LG-13761: ProofingComponents to store real vendor used to verify document PII #11499
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,6 +1,46 @@ | ||
| # frozen_string_literal: true | ||
|
|
||
| module Idv | ||
| # @attr address_edited [Boolean, nil] | ||
| # @attr address_verification_mechanism [String, nil] | ||
| # @attr applicant [Struct, nil] | ||
| # @attr document_capture_session_uuid [String, nil] | ||
| # @attr flow_path [String, nil] | ||
| # @attr go_back_path [String, nil] | ||
| # @attr gpo_code_verified [Boolean, nil] | ||
| # @attr had_barcode_attention_error [Boolean, nil] | ||
| # @attr had_barcode_read_failure [Boolean, nil] | ||
| # @attr idv_consent_given [Boolean, nil] | ||
| # @attr idv_consent_given_at [String, nil] | ||
| # @attr idv_phone_step_document_capture_session_uuid [String, nil] | ||
| # @attr mail_only_warning_shown [Boolean, nil] | ||
| # @attr opted_in_to_in_person_proofing [Boolean, nil] | ||
| # @attr personal_key [String, nil] | ||
| # @attr personal_key_acknowledged [Boolean, nil] | ||
| # @attr phone_for_mobile_flow [String, nil] | ||
| # @attr previous_phone_step_params [Array] | ||
| # @attr previous_ssn [String, nil] | ||
| # @attr profile_id [String, nil] | ||
| # @attr proofing_started_at [String, nil] | ||
| # @attr redo_document_capture [Boolean, nil] | ||
| # @attr resolution_successful [Boolean, nil] | ||
| # @attr selfie_check_performed [Boolean, nil] | ||
| # @attr selfie_check_required [Boolean, nil] | ||
| # @attr skip_doc_auth [Boolean, nil] | ||
| # @attr skip_doc_auth_from_handoff [Boolean, nil] | ||
| # @attr skip_doc_auth_from_how_to_verify [Boolean, nil] | ||
| # @attr skip_hybrid_handoff [Boolean, nil] | ||
| # @attr source_check_vendor [String, nil] | ||
| # @attr ssn [String, nil] | ||
| # @attr threatmetrix_review_status [String, nil] | ||
| # @attr threatmetrix_session_id [String, nil] | ||
| # @attr user_phone_confirmation [Boolean, nil] | ||
| # @attr vendor_phone_confirmation [Boolean, nil] | ||
| # @attr verify_info_step_document_capture_session_uuid [String, nil] | ||
| # @attr welcome_visited [Boolean, nil] | ||
| # @attr_reader current_user [User] | ||
| # @attr_reader gpo_otp [String, nil] | ||
| # @attr_reader service_provider [ServiceProvider] | ||
lmgeorge marked this conversation as resolved.
Show resolved
Hide resolved
|
||
| class Session | ||
| VALID_SESSION_ATTRIBUTES = %i[ | ||
| address_edited | ||
|
|
@@ -25,6 +65,7 @@ class Session | |
| profile_id | ||
| proofing_started_at | ||
| redo_document_capture | ||
| source_check_vendor | ||
| resolution_successful | ||
| selfie_check_performed | ||
| selfie_check_required | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -59,7 +59,7 @@ def out_of_aamva_jurisdiction_result | |
| errors: {}, | ||
| exception: nil, | ||
| success: true, | ||
| vendor_name: Idp::Constants::Vendors::AAMVA_UNSUPPORTED_JURISDICTION, | ||
| ) | ||
| end | ||
|
|
||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -16,6 +16,9 @@ module Vendors | |
| MOCK = 'mock' | ||
| USPS = 'usps' | ||
| AAMVA = 'aamva' | ||
| AAMVA_UNSUPPORTED_JURISDICTION = 'UnsupportedJurisdiction' | ||
| STATE_ID_MOCK = 'StateIdMock' | ||
| SOURCE_CHECK = [AAMVA, AAMVA_UNSUPPORTED_JURISDICTION, STATE_ID_MOCK].freeze | ||
|
There was a problem hiding this comment. (Possible bikeshedding) Is there a clearer name for this? I.e., Suggesting only in case you agree or have a better idea; I don't feel strongly at all here. There was a problem hiding this comment. I was on the fence about what to call this, but I wanted the relationship between this and There was a problem hiding this comment. I went back and forth about asking for There was a problem hiding this comment. Basically, |
||
| end | ||
|
|
||
| # US State and Territory codes are | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -396,18 +396,14 @@ | |
| end | ||
|
|
||
| context 'for an aamva request' do | ||
| let(:document_capture_session) do | ||
| DocumentCaptureSession.create(user:) | ||
| end | ||
|
|
||
| let(:success) { true } | ||
| let(:errors) { {} } | ||
| let(:exception) { nil } | ||
| let(:vendor_name) { 'aamva_placeholder' } | ||
