chore: Abstract unlock method into Authentication service

[Cal-L]

Description

This PR introduces a consolidated unlockWallet method in the Authentication service. In follow up PRs, we will be replacing both userEntryAuth and appTriggeredAuth invocations with this new method. Under the hood, unlockWallet handles both manual and biometric password login as well as seedless onboarding checks. Unit tests has been provided to validate functionality.

Changelog

CHANGELOG entry:

Related issues

Fixes: https://consensyssoftware.atlassian.net/browse/MCWP-238

Manual testing steps

Feature: my feature name

  Scenario: user [verb for user action]
    Given [describe expected initial app state]

    When user [verb for user action]
    Then [describe expected outcome]

Screenshots/Recordings

Before

After

Pre-merge author checklist

• I’ve followed MetaMask Contributor Docs and MetaMask Mobile Coding Standards.
• I've completed the PR template to the best of my ability
• I’ve included tests if applicable
• I’ve documented my code using JSDoc format if applicable
• I’ve applied the right labels on the PR (see labeling guidelines). Not required for external contributors.

Pre-merge reviewer checklist

• I've manually tested the PR (e.g. pull and build branch, run the app, test code being changed).
• I confirm that this PR addresses all acceptance criteria described in the ticket it closes and includes the necessary testing evidence such as recordings and or screenshots.

---

Note

Adds a unified wallet unlock path and supporting utilities to streamline login flows and error handling.

• Introduces Authentication.unlockWallet to handle manual/biometric login, seedless rehydration/password sync checks, post-login ops, and navigation to onboarding or home
• Adds utils (handlePasswordSubmissionError, checkPasswordRequirement), constants (error strings, MIN_PASSWORD_LENGTH), and types (UnlockWalletErrorType) for granular error handling
• Exposes unlockWallet via useAuthentication hook
• Resets biometrics after password change and tidies lockApp (explicit keyring lock, state reset, navigation)
• Extensive unit tests for unlockWallet and new utils; adjusts existing tests (e.g., vault recreation failure expectations)
• Adds placeholder store/sagas/authentication.ts for future state machine integration

^{Written by Cursor Bugbot for commit c65e0e2. This will update automatically on new commits. Configure here.}

[github-actions]

CLA Signature Action: All authors have signed the CLA. You may need to manually re-run the blocking PR check if it doesn't pass in a few minutes.

[github-actions]

🔍 Smart E2E Test Selection

• Selected E2E tags: SmokeCore, SmokeAccounts, SmokeWalletPlatform, SmokeWalletUX, SmokeIdentity
• Risk Level: high
• AI Confidence: 85%

click to see 🤖 AI reasoning details

The changes are in the critical app/core/Authentication/ module, which handles wallet unlocking, biometric authentication, password management, and seedless onboarding flows.

Key changes include:

1. New unlockWallet method - A comprehensive method for unlocking the wallet that handles:

   • Existing users vs new users (navigation to onboarding vs home)
   • Password derivation from biometric credentials (FaceID, TouchID, Pincode)
   • Seedless onboarding flows (oauth2Login, rehydrateSeedPhrase, syncPasswordAndUnlockWallet)
   • Post-login operations (dispatchLogin, dispatchPasswordSet, postLoginAsyncOperations)
   • Error handling with proper error types

2. New utility functions for password error handling and validation

3. New constants and types for unlock wallet error messages and error types

4. Hook update exposing unlockWallet through useAuthentication

5. Saga file (commented out) for future authentication state machine

While the saga code is commented out and the unlockWallet method isn't actively called in production code yet (only exposed through hook), the Authentication module is a critical dependency for:

• Login/unlock flows
• Security settings
• Reveal private credentials
• Delete wallet functionality
• Identity effects

The changes also include modifications to the lockApp method with additional comments and the syncPasswordAndUnlockWallet method (removed some error handling code in tests).

Given the high-risk nature of authentication changes and their potential impact on core wallet functionality, comprehensive testing is warranted.

View GitHub Actions results

[sonarqubecloud]

Quality Gate passed

Issues
13 New issues
0 Accepted issues

Measures
5 Security Hotspots
97.4% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud