Tests for Personal ID Signup Parsers + More Validations on mandatory fields

[shubham1g5]

Product Description

https://dimagi.atlassian.net/browse/CCCT-1871

Unit tests on Network Parsers + Some more validations on mandatory fields inside Parsers.

Labels and Review

• Do we need to enhance the manual QA test coverage ? If yes, the "QA Note" label is set correctly
• Does the PR introduce any major changes worth communicating ? If yes, the "Release Note" label is set and a "Release Note" is specified in PR description.
• Risk label is set correctly
• The set of people pinged as reviewers is appropriate for the level of risk of the change

[coderabbitai]

📝 Walkthrough

Walkthrough

The PR enhances input validation in two response parser classes and introduces comprehensive unit test coverage for five parser implementations. The validation enhancements extract username, db_key, and password into local variables, perform null checks using Objects.requireNonNull, validate for non-empty strings, and throw IllegalStateException when validation fails. Five new test classes are added to cover successful parsing scenarios, missing or null field error cases, empty string validation, and edge cases including null inputs and large data handling.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20–25 minutes

Key areas requiring attention:

• Validation logic in parsers: Verify that the transition from potentially passing null/empty values to throwing exceptions during parsing does not break existing code paths or caller behavior
• Error handling consistency: Ensure that NullPointerException (for null values) vs. IllegalStateException (for empty strings) is the intended distinction and aligns with error handling strategy across the codebase
• Test coverage completeness: Confirm that the test scenarios accurately mirror the validation logic in the parsers, particularly around the distinction between missing fields (JSONObject.NULL), null values, and empty strings
• Session data field assignments: Verify that all field assignments in the test assertions match the actual setter methods being called (e.g., setPersonalId, setDbKey, setOauthPassword)

Suggested reviewers

• Jignesh-dimagi
• OrangeAndGreen

Pre-merge checks and finishing touches

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Description check	⚠️ Warning	The description includes a link to the Jira ticket and explains the changes, but is missing critical sections from the template including Product Description details, Technical Summary rationale, Safety Assurance story, and Automated test coverage explanation.	Expand the description to include Technical Summary with design rationale, Safety Assurance section explaining testing strategy, and details about automated test coverage for the new tests.

✅ Passed checks (1 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately summarizes the main changes: adding tests for Personal ID signup parsers and introducing validations on mandatory fields.

✨ Finishing touches

• 📝 Generate docstrings

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch parsingTests

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

🧹 Nitpick comments (3)

app/src/org/commcare/connect/network/connectId/parser/ConfirmBackupCodeResponseParser.java (1)

23-37: Improve null-check diagnostics

Line 27 currently throws a bare NullPointerException when the API omits "username", leaving crash logs with no hint about which field violated the contract. Please add explicit messages to each Objects.requireNonNull so on-call engineers get immediate context.

-        Objects.requireNonNull(username);
-        Objects.requireNonNull(dbKey);
-        Objects.requireNonNull(password);
+        Objects.requireNonNull(username, "Missing username from confirm-backup-code response");
+        Objects.requireNonNull(dbKey, "Missing db_key from confirm-backup-code response");
+        Objects.requireNonNull(password, "Missing password from confirm-backup-code response");

app/src/org/commcare/connect/network/connectId/parser/CompleteProfileResponseParser.java (1)

23-37: Surface the offending field when validation fails

Line 27 also emits an anonymous NullPointerException if the server omits "username". Please mirror the explicit messages suggested for the other parser so the crash report immediately names the missing field.

-        Objects.requireNonNull(username);
-        Objects.requireNonNull(dbKey);
-        Objects.requireNonNull(password);
+        Objects.requireNonNull(username, "Missing username from complete-profile response");
+        Objects.requireNonNull(dbKey, "Missing db_key from complete-profile response");
+        Objects.requireNonNull(password, "Missing password from complete-profile response");

app/unit-tests/src/org/commcare/connect/network/connectId/parser/ConfirmBackupCodeResponseParserTest.java (1)

124-158: Update the empty-string comment

Line 126 says “Empty strings should be accepted,” but the test explicitly asserts IllegalStateException. Please tweak the comment so it matches the expected behaviour and avoids confusing future maintainers.

