feat(card): cp-7.68.0 Add View PIN option (#26646)

<!--
Please submit this PR as a draft initially.
Do not mark it as "Ready for review" until the template has been
completely filled out, and PR status checks have passed at least once.
-->

## **Description**

Adds a "View PIN" option to the Card Home manage card section, allowing
users to securely view their card PIN through a PCI-compliant
image-based display.

**Why**: Users need to retrieve their card PIN (e.g. for ATM use or
in-store transactions). The PIN is never transmitted as plain text — it
is rendered as an image via a time-limited, single-use secure token from
the `POST /v1/card/pin/token` endpoint, ensuring PCI compliance.

**What changed**:
- **New SDK method** (`CardSDK.generateCardPinToken`): Calls `POST
/v1/card/pin/token` with optional `customCss` for theming the PIN image.
Mirrors the existing `generateCardDetailsToken` pattern with proper
error handling.
- **React Query integration**: New `cardQueries.pin` key factory and
`pinTokenMutationFn` following the established React Query patterns from
the codebase.
- **`useCardPinToken` hook**: Wraps `useMutation` for PIN token
generation. Automatically applies dark/light theme-aware `customCss`
(background and text colors) so the PIN image matches the app
appearance.
- **`ViewPinBottomSheet` component**: Displays the PIN image in a bottom
sheet with a skeleton loader and `CardScreenshotDeterrent` enabled to
prevent screenshots of sensitive data.
- **`CardHome` integration**: New `ManageCardListItem` for "View PIN"
with biometric authentication gating (matching the "View Card Details"
flow). Falls back to password bottom sheet with a PIN-specific
description when biometrics are not configured. Visible for US users
(all card types) and international users with non-virtual cards.
- **Analytics**: Added `VIEW_PIN_BUTTON` action to `CardActions` enum,
tracked via `CARD_BUTTON_CLICKED` event.
- **Navigation**: Registered `CardViewPinModal` route and added the
`ViewPinBottomSheet` screen to `CardModalsRoutes`.
- **Tests**: Added tests across 5 files — SDK method tests, query layer
tests, hook tests, bottom sheet snapshot/render tests, and 11 new
CardHome integration tests covering visibility conditions, biometric
auth flow, password fallback, and loading guards.

## **Changelog**

CHANGELOG entry: Added "View PIN" option to the Card Home screen,
allowing users to securely view their card PIN via biometric or password
authentication.

## **Related issues**

Fixes:

## **Manual testing steps**

```gherkin
Feature: View card PIN

  Scenario: View PIN button is visible for eligible users
    Given the user is authenticated with an active card
    And the user is a US user OR has a non-virtual (metal) card
    When the user navigates to the Card Home screen
    Then a "View PIN" option is displayed in the manage card section

  Scenario: View PIN button is hidden for international virtual card users
    Given the user is an international user with a virtual card
    When the user navigates to the Card Home screen
    Then the "View PIN" option is NOT displayed

  Scenario: View PIN with biometric authentication
    Given the user has biometric authentication configured
    When the user taps "View PIN"
    Then a biometric prompt is displayed
    And upon successful authentication, the card PIN is shown as an image in a bottom sheet
    And the PIN image matches the current theme (light/dark background)

  Scenario: View PIN with password fallback
    Given the user does NOT have biometric authentication configured
    When the user taps "View PIN"
    Then a password bottom sheet appears with the message "Enter your wallet password to view your card PIN."
    And upon entering the correct password, the card PIN is shown in a bottom sheet

  Scenario: View PIN biometric cancellation
    Given the user has biometric authentication configured
    When the user taps "View PIN" and cancels the biometric prompt
    Then no PIN is displayed and the user returns to Card Home

  Scenario: View PIN error handling
    Given the user taps "View PIN" and authentication succeeds
    When the PIN token request fails
    Then an error toast is shown with "Failed to load PIN. Please try again."

  Scenario: Screenshot prevention
    Given the card PIN bottom sheet is displayed
    When the user attempts to take a screenshot
    Then the screenshot deterrent is active and prevents capture of the PIN
```

