describe('Jobs terms and conditions flow in Okta', () => { context('Shows the terms and conditions page on Sign In', () => { it('visits /agree/GRS after sign in if clientId=jobs parameter is set', () => { cy.intercept('GET', 'https://jobs.theguardian.com/', (req) => { req.reply(200); }); cy .createTestUser({ isUserEmailValidated: true, }) ?.then(({ emailAddress, finalPassword }) => { const visitUrl = '/signin?clientId=jobs&returnUrl=https%3A%2F%2Fjobs.theguardian.com%2F&usePasswordSignIn=true'; cy.visit(visitUrl); cy.get('input[name=email]').type(emailAddress); cy.get('input[name=password]').type(finalPassword); cy.get('[data-cy="main-form-submit-button"]').click(); cy.url().should('include', '/agree/GRS'); cy.get('[data-cy="main-form-submit-button"]').click(); cy.url().should('include', 'https://jobs.theguardian.com/'); }); }); }); context('Accepts Jobs terms and conditions and sets their name', () => { it('should redirect users with an invalid session cookie to reauthenticate', () => { // load the consents page as its on the same domain const termsAcceptPageUrl = `https://${Cypress.env( 'BASE_URI', )}/agree/GRS?returnUrl=https://profile.thegulocal.com/signin?returnUrl=https%3A%2F%2Fm.code.dev-theguardian.com%2F`; cy.setCookie('idx', 'invalid-cookie'); cy.visit(termsAcceptPageUrl); cy.url().should( 'include', 'https://profile.thegulocal.com/reauthenticate', ); }); it('should redirect users with no session cookie to the signin page', () => { // load the consents page as its on the same domain const termsAcceptPageUrl = `https://${Cypress.env( 'BASE_URI', )}/agree/GRS?returnUrl=https://profile.thegulocal.com/healthcheck`; cy.visit(termsAcceptPageUrl); cy.url().should( 'include', 'https://profile.thegulocal.com/signin?returnUrl=', ); }); it('should show the jobs terms page for users who do not have first/last name set, but are jobs users', () => { cy .createTestUser({ isUserEmailValidated: true, }) ?.then(({ emailAddress, finalPassword }) => { // load the consents page as its on the same domain const postSignInReturnUrl = `https://${Cypress.env( 'BASE_URI', )}/welcome/review`; const visitUrl = `/signin?returnUrl=${encodeURIComponent( postSignInReturnUrl, )}&usePasswordSignIn=true`; cy.visit(visitUrl); cy.get('input[name=email]').type(emailAddress); cy.get('input[name=password]').type(finalPassword); cy.get('[data-cy="main-form-submit-button"]').click(); cy.url().should('include', '/welcome/review'); const termsAcceptPageUrl = `https://${Cypress.env( 'BASE_URI', )}/agree/GRS?returnUrl=https://profile.thegulocal.com/healthcheck`; // Create a test user without a first/last name who has `isJobsUser` set to true. cy.updateOktaTestUserProfile(emailAddress, { firstName: '', lastName: '', isJobsUser: true, }).then(() => { // clear oauth token cookies to simulate the user profile update cy.clearCookie('GU_ID_TOKEN', { domain: Cypress.env('BASE_URI') }); cy.clearCookie('GU_ACCESS_TOKEN', { domain: Cypress.env('BASE_URI'), }); cy.visit(termsAcceptPageUrl); cy.contains('Please complete your details for'); cy.contains(emailAddress); cy.contains('We will use these details on your job applications'); cy.get('input[name=firstName]').should('be.empty'); cy.get('input[name=secondName]').should('be.empty'); cy.get('input[name=firstName]').type('First Name'); cy.get('input[name=secondName]').type('Second Name'); cy.findByText('Save and continue').click(); // User should have `isJobsUser` set to true and First/Last name set to our custom values. cy.getTestOktaUser(emailAddress).then(({ profile, status }) => { const { firstName, lastName, isJobsUser } = profile; expect(status).to.eq('ACTIVE'); expect(firstName).to.eq('First