@chevre/domain 23.0.0-alpha.15 → 23.0.0-alpha.18
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/example/src/chevre/assetTransaction/processReserve.ts +102 -40
- package/example/src/chevre/event/updateEventSellerMakesOffer.ts +100 -0
- package/example/src/signPayload.ts +12 -7
- package/lib/chevre/repo/categoryCode.d.ts +6 -3
- package/lib/chevre/repo/categoryCode.js +2 -4
- package/lib/chevre/repo/eventSellerMakesOffer.d.ts +7 -40
- package/lib/chevre/repo/eventSellerMakesOffer.js +35 -44
- package/lib/chevre/service/assetTransaction/reserve/start.js +2 -2
- package/lib/chevre/service/assetTransaction/reserve/validateStartRequest/validateIssuedOfferIfExists.d.ts +15 -0
- package/lib/chevre/service/assetTransaction/reserve/validateStartRequest/validateIssuedOfferIfExists.js +159 -0
- package/lib/chevre/service/assetTransaction/reserve/validateStartRequest/validateMemberTierIfExists.d.ts +16 -0
- package/lib/chevre/service/assetTransaction/reserve/validateStartRequest/validateMemberTierIfExists.js +184 -0
- package/lib/chevre/service/assetTransaction/reserve/validateStartRequest.d.ts +4 -1
- package/lib/chevre/service/assetTransaction/reserve/validateStartRequest.js +25 -204
- package/package.json +3 -3
- package/example/src/chevre/aggregateEventSellerMakesOffer.ts +0 -32
- package/example/src/chevre/searchCategoryCodesByAggregate.ts +0 -31
- package/lib/chevre/service/assetTransaction/reserve/validateStartRequest/validateOfferToken.d.ts +0 -15
- package/lib/chevre/service/assetTransaction/reserve/validateStartRequest/validateOfferToken.js +0 -61
|
@@ -0,0 +1,159 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
|
|
3
|
+
function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
|
|
4
|
+
return new (P || (P = Promise))(function (resolve, reject) {
|
|
5
|
+
function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
|
|
6
|
+
function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
|
|
7
|
+
function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
|
|
8
|
+
step((generator = generator.apply(thisArg, _arguments || [])).next());
|
|
9
|
+
});
|
|
10
|
+
};
|
|
11
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
12
|
+
exports.validateIssuedOfferIfExists = validateIssuedOfferIfExists;
|
|
13
|
+
const jwt = require("jsonwebtoken");
|
|
14
|
+
const moment = require("moment");
|
|
15
|
+
const factory = require("../../../../factory");
|
|
16
|
+
const NUM_ACCEPTED_OFFERS_MAX_VALUE = 50;
|
|
17
|
+
function verifyOfferToken(params) {
|
|
18
|
+
return __awaiter(this, void 0, void 0, function* () {
|
|
19
|
+
let result;
|
|
20
|
+
const { issuer, secret, token } = params;
|
|
21
|
+
try {
|
|
22
|
+
result = yield new Promise((resolve, reject) => {
|
|
23
|
+
jwt.verify(token, secret, {
|
|
24
|
+
algorithms: ['HS256'],
|
|
25
|
+
issuer
|
|
26
|
+
// ...(Array.isArray(params.audience)) ? { audience: params.audience } : undefined
|
|
27
|
+
}, (err, decoded) => {
|
|
28
|
+
if (err instanceof Error) {
|
|
29
|
+
reject(err);
|
|
30
|
+
}
|
|
31
|
+
else {
|
|
32
|
+
resolve(decoded);
|
|
33
|
+
}
|
|
34
|
+
});
|
|
35
|
+
});
|
|
36
|
+
}
|
|
37
|
+
catch (error) {
|
|
38
|
+
// JWTエラーをハンドリング
|
|
39
|
+
if (error instanceof jwt.TokenExpiredError) {
|
|
40
|
+
throw new factory.errors.Argument('reservationFor.offers.token', `invalid token. [${error.message} expiredAt:${error.expiredAt}]`);
|
|
41
|
+
}
|
|
42
|
+
else if (error instanceof jwt.JsonWebTokenError) {
|
|
43
|
+
throw new factory.errors.Argument('reservationFor.offers.token', `invalid token. [${error.message}]`);
|
|
44
|
+
}
|
|
45
|
+
throw error;
|
|
46
|
+
}
|
|
47
|
+
return result;
|
|
48
|
+
});
|
|
49
|
+
}
|
|
50
|
+
const OFFER_TOKEN_DATE_FORMAT = 'YYYY-MM-DDTHH:mm:ssZ';
|
|
51
|
+
function validateOfferToken(params) {
|
|
52
|
+
return () => __awaiter(this, void 0, void 0, function* () {
|
|
53
|
+
var _a, _b;
|
|
54
|
+
const { event, acceptedDate, verifiedOffer, makesOfferOnApplication } = params;
|
|
55
|
+
// イベント識別子一致検証
|
|
56
|
+
const itemOfferedIdentifier = verifiedOffer.itemOffered.identifier;
|
|
57
|
+
if (typeof itemOfferedIdentifier !== 'string' || itemOfferedIdentifier === '') {
|
|
58
|
+
throw new factory.errors.Argument('reservationFor.offers.token', 'itemOffered.identifier must be string');
|
|
