Re-architect iOS XCUITest suite: per-test isolation + domain organization

Migrate the XCUITest suite off the legacy shared-account model (and the prior Django-style auth assumptions) to a parallel-safe, domain-organized architecture, validated end-to-end against the live Kratos stack. Isolation (parallel-safe by construction): - Core/Fixtures/TestAccount.swift: each test mints its own pre-verified Kratos identity (uit_<domain>_<uuid>@test.honeydue.local), logs in, seeds under its own token, and deletes the identity in teardown (cascading all data + clearing Kratos). No shared testuser; parallel workers no longer race. - AuthenticatedUITestCase rewritten to that model (member surface preserved); adds requiresResidence / seedAccountPreconditions to seed UI-gated data BEFORE login (a fresh account is empty at login). Organization (255 tests preserved, none dropped): - 21 domain suites under Auth/ Onboarding/ Residence/ Task/ Contractor/ Document/ Sharing/ Navigation/ Smoke/ CrossCutting/ E2E/, consistent <Domain>UITests naming. Removes the Suite1..11 / AAA_ / ZZ_ / Tests/Rebuild naming chaos and the overlapping task/residence/auth suites. Runner + test plans: - run_ui_tests.sh: Smoke gate -> Seed -> Parallel(8 workers) -> Sweep. The parallel phase runs the whole target minus phase-managed suites via -skip-testing, so new suites auto-include (no hand-maintained list to drift). Drops the 2-worker cap and Suite6 isolation (isolation made them moot). - HoneyDueUITests.xctestplan skips the 4 phase-managed suites; adds Smoke.xctestplan. Kratos auth fixes folded in (login/verify/reset endpoints removed under Kratos): real Mailpit verification codes replace the obsolete fixed "123456"; teardown deletes Kratos identities; admin-panel login uses the correct seeded password. Build green; isolation, parallelism, and the precondition/sharing migrations validated against the live stack (0 leaked accounts). Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
2026-06-05 16:26:50 -05:00
parent 09120e9d9d
commit c52ce4d497
44 changed files with 3824 additions and 3057 deletions
@@ -38,29 +38,24 @@ enum TestAccountManager {
        return session
    }

-    /// Create an unverified account (register only, no email verification).
-    /// Useful for testing the verification gate.
+    /// Create an unverified account (Kratos identity with an unverified email).
+    /// Useful for testing the verification gate. Returns a ready-to-use session.
    static func createUnverifiedAccount(
        file: StaticString = #filePath,
        line: UInt = #line
    ) -> TestSession? {
        let creds = uniqueCredentials()

-        guard let response = TestAccountAPIClient.register(
+        guard let session = TestAccountAPIClient.createUnverifiedAccount(
            username: creds.username,
            email: creds.email,
            password: creds.password
        ) else {
-            XCTFail("Failed to register unverified account for \(creds.username)", file: file, line: line)
+            XCTFail("Failed to create unverified account for \(creds.username)", file: file, line: line)
            return nil
        }

-        return TestSession(
-            token: response.token,
-            user: response.user,
-            username: creds.username,
-            password: creds.password
-        )
+        return session
    }

    // MARK: - Seeded Accounts
@@ -85,43 +80,4 @@ enum TestAccountManager {
        )
    }

-    // MARK: - Password Reset
-
-    /// Execute the full forgot→verify→reset cycle via the backend API.
-    static func resetPassword(
-        email: String,
-        newPassword: String,
-        file: StaticString = #filePath,
-        line: UInt = #line
-    ) -> Bool {
-        guard TestAccountAPIClient.forgotPassword(email: email) != nil else {
-            XCTFail("Forgot password request failed for \(email)", file: file, line: line)
-            return false
-        }
-
-        guard let verifyResponse = TestAccountAPIClient.verifyResetCode(email: email) else {
-            XCTFail("Verify reset code failed for \(email)", file: file, line: line)
-            return false
-        }
-
-        guard TestAccountAPIClient.resetPassword(resetToken: verifyResponse.resetToken, newPassword: newPassword) != nil else {
-            XCTFail("Reset password failed for \(email)", file: file, line: line)
-            return false
-        }
-
-        return true
-    }
-
-    // MARK: - Token Management
-
-    /// Invalidate a session token via the logout API.
-    static func invalidateToken(
-        _ session: TestSession,
-        file: StaticString = #filePath,
-        line: UInt = #line
-    ) {
-        if TestAccountAPIClient.logout(token: session.token) == nil {
-            XCTFail("Failed to invalidate token for \(session.username)", file: file, line: line)
-        }
-    }
 }