@W-21148602: Internal Server List does not respect changes made to Servers.xml file

[JohnsonEricAtSalesforce]

🎸 Ready For Review 🥁

This updates the login server manager to respond to updates made to the login servers from servers.xml in resources and the login servers provided by Mobile Device Management via the runtime configuration. Previously, login servers from these two locations were static (for servers.xml) or additions-only (for runtime config) after the app had been installed.

For a point release, these changes do need to maintain compatibility with the 13.x public API. To minimize regression risk, they're also maintaining the Java style and deprecated shared preferences persistence already in place.

Accomplishing the change is non-trivial. The current logic was not built with mutability in mind for the non-custom servers. Scaling the existing logic and ensuring the shared preferences data maintains exact integrity did increase the change footprint.

New unit tests provide functional automated testing of all the changes and 100% patch code coverage. The overall test coverage for the login server manager is much, much higher than before as well.

I'll follow-up with inline source commentary as well. Thanks for reading!

[JohnsonEricAtSalesforce]

@wmathurin, @brandonpage and @bbirman, before I update the tests and move this into ready-for-review I wanted to run the concept of the change past you all.

I chatted briefly with @bbirman to review the iOS behavior since the work item specifically hails that logic as working compared to Android's. Currently, MSDK Android loads the servers.xml only once on install. The work item mentions upgrade, but I didn't see that logic. More, when MDM provides servers they're additive only. When MDM drops a server, the app doesn't reflect that.

What I'm trying here and seems to manually test well is:

1. Drop both sets of non-custom servers on startup, including non-custom servers from servers.xml and MDM.
2. Load the current set of non-custom servers from either servers.xml or MDM according to the existing logic, as much as possible.
3. When MDM is not enabled, preserve the user's custom login servers at the end of the list

I'm doing a little more testing around the behavior of the only show authorized hosts parameter. I want to be sure the MDM flow still respects the user's custom servers.

The question to answer is: Does this seem like a reasonable update to the existing logic to resolve this work item? I can manipulate servers.xml and the MDM data and the app seems to keep the servers list adds, updates or removes non-custom servers just as we'd want. The logic here is older and the methods are not as self-contained as our newer logic, so I wanted to be sure we all got to review any potential side-effects of this before moving further!

[bbirman]

For #3 (and pending your authorized hosts testing), on iOS the custom login servers would be preserved if MDM was enabled as long as "onlyShowAuthorizedHosts" is false

[brandonpage]

This sounds good to me.

One thought though: Should we only remove MDM servers when network is available? Security wise, it would be bad it:

1. Put device in airplane mode
2. Open app. MDM servers are deleted and updated servers cannot be retrieved.
3. Turn airplane mode off.
4. LoginServerManager constructor does not run again. MDM server list is not respected.

Is that scenario possible?

[JohnsonEricAtSalesforce]

Thanks and that thought about network is a great topic. I'll do some research!

[JohnsonEricAtSalesforce]

I took a manual look and also asked our agents. RuntimeConfig does cache the policy locally and will give MSDK those values when no network is present ✅

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 64.84%. Comparing base (9e8338d) to head (0406497).
⚠️ Report is 4 commits behind head on dev.

Additional details and impacted files

@@             Coverage Diff              @@
##                dev    #2845      +/-   ##
============================================
+ Coverage     64.55%   64.84%   +0.29%     
- Complexity     2925     2962      +37     
============================================
  Files           222      222              
  Lines         17323    17365      +42     
  Branches       2471     2476       +5     
============================================
+ Hits          11182    11261      +79     
+ Misses         4934     4905      -29     
+ Partials       1207     1199       -8     

Components	Coverage Δ
Analytics	47.92% <ø> (ø)
SalesforceSDK	59.61% <98.03%> (+0.58%)	⬆️
Hybrid	59.05% <ø> (ø)
SmartStore	78.20% <ø> (ø)
MobileSync	81.68% <ø> (ø)
React	52.36% <ø> (ø)

Files with missing lines	Coverage Δ
...lesforce/androidsdk/config/LoginServerManager.java	97.33% <100.00%> (+22.23%)	⬆️

... and 3 files with indirect coverage changes

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[github-actions]

	1 Warning
⚠️	Big PR, try to keep changes smaller if you can.

Generated by 🚫 Danger

[JohnsonEricAtSalesforce]

I've reviewed the diff in Github once already, so my pre-amble is that Github does a terrible job (as it often does) correlating the diff. If one really wants to navigate the diff more easily, use Android Studio to compare the revisions 🎉

[JohnsonEricAtSalesforce]

There are some new documentation comments to help many of the less-intuitively named properties and methods be clearer and easily reviewed in Android Studio.

[JohnsonEricAtSalesforce]

@VisibleForTesting appears in many places to enable the new tests.

[JohnsonEricAtSalesforce]

Only two properties were added or modified: runtimeConfig is one and present for internal testing support.