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 4425d41 and cc2ad8e.

📒 Files selected for processing (7)

• app/src/org/commcare/connect/network/connectId/parser/CompleteProfileResponseParser.java (1 hunks)
• app/src/org/commcare/connect/network/connectId/parser/ConfirmBackupCodeResponseParser.java (2 hunks)
• app/unit-tests/src/org/commcare/connect/network/connectId/parser/AddOrVerifyNameParserTest.java (1 hunks)
• app/unit-tests/src/org/commcare/connect/network/connectId/parser/CompleteProfileResponseParserTest.java (1 hunks)
• app/unit-tests/src/org/commcare/connect/network/connectId/parser/ConfirmBackupCodeResponseParserTest.java (1 hunks)
• app/unit-tests/src/org/commcare/connect/network/connectId/parser/ReportIntegrityResponseParserTest.java (1 hunks)
• app/unit-tests/src/org/commcare/connect/network/connectId/parser/StartConfigurationResponseParserTest.java (1 hunks)

🧰 Additional context used

🧠 Learnings (4)

📚 Learning: 2025-02-04T21:22:56.537Z

Learnt from: pm-dimagi
Repo: dimagi/commcare-android PR: 2949
File: app/src/org/commcare/fragments/connectId/ConnectIdPinFragment.java:244-275
Timestamp: 2025-02-04T21:22:56.537Z
Learning: Direct JSONObject parsing is acceptable for handling user data responses in ConnectIdPinFragment, as decided by the team. No need to enforce ConnectUserResponseParser usage in this context.

Applied to files:

• app/unit-tests/src/org/commcare/connect/network/connectId/parser/StartConfigurationResponseParserTest.java
• app/unit-tests/src/org/commcare/connect/network/connectId/parser/AddOrVerifyNameParserTest.java
• app/unit-tests/src/org/commcare/connect/network/connectId/parser/ConfirmBackupCodeResponseParserTest.java
• app/unit-tests/src/org/commcare/connect/network/connectId/parser/CompleteProfileResponseParserTest.java
• app/src/org/commcare/connect/network/connectId/parser/ConfirmBackupCodeResponseParser.java
• app/src/org/commcare/connect/network/connectId/parser/CompleteProfileResponseParser.java

📚 Learning: 2025-01-21T18:20:43.883Z

Learnt from: OrangeAndGreen
Repo: dimagi/commcare-android PR: 2912
File: app/src/org/commcare/fragments/connectId/ConnectIdPasswordVerificationFragment.java:206-213
Timestamp: 2025-01-21T18:20:43.883Z
Learning: In the Connect ID feature, server responses containing user data should be parsed using ConnectUserResponseParser to ensure consistent handling of payment information (owner_name and phone_number) and secondary phone verification across all authentication flows.

Applied to files:

• app/unit-tests/src/org/commcare/connect/network/connectId/parser/StartConfigurationResponseParserTest.java
• app/unit-tests/src/org/commcare/connect/network/connectId/parser/AddOrVerifyNameParserTest.java
• app/unit-tests/src/org/commcare/connect/network/connectId/parser/ConfirmBackupCodeResponseParserTest.java
• app/unit-tests/src/org/commcare/connect/network/connectId/parser/CompleteProfileResponseParserTest.java
• app/src/org/commcare/connect/network/connectId/parser/ConfirmBackupCodeResponseParser.java
• app/src/org/commcare/connect/network/connectId/parser/CompleteProfileResponseParser.java

📚 Learning: 2025-06-13T15:53:12.951Z

Learnt from: OrangeAndGreen
Repo: dimagi/commcare-android PR: 3108
File: app/src/org/commcare/connect/network/PersonalIdApiHandler.java:51-56
Timestamp: 2025-06-13T15:53:12.951Z
Learning: For `PersonalIdApiHandler`, the team’s convention is to propagate `JSONException` as an unchecked `RuntimeException` so the app crashes, signalling a contract/implementation bug rather than attempting a graceful retry.

