fix(auth): Pass correct client/service name to mailer

nshirley · nshirley · commit 917ced7a8622 · 2026-02-12T11:36:27.000-07:00
Because: - The old mailer would internally call to oauth_info_service This Commit: - Fixes a few places that were missed to call oauth_info_service and pass the correct clientName to the templates - verifyLogin, and verifyLoginCode email templates are fixed Closes: FXA-13055
diff --git a/packages/fxa-auth-server/lib/routes/emails.js b/packages/fxa-auth-server/lib/routes/emails.js
@@ -17,6 +17,7 @@ const validators = require('./validators');
 const { reportSentryError } = require('../sentry');
 const { emailsMatch, normalizeEmail } = require('fxa-shared').email.helpers;
 const { recordSecurityEvent } = require('./utils/security-event');
+const { OAuthClientInfoServiceName } = require('../senders/oauth_client_info');
 const EMAILS_DOCS = require('../../docs/swagger/emails-api').default;
 const DESCRIPTION = require('../../docs/swagger/shared/descriptions').default;
 const HEX_STRING = validators.HEX_STRING;
@@ -139,6 +140,7 @@ module.exports = (
   statsd
 ) => {
   const fxaMailer = Container.get(FxaMailer);
+  const oauthClientInfoService = Container.get(OAuthClientInfoServiceName);
 
   const REMINDER_PATTERN = new RegExp(
     `^(?:${verificationReminders.keys.join('|')})$`
@@ -870,6 +872,7 @@ module.exports = (
           await request.emitMetricsEvent(`email.verification.resent`);
         } else {
           if (fxaMailer.canSend('verifyLogin')) {
+            const clientInfo = await oauthClientInfoService.fetch(service);
             await fxaMailer.sendVerifyLoginEmail({
               ...FxaMailerFormat.account(account),
               ...(await FxaMailerFormat.metricsContext(request)),
@@ -879,7 +882,7 @@ module.exports = (
               ...FxaMailerFormat.sync(service),
               code,
               service,
-              clientName: 'Firefox',
+              clientName: clientInfo.name,
               redirectTo: request.payload.redirectTo,
               resume: request.payload.resume,
             });
diff --git a/packages/fxa-auth-server/lib/routes/utils/signin.js b/packages/fxa-auth-server/lib/routes/utils/signin.js
@@ -18,6 +18,9 @@ const { RelyingPartyConfigurationManager } = require('@fxa/shared/cms');
 const requestHelper = require('./request_helper');
 const { FxaMailer } = require('../../senders/fxa-mailer');
 const { FxaMailerFormat } = require('../../senders/fxa-mailer-format');
+const {
+  OAuthClientInfoServiceName,
+} = require('../../senders/oauth_client_info');
 
 const BASE_36 = validators.BASE_36;
 
@@ -52,6 +55,7 @@ module.exports = (
     : null;
 
   const fxaMailer = Container.get(FxaMailer);
+  const oauthClientInfoService = Container.get(OAuthClientInfoServiceName);
 
   return {
     validators: {
@@ -436,7 +440,7 @@ module.exports = (
               code: emailCode,
               resume,
               redirectTo,
-              service
+              service,
             });
           } else {
             await mailer.sendVerifyEmail([], accountRecord, {
@@ -504,6 +508,7 @@ module.exports = (
         const geoData = request.app.geo;
         try {
           if (fxaMailer.canSend('verifyLogin')) {
+            const clientInfo = await oauthClientInfoService.fetch(service);
             await fxaMailer.sendVerifyLoginEmail({
               ...FxaMailerFormat.account(accountRecord),
               ...(await FxaMailerFormat.metricsContext(request)),
@@ -512,7 +517,7 @@ module.exports = (
               ...FxaMailerFormat.device(request),
               ...FxaMailerFormat.sync(service),
               code: sessionToken.tokenVerificationId,
-              clientName: 'Firefox',
+              clientName: clientInfo.name,
               redirectTo: redirectTo,
               service: service,
               resume: resume,
@@ -562,6 +567,7 @@ module.exports = (
 
