@defra-fish/gafl-webapp-service 1.64.0-rc.8 → 1.65.0-rc.0

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@defra-fish/gafl-webapp-service",
-  "version": "1.64.0-rc.8",
+  "version": "1.65.0-rc.0",
   "description": "The websales frontend for the GAFL service",
   "type": "module",
   "engines": {
@@ -36,8 +36,8 @@
     "prepare": "gulp --gulpfile build/gulpfile.cjs"
   },
   "dependencies": {
-    "@defra-fish/business-rules-lib": "1.64.0-rc.8",
-    "@defra-fish/connectors-lib": "1.64.0-rc.8",
+    "@defra-fish/business-rules-lib": "1.65.0-rc.0",
+    "@defra-fish/connectors-lib": "1.65.0-rc.0",
     "@defra/hapi-gapi": "2.0.0",
     "@hapi/boom": "9.1.2",
     "@hapi/catbox-redis": "6.0.2",
@@ -79,5 +79,5 @@
       "./gafl-jest-matchers.js"
     ]
   },
-  "gitHead": "88a60cab95e119b46cec17336d784aec1aeabae8"
+  "gitHead": "cdf9253964871c4afe0ff85d085364ffe4e890cf"
 }

package/src/handlers/__tests__/cancel-recurring-payment-authentication-handler.spec.js

