Fix Connection update over-writing Connection settings.

[joshcanhelp]

Changes

This fixes a bug that can cause unintended changes to database connection settings when saving a new password policy. Specific changes:

• Add object property checking to WP_Auth0_Api_Client::update_connection() to avoid unnecessary payload errors from the server.
• Remove duplicate connection cleanup from WP_Auth0_Api_Operations::update_wordpress_connection()
• Return old password policy setting if an API call fails during validation
• Pass entire connection object to the update API call to avoid unintended settings changes in password policy validation and new connection creation
• Add a large number of tests to confirm behavior
• Docblocks to help investigation and refactoring in the future

References

• WP forum report

Testing

• This change adds unit test coverage
• I included manual testing steps above, if applicable
• This change has been tested on the latest version of the platform/language or why not

Scenario 1: Updates to the password policy in wp-admin

1. Start with a working WP-Auth0 install with a DB connection active
2. In the Auth0 dashboard, make sure the connection has a non-default setting (username required turned ON or custom DB migration)
3. In wp-admin, change the password policy and save

Expected behavior:

Password policy is changed, other settings are not affected.

Scenario 2: Connection creation during the setup wizard

1. Start with a WP install without WP-Auth0 installed
2. Activate the plugin and walk through the setup wizard (any option)

Expected behavior:

Install completes without errors in WordPress; New client created associated to new DB connection in Auth0.

Checklist

• All existing and new tests complete without errors
• All code quality tools/guidelines in the Contribution guide have been run/followed
• All active GitHub CI checks have passed

[joshcanhelp]

Moved to WP_Auth0_Api_Client::update_connection()

[joshcanhelp]

Confusing var name

[joshcanhelp]

Moved to WP_Auth0_Api_Client::update_connection()

[joshcanhelp]

Here's the bug ... $patch did not include existing Connection settings

[joshcanhelp]

Added strategy filter here to reduce the number of Connections returned.

[lbalmaceda]

If possible, can this be renamed to searchConnections (plural)?

[joshcanhelp]

Public static method so no, not currently. WP_Auth0_Api_Client is getting refactored one method at a time so it will go away soon.

[joshcanhelp]

These must not be set or the API endpoint returns a payload error.

[joshcanhelp]

If the array is not consecutive then json_encode converts this to an object rather than an array.

[lbalmaceda]

Consecutive as in following an ascending/descending order? 🤔 I don't understand why you're doing this. Can you rephrase please?

[joshcanhelp]

If $payload->enabled_clients is anything other than an array with consecutive keys (like, if one of the keys in the middle is removed) then json_encode() turns it into an object which is rejected by the server.

[joshcanhelp]

This method is only called in one place and the calling method already does this check.

[joshcanhelp]

Logic here is still not great but did not want to completely refactor this in a patch release. Main thing here is checking whether we have an array and avoiding the loop if we're not using the values later.

[lbalmaceda]

Sounds like the main check (the is $should_create_and_update_connection) is repeated right below this one. What about wrapping those like this... ?

if (!$should_create_and_update_connection){
   return;
   //early exit, no need to nest another if in that case 👍 
}

if (! empty( $connections ) && is_array( $connections )){
      //continue with this logic

     return; //return here if you don't want to keep going down the code
}

if ( $connection_exists === false ) {
     // the remaining stuff
}

I don't agree that doing this in a patch release is wrong in anyway. On the contrary, you're improving code readability and that's a plus for any PR.

[joshcanhelp]

I understand but looking for the minimum number of changes here. This is just one of many things that should be addressed in this method.

[joshcanhelp]

Ternary was too long and confusing to read.

[lbalmaceda]

In those cases what I recommend is extracting the boolean to a variable.

e.g.

$flag = isset( $connection->options ) && isset( $connection->options->passwordPolicy );
if ($flag){
  //do flag thing
}

Or even better, have a private method somewhere on the file that given a connection would return the password policy value, if any.

That a side, couldn't you get this connection id and pwd policy when you created it? Or you want to consider the case where the user would have changed it?

[joshcanhelp]

Lots of better ways to do this, yes :)

[joshcanhelp]

Avoiding the same settings override as reported in the original bug.

[codecov-io]

Codecov Report

Merging #582 into master will increase coverage by 6.4%.
The diff coverage is 95.65%.

