From af739c357d2234c011fcf1d50bf08d4ff9cd7ba9 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Rafa=C5=82=20Cie=C5=9Blak?= <rafal.cieslak@goteleport.com>
Date: Thu, 30 Nov 2023 10:54:57 +0100
Subject: [PATCH] Discover: Add UI for connection test for Connect My Computer

* Rename existing component to LegacyTestConnection

* Set up new component with feature flag

* Copy server TestConnection to Connect My Computer

* ConnectionDiagnosticResult: Add prop for having step number and desc on same line

This will be needed in connection test for Connect My Computer to make
it consistent with the look of previous steps.

* Adjust TestConnection to Connect My Computer, add story

* Start test automatically if there's one login
---
 .../LegacyTestConnection.story.tsx            | 201 ++++++++++
 .../LegacyTestConnection.tsx                  | 235 ++++++++++++
 .../LegacyTestConnection/index.ts             |  17 +
 .../TestConnection/TestConnection.story.tsx   | 222 +++++++----
 .../TestConnection/TestConnection.tsx         | 355 +++++++++++-------
 .../src/Discover/ConnectMyComputer/index.ts   |  23 +-
 .../ConnectionDiagnosticResult.story.tsx      |   8 +
 .../ConnectionDiagnosticResult.tsx            |  18 +-
 .../useConnectionDiagnostic.ts                |  24 +-
 .../services/storageService/storageService.ts |   9 +
 .../src/services/storageService/types.ts      |   2 +
 11 files changed, 867 insertions(+), 247 deletions(-)
 create mode 100644 web/packages/teleport/src/Discover/ConnectMyComputer/LegacyTestConnection/LegacyTestConnection.story.tsx
 create mode 100644 web/packages/teleport/src/Discover/ConnectMyComputer/LegacyTestConnection/LegacyTestConnection.tsx
 create mode 100644 web/packages/teleport/src/Discover/ConnectMyComputer/LegacyTestConnection/index.ts

