Added invalid credentials check for OIDC

auth0 · Sep 7, 2017 · f1bbaaa · f1bbaaa
1 parent a454345
commit f1bbaaa
Show file tree

Hide file tree

Showing 3 changed files with 10 additions and 110 deletions.
diff --git a/Auth0.xcodeproj/xcshareddata/xcschemes/OAuth2.iOS.xcscheme b/Auth0.xcodeproj/xcshareddata/xcschemes/OAuth2.iOS.xcscheme
diff --git a/Auth0/AuthenticationError.swift b/Auth0/AuthenticationError.swift
@@ -121,7 +121,7 @@ public class AuthenticationError: Auth0Error, CustomStringConvertible {
 
     /// When username and/or password used for authentication are invalid
     public var isInvalidCredentials: Bool {
-        return self.code == "invalid_user_password"
+        return self.code == "invalid_user_password" || (self.code == "invalid_grant" && self.description == "Wrong email or password.")
     }
 
     /// When authenticating with web-based authentication and the resource server denied access per OAuth2 spec

diff --git a/Auth0Tests/AuthenticationErrorSpec.swift b/Auth0Tests/AuthenticationErrorSpec.swift
@@ -169,6 +169,15 @@ class AuthenticationErrorSpec: QuickSpec {
                 expect(error.isTooManyAttempts) == true
             }
 
+            it("should detect invalid credentials") {
+                let values = [
+                    "error": "invalid_grant",
+                    "error_description": "Wrong email or password."
+                ]
+                let error = AuthenticationError(info: values, statusCode: 403)
+                expect(error.isInvalidCredentials) == true
+            }
+
         }
 
     }
@@ -205,7 +214,6 @@ class AuthenticationErrorSpecSharedExamplesConfiguration: QuickConfiguration {
                 }
             }
 
-
             it("should not match any custom error") {
                 expect(error.isRuleError).to(beFalse(), description: "should not match rule error")
                 expect(error.isPasswordNotStrongEnough).to(beFalse(), description: "should not match pwd strength")