defmodule BerrypodWeb.Auth.LoginTest do use BerrypodWeb.ConnCase import Phoenix.LiveViewTest import Berrypod.AccountsFixtures describe "login page" do test "renders login page", %{conn: conn} do {:ok, _lv, html} = live(conn, ~p"/users/log-in") assert html =~ "Log in" assert html =~ "Set up your shop" assert html =~ "Log in with email" end end describe "user login - magic link" do test "sends magic link email when user exists", %{conn: conn} do user = user_fixture() {:ok, lv, _html} = live(conn, ~p"/users/log-in") {:ok, _lv, html} = form(lv, "#login_form_magic", user: %{email: user.email}) |> render_submit() |> follow_redirect(conn, ~p"/users/log-in") assert html =~ "If your email is in our system" assert Berrypod.Repo.get_by!(Berrypod.Accounts.UserToken, user_id: user.id).context == "login" end test "does not disclose if user is registered", %{conn: conn} do {:ok, lv, _html} = live(conn, ~p"/users/log-in") {:ok, _lv, html} = form(lv, "#login_form_magic", user: %{email: "idonotexist@example.com"}) |> render_submit() |> follow_redirect(conn, ~p"/users/log-in") assert html =~ "If your email is in our system" end end describe "user login - password" do test "redirects if user logs in with valid credentials", %{conn: conn} do user = user_fixture() |> set_password() {:ok, lv, _html} = live(conn, ~p"/users/log-in") form = form(lv, "#login_form_password", user: %{email: user.email, password: valid_user_password(), remember_me: true} ) conn = submit_form(form, conn) assert redirected_to(conn) == ~p"/setup" end test "redirects to login page with a flash error if credentials are invalid", %{ conn: conn } do {:ok, lv, _html} = live(conn, ~p"/users/log-in") form = form(lv, "#login_form_password", user: %{email: "test@email.com", password: "123456"}) render_submit(form, %{user: %{remember_me: true}}) conn = follow_trigger_action(form, conn) assert Phoenix.Flash.get(conn.assigns.flash, :error) == "Invalid email or password" assert redirected_to(conn) == ~p"/users/log-in" end end describe "login navigation" do test "redirects to setup page when the setup link is clicked", %{conn: conn} do {:ok, lv, _html} = live(conn, ~p"/users/log-in") {:ok, _setup_live, setup_html} = lv |> element("main a", "Set up your shop") |> render_click() |> follow_redirect(conn, ~p"/setup") assert setup_html =~ "Set up your shop" end end describe "re-authentication (sudo mode)" do setup %{conn: conn} do user = user_fixture() %{user: user, conn: log_in_user(conn, user)} end test "shows login page with email filled in", %{conn: conn, user: user} do {:ok, _lv, html} = live(conn, ~p"/users/log-in") assert html =~ "You need to reauthenticate" refute html =~ "Register" assert html =~ "Log in with email" assert html =~ ~s(