diff --git a/web/packages/teleport/src/Discover/ConnectMyComputer/LegacyTestConnection/LegacyTestConnection.story.tsx b/web/packages/teleport/src/Discover/ConnectMyComputer/LegacyTestConnection/LegacyTestConnection.story.tsx
new file mode 100644
index 0000000000000..e144d4e693f77
--- /dev/null
+++ b/web/packages/teleport/src/Discover/ConnectMyComputer/LegacyTestConnection/LegacyTestConnection.story.tsx
@@ -0,0 +1,201 @@
+/**
+ * Copyright 2023 Gravitational, Inc
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+import React from 'react';
+import { MemoryRouter } from 'react-router';
+import { initialize, mswLoader } from 'msw-storybook-addon';
+import { rest } from 'msw';
+
+import { nodes } from 'teleport/Nodes/fixtures';
+import { ContextProvider } from 'teleport';
+import cfg from 'teleport/config';
+import { UserContext } from 'teleport/User/UserContext';
+import { createTeleportContext } from 'teleport/mocks/contexts';
+import { makeDefaultUserPreferences } from 'teleport/services/userPreferences/userPreferences';
+
+import { LegacyTestConnection } from './LegacyTestConnection';
+
+export default {
+  title: 'Teleport/Discover/ConnectMyComputer/LegacyTestConnection',
+  loaders: [mswLoader],
+};
+
+initialize();
+
+const node = nodes[0];
+
+const agentStepProps = {
+  prevStep: () => {},
+  nextStep: () => {},
+  agentMeta: { resourceName: node.hostname, node, agentMatcherLabels: [] },
+};
+
+export const SingleLogin = () => {
+  return (
+    <Provider>
+      <LegacyTestConnection {...agentStepProps} />
+    </Provider>
+  );
+};
+
+SingleLogin.parameters = {
+  msw: {
+    handlers: [
+      rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
+        res(ctx.json({}))
+      ),
+      rest.get(cfg.api.connectMyComputerLoginsPath, (req, res, ctx) =>
+        res(ctx.json({ logins: ['foo'] }))
+      ),
+    ],
+  },
+};
+
+export const MultipleLogins = () => {
+  return (
+    <Provider>
+      <LegacyTestConnection {...agentStepProps} />
+    </Provider>
+  );
+};
+
+MultipleLogins.parameters = {
+  msw: {
+    handlers: [
+      rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
+        res(ctx.json({}))
+      ),
+      rest.get(cfg.api.connectMyComputerLoginsPath, (req, res, ctx) =>
+        res(ctx.json({ logins: ['foo', 'bar', 'baz'] }))
+      ),
+    ],
+  },
+};
+
+export const NoLogins = () => {
+  return (
+    <Provider>
+      <LegacyTestConnection {...agentStepProps} />
+    </Provider>
+  );
+};
+
+NoLogins.parameters = {
+  msw: {
+    handlers: [
+      rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
+        res(ctx.json({}))
+      ),
+      rest.get(cfg.api.connectMyComputerLoginsPath, (req, res, ctx) =>
+        res(ctx.json({ logins: [] }))
+      ),
+    ],
+  },
+};
+
+export const NoRole = () => {
+  return (
+    <Provider>
+      <LegacyTestConnection {...agentStepProps} />
+    </Provider>
+  );
+};
+
+NoRole.parameters = {
+  msw: {
+    handlers: [
+      rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
+        res(ctx.json({}))
+      ),
+      rest.get(cfg.api.connectMyComputerLoginsPath, (req, res, ctx) =>
+        // TODO Check how our error responses look like.
+        res(ctx.status(404), ctx.text('Whoops no role found'))
+      ),
+    ],
+  },
+};
+
+export const ReloadUserProcessing = () => {
+  return (
+    <Provider>
+      <LegacyTestConnection {...agentStepProps} />
+    </Provider>
+  );
+};
+
+ReloadUserProcessing.parameters = {
+  msw: {
+    handlers: [
+      rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
+        res(ctx.delay('infinite'))
+      ),
+    ],
+  },
+};
+
+export const ReloadUserError = () => {
+  return (
+    <Provider>
+      <LegacyTestConnection {...agentStepProps} />
+    </Provider>
+  );
+};
+
+ReloadUserError.parameters = {
+  msw: {
+    handlers: [
+      // The first handler returns an error immediately. Subsequent requests return after a delay so
+      // that we can show a spinner after clicking on "Retry".
+      rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
+        res.once(
+          ctx.status(500),
+          ctx.json({ message: 'Could not renew session' })
+        )
+      ),
+      rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
+        res(
+          ctx.delay(1000),
+          ctx.status(500),
+          ctx.json({ message: 'Could not renew session' })
+        )
+      ),
+    ],
+  },
+};
+
+const Provider = ({ children }) => {
+  const ctx = createTeleportContext();
+
+  const preferences = makeDefaultUserPreferences();
+  const updatePreferences = () => Promise.resolve();
+  const getClusterPinnedResources = () => Promise.resolve([]);
+  const updateClusterPinnedResources = () => Promise.resolve();
+
+  return (
+    <MemoryRouter>
+      <UserContext.Provider
+        value={{
+          preferences,
+          updatePreferences,
+          getClusterPinnedResources,
+          updateClusterPinnedResources,
+        }}
+      >
+        <ContextProvider ctx={ctx}>{children}</ContextProvider>
+      </UserContext.Provider>
+    </MemoryRouter>
+  );
+};
diff --git a/web/packages/teleport/src/Discover/ConnectMyComputer/LegacyTestConnection/LegacyTestConnection.tsx b/web/packages/teleport/src/Discover/ConnectMyComputer/LegacyTestConnection/LegacyTestConnection.tsx
new file mode 100644
index 0000000000000..9d27ee5368183
--- /dev/null
+++ b/web/packages/teleport/src/Discover/ConnectMyComputer/LegacyTestConnection/LegacyTestConnection.tsx
@@ -0,0 +1,235 @@
+/**
+ * Copyright 2023 Gravitational, Inc
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+import React, { useEffect, useCallback, useRef } from 'react';
+
+import {
+  ButtonPrimary,
+  ButtonSecondary,
+  Flex,
+  Indicator,
+  Text,
+  Link,
+} from 'design';
+import * as Icons from 'design/Icon';
+import { useAsync } from 'shared/hooks/useAsync';
+import { MenuLogin } from 'shared/components/MenuLogin';
+import * as connectMyComputer from 'shared/connectMyComputer';
+
+import cfg from 'teleport/config';
+import useTeleport from 'teleport/useTeleport';
+import {
+  ActionButtons,
+  StyledBox,
+  Header,
+  TextIcon,
+} from 'teleport/Discover/Shared';
+import { openNewTab } from 'teleport/lib/util';
+import { Node, sortNodeLogins } from 'teleport/services/nodes';
+import { ApiError } from 'teleport/services/api/parseError';
+
+import { NodeMeta } from '../../useDiscover';
+
+import type { AgentStepProps } from '../../types';
+
+export const LegacyTestConnection = (props: AgentStepProps) => {
+  const { userService, storeUser } = useTeleport();
+  const meta = props.agentMeta as NodeMeta;
+
+  const abortController = useRef<AbortController>();
+  // When the user sets up Connect My Computer in Teleport Connect, a new role gets added to the
+  // user. Because of that, we need to reload the current session so that the user is able to
+  // connect to the new node, without having to log in to the cluster again.
+  //
+  // We also need to fetch the list of logins from that role. The user might have many logins
+  // available, but the Connect My Computer agent is always started by the system user that is
+  // running Connect. As such, the Connect My Computer role should include that valid login.
+  const [fetchLoginsAttempt, fetchLogins] = useAsync(
+    useCallback(
+      async (signal: AbortSignal) => {
+        await userService.reloadUser(signal);
+
+        return await userService.fetchConnectMyComputerLogins(signal);
+      },
+      [userService]
+    )
+  );
+
+  useEffect(() => {
+    abortController.current = new AbortController();
+
+    if (fetchLoginsAttempt.status === '') {
+      fetchLogins(abortController.current.signal);
+    }
+
+    return () => {
+      abortController.current.abort();
+    };
+  }, []);
+
+  return (
+    <Flex flexDirection="column" alignItems="flex-start" mb={2} gap={4}>
+      <div>
+        <Header>Start a Session</Header>
+      </div>
+
+      <StyledBox>
+        <Text bold>Step 1: Connect to Your Computer</Text>
+        <Text typography="subtitle1" mb={2}>
+          Optionally verify that you can connect to &ldquo;
+          {meta.resourceName}
+          &rdquo; by starting a session.
+        </Text>
+        {(fetchLoginsAttempt.status === '' ||
+          fetchLoginsAttempt.status === 'processing') && <Indicator />}
+
+        {fetchLoginsAttempt.status === 'error' &&
+          (fetchLoginsAttempt.error instanceof ApiError &&
+          fetchLoginsAttempt.error.response.status === 404 ? (
+            <ErrorWithinStep
+              buttonText="Refresh"
+              buttonOnClick={() => window.location.reload()}
+            >
+              <>
+                For Connect My Computer to work, the role{' '}
+                {connectMyComputer.getRoleNameForUser(storeUser.getUsername())}{' '}
+                must be assigned to you. Refresh this page to repeat the process
+                of enrolling a new resource and then{' '}
+                <Link
+                  href="https://goteleport.com/docs/connect-your-client/teleport-connect/#restarting-the-setup"
+                  target="_blank"
+                >
+                  restart the Connect My Computer setup
+                </Link>{' '}
+                in Teleport Connect.
+              </>
+            </ErrorWithinStep>
+          ) : (
+            <ErrorWithinStep
+              buttonText="Retry"
+              buttonOnClick={() => fetchLogins(abortController.current.signal)}
+            >
+              <>Encountered Error: {fetchLoginsAttempt.statusText}</>
+            </ErrorWithinStep>
+          ))}
+
+        {fetchLoginsAttempt.status === 'success' &&
+          (fetchLoginsAttempt.data.length > 0 ? (
+            <ConnectButton logins={fetchLoginsAttempt.data} node={meta.node} />
+          ) : (
+            <ErrorWithinStep
+              buttonText="Refresh"
+              buttonOnClick={() => window.location.reload()}
+            >
+              <>
+                The role{' '}
+                {connectMyComputer.getRoleNameForUser(storeUser.getUsername())}{' '}
+                does not contain any logins. It has likely been manually edited.
+                Refresh this page to repeat the process of enrolling a new
+                resource and then{' '}
+                <Link
+                  href="https://goteleport.com/docs/connect-your-client/teleport-connect/#restarting-the-setup"
+                  target="_blank"
+                >
+                  restart the Connect My Computer setup
+                </Link>{' '}
+                in Teleport Connect.
+              </>
+            </ErrorWithinStep>
+          ))}
+      </StyledBox>
+
+      <ActionButtons
+        onProceed={props.nextStep}
+        disableProceed={fetchLoginsAttempt.status !== 'success'}
+        lastStep={true}
+        // onPrev is not passed on purpose to disable the back button. The flow would go back to
+        // polling which wouldn't make sense as the user has already connected their computer so the
+        // step would poll forever, unless the user removed the agent and configured it again.
+      />
+    </Flex>
+  );
+};
+
+const ErrorWithinStep = (props: {
+  buttonText: string;
+  buttonOnClick: () => void;
+  children: React.ReactNode;
+}) => (
+  <>
+    <TextIcon mt={2} mb={3}>
+      <Icons.Warning size="medium" ml={1} mr={2} color="error.main" />
+      <Text>{props.children}</Text>
+    </TextIcon>
+
+    <ButtonPrimary type="button" onClick={props.buttonOnClick}>
+      {props.buttonText}
+    </ButtonPrimary>
+  </>
+);
+
+const ConnectButton = ({ logins, node }: { logins: string[]; node: Node }) => {
+  if (logins.length === 1) {
+    return (
+      <ButtonSecondary
+        as="a"
+        target="_blank"
+        href={cfg.getSshConnectRoute({
+          clusterId: node.clusterId,
+          serverId: node.id,
+          login: logins[0],
+        })}
+      >
+        Connect
+      </ButtonSecondary>
+    );
+  }
+
+  return (
+    <MenuLogin
+      textTransform="uppercase"
+      alignButtonWidthToMenu
+      getLoginItems={() => {
+        return sortNodeLogins(logins).map(login => ({
+          login,
+          url: cfg.getSshConnectRoute({
+            clusterId: node.clusterId,
+            serverId: node.id,
+            login,
+          }),
+        }));
+      }}
+      onSelect={(event, login) => {
+        event.preventDefault();
+        openNewTab(
+          cfg.getSshConnectRoute({
+            clusterId: node.clusterId,
+            serverId: node.id,
+            login,
+          })
+        );
+      }}
+      transformOrigin={{
+        vertical: 'top',
+        horizontal: 'right',
+      }}
+      anchorOrigin={{
+        vertical: 'center',
+        horizontal: 'right',
+      }}
+    />
+  );
+};
diff --git a/web/packages/teleport/src/Discover/ConnectMyComputer/LegacyTestConnection/index.ts b/web/packages/teleport/src/Discover/ConnectMyComputer/LegacyTestConnection/index.ts
new file mode 100644
index 0000000000000..351a32d4623de
--- /dev/null
+++ b/web/packages/teleport/src/Discover/ConnectMyComputer/LegacyTestConnection/index.ts
@@ -0,0 +1,17 @@
+/**
+ * Copyright 2023 Gravitational, Inc
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+export { LegacyTestConnection } from './LegacyTestConnection';
diff --git a/web/packages/teleport/src/Discover/ConnectMyComputer/TestConnection/TestConnection.story.tsx b/web/packages/teleport/src/Discover/ConnectMyComputer/TestConnection/TestConnection.story.tsx
index a434554a9bc9e..4f9eb6c910e50 100644
--- a/web/packages/teleport/src/Discover/ConnectMyComputer/TestConnection/TestConnection.story.tsx
+++ b/web/packages/teleport/src/Discover/ConnectMyComputer/TestConnection/TestConnection.story.tsx
@@ -1,11 +1,11 @@
 /**
- * Copyright 2023 Gravitational, Inc
+ * Copyright 2022 Gravitational, Inc.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at
  *
- *      http://www.apache.org/licenses/LICENSE-2.0
+ *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
@@ -19,48 +19,86 @@ import { MemoryRouter } from 'react-router';
 import { initialize, mswLoader } from 'msw-storybook-addon';
 import { rest } from 'msw';
 