59
|
+
}
|
|
60
|
+
const itemOfferedIdentifierMustBe = event.identifier;
|
|
61
|
+
if (typeof itemOfferedIdentifierMustBe !== 'string') {
|
|
62
|
+
throw new factory.errors.NotFound('identifier', 'the event must have an identifier');
|
|
63
|
+
}
|
|
64
|
+
if (itemOfferedIdentifier !== itemOfferedIdentifierMustBe) {
|
|
65
|
+
throw new factory.errors.Argument('reservationFor.offers.token', 'itemOffered.identifier not matched');
|
|
66
|
+
}
|
|
67
|
+
// アプリケーションオファーコード一致検証
|
|
68
|
+
const applicationOfferIdentifier = verifiedOffer.identifier;
|
|
69
|
+
if (typeof applicationOfferIdentifier !== 'string' || applicationOfferIdentifier === '') {
|
|
70
|
+
throw new factory.errors.Argument('reservationFor.offers.token', 'identifier must be string');
|
|
71
|
+
}
|
|
72
|
+
const applicationOfferIdentifierMustBe = makesOfferOnApplication.identifier;
|
|
73
|
+
if (typeof applicationOfferIdentifierMustBe !== 'string') {
|
|
74
|
+
throw new factory.errors.NotFound('makesOffer.identifier');
|
|
75
|
+
}
|
|
76
|
+
if (applicationOfferIdentifier !== applicationOfferIdentifierMustBe) {
|
|
77
|
+
throw new factory.errors.Argument('reservationFor.offers.token', 'identifier not matched');
|
|
78
|
+
}
|
|
79
|
+
// 有効期間検証
|
|
80
|
+
let validThroughMoment;
|
|
81
|
+
let validFromMoment;
|
|
82
|
+
validThroughMoment = moment(verifiedOffer.validThrough, OFFER_TOKEN_DATE_FORMAT, true);
|
|
83
|
+
validFromMoment = moment(verifiedOffer.validFrom, OFFER_TOKEN_DATE_FORMAT, true);
|
|
84
|
+
if (!validThroughMoment.isValid()) {
|
|
85
|
+
throw new factory.errors.Argument('reservationFor.offers.token', 'invalid validThrough');
|
|
86
|
+
}
|
|
87
|
+
if (!validFromMoment.isValid()) {
|
|
88
|
+
throw new factory.errors.Argument('reservationFor.offers.token', 'invalid validFrom');
|
|
89
|
+
}
|
|
90
|
+
if (acceptedDate.isBefore(validFromMoment)) {
|
|
91
|
+
throw new factory.errors.Argument('reservationFor.offers.token', `the offer id valid from ${validFromMoment}`);
|
|
92
|
+
}
|
|
93
|
+
if (acceptedDate.isAfter(validThroughMoment)) {
|
|
94
|
+
throw new factory.errors.Argument('reservationFor.offers.token', `the offer id valid through ${validThroughMoment}`);
|
|
95
|
+
}
|
|
96
|
+
// maxValueを検証
|
|
97
|
+
const maxValue = (_a = verifiedOffer === null || verifiedOffer === void 0 ? void 0 : verifiedOffer.eligibleQuantity) === null || _a === void 0 ? void 0 : _a.maxValue;
|
|
98
|
+
if (typeof maxValue !== 'number') {
|
|
99
|
+
throw new factory.errors.Argument('reservationFor.offers.token', 'eligibleQuantity.maxValue must be number');
|
|
100
|
+
}
|
|
101
|
+
if (maxValue > NUM_ACCEPTED_OFFERS_MAX_VALUE) {
|
|
102
|
+
throw new factory.errors.Argument('reservationFor.offers.token', `eligibleQuantity.maxValue must be <= ${NUM_ACCEPTED_OFFERS_MAX_VALUE}`);
|
|
103
|
+
}
|
|
104
|
+
const numAcceptedOffers = (_b = params.object.acceptedOffer) === null || _b === void 0 ? void 0 : _b.length;
|
|
105
|
+
if (typeof numAcceptedOffers === 'number' && numAcceptedOffers > 0) {
|
|
106
|
+
if (numAcceptedOffers > maxValue) {
|
|
107
|
+
throw new factory.errors.Argument('reservationFor.id', `Maximum number of offers exceeded`);
|
|
108
|
+
}
|
|
109
|
+
}
|
|
110
|
+
});
|
|
111
|
+
}
|
|
112
|
+
/**
|
|
113
|
+
* オファートークン検証(2025-10-21~)
|
|
114
|
+
*/
|
|
115
|
+
function validateIssuedOfferIfExists(params) {
|
|
116
|
+
return (repos) => __awaiter(this, void 0, void 0, function* () {
|
|
117
|
+
var _a, _b, _c, _d, _e;
|
|
118
|
+
const { event, makesOfferOnApplication } = params;
|
|
119
|
+
const acceptedDate = moment(params.now);
|
|
120
|
+
const offerTokenIssuer = (_a = makesOfferOnApplication.offeredBy) === null || _a === void 0 ? void 0 : _a.identifier;
|
|
121
|
+
const offerTokenRequired = typeof offerTokenIssuer === 'string';
|
|
122
|
+
if (offerTokenRequired) {
|
|
123
|
+
const offerIdentifierMustBe = (_c = (_b = params.object.reservationFor) === null || _b === void 0 ? void 0 : _b.offers) === null || _c === void 0 ? void 0 : _c.identifier;
|
|
124
|
+
const offerToken = (_e = (_d = params.object.reservationFor) === null || _d === void 0 ? void 0 : _d.offers) === null || _e === void 0 ? void 0 : _e.token;
|
|
125
|
+
if (typeof offerIdentifierMustBe !== 'string' || offerIdentifierMustBe === '') {
|
|
126
|