         try {
           if (fxaMailer.canSend('verifyLoginCode')) {
+            const clientInfo = await oauthClientInfoService.fetch(service);
             await fxaMailer.sendVerifyLoginCodeEmail({
               ...FxaMailerFormat.account(accountRecord),
               ...(await FxaMailerFormat.metricsContext(request)),
@@ -571,11 +577,13 @@ module.exports = (
               ...FxaMailerFormat.sync(service),
               ...FxaMailerFormat.cmsLogo(rpCmsConfig?.shared),
               ...FxaMailerFormat.cmsRpInfo(rpCmsConfig),
-              ...FxaMailerFormat.cmsEmailSubject(rpCmsConfig?.VerifyLoginCodeEmail),
+              ...FxaMailerFormat.cmsEmailSubject(
+                rpCmsConfig?.VerifyLoginCodeEmail
+              ),
               code,
               redirectTo,
               resume,
-              serviceName: service,
+              serviceName: clientInfo.name,
             });
           } else {
             const { timeZone } = request.app.geo;
diff --git a/packages/fxa-auth-server/test/local/routes/emails.js b/packages/fxa-auth-server/test/local/routes/emails.js
@@ -365,6 +365,7 @@ describe('/recovery_email/status', () => {
   });
   const stripeHelper = mocks.mockStripeHelper();
   stripeHelper.hasActiveSubscription = sinon.fake.resolves(false);
+  mocks.mockOAuthClientInfo();
   const accountRoutes = makeRoutes({
     config: config,
     db: mockDB,
@@ -382,6 +383,7 @@ describe('/recovery_email/status', () => {
   describe('invalid email', () => {
     let mockRequest;
     beforeEach(() => {
+      mocks.mockOAuthClientInfo();
       mockRequest = mocks.mockRequest({
         credentials: {
           email: TEST_EMAIL_INVALID,
@@ -580,6 +582,9 @@ describe('/recovery_email/resend_code', () => {
     return Promise.resolve();
   });
   const mockMailer = mocks.mockMailer();
+  mocks.mockOAuthClientInfo({
+    fetch: sinon.stub().resolves({ name: 'Firefox' }),
+  });
   const mockFxaMailer = mocks.mockFxaMailer();
   const mockMetricsContext = mocks.mockMetricsContext();
   const accountRoutes = makeRoutes({
@@ -750,6 +755,7 @@ describe('/recovery_email/verify_code', () => {
   };
   const mockDB = mocks.mockDB(dbData, dbErrors);
   const mockMailer = mocks.mockMailer();
+  mocks.mockOAuthClientInfo();
   const mockFxaMailer = mocks.mockFxaMailer();
   const mockPush = mocks.mockPush();
   const mockCustoms = mocks.mockCustoms();
@@ -1132,6 +1138,7 @@ describe('/recovery_email', () => {
   const mockCustoms = mocks.mockCustoms();
 
   beforeEach(() => {
+    mocks.mockOAuthClientInfo();
     mockRequest = mocks.mockRequest({
       credentials: {
         uid: uuid.v4({}, Buffer.alloc(16)).toString('hex'),
@@ -1196,6 +1203,7 @@ describe('/recovery_email', () => {
 describe('/mfa/recovery_email/secondary/resend_code', () => {
   let fxaMailer;
   beforeEach(() => {
+    mocks.mockOAuthClientInfo();
     fxaMailer = mocks.mockFxaMailer();
   });
   afterEach(() => {
diff --git a/packages/fxa-auth-server/test/local/routes/password.js b/packages/fxa-auth-server/test/local/routes/password.js
@@ -73,6 +73,7 @@ describe('/password', () => {
     // mailer mock must be done before route creation/require
     // otherwise it won't pickup the mock we define because
     // of module caching
+    mocks.mockOAuthClientInfo();
     mockFxaMailer = mocks.mockFxaMailer();
     mockAccountEventsManager = mocks.mockAccountEventsManager();
     glean.resetPassword.emailSent.reset();
diff --git a/packages/fxa-auth-server/test/local/routes/utils/signin.js b/packages/fxa-auth-server/test/local/routes/utils/signin.js
@@ -56,6 +56,7 @@ describe('checkPassword', () => {
   let customs, db, signinUtils;
 
   beforeEach(() => {
+    mocks.mockOAuthClientInfo();
     db = mocks.mockDB();
     customs = {
       v2Enabled: sinon.spy(() => true),
@@ -786,6 +787,7 @@ describe('sendSigninNotifications', () => {
     db = mocks.mockDB();
     log = mocks.mockLog();
     mailer = mocks.mockMailer();
+    mocks.mockOAuthClientInfo();
     fxaMailer = mocks.mockFxaMailer();
     metricsContext = mocks.mockMetricsContext();
     request = mocks.mockRequest(defaultMockRequestData(log, metricsContext));
@@ -1149,7 +1151,7 @@ describe('sendSigninNotifications', () => {
             uaOSVersion: '11',
           },
           code: 'tokenVerifyCode',
-          clientName: 'Firefox',
+          clientName: 'sync',
           redirectTo: request.payload.redirectTo,
           service: undefined,
           resume: request.payload.resume,
@@ -1187,7 +1189,17 @@ describe('sendSigninNotifications', () => {
     });
 
     it('emits correct notifications when verificationMethod=email-2fa', () => {
-      return sendSigninNotifications(
+      const oauthClientInfoMock = mocks.mockOAuthClientInfo({
+        fetch: sinon.stub().resolves({ name: undefined }),
+      });
+      // Re-initialize sendSigninNotifications to pick up the new mock
+      const localSendSigninNotifications = makeSigninUtils({
+        log,
+        db,
+        mailer,
+        config,
+      }).sendSigninNotifications;
+      return localSendSigninNotifications(
         request,
         accountRecord,
         sessionToken,
@@ -1212,6 +1224,8 @@ describe('sendSigninNotifications', () => {
           serviceName: undefined,
         });
 