@@ -0,0 +1,214 @@
+import handler from '../cancel-recurring-payment-authentication-handler'
+import { CANCEL_RP_IDENTIFY, CANCEL_RP_DETAILS } from '../../uri.js'
+import { addLanguageCodeToUri } from '../../processors/uri-helper.js'
+import { salesApi } from '@defra-fish/connectors-lib'
+
+jest.mock('../../processors/uri-helper.js')
+jest.mock('@defra-fish/connectors-lib')
+jest.mock('../../processors/renewals-write-cache.js', () => ({
+  setUpCacheFromAuthenticationResult: jest.fn().mockResolvedValue(undefined),
+  setUpPayloads: jest.fn().mockResolvedValue(undefined)
+}))
+jest.mock('@defra-fish/business-rules-lib', () => ({
+  validation: {
+    contact: {
+      createBirthDateValidator: () => ({ validateAsync: async () => '1970-01-01' }),
+      createOverseasPostcodeValidator: () => ({ validateAsync: async () => 'AA1 1AA' })
+    }
+  }
+}))
+jest.mock('../../uri.js', () => ({
+  CANCEL_RP_IDENTIFY: { page: 'cancel-rp-identify page', uri: Symbol('cancel-rp-identify-uri') },
+  CANCEL_RP_DETAILS: { uri: Symbol('cancel-rp-details-uri') }
+}))
+jest.mock('../../processors/recurring-payments-write-cache.js')
+
+const getSampleRequest = (payloadOverride = {}) => {
+  const getCurrentPermission = jest.fn(async () => ({}))
+  const setCurrentPermission = jest.fn()
+
+  return {
+    cache: () => ({
+      helpers: {
+        page: {
+          getCurrentPermission: jest.fn(async () => ({
+            payload: {
+              referenceNumber: 'ABC123',
+              'date-of-birth-day': '01',
+              'date-of-birth-month': '01',
+              'date-of-birth-year': '1970',
+              postcode: 'AA1 1AA',
+              ...payloadOverride
+            }
+          })),
+          setCurrentPermission
+        },
+        status: {
+          getCurrentPermission,
+          setCurrentPermission
+        }
+      }
+    })
+  }
+}
+
+const getSampleResponseTooklkit = () => ({
+  redirectWithLanguageCode: jest.fn().mockReturnValue('redirected')
+})
+
+const invokeHandlerWithMocks = async ({ salesApiResponse, decoratedIdentifyUri } = {}) => {
+  if (typeof salesApiResponse !== 'undefined') {
+    salesApi.authenticateRecurringPayment.mockResolvedValueOnce(salesApiResponse)
+  }
+  if (decoratedIdentifyUri) {
+    addLanguageCodeToUri.mockReturnValueOnce(decoratedIdentifyUri)
+  }
+  const request = getSampleRequest()
+  const h = getSampleResponseTooklkit()
+  if (decoratedIdentifyUri) {
+    h.redirect = jest.fn().mockReturnValue('redirect-response')
+  }
+  const result = await handler(request, h)
+  return { request, h, result }
+}
+
+const mockSuccessResponse = () => ({
+  permission: { id: 'perm-id' },
+  recurringPayment: { id: 'rcp-id', status: 0, cancelledDate: null }
+})
+
+describe('Cancel RP Authentication Handler', () => {
+  beforeEach(() => {
+    jest.resetAllMocks()
+  })
+
+  describe('Successful authentication', () => {
+    it('returns the redirect result', async () => {
+      const { result } = await invokeHandlerWithMocks({
+        salesApiResponse: mockSuccessResponse()
+      })
+      expect(result).toBe('redirected')
+    })
+
+    it('redirects to details', async () => {
+      const { h } = await invokeHandlerWithMocks({
+        salesApiResponse: mockSuccessResponse()
+      })
+      expect(h.redirectWithLanguageCode).toHaveBeenCalledWith(CANCEL_RP_DETAILS.uri)
+    })
+
+    it('marks status as authorised', async () => {
+      const { request } = await invokeHandlerWithMocks({
+        salesApiResponse: mockSuccessResponse()
+      })
+      expect(request.cache().helpers.status.setCurrentPermission).toHaveBeenCalledWith({ authentication: { authorised: true } })
+    })
+  })
+
+  describe('Unsuccessful authentication - no match', () => {
+    it('redirects to the decorated identify URI', async () => {
+      const { h } = await invokeHandlerWithMocks({ salesApiResponse: null, decoratedIdentifyUri: 'decorated-identify-uri' })
+      expect(h.redirect).toHaveBeenCalledWith('decorated-identify-uri')
+    })
+
+    it('sets page cache error and preserves payload', async () => {
+      const { request } = await invokeHandlerWithMocks({ salesApiResponse: null, decoratedIdentifyUri: 'decorated-identify-uri' })
+      expect(request.cache().helpers.page.setCurrentPermission).toHaveBeenCalledWith(
+        CANCEL_RP_IDENTIFY.page,
+        expect.objectContaining({
+          payload: expect.any(Object),
+          error: { referenceNumber: 'not-found' }
+        })
+      )
+    })
+
+    it('marks status as unauthorised', async () => {
+      const { request } = await invokeHandlerWithMocks({ salesApiResponse: null, decoratedIdentifyUri: 'decorated-identify-uri' })
+      expect(request.cache().helpers.status.setCurrentPermission).toHaveBeenCalledWith(
+        expect.objectContaining({ authentication: { authorised: false } })
+      )
+    })
+  })
+
+  describe('Unsuccessful authentication - no recurring payment agreement', () => {
+    it('redirects to the decorated identify URI', async () => {
+      const { h } = await invokeHandlerWithMocks({
+        salesApiResponse: { permission: { id: 'perm-id' }, recurringPayment: null },
+        decoratedIdentifyUri: 'decorated-identify-uri'
+      })
+      expect(h.redirect).toHaveBeenCalledWith('decorated-identify-uri')
+    })
+
+    it('sets page cache error for no RCP setup', async () => {
+      const { request } = await invokeHandlerWithMocks({
+        salesApiResponse: { permission: { id: 'perm-id' }, recurringPayment: null },
+        decoratedIdentifyUri: 'decorated-identify-uri'
+      })
+      expect(request.cache().helpers.page.setCurrentPermission).toHaveBeenCalledWith(
+        CANCEL_RP_IDENTIFY.page,
+        expect.objectContaining({
+          payload: expect.any(Object),
+          error: { recurringPayment: 'not-set-up' }
+        })
+      )
+    })
+
+    it('marks status as unauthorised', async () => {
+      const { request } = await invokeHandlerWithMocks({
+        salesApiResponse: { permission: { id: 'perm-id' }, recurringPayment: null },
+        decoratedIdentifyUri: 'decorated-identify-uri'
+      })
+      expect(request.cache().helpers.status.setCurrentPermission).toHaveBeenCalledWith(
+        expect.objectContaining({ authentication: { authorised: false } })
+      )
+    })
+  })
+
+  describe('Unsuccessful authentication - RCP cancelled', () => {
+    it('redirects to the decorated identify URI', async () => {
+      const { h } = await invokeHandlerWithMocks({
+        salesApiResponse: { permission: { id: 'perm-id' }, recurringPayment: { id: 'rcp-id', status: 1, cancelledDate: '2024-01-01' } },
+        decoratedIdentifyUri: 'decorated-identify-uri'
+      })
+      expect(h.redirect).toHaveBeenCalledWith('decorated-identify-uri')
+    })
+
+    it('sets page cache error for RCP cancelled', async () => {
+      const { request } = await invokeHandlerWithMocks({
+        salesApiResponse: { permission: { id: 'perm-id' }, recurringPayment: { id: 'rcp-id', status: 1, cancelledDate: '2024-01-01' } },
+        decoratedIdentifyUri: 'decorated-identify-uri'
+      })
+      expect(request.cache().helpers.page.setCurrentPermission).toHaveBeenCalledWith(
+        CANCEL_RP_IDENTIFY.page,
+        expect.objectContaining({
+          payload: expect.any(Object),
+          error: { recurringPayment: 'rcp-cancelled' }
+        })
+      )
+    })
+
+    it('marks status as unauthorised', async () => {
+      const { request } = await invokeHandlerWithMocks({
+        salesApiResponse: { permission: { id: 'perm-id' }, recurringPayment: { id: 'rcp-id', status: 1, cancelledDate: '2024-01-01' } },
+        decoratedIdentifyUri: 'decorated-identify-uri'
+      })
+      expect(request.cache().helpers.status.setCurrentPermission).toHaveBeenCalledWith(
+        expect.objectContaining({ authentication: { authorised: false } })
+      )
+    })
+  })
+
+  it('uses referenceNumber from status when payload is missing', async () => {
+    salesApi.authenticateRecurringPayment.mockResolvedValueOnce({
+      permission: { id: 'perm-id' },
+      recurringPayment: { id: 'rcp-id', status: 0, cancelledDate: null }
+    })
+    const request = getSampleRequest({ referenceNumber: undefined })
+    request.cache().helpers.status.getCurrentPermission.mockReturnValueOnce({
+      referenceNumber: 'A1B2C3'
+    })
+    const h = getSampleResponseTooklkit()
+    await handler(request, h)
+    expect(salesApi.authenticateRecurringPayment).toHaveBeenCalledWith('A1B2C3', expect.anything(), expect.anything())
+  })
+})