-import { nodes } from 'teleport/Nodes/fixtures';
 import { ContextProvider } from 'teleport';
 import cfg from 'teleport/config';
-import { UserContext } from 'teleport/User/UserContext';
+import { nodes } from 'teleport/Nodes/fixtures';
 import { createTeleportContext } from 'teleport/mocks/contexts';
-import { makeDefaultUserPreferences } from 'teleport/services/userPreferences/userPreferences';
+import {
+  DiscoverProvider,
+  DiscoverContextState,
+} from 'teleport/Discover/useDiscover';
 
 import { TestConnection } from './TestConnection';
 
 export default {
   title: 'Teleport/Discover/ConnectMyComputer/TestConnection',
   loaders: [mswLoader],
+  parameters: {
+    msw: {
+      // All handlers within the story must be specified as keys in order to use Storybook's
+      // parameter inheritance to share handlers between stories.
+      //
+      // https://github.com/mswjs/msw-storybook-addon/tree/v1.10.0#composing-request-handlers
+      // https://storybook.js.org/docs/6.5/writing-stories/parameters#rules-of-parameter-inheritance
+      handlers: {
+        renewToken: rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
+          res(ctx.json({}))
+        ),
+        mfaRequired: [
+          rest.post(cfg.getMfaRequiredUrl(), (req, res, ctx) =>
+            res(ctx.json({ required: false }))
+          ),
+        ],
+        connectionDiagnostic: [
+          rest.post(cfg.getConnectionDiagnosticUrl(), (req, res, ctx) =>
+            res(
+              ctx.json({
+                id: '1234',
+                success: true,
+                traces: [
+                  {
+                    traceType: 'rbac node',
+                    status: 'success',
+                    details: 'Everything is a-okay.',
+                  },
+                ],
+              })
+            )
+          ),
+        ],
+      },
+    },
+  },
 };
 
 initialize();
 
