ACQE-5019 | PR Feedbacks

Author: akaash

dev/tests/integration/testsuite/Magento/Customer/Controller/ForgotPasswordPostTest.php

@@ -200,6 +200,8 @@ private function assertSuccessSessionMessage(string $email): void
      */
     public function testResetLinkSentAfterForgotPassword(): void
     {
+        $email = 'customer@example.com';
+
         // Getting and asserting actual default expiration period
         $defaultExpirationPeriod = 2;
         $actualExpirationPeriod = (int) $this->scopeConfig->getValue(
@@ -211,56 +213,66 @@ public function testResetLinkSentAfterForgotPassword(): void
             $actualExpirationPeriod
         );
 
-        // Updating expiration period
+        // Updating reset_link_expiration_period to 1 under customer configuration
         $this->resourceConfig->saveConfig(
             'customer/password/reset_link_expiration_period',
             1,
             ScopeConfigInterface::SCOPE_TYPE_DEFAULT,
             0
         );
 
+        // Click forgot password link and assert mail received with reset password link
+        $this->clickForgotPasswordAndAssertResetLinkReceivedInMail($email);
+    }
+
+    /**
+     * @magentoConfigFixture current_store customer/captcha/enable 0
+     * @magentoConfigFixture current_store customer/password/min_time_between_password_reset_requests 0
+     * @magentoConfigFixture current_store customer/password/max_number_password_reset_requests 0
+     * @magentoDataFixture Magento/Customer/_files/customer.php
+     *
+     * @depends testResetLinkSentAfterForgotPassword
+     * @return void
+     * @throws NoSuchEntityException
+     * @throws AlreadyExistsException
+     * @throws AuthenticationException
+     * @throws LocalizedException
+     */
+    public function testResetLinkExpirationByTimeout(): void
+    {
+        $this->reinitableConfig->reinit();
         $email = 'customer@example.com';
 
-        $this->getRequest()->setPostValue(['email' => $email]);
-        $this->getRequest()->setMethod(HttpRequest::METHOD_POST);
+        // Generating random reset password token
+        $rpData = $this->generateResetPasswordToken($email);
 
-        // Click on the forgot password
-        $this->dispatch('customer/account/forgotPasswordPost');
-        $this->assertRedirect($this->stringContains('customer/account/'));
-        $this->assertSessionMessages(
-            $this->equalTo(
-                [
-                    "If there is an account associated with {$email} you will receive an email with a link "
-                    . "to reset your password."
-                ]
-            ),
-            MessageInterface::TYPE_SUCCESS
-        );
+        // Resetting request and clearing cookie message
+        $this->resetRequest();
+        $this->clearCookieMessagesList();
 
-        $sendMessage = $this->transportBuilderMock->getSentMessage()->getBody()->getParts()[0]->getRawContent();
+        // Setting token and customer id to session
+        /** @var Session $customer */
+        $session = Bootstrap::getObjectManager()->get(Session::class);
+        $session->setRpToken($rpData['token']);
+        $session->setRpCustomerId($rpData['customerId']);
 
-        $this->assertStringContainsString(
-            'There was recently a request to change the password for your account',
-            $sendMessage
+        // Click on the reset password link and assert no expiration error message received
+        $this->clickResetPasswordLink($rpData['token'], $rpData['customerId']);
+        $this->assertSessionMessages(
+            $this->equalTo([]),
+            MessageInterface::TYPE_ERROR
         );
 
-        /** @var CustomerRegistry $customerRegistry */
-        $customerRegistry = $this->_objectManager->get(CustomerRegistry::class);
-        $customerData = $customerRegistry->retrieveByEmail($email);
-        $token = $customerData->getRpToken();
-        $customerId = $customerData->getId();
+        // Updating reset password created date
+        $this->updateResetPasswordCreatedDateAndTime($email, $rpData['customerId']);
 
-        // Asserting mail contains reset link
-        $this->assertEquals(
-            1,
-            Xpath::getElementsCountForXpath(
-                sprintf(
-                    '//a[contains(@href, \'customer/account/createPassword/?id=%1$d&token=%2$s\')]',
-                    $customerId,
-                    $token
-                ),
-                $sendMessage
-            )
+        // Clicking on the reset password link
+        $this->clickResetPasswordLink($rpData['token'], $rpData['customerId']);
+
+        // Asserting failed message after link expire
+        $this->assertSessionMessages(
+            $this->equalTo(['Your password reset link has expired.']),
+            MessageInterface::TYPE_ERROR
         );
     }
 
@@ -270,18 +282,50 @@ public function testResetLinkSentAfterForgotPassword(): void
      * @magentoConfigFixture current_store customer/password/max_number_password_reset_requests 0
      * @magentoDataFixture Magento/Customer/_files/customer.php
      *
-     * @depends testResetLinkSentAfterForgotPassword
+     * @depends testResetLinkExpirationByTimeout
      * @return void
      * @throws NoSuchEntityException
-     * @throws \Magento\Framework\Exception\AlreadyExistsException
-     * @throws \Magento\Framework\Exception\AuthenticationException
-     * @throws \Magento\Framework\Exception\LocalizedException
+     * @throws AlreadyExistsException
+     * @throws AuthenticationException
+     * @throws LocalizedException
      */
-    public function testResetLinkExpirationByTimeout(): void
+    public function testExpiredResetPasswordLinkAfterForgotPassword(): void
     {
-        $this->reinitableConfig->reinit();
         $email = 'customer@example.com';
 
