Add Login Spec

[jkmassel]

As discussed with @oguzkocer – there are a lot of different things that can happen during login, so let's document them so we can ensure we're testing them for each HTTP implementation (the native Rust one, Apple platforms' URLSession, and Android)

[oguzkocer]

@jkmassel I've left some comments about the Rust implementation. I haven't reviewed the documentation or the Swift changes yet.

[oguzkocer]

This says WordPress Admin, but it handles both /wp-login and wp-admin cases, should we rename it?

[crazytonyli]

Regarding the Rust API comments, I tried to make the changes myself. But as I was making changes to them, it came to me that you guys may have tried that already. So, I haven't gone too deep into them, but I'm happy to make some proof of concept changes if needed.

[crazytonyli]

This function does not seem to be used anywhere except unit tests.

[jkmassel]

Removed in 8e99aa7 – this was moved to Rust!

[crazytonyli]

This function is available on all Apple platforms. Maybe we can change this function to be something like this?

#if os(Linux)
  return session.data(for: request)
#else
  return session.data(for: request, delegate: executorDelegate)
#endif

[jkmassel]

Addressed in 23fdee9 – this was because all the development happened on macOS

[crazytonyli]

We don't need the parseCertificateChain function below if changing this casting statement to info["NSErrorPeerCertificateChainKey"] as? [SecCertificate]

[jkmassel]

Nice! Done in c07115c

[crazytonyli]

Can we change this function to fn api_discovery(&self, site_url: String) -> Result<Arc<AutoDiscoveryAttemptSuccess>, AutoDiscoveryAttemptFailure> and do the if-else checks below within Rust?

[oguzkocer]

The function currently returns AutoDiscoveryResult/AutoDiscoveryUniffiResult which is the result of combination of multiple attempts, so this suggestion wouldn't work. Happy to elaborate on it if you need more details.

[crazytonyli]

Yes. I'd love more details.

I haven't looked the how Kotlin uses the api_discovery function. But the Swift function here turns the AutoDiscoveryUniffiResult into either a success result or a failure, which essentially is Result<Arc<AutoDiscoveryAttemptSuccess>, AutoDiscoveryAttemptFailure>.

[crazytonyli]

This argument is not used.

[jkmassel]

Not by our code, but this is a good back-door way to add a user agent (for instance).

Should that just be a separate PR?

[crazytonyli]

The same feature can be achieved using URLSession. But I guess this argument would allow adding headers only for API requests originated from the library. I'm okay with it being in this PR if it's needed.

[jkmassel]

I'm hoping we can limit the number of things that a developer has to handle themselves in URLSession, but I guess we'll see?

[crazytonyli]

BTW, there is not much going on in this type. Can we use UniffiWpLoginClient directly? You'll need to add the loginURL(...) and credentials(...) helper functions to it, but I don't think that's a terrible thing to do.

[jkmassel]

I'd be fine if we get there eventually, but the name is wrong – nobody consuming this library should ever see UniffiWpLoginClient. At the very least we'll have to typealias it

[oguzkocer]

I haven't finished the review yet, but I left some pretty important comments about the Kotlin implementation which may affect the remaining files I haven't reviewed yet.

P.S: I usually review my comments before posting, but I am not able to do that at the moment and don't want to risk losing them. So, if there is anything poorly worded or plain incorrect, I apologize in advance as it was unintentional.

[oguzkocer]

Probably best to put this somewhere in the native directory, rather than under swift or kotlin.

[jkmassel]

I'd say let's do this as soon as we have a second item

[crazytonyli]

When the input is "google.com", the returned error is ParseUrlError.RelativeUrlWithoutBase. IMO that's an incorrect error. I'd expect the error to be probablyNotAWordPressSite.

[oguzkocer]

I tested this in Rust with the new combinedResult function from #652 and it returned ProbablyNotAWordPressSite as expected. Once this PR is updated, the issue should be resolved for Swift as well.

// Full error message for `google.com`
FindApiRoot {
    parsed_site_url: ParsedUrl {
        inner: Url {
            scheme: "https",
            cannot_be_a_base: false,
            username: "",
            password: None,
            host: Some(
                Domain(
                    "google.com",
                ),
            ),
            port: None,
            path: "/",
            query: None,
            fragment: None,
        },
    },
    find_api_root_failure: ProbablyNotAWordPressSite,
}

[crazytonyli]

@jkmassel Do you mind adding google.com as a test case, which should be fairly easy with @Test(arguments: ["google.com", "https://google.com"])?

[crazytonyli]

Left a couple of minor comments.

[crazytonyli]

This protocol can be removed.

We moved pretty much all the Kotlin stuff to #655