[JohnsonEricAtSalesforce]

Only two properties were added or modified: serversXmlResourceId is one and present for internal testing support.

[JohnsonEricAtSalesforce]

This new and private parameterized constructor is present for testing dependency injection.

[JohnsonEricAtSalesforce]

A crux change is here in the constructor to (re-)initialize the non-custom login servers from resources server.xml when applicable. Note, this doesn't affect the user's custom login servers.

[JohnsonEricAtSalesforce]

The updated getSelectedLoginServer has new logic to detect when the "selected" login server is no longer in the "available" login servers and select the new default login server.

[JohnsonEricAtSalesforce]

This refresh of the runtime config login servers wasn't present before but now nicely compliments the following call to getLoginServers so the selected login server will reflect when MDM has removed the currently selected login server. This was an odd looking bug where the "selected" login server might no longer appear in the server picker after an MDM update.

[JohnsonEricAtSalesforce]

Our agent tooling recommended this stream approach to search the list in Java. This'll be easier in Kotlin, someday.

[JohnsonEricAtSalesforce]

Though it hadn't been reported, passing null for these parameters was a potential NullPointerException.

[JohnsonEricAtSalesforce]

The new getSharedPreferences() method lets this be one call to persistLoginServer with the correct SharedPreferences.

[JohnsonEricAtSalesforce]

This private and parameterized version of removeServer supports testing.

[JohnsonEricAtSalesforce]

getLoginServers also gets a lot simpler since it can have one call to getLoginServersFromPreferences with the correct SharedPreferences parameter.

[JohnsonEricAtSalesforce]

Another crux change is here in getLoginServersFromRuntimeConfig to reset the non-custom login servers from that SharedPreferences so that strange things don't happen as the MDM data changes. My testing from dev showed that adding servers worked but deleting servers had no effect. This also meant that "editing" a server resulted in a duplication. The list always reflects MDM now.

[JohnsonEricAtSalesforce]

Our agent tools recommended this approach for null-cleansing the MDM data which aided in simplifying the tests and avoiding code coverage noise.

[JohnsonEricAtSalesforce]

This was a latent bug where the wrong SharedPreferences was hard-coded even when MDM was active.

[JohnsonEricAtSalesforce]

These utility methods to adjust a login server's index to the appropriate bounds of non-custom or custom servers are useful, but for future when SharedPreferences is replaced it'd be amazing to see the custom servers stored separately from the non-custom ones entirely.

[JohnsonEricAtSalesforce]

Without this break, this exception turned into infinite recursion and an app hang which I caught in testing while adding coverage to this (previously?) untested line.

[JohnsonEricAtSalesforce]

All login server persistence happens now via persistLoginServer since it has all the logic needed to correctly order and sanitize the SharedPreferences.

[JohnsonEricAtSalesforce]

This NUMBER_OF_ENTRIES update happens in persistLoginServer now.

[JohnsonEricAtSalesforce]

Another big crux change is here to persistLoginServer which now has the ability to correctly order non-custom and custom login servers and all the other login servers. This is where the most work actually happened to make the non-custom login server list mutable.

[JohnsonEricAtSalesforce]

I left most other methods returning null if the did on dev but this one actually made sense to eliminate the null checks at all the private call sites and simplify the logic and tests.

[JohnsonEricAtSalesforce]

Where mockk was needed, I wrote new tests directly in Kotlin.

[brandonpage]

Maybe rename this one to LoginServerManagerMockTest?

At the very least let's make the file name match the class so we don't have LoginServerManageTest.java and LoginServerManageTest.kt.

[JohnsonEricAtSalesforce]

Testing Notes: I tested this via both manual testing on device and via all the new unit tests. In particular, I also used a temporary method to log the contents of both SharedPreferences during testing so I could be 100% sure the data looked rock solid. That was really tedious, but it did reveal interesting data quality issues that unit tests and even manual testing could miss - there was one bug where data indexed above the number of servers value was orphaned after edits. The unit tests and even the app didn't detect that, but I saw it by putting my own eyes on it ✅

Testing requires restarting the app after:

1. Adding to servers.xml
2. Editing servers.xml
3. Removing from servers.xml
   ...And since I didn't have a managed device for the MDM tests I had to update the values obtained from RuntimeConfig in the code to...
4. Add servers
5. Edit servers
6. Remove servers

Each of these tests should be tested with a cold start of the app to ensure the (re-)initialization of the LoginServerManager correctly restores the servers.

Each of these tests should be performed with and without the presence of custom login servers.

The unit tests provide more destructive testing, such as inserting null values and malformed XML in all kinds of places they shouldn't be. I spent five days in manual testing and automated testing development since I'd view this as a higher risk change. This was where I found and resolved a number of NullPointerException crashes and one infinite hang of the app when XML is malformed. 😅

[brandonpage]

Maybe rename this one to LoginServerManagerMockTest?

At the very least let's make the file name match the class so we don't have LoginServerManageTest.java and LoginServerManageTest.kt.