-const node = nodes[0];
-
+const node = { ...nodes[0] };
+node.sshLogins = [
+  ...node.sshLogins,
+  'george_washington_really_long_name_testing',
+];
 const agentStepProps = {
   prevStep: () => {},
   nextStep: () => {},
   agentMeta: { resourceName: node.hostname, node, agentMatcherLabels: [] },
 };
 
-export const SingleLogin = () => {
-  return (
-    <Provider>
-      <TestConnection {...agentStepProps} />
-    </Provider>
-  );
-};
+export const SingleLogin = () => (
+  <Provider>
+    <TestConnection {...agentStepProps} />
+  </Provider>
+);
 
 SingleLogin.parameters = {
   msw: {
-    handlers: [
-      rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
-        res(ctx.json({}))
-      ),
-      rest.get(cfg.api.connectMyComputerLoginsPath, (req, res, ctx) =>
-        res(ctx.json({ logins: ['foo'] }))
-      ),
-    ],
+    handlers: {
+      connectMyComputerLogins: [
+        rest.get(cfg.api.connectMyComputerLoginsPath, (req, res, ctx) =>
+          res(ctx.json({ logins: ['foo'] }))
+        ),
+      ],
+    },
   },
 };
 
@@ -74,14 +112,22 @@ export const MultipleLogins = () => {
 
 MultipleLogins.parameters = {
   msw: {
-    handlers: [
-      rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
-        res(ctx.json({}))
-      ),
-      rest.get(cfg.api.connectMyComputerLoginsPath, (req, res, ctx) =>
-        res(ctx.json({ logins: ['foo', 'bar', 'baz'] }))
-      ),
-    ],
+    handlers: {
+      connectMyComputerLogins: [
+        rest.get(cfg.api.connectMyComputerLoginsPath, (req, res, ctx) =>
+          res(
+            ctx.json({
+              logins: [
+                'foo',
+                'bar',
+                'baz',
+                'czesława_maria_de_domo_cieślak_primo_voto_gospodarek_secundo_voto_kowalczyk',
+              ],
+            })
+          )
+        ),
+      ],
+    },
   },
 };
 
@@ -95,14 +141,13 @@ export const NoLogins = () => {
 
 NoLogins.parameters = {
   msw: {
-    handlers: [
-      rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
-        res(ctx.json({}))
-      ),
-      rest.get(cfg.api.connectMyComputerLoginsPath, (req, res, ctx) =>
-        res(ctx.json({ logins: [] }))
-      ),
-    ],
+    handlers: {
+      connectMyComputerLogins: [
+        rest.get(cfg.api.connectMyComputerLoginsPath, (req, res, ctx) =>
+          res(ctx.json({ logins: [] }))
+        ),
+      ],
+    },
   },
 };
 
@@ -116,15 +161,16 @@ export const NoRole = () => {
 
 NoRole.parameters = {
   msw: {
-    handlers: [
-      rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
-        res(ctx.json({}))
-      ),
-      rest.get(cfg.api.connectMyComputerLoginsPath, (req, res, ctx) =>
-        // TODO Check how our error responses look like.
-        res(ctx.status(404), ctx.text('Whoops no role found'))
-      ),
-    ],
+    handlers: {
+      connectMyComputerLogins: [
+        rest.get(cfg.api.connectMyComputerLoginsPath, (req, res, ctx) =>
+          res(
+            ctx.status(404),
+            ctx.json({ error: { message: 'No role found' } })
+          )
+        ),
+      ],
+    },
   },
 };
 
@@ -138,11 +184,13 @@ export const ReloadUserProcessing = () => {
 
 ReloadUserProcessing.parameters = {
   msw: {
-    handlers: [
-      rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
-        res(ctx.delay('infinite'))
-      ),
-    ],
+    handlers: {
+      renewToken: [
+        rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
+          res(ctx.delay('infinite'))
+        ),
+      ],
+    },
   },
 };
 
@@ -156,46 +204,54 @@ export const ReloadUserError = () => {
 
 ReloadUserError.parameters = {
   msw: {
-    handlers: [
+    handlers: {
       // The first handler returns an error immediately. Subsequent requests return after a delay so
       // that we can show a spinner after clicking on "Retry".
-      rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
-        res.once(
-          ctx.status(500),
-          ctx.json({ message: 'Could not renew session' })
-        )
-      ),
-      rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
-        res(
-          ctx.delay(1000),
-          ctx.status(500),
-          ctx.json({ message: 'Could not renew session' })
-        )
-      ),
-    ],
+      renewToken: [
+        rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
+          res.once(
+            ctx.status(500),
+            ctx.json({ message: 'Could not renew session' })
+          )
+        ),
+        rest.post(cfg.api.webRenewTokenPath, (req, res, ctx) =>
+          res(
+            ctx.delay(1000),
+            ctx.status(500),
+            ctx.json({ error: { message: 'Could not renew session' } })
+          )
+        ),
+      ],
+    },
   },
 };
 
 const Provider = ({ children }) => {
   const ctx = createTeleportContext();
-
-  const preferences = makeDefaultUserPreferences();
-  const updatePreferences = () => Promise.resolve();
-  const getClusterPinnedResources = () => Promise.resolve([]);
-  const updateClusterPinnedResources = () => Promise.resolve();
+  const discoverCtx: DiscoverContextState = {
+    ...agentStepProps,
+    currentStep: 0,
+    onSelectResource: () => null,
+    resourceSpec: undefined,
+    exitFlow: () => null,
+    viewConfig: null,
+    indexedViews: [],
+    setResourceSpec: () => null,
+    updateAgentMeta: () => null,
+    emitErrorEvent: () => null,
+    emitEvent: () => null,
+    eventState: null,
+  };
 
   return (
-    <MemoryRouter>
-      <UserContext.Provider
-        value={{
-          preferences,
-          updatePreferences,
-          getClusterPinnedResources,
-          updateClusterPinnedResources,
-        }}
-      >
-        <ContextProvider ctx={ctx}>{children}</ContextProvider>
-      </UserContext.Provider>
+    <MemoryRouter
+      initialEntries={[
+        { pathname: cfg.routes.discover, state: { entity: 'server' } },
+      ]}
+    >
+      <ContextProvider ctx={ctx}>
+        <DiscoverProvider mockCtx={discoverCtx}>{children}</DiscoverProvider>
+      </ContextProvider>
     </MemoryRouter>
   );
 };
diff --git a/web/packages/teleport/src/Discover/ConnectMyComputer/TestConnection/TestConnection.tsx b/web/packages/teleport/src/Discover/ConnectMyComputer/TestConnection/TestConnection.tsx
index ba14c03b6ea77..8fd761b437ab7 100644
--- a/web/packages/teleport/src/Discover/ConnectMyComputer/TestConnection/TestConnection.tsx
+++ b/web/packages/teleport/src/Discover/ConnectMyComputer/TestConnection/TestConnection.tsx
@@ -1,11 +1,11 @@
 /**
- * Copyright 2023 Gravitational, Inc
+ * Copyright 2022 Gravitational, Inc.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at
  *
- *      http://www.apache.org/licenses/LICENSE-2.0
+ *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
@@ -14,40 +14,56 @@
  * limitations under the License.
  */
 
