chore: update-flakey-tests

[ryanbas21]

JIRA Ticket

N/A

Description

There's a flakeyness issue i'm just trying to figure out how to solve.

toPass will retry a playwright assertion until it passes. https://playwright.dev/docs/test-assertions#expecttopass

I don't know the root cause of the flakeyness. basically seems like we are just dealing with poor hydration with our ui's which are obviously not fine tuned apps.

Summary by CodeRabbit

• New Features
  • Added initial loading screens and moved header/Home link to render before the app for faster perceived load.
• Tests
  • Improved end-to-end test reliability with retry-wrapped assertions and better navigation synchronization to reduce flakiness.

[changeset-bot]

⚠️ No Changeset found

Latest commit: 5856af2

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[coderabbitai]

Walkthrough

Multiple e2e test files and OIDC app pages were adjusted to improve stability: assertions were wrapped with retryable patterns, navigation/wait synchronization was made sequential, DOM-ready mounting was deferred, UI loading indicators were added, and some TypeScript typings and ESLint Playwright config were introduced.

Changes

Cohort / File(s)	Summary
Davinci suite — retry-wrapped assertions e2e/davinci-suites/src/basic.test.ts, e2e/davinci-suites/src/phone-number-field.test.ts	Replaced direct Playwright assertions and some action checks with retry-enabled wrappers using toPass() to make visibility and click assertions retriable.
OIDC suites — navigation & waits e2e/oidc-suites/src/logout.spec.ts, e2e/oidc-suites/src/login.spec.ts, e2e/oidc-suites/src/token.spec.ts	Switched from racing waits (Promise.all) or helper navigate(...) to explicit click-then-await or direct page.goto(...), introduced explicit page.waitForURL(...) promises and added loading-state assertions.
OIDC app — DOM readiness & UI loading e2e/oidc-app/src/ping-am/index.html, e2e/oidc-app/src/ping-one/index.html, e2e/oidc-app/src/ping-am/main.ts	Hid #app initially, moved header/loading UI outside #app, and deferred app initialization until DOMContentLoaded; added a small console log.
OIDC app — runtime robustness e2e/oidc-app/src/utils/oidc-app.ts, e2e/oidc-app/src/index.ts	Added defensive element existence checks, conditional event wiring, improved error handling for background authorization, toggled loading/app visibility on init; index.ts gained commented-out load listener lines.
Async helper typing & assertions e2e/oidc-suites/src/utils/async-events.ts	Added Page type import and annotation; replaced direct textContent reads with Playwright expect(...).toHaveText() assertions.
ESLint & dep update e2e/oidc-suites/eslint.config.mjs, package.json	Added Playwright ESLint plugin/config and bumped eslint-plugin-playwright devDependency from ^2.0.0 to ^2.2.2.

Sequence Diagram(s)

sequenceDiagram
  participant Test as E2E Test
  participant Page as Browser Page
  participant App as Ping-AM

  rect rgba(58,135,173,0.06)
    Note over Test,Page: Previous flaky pattern (raced wait + click)
    Test-->>Page: Promise.all( waitForURL(...), click(selector) )
    Page-->>Test: navigation completed (race)
  end

  rect rgba(106,168,79,0.06)
    Note over Test,Page: New sequential pattern (stable)
    Test->>Page: click(selector)
    Page->>Test: (returns)
    Test->>Page: await waitForURL(...)
    Page-->>Test: navigation confirmed
  end

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Possibly related PRs

• chore: add-continuous-publish #399 — modifies the same e2e/oidc-suites/src/logout.spec.ts navigation/wait synchronization logic.
• chore: fix-e2e #435 — changes e2e/oidc-suites/src/token.spec.ts navigation and waitForURL handling similar to this PR.

