fix: Device logout not redirecting to login page (#38616)

Author: juliajforesti

.changeset/fuzzy-pumpkins-remember.md

@@ -0,0 +1,7 @@
+---
+'@rocket.chat/core-services': patch
+'@rocket.chat/ddp-client': patch
+'@rocket.chat/meteor': patch
+---
+
+Fixes device management logout not redirecting to login page.

apps/meteor/client/components/deviceManagement/DeviceManagementTable/DeviceManagementTable.tsx

@@ -57,7 +57,7 @@ const DeviceManagementTable = <T extends DeviceManagementSession | DeviceManagem
 	return (
 		<>
 			{data?.sessions.length === 0 && isSuccess && <GenericNoResults />}
-			<GenericTable>
+			<GenericTable aria-label={t('Devices')}>
 				{data?.sessions && data.sessions.length > 0 && headers && <GenericTableHeader>{headers}</GenericTableHeader>}
 				<GenericTableBody>
 					{isPending && <GenericTableLoadingTable headerCells={headers.filter(Boolean).length} />}

apps/meteor/client/views/account/deviceManagement/DeviceManagementAccountTable/DeviceManagementAccountRow.tsx

@@ -24,7 +24,7 @@ const DeviceManagementAccountRow = ({ _id, deviceName, deviceType = 'browser', d
 	const handleDeviceLogout = useDeviceLogout(_id, '/v1/sessions/logout.me');
 
 	return (
-		<GenericTableRow key={_id}>
+		<GenericTableRow key={_id} aria-label={_id}>
 			<GenericTableCell>
 				<Box display='flex' alignItems='center'>
 					<DeviceIcon deviceType={deviceType} />

apps/meteor/client/views/admin/deviceManagement/DeviceManagementAdminTable/DeviceManagementAdminRow.tsx

@@ -66,7 +66,7 @@ const DeviceManagementAdminRow = ({
 	];
 
 	return (
-		<GenericTableRow key={_id} onKeyDown={handleKeyDown} onClick={handleClick} tabIndex={0} action>
+		<GenericTableRow key={_id} onKeyDown={handleKeyDown} onClick={handleClick} tabIndex={0} action aria-label={_id}>
 			<GenericTableCell>
 				<Box display='flex' alignItems='center'>
 					<DeviceIcon deviceType={deviceType} />

apps/meteor/client/views/root/hooks/loggedIn/useForceLogout.ts

@@ -1,4 +1,5 @@
 import { useStream, useSessionDispatch } from '@rocket.chat/ui-contexts';
+import { Meteor } from 'meteor/meteor';
 import { useEffect } from 'react';
 
 export const useForceLogout = (userId: string) => {
@@ -8,7 +9,13 @@ export const useForceLogout = (userId: string) => {
 	useEffect(() => {
 		setForceLogout(false);
 
-		const unsubscribe = getNotifyUserStream(`${userId}/force_logout`, () => {
+		const unsubscribe = getNotifyUserStream(`${userId}/force_logout`, (sessionId) => {
+			const currentSessionId = Meteor.connection._lastSessionId;
+
+			if (sessionId === currentSessionId) {
+				window.location.reload();
+			}
+
 			setForceLogout(true);
 		});
 

apps/meteor/definition/externals/meteor/meteor.d.ts

@@ -115,6 +115,7 @@ declare module 'meteor/meteor' {
 					},
 				]
 			): SubscriptionHandle;
+			_lastSessionId: string;
 		}
 
 		const connection: IMeteorConnection;

apps/meteor/ee/server/api/sessions.ts

@@ -136,6 +136,8 @@ API.v1.addRoute(
 				return API.v1.notFound('Session not found');
 			}
 
+			await api.broadcast('user.forceLogout', sessionObj.userId, sessionId);
+
 			await Promise.all([
 				Users.unsetOneLoginToken(this.userId, sessionObj.loginToken),
 				Sessions.logoutByloginTokenAndUserId({ loginToken: sessionObj.loginToken, userId: this.userId }),
@@ -239,7 +241,7 @@ API.v1.addRoute(
 				return API.v1.notFound('Session not found');
 			}
 
-			await api.broadcast('user.forceLogout', sessionObj.userId);
+			await api.broadcast('user.forceLogout', sessionObj.userId, sessionId);
 
 			await Promise.all([
 				Users.unsetOneLoginToken(sessionObj.userId, sessionObj.loginToken),

apps/meteor/server/modules/listeners/listeners.module.ts

@@ -46,8 +46,8 @@ export class ListenersModule {
 			});
 		});
 
-		service.onEvent('user.forceLogout', (uid) => {
-			notifications.notifyUserInThisInstance(uid, 'force_logout');
+		service.onEvent('user.forceLogout', (uid: string, sessionId?: string) => {
+			notifications.notifyUserInThisInstance(uid, 'force_logout', sessionId);
 		});
 
