fix(settings): Nav to signin totp if already enabled

packages/fxa-settings/src/pages/InlineTotpSetup/container.test.tsx

@@ -245,6 +245,45 @@ describe('InlineTotpSetupContainer', () => {
         );
       });
     });
+
+    it('does not call createTotp while TOTP status is loading', async () => {
+      mockTotpStatusQuery.mockImplementation(() => {
+        return {
+          data: null,
+          loading: true,
+        };
+      });
+      jest
+        .spyOn(ApolloClientModule, 'useQuery')
+        .mockReturnValue(mockTotpStatusQuery());
+
+      render();
+
+      await waitFor(() => {
+        expect(mockCreateTotpMutation).not.toHaveBeenCalled();
+      });
+    });
+
+    it('does not call createTotp when TOTP is already verified', async () => {
+      mockSessionHook.mockImplementationOnce(() => ({
+        isSessionVerified: async () => true,
+      }));
+      mockTotpStatusQuery.mockImplementation(() => {
+        return {
+          data: MOCK_TOTP_STATUS_VERIFIED,
+          loading: false,
+        };
+      });
+      jest
+        .spyOn(ApolloClientModule, 'useQuery')
+        .mockReturnValue(mockTotpStatusQuery());
+
+      render();
+
+      await waitFor(() => {
+        expect(mockCreateTotpMutation).not.toHaveBeenCalled();
+      });
+    });
   });
 
   describe('renders', () => {

packages/fxa-settings/src/pages/InlineTotpSetup/container.tsx

@@ -91,8 +91,9 @@ export const InlineTotpSetupContainer = ({
   useEffect(() => {
     if (
       totp !== undefined ||
-      totpStatus?.account?.totp.verified === true ||
-      isTotpCreating.current
+      totpStatus?.account?.totp.verified ||
+      isTotpCreating.current ||
+      totpStatusLoading
     ) {
       return;
     }
@@ -171,7 +172,7 @@ export const InlineTotpSetupContainer = ({
   if (
     !isSignedIn ||
     !signinState ||
-    totpStatusLoading === true ||
+    totpStatusLoading ||
     totp === undefined ||
     sessionVerified === undefined
   ) {

packages/fxa-settings/src/pages/ResetPassword/ResetPasswordConfirmed/container.tsx

@@ -53,6 +53,9 @@ const ResetPasswordConfirmedContainer = ({
       error.errno === AuthUiErrors.TOTP_REQUIRED.errno ||
       error.errno === AuthUiErrors.INSUFFICIENT_ACR_VALUES.errno
     ) {
+      // in most cases, this error will be returned because the account doesn't have TOTP enabled
+      // in the case where the account has TOTP enabled, it will be redirected to signin_totp_code
+      // from inline_totp_setup
       navigateWithQuery(`/inline_totp_setup`, {
         state: {
           email,

packages/fxa-settings/src/pages/Signin/utils.ts

@@ -525,8 +525,13 @@ const getOAuthNavigationTarget = async (
       error.errno === AuthUiErrors.INSUFFICIENT_ACR_VALUES.errno
     ) {
       GleanMetrics.login.error({ event: { reason: error.message } });
+      // If user already has TOTP enabled, send them to enter their code instead of setup
+      const hasTotp =
+        locationState.verificationMethod === VerificationMethods.TOTP_2FA;
       return {
-        to: `/inline_totp_setup${navigationOptions.queryParams || ''}`,
+        to: hasTotp
+          ? `/signin_totp_code${navigationOptions.queryParams || ''}`
+          : `/inline_totp_setup${navigationOptions.queryParams || ''}`,
         locationState,
       };
     }