Applied to files:

• app/src/org/commcare/connect/network/connectId/parser/ConfirmBackupCodeResponseParser.java
• app/src/org/commcare/connect/network/connectId/parser/CompleteProfileResponseParser.java

📚 Learning: 2025-03-10T08:16:29.416Z

Learnt from: shubham1g5
Repo: dimagi/commcare-android PR: 2949
File: app/src/org/commcare/fragments/connectId/ConnectIdPasswordVerificationFragment.java:173-247
Timestamp: 2025-03-10T08:16:29.416Z
Learning: In the ConnectIdPasswordVerificationFragment, password comparisons should use MessageDigest.isEqual() rather than equals() to prevent timing attacks, and empty password validation should be implemented before verification attempts.

Applied to files:

• app/src/org/commcare/connect/network/connectId/parser/CompleteProfileResponseParser.java

🧬 Code graph analysis (7)

app/unit-tests/src/org/commcare/connect/network/connectId/parser/StartConfigurationResponseParserTest.java (2)

app/unit-tests/src/org/commcare/CommCareTestApplication.java (1)

• CommCareTestApplication (69-359)

app/unit-tests/src/org/commcare/connect/network/connectId/parser/AddOrVerifyNameParserTest.java (1)

• Config (19-146)

app/unit-tests/src/org/commcare/connect/network/connectId/parser/AddOrVerifyNameParserTest.java (3)

app/unit-tests/src/org/commcare/CommCareTestApplication.java (1)

• CommCareTestApplication (69-359)

app/unit-tests/src/org/commcare/connect/network/connectId/parser/CompleteProfileResponseParserTest.java (1)

• Config (19-155)

app/unit-tests/src/org/commcare/connect/network/connectId/parser/StartConfigurationResponseParserTest.java (1)

• Config (19-112)

app/unit-tests/src/org/commcare/connect/network/connectId/parser/ConfirmBackupCodeResponseParserTest.java (2)

app/unit-tests/src/org/commcare/CommCareTestApplication.java (1)

• CommCareTestApplication (69-359)

app/unit-tests/src/org/commcare/connect/network/connectId/parser/AddOrVerifyNameParserTest.java (1)

• Config (19-146)

app/unit-tests/src/org/commcare/connect/network/connectId/parser/CompleteProfileResponseParserTest.java (1)

app/unit-tests/src/org/commcare/CommCareTestApplication.java (1)

• CommCareTestApplication (69-359)

app/src/org/commcare/connect/network/connectId/parser/ConfirmBackupCodeResponseParser.java (1)

app/src/org/commcare/utils/JsonExtensions.kt (1)

• optStringSafe (7-10)

app/src/org/commcare/connect/network/connectId/parser/CompleteProfileResponseParser.java (1)

app/src/org/commcare/utils/JsonExtensions.kt (1)

• optStringSafe (7-10)

app/unit-tests/src/org/commcare/connect/network/connectId/parser/ReportIntegrityResponseParserTest.java (1)

app/unit-tests/src/org/commcare/CommCareTestApplication.java (1)

• CommCareTestApplication (69-359)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (1)

• GitHub Check: Lint Code Base

🔇 Additional comments (4)

app/unit-tests/src/org/commcare/connect/network/connectId/parser/ReportIntegrityResponseParserTest.java (1)

33-48: Happy-path coverage looks solid

Line 44 drives the success branch with a realistic payload and verifies the boolean outcome, which is exactly the regression guard we needed for this parser.

app/unit-tests/src/org/commcare/connect/network/connectId/parser/StartConfigurationResponseParserTest.java (1)

32-111: Great coverage for parser defaults and error paths

Lines 63-110 validate both the happy path and the failure scenarios (default values, empty strings, null arguments), giving high confidence in the parser’s behaviour. Nicely done.

app/unit-tests/src/org/commcare/connect/network/connectId/parser/AddOrVerifyNameParserTest.java (1)

1-146: LGTM! Comprehensive test coverage for AddOrVerifyNameParser.

