Merge pull request #7080 from LibreSign/backport/7074/stable33

[stable33] feat: implement more e2e tests

Author: vitormattos

playwright/e2e/multi-signer-sequential.spec.ts

@@ -99,8 +99,23 @@ test('request signatures from two signers in sequential order', async ({ page })
 	await expect(page.getByText('Not signed yet')).toBeVisible()
 
 	// Now that signer01 has signed, signer02 must receive their notification.
-	await waitForEmailTo(mailpit, 'signer02@libresign.coop', 'LibreSign: There is a file for you to sign')
+	const email02 = await waitForEmailTo(mailpit, 'signer02@libresign.coop', 'LibreSign: There is a file for you to sign')
 
 	const afterSecond = await mailpit.searchMessages({ query: 'subject:"LibreSign: There is a file for you to sign"' })
 	expect(afterSecond.messages).toHaveLength(2)
+
+	// Signer02 signs via their email link.
+	// The admin is still logged out from the signer01 step, so this is unauthenticated.
+	const signLink02 = extractSignLink(email02.Text)
+	if (!signLink02) throw new Error('Sign link for signer02 not found in email')
+	await page.goto(signLink02)
+	await page.getByRole('button', { name: 'Sign the document.' }).click()
+	await page.getByRole('button', { name: 'Sign document' }).click()
+	await page.waitForURL('**/validation/**')
+	await expect(page.getByText('This document is valid')).toBeVisible()
+
+	// Both signers must appear as signed in the final validation view.
+	await expect(page.getByText('Signer 01')).toBeVisible()
+	await expect(page.getByText('Signer 02')).toBeVisible()
+	await expect(page.getByText('Not signed yet')).not.toBeVisible()
 })

playwright/e2e/send-reminder.spec.ts

@@ -0,0 +1,76 @@
+/**
+ * SPDX-FileCopyrightText: 2026 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+import { expect, test } from '@playwright/test'
+import { login } from '../support/nc-login'
+import { configureOpenSsl, setAppConfig } from '../support/nc-provisioning'
+import { createMailpitClient, waitForEmailTo } from '../support/mailpit'
+
+/**
+ * After an admin sends a signature request, they can re-notify a signer who
+ * has not yet signed by using the "Send reminder" action in the signer row.
+ * This test verifies that clicking "Send reminder" causes a second notification
+ * email to be delivered to the signer's mailbox.
+ */
+test('admin can send a reminder to a pending signer', async ({ page }) => {
+	await login(
+		page.request,
+		process.env.NEXTCLOUD_ADMIN_USER ?? 'admin',
+		process.env.NEXTCLOUD_ADMIN_PASSWORD ?? 'admin',
+	)
+
+	await configureOpenSsl(page.request, 'LibreSign Test', {
+		C: 'BR',
+		OU: ['Organization Unit'],