## **Screenshots/Recordings**

<!-- If applicable, add screenshots or recordings of the View PIN flow
-->

### **Before**

<!-- Card Home without View PIN option -->

### **After**

<!-- Card Home with View PIN option + View PIN bottom sheet -->

## **Pre-merge author checklist**

- [x] I've followed [MetaMask Contributor
Docs](https://github.com/MetaMask/contributor-docs) and [MetaMask Mobile
Coding
Standards](https://github.com/MetaMask/metamask-mobile/blob/main/.github/guidelines/CODING_GUIDELINES.md).
- [x] I've completed the PR template to the best of my ability
- [x] I've included tests if applicable
- [x] I've documented my code using [JSDoc](https://jsdoc.app/) format
if applicable
- [x] I've applied the right labels on the PR (see [labeling
guidelines](https://github.com/MetaMask/metamask-mobile/blob/main/.github/guidelines/LABELING_GUIDELINES.md)).
Not required for external contributors.

## **Pre-merge reviewer checklist**

- [ ] I've manually tested the PR (e.g. pull and build branch, run the
app, test code being changed).
- [ ] I confirm that this PR addresses all acceptance criteria described
in the ticket it closes and includes the necessary testing evidence such
as recordings and or screenshots.


<!-- CURSOR_SUMMARY -->
---

> [!NOTE]
> **Medium Risk**
> Adds a new authenticated flow to fetch and display a sensitive card
PIN image via a new SDK endpoint and modal UI, with biometric/password
gating and error handling. Risk is mainly around auth/error-state
handling and the new network call/token lifecycle.
> 
> **Overview**
> Adds a new **“View PIN”** manage-card action on `CardHome`, shown only
for eligible users (authenticated, has a card, not loading; US users or
non-virtual cards), gated by `reauthenticate()` with a
password-bottom-sheet fallback when biometrics aren’t configured and
guarded against concurrent loads.
> 
> Introduces PIN-token generation plumbing:
`CardSDK.generateCardPinToken` calling `POST /v1/card/pin/token`, React
Query `cardQueries.pin` + `useCardPinToken` (theme-aware `customCss`),
plus a new `ViewPinBottomSheet` modal route
(`Routes.CARD.MODALS.VIEW_PIN`) that renders the PIN image with a
skeleton loader and `CardScreenshotDeterrent` enabled.
> 
> Updates analytics (`CardActions.VIEW_PIN_BUTTON`), test IDs, and
English strings, and adds comprehensive tests for the SDK/query/hook,
the new bottom sheet (snapshot/render), and CardHome
visibility/auth/error flows.
> 
> <sup>Written by [Cursor
Bugbot](https://cursor.com/dashboard?tab=bugbot) for commit
514ae0c. This will update automatically
on new commits. Configure
[here](https://cursor.com/dashboard?tab=bugbot).</sup>
<!-- /CURSOR_SUMMARY -->

Author: Brunonascdev

app/components/UI/Card/Views/CardHome/CardHome.test.tsx

@@ -99,6 +99,7 @@ import {
 } from '../../../../../core/redux/slices/card';
 import { useIsSwapEnabledForPriorityToken } from '../../hooks/useIsSwapEnabledForPriorityToken';
 import useCardDetailsToken from '../../hooks/useCardDetailsToken';
+import useCardPinToken from '../../hooks/useCardPinToken';
 
 const mockNavigate = jest.fn();
 const mockGoBack = jest.fn();
@@ -274,6 +275,26 @@ jest.mock('../../hooks/useCardDetailsToken', () => ({
   })),
 }));
 