package/src/handlers/cancel-recurring-payment-authentication-handler.js

@@ -0,0 +1,60 @@
+import { CANCEL_RP_IDENTIFY, CANCEL_RP_DETAILS } from '../../src/uri.js'
+import { addLanguageCodeToUri } from '../processors/uri-helper.js'
+import { salesApi } from '@defra-fish/connectors-lib'
+import { validation } from '@defra-fish/business-rules-lib'
+import { setupCancelRecurringPaymentCacheFromAuthResult } from '../processors/recurring-payments-write-cache.js'
+import Joi from 'joi'
+
+const buildAuthFailure = (referenceNumber, payload, error) => ({
+  page: {
+    page: CANCEL_RP_IDENTIFY.page,
+    data: { payload, error }
+  },
+  status: {
+    referenceNumber,
+    authentication: { authorised: false }
+  },
+  redirectPath: CANCEL_RP_IDENTIFY.uri
+})
+
+const applyAuthFailure = async (request, h, failure) => {
+  await request.cache().helpers.page.setCurrentPermission(failure.page.page, failure.page.data)
+  await request.cache().helpers.status.setCurrentPermission(failure.status)
+  return h.redirect(addLanguageCodeToUri(request, failure.redirectPath))
+}
+
+const cancelRecurringPaymentAuthenticationHandler = async (request, h) => {
+  const { payload } = await request.cache().helpers.page.getCurrentPermission(CANCEL_RP_IDENTIFY.page)
+  const permission = await request.cache().helpers.status.getCurrentPermission()
+
+  const referenceNumber = payload.referenceNumber || permission.referenceNumber
+
+  const dateOfBirth = await validation.contact
+    .createBirthDateValidator(Joi)
+    .validateAsync(`${payload['date-of-birth-year']}-${payload['date-of-birth-month']}-${payload['date-of-birth-day']}`)
+  const postcode = await validation.contact.createOverseasPostcodeValidator(Joi).validateAsync(payload.postcode)
+
+  const authenticationResult = await salesApi.authenticateRecurringPayment(referenceNumber, dateOfBirth, postcode)
+
+  const failures = error => applyAuthFailure(request, h, buildAuthFailure(referenceNumber, payload, error))
+
+  if (!authenticationResult) {
+    return failures({ referenceNumber: 'not-found' })
+  }
+  if (!authenticationResult.recurringPayment) {
+    return failures({ recurringPayment: 'not-set-up' })
+  }
+  if (authenticationResult.recurringPayment.cancelledDate) {
+    return failures({ recurringPayment: 'rcp-cancelled' })
+  }
+
+  await setupCancelRecurringPaymentCacheFromAuthResult(request, authenticationResult)
+
+  await request.cache().helpers.status.setCurrentPermission({
+    authentication: { authorised: true }
+  })
+
+  return h.redirectWithLanguageCode(CANCEL_RP_DETAILS.uri)
+}
+
+export default cancelRecurringPaymentAuthenticationHandler