|
There was a problem hiding this comment. will not approve without emoji vendor name |
||
|
|
||
| let(:async_state) do | ||
| # Here we're trying to match the store to redis -> read from redis flow this data travels | ||
|
|
@@ -436,6 +432,10 @@ | |
| document_capture_session.load_proofing_result | ||
| end | ||
|
|
||
| before do | ||
| allow(controller).to receive(:load_async_state).and_return(async_state) | ||
| end | ||
|
|
||
| context 'when aamva processes the request normally' do | ||
| it 'redirect to phone confirmation url' do | ||
| put :show | ||
|
|
@@ -458,7 +458,12 @@ | |
|
|
||
| event = @analytics.events['IdV: doc auth verify proofing results'].first | ||
| state_id = event.dig(:proofing_results, :context, :stages, :state_id) | ||
| expect(state_id).to match( | ||
| hash_including( | ||
| state_id_type: 'drivers_license', | ||
| vendor_name: 'aamva_placeholder', | ||
| ), | ||
| ) | ||
| end | ||
| end | ||
|
|
||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -41,7 +41,7 @@ | |
| { | ||
| document_check: 'mock', | ||
| document_type: 'state_id', | ||
| source_check: 'StateIdMock', | ||
| resolution_check: 'lexis_nexis', | ||
| threatmetrix: threatmetrix, | ||
| threatmetrix_review_status: 'pass', | ||
|
|
@@ -590,54 +590,54 @@ | |
| }, | ||
| 'IdV: phone confirmation form' => { | ||
| success: true, errors: {}, phone_type: :mobile, types: [:fixed_or_mobile], carrier: 'Test Mobile Carrier', country_code: 'US', area_code: '202', otp_delivery_preference: 'sms', | ||
| proofing_components: { document_check: 'usps', resolution_check: 'lexis_nexis', threatmetrix: threatmetrix, threatmetrix_review_status: 'pass', source_check: 'StateIdMock' } | ||
| }, | ||
| 'IdV: phone confirmation vendor' => { | ||
| success: true, errors: {}, vendor: { exception: nil, vendor_name: 'AddressMock', transaction_id: 'address-mock-transaction-id-123', timed_out: false, reference: '' }, new_phone_added: false, hybrid_handoff_phone_used: false, area_code: '202', country_code: 'US', phone_fingerprint: anything, | ||
| proofing_components: { address_check: 'lexis_nexis_address', document_check: 'usps', resolution_check: 'lexis_nexis', threatmetrix: threatmetrix, threatmetrix_review_status: 'pass', source_check: 'StateIdMock' } | ||
| }, | ||
| 'IdV: phone confirmation otp sent' => { | ||
| success: true, otp_delivery_preference: :sms, country_code: 'US', area_code: '202', adapter: :test, errors: {}, phone_fingerprint: anything, rate_limit_exceeded: false, telephony_response: anything, | ||
| proofing_components: { address_check: 'lexis_nexis_address', document_check: 'usps', resolution_check: 'lexis_nexis', threatmetrix: threatmetrix, threatmetrix_review_status: 'pass', source_check: 'StateIdMock' } | ||
| }, | ||
| 'IdV: phone confirmation otp visited' => { | ||
| proofing_components: { address_check: 'lexis_nexis_address', document_check: 'usps', resolution_check: 'lexis_nexis', threatmetrix: threatmetrix, threatmetrix_review_status: 'pass', source_check: 'StateIdMock' }, | ||
| }, | ||
| 'IdV: phone confirmation otp submitted' => { | ||
| success: true, code_expired: false, code_matches: true, otp_delivery_preference: :sms, second_factor_attempts_count: 0, errors: {}, | ||
| proofing_components: { document_check: 'usps', source_check: 'StateIdMock', resolution_check: 'lexis_nexis', threatmetrix: threatmetrix, threatmetrix_review_status: 'pass', address_check: 'lexis_nexis_address' } | ||
| }, | ||
| :idv_enter_password_visited => { | ||
| address_verification_method: 'phone', | ||
| proofing_components: { document_check: 'usps', source_check: 'StateIdMock', resolution_check: 'lexis_nexis', threatmetrix: threatmetrix, threatmetrix_review_status: 'pass', address_check: 'lexis_nexis_address' }, | ||
| }, | ||
| :idv_enter_password_submitted => { | ||
| success: true, fraud_review_pending: false, fraud_rejection: false, gpo_verification_pending: false, in_person_verification_pending: true, proofing_workflow_time_in_seconds: 0.0, | ||
| proofing_components: { document_check: 'usps', source_check: 'StateIdMock', resolution_check: 'lexis_nexis', threatmetrix: threatmetrix, threatmetrix_review_status: 'pass', address_check: 'lexis_nexis_address' } | ||