+        assert.calledOnce(oauthClientInfoMock.fetch);
+
         assert.calledTwice(log.flowEvent);
         assert.calledWithMatch(log.flowEvent.getCall(0), {
           event: 'account.login',
@@ -1271,10 +1285,12 @@ describe('sendSigninNotifications', () => {
 
   describe('email verification sending', () => {
     beforeEach(() => {
+      mocks.mockOAuthClientInfo();
       sessionToken.tokenVerified = false;
     });
 
     it('passes service parameter correctly when request wantsKeys', () => {
+      mocks.mockOAuthClientInfo();
       request.query.keys = true;
       request.query.service = 'sync';
       return sendSigninNotifications(
@@ -1290,16 +1306,26 @@ describe('sendSigninNotifications', () => {
     });
 
     it('passes service parameter correctly when service is undefined', () => {
+      const oauthClientInfoMock = mocks.mockOAuthClientInfo();
       request.payload.service = undefined;
-      return sendSigninNotifications(
+
+      // Re-initialize sendSigninNotifications to pick up the new oauthClientInfoMock
+      const localSendSigninNotifications = makeSigninUtils({
+        log,
+        db,
+        mailer,
+        config,
+      }).sendSigninNotifications;
+
+      return localSendSigninNotifications(
         request,
         accountRecord,
         sessionToken,
         'email-otp'
       ).then(() => {
         assert.calledOnce(fxaMailer.sendVerifyLoginCodeEmail);
-        const callArgs = fxaMailer.sendVerifyLoginCodeEmail.getCall(0).args[0];
-        assert.equal(callArgs.serviceName, undefined);
+        assert.calledOnce(oauthClientInfoMock.fetch);
+        assert.calledWith(oauthClientInfoMock.fetch, undefined);
       });
     });
 
@@ -1369,6 +1395,9 @@ describe('sendSigninNotifications', () => {
       sessionToken.tokenVerified = false;
       sessionToken.tokenVerificationId = 'tokenVerifyCode';
       sessionToken.mustVerify = true;
+      mocks.mockOAuthClientInfo({
+        fetch: sinon.stub().resolves({ name: 'mockOauthClientName' }),
+      });
       const rpCmsConfig = {
         clientId: '00f00f',
         shared: {
@@ -1422,7 +1451,7 @@ describe('sendSigninNotifications', () => {
             entrypoint: 'testo',
             redirectTo: req.payload.redirectTo,
             resume: req.payload.resume,
-            serviceName: undefined,
+            serviceName: 'mockOauthClientName',
             cmsRpClientId: rpCmsConfig.clientId,
             cmsRpFromName: rpCmsConfig.shared?.emailFromName,
             logoUrl: rpCmsConfig?.shared?.emailLogoUrl,
@@ -1531,6 +1560,7 @@ describe('createKeyFetchToken', () => {
     createKeyFetchToken;
 
   beforeEach(() => {
+    mocks.mockOAuthClientInfo();
     db = mocks.mockDB();
     password = {
       unwrap: sinon.spy(() => Promise.resolve(Buffer.from('abcdef123456'))),
@@ -1602,6 +1632,7 @@ describe('getSessionVerificationStatus', () => {
   let getSessionVerificationStatus;
 
   beforeEach(() => {
+    mocks.mockOAuthClientInfo();
     getSessionVerificationStatus = makeSigninUtils(
       {}
     ).getSessionVerificationStatus;
@@ -1691,6 +1722,7 @@ describe('cleanupReminders', () => {
   let cleanupReminders, mockCadReminders;
 
   beforeEach(() => {
+    mocks.mockOAuthClientInfo();
     mockCadReminders = mocks.mockCadReminders();
     cleanupReminders = makeSigninUtils({
       cadReminders: mockCadReminders,
diff --git a/packages/fxa-auth-server/test/mocks.js b/packages/fxa-auth-server/test/mocks.js
@@ -1215,7 +1215,7 @@ function mockFxaMailer(overrides) {
 
 function mockOAuthClientInfo(overrides) {
   const mock = {
-    fetch: sinon.stub().resolves('sync'),
+    fetch: sinon.stub().resolves({ name: 'sync' }),
     ...overrides,
   };
   Container.set(OAuthClientInfoServiceName, mock);
