Allow registration and authentication without notificationAddress or …

…notificationType being present
OpenConext · Aug 5, 2024 · b4b01ab · b4b01ab
1 parent f8b9aac
commit b4b01ab
Show file tree

Hide file tree

Showing 5 changed files with 26 additions and 4 deletions.
diff --git a/dev/Command/AuthenticationCommand.php b/dev/Command/AuthenticationCommand.php
@@ -143,8 +143,8 @@ protected function execute(InputInterface $input, OutputInterface $output): int
             'sessionKey' => $session,
             'userId' => $userId,
             'response' => $response,
-            'notificationType' => $input->getOption('notificationType'),
-            'notificationAddress' => $input->getOption('notificationAddress'),
+            'notificationType' => $input->getOption('notificationType', ''),
+            'notificationAddress' => $input->getOption('notificationAddress', ''),
         ];
 
         $output->writeln([

diff --git a/src/Controller/TiqrAppApiController.php b/src/Controller/TiqrAppApiController.php
@@ -115,8 +115,8 @@ public function tiqr(UserAgentMatcherInterface $userAgentMatcher, Request $reque
             return new Response('Missing "operation" parameter in POST', Response::HTTP_BAD_REQUEST);
         }
 
-        $notificationType = $request->get('notificationType');
-        $notificationAddress = $request->get('notificationAddress');
+        $notificationType = $request->get('notificationType', '');
+        $notificationAddress = $request->get('notificationAddress', '');
         if ($operation === 'register') {
             $this->logger->notice(
                 'Got POST with registration response',

diff --git a/src/Features/Context/TiqrContext.php b/src/Features/Context/TiqrContext.php
@@ -173,6 +173,12 @@ public function userRegisterTheService(
             'notificationType' => $notificationType,
             'notificationAddress' => $notificationAddress,
         ];
+        if ($notificationType == 'NULL') {
+            unset($registrationBody['notificationType']);
+        }
+        if ($notificationAddress == 'NULL') {
+            unset($registrationBody['notificationAddress']);
+        }
 
         $client = $this->minkContext->getSession()->getDriver()->getClient();
         $client->request(
@@ -221,6 +227,12 @@ public function appAuthenticates(
             'notificationType' => $notificationType,
             'notificationAddress' => $notificationAddress,
         ];
+        if ($notificationType == 'NULL') {
+            unset($authenticationBody['notificationType']);
+        }
+        if ($notificationAddress == 'NULL') {
+            unset($authenticationBody['notificationAddress']);
+        }
         // Internal request does not like an absolute path.
         $authenticationUrl = str_replace('https://tiqr.dev.openconext.local', '', (string) $authenticationUrl);
 

diff --git a/src/Features/tiqrAuthentication.feature b/src/Features/tiqrAuthentication.feature
@@ -60,3 +60,8 @@ Feature: User
     # Try it with the actual correct password
     And the app authenticates to the service
     Then we have the authentication error 'ACCOUNT_BLOCKED'
+
+  Scenario: The app authenticats whithout updating notification address
+    Given the authentication QR code is scanned
+    When the app authenticates to the service with notification type "NULL" address: "NULL"
+    Then we have a authenticated user
diff --git a/src/Features/tiqrRegistration.feature b/src/Features/tiqrRegistration.feature
@@ -18,3 +18,8 @@ Feature: User
     And the mobile tiqr app identifies itself with the user agent "Bad UA"
     When the user registers the service
     Then tiqr errors with a message telling the user agent was wrong
+
+  Scenario: Registration without notification type and address is allowed
+    Given the registration QR code is scanned
+    When the user registers the service with notification type "NULL" address: "NULL"
+    Then we have a registered user