Suggested reviewers

• cerebrl

Poem

🐰
I hopped through tests both day and night,
Wrapped flaky checks to make them right.
Clicked, then waited, steady and sure —
Loading hides, the app’s secure.
Stability tastes like carrot delight. 🥕

Pre-merge checks and finishing touches

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%.	You can run @coderabbitai generate docstrings to improve docstring coverage.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Title Check	✅ Passed	The pull request title "chore: update-flakey-tests" directly relates to the main objective of the changeset. The raw summary shows that the primary changes involve wrapping assertions with toPass() for retry logic, adjusting navigation patterns, and adding loading state checks across multiple test files—all targeted at addressing test flakiness. The title accurately conveys this primary change and is specific enough that a teammate reviewing the commit history would understand the intent is to fix flaky tests. The title is concise and free of noise or vague terminology.
Description Check	✅ Passed	The pull request description follows the required template structure with both the JIRA Ticket section (marked as N/A) and Description section properly filled out. The description provides meaningful context about the flakiness issue, explains the approach of using toPass() for retrying assertions with a link to documentation, and offers the author's hypothesis about the root cause relating to poor hydration in the UIs. While the description could be more comprehensive in detailing all affected files and changes, it meets the template requirements and provides sufficient context for understanding the rationale behind the changes.

✨ Finishing touches

• 📝 Generate docstrings

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch flakey-tests

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[nx-cloud]

View your CI Pipeline Execution ↗ for commit 5856af2

Command	Status	Duration	Result
nx affected -t build typecheck lint test e2e-ci	❌ Failed	1m 28s	View ↗
nx-cloud record -- nx format:check	✅ Succeeded	1s	View ↗

---

☁️ Nx Cloud last updated this comment at 2025-10-23 16:03:08 UTC

[coderabbitai]

Actionable comments posted: 3

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (3)

e2e/davinci-suites/src/basic.test.ts (1)

83-83: Inconsistent retry pattern for identical assertion.

Line 83 checks for the same "Complete" text visibility without the toPass() retry wrapper that was added on line 24. For consistency and to address flakiness uniformly across the test suite, this assertion should also use the retry pattern.

Apply this diff:

-  await expect(page.getByText('Complete')).toBeVisible();
+  await expect(async () => await expect(page.getByText('Complete')).toBeVisible()).toPass();

e2e/davinci-suites/src/phone-number-field.test.ts (1)

96-96: Inconsistent retry pattern for identical assertion.

Line 96 checks for "Registration Complete" heading visibility without the toPass() retry wrapper that was added on lines 49-52 for the same assertion. For consistency and to address flakiness uniformly, this assertion should also use the retry pattern.

Apply this diff:

-    await expect(page.getByRole('heading', { name: 'Registration Complete' })).toBeVisible();
+    await expect(
+      async () =>
+        await expect(page.getByRole('heading', { name: 'Registration Complete' })).toBeVisible(),
+    ).toPass();

e2e/oidc-suites/src/logout.spec.ts (1)

82-85: Inconsistent navigation pattern in PingOne test.

Lines 82-85 still use the old Promise.all pattern for the same post-click navigation scenario that was fixed on lines 41-48 for the PingAM test. For consistency and to address flakiness uniformly, the PingOne test should also use the sequential promise pattern.

Apply this diff:

     await page.getByLabel('Username').fill(pingOneUsername);
     await page.getByRole('textbox', { name: 'Password' }).fill(pingOnePassword);
-    await Promise.all([
-      page.waitForURL('http://localhost:8443/ping-one/**'),
-      page.getByRole('button', { name: 'Sign On' }).click(),
-    ]);
+    const promise = page.waitForURL('http://localhost:8443/ping-one/**');
+    await page.getByRole('button', { name: 'Sign On' }).click();
+
+    /**
+     * This block is flakey, changing to this pattern
+     * https://playwright.dev/docs/network#network-events
+     **/
+    await promise;
     expect(page.url()).toContain('code');

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between f7e3e62 and 8bed7e7.

