18F · zachmargolis · Apr 6, 2022 · Apr 5, 2022 · zachmargolis · Apr 5, 2022
diff --git a/app/controllers/idv/personal_key_controller.rb b/app/controllers/idv/personal_key_controller.rb
@@ -22,20 +22,6 @@ def update
       redirect_to next_step
     end
 
-    # Remove this after the next deploy
-    def download
-      personal_key = user_session[:personal_key]
-
-      analytics.track_event(Analytics::IDV_PERSONAL_KEY_DOWNLOADED, success: personal_key.present?)
-
-      if personal_key.present?
-        data = personal_key + "\r\n"
-        send_data data, filename: 'personal_key.txt'
-      else
-        head :bad_request
-      end
-    end
-
     private
 
     def step_indicator_steps

diff --git a/app/services/analytics.rb b/app/services/analytics.rb
@@ -154,7 +154,6 @@ def browser_attributes
   IDV_INTRO_VISIT = 'IdV: intro visited'
   IDV_JURISDICTION_VISIT = 'IdV: jurisdiction visited'
   IDV_JURISDICTION_FORM = 'IdV: jurisdiction form submitted'
-  IDV_PERSONAL_KEY_DOWNLOADED = 'IdV: personal key downloaded' # previously "IdV: download personal key"
   IDV_PERSONAL_KEY_VISITED = 'IdV: personal key visited'
   IDV_PERSONAL_KEY_SUBMITTED = 'IdV: personal key submitted'
   IDV_PHONE_CONFIRMATION_FORM = 'IdV: phone confirmation form'

diff --git a/app/services/analytics_events.rb b/app/services/analytics_events.rb
@@ -179,6 +179,14 @@ def email_and_password_auth(
     )
   end
 
+  # @deprecated
+  # A user has downloaded their personal key. This event is no longer emitted.
+  # @identity.idp.event_name IdV: personal key downloaded
+  # @identity.idp.previous_event_name IdV: download personal key
+  def idv_personal_key_downloaded
+    track_event('IdV: personal key downloaded')
+  end
+
   # @identity.idp.event_name IdV: phone confirmation otp submitted
   # @param [Boolean] success
   # @param [Hash] errors

diff --git a/config/routes.rb b/config/routes.rb
@@ -276,8 +276,6 @@
       get '/come_back_later' => 'come_back_later#show'
       get '/personal_key' => 'personal_key#show'
       post '/personal_key' => 'personal_key#update'
-      # Remove this after the next deploy
-      get '/download_personal_key' => 'personal_key#download'
       get '/forgot_password' => 'forgot_password#new'
       post '/forgot_password' => 'forgot_password#update'
       get '/otp_delivery_method' => 'otp_delivery_method#new'

diff --git a/spec/controllers/idv/personal_key_controller_spec.rb b/spec/controllers/idv/personal_key_controller_spec.rb
@@ -187,45 +187,4 @@ def index
       end
     end
   end
-
-  describe '#download' do
-    before do
-      stub_idv_session
-      stub_analytics
-    end
-
-    it 'allows download of code' do
-      subject.idv_session.create_profile_from_applicant_with_password(password)
-      code = subject.idv_session.personal_key
-
-      get :show
-      get :download
-
-      expect(response.body).to eq(code + "\r\n")
-      expect(response.header['Content-Type']).to eq('text/plain')
-      expect(@analytics).to have_logged_event(Analytics::IDV_PERSONAL_KEY_DOWNLOADED, success: true)
-    end
-
-    it 'recovers pii and verifies personal key digest with the code' do
-      get :show
-      get :download
-
-      code = response.body.chomp
-
-      expect(PersonalKeyGenerator.new(user).verify(code)).to eq true
-      expect(user.profiles.first.recover_pii(normalize_personal_key(code))).to eq(
-        subject.idv_session.pii,
-      )
-    end
-
-    it 'is a bad request when there is no personal_key in the session' do
-      get :download
-
-      expect(response).to be_bad_request
-      expect(@analytics).to have_logged_event(
-        Analytics::IDV_PERSONAL_KEY_DOWNLOADED,
-        success: false,
-      )
-    end
-  end
 end