-import React, { useEffect, useCallback, useRef } from 'react';
-
+import React, { useState, useEffect, useCallback, useRef } from 'react';
 import {
   ButtonPrimary,
   ButtonSecondary,
-  Flex,
-  Indicator,
   Text,
+  Box,
+  LabelInput,
+  Indicator,
   Link,
 } from 'design';
-import * as Icons from 'design/Icon';
+import Select from 'shared/components/Select';
 import { useAsync } from 'shared/hooks/useAsync';
-import { MenuLogin } from 'shared/components/MenuLogin';
+import * as Icons from 'design/Icon';
 import * as connectMyComputer from 'shared/connectMyComputer';
 
 import cfg from 'teleport/config';
 import useTeleport from 'teleport/useTeleport';
+import ReAuthenticate from 'teleport/components/ReAuthenticate';
+import { openNewTab } from 'teleport/lib/util';
 import {
+  useConnectionDiagnostic,
+  Header,
   ActionButtons,
+  HeaderSubtitle,
+  ConnectionDiagnosticResult,
   StyledBox,
-  Header,
   TextIcon,
 } from 'teleport/Discover/Shared';
-import { openNewTab } from 'teleport/lib/util';
-import { Node, sortNodeLogins } from 'teleport/services/nodes';
+import { sortNodeLogins } from 'teleport/services/nodes';
 import { ApiError } from 'teleport/services/api/parseError';
 
 import { NodeMeta } from '../../useDiscover';
 
+import type { Option } from 'shared/components/Select';
 import type { AgentStepProps } from '../../types';
+import type { MfaAuthnResponse } from 'teleport/services/mfa';
 
-export const TestConnection = (props: AgentStepProps) => {
+export function TestConnection(props: AgentStepProps) {
   const { userService, storeUser } = useTeleport();
-  const meta = props.agentMeta as NodeMeta;
+  const {
+    runConnectionDiagnostic,
+    attempt: connectionDiagAttempt,
+    diagnosis,
+    nextStep,
+    canTestConnection,
+    showMfaDialog,
+    cancelMfaDialog,
+  } = useConnectionDiagnostic();
+  const node = (props.agentMeta as NodeMeta).node;
+  const [selectedLoginOpt, setSelectedLoginOpt] = useState<Option>();
 
   const abortController = useRef<AbortController>();
   // When the user sets up Connect My Computer in Teleport Connect, a new role gets added to the
@@ -68,11 +84,34 @@ export const TestConnection = (props: AgentStepProps) => {
     )
   );
 
+  const fetchLoginsAndUpdateLoginSelection = async (signal: AbortSignal) => {
+    // fetchLogins is from useAsync which always resolves the underlying promise and uses a Go-style
+    // API for error handling.
+    const [logins, err] = await fetchLogins(signal);
+    if (err) {
+      return;
+    }
+
+    if (logins.length > 0) {
+      setSelectedLoginOpt(mapLoginToSelectOption(logins[0]));
+
+      // Start the test automatically if there are no logins to choose from.
+      if (logins.length == 1) {
+        const { mfaRequired } = await testConnection(logins[0]);
+
+        // If MFA is required, let's just wait for the user to start the connection themselves.
+        if (mfaRequired) {
+          cancelMfaDialog();
+        }
+      }
+    }
+  };
+
   useEffect(() => {
     abortController.current = new AbortController();
 
     if (fetchLoginsAttempt.status === '') {
-      fetchLogins(abortController.current.signal);
+      fetchLoginsAndUpdateLoginSelection(abortController.current.signal);
     }
 
     return () => {
@@ -80,96 +119,161 @@ export const TestConnection = (props: AgentStepProps) => {
     };
   }, []);
 