+const mockGeneratePinToken = jest.fn();
+const mockResetPinToken = jest.fn();
+jest.mock('../../hooks/useCardPinToken', () => ({
+  __esModule: true,
+  default: jest.fn(() => ({
+    generatePinToken: mockGeneratePinToken,
+    isLoading: false,
+    error: null,
+    imageUrl: null,
+    reset: mockResetPinToken,
+  })),
+}));
+
+jest.mock('../../components/ViewPinBottomSheet', () => ({
+  createViewPinBottomSheetNavigationDetails: jest.fn((params) => [
+    'CardModals',
+    { screen: 'CardViewPinModal', params },
+  ]),
+}));
+
 // Mock useAuthentication for biometric verification
 const mockReauthenticate = jest.fn();
 jest.mock('../../../../../core/Authentication/hooks/useAuthentication', () =>
@@ -503,6 +524,13 @@ jest.mock('../../../../../../locales/i18n', () => ({
         'Authentication required to resume spending on your card.',
       'card.password_bottomsheet.description_unfreeze':
         'Enter your wallet password to unfreeze your card.',
+      'card.card_home.manage_card_options.view_pin': 'View PIN',
+      'card.card_home.manage_card_options.view_pin_description':
+        'View your card PIN securely',
+      'card.card_home.manage_card_options.view_pin_error':
+        'Failed to load PIN. Please try again.',
+      'card.password_bottomsheet.description_view_pin':
+        'Enter your wallet password to view your card PIN.',
     };
     return strings[key] || key;
   },
@@ -3938,6 +3966,308 @@ describe('CardHome Component', () => {
         });
       });
     });
+
+    describe('View PIN Button', () => {
+      beforeEach(() => {
+        mockGeneratePinToken.mockClear();
+        mockResetPinToken.mockClear();
+        mockReauthenticate.mockClear();
+        mockReauthenticate.mockResolvedValue(undefined);
+      });
+
+      it('does not show view pin button when user is not authenticated', () => {
+        // Given: User is not authenticated
+        setupMockSelectors({ isAuthenticated: false });
+        setupLoadCardDataMock({
+          isAuthenticated: false,
+          isBaanxLoginEnabled: true,
+          cardDetails: { type: CardType.VIRTUAL },
+          isLoading: false,
+        });
+
+        // When: component renders
+        render();
+
+        // Then: view pin button is not shown
+        expect(
+          screen.queryByTestId(CardHomeSelectors.VIEW_PIN_BUTTON),
+        ).toBeNull();
+      });
+
+      it('does not show view pin button when user has no card', () => {
+        // Given: Authenticated user without card
+        setupMockSelectors({ isAuthenticated: true });
+        setupLoadCardDataMock({
+          isAuthenticated: true,
+          isBaanxLoginEnabled: true,
+          cardDetails: null,
+          warning: CardStateWarning.NoCard,
+          isLoading: false,
+          kycStatus: { verificationState: 'VERIFIED', userId: 'user-123' },
+        });
+
+        // When: component renders
+        render();
+
+        // Then: view pin button is not shown
+        expect(
+          screen.queryByTestId(CardHomeSelectors.VIEW_PIN_BUTTON),
+        ).toBeNull();
+      });
+
+      it('does not show view pin button while loading', () => {
+        // Given: Loading state
+        setupMockSelectors({ isAuthenticated: true });
+        setupLoadCardDataMock({
+          isAuthenticated: true,
+          isBaanxLoginEnabled: true,
+          cardDetails: { type: CardType.VIRTUAL },
+          isLoading: true,
+        });
+
+        // When: component renders
+        render();
+
+        // Then: view pin button is not shown
+        expect(
+          screen.queryByTestId(CardHomeSelectors.VIEW_PIN_BUTTON),
+        ).toBeNull();
+      });
+
+      it('does not show view pin button for international virtual card', () => {
+        // Given: International user with virtual card
+        setupMockSelectors({
+          isAuthenticated: true,
+          userLocation: 'international',
+        });
+        setupLoadCardDataMock({
+          isAuthenticated: true,
+          isBaanxLoginEnabled: true,
+          cardDetails: { type: CardType.VIRTUAL },
+          isLoading: false,
+          kycStatus: { verificationState: 'VERIFIED', userId: 'user-123' },
+        });
+
+        // When: component renders
+        render();
+
