okta
diff --git a/‎okta-direct-auth/src/androidHostTest/kotlin/com/okta/directauth/DirectAuthenticationFlowImplTest.kt‎
Lines changed: 22 additions & 1 deletion b/‎okta-direct-auth/src/androidHostTest/kotlin/com/okta/directauth/DirectAuthenticationFlowImplTest.kt‎
Lines changed: 22 additions & 1 deletion
diff --git a/‎okta-direct-auth/src/androidHostTest/kotlin/com/okta/directauth/MockEngineUtil.kt‎
Lines changed: 38 additions & 11 deletions b/‎okta-direct-auth/src/androidHostTest/kotlin/com/okta/directauth/MockEngineUtil.kt‎
Lines changed: 38 additions & 11 deletions
@@ -1,16 +1,19 @@
 package com.okta.directauth
 
 import com.okta.directauth.http.KtorHttpExecutor
+import com.okta.directauth.model.Continuation
 import com.okta.directauth.model.PrimaryFactor
 import com.okta.directauth.model.DirectAuthenticationError
 import com.okta.directauth.model.DirectAuthenticationState
+import com.okta.directauth.model.OobChannel
 import io.ktor.client.HttpClient
 import kotlinx.coroutines.test.runTest
 import kotlinx.serialization.SerializationException
 import org.hamcrest.CoreMatchers.equalTo
 import org.hamcrest.CoreMatchers.instanceOf
 import org.hamcrest.MatcherAssert.assertThat
 import org.junit.Test
+import kotlin.jvm.java
 
 class DirectAuthenticationFlowImplTest {
 
@@ -67,9 +70,27 @@ class DirectAuthenticationFlowImplTest {
         }.getOrThrow()
 
         val state = flow.start("test_user", PrimaryFactor.Password("test_password"))
-        
+
         assertThat(state, instanceOf(DirectAuthenticationError.InternalError::class.java))
         assertThat((state as DirectAuthenticationError.InternalError).throwable, instanceOf(SerializationException::class.java))
         assertThat(flow.authenticationState.value, equalTo(state))
     }
+
+    @Test
+    fun start_withOobFactor_returnsContinuationPollState() = runTest {
+        val flow = DirectAuthenticationFlowBuilder.create(issuerUrl, clientId, scope) {
+            apiExecutor = KtorHttpExecutor(HttpClient(oobAuthenticatePushResponseMockEngine))
+        }.getOrThrow()
+
+        val state = flow.start("test_user", PrimaryFactor.Oob(OobChannel.PUSH))
+
+        assertThat(state, instanceOf(Continuation.OobPending::class.java))
+        val oobState = state as Continuation.OobPending
+        assertThat(oobState.bindingContext.oobCode, equalTo("example_oob_code"))
+        assertThat(oobState.bindingContext.channel, equalTo(OobChannel.PUSH))
+        assertThat(oobState.bindingContext.expiresIn, equalTo(120))
+        assertThat(oobState.bindingContext.interval, equalTo(5))
+
+        assertThat(flow.authenticationState.value, equalTo(state))
+    }
 }
@@ -9,27 +9,36 @@ import io.ktor.utils.io.ByteReadChannel
 