+		ST: 'Rio de Janeiro',
+		O: 'LibreSign',
+		L: 'Rio de Janeiro',
+	})
+
+	await setAppConfig(
+		page.request,
+		'libresign',
+		'identify_methods',
+		JSON.stringify([
+			{ name: 'account', enabled: false, mandatory: false },
+			{ name: 'email', enabled: true, mandatory: true, signatureMethods: { clickToSign: { enabled: true } }, can_create_account: false },
+		]),
+	)
+
+	const mailpit = createMailpitClient()
+	await mailpit.deleteMessages()
+
+	await page.goto('./apps/libresign')
+	await page.getByRole('button', { name: 'Upload from URL' }).click()
+	await page.getByRole('textbox', { name: 'URL of a PDF file' }).fill('https://raw.githubusercontent.com/LibreSign/libresign/main/tests/php/fixtures/pdfs/small_valid.pdf')
+	await page.getByRole('button', { name: 'Send' }).click()
+
+	// Only the email method is active — no tabs in the Add signer dialog
+	await page.getByRole('button', { name: 'Add signer' }).click()
+	await page.getByPlaceholder('Email').click()
+	await page.getByPlaceholder('Email').pressSequentially('signer01@libresign.coop', { delay: 50 })
+	await page.getByRole('option', { name: 'signer01@libresign.coop' }).click()
+	await page.getByRole('textbox', { name: 'Signer name' }).fill('Signer 01')
+	await page.getByRole('button', { name: 'Save' }).click()
+
+	await page.getByRole('button', { name: 'Request signatures' }).click()
+	await page.getByRole('button', { name: 'Send' }).click()
+
+	// Confirm the initial notification email arrived — one email so far.
+	await waitForEmailTo(mailpit, 'signer01@libresign.coop', 'LibreSign: There is a file for you to sign')
+	const afterInitial = await mailpit.searchMessages({ query: 'to:signer01@libresign.coop subject:"LibreSign: There is a file for you to sign"' })
+	expect(afterInitial.messages).toHaveLength(1)
+
+	// Find the signer row and click "Send reminder" from its action menu.
+	// The signer row renders as NcListItem with force-display-actions, so the
+	// three-dots NcActions toggle is always visible (aria-label="Actions").
+	await page.locator('li').filter({ hasText: 'Signer 01' }).getByRole('button', { name: 'Actions' }).click()
+	await page.getByRole('menuitem', { name: 'Send reminder' }).click()
+
+	// The reminder uses a different subject: "LibreSign: Changes into a file for you to sign".
+	await waitForEmailTo(mailpit, 'signer01@libresign.coop', 'LibreSign: Changes into a file for you to sign')
+	const afterReminder = await mailpit.searchMessages({ query: 'to:signer01@libresign.coop subject:"LibreSign: Changes into a file for you to sign"' })
+	expect(afterReminder.messages).toHaveLength(1)
+})