+  function startSshSession(login: string) {
+    const url = cfg.getSshConnectRoute({
+      clusterId: node.clusterId,
+      serverId: node.id,
+      login,
+    });
+
+    openNewTab(url);
+  }
+
+  function testConnection(login: string, mfaResponse?: MfaAuthnResponse) {
+    return runConnectionDiagnostic(
+      {
+        resourceKind: 'node',
+        resourceName: props.agentMeta.resourceName,
+        sshPrincipal: login,
+      },
+      mfaResponse
+    );
+  }
+
+  const hasMultipleLogins =
+    fetchLoginsAttempt.status === 'success' &&
+    fetchLoginsAttempt.data.length > 1;
+  // If there are multiple logins available, we show an extra step at the beginning, so we have to
+  // account for that when numbering the steps.
+  const stepOffset = hasMultipleLogins ? 1 : 0;
+
   return (
-    <Flex flexDirection="column" alignItems="flex-start" mb={2} gap={4}>
-      <div>
-        <Header>Start a Session</Header>
-      </div>
-
-      <StyledBox>
-        <Text bold>Step 1: Connect to Your Computer</Text>
-        <Text typography="subtitle1" mb={2}>
-          Optionally verify that you can connect to &ldquo;
-          {meta.resourceName}
-          &rdquo; by starting a session.
-        </Text>
-        {(fetchLoginsAttempt.status === '' ||
-          fetchLoginsAttempt.status === 'processing') && <Indicator />}
-
-        {fetchLoginsAttempt.status === 'error' &&
-          (fetchLoginsAttempt.error instanceof ApiError &&
-          fetchLoginsAttempt.error.response.status === 404 ? (
-            <ErrorWithinStep
-              buttonText="Refresh"
-              buttonOnClick={() => window.location.reload()}
-            >
-              <>
-                For Connect My Computer to work, the role{' '}
-                {connectMyComputer.getRoleNameForUser(storeUser.getUsername())}{' '}
-                must be assigned to you. Refresh this page to repeat the process
-                of enrolling a new resource and then{' '}
-                <Link
-                  href="https://goteleport.com/docs/connect-your-client/teleport-connect/#restarting-the-setup"
-                  target="_blank"
-                >
-                  restart the Connect My Computer setup
-                </Link>{' '}
-                in Teleport Connect.
-              </>
-            </ErrorWithinStep>
-          ) : (
-            <ErrorWithinStep
-              buttonText="Retry"
-              buttonOnClick={() => fetchLogins(abortController.current.signal)}
-            >
-              <>Encountered Error: {fetchLoginsAttempt.statusText}</>
-            </ErrorWithinStep>
-          ))}
-
-        {fetchLoginsAttempt.status === 'success' &&
-          (fetchLoginsAttempt.data.length > 0 ? (
-            <ConnectButton logins={fetchLoginsAttempt.data} node={meta.node} />
-          ) : (
-            <ErrorWithinStep
-              buttonText="Refresh"
-              buttonOnClick={() => window.location.reload()}
-            >
-              <>
-                The role{' '}
-                {connectMyComputer.getRoleNameForUser(storeUser.getUsername())}{' '}
-                does not contain any logins. It has likely been manually edited.
-                Refresh this page to repeat the process of enrolling a new
-                resource and then{' '}
-                <Link
-                  href="https://goteleport.com/docs/connect-your-client/teleport-connect/#restarting-the-setup"
-                  target="_blank"
-                >
-                  restart the Connect My Computer setup
-                </Link>{' '}
-                in Teleport Connect.
-              </>
-            </ErrorWithinStep>
-          ))}
-      </StyledBox>
+    <Box>
+      {showMfaDialog && (
+        <ReAuthenticate
+          onMfaResponse={res => testConnection(selectedLoginOpt.value, res)}
+          onClose={cancelMfaDialog}
+        />
+      )}
+      <Header>
+        Test Connection to &ldquo;{props.agentMeta.resourceName}&rdquo;
+      </Header>
+      <HeaderSubtitle>
+        Optionally verify that you can connect to the computer you just added.
+      </HeaderSubtitle>
+
+      {(fetchLoginsAttempt.status === '' ||
+        fetchLoginsAttempt.status === 'processing') && <Indicator />}
+
+      {fetchLoginsAttempt.status === 'error' &&
+        (fetchLoginsAttempt.error instanceof ApiError &&
+        fetchLoginsAttempt.error.response.status === 404 ? (
+          <FetchLoginsAttemptError
+            buttonText="Refresh"
+            buttonOnClick={() => window.location.reload()}
+          >
+            For Connect My Computer to work, the role{' '}
+            {connectMyComputer.getRoleNameForUser(storeUser.getUsername())} must
+            be assigned to you.
+            <br />
+            {$restartSetupInstructions}
+          </FetchLoginsAttemptError>
+        ) : (
+          <FetchLoginsAttemptError
+            buttonText="Retry"
+            buttonOnClick={() =>
+              fetchLoginsAndUpdateLoginSelection(abortController.current.signal)
+            }
+          >
+            Encountered Error: {fetchLoginsAttempt.statusText}
+          </FetchLoginsAttemptError>
+        ))}
 
+      {fetchLoginsAttempt.status === 'success' &&
+        (fetchLoginsAttempt.data.length === 0 ? (
+          <FetchLoginsAttemptError
+            buttonText="Refresh"
+            buttonOnClick={() => window.location.reload()}
+          >
+            The role{' '}
+            {connectMyComputer.getRoleNameForUser(storeUser.getUsername())} does
+            not contain any logins. It has likely been manually edited.
+            <br />
+            {$restartSetupInstructions}
+          </FetchLoginsAttemptError>
+        ) : (
+          <>
+            {hasMultipleLogins && (
+              <StepSkeletonPickUser>
+                <Box width="320px">
+                  <LabelInput>Select Login</LabelInput>
+                  <Select
+                    value={selectedLoginOpt}
+                    options={sortNodeLogins(fetchLoginsAttempt.data).map(
+                      mapLoginToSelectOption
+                    )}
+                    onChange={(o: Option) => setSelectedLoginOpt(o)}
+                    isDisabled={connectionDiagAttempt.status === 'processing'}
+                  />
+                </Box>
+              </StepSkeletonPickUser>
+            )}
+            <ConnectionDiagnosticResult
+              attempt={connectionDiagAttempt}
+              diagnosis={diagnosis}
+              canTestConnection={canTestConnection}
+              testConnection={() => testConnection(selectedLoginOpt.value)}
+              stepNumber={1 + stepOffset}
+              stepDescription="Verify that your computer is accessible"
+              numberAndDescriptionOnSameLine
+            />
+            <StyledBox>
+              <Text bold mb={3}>
+                Step {2 + stepOffset}: Connect to Your Computer
+              </Text>
+              <ButtonSecondary
+                width="200px"
+                onClick={() => startSshSession(selectedLoginOpt.value)}
+              >
+                Start Session
+              </ButtonSecondary>
+            </StyledBox>
+          </>
+        ))}
       <ActionButtons
-        onProceed={props.nextStep}
-        disableProceed={fetchLoginsAttempt.status !== 'success'}
+        disableProceed={
+          fetchLoginsAttempt.status !== 'success' ||
+          fetchLoginsAttempt.data.length === 0
+        }
+        onProceed={nextStep}
         lastStep={true}
         // onPrev is not passed on purpose to disable the back button. The flow would go back to
         // polling which wouldn't make sense as the user has already connected their computer so the
         // step would poll forever, unless the user removed the agent and configured it again.
       />
-    </Flex>
+    </Box>
   );
-};
+}
 