+
throw new factory.errors.ArgumentNull('object.reservationFor.offers.identifier');
|
|
127
|
+
}
|
|
128
|
+
if (typeof offerToken !== 'string' || offerToken === '') {
|
|
129
|
+
throw new factory.errors.ArgumentNull('object.reservationFor.offers.token');
|
|
130
|
+
}
|
|
131
|
+
if (typeof makesOfferOnApplication.identifier !== 'string' || makesOfferOnApplication.identifier === '') {
|
|
132
|
+
throw new factory.errors.NotFound('seller.makesOffer.identifier');
|
|
133
|
+
}
|
|
134
|
+
// アプリケーションオファーコード一致検証
|
|
135
|
+
if (makesOfferOnApplication.identifier !== offerIdentifierMustBe) {
|
|
136
|
+
throw new factory.errors.Argument('object.reservationFor.offers.identifier', 'offers.identifier not matched');
|
|
137
|
+
}
|
|
138
|
+
const issuer = yield repos.issuer.findByIdentifier({
|
|
139
|
+
project: { id: event.project.id },
|
|
140
|
+
identifier: offerTokenIssuer
|
|
141
|
+
});
|
|
142
|
+
if (typeof issuer.tokenSecret !== 'string' || issuer.tokenSecret === '') {
|
|
143
|
+
throw new factory.errors.NotFound('issuer.tokenSecret');
|
|
144
|
+
}
|
|
145
|
+
const verifiedOffer = yield verifyOfferToken({
|
|
146
|
+
secret: issuer.tokenSecret,
|
|
147
|
+
issuer: issuer.url,
|
|
148
|
+
token: offerToken
|
|
149
|
+
});
|
|
150
|
+
yield validateOfferToken({
|
|
151
|
+
event,
|
|
152
|
+
acceptedDate,
|
|
153
|
+
verifiedOffer,
|
|
154
|
+
makesOfferOnApplication,
|
|
155
|
+
object: params.object
|
|
156
|
+
})();
|
|
157
|
+
}
|
|
158
|
+
});
|
|
159
|
+
}
|
|
@@ -0,0 +1,16 @@
|
|
|
1
|
+
import * as factory from '../../../../factory';
|
|
2
|
+
import { IMinimizedIndividualEvent } from '../../../../factory/event';
|
|
3
|
+
import type { IssuerRepo } from '../../../../repo/issuer';
|
|
4
|
+
import type { MemberProgramRepo } from '../../../../repo/memberProgram';
|
|
5
|
+
import type { ProductOfferRepo } from '../../../../repo/productOffer';
|
|
6
|
+
declare function validateMemberTierIfExists(params: {
|
|
7
|
+
event: Pick<IMinimizedIndividualEvent, 'offers' | 'id' | 'project'>;
|
|
8
|
+
now: Date;
|
|
9
|
+
object: factory.assetTransaction.reserve.IObjectWithoutDetail;
|
|
10
|
+
makesOfferOnApplication: factory.event.screeningEvent.ISellerMakesOffer;
|
|
11
|
+
}): (repos: {
|
|
12
|
+
issuer: IssuerRepo;
|
|
13
|
+
memberProgram: MemberProgramRepo;
|
|
14
|
+
productOffer: ProductOfferRepo;
|
|
15
|
+
}) => Promise<void>;
|
|
16
|
+
export { validateMemberTierIfExists };
|
|
@@ -0,0 +1,184 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
|
|
3
|
+
function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
|
|
4
|
+
return new (P || (P = Promise))(function (resolve, reject) {
|
|
5
|
+
function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
|
|
6
|
+
function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
|
|
7
|
+
function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
|
|
8
|
+
step((generator = generator.apply(thisArg, _arguments || [])).next());
|
|
9
|
+
});
|
|
10
|
+
};
|
|
11
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
12
|
+
exports.validateMemberTierIfExists = validateMemberTierIfExists;
|
|
13
|
+
const jwt = require("jsonwebtoken");
|
|
14
|
+
const moment = require("moment");
|
|
15
|
+
const factory = require("../../../../factory");
|
|
16
|
+
function validateMemberTier(params) {
|
|
17
|
+
return (repos) => __awaiter(this, void 0, void 0, function* () {
|
|
18
|
+
var _a, _b, _c, _d, _e;
|
|
19
|
+
const { acceptedDate, event, verifiedValidForMemberTier, memberProgramIdentifierMustBe, aggregateOfferIdentifier } = params;
|
|
20
|
+
const tierIdentifier = (_b = (_a = verifiedValidForMemberTier.member) === null || _a === void 0 ? void 0 : _a.memberOf) === null || _b === void 0 ? void 0 : _b.identifier;
|
|
21
|
+
const memberProgramIdentifier = (_e = (_d = (_c = verifiedValidForMemberTier.member) === null || _c === void 0 ? void 0 : _c.memberOf) === null || _d === void 0 ? void 0 : _d.isTierOf) === null || _e === void 0 ? void 0 : _e.identifier;
|
|
22
|
+
if (typeof tierIdentifier !== 'string') {
|
|
23
|
+
throw new factory.errors.Argument('reservationFor.offers.validForMemberTier', 'tier identifier must be string');
|
|
24
|
+
}
|
|
25
|
+
if (typeof memberProgramIdentifier !== 'string') {
|
|
26
|
+