📒 Files selected for processing (3)

• e2e/davinci-suites/src/basic.test.ts (1 hunks)
• e2e/davinci-suites/src/phone-number-field.test.ts (2 hunks)
• e2e/oidc-suites/src/logout.spec.ts (1 hunks)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (2)

• GitHub Check: Mend Code Security Check
• GitHub Check: pr

🔇 Additional comments (1)

e2e/oidc-suites/src/logout.spec.ts (1)

41-48: Improved navigation synchronization pattern.

The change from Promise.all to sequential promise-based waiting is a better pattern for handling post-click navigation. This ensures the click is issued before awaiting the navigation, which is more reliable in flaky network conditions.

[pkg-pr-new]

Open in StackBlitz

@forgerock/davinci-client

pnpm add https://pkg.pr.new/ForgeRock/ping-javascript-sdk/@forgerock/davinci-client@450

@forgerock/oidc-client

pnpm add https://pkg.pr.new/ForgeRock/ping-javascript-sdk/@forgerock/oidc-client@450

@forgerock/protect

pnpm add https://pkg.pr.new/ForgeRock/ping-javascript-sdk/@forgerock/protect@450

@forgerock/sdk-types

pnpm add https://pkg.pr.new/ForgeRock/ping-javascript-sdk/@forgerock/sdk-types@450

@forgerock/sdk-utilities

pnpm add https://pkg.pr.new/ForgeRock/ping-javascript-sdk/@forgerock/sdk-utilities@450

@forgerock/iframe-manager

pnpm add https://pkg.pr.new/ForgeRock/ping-javascript-sdk/@forgerock/iframe-manager@450

@forgerock/sdk-logger

pnpm add https://pkg.pr.new/ForgeRock/ping-javascript-sdk/@forgerock/sdk-logger@450

@forgerock/sdk-oidc

pnpm add https://pkg.pr.new/ForgeRock/ping-javascript-sdk/@forgerock/sdk-oidc@450

@forgerock/sdk-request-middleware

pnpm add https://pkg.pr.new/ForgeRock/ping-javascript-sdk/@forgerock/sdk-request-middleware@450

@forgerock/storage

pnpm add https://pkg.pr.new/ForgeRock/ping-javascript-sdk/@forgerock/storage@450

commit: 7eff7b1

[github-actions]

Deployed 37586f4 to https://ForgeRock.github.io/ping-javascript-sdk/pr-450/37586f4b8000d5882e381db663a2faf79cc8a28b branch gh-pages in ForgeRock/ping-javascript-sdk

[github-actions]

📦 Bundle Size Analysis

📦 Bundle Size Analysis

🚨 Significant Changes

🔻 @forgerock/journey-client - 0.0 KB (-82.0 KB, -100.0%)

📊 Minor Changes

📈 @forgerock/journey-client - 82.0 KB (+0.0 KB)

➖ No Changes

➖ @forgerock/device-client - 9.2 KB
➖ @forgerock/oidc-client - 23.0 KB
➖ @forgerock/protect - 150.1 KB
➖ @forgerock/sdk-utilities - 7.5 KB
➖ @forgerock/sdk-types - 8.0 KB
➖ @forgerock/storage - 1.4 KB
➖ @forgerock/sdk-logger - 1.6 KB
➖ @forgerock/iframe-manager - 2.4 KB
➖ @forgerock/sdk-request-middleware - 4.4 KB
➖ @forgerock/sdk-oidc - 2.5 KB
➖ @forgerock/davinci-client - 35.4 KB

---

13 packages analyzed • Baseline from latest main build

Legend

🆕 New package
🔺 Size increased
🔻 Size decreased
➖ No change

ℹ️ How bundle sizes are calculated

• Current Size: Total gzipped size of all files in the package's dist directory
• Baseline: Comparison against the latest build from the main branch
• Files included: All build outputs except source maps and TypeScript build cache
• Exclusions: .map, .tsbuildinfo, and .d.ts.map files

---

_{🔄 Updated automatically on each push to this PR}

[ryanbas21]

@coderabbitai review

[coderabbitai]

✅ Actions performed

Review triggered.