+        // Then: view pin button is not shown
+        expect(
+          screen.queryByTestId(CardHomeSelectors.VIEW_PIN_BUTTON),
+        ).toBeNull();
+      });
+
+      it('shows view pin button for US user with virtual card', () => {
+        // Given: US user with virtual card
+        setupMockSelectors({ isAuthenticated: true, userLocation: 'us' });
+        setupLoadCardDataMock({
+          isAuthenticated: true,
+          isBaanxLoginEnabled: true,
+          cardDetails: { type: CardType.VIRTUAL },
+          isLoading: false,
+          kycStatus: { verificationState: 'VERIFIED', userId: 'user-123' },
+        });
+
+        // When: component renders
+        render();
+
+        // Then: view pin button is shown
+        expect(
+          screen.getByTestId(CardHomeSelectors.VIEW_PIN_BUTTON),
+        ).toBeOnTheScreen();
+      });
+
+      it('shows view pin button for international user with metal card', () => {
+        // Given: International user with metal card
+        setupMockSelectors({
+          isAuthenticated: true,
+          userLocation: 'international',
+        });
+        setupLoadCardDataMock({
+          isAuthenticated: true,
+          isBaanxLoginEnabled: true,
+          cardDetails: { type: CardType.METAL },
+          isLoading: false,
+          kycStatus: { verificationState: 'VERIFIED', userId: 'user-123' },
+        });
+
+        // When: component renders
+        render();
+
+        // Then: view pin button is shown (non-virtual card)
+        expect(
+          screen.getByTestId(CardHomeSelectors.VIEW_PIN_BUTTON),
+        ).toBeOnTheScreen();
+      });
+
+      it('calls generatePinToken and navigates to ViewPinBottomSheet after biometric auth', async () => {
+        // Given: Authenticated US user with card and biometric auth succeeds
+        setupMockSelectors({ isAuthenticated: true, userLocation: 'us' });
+        setupLoadCardDataMock({
+          isAuthenticated: true,
+          isBaanxLoginEnabled: true,
+          cardDetails: { type: CardType.VIRTUAL },
+          isLoading: false,
+          kycStatus: { verificationState: 'VERIFIED', userId: 'user-123' },
+        });
+
+        mockReauthenticate.mockResolvedValueOnce(undefined);
+        mockGeneratePinToken.mockResolvedValueOnce({
+          token: 'pin-token-123',
+          imageUrl: 'https://cards.baanx.com/pin-image?token=pin-token-123',
+        });
+
+        // When: component renders and button is pressed
+        render();
+        const button = screen.getByTestId(CardHomeSelectors.VIEW_PIN_BUTTON);
+        fireEvent.press(button);
+
+        // Then: reauthenticate is called first, then generatePinToken, then navigation
+        await waitFor(() => {
+          expect(mockReauthenticate).toHaveBeenCalled();
+        });
+        await waitFor(() => {
+          expect(mockGeneratePinToken).toHaveBeenCalled();
+        });
+        await waitFor(() => {
+          expect(mockNavigate).toHaveBeenCalledWith('CardModals', {
+            screen: 'CardViewPinModal',
+            params: {
+              imageUrl: 'https://cards.baanx.com/pin-image?token=pin-token-123',
+            },
+          });
+        });
+      });
+
+      it('resets pin token after successful navigation', async () => {
+        // Given: Authenticated US user with card
+        setupMockSelectors({ isAuthenticated: true, userLocation: 'us' });
+        setupLoadCardDataMock({
+          isAuthenticated: true,
+          isBaanxLoginEnabled: true,
+          cardDetails: { type: CardType.VIRTUAL },
+          isLoading: false,
+          kycStatus: { verificationState: 'VERIFIED', userId: 'user-123' },
+        });
+
+        mockReauthenticate.mockResolvedValueOnce(undefined);
+        mockGeneratePinToken.mockResolvedValueOnce({
+          token: 'pin-token-123',
+          imageUrl: 'https://cards.baanx.com/pin-image?token=pin-token-123',
+        });
+
+        // When: button is pressed
+        render();
+        fireEvent.press(screen.getByTestId(CardHomeSelectors.VIEW_PIN_BUTTON));
+
+        // Then: resetPinToken is called after navigation
+        await waitFor(() => {
+          expect(mockResetPinToken).toHaveBeenCalled();
+        });
+      });
+