throw new factory.errors.Argument('reservationFor.offers.validForMemberTier', 'member program must be string');
|
|
27
|
+
}
|
|
28
|
+
if (memberProgramIdentifier !== memberProgramIdentifierMustBe) {
|
|
29
|
+
throw new factory.errors.Argument('reservationFor.offers.validForMemberTier', 'member program not matched');
|
|
30
|
+
}
|
|
31
|
+
const sellerId = event.offers.seller.id;
|
|
32
|
+
if (typeof sellerId !== 'string' || sellerId === '') {
|
|
33
|
+
throw new factory.errors.NotFound('event.offers.seller.id');
|
|
34
|
+
}
|
|
35
|
+
// 有効なプロダクトオファーを検証
|
|
36
|
+
const productOfferForMemberTier = (yield repos.productOffer.findProductOffers({
|
|
37
|
+
limit: 1,
|
|
38
|
+
page: 1,
|
|
39
|
+
project: { id: { $eq: event.project.id } },
|
|
40
|
+
// availableAtOrFrom: { id: { $eq: availableAt.id } },
|
|
41
|
+
itemOffered: { identifier: { $eq: aggregateOfferIdentifier } }, // オファーコレクションコード
|
|
42
|
+
validForMemberTier: { identifier: { $eq: tierIdentifier } },
|
|
43
|
+
validFrom: { $lte: acceptedDate.toDate() },
|
|
44
|
+
validThrough: { $gte: acceptedDate.toDate() },
|
|
45
|
+
offeredBy: { id: { $eq: sellerId } } // オファー提供者も検証する
|
|
46
|
+
}, ['identifier'])).shift();
|
|
47
|
+
if (productOfferForMemberTier === undefined) {
|
|
48
|
+
throw new factory.errors.NotFound(factory.offerType.Offer, 'valid product offers for member tier not found');
|
|
49
|
+
}
|
|
50
|
+
// let validThroughMoment: moment.Moment;
|
|
51
|
+
// let validFromMoment: moment.Moment;
|
|
52
|
+
// validThroughMoment = moment(productOfferForMemberTier.validThrough, ROLE_DATE_FORMAT, true);
|
|
53
|
+
// validFromMoment = moment(productOfferForMemberTier.validFrom, ROLE_DATE_FORMAT, true);
|
|
54
|
+
// if (acceptedDate.isBefore(validFromMoment)) {
|
|
55
|
+
// throw new factory.errors.Argument(
|
|
56
|
+
// 'reservationFor.offers.validForMemberTier',
|
|
57
|
+
// `the offer id valid from ${validFromMoment}`
|
|
58
|
+
// );
|
|
59
|
+
// }
|
|
60
|
+
// if (acceptedDate.isAfter(validThroughMoment)) {
|
|
61
|
+
// throw new factory.errors.Argument(
|
|
62
|
+
// 'reservationFor.offers.validForMemberTier',
|
|
63
|
+
// `the offer id valid through ${validThroughMoment}`
|
|
64
|
+
// );
|
|
65
|
+
// }
|
|
66
|
+
});
|
|
67
|
+
}
|
|
68
|
+
function verifyMemberTierToken(params) {
|
|
69
|
+
return __awaiter(this, void 0, void 0, function* () {
|
|
70
|
+
let result;
|
|
71
|
+
const { issuer, secret, token } = params;
|
|
72
|
+
try {
|
|
73
|
+
result = yield new Promise((resolve, reject) => {
|
|
74
|
+
jwt.verify(token, secret, {
|
|
75
|
+
algorithms: ['HS256'],
|
|
76
|
+
issuer
|
|
77
|
+
// ...(Array.isArray(params.audience)) ? { audience: params.audience } : undefined
|
|
78
|
+
}, (err, decoded) => {
|
|
79
|
+
if (err instanceof Error) {
|
|
80
|
+
reject(err);
|
|
81
|
+
}
|
|
82
|
+
else {
|
|
83
|
+
resolve(decoded);
|
|
84
|
+
}
|
|
85
|
+
});
|
|
86
|
+
});
|
|
87
|
+
}
|
|
88
|
+
catch (error) {
|
|
89
|
+
// JWTエラーをハンドリング
|
|
90
|
+
if (error instanceof jwt.TokenExpiredError) {
|
|
91
|
+
throw new factory.errors.Argument('reservationFor.offers.validForMemberTier', `invalid token. [${error.message} expiredAt:${error.expiredAt}]`);
|
|
92
|
+
}
|
|
93
|
+
else if (error instanceof jwt.JsonWebTokenError) {
|
|
94
|
+
throw new factory.errors.Argument('reservationFor.offers.validForMemberTier', `invalid token. [${error.message}]`);
|
|
95
|
+
}
|
|
96
|
+
throw error;
|
|
97
|
+
}
|
|
98
|
+
return result;
|
|
99
|
+
});
|
|
100
|
+
}
|
|
101
|
+
function validateMemberTierIfExists(params) {
|
|
102
|
+
// tslint:disable-next-line:cyclomatic-complexity max-func-body-length
|
|
103
|
+
return (repos) => __awaiter(this, void 0, void 0, function* () {
|
|
104
|
+
var _a, _b, _c, _d;
|
|
105
|
+
const { event, makesOfferOnApplication } = params;
|
|
106
|
+
const acceptedDate = moment(params.now);
|
|
107
|
+
const eventOffers = event.offers;
|
|
108
|
+
// 有効メンバープログラムティアが存在する場合
|
|
109
|
+
// support validForMemberTier(2025-05-14~)
|
|
110
|
+
const validForMemberTierExists = ((_a = makesOfferOnApplication.validForMemberTier) === null || _a === void 0 ? void 0 : _a.typeOf) === 'MemberProgramTier';
|
|
111
|
+
if (validForMemberTierExists) {
|
|
112
|
+
const tokenizedMemberProgramTier = (_c = (_b = params.object.reservationFor) === null || _b === void 0 ? void 0 : _b.offers) === null || _c === void 0 ? void 0 : _c.validForMemberTier;
