Add Selenium diagnostics, CIAM page object, resilient locators, and remove broken B2C browser tests

- Upgrade Selenium 3.14.0 to 4.13.0 (last Java 8-compatible)
- Add SeleniumDiagnostics: screenshot, HTML dump, browser log capture on failure
- Add SeleniumTestWatcher (AfterTestExecutionCallback) for auto-diagnostics
- Add WebDriverProvider interface for test extension access to WebDriver
- Add CIAMLoginPage page object for CIAM-specific login flows
- Add findWithFallback() helper for resilient element locators
- Add fallback locator arrays to AzureADLoginPage and ADFSLoginPage
- Add failsafe rerunFailingTestsCount=1 for transient browser flakiness
- Enable browser console logging via goog:loggingPrefs
- Fix DeviceCodeIT close() to quit() for proper WebDriver cleanup
- Route CIAM/OIDC authorities to correct page objects in SeleniumTest
- Fix scope bug in AcquireTokenInteractiveIT (string literal vs constant)
- Remove broken B2C Selenium tests (B2C coverage via ROPC tests instead)
- Remove B2CLocalLoginPage and related dead code/constants

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>

Author: Avery-Dunn

msal4j-sdk/pom.xml

@@ -307,6 +307,7 @@
                 </executions>
                 <configuration>
                     <skipTests>${skip.integration.tests}</skipTests>
+                    <rerunFailingTestsCount>1</rerunFailingTestsCount>
                     <systemPropertyVariables>
                         <adfs.disabled>${adfs.disabled}</adfs.disabled>
                     </systemPropertyVariables>

msal4j-sdk/src/integrationtest/java/com/microsoft/aad/msal4j/AcquireTokenInteractiveIT.java

@@ -62,22 +62,6 @@ void acquireTokenInteractive_ADFSv2022() {
         assertAcquireTokenCommon(user, app.getAppId(), app.getAuthority() + "organizations/", TestConstants.ADFS_SCOPE);
     }
 
-    @Test
-    void acquireTokenWithAuthorizationCode_B2C_Local() {
-        AppConfig app = LabResponseHelper.getAppConfig(APP_B2C);
-        UserConfig user = LabResponseHelper.getUserConfig(USER_B2C);
-
-        assertAcquireTokenB2C(user, TestConstants.B2C_AUTHORITY, app.getAppId());
-    }
-
-    @Test
-    void acquireTokenWithAuthorizationCode_B2C_LegacyFormat() {
-        AppConfig app = LabResponseHelper.getAppConfig(APP_B2C);
-        UserConfig user = LabResponseHelper.getUserConfig(USER_B2C);
-
-        assertAcquireTokenB2C(user, TestConstants.B2C_AUTHORITY_LEGACY_FORMAT, app.getAppId());
-    }
-
     @Test
     void acquireTokenInteractive_ManagedUser_InstanceAware() {
         AppConfig app = LabResponseHelper.getAppConfig(APP_ARLINGTON);
@@ -86,7 +70,7 @@ void acquireTokenInteractive_ManagedUser_InstanceAware() {
         assertAcquireTokenInstanceAware(user, app.getAppId(), TestConstants.ARLINGTON_TENANT_ID);
     }
 
-    //@Test -disabled to avoid test failures, HTML page seems to have changed as this test cannot find the username input element
+    @Test
     void acquireTokenInteractive_Ciam() {
         AppConfig app = LabResponseHelper.getAppConfig(APP_CIAM);
         UserConfig user = LabResponseHelper.getUserConfig(USER_CIAM);
@@ -115,7 +99,7 @@ void acquireTokenInteractive_Ciam() {
 
             InteractiveRequestParameters parameters = InteractiveRequestParameters
                     .builder(url)
-                    .scopes(Collections.singleton("TestConstants.USER_READ_SCOPE"))
+                    .scopes(Collections.singleton(TestConstants.USER_READ_SCOPE))
                     .extraQueryParameters(extraQueryParameters)
                     .systemBrowserOptions(browserOptions)
                     .build();
@@ -143,22 +127,6 @@ private void assertAcquireTokenCommon(UserConfig user, String appId, String auth
         assertEquals(user.getUpn(), result.account().username());
     }
 