+        // Click forgot password link and assert mail received with reset password link
+        $this->clickForgotPasswordAndAssertResetLinkReceivedInMail($email);
+
+        // Generating random reset password token
+        $rpData = $this->generateResetPasswordToken($email);
+
+        // Resetting request and clearing cookie message
+        $this->resetRequest();
+        $this->clearCookieMessagesList();
+
+        // Updating reset password created date
+        $this->updateResetPasswordCreatedDateAndTime($email, $rpData['customerId']);
+
+        // Clicking on the reset password link
+        $this->clickResetPasswordLink($rpData['token'], $rpData['customerId']);
+
+        // Asserting failed message after link expire
+        $this->assertSessionMessages(
+            $this->equalTo(['Your password reset link has expired.']),
+            MessageInterface::TYPE_ERROR
+        );
+    }
+
+    /**
+     * @param string $email
+     * @return array
+     * @throws AlreadyExistsException
+     * @throws AuthenticationException
+     * @throws LocalizedException
+     * @throws NoSuchEntityException
+     */
+    private function generateResetPasswordToken($email): array
+    {
         /** @var CustomerRegistry $customerRegistry */
         $customerRegistry = $this->_objectManager->get(CustomerRegistry::class);
         $customerData = $customerRegistry->retrieveByEmail($email);
@@ -292,44 +336,100 @@ public function testResetLinkExpirationByTimeout(): void
 
         $customerId = $customerData->getId();
 
-        $this->resetRequest();
-        $this->clearCookieMessagesList();
-
-        /** @var Session $customer */
-        $session = Bootstrap::getObjectManager()->get(Session::class);
-        $session->setRpToken($token);
-        $session->setRpCustomerId($customerId);
-
-        // Click on the reset password link
-        $this->getRequest()->setParam('token', $token)->setParam('id', $customerId);
-        $this->dispatch('customer/account/createPassword');
-        $this->assertSessionMessages(
-            $this->equalTo([]),
-            MessageInterface::TYPE_ERROR
-        );
+        return [
+            'token' => $token,
+            'customerId' => $customerId
+        ];
+    }
 
+    /**
+     * @param string $email
+     * @param int $customerId
+     * @return void
+     * @throws AlreadyExistsException
+     * @throws NoSuchEntityException
+     */
+    private function updateResetPasswordCreatedDateAndTime($email, $customerId): void
+    {
         $rpTokenCreatedAt = $this->dateTimeFactory->create()
             ->sub(\DateInterval::createFromDateString('2 hour'))
             ->format(DateTime::DATETIME_PHP_FORMAT);
 
-        // Updating reTokenCreatedAt field
+        /** @var CustomerRegistry $customerRegistry */
+        $customerRegistry = $this->_objectManager->get(CustomerRegistry::class);
+        $customerData = $customerRegistry->retrieveByEmail($email);
         $customerSecure = $customerRegistry->retrieveSecureData($customerId);
         $customerSecure->setRpTokenCreatedAt($rpTokenCreatedAt);
         $this->customerResource->save($customerData);
+    }
 
+    /**
+     * @param string $token
+     * @param int $customerId
+     * @return void
+     */
+    private function clickResetPasswordLink($token, $customerId): void
+    {
         $this->getRequest()->setParam('token', $token)->setParam('id', $customerId);
         $this->getRequest()->setMethod(HttpRequest::METHOD_GET);
         $this->dispatch('customer/account/createPassword');
+    }
 
-        // Asserting failed message after link expire
+    /**
+     * @param string $email
+     * @return void
+     * @throws NoSuchEntityException
+     */
+    private function clickForgotPasswordAndAssertResetLinkReceivedInMail($email): void
+    {
+        $this->getRequest()->setPostValue(['email' => $email]);
+        $this->getRequest()->setMethod(HttpRequest::METHOD_POST);
+
+        // Click on the forgot password link
+        $this->dispatch('customer/account/forgotPasswordPost');
+        $this->assertRedirect($this->stringContains('customer/account/'));
+
+        // Asserting the success message after forgot password
         $this->assertSessionMessages(
-            $this->equalTo(['Your password reset link has expired.']),
-            MessageInterface::TYPE_ERROR
+            $this->equalTo(
+                [
+                    "If there is an account associated with {$email} you will receive an email with a link "
+                    . "to reset your password."
+                ]
+            ),
+            MessageInterface::TYPE_SUCCESS
+        );
+
+        // Asserting mail received after forgot password
+        $sendMessage = $this->transportBuilderMock->getSentMessage()->getBody()->getParts()[0]->getRawContent();
+        $this->assertStringContainsString(
+            'There was recently a request to change the password for your account',
+            $sendMessage
+        );
+
+        // Getting reset password token and customer id from the database
+        /** @var CustomerRegistry $customerRegistry */
+        $customerRegistry = $this->_objectManager->get(CustomerRegistry::class);
+        $customerData = $customerRegistry->retrieveByEmail($email);
+        $token = $customerData->getRpToken();
+        $customerId = $customerData->getId();
+
+        // Asserting mail contains reset link
+        $this->assertEquals(
+            1,
+            Xpath::getElementsCountForXpath(
+                sprintf(
+                    '//a[contains(@href, \'customer/account/createPassword/?id=%1$d&token=%2$s\')]',
+                    $customerId,
+                    $token
+                ),
+                $sendMessage
+            )
         );
     }
 
     /**
-     * @inheritDoc
+     * @return void
      */
     protected function resetRequest(): void
     {