|
|
113
|
+
const validForMemberTierToken = tokenizedMemberProgramTier === null || tokenizedMemberProgramTier === void 0 ? void 0 : tokenizedMemberProgramTier.token;
|
|
114
|
+
const memberProgramIdentifierMustBe = (_d = tokenizedMemberProgramTier === null || tokenizedMemberProgramTier === void 0 ? void 0 : tokenizedMemberProgramTier.isTierOf) === null || _d === void 0 ? void 0 : _d.identifier;
|
|
115
|
+
// ティアトークンが必須
|
|
116
|
+
if (typeof validForMemberTierToken !== 'string' || validForMemberTierToken === '') {
|
|
117
|
+
throw new factory.errors.ArgumentNull('reservationFor.offers.validForMemberTier.token');
|
|
118
|
+
}
|
|
119
|
+
// メンバープログラムコード指定が必須
|
|
120
|
+
if (typeof memberProgramIdentifierMustBe !== 'string' || memberProgramIdentifierMustBe === '') {
|
|
121
|
+
throw new factory.errors.ArgumentNull('reservationFor.offers.validForMemberTier.isTierOf.identifier');
|
|
122
|
+
}
|
|
123
|
+
// 有効メンバープログラムティアが存在する場合、オファーコレクションコードが必須
|
|
124
|
+
const aggregateOfferIdentifier = eventOffers.identifier;
|
|
125
|
+
if (typeof aggregateOfferIdentifier !== 'string' || aggregateOfferIdentifier === '') {
|
|
126
|
+
throw new factory.errors.NotFound('makesOfferOnApplication.identifier');
|
|
127
|
+
}
|
|
128
|
+
// トークン検証
|
|
129
|
+
const memberProgram = (yield repos.memberProgram.projectMemberPrograms({
|
|
130
|
+
limit: 1,
|
|
131
|
+
page: 1,
|
|
132
|
+
project: { id: { $eq: params.event.project.id } },
|
|
133
|
+
identifier: { $eq: memberProgramIdentifierMustBe }
|
|
134
|
+
})).shift();
|
|
135
|
+
if (memberProgram === undefined) {
|
|
136
|
+
throw new factory.errors.NotFound('MemberProgram', `MemberProgram '${memberProgramIdentifierMustBe}' not found`);
|
|
137
|
+
}
|
|
138
|
+
const issuer = yield repos.issuer.findByIdentifier({
|
|
139
|
+
project: { id: params.event.project.id },
|
|
140
|
+
identifier: memberProgram.hostingOrganization.identifier
|
|
141
|
+
});
|
|
142
|
+
if (typeof issuer.tokenSecret !== 'string' || issuer.tokenSecret === '') {
|
|
143
|
+
throw new factory.errors.NotFound('issuer.tokenSecret');
|
|
144
|
+
}
|
|
145
|
+
const verifiedValidForMemberTier = yield verifyMemberTierToken({
|
|
146
|
+
secret: issuer.tokenSecret,
|
|
147
|
+
issuer: issuer.url,
|
|
148
|
+
token: validForMemberTierToken
|
|
149
|
+
});
|
|
150
|
+
yield validateMemberTier({
|
|
151
|
+
event, acceptedDate, verifiedValidForMemberTier,
|
|
152
|
+
memberProgramIdentifierMustBe, aggregateOfferIdentifier
|
|
153
|
+
})(repos);
|
|
154
|
+
}
|
|
155
|
+
// tslint:disable-next-line:no-suspicious-comment
|
|
156
|
+
// TODO オファートークン検証(2025-10-21~)
|
|
157
|
+
// const offerTokenIssuer = makesOfferOnApplication.issuedBy?.identifier;
|
|
158
|
+
// const offerTokenRequired = typeof offerTokenIssuer === 'string';
|
|
159
|
+
// if (offerTokenRequired) {
|
|
160
|
+
// const offerToken = params.object.reservationFor?.offers?.token;
|
|
161
|
+
// if (typeof offerToken !== 'string' || offerToken === '') {
|
|
162
|
+
// throw new factory.errors.ArgumentNull('object.reservationFor.offers.token');
|
|
163
|
+
// }
|
|
164
|
+
// const issuer = await repos.issuer.findByIdentifier({
|
|
165
|
+
// project: { id: params.event.project.id },
|
|
166
|
+
// identifier: offerTokenIssuer
|
|
167
|
+
// });
|
|
168
|
+
// if (typeof issuer.tokenSecret !== 'string' || issuer.tokenSecret === '') {
|
|
169
|
+
// throw new factory.errors.NotFound('issuer.tokenSecret');
|
|
170
|
+
// }
|
|
171
|
+
// const verifiedOffer = await verifyOfferToken({
|
|
172
|
+
// secret: issuer.tokenSecret,
|
|
173
|
+
// issuer: issuer.url,
|
|
174
|
+
// token: offerToken
|
|
175
|
+
// });
|
|
176
|
+
// await validateOfferToken({
|
|
177
|
+
// acceptedDate,
|
|
178
|
+
// verifiedOffer,
|
|
179
|
+
// makesOfferOnApplication,
|
|
180
|
+
// object: params.object
|
|
181
|
+
// })();
|
|
182
|
+
// }
|
|
183
|
+
});
|
|
184
|
+
}
|
|
@@ -5,7 +5,10 @@ import type { MemberProgramRepo } from '../../../repo/memberProgram';
|
|
|
5
5
|
import type { ProductOfferRepo } from '../../../repo/productOffer';
|
|
6
6
|
declare function validateStartRequest(params: {
|
|
7
7
|
object: factory.assetTransaction.reserve.IObjectWithoutDetail;
|
|
8
|
-
