args{
-				typ: domain.SecretGeneratorTypeVerifyEmailCode,
-				alg: crypto.CreateMockHashAlg(gomock.NewController(t)),
+				typ:           domain.SecretGeneratorTypeVerifyEmailCode,
+				alg:           crypto.CreateMockHashAlg(gomock.NewController(t)),
+				defaultConfig: emptyConfig,
 			},
 			wantErr: io.ErrClosedPipe,
 		},
@@ -201,8 +218,9 @@ func Test_secretGenerator(t *testing.T) {
 				eventFromEventPusher(testSecretGeneratorAddedEvent(domain.SecretGeneratorTypeVerifyEmailCode)),
 			)),
 			args: args{
-				typ: domain.SecretGeneratorTypeVerifyEmailCode,
-				alg: crypto.CreateMockHashAlg(gomock.NewController(t)),
+				typ:           domain.SecretGeneratorTypeVerifyEmailCode,
+				alg:           crypto.CreateMockHashAlg(gomock.NewController(t)),
+				defaultConfig: emptyConfig,
 			},
 			want:     crypto.NewHashGenerator(testGeneratorConfig, crypto.CreateMockHashAlg(gomock.NewController(t))),
 			wantConf: &testGeneratorConfig,
@@ -213,8 +231,31 @@ func Test_secretGenerator(t *testing.T) {
 				eventFromEventPusher(testSecretGeneratorAddedEvent(domain.SecretGeneratorTypeVerifyEmailCode)),
 			)),
 			args: args{
-				typ: domain.SecretGeneratorTypeVerifyEmailCode,
-				alg: crypto.CreateMockEncryptionAlg(gomock.NewController(t)),
+				typ:           domain.SecretGeneratorTypeVerifyEmailCode,
+				alg:           crypto.CreateMockEncryptionAlg(gomock.NewController(t)),
+				defaultConfig: emptyConfig,
+			},
+			want:     crypto.NewEncryptionGenerator(testGeneratorConfig, crypto.CreateMockEncryptionAlg(gomock.NewController(t))),
+			wantConf: &testGeneratorConfig,
+		},
+		{
+			name:      "hash generator with default config",
+			eventsore: eventstoreExpect(t, expectFilter()),
+			args: args{
+				typ:           domain.SecretGeneratorTypeVerifyEmailCode,
+				alg:           crypto.CreateMockHashAlg(gomock.NewController(t)),
+				defaultConfig: &testGeneratorConfig,
+			},
+			want:     crypto.NewHashGenerator(testGeneratorConfig, crypto.CreateMockHashAlg(gomock.NewController(t))),
+			wantConf: &testGeneratorConfig,
+		},
+		{
+			name:      "encryption generator with default config",
+			eventsore: eventstoreExpect(t, expectFilter()),
+			args: args{
+				typ:           domain.SecretGeneratorTypeVerifyEmailCode,
+				alg:           crypto.CreateMockEncryptionAlg(gomock.NewController(t)),
+				defaultConfig: &testGeneratorConfig,
 			},
 			want:     crypto.NewEncryptionGenerator(testGeneratorConfig, crypto.CreateMockEncryptionAlg(gomock.NewController(t))),
 			wantConf: &testGeneratorConfig,
@@ -225,15 +266,16 @@ func Test_secretGenerator(t *testing.T) {
 				eventFromEventPusher(testSecretGeneratorAddedEvent(domain.SecretGeneratorTypeVerifyEmailCode)),
 			)),
 			args: args{
-				typ: domain.SecretGeneratorTypeVerifyEmailCode,
-				alg: nil,
+				typ:           domain.SecretGeneratorTypeVerifyEmailCode,
+				alg:           nil,
+				defaultConfig: emptyConfig,
 			},
 			wantErr: errors.ThrowInternalf(nil, "COMMA-RreV6", "Errors.Internal unsupported crypto algorithm type %T", nil),
 		},
 	}
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
-			got, gotConf, err := secretGenerator(context.Background(), tt.eventsore.Filter, tt.args.typ, tt.args.alg)
+			got, gotConf, err := secretGenerator(context.Background(), tt.eventsore.Filter, tt.args.typ, tt.args.alg, tt.args.defaultConfig)
 			require.ErrorIs(t, err, tt.wantErr)
 			assert.IsType(t, tt.want, got)
 			assert.Equal(t, tt.wantConf, gotConf)