+      it('does not call generatePinToken when already loading', async () => {
+        // Given: Hook reports loading
+        setupMockSelectors({ isAuthenticated: true, userLocation: 'us' });
+        setupLoadCardDataMock({
+          isAuthenticated: true,
+          isBaanxLoginEnabled: true,
+          cardDetails: { type: CardType.VIRTUAL },
+          isLoading: false,
+          kycStatus: { verificationState: 'VERIFIED', userId: 'user-123' },
+        });
+
+        (useCardPinToken as jest.Mock).mockReturnValueOnce({
+          generatePinToken: mockGeneratePinToken,
+          isLoading: true,
+          error: null,
+          imageUrl: null,
+          reset: mockResetPinToken,
+        });
+
+        // When: button is pressed while loading
+        render();
+        fireEvent.press(screen.getByTestId(CardHomeSelectors.VIEW_PIN_BUTTON));
+
+        // Then: reauthenticate is not called
+        await waitFor(() => {
+          expect(mockReauthenticate).not.toHaveBeenCalled();
+        });
+        expect(mockGeneratePinToken).not.toHaveBeenCalled();
+      });
+
+      describe('Biometric Authentication', () => {
+        it('does not fetch pin when biometric authentication fails', async () => {
+          // Given: Authenticated US user with card but biometric auth fails
+          setupMockSelectors({ isAuthenticated: true, userLocation: 'us' });
+          setupLoadCardDataMock({
+            isAuthenticated: true,
+            isBaanxLoginEnabled: true,
+            cardDetails: { type: CardType.VIRTUAL },
+            isLoading: false,
+            kycStatus: { verificationState: 'VERIFIED', userId: 'user-123' },
+          });
+
+          mockReauthenticate.mockRejectedValueOnce(
+            new Error('BIOMETRIC_ERROR: User cancelled'),
+          );
+
+          // When: component renders and button is pressed
+          render();
+          fireEvent.press(
+            screen.getByTestId(CardHomeSelectors.VIEW_PIN_BUTTON),
+          );
+
+          // Then: reauthenticate is called but generatePinToken is NOT called
+          await waitFor(() => {
+            expect(mockReauthenticate).toHaveBeenCalled();
+          });
+          expect(mockGeneratePinToken).not.toHaveBeenCalled();
+        });
+
+        it('navigates to password bottom sheet with view pin description when biometrics not configured', async () => {
+          // Given: Authenticated US user with card but biometrics not configured
+          setupMockSelectors({ isAuthenticated: true, userLocation: 'us' });
+          setupLoadCardDataMock({
+            isAuthenticated: true,
+            isBaanxLoginEnabled: true,
+            cardDetails: { type: CardType.VIRTUAL },
+            isLoading: false,
+            kycStatus: { verificationState: 'VERIFIED', userId: 'user-123' },
+          });
+
+          mockReauthenticate.mockRejectedValueOnce(
+            new Error(
+              'PASSWORD_NOT_SET_WITH_BIOMETRICS: Biometrics not configured',
+            ),
+          );
+
+          // When: component renders and button is pressed
+          render();
+          fireEvent.press(
+            screen.getByTestId(CardHomeSelectors.VIEW_PIN_BUTTON),
+          );
+
+          // Then: navigation to password bottom sheet is triggered with view pin description
+          await waitFor(() => {
+            expect(mockReauthenticate).toHaveBeenCalled();
+          });
+          await waitFor(() => {
+            expect(mockNavigate).toHaveBeenCalledWith(
+              Routes.CARD.MODALS.ID,
+              expect.objectContaining({
+                screen: Routes.CARD.MODALS.PASSWORD,
+                params: expect.objectContaining({
+                  onSuccess: expect.any(Function),
+                  description:
+                    'Enter your wallet password to view your card PIN.',
+                }),
+              }),
+            );
+          });
+        });
+      });
+    });
   });
 
   describe('Freeze Card Toggle', () => {

app/components/UI/Card/Views/CardHome/CardHome.testIds.ts

@@ -30,4 +30,5 @@ export const CardHomeSelectors = {
   ORDER_METAL_CARD_ITEM: 'order-metal-card-item',
   CASHBACK_ITEM: 'cashback-item',
   FREEZE_CARD_TOGGLE: 'freeze-card-toggle',
+  VIEW_PIN_BUTTON: 'view-pin-button',
 };