playwright/e2e/sign-email-token-authenticated.spec.ts

@@ -0,0 +1,94 @@
+/**
+ * SPDX-FileCopyrightText: 2026 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+import { test, expect } from '@playwright/test'
+import { login } from '../support/nc-login'
+import { configureOpenSsl, setAppConfig } from '../support/nc-provisioning'
+import { createMailpitClient, waitForEmailTo, extractSignLink, extractTokenFromEmail } from '../support/mailpit'
+
+/**
+ * An authenticated Nextcloud user can sign a document via the email+token
+ * identify method when the signer's email matches their Nextcloud account email.
+ *
+ * The admin's Nextcloud account email is admin@email.tld. This test adds that
+ * same email as the signer's email, keeps the admin logged in, and verifies the
+ * full email-token flow succeeds (the backend allows it because the session
+ * email matches the signer email in throwIfIsAuthenticatedWithDifferentAccount).
+ */
+test('sign document with email token as authenticated signer', async ({ page }) => {
+	await login(
+		page.request,
+		process.env.NEXTCLOUD_ADMIN_USER ?? 'admin',
+		process.env.NEXTCLOUD_ADMIN_PASSWORD ?? 'admin',
+	)
+
+	await configureOpenSsl(page.request, 'LibreSign Test', {
+		C: 'BR',
+		OU: ['Organization Unit'],
+		ST: 'Rio de Janeiro',
+		O: 'LibreSign',
+		L: 'Rio de Janeiro',
+	})
+
+	await setAppConfig(
+		page.request,
+		'libresign',
+		'identify_methods',
+		JSON.stringify([
+			{ name: 'account', enabled: false, mandatory: false },
+			{ name: 'email', enabled: true, mandatory: true, signatureMethods: { emailToken: { enabled: true } }, can_create_account: false },
+		]),
+	)
+
+	const mailpit = createMailpitClient()
+	await mailpit.deleteMessages()
+
+	await page.goto('./apps/libresign')
+	await page.getByRole('button', { name: 'Upload from URL' }).click()
+	await page.getByRole('textbox', { name: 'URL of a PDF file' }).fill('https://raw.githubusercontent.com/LibreSign/libresign/main/tests/php/fixtures/pdfs/small_valid.pdf')
+	await page.getByRole('button', { name: 'Send' }).click()
+
+	// Add the admin's own email as the signer.
+	// Only the email method is active so there are no tabs in the Add signer dialog.
+	await page.getByRole('button', { name: 'Add signer' }).click()
+	await page.getByPlaceholder('Email').click()
+	await page.getByPlaceholder('Email').pressSequentially('admin@email.tld', { delay: 50 })
+	await page.getByRole('option', { name: 'admin@email.tld' }).click()
+	await page.getByRole('textbox', { name: 'Signer name' }).fill('Admin')
+	await page.getByRole('button', { name: 'Save' }).click()
+
+	await page.getByRole('button', { name: 'Request signatures' }).click()
+	await page.getByRole('button', { name: 'Send' }).click()
+
+	// Get the sign link from the notification email sent to admin@email.tld.
+	// The admin is intentionally NOT logged out — this tests the authenticated path.
+	const notificationEmail = await waitForEmailTo(mailpit, 'admin@email.tld', 'LibreSign: There is a file for you to sign')
+	const signLink = extractSignLink(notificationEmail.Text)
+	if (!signLink) throw new Error('Sign link not found in notification email')
+
+	// Navigate to the sign link while still logged in as admin.
+	// throwIfIsAuthenticatedWithDifferentAccount allows this because
+	// admin@email.tld === the signer's email address.
+	await page.goto(signLink)
+	await page.getByRole('button', { name: 'Sign the document.' }).click()
+
+	// Complete the email token identification flow.
+	// The email field may be pre-filled with the admin's address; fill() is safe either way.
+	await page.getByRole('textbox', { name: 'Email' }).fill('admin@email.tld')
+	await page.getByRole('button', { name: 'Send verification code' }).click()
+
+	const tokenEmail = await waitForEmailTo(mailpit, 'admin@email.tld', 'LibreSign: Code to sign file')
+	const token = extractTokenFromEmail(tokenEmail.Text)
+	if (!token) throw new Error('Token not found in email')
+	await page.getByRole('textbox', { name: 'Enter your code' }).fill(token)
+	await page.getByRole('button', { name: 'Validate code' }).click()
+
+	await expect(page.getByRole('heading', { name: 'Signature confirmation' })).toBeVisible()
+	await expect(page.getByText('Your identity has been')).toBeVisible()
+	await page.getByRole('button', { name: 'Sign document' }).click()
+	await page.waitForURL('**/validation/**')
+	await expect(page.getByText('This document is valid')).toBeVisible()
+	await expect(page.getByText('Congratulations you have')).toBeVisible()
+})

playwright/e2e/sign-email-token-unauthenticated.spec.ts

@@ -82,4 +82,10 @@ test('sign document with email token as unauthenticated signer', async ({ page }
 	await page.waitForURL('**/validation/**');
 	await expect(page.getByText('This document is valid')).toBeVisible();
 	await expect(page.getByText('Congratulations you have')).toBeVisible();
+
+	// Revisit the sign link after the document has been signed.
+	// The signer must not be able to sign a second time.
+	await page.goto(signLink)
+	await expect(page.getByRole('button', { name: 'Sign the document.' })).not.toBeVisible({ timeout: 10_000 })
+	await expect(page.getByText('This document is valid')).toBeVisible();
 });