-const ErrorWithinStep = (props: {
+const StepSkeletonPickUser = (props: { children: React.ReactNode }) => (
+  <StyledBox mb={5}>
+    <Text bold mb={3}>
+      Step 1: Pick the OS user to test
+    </Text>
+    {props.children}
+  </StyledBox>
+);
+
+/**
+ * To display the first step, fetchLoginsAttempt must be successful, hence why we show errors from
+ * fetchLoginsAttempt within the first step.
+ */
+const FetchLoginsAttemptError = (props: {
+  children: React.ReactNode;
   buttonText: string;
   buttonOnClick: () => void;
-  children: React.ReactNode;
 }) => (
-  <>
+  <StepSkeletonPickUser>
     <TextIcon mt={2} mb={3}>
       <Icons.Warning size="medium" ml={1} mr={2} color="error.main" />
       <Text>{props.children}</Text>
@@ -178,58 +282,23 @@ const ErrorWithinStep = (props: {
     <ButtonPrimary type="button" onClick={props.buttonOnClick}>
       {props.buttonText}
     </ButtonPrimary>
-  </>
+  </StepSkeletonPickUser>
 );
 
-const ConnectButton = ({ logins, node }: { logins: string[]; node: Node }) => {
-  if (logins.length === 1) {
-    return (
-      <ButtonSecondary
-        as="a"
-        target="_blank"
-        href={cfg.getSshConnectRoute({
-          clusterId: node.clusterId,
-          serverId: node.id,
-          login: logins[0],
-        })}
-      >
-        Connect
-      </ButtonSecondary>
-    );
-  }
+const mapLoginToSelectOption = (login: string) => ({
+  value: login,
+  label: login,
+});
 
-  return (
-    <MenuLogin
-      textTransform="uppercase"
-      alignButtonWidthToMenu
-      getLoginItems={() => {
-        return sortNodeLogins(logins).map(login => ({
-          login,
-          url: cfg.getSshConnectRoute({
-            clusterId: node.clusterId,
-            serverId: node.id,
-            login,
-          }),
-        }));
-      }}
-      onSelect={(event, login) => {
-        event.preventDefault();
-        openNewTab(
-          cfg.getSshConnectRoute({
-            clusterId: node.clusterId,
-            serverId: node.id,
-            login,
-          })
-        );
-      }}
-      transformOrigin={{
-        vertical: 'top',
-        horizontal: 'right',
-      }}
-      anchorOrigin={{
-        vertical: 'center',
-        horizontal: 'right',
-      }}
-    />
-  );
-};
+const $restartSetupInstructions = (
+  <>
+    Refresh this page to repeat the process of enrolling a new resource and then{' '}
+    <Link
+      href="https://goteleport.com/docs/connect-your-client/teleport-connect/#restarting-the-setup"
+      target="_blank"
+    >
+      restart the Connect My Computer setup
+    </Link>{' '}
+    in Teleport Connect.
+  </>
+);
diff --git a/web/packages/teleport/src/Discover/ConnectMyComputer/index.ts b/web/packages/teleport/src/Discover/ConnectMyComputer/index.ts
index 2c043f7bd6bd9..b0496bb20b65b 100644
--- a/web/packages/teleport/src/Discover/ConnectMyComputer/index.ts
+++ b/web/packages/teleport/src/Discover/ConnectMyComputer/index.ts
@@ -17,10 +17,12 @@
 import { ResourceViewConfig } from 'teleport/Discover/flow';
 import { Finished, ResourceKind } from 'teleport/Discover/Shared';
 import { DiscoverEvent } from 'teleport/services/userEvent';
+import { storageService } from 'teleport/services/storageService';
 
 import { ResourceSpec } from '../SelectResource';
 
 import { SetupConnect } from './SetupConnect';
+import { LegacyTestConnection } from './LegacyTestConnection';
 import { TestConnection } from './TestConnection';
 
 export const ConnectMyComputerResource: ResourceViewConfig<ResourceSpec> = {
@@ -31,14 +33,19 @@ export const ConnectMyComputerResource: ResourceViewConfig<ResourceSpec> = {
       component: SetupConnect,
       eventName: DiscoverEvent.DeployService,
     },
-    {
-      // TODO(ravicious): Rename this to "Test Connection" after implementing the connection test.
-      title: 'Start a Session',
-      component: TestConnection,
-      eventName: DiscoverEvent.TestConnection,
-      // TODO(ravicious): Manually emit success event on test connection success.
-      manuallyEmitSuccessEvent: true,
-    },
+    storageService.isDiscoverConnectMyComputerNewConnectionTestEnabled()
+      ? {
+          title: 'Test Connection',
+          component: TestConnection,
+          eventName: DiscoverEvent.TestConnection,
+          manuallyEmitSuccessEvent: true,
+        }
+      : {
+          title: 'Start a Session',
+          component: LegacyTestConnection,
+          eventName: DiscoverEvent.TestConnection,
+          manuallyEmitSuccessEvent: true,
+        },
     {
       title: 'Finished',
       component: Finished,
diff --git a/web/packages/teleport/src/Discover/Shared/ConnectionDiagnostic/ConnectionDiagnosticResult.story.tsx b/web/packages/teleport/src/Discover/Shared/ConnectionDiagnostic/ConnectionDiagnosticResult.story.tsx
index 28e0e7178ba86..734104cdf7ef7 100644
--- a/web/packages/teleport/src/Discover/Shared/ConnectionDiagnostic/ConnectionDiagnosticResult.story.tsx
+++ b/web/packages/teleport/src/Discover/Shared/ConnectionDiagnostic/ConnectionDiagnosticResult.story.tsx
@@ -29,6 +29,14 @@ export const Init = () => (
   <ConnectionDiagnosticResult {...props} diagnosis={null} />
 );
 
+export const NumberAndDescriptionOnSameLine = () => (
+  <ConnectionDiagnosticResult
+    {...props}
+    numberAndDescriptionOnSameLine
+    diagnosis={null}
+  />
+);
+
 export const DiagnosisSuccess = () => (
   <ConnectionDiagnosticResult
     {...props}
diff --git a/web/packages/teleport/src/Discover/Shared/ConnectionDiagnostic/ConnectionDiagnosticResult.tsx b/web/packages/teleport/src/Discover/Shared/ConnectionDiagnostic/ConnectionDiagnosticResult.tsx
index f9dfd30ba4d2b..b8a68fa1cb60d 100644
--- a/web/packages/teleport/src/Discover/Shared/ConnectionDiagnostic/ConnectionDiagnosticResult.tsx
+++ b/web/packages/teleport/src/Discover/Shared/ConnectionDiagnostic/ConnectionDiagnosticResult.tsx
@@ -33,6 +33,7 @@ export function ConnectionDiagnosticResult({
   testConnection,
   stepNumber,
   stepDescription,
+  numberAndDescriptionOnSameLine,
 }: Props) {
   const showDiagnosisOutput = !!diagnosis || attempt.status === 'failed';
 