-    private void assertAcquireTokenB2C(UserConfig user, String authority, String appId) {
-
-        PublicClientApplication pca;
-        try {
-            pca = PublicClientApplication.builder(
-                    appId).
-                    b2cAuthority(authority + TestConstants.B2C_SIGN_IN_POLICY).
-                    build();
-        } catch (MalformedURLException ex) {
-            throw new RuntimeException(ex.getMessage());
-        }
-
-        IAuthenticationResult result = acquireTokenInteractive(user, pca, appId);
-        IntegrationTestHelper.assertAccessAndIdTokensNotNull(result);
-    }
-
     private void assertAcquireTokenInstanceAware(UserConfig user, String appId, String tenantId) {
         PublicClientApplication pca = IntegrationTestHelper.createPublicApp(appId, TestConstants.MICROSOFT_AUTHORITY_HOST + tenantId);
 

msal4j-sdk/src/integrationtest/java/com/microsoft/aad/msal4j/AuthorizationCodeIT.java

@@ -45,15 +45,7 @@ public void acquireTokenWithAuthorizationCode_ManagedUser() {
         assertAcquireTokenAAD(user, app.getAppId(), null);
     }
 
-    //Temporarily disabling: no change in the library, but started seeing "The service has encountered an internal error. Please reauthenticate and try again."
-    //Needs investigation, tracked in https://github.com/AzureAD/microsoft-authentication-library-for-java/issues/1023
-    //@Test
-    public void acquireTokenWithAuthorizationCode_B2C_Local() {
-        UserConfig user = LabResponseHelper.getUserConfig(USER_B2C);
-        assertAcquireTokenB2C(user);
-    }
-
-    // @Test Disabled, the browser automation suddenly started failing without underlying code changes and needs investigation: https://github.com/AzureAD/microsoft-authentication-library-for-java/issues/1010
+    @Test
     public void acquireTokenWithAuthorizationCode_CiamCud() throws Exception {
         String authorityCud = "https://login.msidlabsciam.com/fe362aec-5d43-45d1-b730-9755e60dc3b9/v2.0/";
 
@@ -131,28 +123,6 @@ private void assertAcquireTokenAAD(UserConfig user, String appId, Map<String, Se
         assertEquals(user.getUpn(), result.account().username());
     }
 
-    private void assertAcquireTokenB2C(UserConfig user) {
-
-        String appId = KeyVaultRegistry.getMsidLabProvider().getSecretByName(TestConstants.B2C_CONFIDENTIAL_CLIENT_LAB_APP_ID).getValue();
-        String appSecret = KeyVaultRegistry.getMsidLabProvider().getSecretByName(TestConstants.B2C_CONFIDENTIAL_CLIENT_APP_SECRETID).getValue();
-
-        ConfidentialClientApplication cca;
-        try {
-            IClientCredential credential = ClientCredentialFactory.createFromSecret(appSecret);
-            cca = ConfidentialClientApplication
-                    .builder(appId, credential)
-                    .b2cAuthority(TestConstants.B2C_AUTHORITY_SIGN_IN)
-                    .build();
-        } catch (Exception ex) {
-            throw new RuntimeException(ex.getMessage());
-        }
-
-        String authCode = acquireAuthorizationCodeAutomated(user, cca, null);
-        IAuthenticationResult result = acquireTokenInteractiveB2C(cca, authCode);
-
-        IntegrationTestHelper.assertAccessAndIdTokensNotNull(result);
-    }
-
     private IAuthenticationResult acquireTokenAuthorizationCodeFlow(
             PublicClientApplication pca,
             String authCode,
@@ -174,22 +144,6 @@ private IAuthenticationResult acquireTokenAuthorizationCodeFlow(
         return result;
     }
 
