Merge pull request #3148 from appwrite/fix-account-bugs

fix(account): magic url and sessions locale
2024-07-03 13:41:01 +12:00 · 2022-04-25 15:59:31 +02:00 · 2022-04-25 15:59:31 +02:00 · 68cb0dc281
parent b9764f3d5d 501563f8c4
commit 68cb0dc281
2 changed files with 24 additions and 14 deletions
--- a/app/controllers/api/account.php
+++ b/app/controllers/api/account.php
@ -838,6 +838,7 @@ App::put('/v1/account/sessions/magic-url')
        }

        $user
+            ->setAttribute('emailVerification', true)
            ->setAttribute('sessions', $session, Document::SET_TYPE_APPEND)
            ->setAttribute('tokens', $tokens);

@ -868,9 +869,7 @@ App::put('/v1/account/sessions/magic-url')
            ->setStatusCode(Response::STATUS_CODE_CREATED)
        ;

-        $countryName = (isset($countries[strtoupper($session->getAttribute('countryCode'))]))
-        ? $countries[strtoupper($session->getAttribute('countryCode'))]
-        : $locale->getText('locale.country.unknown');
+        $countryName = $locale->getText('countries.'.strtolower($session->getAttribute('countryCode')), $locale->getText('locale.country.unknown'));

        $session
            ->setAttribute('current', true)
@ -1013,9 +1012,7 @@ App::post('/v1/account/sessions/anonymous')
            ->setStatusCode(Response::STATUS_CODE_CREATED)
        ;

-        $countryName = (isset($countries[strtoupper($session->getAttribute('countryCode'))]))
-        ? $countries[strtoupper($session->getAttribute('countryCode'))]
-        : $locale->getText('locale.country.unknown');
+        $countryName = $locale->getText('countries.'.strtolower($session->getAttribute('countryCode')), $locale->getText('locale.country.unknown'));

        $session
            ->setAttribute('current', true)
@ -1280,15 +1277,13 @@ App::get('/v1/account/sessions/:sessionId')

        $sessions = $user->getAttribute('sessions', []);
        $sessionId = ($sessionId === 'current')
-        ? Auth::sessionVerify($user->getAttribute('sessions'), Auth::$secret)
-        : $sessionId;
+            ? Auth::sessionVerify($user->getAttribute('sessions'), Auth::$secret)
+            : $sessionId;

        foreach ($sessions as $session) {/** @var Document $session */
            if ($sessionId == $session->getId()) {

-                $countryName = (isset($countries[strtoupper($session->getAttribute('countryCode'))]))
-                ? $countries[strtoupper($session->getAttribute('countryCode'))]
-                : $locale->getText('locale.country.unknown');
+                $countryName = $locale->getText('countries.'.strtolower($session->getAttribute('countryCode')), $locale->getText('locale.country.unknown'));

                $session
                    ->setAttribute('current', ($session->getAttribute('secret') == Auth::hash(Auth::$secret)))
@ -1622,7 +1617,7 @@ App::delete('/v1/account/sessions/:sessionId')
                if ($session->getAttribute('secret') == Auth::hash(Auth::$secret)) { // If current session delete the cookies too
                    $session
                        ->setAttribute('current', true)
-                        ->setAttribute('countryName', (isset($countries[strtoupper($session->getAttribute('countryCode'))])) ? $countries[strtoupper($session->getAttribute('countryCode'))] : $locale->getText('locale.country.unknown'))
+                        ->setAttribute('countryName', $locale->getText('countries.'.strtolower($session->getAttribute('countryCode')), $locale->getText('locale.country.unknown')))
                    ;

                    if (!Config::getParam('domainVerification')) {
@ -1806,7 +1801,7 @@ App::delete('/v1/account/sessions')

            $session
                ->setAttribute('current', false)
-                ->setAttribute('countryName', (isset($countries[strtoupper($session->getAttribute('countryCode'))])) ? $countries[strtoupper($session->getAttribute('countryCode'))] : $locale->getText('locale.country.unknown'))
+                ->setAttribute('countryName', $locale->getText('countries.'.strtolower($session->getAttribute('countryCode')), $locale->getText('locale.country.unknown')))
            ;

            if ($session->getAttribute('secret') == Auth::hash(Auth::$secret)) { // If current session delete the cookies too
--- a/tests/e2e/Services/Account/AccountBase.php
+++ b/tests/e2e/Services/Account/AccountBase.php
@ -1279,7 +1279,7 @@ trait AccountBase
        $expireTime = strpos($lastEmail['text'], 'expire='.$response['body']['expire'], 0);

        $this->assertNotFalse($expireTime);
-        
+
        $secretTest = strpos($lastEmail['text'], 'secret='.$response['body']['secret'], 0);

        $this->assertNotFalse($secretTest);
@ -1339,6 +1339,7 @@ trait AccountBase
    {
        $id = $data['id'] ?? '';
        $token = $data['token'] ?? '';
+        $email = $data['email'] ?? '';

        /**
         * Test for SUCCESS
@ -1361,6 +1362,20 @@ trait AccountBase
        $sessionId = $response['body']['$id'];
        $session = $this->client->parseCookie((string)$response['headers']['set-cookie'])['a_session_'.$this->getProject()['$id']];

+        $response = $this->client->call(Client::METHOD_GET, '/account', array_merge([
+            'origin' => 'http://localhost',
+            'content-type' => 'application/json',
+            'x-appwrite-project' => $this->getProject()['$id'],
+            'cookie' => 'a_session_'.$this->getProject()['$id'].'=' . $session,
+        ]));
+
+        $this->assertEquals($response['headers']['status-code'], 200);
+        $this->assertNotEmpty($response['body']);
+        $this->assertNotEmpty($response['body']['$id']);
+        $this->assertIsNumeric($response['body']['registration']);
+        $this->assertEquals($response['body']['email'], $email);
+        $this->assertTrue($response['body']['emailVerification']);
+
        /**
         * Test for FAILURE
         */