Note: CodeRabbit is an incremental review system and does not re-review already reviewed commits. This command is applicable only when automatic reviews are paused.

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (8)

e2e/oidc-app/src/ping-am/main.ts (1)

25-30: Clean up debug artifacts.

The DOMContentLoaded pattern correctly defers initialization to avoid timing issues, but the code contains debug artifacts that should be removed.

Apply this diff to clean up the code:

 document.addEventListener('DOMContentLoaded', async () => {
-  console.log('loaded outside');
-  // (async () => {
   await oidcApp({ config, urlParams });
-  // })();
 });

e2e/oidc-suites/src/logout.spec.ts (1)

82-85: Consider applying the same pattern to PingOne test.

The PingOne logout test still uses Promise.all for navigation (lines 82-85), while the PingAM test now uses the separate promise pattern (lines 41-48) to avoid race conditions. For consistency and to prevent similar flakiness, consider updating this test to match the pattern used in the PingAM test.

Apply this diff:

     await page.getByLabel('Username').fill(pingOneUsername);
     await page.getByRole('textbox', { name: 'Password' }).fill(pingOnePassword);
-    await Promise.all([
-      page.waitForURL('http://localhost:8443/ping-one/**'),
-      page.getByRole('button', { name: 'Sign On' }).click(),
-    ]);
+    const promise = page.waitForURL('http://localhost:8443/ping-one/**');
+    await page.getByRole('button', { name: 'Sign On' }).click();
+    await promise;

e2e/oidc-suites/src/login.spec.ts (1)

20-20: Remove commented code.

The commented out code (previous implementation using navigate) should be removed now that the migration to page.goto() is complete. Leaving commented code reduces readability and can cause confusion.

Apply this diff across the affected lines:

-    const { /* navigate, */ clickButton } = asyncEvents(page);
-    // await page.goto('/ping-am/');
+    const { clickButton } = asyncEvents(page);

And similar cleanup for lines 55, 108, 151, and 164:

-    // const { navigate } = asyncEvents(page);

Also applies to: 38-38, 55-55, 72-72, 90-90, 108-108, 123-123, 151-151, 164-164

e2e/oidc-suites/src/token.spec.ts (2)

188-188: Remove commented code.

The commented destructuring should be removed for consistency with the rest of the file.

Apply this diff:

-    // const { clickButton } = asyncEvents(page);

---

18-104: Consider migrating PingAM tests for consistency.

The PingAM token tests (lines 18-104) still use the navigate helper from asyncEvents, while the PingOne tests have been migrated to use page.goto() with explicit loading checks. For consistency across the test suite and to apply the same flakiness improvements, consider updating the PingAM tests to match the pattern used in PingOne tests.

e2e/oidc-app/src/utils/oidc-app.ts (3)

21-21: Remove commented-out code.

This commented line should be deleted rather than left in the codebase.

-  // const appEl = document.getElementById('app');

---

61-63: Clean up commented-out code and consider debug logs.

The commented window.addEventListener('load') wrapper (lines 62-63, 169) should be removed. The debug console.log statements (lines 61, 66, 99) may be useful for investigating the flaky tests, but consider removing them once the tests are stable.

-  console.log('oidc app called');
-  // window.addEventListener('load', () => {
-  //   console.log('loaded');
   const myButton = document.getElementById('login-background');
   if (myButton) {
-    console.log('button found');
     myButton.addEventListener('click', async () => {
       // ... rest of handler
     });
   } else {
-    console.log('not found');
   }
   // ... other code
-  // });

Also applies to: 169-169

---

20-25: Consider adding type annotation to the error parameter.

For consistency and type safety, add a type annotation similar to the displayTokenResponse function.

-function displayError(error) {
+function displayError(
+  error: GenericError | AuthorizationError | TokenExchangeErrorResponse,
+) {
   // const appEl = document.getElementById('app');
   const errorEl = document.createElement('div');
   errorEl.innerHTML = `<p><strong>Error:</strong> <span class="error">${JSON.stringify(error, null, 2)}</span></p>`;
   document.body.appendChild(errorEl);
 }

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 8bed7e7 and 5856af2.