-    private IAuthenticationResult acquireTokenInteractiveB2C(ConfidentialClientApplication cca,
-                                                             String authCode) {
-        IAuthenticationResult result;
-        try {
-            result = cca.acquireToken(AuthorizationCodeParameters
-                    .builder(authCode, new URI(TestConstants.LOCALHOST + httpListener.port()))
-                    .scopes(Collections.singleton(TestConstants.B2C_LAB_SCOPE))
-                    .build())
-                    .get();
-        } catch (Exception e) {
-            LOG.error("Error acquiring token with authCode: {}", e.getMessage());
-            throw new RuntimeException("Error acquiring token with authCode: " + e.getMessage());
-        }
-        return result;
-    }
-
     private String acquireAuthorizationCodeAutomated(
             UserConfig user,
             AbstractClientApplicationBase app,
@@ -243,8 +197,6 @@ private String buildAuthenticationCodeURL(AbstractClientApplicationBase app, Map
         AuthorityType authorityType = app.authenticationAuthority.authorityType;
         if (authorityType == AuthorityType.AAD) {
             scope = TestConstants.GRAPH_DEFAULT_SCOPE;
-        } else if (authorityType == AuthorityType.B2C) {
-            scope = TestConstants.B2C_LAB_SCOPE;
         } else if (authorityType == AuthorityType.ADFS) {
             scope = TestConstants.ADFS_SCOPE;
         } else if (authorityType == AuthorityType.OIDC) {

msal4j-sdk/src/integrationtest/java/com/microsoft/aad/msal4j/DeviceCodeIT.java

@@ -6,6 +6,9 @@
 import com.microsoft.aad.msal4j.labapi.*;
 import static com.microsoft.aad.msal4j.labapi.KeyVaultSecrets.*;
 import infrastructure.SeleniumExtensions;
+import infrastructure.SeleniumTestWatcher;
+import infrastructure.WebDriverProvider;
+import org.junit.jupiter.api.extension.ExtendWith;
 import org.openqa.selenium.WebDriver;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
@@ -19,7 +22,8 @@
 import java.util.function.Consumer;
 
 @TestInstance(TestInstance.Lifecycle.PER_CLASS)
-class DeviceCodeIT {
+@ExtendWith(SeleniumTestWatcher.class)
+class DeviceCodeIT implements WebDriverProvider {
     private static final Logger LOG = LoggerFactory.getLogger(DeviceCodeIT.class);
 
     private WebDriver seleniumDriver;
@@ -29,9 +33,7 @@ void setUp() {
         seleniumDriver = SeleniumExtensions.createDefaultWebDriver();
     }
 
-    //Temporarily disabling: timeout occuring after 15 minutes, likely either a server-side issue or a UI change
-    //Needs investigation, tracked in https://github.com/AzureAD/microsoft-authentication-library-for-java/issues/1023
-    //@Test
+    @Test
     void DeviceCodeFlowADTest() throws Exception {
         AppConfig app = LabResponseHelper.getAppConfig(APP_PCACLIENT);
         UserConfig user = LabResponseHelper.getUserConfig(USER_PUBLIC_CLOUD);
@@ -57,10 +59,15 @@ private void runAutomatedDeviceCodeFlow(DeviceCode deviceCode, UserConfig user)
                 user);
     }
 
+    @Override
+    public WebDriver getWebDriver() {
+        return seleniumDriver;
+    }
+
     @AfterAll
     void cleanUp() {
         if (seleniumDriver != null) {
-            seleniumDriver.close();
+            seleniumDriver.quit();
         }
     }
 }

msal4j-sdk/src/integrationtest/java/com/microsoft/aad/msal4j/SeleniumTest.java

@@ -5,11 +5,15 @@
 
 import com.microsoft.aad.msal4j.labapi.UserConfig;
 import infrastructure.SeleniumExtensions;
+import infrastructure.SeleniumTestWatcher;
+import infrastructure.WebDriverProvider;
+import org.junit.jupiter.api.extension.ExtendWith;
 import org.openqa.selenium.WebDriver;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
-abstract class SeleniumTest {
+@ExtendWith(SeleniumTestWatcher.class)
+abstract class SeleniumTest implements WebDriverProvider {
     private static final Logger LOG = LoggerFactory.getLogger(SeleniumTest.class);
 
     WebDriver seleniumDriver;
@@ -36,23 +40,34 @@ public void startUpBrowser() {
         seleniumDriver = SeleniumExtensions.createDefaultWebDriver();
     }
 
