Getting Started with Test Mode for Magic SDK
Getting Started with Test Mode for Magic SDK
Magic client-side Web SDK provides Test Mode as a quick way to test your integration locally by asserting specific error codes or bypassing the magic link flow completely.
#Usage
To enable Test Mode, provide testMode: true to the SDK constructor.
01import { Magic } from 'magic-sdk';
02
03const magic = new Magic('YOUR_API_KEY', {
04 testMode: true,
05});
With Test Mode enabled, you can assert the desired behavior through the email address you provide to loginWithMagicLink.
To assert a success state, use test+success@magic.link.
01magic.auth.loginWithMagicLink({ email: 'test+success@magic.link' });
Users created in test mode are ephemeral. It is advised that you do not associate these users to persistent data in your backend. If you are building an integration with cryptocurrency or Web3 features, please take a look at the advanced usage section below.
To assert a failed state, use test+fail@magic.link.
01magic.auth.loginWithMagicLink({ email: 'test+fail@magic.link' });
To assert a case-specific failed state, you can also provide an RPC error code with test+fail_with_{RPC_ERROR_CODE}@magic.link.
01import { RPCErrorCode } from 'magic-sdk';
02
03magic.auth.loginWithMagicLink({ email: `test+fail_with_{${RPCErrorCode.MagicLinkFailedVerification}}@magic.link` });
04magic.auth.loginWithMagicLink({ email: `test+fail_with_{${RPCErrorCode.MagicLinkExpired}}@magic.link` });
05magic.auth.loginWithMagicLink({ email: `test+fail_with_{${RPCErrorCode.MagicLinkRateLimited}}@magic.link` });
06...
You can find a list of relevant RPC error codes here.
#Advanced Usage
Web3 and blockchain use-cases sometimes require access to deterministic key-pairs so that testnet funds are available at runtime. To enable this, users can explicitly specify the key-pair associated to a test user, like so:
01test+success_with_{PUBLIC_KEY:PRIVATE_KEY}@magic.link
The key-pair provided in the email address during test mode is not protected by Magic's delegated key management system. These keys should not be considered secure or private. Never store mainnet funds with these keys!
In practice, you can assert a successful login with:
01magic.auth.loginWithMagicLink({
02 email:
03 'test+success_with_{0x89A3983da27fF0eFCF901F74C4df84e0450A17B7:0x19de850af732e9e5745915162d707d6d8cf013ce7b2862e93081b0c8883bdfae}@magic.link',
04});
In the example above, we encode an Ethereum-compatible key-pair in the test user's email address. The login method will immediately resolve with a success state, bypassing the passwordless flow and enabling Ethereum or EVM-compatible signing methods to work seamlessly with your existing Web3 code.
#Expected Behavior
Client-side Web SDK methods
- The
loginWithMagicLinkmethod from the Auth Module will be the only login option to assert the desired behavior. Passingtest+success@magic.linkinto theloginWithEmailOTPmethod will throw anRPCError. - Attempting to change the email address via use of the
updateEmailmethod from the User Module will throw anRPCError. - You can generate a new DID token via use of the
getIdTokenorgenerateIdTokenmethods from the User Module. - Calling the
getMetadatamethod from the User Module whiletest+success@magic.linkis logged in will return the following;
01{
02 issuer: 'did:ethr:0x1e9FF803fFA22209A10A087cc8361d4aa3528c45',
03 publicAddress: '0x1e9FF803fFA22209A10A087cc8361d4aa3528c45',
04 email: 'test+success@magic.link'
05}
- Calling the
isLoggedInmethod from the User Module will return a boolean value after checking iftest+success@magic.linkis currently logged in. - Calling the
logoutmethod from the User Module will logtest+success@magic.linkout.
Server-side SDK methods
magicClient.auth.loginWithMagicLink({ email: 'test+success@magic.link' })resolves to a DID token that is not valid to all server-side SDK methods.- Passing the DID token to the
validatemethod from the Token Module will throw anIncorrectSignerAddresserror. - Passing the DID token to the
getIssuermethod from the Token Module will return the following;
01{
02 issuer: "did:ethr:0x1e9FF803fFA22209A10A087cc8361d4aa3528c45"
03}
- Passing the DID token to the
getPublicAddressmethod from the Token Module will return the following;
01{
02 publicAddress: "0x1e9FF803fFA22209A10A087cc8361d4aa3528c45"
03}
- Passing the DID token to the
decodemethod from the Token Module will return[string, Claim]: containing the[proof, claim]that composes the DID token.
01import { Claim } from '@magic-sdk/admin';
02
03interface Claim {
04 iat: number; // Issued At Timestamp
05 ext: number; // Expiration Timestamp
06 iss: string; // Issuer of DID Token
07 sub: string; // Subject
08 aud: string; // Audience
09 nbf: number; // Not Before Timestamp
10 tid: string; // DID Token ID
11 add: string; // (optional) Misc additional signed data
12}
- Passing the DID token to any method from the User Module will throw a
ServiceErrorerror. Getting metadata server-side is not supported from the Test Mode DID token. Logging out via server-side SDK methodlogoutis also not supported.