⛔ Files ignored due to path filters (1)

• pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml

📒 Files selected for processing (13)

• e2e/davinci-suites/src/basic.test.ts (1 hunks)
• e2e/davinci-suites/src/phone-number-field.test.ts (6 hunks)
• e2e/oidc-app/src/index.ts (1 hunks)
• e2e/oidc-app/src/ping-am/index.html (1 hunks)
• e2e/oidc-app/src/ping-am/main.ts (1 hunks)
• e2e/oidc-app/src/ping-one/index.html (1 hunks)
• e2e/oidc-app/src/utils/oidc-app.ts (3 hunks)
• e2e/oidc-suites/eslint.config.mjs (2 hunks)
• e2e/oidc-suites/src/login.spec.ts (9 hunks)
• e2e/oidc-suites/src/logout.spec.ts (1 hunks)
• e2e/oidc-suites/src/token.spec.ts (4 hunks)
• e2e/oidc-suites/src/utils/async-events.ts (2 hunks)
• package.json (1 hunks)

✅ Files skipped from review due to trivial changes (2)

• e2e/oidc-app/src/index.ts
• e2e/oidc-app/src/ping-one/index.html

🚧 Files skipped from review as they are similar to previous changes (2)

• e2e/davinci-suites/src/basic.test.ts
• e2e/davinci-suites/src/phone-number-field.test.ts

🧰 Additional context used

🧬 Code graph analysis (4)

e2e/oidc-app/src/ping-am/main.ts (1)

e2e/oidc-app/src/utils/oidc-app.ts (1)

• oidcApp (48-175)

e2e/oidc-suites/src/login.spec.ts (1)

e2e/oidc-suites/src/utils/async-events.ts (1)

• asyncEvents (9-67)

e2e/oidc-app/src/utils/oidc-app.ts (1)

packages/sdk-types/src/lib/authorize.types.ts (1)

• GetAuthorizationUrlOptions (19-36)

e2e/oidc-suites/src/token.spec.ts (1)

e2e/oidc-suites/src/utils/async-events.ts (2)

• asyncEvents (9-67)
• clickButton (11-18)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (2)

• GitHub Check: Mend Code Security Check
• GitHub Check: pr

🔇 Additional comments (11)

package.json (1)

94-94: LGTM! ESLint plugin update aligns with new configuration.

The version bump from ^2.0.0 to ^2.2.2 is consistent with the new Playwright ESLint configuration added in e2e/oidc-suites/eslint.config.mjs.

e2e/oidc-suites/eslint.config.mjs (1)

2-2: LGTM! Playwright ESLint integration improves test quality.

Adding the Playwright plugin with flat/recommended config will help catch Playwright-specific issues and enforce best practices in test files.

Also applies to: 23-31

e2e/oidc-app/src/ping-am/index.html (1)

10-18: LGTM! Loading state prevents flashes of uninitialized content.

The approach of hiding #app by default and showing a loading indicator addresses the hydration timing issues mentioned in the PR. The navigation elements outside #app ensure they remain visible during initialization.

e2e/oidc-suites/src/logout.spec.ts (1)

41-48: Good fix for navigation race condition.

The separate promise pattern correctly addresses the timing issue by ensuring the URL wait is registered before the navigation is triggered, as documented in the Playwright network events guide.

e2e/oidc-suites/src/utils/async-events.ts (2)

7-7: LGTM! TypeScript typing improves type safety.

Adding explicit Page typing enables better IDE support and catches type errors at compile time, which aligns with the new Playwright ESLint configuration.

Also applies to: 9-9

---

79-80: LGTM! More robust assertions with built-in retries.

Using toHaveText instead of comparing textContent with toBe is more idiomatic for Playwright and provides automatic retries, which helps address the flakiness issues mentioned in the PR.

e2e/oidc-suites/src/login.spec.ts (1)

22-24: LGTM! Loading state checks improve test reliability.