| }, | ||
| 'IdV: final resolution' => { | ||
| success: true, fraud_review_pending: false, fraud_rejection: false, gpo_verification_pending: false, in_person_verification_pending: true, proofing_workflow_time_in_seconds: 0.0, | ||
| # NOTE: pending_profile_idv_level should be set here, a nil value is cached for current_user.pending_profile. | ||
| profile_history: match_array(kind_of(Idv::ProfileLogging)), | ||
| proofing_components: { document_check: 'usps', source_check: 'StateIdMock', resolution_check: 'lexis_nexis', threatmetrix: threatmetrix, threatmetrix_review_status: 'pass', address_check: 'lexis_nexis_address' } | ||
| }, | ||
| 'IdV: personal key visited' => { | ||
| in_person_verification_pending: true, | ||
| address_verification_method: 'phone', | ||
| encrypted_profiles_missing: false, pending_profile_idv_level: idv_level, | ||
| proofing_components: { document_check: 'usps', source_check: 'StateIdMock', resolution_check: 'lexis_nexis', threatmetrix: threatmetrix, threatmetrix_review_status: 'pass', address_check: 'lexis_nexis_address' } | ||
| }, | ||
| 'IdV: personal key acknowledgment toggled' => { | ||
| checked: true, pending_profile_idv_level: idv_level, | ||
| proofing_components: { document_check: 'usps', source_check: 'StateIdMock', resolution_check: 'lexis_nexis', threatmetrix: threatmetrix, threatmetrix_review_status: 'pass', address_check: 'lexis_nexis_address' } | ||
| }, | ||
| 'IdV: personal key submitted' => { | ||
| address_verification_method: 'phone', fraud_review_pending: false, fraud_rejection: false, in_person_verification_pending: true, pending_profile_idv_level: idv_level, | ||
| proofing_components: { document_check: 'usps', source_check: 'StateIdMock', resolution_check: 'lexis_nexis', threatmetrix: threatmetrix, threatmetrix_review_status: 'pass', address_check: 'lexis_nexis_address' } | ||
| }, | ||
| 'IdV: in person ready to verify visited' => { | ||
| pending_profile_idv_level: idv_level, | ||
| proofing_components: { document_check: 'usps', source_check: 'StateIdMock', resolution_check: 'lexis_nexis', threatmetrix: threatmetrix, threatmetrix_review_status: 'pass', address_check: 'lexis_nexis_address' }, | ||
| }, | ||
| 'IdV: user clicked what to bring link on ready to verify page' => {}, | ||
| 'IdV: user clicked sp link on ready to verify page' => {}, | ||
|
|
@@ -974,6 +974,7 @@ | |
| end | ||
| end | ||
| end | ||
|
|
||
| context 'Hybrid flow' do | ||
| context 'facial comparison not required - Happy path' do | ||
| before do | ||
|
|
@@ -1038,6 +1039,7 @@ | |
| end | ||
| end | ||
| end | ||
|
|
||
| context 'facial comparison required - Happy path' do | ||
| before do | ||
| allow_any_instance_of(DocAuth::Response).to receive(:selfie_status).and_return(:success) | ||
|
|
@@ -1097,6 +1099,7 @@ | |
| end | ||
| end | ||
| end | ||
|
|
||
| context 'facial comparison not required - Happy path' do | ||
| before do | ||
| allow(Telephony).to receive(:send_doc_auth_link).and_wrap_original do |impl, config| | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -268,7 +268,9 @@ def validate_verify_info_page | |
| def validate_verify_info_submit(user) | ||
| expect(page).to have_content(t('doc_auth.forms.doc_success')) | ||
| expect(user.proofing_component.resolution_check).to eq(Idp::Constants::Vendors::LEXIS_NEXIS) | ||
| expect(user.proofing_component.source_check).to satisfy do |v| | ||
| Idp::Constants::Vendors::SOURCE_CHECK.include?(v) | ||
| end | ||
| end | ||
|
|
||
| def validate_phone_page | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -31,6 +31,7 @@ | |
| proofing_components = user.active_profile.proofing_components | ||
| expect(proofing_components['document_check']).to eq('mock') | ||
| expect(proofing_components['document_type']).to eq('state_id') | ||
| expect(proofing_components['source_check']).to eq('StateIdMock') | ||
| end | ||
| end | ||
| end | ||
|
|
||
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
A/N: I feel like these two methods could be merged into an
handle_success_updates_for_idv_sessionmethod, but leaving as is for now.