feat: support time_zone for user registration context

2026-04-09 09:00:06 +02:00
parent e6b73a8f55
commit 7043af4cb3
40 changed files with 3452 additions and 164 deletions
@@ -46,6 +46,7 @@ func TestPublicHTTPEndToEndSendThenConfirm(t *testing.T) {
 		"challenge_id":      "challenge-1",
 		"code":              attempts[0].Input.Code,
 		"client_public_key": validClientPublicKey,
+		"time_zone":         publicConfirmTimeZone,
 	}
 	confirmResponse := postJSONValue(t, server.URL+"/api/v1/public/auth/confirm-email-code", confirmBody)

@@ -104,13 +105,36 @@ func TestPublicHTTPEndToEndInvalidClientPublicKey(t *testing.T) {
 	response := postJSON(
 		t,
 		server.URL+"/api/v1/public/auth/confirm-email-code",
-		`{"challenge_id":"challenge-123","code":"123456","client_public_key":"invalid"}`,
+		`{"challenge_id":"challenge-123","code":"123456","client_public_key":"invalid","time_zone":"`+publicConfirmTimeZone+`"}`,
 	)

 	assert.Equal(t, http.StatusBadRequest, response.StatusCode)
 	assert.JSONEq(t, `{"error":{"code":"invalid_client_public_key","message":"client_public_key is not a valid base64-encoded raw 32-byte Ed25519 public key"}}`, response.Body)
 }

+func TestPublicHTTPEndToEndInvalidTimeZone(t *testing.T) {
+	t.Parallel()
+
+	app := newEndToEndApp(t, endToEndOptions{
+		SeedChallenge: seedChallengeOptions{
+			ID:     "challenge-123",
+			Code:   "123456",
+			Status: challenge.StatusSent,
+		},
+	})
+	server := httptest.NewServer(app.handler)
+	defer server.Close()
+
+	response := postJSON(
+		t,
+		server.URL+"/api/v1/public/auth/confirm-email-code",
+		`{"challenge_id":"challenge-123","code":"123456","client_public_key":"`+validClientPublicKey+`","time_zone":"Mars/Olympus"}`,
+	)
+
+	assert.Equal(t, http.StatusBadRequest, response.StatusCode)
+	assert.JSONEq(t, `{"error":{"code":"invalid_request","message":"time_zone must be a valid IANA time zone name"}}`, response.Body)
+}
+
 func TestPublicHTTPEndToEndChallengeNotFound(t *testing.T) {
 	t.Parallel()

@@ -122,6 +146,7 @@ func TestPublicHTTPEndToEndChallengeNotFound(t *testing.T) {
 		"challenge_id":      "missing",
 		"code":              "123456",
 		"client_public_key": validClientPublicKey,
+		"time_zone":         publicConfirmTimeZone,
 	})

 	assert.Equal(t, http.StatusNotFound, response.StatusCode)
@@ -146,6 +171,7 @@ func TestPublicHTTPEndToEndChallengeExpired(t *testing.T) {
 		"challenge_id":      "challenge-123",
 		"code":              "123456",
 		"client_public_key": validClientPublicKey,
+		"time_zone":         publicConfirmTimeZone,
 	})

 	assert.Equal(t, http.StatusGone, response.StatusCode)
@@ -169,6 +195,7 @@ func TestPublicHTTPEndToEndInvalidCode(t *testing.T) {
 		"challenge_id":      "challenge-123",
 		"code":              "654321",
 		"client_public_key": validClientPublicKey,
+		"time_zone":         publicConfirmTimeZone,
 	})

 	assert.Equal(t, http.StatusBadRequest, response.StatusCode)
@@ -192,6 +219,7 @@ func TestPublicHTTPEndToEndThrottledChallengeConfirmReturnsInvalidCode(t *testin
 		"challenge_id":      "challenge-123",
 		"code":              "123456",
 		"client_public_key": validClientPublicKey,
+		"time_zone":         publicConfirmTimeZone,
 	})

 	assert.Equal(t, http.StatusBadRequest, response.StatusCode)
@@ -226,6 +254,7 @@ func TestPublicHTTPEndToEndSessionLimitExceeded(t *testing.T) {
 		"challenge_id":      "challenge-1",
 		"code":              attempts[0].Input.Code,
 		"client_public_key": validClientPublicKey,
+		"time_zone":         publicConfirmTimeZone,
 	})

 	assert.Equal(t, http.StatusConflict, confirmResponse.StatusCode)