Cockatrice/webclient/integration/src/websocket/password-reset.spec.ts

// Password-reset scenarios — the 3-step forgot-password flow. Each step
// is a separate connect → handshake → command → disconnect cycle.

import { create } from '@bufbuild/protobuf';
import { describe, expect, it } from 'vitest';

import { Data } from '@app/types';
import { store } from '@app/store';
import { WebsocketTypes } from '@app/websocket/types';

import { connectAndHandshake } from '../helpers/setup';
import {
  buildResponse,
  buildResponseMessage,
  deliverMessage,
} from '../helpers/protobuf-builders';
import { findLastSessionCommand } from '../helpers/command-capture';

describe('password reset', () => {
  it('forgotPasswordRequest sends command and disconnects on success', () => {
    connectAndHandshake({
      reason: WebsocketTypes.WebSocketConnectReason.PASSWORD_RESET_REQUEST as const,
      host: 'localhost',
      port: '4748',
      userName: 'alice',
    });

    const req = findLastSessionCommand(Data.Command_ForgotPasswordRequest_ext);
    expect(req.value.userName).toBe('alice');

    deliverMessage(buildResponseMessage(buildResponse({
      cmdId: req.cmdId,
      responseCode: Data.Response_ResponseCode.RespOk,
      ext: Data.Response_ForgotPasswordRequest_ext,
      value: create(Data.Response_ForgotPasswordRequestSchema, {
        challengeEmail: 'a@example.com',
      }),
    })));

    expect(store.getState().server.status.state).toBe(WebsocketTypes.StatusEnum.DISCONNECTED);
  });

  it('forgotPasswordChallenge sends command with userName and email', () => {
    connectAndHandshake({
      reason: WebsocketTypes.WebSocketConnectReason.PASSWORD_RESET_CHALLENGE as const,
      host: 'localhost',
      port: '4748',
      userName: 'alice',
      email: 'alice@example.com',
    });

    const challenge = findLastSessionCommand(Data.Command_ForgotPasswordChallenge_ext);
    expect(challenge.value.userName).toBe('alice');
    expect(challenge.value.email).toBe('alice@example.com');

    deliverMessage(buildResponseMessage(buildResponse({
      cmdId: challenge.cmdId,
      responseCode: Data.Response_ResponseCode.RespOk,
    })));

    expect(store.getState().server.status.state).toBe(WebsocketTypes.StatusEnum.DISCONNECTED);
  });

  it('forgotPasswordReset sends command with userName, token, and newPassword', () => {
    connectAndHandshake({
      reason: WebsocketTypes.WebSocketConnectReason.PASSWORD_RESET as const,
      host: 'localhost',
      port: '4748',
      userName: 'alice',
      token: 'reset-token-123',
      newPassword: 'new-secret',
    });

    const reset = findLastSessionCommand(Data.Command_ForgotPasswordReset_ext);
    expect(reset.value.userName).toBe('alice');
    expect(reset.value.token).toBe('reset-token-123');
    expect(reset.value.newPassword).toBe('new-secret');

    deliverMessage(buildResponseMessage(buildResponse({
      cmdId: reset.cmdId,
      responseCode: Data.Response_ResponseCode.RespOk,
    })));

    expect(store.getState().server.status.state).toBe(WebsocketTypes.StatusEnum.DISCONNECTED);
  });
});