e2e(FR-2434): fix BAINameActionCell action locators and cleanup test stability

- Add clickRowAction helper to handle icon-only buttons in BAINameActionCell
- Fix Edit button locator using icon aria-label instead of button name
- Fix Deactivate action: remove incorrect popconfirm expectation (mutation fires directly)
- Fix cleanup test: use dispatchEvent for checkbox click to handle table re-renders
- Increase cleanup test timeout to 60s for reliability

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

Author: ironAiken2

e2e/E2E_COVERAGE_REPORT.md

@@ -1,6 +1,6 @@
 # E2E Test Coverage Report
 
-> **Last Updated:** 2026-03-31
+> **Last Updated:** 2026-04-01
 > **Router Source:** [`react/src/routes.tsx`](../react/src/routes.tsx)
 > **E2E Root:** [`e2e/`](.)
 >
@@ -33,7 +33,7 @@
 | Configurations | `/settings` | 10 | 8 | 🔶 80% |
 | Resources | `/agent-summary`, `/agent` | 10 | 3 | 🔶 30% |
 | Resource Policy | `/resource-policy` | 13 | 10 | 🔶 77% |
-| User Credentials | `/credential` | 19 | 12 | 🔶 63% |
+| User Credentials | `/credential` | 20 | 13 | 🔶 65% |
 | Maintenance | `/maintenance` | 3 | 2 | 🔶 67% |
 | User Settings | `/usersettings` | 10 | 0 | ❌ 0% |
 | Project | `/project` | 6 | 5 | 🔶 83% |
@@ -584,7 +584,7 @@
 
 ### 17. User Credentials (`/credential`)
 
-**Test files:** [`e2e/user/user-crud.spec.ts`](user/user-crud.spec.ts), [`e2e/user/bulk-user-creation.spec.ts`](user/bulk-user-creation.spec.ts), [`e2e/credential/credential-keypair.spec.ts`](credential/credential-keypair.spec.ts)
+**Test files:** [`e2e/user/user-crud.spec.ts`](user/user-crud.spec.ts), [`e2e/user/bulk-user-creation.spec.ts`](user/bulk-user-creation.spec.ts), [`e2e/credential/credential-keypair.spec.ts`](credential/credential-keypair.spec.ts), [`e2e/user-profile/user-ip-restriction-enforcement.spec.ts`](user-profile/user-ip-restriction-enforcement.spec.ts)
 
 **Tabs:** Users | Credentials
 
@@ -607,6 +607,7 @@
 | Reactivate user | ✅ | `Admin can reactivate an inactive user` |
 | Purge user → PurgeUsersModal | ✅ | `Admin can deactivate and permanently delete` |
 | Deleted user login blocked | ✅ | `Deleted user cannot log in` |
+| Allowed IP restriction enforcement (active session) | ✅ | `User can access pages when their current IP is in the allowed list` / `User is denied access after admin revokes their IP` |
 | User name click → UserInfoModal | ❌ | - |
 | Bulk edit → UpdateUsersModal | ❌ | - |
 | User table filtering | ❌ | - |
@@ -627,7 +628,7 @@
 | Edit keypair → KeypairSettingModal | ❌ | - |
 | SSH key management → SSHKeypairManagementModal | ❌ | - |
 
-**Coverage: 🔶 12/19 features**
+**Coverage: 🔶 13/20 features**
 
 ---
 

e2e/user-profile/user-ip-restriction-enforcement.spec.ts

@@ -8,66 +8,22 @@ import {
   loginAsCreatedAccount,
   navigateTo,
 } from '../utils/test-util';
-import test, { expect, Page } from '@playwright/test';
+import {
+  clickRowAction,
+  openProfileModal,
+  getCurrentClientIp,
+  addIpTags,
+  removeAllIpTags,
+  deriveDifferentIp,
+} from '../utils/user-profile-util';
+import test, { expect } from '@playwright/test';
 
 // Generate unique identifiers for this test run
 const TEST_RUN_ID = Date.now().toString(36);
 const EMAIL = `e2e-ip-restrict-${TEST_RUN_ID}@lablup.com`;
 const USERNAME = `e2e-ip-restrict-${TEST_RUN_ID}`;
 const PASSWORD = 'testing@123';
 