@@ -62,10 +63,18 @@ export function ConnectionDiagnosticResult({
 
   return (
     <StyledBox mb={5}>
-      <Text bold>Step {stepNumber}</Text>
-      <Text typography="subtitle1" mb={3}>
-        {stepDescription}
-      </Text>
+      {numberAndDescriptionOnSameLine ? (
+        <Text bold mb={3}>
+          Step {stepNumber}: {stepDescription}
+        </Text>
+      ) : (
+        <>
+          <Text bold>Step {stepNumber}</Text>
+          <Text typography="subtitle1" mb={3}>
+            {stepDescription}
+          </Text>
+        </>
+      )}
       <Flex alignItems="center" mt={3}>
         {canTestConnection ? (
           <>
@@ -170,4 +179,5 @@ export type Props = {
   testConnection(): void;
   stepNumber: number;
   stepDescription: string;
+  numberAndDescriptionOnSameLine?: boolean;
 };
diff --git a/web/packages/teleport/src/Discover/Shared/ConnectionDiagnostic/useConnectionDiagnostic.ts b/web/packages/teleport/src/Discover/Shared/ConnectionDiagnostic/useConnectionDiagnostic.ts
index 4e54b4939b0f3..ce1dd4670813e 100644
--- a/web/packages/teleport/src/Discover/Shared/ConnectionDiagnostic/useConnectionDiagnostic.ts
+++ b/web/packages/teleport/src/Discover/Shared/ConnectionDiagnostic/useConnectionDiagnostic.ts
@@ -44,17 +44,21 @@ export function useConnectionDiagnostic() {
 
   const [showMfaDialog, setShowMfaDialog] = useState(false);
 
-  // runConnectionDiagnostic depending on the value of `mfaAuthnResponse` does the following:
-  //   1) If param `mfaAuthnResponse` is undefined or null, it will check if MFA is required.
-  //      - If MFA is required, it sets a flag that indicates a users
-  //        MFA credentials are required, and skips the request to test connection.
-  //      - If MFA is NOT required, it makes the request to test connection.
-  //   2) If param `mfaAuthnResponse` is defined, it skips checking if MFA is required,
-  //      and makes the request to test connection.
+  /**
+   * runConnectionDiagnostic depending on the value of `mfaAuthnResponse` does the following:
+   *   1) If param `mfaAuthnResponse` is undefined or null, it will check if MFA is required.
+   *      - If MFA is required, it sets a flag that indicates a users
+   *        MFA credentials are required, and skips the request to test connection.
+   *      - If MFA is NOT required, it makes the request to test connection.
+   *   2) If param `mfaAuthnResponse` is defined, it skips checking if MFA is required,
+   *      and makes the request to test connection.
+   *
+   * The return value can be used within event handlers where you cannot depend on React state.
+   */
   async function runConnectionDiagnostic(
     req: ConnectionDiagnosticRequest,
     mfaAuthnResponse?: MfaAuthnResponse
-  ) {
+  ): Promise<{ mfaRequired: boolean }> {
     setDiagnosis(null); // reset since user's can re-test connection.
     setRanDiagnosis(true);
     setShowMfaDialog(false);
@@ -67,7 +71,7 @@ export function useConnectionDiagnostic() {
         const sessionMfa = await auth.checkMfaRequired(mfaReq);
         if (sessionMfa.required) {
           setShowMfaDialog(true);
-          return;
+          return { mfaRequired: true };
         }
       }
 
@@ -97,6 +101,8 @@ export function useConnectionDiagnostic() {
       handleError(err);
       emitErrorEvent(err.message);
     }
+
+    return { mfaRequired: false };
   }
 
   function cancelMfaDialog() {
diff --git a/web/packages/teleport/src/services/storageService/storageService.ts b/web/packages/teleport/src/services/storageService/storageService.ts
index 3b33f09fbd658..19d53e36ff498 100644
--- a/web/packages/teleport/src/services/storageService/storageService.ts
+++ b/web/packages/teleport/src/services/storageService/storageService.ts
@@ -36,6 +36,7 @@ const KEEP_LOCALSTORAGE_KEYS_ON_LOGOUT = [
   KeysEnum.USER_PREFERENCES,
   KeysEnum.RECOMMEND_FEATURE,
   KeysEnum.UNIFIED_RESOURCES_DISABLED,
+  KeysEnum.DISCOVER_CONNECT_MY_COMPUTER_NEW_CONNECTION_TEST_ENABABLED,
 ];
 
 export const storageService = {
@@ -259,4 +260,12 @@ export const storageService = {
     }
     return false;
   },
+
+  isDiscoverConnectMyComputerNewConnectionTestEnabled(): boolean {
+    return (
+      window.localStorage.getItem(
+        KeysEnum.DISCOVER_CONNECT_MY_COMPUTER_NEW_CONNECTION_TEST_ENABABLED
+      ) === 'true'
+    );
+  },
 };
diff --git a/web/packages/teleport/src/services/storageService/types.ts b/web/packages/teleport/src/services/storageService/types.ts
index e9a1e114f8660..e6bc3df5e766a 100644
--- a/web/packages/teleport/src/services/storageService/types.ts
+++ b/web/packages/teleport/src/services/storageService/types.ts
@@ -34,6 +34,8 @@ export const KeysEnum = {
   ACCESS_GRAPH_QUERY: 'grv_teleport_access_graph_query',
   ACCESS_GRAPH_ENABLED: 'grv_teleport_access_graph_enabled',
   ACCESS_GRAPH_SQL_ENABLED: 'grv_teleport_access_graph_sql_enabled',
+  DISCOVER_CONNECT_MY_COMPUTER_NEW_CONNECTION_TEST_ENABABLED:
+    'grv_teleport_discover_connect_my_computer_new_connection_test_enabled',
 };
 
 // SurveyRequest is the request for sending data to the back end