The test class provides excellent coverage of the parser's behavior across multiple scenarios:

• Valid response parsing with all fields
• Default value handling when fields are missing
• Partial data scenarios
• Edge cases including empty strings, null values, and large photo data
• Defensive null checks for JSON and sessionData

The test structure follows the established patterns from other parser tests in the PR and properly validates the optional nature of the account_exists and photo fields.

app/unit-tests/src/org/commcare/connect/network/connectId/parser/CompleteProfileResponseParserTest.java (1)

1-155: Excellent test coverage for CompleteProfileResponseParser validation.

The test class thoroughly validates the new mandatory field validation logic introduced in the PR:

• Successful parsing with all required fields present
• Proper null checking for missing or null fields (NullPointerException)
• Empty string validation (IllegalStateException)
• Comprehensive coverage of all three mandatory fields: username, db_key, and password

The test structure follows the established patterns from other parser tests and aligns well with the PR objectives to add validations for mandatory fields.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Fix misleading comments in empty string validation tests.

The comments state "Empty strings should be accepted (not null)" but the tests correctly expect IllegalStateException, which means empty strings are not accepted by the parser. These comments are contradictory and could confuse future maintainers.

Apply this diff to fix the comments:

-        // Arrange - Empty strings should be accepted (not null)
+        // Arrange - Empty strings should be rejected with IllegalStateException

Apply the same fix at lines 134 and 146.

Also applies to: 134-134, 146-146

🤖 Prompt for AI Agents

In
app/unit-tests/src/org/commcare/connect/network/connectId/parser/CompleteProfileResponseParserTest.java
around lines 122, 134 and 146, the inline comments currently read "Empty strings
should be accepted (not null)" which contradicts the test assertions that expect
IllegalStateException; update those comments to accurately state that empty
strings are not accepted and the parser should throw IllegalStateException
(e.g., "Empty strings are not accepted; expect IllegalStateException") so the
comments match the test expectations.

[conroy-ricketts]

These unit tests are great! I think that the comments are fantastic

[conroy-ricketts]

Optional (nit): This comment seems a bit redundant due to both the file's name and the folder it's in

[conroy-ricketts]

Optional (nit): This comment seems a bit redundant due to both the file's name and the folder it's in

[conroy-ricketts]

Optional: In the comment, it may be worth mentioning that demoUser is nullable here too like on line 71 and that's the reason for ?: true

[conroy-ricketts]

Optional: Same as earlier, in the comment, it may be worth mentioning that demoUser is nullable here too

[OrangeAndGreen]

Nit: Is there a reason not to store this as a const string so it isn't copy-pasted here and above?

[Jignesh-dimagi]

Do we want to add the text here as reason i.e. Objects.requireNonNull(username,"username cannot be null");

[shubham1g5]

think that will be redundant in simple cases like this where it's quite evident that the username is null which is why there is an NPE here.

[Jignesh-dimagi]

PersonalIdApiHandler doesn't handle IllegalStateException so application might crash here.

[shubham1g5]

Yes, we do want to crash in these scenarios as it's critical info for app to process a successful sign-in

[Jignesh-dimagi]

Same as https://github.com/dimagi/commcare-android/pull/3402/files#r2498579701

[Jignesh-dimagi]

Same as https://github.com/dimagi/commcare-android/pull/3402/files#r2498594790

[Jignesh-dimagi]

Not sure if this test is different from other test except the string length

[shubham1g5]

that is right, the purpose of this test is to do a explicit check on very large photo data which is a real possibility with base 64 photo data.

[Jignesh-dimagi]

@shubham1g5 Please handle the kotlin lint failure