-/**
- * Opens the User Profile Setting Modal by clicking the user dropdown
- * and selecting the "My Account" menu item.
- */
-async function openProfileModal(page: Page) {
-  await page.getByTestId('user-dropdown-button').click();
-  await page.getByText('My Account').click();
-  await page.locator('.ant-modal').waitFor({ state: 'visible' });
-}
-
-/**
- * Reads the current client IP displayed in the modal's helper text.
- */
-async function getCurrentClientIp(page: Page): Promise<string> {
-  const ipText = await page.getByText(/Current client IP:/).textContent();
-  const match = ipText?.match(/Current client IP:\s*(.+)/);
-  return match?.[1]?.trim() ?? '';
-}
-
-/**
- * Adds IP tags to the Allowed Client IP select field within the admin edit modal.
- */
-async function addIpTagsInModal(
-  modal: ReturnType<Page['locator']>,
-  ips: string[],
-) {
-  const formItem = modal
-    .locator('.ant-form-item')
-    .filter({ hasText: 'Allowed client IP' });
-  const selectInput = formItem.getByRole('combobox');
-  for (const ip of ips) {
-    await selectInput.click();
-    await selectInput.fill(ip);
-    await selectInput.press('Enter');
-  }
-  await selectInput.press('Tab');
-}
-
-/**
- * Removes all IP tags from the Allowed Client IP select field within a modal.
- */
-async function removeAllIpTagsInModal(modal: ReturnType<Page['locator']>) {
-  const formItem = modal
-    .locator('.ant-form-item')
-    .filter({ hasText: 'Allowed client IP' });
-  const removeButtons = formItem.locator('.ant-tag .anticon-close');
-  const count = await removeButtons.count();
-  for (let i = count - 1; i >= 0; i--) {
-    await removeButtons.nth(i).click();
-  }
-}
-
 test.describe.serial(
   'IP restriction enforcement during active session',
   { tag: ['@functional', '@regression', '@user-profile'] },
@@ -133,15 +89,15 @@ test.describe.serial(
       // Find and edit the test user
       const userRow = adminPage.getByRole('row').filter({ hasText: EMAIL });
       await expect(userRow).toBeVisible();
-      await userRow.getByRole('button', { name: 'Edit' }).click();
+      await clickRowAction(adminPage, userRow, 'Edit');
 
       // Wait for edit modal
       const editModal = UserSettingModal.forEdit(adminPage);
       await editModal.waitForVisible();
 
       // Add the current client IP to allowed list
       const modal = editModal.getModal();
-      await addIpTagsInModal(modal, [currentClientIp]);
+      await addIpTags(modal, [currentClientIp]);
       await editModal.clickOk();
       await editModal.waitForHidden();
 
@@ -190,15 +146,16 @@ test.describe.serial(
       // Find and edit the test user
       const userRow = adminPage.getByRole('row').filter({ hasText: EMAIL });
       await expect(userRow).toBeVisible();
-      await userRow.getByRole('button', { name: 'Edit' }).click();
+      await clickRowAction(adminPage, userRow, 'Edit');
 
       const editModal = UserSettingModal.forEdit(adminPage);
       await editModal.waitForVisible();
 
       // Remove existing IP tags and add an arbitrary IP
       const modal = editModal.getModal();
-      await removeAllIpTagsInModal(modal);
-      await addIpTagsInModal(modal, ['99.99.99.99']);
+      await removeAllIpTags(modal);
+      const arbitraryAllowedIp = deriveDifferentIp(currentClientIp);
+      await addIpTags(modal, [arbitraryAllowedIp]);
       await editModal.clickOk();
       await editModal.waitForHidden();
 
@@ -229,6 +186,7 @@ test.describe.serial(
       page,
       request,
     }) => {
+      test.setTimeout(60000);
       // 1. Login as admin
       await loginAsAdmin(page, request);
 
@@ -243,29 +201,31 @@ test.describe.serial(
         .catch(() => false);
 
       if (isActive) {
-        await userRow.getByRole('button', { name: 'Edit' }).click();
+        await clickRowAction(page, userRow, 'Edit');
         const editModal = UserSettingModal.forEdit(page);
         await editModal.waitForVisible();
 
         const modal = editModal.getModal();
-        await removeAllIpTagsInModal(modal);
+        await removeAllIpTags(modal);
         await editModal.clickOk();
         await editModal.waitForHidden();
 
-        // 4. Deactivate the user
+        // 4. Deactivate the user (no popconfirm — mutation fires directly)
         await expect(userRow).toBeVisible();
-        await userRow.getByRole('button', { name: 'Deactivate' }).click();
-        const popconfirm = page.locator('.ant-popconfirm');
-        await popconfirm.getByRole('button', { name: 'Deactivate' }).click();
+        await clickRowAction(page, userRow, 'Deactivate');
         await expect(userRow).toBeHidden({ timeout: 10000 });
       }
 
       // 5. Switch to Inactive and purge the user
+      // Re-navigate to credential page to clear any stale state
+      await navigateTo(page, 'credential');
+      await expect(page.getByRole('tab', { name: 'Users' })).toBeVisible();
       await page.getByText('Inactive', { exact: true }).click();
       const inactiveUserRow = page.getByRole('row').filter({ hasText: EMAIL });
-      await expect(inactiveUserRow).toBeVisible({ timeout: 5000 });
+      await expect(inactiveUserRow).toBeVisible({ timeout: 10000 });
 
-      await inactiveUserRow.getByRole('checkbox').click();
+      // Use dispatchEvent to bypass DOM detachment during table re-renders
+      await inactiveUserRow.getByRole('checkbox').dispatchEvent('click');
       await page.getByRole('button', { name: 'trash bin' }).click();
 
       const purgeModal = new PurgeUsersModal(page);