Name'); expect(lastName).to.eq('Second Name'); expect(isJobsUser).to.eq(true); }); }); }); }); it('should redirect users who have already accepted the terms away', () => { cy .createTestUser({ isUserEmailValidated: true, }) ?.then(({ emailAddress, finalPassword }) => { const termsAcceptPageUrl = `https://${Cypress.env( 'BASE_URI', )}/agree/GRS?returnUrl=https://profile.thegulocal.com/healthcheck`; // load the consents page as its on the same domain const postSignInReturnUrl = `https://${Cypress.env( 'BASE_URI', )}/welcome/review`; const visitUrl = `/signin?returnUrl=${encodeURIComponent( postSignInReturnUrl, )}&usePasswordSignIn=true`; cy.visit(visitUrl); cy.get('input[name=email]').type(emailAddress); cy.get('input[name=password]').type(finalPassword); cy.get('[data-cy="main-form-submit-button"]').click(); cy.url().should('include', '/welcome/review'); cy.updateOktaTestUserProfile(emailAddress, { firstName: 'Test', lastName: 'User', isJobsUser: true, }).then(() => { cy.visit(termsAcceptPageUrl); cy.url().should( 'include', 'https://profile.thegulocal.com/healthcheck', ); const finalTermsAcceptPageUrl = `https://${Cypress.env( 'BASE_URI', )}/agree/GRS?returnUrl=https://profile.thegulocal.com/welcome/review`; cy.visit(finalTermsAcceptPageUrl, { failOnStatusCode: false }); // Make sure the returnURL is respected. cy.url().should( 'include', 'https://profile.thegulocal.com/welcome/review', ); }); }); }); it('should allow a non-jobs user to enter their first/last name and accept the terms', () => { cy .createTestUser({ isUserEmailValidated: true, }) ?.then(({ emailAddress, finalPassword }) => { const termsAcceptPageUrl = `https://${Cypress.env( 'BASE_URI', )}/agree/GRS?returnUrl=https://jobs.theguardian.com/`; // load the consents page as its on the same domain const postSignInReturnUrl = `https://${Cypress.env( 'BASE_URI', )}/welcome/review`; const visitUrl = `/signin?returnUrl=${encodeURIComponent( postSignInReturnUrl, )}&usePasswordSignIn=true`; cy.visit(visitUrl); cy.get('input[name=email]').type(emailAddress); cy.get('input[name=password]').type(finalPassword); cy.get('[data-cy="main-form-submit-button"]').click(); cy.url().should('include', '/welcome/review'); cy.visit(termsAcceptPageUrl); // check sign in has worked first cy.url().should('include', `/agree/GRS`); // check session cookie is set cy.getCookie('idx').should('exist'); // check idapi cookies are set cy.getCookie('GU_U').should('exist'); cy.contains('Welcome to Guardian Jobs'); // User should not be a jobs user yet and have their original first/last name. cy.getTestOktaUser(emailAddress).then(({ profile, status }) => { const { firstName, lastName, isJobsUser } = profile; expect(status).to.eq('ACTIVE'); cy.get('input[name=firstName]').should('contain.value', firstName); cy.get('input[name=secondName]').should('contain.value', lastName); expect(isJobsUser).to.eq(false); }); cy.get('input[name=firstName]').clear().type('First Name'); cy.get('input[name=secondName]').clear().type('Second Name'); // Intercept the external redirect page. // We just want to check that the redirect happens, not that the page loads. cy.intercept('GET', 'https://jobs.theguardian.com/', (req) => { req.reply(200); }); cy.findByText('Continue').click(); // Make sure the returnURL is respected. cy.url().should('include', 'https://jobs.theguardian.com/'); // User should have `isJobsUser` set to true and their First/Last name set. cy.getTestOktaUser(emailAddress).then(({ profile, status }) => { const { firstName, lastName, isJobsUser } = profile; expect(status).to.eq('ACTIVE'); expect(firstName).to.eq('First Name'); expect(lastName).to.eq('Second Name'); expect(isJobsUser).to.eq(true); }); }); }); }); });