event: Pick<IMinimizedIndividualEvent, 'offers' | 'id' | 'project'>;
|
|
8
|
+
event: Pick<IMinimizedIndividualEvent, 'offers' | 'id' | 'project' | 'identifier'>;
|
|
9
|
+
/**
|
|
10
|
+
* アプリケーションごとのオファーを検証するかどうか
|
|
11
|
+
*/
|
|
9
12
|
validateEventOfferPeriod?: boolean;
|
|
10
13
|
validateEvent?: boolean;
|
|
11
14
|
now: Date;
|
|
@@ -10,156 +10,37 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
|
|
|
10
10
|
};
|
|
11
11
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
12
12
|
exports.validateStartRequest = validateStartRequest;
|
|
13
|
-
const jwt = require("jsonwebtoken");
|
|
14
13
|
const moment = require("moment");
|
|
15
14
|
const factory = require("../../../factory");
|
|
16
|
-
|
|
17
|
-
|
|
18
|
-
let result;
|
|
19
|
-
const { issuer, secret, token } = params;
|
|
20
|
-
try {
|
|
21
|
-
result = yield new Promise((resolve, reject) => {
|
|
22
|
-
jwt.verify(token, secret, {
|
|
23
|
-
algorithms: ['HS256'],
|
|
24
|
-
issuer
|
|
25
|
-
// ...(Array.isArray(params.audience)) ? { audience: params.audience } : undefined
|
|
26
|
-
}, (err, decoded) => {
|
|
27
|
-
if (err instanceof Error) {
|
|
28
|
-
reject(err);
|
|
29
|
-
}
|
|
30
|
-
else {
|
|
31
|
-
resolve(decoded);
|
|
32
|
-
}
|
|
33
|
-
});
|
|
34
|
-
});
|
|
35
|
-
}
|
|
36
|
-
catch (error) {
|
|
37
|
-
// JWTエラーをハンドリング
|
|
38
|
-
if (error instanceof jwt.TokenExpiredError) {
|
|
39
|
-
throw new factory.errors.Argument('memberOfToken', `invalid token. [${error.message} expiredAt:${error.expiredAt}]`);
|
|
40
|
-
}
|
|
41
|
-
else if (error instanceof jwt.JsonWebTokenError) {
|
|
42
|
-
throw new factory.errors.Argument('memberOfToken', `invalid token. [${error.message}]`);
|
|
43
|
-
}
|
|
44
|
-
throw error;
|
|
45
|
-
}
|
|
46
|
-
return result;
|
|
47
|
-
});
|
|
48
|
-
}
|
|
49
|
-
// async function verifyOfferToken(params: {
|
|
50
|
-
// token: string;
|
|
51
|
-
// secret: string;
|
|
52
|
-
// issuer?: string;
|
|
53
|
-
// }): Promise<factory.assetTransaction.reserve.IOfferTokenPayload> {
|
|
54
|
-
// let result: factory.assetTransaction.reserve.IOfferTokenPayload;
|
|
55
|
-
// const { issuer, secret, token } = params;
|
|
56
|
-
// try {
|
|
57
|
-
// result = await new Promise<factory.assetTransaction.reserve.IOfferTokenPayload>((resolve, reject) => {
|
|
58
|
-
// jwt.verify(
|
|
59
|
-
// token,
|
|
60
|
-
// secret,
|
|
61
|
-
// {
|
|
62
|
-
// algorithms: ['HS256'],
|
|
63
|
-
// issuer
|
|
64
|
-
// // ...(Array.isArray(params.audience)) ? { audience: params.audience } : undefined
|
|
65
|
-
// },
|
|
66
|
-
// (err, decoded: any) => {
|
|
67
|
-
// if (err instanceof Error) {
|
|
68
|
-
// reject(err);
|
|
69
|
-
// } else {
|
|
70
|
-
// resolve(decoded);
|
|
71
|
-
// }
|
|
72
|
-
// });
|
|
73
|
-
// });
|
|
74
|
-
// } catch (error) {
|
|
75
|
-
// // JWTエラーをハンドリング
|
|
76
|
-
// if (error instanceof jwt.TokenExpiredError) {
|
|
77
|
-
// throw new factory.errors.Argument('memberOfToken', `invalid token. [${error.message} expiredAt:${error.expiredAt}]`);
|
|
78
|
-
// } else if (error instanceof jwt.JsonWebTokenError) {
|
|
79
|
-
// throw new factory.errors.Argument('memberOfToken', `invalid token. [${error.message}]`);
|
|
80
|
-
// }
|
|
81
|
-
// throw error;
|
|
82
|
-
// }
|
|
83
|
-
// return result;
|
|
84
|
-
// }
|
|
15
|
+
const validateIssuedOfferIfExists_1 = require("./validateStartRequest/validateIssuedOfferIfExists");
|
|
16
|
+
const validateMemberTierIfExists_1 = require("./validateStartRequest/validateMemberTierIfExists");
|
|
85
17
|
function validateStartRequest(params) {
|
|
86
18
|
return (repos) => __awaiter(this, void 0, void 0, function* () {
|
|
87
|
-
var _a
|
|
19
|
+
var _a;
|
|
88
20
|
const now = params.now;
|
|
89
21
|
const event = params.event;
|
|
90
22
|
if (params.validateEventOfferPeriod === true) {
|
|
91
23
|
if (typeof ((_a = params.store) === null || _a === void 0 ? void 0 : _a.id) !== 'string') {
|
|
92
24
|
throw new factory.errors.NotFound('store.id');
|
|
93
25
|
}
|
|
94
|
-
|
|
95
|
-
|
|
96
|
-
now,
|
|
26
|
+
yield validateApplicationOffer({
|
|
27
|
+
event,
|
|
28
|
+
now,
|
|
29
|
+
availableAt: { id: params.store.id },
|
|
30
|
+
object: params.object
|
|
31
|
+
})(repos);
|
|
97
32
|
}
|
|
98
33
|
if (params.validateEvent === true) {
|
|
99
34
|