playwright/e2e/sign-wrong-session.spec.ts

@@ -0,0 +1,78 @@
+/**
+ * SPDX-FileCopyrightText: 2026 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+import { expect, test } from '@playwright/test'
+import { login } from '../support/nc-login'
+import { configureOpenSsl, setAppConfig } from '../support/nc-provisioning'
+import { createMailpitClient, waitForEmailTo, extractSignLink } from '../support/mailpit'
+
+/**
+ * When an authenticated Nextcloud user visits a sign link that belongs to a
+ * different email address, LibreSign must block the attempt with a clear error
+ * message instead of silently failing or allowing the wrong user to sign.
+ *
+ * The admin is logged in as admin@email.tld but the email sign request is for
+ * signer01@libresign.coop — they do NOT match, so the backend throws:
+ * "This document is not yours. Log out and use the sign link again."
+ */
+test('authenticated user sees error when accessing another signer\'s email link', async ({ page }) => {
+	await login(
+		page.request,
+		process.env.NEXTCLOUD_ADMIN_USER ?? 'admin',
+		process.env.NEXTCLOUD_ADMIN_PASSWORD ?? 'admin',
+	)
+
+	await configureOpenSsl(page.request, 'LibreSign Test', {
+		C: 'BR',
+		OU: ['Organization Unit'],
+		ST: 'Rio de Janeiro',
+		O: 'LibreSign',
+		L: 'Rio de Janeiro',
+	})
+
+	await setAppConfig(
+		page.request,
+		'libresign',
+		'identify_methods',
+		JSON.stringify([
+			{ name: 'account', enabled: false, mandatory: false },
+			{ name: 'email', enabled: true, mandatory: true, signatureMethods: { clickToSign: { enabled: true } }, can_create_account: false },
+		]),
+	)
+
+	const mailpit = createMailpitClient()
+	await mailpit.deleteMessages()
+
+	await page.goto('./apps/libresign')
+	await page.getByRole('button', { name: 'Upload from URL' }).click()
+	await page.getByRole('textbox', { name: 'URL of a PDF file' }).fill('https://raw.githubusercontent.com/LibreSign/libresign/main/tests/php/fixtures/pdfs/small_valid.pdf')
+	await page.getByRole('button', { name: 'Send' }).click()
+
+	// Email signer — only the email method is active so there are no tabs in the Add signer dialog
+	await page.getByRole('button', { name: 'Add signer' }).click()
+	await page.getByPlaceholder('Email').click()
+	await page.getByPlaceholder('Email').pressSequentially('signer01@libresign.coop', { delay: 50 })
+	await page.getByRole('option', { name: 'signer01@libresign.coop' }).click()
+	await page.getByRole('textbox', { name: 'Signer name' }).fill('Signer 01')
+	await page.getByRole('button', { name: 'Save' }).click()
+
+	await page.getByRole('button', { name: 'Request signatures' }).click()
+	await page.getByRole('button', { name: 'Send' }).click()
+
+	// Retrieve the sign link from the notification email sent to the signer.
+	// The admin is intentionally NOT logged out — this simulates the wrong-session scenario.
+	const email = await waitForEmailTo(mailpit, 'signer01@libresign.coop', 'LibreSign: There is a file for you to sign')
+	const signLink = extractSignLink(email.Text)
+	if (!signLink) throw new Error('Sign link not found in email')
+
+	// Admin is still logged in (admin@email.tld) but navigates to a link
+	// that belongs to signer01@libresign.coop — the emails do NOT match.
+	// The identity check runs on page load; the "Sign the document." button is
+	// never rendered — the error is shown directly in the signing status panel.
+	await page.goto(signLink)
+
+	// Backend must return the "wrong session" error via ACTION_DO_NOTHING.
+	await expect(page.getByText('This document is not yours. Log out and use the sign link again.')).toBeVisible()
+})

src/ExternalApp.vue

@@ -5,17 +5,22 @@
 
 <template>
 	<div class="external-app">
-		<router-view />
-		<RightSidebar />
+		<DefaultPageError v-if="isDoNothingError" />
+		<router-view v-else />
+		<RightSidebar v-if="!isDoNothingError" />
 	</div>
 </template>
 
 <script setup lang="ts">
-import { defineOptions } from 'vue'
+import { computed, defineOptions } from 'vue'
 
 defineOptions({ name: 'LibreSignExternal' })
 
+import DefaultPageError from './views/DefaultPageError.vue'
 import RightSidebar from './components/RightSidebar/RightSidebar.vue'
+import { initialActionCode, ACTION_CODES } from './helpers/ActionMapping'
+
+const isDoNothingError = computed(() => initialActionCode.value === ACTION_CODES.DO_NOTHING)
 </script>
 
 <style lang="scss">