+    @Override
+    public WebDriver getWebDriver() {
+        return seleniumDriver;
+    }
+
     void runSeleniumAutomatedLogin(UserConfig user, AbstractClientApplicationBase app) {
         AuthorityType authorityType = app.authenticationAuthority.authorityType;
 
         try {
             switch (authorityType) {
-                case B2C:
-                    SeleniumExtensions.performLocalLogin(seleniumDriver, user);
-                    break;
                 case AAD:
                     SeleniumExtensions.performADOrCiamLogin(seleniumDriver, user);
                     break;
                 case ADFS:
                     SeleniumExtensions.performADFSLogin(seleniumDriver, user);
                     break;
                 case CIAM:
+                    SeleniumExtensions.performCiamLogin(seleniumDriver, user);
+                    break;
                 case OIDC:
-                    SeleniumExtensions.performADOrCiamLogin(seleniumDriver, user);
+                    // OIDC authorities may use CIAM or AAD login pages depending on the host.
+                    // Check the authority host to determine which page object to use.
+                    if (app.authenticationAuthority.host.contains("ciam") ||
+                            app.authenticationAuthority.host.contains("msidlabsciam")) {
+                        SeleniumExtensions.performCiamLogin(seleniumDriver, user);
+                    } else {
+                        SeleniumExtensions.performADOrCiamLogin(seleniumDriver, user);
+                    }
                     break;
                 default:
                     throw new IllegalArgumentException("Unsupported authority type: " + authorityType);

msal4j-sdk/src/integrationtest/java/com/microsoft/aad/msal4j/TestConstants.java

@@ -8,9 +8,6 @@ public class TestConstants {
     public static final String GRAPH_DEFAULT_SCOPE = "https://graph.windows.net/.default";
     public static final String USER_READ_SCOPE = "user.read";
     public static final String DEFAULT_SCOPE = ".default";
-    public static final String B2C_LAB_SCOPE = "https://msidlabb2c.onmicrosoft.com/msaapp/user_impersonation";
-    public static final String B2C_CONFIDENTIAL_CLIENT_APP_SECRETID = "MSIDLABB2C-MSAapp-AppSecret";
-    public static final String B2C_CONFIDENTIAL_CLIENT_LAB_APP_ID = "MSIDLABB2C-MSAapp-AppID";
 
     public static final String MICROSOFT_AUTHORITY_HOST = "https://login.microsoftonline.com/";
     public static final String MICROSOFT_AUTHORITY_BASIC_HOST = "login.microsoftonline.com";
@@ -23,16 +20,12 @@ public class TestConstants {
     public static final String REGIONAL_MICROSOFT_AUTHORITY_BASIC_HOST_WESTUS = "westus.login.microsoft.com";
 
     public static final String B2C_AUTHORITY = "https://msidlabb2c.b2clogin.com/msidlabb2c.onmicrosoft.com/";
-    public static final String B2C_AUTHORITY_LEGACY_FORMAT = "https://msidlabb2c.b2clogin.com/tfp/msidlabb2c.onmicrosoft.com/";
 
     public static final String B2C_ROPC_POLICY = "B2C_1_ROPC_Auth";
-    public static final String B2C_SIGN_IN_POLICY = "B2C_1_SignInPolicy";
-    public static final String B2C_AUTHORITY_SIGN_IN = B2C_AUTHORITY + B2C_SIGN_IN_POLICY;
     public static final String B2C_AUTHORITY_ROPC = B2C_AUTHORITY + B2C_ROPC_POLICY;
     public static final String B2C_READ_SCOPE = "https://msidlabb2c.onmicrosoft.com/msidlabb2capi/read";
     public static final String B2C_MICROSOFTLOGIN_AUTHORITY = "https://msidlabb2c.b2clogin.com/tfp/msidlabb2c.onmicrosoft.com/";
     public static final String B2C_MICROSOFTLOGIN_ROPC = B2C_MICROSOFTLOGIN_AUTHORITY + B2C_ROPC_POLICY;
-    public static final String B2C_UPN = "b2clocal@msidlabb2c.onmicrosoft.com";
 
     public static final String LOCALHOST = "http://localhost:";