validateEvent({ event, object: params.object });
|
|
100
35
|
}
|
|
101
36
|
});
|
|
102
37
|
}
|
|
103
|
-
function validateMemberTier(params) {
|
|
104
|
-
return (repos) => __awaiter(this, void 0, void 0, function* () {
|
|
105
|
-
var _a, _b, _c, _d, _e;
|
|
106
|
-
const { acceptedDate, event, verifiedValidForMemberTier, memberProgramIdentifierMustBe, aggregateOfferIdentifier } = params;
|
|
107
|
-
const tierIdentifier = (_b = (_a = verifiedValidForMemberTier.member) === null || _a === void 0 ? void 0 : _a.memberOf) === null || _b === void 0 ? void 0 : _b.identifier;
|
|
108
|
-
const memberProgramIdentifier = (_e = (_d = (_c = verifiedValidForMemberTier.member) === null || _c === void 0 ? void 0 : _c.memberOf) === null || _d === void 0 ? void 0 : _d.isTierOf) === null || _e === void 0 ? void 0 : _e.identifier;
|
|
109
|
-
if (typeof tierIdentifier !== 'string') {
|
|
110
|
-
throw new factory.errors.Argument('reservationFor.offers.validForMemberTier', 'tier identifier must be string');
|
|
111
|
-
}
|
|
112
|
-
if (typeof memberProgramIdentifier !== 'string') {
|
|
113
|
-
throw new factory.errors.Argument('reservationFor.offers.validForMemberTier', 'member program must be string');
|
|
114
|
-
}
|
|
115
|
-
if (memberProgramIdentifier !== memberProgramIdentifierMustBe) {
|
|
116
|
-
throw new factory.errors.Argument('reservationFor.offers.validForMemberTier', 'member program not matched');
|
|
117
|
-
}
|
|
118
|
-
const sellerId = event.offers.seller.id;
|
|
119
|
-
if (typeof sellerId !== 'string' || sellerId === '') {
|
|
120
|
-
throw new factory.errors.NotFound('event.offers.seller.id');
|
|
121
|
-
}
|
|
122
|
-
// 有効なプロダクトオファーを検証
|
|
123
|
-
const productOfferForMemberTier = (yield repos.productOffer.findProductOffers({
|
|
124
|
-
limit: 1,
|
|
125
|
-
page: 1,
|
|
126
|
-
project: { id: { $eq: event.project.id } },
|
|
127
|
-
// availableAtOrFrom: { id: { $eq: availableAt.id } },
|
|
128
|
-
itemOffered: { identifier: { $eq: aggregateOfferIdentifier } }, // オファーコレクションコード
|
|
129
|
-
validForMemberTier: { identifier: { $eq: tierIdentifier } },
|
|
130
|
-
validFrom: { $lte: acceptedDate.toDate() },
|
|
131
|
-
validThrough: { $gte: acceptedDate.toDate() },
|
|
132
|
-
offeredBy: { id: { $eq: sellerId } } // オファー提供者も検証する
|
|
133
|
-
}, ['identifier'])).shift();
|
|
134
|
-
if (productOfferForMemberTier === undefined) {
|
|
135
|
-
throw new factory.errors.NotFound(factory.offerType.Offer, 'valid product offers for member tier not found');
|
|
136
|
-
}
|
|
137
|
-
// let validThroughMoment: moment.Moment;
|
|
138
|
-
// let validFromMoment: moment.Moment;
|
|
139
|
-
// validThroughMoment = moment(productOfferForMemberTier.validThrough, ROLE_DATE_FORMAT, true);
|
|
140
|
-
// validFromMoment = moment(productOfferForMemberTier.validFrom, ROLE_DATE_FORMAT, true);
|
|
141
|
-
// if (acceptedDate.isBefore(validFromMoment)) {
|
|
142
|
-
// throw new factory.errors.Argument(
|
|
143
|
-
// 'reservationFor.offers.validForMemberTier',
|
|
144
|
-
// `the offer id valid from ${validFromMoment}`
|
|
145
|
-
// );
|
|
146
|
-
// }
|
|
147
|
-
// if (acceptedDate.isAfter(validThroughMoment)) {
|
|
148
|
-
// throw new factory.errors.Argument(
|
|
149
|
-
// 'reservationFor.offers.validForMemberTier',
|
|
150
|
-
// `the offer id valid through ${validThroughMoment}`
|
|
151
|
-
// );
|
|
152
|
-
// }
|
|
153
|
-
});
|
|
154
|
-
}
|
|
155
38
|
/**
|
|
156
|
-
*
|
|
39
|
+
* アプリケーションごとのオファーを検証する
|
|
157
40
|
*/
|
|
158
|
-
function
|
|
159
|
-
// tslint:disable-next-line:cyclomatic-complexity max-func-body-length
|
|
41
|
+
function validateApplicationOffer(params) {
|
|
160
42
|
return (repos) => __awaiter(this, void 0, void 0, function* () {
|
|
161
|
-
|
|
162
|
-
const { event, availableAt, tokenizedMemberProgramTier } = params;
|
|
43
|
+
const { event, availableAt } = params;
|
|
163
44
|
const acceptedDate = moment(params.now);
|
|
164
45
|
const eventOffers = event.offers;
|
|
165
46
|
// アプリケーションごとの設定を参照する(2022-11-19~)
|
|
@@ -187,79 +68,19 @@ function validateEventOfferPeriod(params) {
|
|
|
187
68
|
}
|
|
188
69
|
}
|
|
189
70
|
// 有効メンバープログラムティアが存在する場合
|
|
190
|
-
|
|
191
|
-
|
|
192
|
-
|
|
193
|
-
|
|
194
|
-
|
|
195
|
-
|
|
196
|
-
|
|
197
|
-
|
|
198
|
-
|
|
199
|
-
|
|
200
|
-
|
|
201
|
-
|
|