 const val TOKEN_RESPONSE_JSON =
     """{"access_token":"example_access_token","token_type":"Bearer","expires_in":3600,"scope":"openid email profile offline_access","refresh_token":"example_refresh_token","id_token":"example_id_token"}"""
-const val AUTHORIZATION_PENDING_JSON =
-    """{"error":"authorization_pending","error_description":"The user has not yet approved the push notification."}"""
-const val OAUTH2_ERROR_JSON =
-    """{"error":"invalid_grant","error_description":"The password was invalid."}"""
-const val SERVER_ERROR_JSON =
-    """{"errorCode":"E00000","errorSummary":"Internal Server Error"}"""
-const val MFA_REQUIRED_JSON =
-    """{"error":"mfa_required","error_description":"MFA is required for this transaction.","mfa_token":"example_mfa_token"}"""
-const val INVALID_MFA_REQUIRED_JSON =
-    """{"error":"mfa_required","error_description":"MFA is required for this transaction."}"""
+const val AUTHORIZATION_PENDING_JSON = """{"error":"authorization_pending","error_description":"The user has not yet approved the push notification."}"""
+const val OAUTH2_ERROR_JSON = """{"error":"invalid_grant","error_description":"The password was invalid."}"""
+const val SERVER_ERROR_JSON = """{"errorCode":"E00000","errorSummary":"Internal Server Error"}"""
+const val MFA_REQUIRED_JSON = """{"error":"mfa_required","error_description":"MFA is required for this transaction.","mfa_token":"example_mfa_token"}"""
+const val INVALID_MFA_REQUIRED_JSON = """{"error":"mfa_required","error_description":"MFA is required for this transaction."}"""
 const val UNKNOWN_JSON_TYPE = """{"unknown_json_type":"bad response"}"""
+const val OOB_AUTHENTICATE_PUSH_RESPONSE_JSON = """{"oob_code":"example_oob_code","channel":"push","binding_method":"none","expires_in":120,"interval":5}"""
+const val OOB_AUTHENTICATE_SMS_RESPONSE_JSON = """{"oob_code":"example_oob_code","channel":"sms","binding_method":"prompt","expires_in":120}"""
+const val OOB_AUTHENTICATE_VOICE_RESPONSE_JSON = """{"oob_code":"example_oob_code","channel":"voice","binding_method":"prompt","expires_in":120}"""
+const val OOB_AUTHENTICATE_TRANSFER_RESPONSE_JSON = """{"oob_code":"example_oob_code","channel":"push","binding_method":"transfer","binding_code":"95","expires_in":120,"interval":5}"""
+const val OOB_AUTHENTICATE_TRANSFER_NO_BINDING_CODE_RESPONSE_JSON = """{"oob_code":"example_oob_code","channel":"push","binding_method":"transfer","expires_in":120,"interval":5}"""
+
+// email is not a unsupported channel
+const val OOB_AUTHENTICATE_EMAIL_RESPONSE_JSON = """{"oob_code":"example_oob_code","channel":"email","binding_method":"prompt","expires_in":120}"""
+const val OOB_AUTHENTICATE_INVALID_BINDING_RESPONSE_JSON = """{"oob_code":"example_oob_code","channel":"push","binding_method":"bluetooth","expires_in":120}"""
+
+const val OOB_AUTHENTICATE_OAUTH2_ERROR_JSON = """{"error":"invalid_request","error_description":"abc is not a valid channel hint"}"""
+
 
 // Malformed JSON with trailing comma
 const val MALFORMED_JSON = """{"access_token": "token","token_type": "Bearer",}"""
 const val MALFORMED_JSON_ERROR_CODE = """{"errorCode": "error","errorSummary": "error description",}"""
 const val MALFORMED_JSON_ERROR = """{"error": "access_denied","error_description": "error description",}"""
 
+val contentType = headersOf("Content-Type", "application/json")
+
 fun createMockEngine(
     jsonResponse: String,
     httpStatusCode: HttpStatusCode,
-    headers: Headers = headersOf("Content-Type", "application/json")
+    headers: Headers = contentType
 ): MockEngine = MockEngine {
     respond(
         content = ByteReadChannel(jsonResponse),
@@ -64,6 +73,24 @@ val emptyResponseOkMockEngine = createMockEngine("", HttpStatusCode.OK)
 
 val malformedJsonOkMockEngine = createMockEngine(MALFORMED_JSON, HttpStatusCode.OK)
 
+val malformedJsonClientMockEngine = createMockEngine(MALFORMED_JSON_ERROR_CODE, HttpStatusCode.TooManyRequests)
+
 val malformedJsonErrorMockEngine = createMockEngine(MALFORMED_JSON_ERROR, HttpStatusCode.BadRequest)
 
 val malformedJsonErrorCodeMockEngine = createMockEngine(MALFORMED_JSON_ERROR_CODE, HttpStatusCode.BadRequest)
+
+val oobAuthenticatePushResponseMockEngine = createMockEngine(OOB_AUTHENTICATE_PUSH_RESPONSE_JSON, HttpStatusCode.OK)
+
+val oobAuthenticateSmsResponseMockEngine = createMockEngine(OOB_AUTHENTICATE_SMS_RESPONSE_JSON, HttpStatusCode.OK)
+
+val oobAuthenticateVoiceResponseMockEngine = createMockEngine(OOB_AUTHENTICATE_VOICE_RESPONSE_JSON, HttpStatusCode.OK)
+
+val oobAuthenticateTransferResponseMockEngine = createMockEngine(OOB_AUTHENTICATE_TRANSFER_RESPONSE_JSON, HttpStatusCode.OK)
+
+val oobAuthenticateTransferNoBindingCodeResponseMockEngine = createMockEngine(OOB_AUTHENTICATE_TRANSFER_NO_BINDING_CODE_RESPONSE_JSON, HttpStatusCode.OK)
+
+val oobAuthenticateEmailResponseMockEngine = createMockEngine(OOB_AUTHENTICATE_EMAIL_RESPONSE_JSON, HttpStatusCode.OK)
+
+val oobAuthenticateInvalidBindingResponseMockEngine = createMockEngine(OOB_AUTHENTICATE_INVALID_BINDING_RESPONSE_JSON, HttpStatusCode.OK)
+
+val oobAuthenticateOauth2ErrorMockEngine = createMockEngine(OOB_AUTHENTICATE_OAUTH2_ERROR_JSON, HttpStatusCode.BadRequest)