LG-15558 Permanently enable pending in person password reset feature

[shanechesnutt-ft]

🎫 Ticket

Link to the relevant ticket:
LG-15558

🛠 Summary of changes

Permanently enable the pending in person password reset feature

📜 Testing Plan

Scenario: When pending in-person password reset is enabled and User uses personal key

• Login through the oidc sinatra application selecting the Identity Verified level of service.
• Create a new account
• Complete the ID-IPP flow reaching the ready to verify page.
• Logout
• Reset the password of the user.
• Login through the oidc sinatra application selecting the Identity Verified level of service.
• Ensure user is prompted for personal key entry
• Enter in user's personal key
• Ensure user is navigated to the ready to verify page

Scenario: When pending in-person password reset is enabled and User does not use personal key

• Login through the oidc sinatra application selecting the Identity Verified level of service.
• Create a new account
• Complete the ID-IPP flow reaching the ready to verify page.
• Logout
• Reset the password of the user.
• Login through the oidc sinatra application selecting the Identity Verified level of service.
• Ensure user is prompted for personal key entry
• Continue without a personal key
• Ensure user is navigated to the welcome page
• Ensure enrollment is cancelled
• Ensure user can complete in-person verification flow

Scenario: Fraud review in-person enrollment and user password resets with personal key

• Login through the oidc sinatra application selecting the Identity Verified level of service.
• Create a new account
• Complete the ID-IPP flow reaching the ready ssn page.
• Mark the threat metrics as review on the ready ssn page.
• Submit the ssn form.
• Continue the ID-IPP flow reaching the ready to verify page.
• Run the GetUspsProofingResultsJob

# To manually run the job in the rails console run the following:
job = GetUspsProofingResultsJob.new
job.perform(Time.zone.now)

• Ensure the enrollment is updated to have in_fraud_review status.
• Ensure user is navigated to the LG-99 screen.
• Logout
• Reset the password of the user.
• Login through the oidc sinatra application selecting the Identity Verified level of service.
• Ensure user is prompted for personal key entry
• Enter in user's personal key
• Ensure user is navigated to the LG-99 screen

Scenario: Fraud review in-person enrollment and user password resets without personal key

• Login through the oidc sinatra application selecting the Identity Verified level of service.
• Create a new account
• Complete the ID-IPP flow reaching the ready ssn page.
• Mark the threat metrics as review on the ready ssn page.
• Submit the ssn form.
• Continue the ID-IPP flow reaching the ready to verify page.
• Run the GetUspsProofingResultsJob

# To manually run the job in the rails console run the following:
job = GetUspsProofingResultsJob.new
job.perform(Time.zone.now)

• Ensure the enrollment is updated to have in_fraud_review status.
• Ensure user is navigated to the LG-99 screen.
• Logout
• Reset the password of the user.
• Login through the oidc sinatra application selecting the Identity Verified level of service.
• Ensure user is prompted for personal key entry
• Continue without a personal key
• Ensure user is navigated to the welcome page
• Click Continue on welcome page
• Ensure enrollment is cancelled

[eileen-nava]

I'm really glad we're able to remove this now! :)

[eileen-nava]

I reviewed the code and started testing scenarios today. Things generally looked good, except for the last step.
Ensure user is navigated to the ready to verify page
I was navigated to the account page when I logged back in. 🫤 I am unsure why.
I will look at this more on Monday.

[eileen-nava]

@shanechesnutt-ft and I looked at this Monday. I was navigated to the ready to verify page when I logged back in through the Sinatra OIDC Sample app and selected the Identity Verified service level. (When I was navigated to the account page, I had logged in directly through idp and no service level was specified.) As a result, I am satisfied that the flow worked as expected.

[eileen-nava]

I tried all four scenarios and they all work. The code looks good. Approved!

[gina-yamada]

Gina's Notes for the 📜 Testing Plan:

Scenario: When pending in-person password reset is enabled and User uses personal key

• Login through the oidc sinatra application selecting the Identity Verified level of service.
• Create a new account
• Complete the ID-IPP flow reaching the ready to verify page.
• Logout
• Reset the password of the user.
• Login through the oidc sinatra application selecting the Identity Verified level of service.
• Ensure user is prompted for personal key entry
• Enter in user's personal key
• Ensure user is navigated to the ready to verify page

Scenario: When pending in-person password reset is enabled and User does not use personal key

• Login through the oidc sinatra application selecting the Identity Verified level of service.
• Create a new account
• Complete the ID-IPP flow reaching the ready to verify page.
• Logout
• Reset the password of the user.
• Login through the oidc sinatra application selecting the Identity Verified level of service.
• Ensure user is prompted for personal key entry
• Continue without a personal key
• Ensure user is navigated to the welcome page
• Ensure enrollment is cancelled
• Ensure user can complete in-person verification flow

Scenario: Fraud review in-person enrollment and user password resets with personal key

• Login through the oidc sinatra application selecting the Identity Verified level of service.
• Create a new account
• Complete the ID-IPP flow reaching the ready ssn page.
• Mark the threat metrics as review on the ready ssn page.
• Submit the ssn form.
• Continue the ID-IPP flow reaching the ready to verify page.
• Run the GetUspsProofingResultsJob
• # To manually run the job in the rails console run the following:

job = GetUspsProofingResultsJob.new
job.perform(Time.zone.now)

• Ensure the enrollment is updated to have in_fraud_review status.
• Ensure user is navigated to the LG-99 screen.
• Logout
• Reset the password of the user.
• Login through the oidc sinatra application selecting the Identity Verified level of service.
• Ensure user is prompted for personal key entry
• Enter in user's personal key
• Ensure user is navigated to the LG-99 screen

Scenario: Fraud review in-person enrollment and user password resets without personal key

• Login through the oidc sinatra application selecting the Identity Verified level of service.
• Create a new account
• Complete the ID-IPP flow reaching the ready ssn page.
• Mark the threat metrics as review on the ready ssn page.
• Submit the ssn form.
• Continue the ID-IPP flow reaching the ready to verify page.
• Run the GetUspsProofingResultsJob

# To manually run the job in the rails console run the following:
job = GetUspsProofingResultsJob.new
job.perform(Time.zone.now)

• Ensure the enrollment is updated to have in_fraud_review status.
• Ensure user is navigated to the LG-99 screen.
• Logout
• Reset the password of the user.
• Login through the oidc sinatra application selecting the Identity Verified level of service.
• Ensure user is prompted for personal key entry
• Continue without a personal key
• Ensure user is navigated to the welcome page
• Click Continue on welcome page
• Ensure enrollment is cancelled

[gina-yamada]

Nice work Shane!!! This is awesome - epic is complete!!! Kudos on a job well done 🚀 🚀