202
|
-
|
|
203
|
-
// 有効メンバープログラムティアが存在する場合、オファーコレクションコードが必須
|
|
204
|
-
const aggregateOfferIdentifier = eventOffers.identifier;
|
|
205
|
-
if (typeof aggregateOfferIdentifier !== 'string' || aggregateOfferIdentifier === '') {
|
|
206
|
-
throw new factory.errors.NotFound('makesOfferOnApplication.identifier');
|
|
207
|
-
}
|
|
208
|
-
// トークン検証
|
|
209
|
-
const memberProgram = (yield repos.memberProgram.projectMemberPrograms({
|
|
210
|
-
limit: 1,
|
|
211
|
-
page: 1,
|
|
212
|
-
project: { id: { $eq: params.event.project.id } },
|
|
213
|
-
identifier: { $eq: memberProgramIdentifierMustBe }
|
|
214
|
-
})).shift();
|
|
215
|
-
if (memberProgram === undefined) {
|
|
216
|
-
throw new factory.errors.NotFound('MemberProgram', `MemberProgram '${memberProgramIdentifierMustBe}' not found`);
|
|
217
|
-
}
|
|
218
|
-
const issuer = yield repos.issuer.findByIdentifier({
|
|
219
|
-
project: { id: params.event.project.id },
|
|
220
|
-
identifier: memberProgram.hostingOrganization.identifier
|
|
221
|
-
});
|
|
222
|
-
if (typeof issuer.tokenSecret !== 'string' || issuer.tokenSecret === '') {
|
|
223
|
-
throw new factory.errors.NotFound('issuer.tokenSecret');
|
|
224
|
-
}
|
|
225
|
-
const verifiedValidForMemberTier = yield verifyMemberTierToken({
|
|
226
|
-
secret: issuer.tokenSecret,
|
|
227
|
-
issuer: issuer.url,
|
|
228
|
-
token: validForMemberTierToken
|
|
229
|
-
});
|
|
230
|
-
yield validateMemberTier({
|
|
231
|
-
event, acceptedDate, verifiedValidForMemberTier,
|
|
232
|
-
memberProgramIdentifierMustBe, aggregateOfferIdentifier
|
|
233
|
-
})(repos);
|
|
234
|
-
}
|
|
235
|
-
// tslint:disable-next-line:no-suspicious-comment
|
|
236
|
-
// TODO オファートークン検証(2025-10-21~)
|
|
237
|
-
// const offerTokenIssuer = makesOfferOnApplication.issuedBy?.identifier;
|
|
238
|
-
// const offerTokenRequired = typeof offerTokenIssuer === 'string';
|
|
239
|
-
// if (offerTokenRequired) {
|
|
240
|
-
// const offerToken = params.object.reservationFor?.offers?.token;
|
|
241
|
-
// if (typeof offerToken !== 'string' || offerToken === '') {
|
|
242
|
-
// throw new factory.errors.ArgumentNull('object.reservationFor.offers.token');
|
|
243
|
-
// }
|
|
244
|
-
// const issuer = await repos.issuer.findByIdentifier({
|
|
245
|
-
// project: { id: params.event.project.id },
|
|
246
|
-
// identifier: offerTokenIssuer
|
|
247
|
-
// });
|
|
248
|
-
// if (typeof issuer.tokenSecret !== 'string' || issuer.tokenSecret === '') {
|
|
249
|
-
// throw new factory.errors.NotFound('issuer.tokenSecret');
|
|
250
|
-
// }
|
|
251
|
-
// const verifiedOffer = await verifyOfferToken({
|
|
252
|
-
// secret: issuer.tokenSecret,
|
|
253
|
-
// issuer: issuer.url,
|
|
254
|
-
// token: offerToken
|
|
255
|
-
// });
|
|
256
|
-
// await validateOfferToken({
|
|
257
|
-
// acceptedDate,
|
|
258
|
-
// verifiedOffer,
|
|
259
|
-
// makesOfferOnApplication,
|
|
260
|
-
// object: params.object
|
|
261
|
-
// })();
|
|
262
|
-
// }
|
|
71
|
+
yield (0, validateMemberTierIfExists_1.validateMemberTierIfExists)({
|
|
72
|
+
event,
|
|
73
|
+
now: params.now,
|
|
74
|
+
object: params.object,
|
|
75
|
+
makesOfferOnApplication
|
|
76
|
+
})(repos);
|
|
77
|
+
// オファートークン検証(2025-10-21~)
|
|
78
|
+
yield (0, validateIssuedOfferIfExists_1.validateIssuedOfferIfExists)({
|
|
79
|
+
event,
|
|
80
|
+
now: params.now,
|
|
81
|
+
object: params.object,
|
|
82
|
+
makesOfferOnApplication
|
|
83
|
+
})(repos);
|
|
263
84
|
});
|
|
264
85
|
}
|
|
265
86
|
/**
|
package/package.json
CHANGED
|
@@ -11,8 +11,8 @@
|
|
|
11
11
|
"dependencies": {
|
|
12
12
|
"@aws-sdk/client-cognito-identity-provider": "3.600.0",
|
|
13
13
|
"@aws-sdk/credential-providers": "3.600.0",
|
|
14
|
-
"@chevre/factory": "5.1.0-alpha.
|
|
15
|
-
"@cinerino/sdk": "12.
|
|
14
|
+
"@chevre/factory": "5.1.0-alpha.6",
|
|
15
|
+
"@cinerino/sdk": "12.6.0-alpha.2",
|
|
16
16
|
"@motionpicture/coa-service": "9.6.0",
|
|
17
17
|
"@motionpicture/gmo-service": "5.4.0-alpha.1",
|
|
18
18
|
"@sendgrid/client": "8.1.4",
|
|
@@ -115,5 +115,5 @@
|
|
|
115
115
|
"postversion": "git push origin --tags",
|
|
116
116
|
"prepublishOnly": "npm run clean && npm run build && npm test && npm run doc"
|
|
117
117
|
},
|
|
118
|
-
"version": "23.0.0-alpha.
|
|
118
|
+
"version": "23.0.0-alpha.18"
|
|
119
119
|
}
|