 		service.onEvent('notify.ephemeralMessage', (uid, rid, message) => {

apps/meteor/tests/e2e/account-manage-devices.spec.ts

@@ -0,0 +1,69 @@
+import type { Page } from 'playwright-core';
+
+import { IS_EE } from './config/constants';
+import { createAuxContext } from './fixtures/createAuxContext';
+import injectInitialData from './fixtures/inject-initial-data';
+import { Users } from './fixtures/userStates';
+import { Registration } from './page-objects';
+import { AccountManageDevices } from './page-objects/account.manage-devices';
+import { test, expect } from './utils/test';
+
+test.describe('Account Manage Devices Page', () => {
+	test.skip(!IS_EE);
+	test.use({ storageState: Users.user1.state });
+
+	let page: Page;
+	let accountDevices: AccountManageDevices;
+	let loginPage: Registration;
+
+	test.beforeEach(async ({ browser }) => {
+		({ page } = await createAuxContext(browser, Users.user1));
+		accountDevices = new AccountManageDevices(page);
+		loginPage = new Registration(page);
+		await page.goto('/account/manage-devices');
+	});
+
+	test.afterEach(async () => {
+		await page.close();
+		await injectInitialData();
+	});
+
+	test('should show Manage Devices page', async () => {
+		await expect(accountDevices.devicesPageContent).toBeVisible();
+	});
+
+	test('should logout current device and redirect to login page', async () => {
+		await accountDevices.table.orderByLastLogin();
+
+		const deviceId = await accountDevices.getNthDeviceId(1);
+		await accountDevices.logoutDeviceById(deviceId);
+		await expect(loginPage.loginForm).toBeVisible();
+	});
+
+	test('should logout other device successfully', async ({ browser }) => {
+		const context2 = await browser.newContext({ storageState: { cookies: [], origins: [] } });
+		const page2 = await context2.newPage();
+		const loginPage2 = new Registration(page2);
+		const accountDevices2 = new AccountManageDevices(page2);
+
+		await test.step('should login same user in another session', async () => {
+			await page2.goto('/account/manage-devices');
+			await loginPage2.username.type('user1');
+			await loginPage2.inputPassword.type('password');
+			await loginPage2.btnLogin.click();
+
+			await expect(accountDevices2.devicesPageContent).toBeVisible();
+		});
+
+		await test.step('should logout device 1 from session 2', async () => {
+			await accountDevices2.table.orderByLastLogin();
+			const device1Id = await accountDevices2.getNthDeviceId(2);
+			await accountDevices2.logoutDeviceById(device1Id);
+			await loginPage.loginForm.waitFor();
+			await expect(loginPage.loginForm).toBeVisible();
+			await expect(accountDevices2.table.getDeviceRowById(device1Id)).not.toBeVisible();
+		});
+
+		await context2.close();
+	});
+});

apps/meteor/tests/e2e/admin-device-management.spec.ts

@@ -0,0 +1,73 @@
+import type { Page } from 'playwright-core';
+
+import { IS_EE } from './config/constants';
+import { createAuxContext } from './fixtures/createAuxContext';
+import injectInitialData from './fixtures/inject-initial-data';
+import { Users } from './fixtures/userStates';
+import { Registration } from './page-objects';
+import { AdminDeviceManagement } from './page-objects/admin-device-management';
+import { test, expect } from './utils/test';
+
+test.describe('Admin Device Management Page', () => {
+	test.skip(!IS_EE);
+	test.use({ storageState: Users.admin.state });
+
+	let page: Page;
+	let adminDeviceManagement: AdminDeviceManagement;
+	let loginPage: Registration;
+
+	test.beforeEach(async ({ browser }) => {
+		({ page } = await createAuxContext(browser, Users.admin));
+		adminDeviceManagement = new AdminDeviceManagement(page);
+		loginPage = new Registration(page);
+		await page.goto('/admin/device-management');
+	});
+
+	test.afterEach(async () => {
+		await page.close();
+		await injectInitialData();
+	});
+
+	test('should show Device management page', async () => {
+		await expect(adminDeviceManagement.adminPageContent).toBeVisible();
+	});
+
+	test('should logout current device and redirect to login page', async () => {
+		const deviceId = await adminDeviceManagement.getUsersDeviceId('rocketchat.internal.admin.test');
+		await adminDeviceManagement.logoutDeviceById(deviceId);
+		await expect(loginPage.loginForm).toBeVisible();
+	});
+
+	test('should logout current device from device info tab and redirect to login page', async () => {
+		const deviceId = await adminDeviceManagement.getUsersDeviceId('rocketchat.internal.admin.test');
+		await adminDeviceManagement.searchUserDevice('rocketchat.internal.admin.test');
+		await adminDeviceManagement.table.getDeviceRowById(deviceId).click();
+
+		await expect(adminDeviceManagement.deviceInfo.getDeviceInfoId(deviceId)).toBeVisible();
+		await adminDeviceManagement.deviceInfo.btnLogoutDevice.click();
+		await adminDeviceManagement.logoutModal.confirmLogout();
+		await expect(loginPage.loginForm).toBeVisible();
+	});
+
+	test('should logout other device successfully', async ({ browser }) => {
+		const user2Page = await browser.newPage({ storageState: Users.user2.state });
+		const loginPage2 = new Registration(user2Page);
+		await user2Page.goto('/');
+		await expect(user2Page.getByRole('main')).toBeVisible();
+
+		const user2DeviceId = await adminDeviceManagement.getUsersDeviceId('user2');
+
+		await test.step('should logout user2 and redirect to login page', async () => {
+			await adminDeviceManagement.logoutDeviceById(user2DeviceId);
+			await loginPage2.loginForm.waitFor();
+			await expect(loginPage2.loginForm).toBeVisible();
+		});
+
+		await test.step('should no longer show user2 device in admin device management page', async () => {
+			await adminDeviceManagement.searchUserDevice('user2');
+			await expect(adminDeviceManagement.table.getDeviceRowById(user2DeviceId)).not.toBeVisible();
+		});
+
+		await user2Page.close();
+	});
+});