@@            Coverage Diff             @@
##             master    #582     +/-   ##
==========================================
+ Coverage     21.29%   27.7%   +6.4%     
+ Complexity     1308    1307      -1     
==========================================
  Files            51      51             
  Lines          4263    4198     -65     
==========================================
+ Hits            908    1163    +255     
+ Misses         3355    3035    -320

Impacted Files	Coverage Δ	Complexity Δ
lib/admin/WP_Auth0_Admin_Advanced.php	19.48% <ø> (+0.16%)	64 <0> (ø)	⬇️
lib/WP_Auth0_Api_Client.php	31.37% <100%> (+29.56%)	85 <0> (+1)	⬆️
lib/admin/WP_Auth0_Admin_Features.php	13.1% <100%> (+13.1%)	39 <0> (ø)	⬇️
lib/WP_Auth0_Api_Operations.php	51.72% <100%> (+51.72%)	15 <0> (-3)	⬇️
...ib/initial-setup/WP_Auth0_InitialSetup_Consent.php	63.63% <90.9%> (+63.63%)	26 <0> (+1)	⬆️
WP_Auth0.php	24.18% <0%> (+2.45%)	64% <0%> (ø)	⬇️
lib/WP_Auth0_Options.php	85.14% <0%> (+12.87%)	28% <0%> (ø)	⬇️
... and 1 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 1ea429c...510335a. Read the comment docs.

[joshcanhelp]

Exit here to skip anything else that might process (foreach will throw an error if it's given anything other than an array)

[joshcanhelp]

Nothing changed at Auth0 so we should not change the setting in WordPress either.

[joshcanhelp]

Nothing changed at Auth0 so we should not change the setting in WordPress either.

[lbalmaceda]

if the user is giving you the API2 token make sure they know which scopes they must request

[lbalmaceda]

Consecutive as in following an ascending/descending order? 🤔 I don't understand why you're doing this. Can you rephrase please?

[lbalmaceda]

what is this last param used for? Seems it's being set as part of a migration step, but depending on when that's read it might be out of context. Shouldn't this be checked in that other place and time instead?

[joshcanhelp]

Just documenting, not refactoring

[lbalmaceda]

Sounds like the main check (the is $should_create_and_update_connection) is repeated right below this one. What about wrapping those like this... ?

if (!$should_create_and_update_connection){
   return;
   //early exit, no need to nest another if in that case 👍 
}

if (! empty( $connections ) && is_array( $connections )){
      //continue with this logic

     return; //return here if you don't want to keep going down the code
}

if ( $connection_exists === false ) {
     // the remaining stuff
}

I don't agree that doing this in a patch release is wrong in anyway. On the contrary, you're improving code readability and that's a plus for any PR.

[lbalmaceda]

Would be nice if you could provide in-line comments (in the code) to help anyone follow the logic.

[lbalmaceda]

In those cases what I recommend is extracting the boolean to a variable.

e.g.

$flag = isset( $connection->options ) && isset( $connection->options->passwordPolicy );
if ($flag){
  //do flag thing
}

Or even better, have a private method somewhere on the file that given a connection would return the password policy value, if any.

That a side, couldn't you get this connection id and pwd policy when you created it? Or you want to consider the case where the user would have changed it?

[lbalmaceda]

is this intentionally not having a } at the end of the string in test?

[joshcanhelp]

Yes, next character is a newline

[lbalmaceda]

what's the previous context? how can you ensure that invalid_state is an invalid state? normally, you'd manually set that state before this call.

[joshcanhelp]

There are only two values that callback_with_token accept here ... not actually state but that's the name used in the method.

[lbalmaceda]

how is this test logic different from the "test invalid state redirects"? Sounds like whatever caused the above test to fail should do the same here. What's changing? and if nothing is, why would an invalid_state scenario still make the create client request?

[joshcanhelp]

"social" is one of two valid "state" values here so this proceeds to the API call

[lbalmaceda]

why would this happen? Seems like this should belong in a different test case than "create new connection succeeds"

[joshcanhelp]

Maybe the token doesn't have the right scopes or HTTP error or any number of things.

[lbalmaceda]

In that case, that could be moved to a different test other than the "happy path" of creating the connection when missing

[lbalmaceda]

what changed here?

[joshcanhelp]

Technically nothing but that last arg is the number of params that the hooked function receives.

[lbalmaceda]

LGTM 🎉