The pattern of using page.goto() with explicit loading state checks (await expect(page.locator('#loading')).toBeHidden()) is a good approach to ensure the app is fully initialized before test interactions. This directly addresses the hydration issues mentioned in the PR.

Also applies to: 39-41, 56-58, 73-75, 91-93, 109-111, 124-126, 152-154, 165-167

e2e/oidc-suites/src/token.spec.ts (2)

108-111: LGTM! Consistent migration to explicit navigation pattern.

The PingOne tests now use direct page.goto() with loading state checks, matching the pattern adopted in login.spec.ts. This improves test reliability by ensuring the app is fully initialized before interactions.

Also applies to: 134-137, 162-165, 188-191

---

117-121: LGTM! Proper handling of navigation timing.

The separate promise pattern (const promise = page.waitForURL(...); await click(); await promise;) correctly addresses race conditions, consistent with the fix in logout.spec.ts.

Also applies to: 143-147, 171-175

e2e/oidc-app/src/utils/oidc-app.ts (2)

56-59: Good defensive UI handling for test stability.

The conditional visibility toggle ensures the app is revealed only after successful OIDC client initialization, which directly addresses the hydration timing issues mentioned in the PR objectives.

---

64-100: Improved defensive button attachment handles hydration timing.

The conditional element existence check before attaching the event listener is a good defensive pattern that prevents errors when the DOM is not fully hydrated. The refactored authorization flow with consolidated error and success handling is cleaner and more maintainable.

[nx-cloud]

Nx Cloud has identified a possible root cause for your failed CI:

Classification: code_change

The failure occurs in the test "login and get tokens" at e2e/oidc-suites/src/token.spec.ts:126:54. The test expects to find an element with ID '#accessToken-1' after clicking the "Get Tokens" button, but the element is not found within the 5-second timeout.

Analysis of the PR changes:
The PR introduced significant changes to the OIDC app's loading behavior by wrapping the app initialization in a DOMContentLoaded event listener (e2e/oidc-app/src/ping-am/main.ts:138-143 and similar changes for ping-one). Additionally, the app content is now hidden by default with a loading indicator shown initially, only revealing the app once the OIDC client successfully initializes (e2e/oidc-app/src/utils/oidc-app.ts:183-186).

Root cause:
The test is failing because the "Get Tokens" button interaction is happening, but the subsequent token display elements (#accessToken-1) are not appearing. Looking at the changes in e2e/oidc-app/src/utils/oidc-app.ts, the login-background button event listener was moved inside a conditional check (lines 212-256) and now includes additional logging and DOM ready checks. However, other button event listeners (like the one for "Get Tokens") remain at the same scope level but may be affected by timing issues related to the new DOMContentLoaded wrapper.

The test at src/token.spec.ts:447-470 was updated to include await expect(page.locator('#loading')).toBeHidden() after navigation and after the Sign On click. However, this particular test expects tokens to be displayed after clicking "Get Tokens", and the token display logic may be experiencing timing issues due to the restructured initialization flow.

The failure is directly related to the intentional code changes made to improve loading synchronization. The test needs to be updated to account for the new loading behavior, potentially adding an additional wait or using the .toPass() pattern that was applied to other tests in this PR. However, the test file token.spec.ts was only partially updated - navigation was changed and loading waits were added, but the actual token retrieval assertion was not wrapped with a retry mechanism like other flaky operations in the PR.

The fix would involve applying the same .toPass() retry pattern to the token assertions to handle the asynchronous nature of the token display after the new loading architecture was implemented.

A code change would likely not resolve this issue, so no action was taken.

View in Nx Cloud ↗

_{🎓 To learn more about Self Healing CI, please visit nx.dev}

[cerebrl]

This PR doesn't sit well with me. Can we discuss this a bit before continuing with this?

[cerebrl]

Can you explain this change?

[cerebrl]

What is the functional reason for this toPass?