fix: unstable webauthn order

ory · Mar 21, 2022 · 6262160 · 6262160
1 parent a4a4e49
commit 6262160
Show file tree

Hide file tree

Showing 4 changed files with 19 additions and 18 deletions.
diff --git a/selfservice/flow/login/sort.go b/selfservice/flow/login/sort.go
@@ -17,6 +17,7 @@ func sortNodes(ctx context.Context, n node.Nodes) error {
 			node.LookupGroup,
 		}),
 		node.SortUseOrder([]string{
+			"csrf_token",
 			"identifier",
 			"password",
 		}),

diff --git a/...s/TestCompleteLogin-flow=mfa-case=webauthn_payload_is_set_when_identity_has_webauthn.json b/...s/TestCompleteLogin-flow=mfa-case=webauthn_payload_is_set_when_identity_has_webauthn.json
@@ -2,8 +2,9 @@
   {
     "attributes": {
       "disabled": false,
-      "name": "identifier",
+      "name": "csrf_token",
       "node_type": "input",
+      "required": true,
       "type": "hidden"
     },
     "group": "default",
@@ -14,9 +15,8 @@
   {
     "attributes": {
       "disabled": false,
-      "name": "csrf_token",
+      "name": "identifier",
       "node_type": "input",
-      "required": true,
       "type": "hidden"
     },
     "group": "default",

diff --git a/.../webauthn/.snapshots/TestCompleteLogin-flow=passwordless-case=webauthn_button_exists.json b/.../webauthn/.snapshots/TestCompleteLogin-flow=passwordless-case=webauthn_button_exists.json
@@ -2,34 +2,34 @@
   {
     "attributes": {
       "disabled": false,
-      "name": "identifier",
+      "name": "csrf_token",
       "node_type": "input",
       "required": true,
-      "type": "text",
-      "value": ""
+      "type": "hidden"
     },
     "group": "default",
     "messages": [],
-    "meta": {
-      "label": {
-        "id": 1070004,
-        "text": "ID",
-        "type": "info"
-      }
-    },
+    "meta": {},
     "type": "input"
   },
   {
     "attributes": {
       "disabled": false,
-      "name": "csrf_token",
+      "name": "identifier",
       "node_type": "input",
       "required": true,
-      "type": "hidden"
+      "type": "text",
+      "value": ""
     },
     "group": "default",
     "messages": [],
-    "meta": {},
+    "meta": {
+      "label": {
+        "id": 1070004,
+        "text": "ID",
+        "type": "info"
+      }
+    },
     "type": "input"
   },
   {

diff --git a/selfservice/strategy/webauthn/login_test.go b/selfservice/strategy/webauthn/login_test.go
@@ -286,7 +286,7 @@ func TestCompleteLogin(t *testing.T) {
 		t.Run("case=webauthn button exists", func(t *testing.T) {
 			client := testhelpers.NewClientWithCookies(t)
 			f := testhelpers.InitializeLoginFlowViaBrowser(t, client, publicTS, false, true)
-			testhelpers.SnapshotTExcept(t, f.Ui.Nodes, []string{"1.attributes.value"})
+			testhelpers.SnapshotTExcept(t, f.Ui.Nodes, []string{"0.attributes.value"})
 		})
 
 		t.Run("case=webauthn shows error if user tries to sign in but no such user exists", func(t *testing.T) {
@@ -459,7 +459,7 @@ func TestCompleteLogin(t *testing.T) {
 
 			apiClient := testhelpers.NewHTTPClientWithIdentitySessionToken(t, reg, id)
 			f := testhelpers.InitializeLoginFlowViaBrowser(t, apiClient, publicTS, false, true, testhelpers.InitFlowWithAAL(identity.AuthenticatorAssuranceLevel2))
-			assert.Equal(t, gjson.GetBytes(id.Traits, "subject").String(), f.Ui.Nodes[0].Attributes.UiNodeInputAttributes.Value, jsonx.TestMarshalJSONString(t, f.Ui))
+			assert.Equal(t, gjson.GetBytes(id.Traits, "subject").String(), f.Ui.Nodes[1].Attributes.UiNodeInputAttributes.Value, jsonx.TestMarshalJSONString(t, f.Ui))
 			testhelpers.SnapshotTExcept(t, f.Ui.Nodes, []string{
 				"0.attributes.value",
 				"1.attributes.value",