package/src/locales/cy.json

@@ -140,6 +140,19 @@
   "back": "Yn ôl",
   "buy_another_licence": "Prynu trwydded arall",
   "buy_different_licence": "Prynu trwydded wahanol",
+  "cancel_rp_identify_caption": "Cancel your recurring card payment agreement",
+  "cancel_rp_identify_title": "Enter your details",
+  "cancel_rp_identify_body": "Cancelling your recurring card payment agreement will not cancel or refund your current licence. You can still fish until your current licence expires but your licence will not renew automatically.",
+  "cancel_rp_identify_ref_number": "Last 6 characters of your licence number",
+  "cancel_rp_identify_ref_number_hint": "For example, F4A315",
+  "cancel_rp_identify_ref_number_error": "Enter the last 6 characters of your licence number",
+  "cancel_rp_identify_ref_pattern": "The last six characters of your licence number don’t look right. Check and enter again",
+  "cancel_rp_identify_dob": "Date of birth",
+  "cancel_rp_identify_dob_hint": "For example, 31 3 1980",
+  "cancel_rp_identify_postcode": "Postcode",
+  "cancel_rp_identify_postcode_hint": "For example, WA4 1AB",
+  "cancel_rp_identify_postcode_error": "Enter a postcode",
+  "cancel_rp_identify_postcode_pattern": "Your postcode doesn’t look right. Check and enter again",
   "change_licence_details_you": "Adolygu neu newid manylion eich trwydded",
   "change_licence_details_other": "Adolygu neu newid manylion y drwydded",
   "change_licence_number": "Newid rhif y drwydded",
@@ -169,6 +182,7 @@
   "client_error_payment_start_again_pre": "Neu, os byddai’n well gennych, gallwch waredu’r drwydded hon a ",
   "client_error_payment_start_again": "dechrau eto",
   "concession_applied": "Consesiwn wedi’i gynnwys",
+  "confirm_continue": "Confirm and continue",
   "contact_summary_change": "Newid",
   "contact_summary_email": "e-bost i ",
   "contact_summary_hidden_address": "cyfeiriad",
@@ -774,8 +788,13 @@
   "role_required_title": "Role required",
   "rp_cancel_complete_title": "Cancel your recurring card payment agreement - complete",
   "rp_cancel_confirm_title": "Cancel your recurring card payment agreement - confirm",
-  "rp_cancel_details_title": "Cancel your recurring card payment agreement - details",
-  "rp_cancel_identify_title": "Cancel your recurring card payment agreement - identify",
+  "rp_cancel_details_last_purchased": "Last licence purchased",
+  "rp_cancel_details_licence_holder": "Licence holder",
+  "rp_cancel_details_licence_type": "Licence type",
+  "rp_cancel_details_licence_valid_until": "Licence valid until",
+  "rp_cancel_details_payment_card": "Payment card (last 4 digits)",
+  "rp_cancel_details_title": "Check your details",
+  "rp_cancel_details_summary_title": "If you need help checking your details",
   "save_changes": "Cadw newidiadau",
   "server_error_title_suffix": " - GOV.UK",
   "server_error_bulletpoint_1": "Os ydych chi wedi gofyn am hysbysiad dros e-bost neu neges destun, dylai’r hysbysiad gyrraedd o fewn 3 awr os bydd y taliad wedi cael ei gymryd.",

package/src/locales/en.json

@@ -140,6 +140,19 @@
   "back": "Back",
   "buy_another_licence": "Buy another licence",
   "buy_different_licence": "Buy a different licence",
+  "cancel_rp_identify_caption": "Cancel your recurring card payment agreement",
+  "cancel_rp_identify_title": "Enter your details",
+  "cancel_rp_identify_body": "Cancelling your recurring card payment agreement will not cancel or refund your current licence. You can still fish until your current licence expires but your licence will not renew automatically.",
+  "cancel_rp_identify_ref_number": "Last 6 characters of your licence number",
+  "cancel_rp_identify_ref_number_hint": "For example, F4A315",
+  "cancel_rp_identify_ref_number_error": "Enter the last 6 characters of your licence number",
+  "cancel_rp_identify_ref_pattern": "The last six characters of your licence number don’t look right. Check and enter again",
+  "cancel_rp_identify_dob": "Date of birth",
+  "cancel_rp_identify_dob_hint": "For example, 31 3 1980",
+  "cancel_rp_identify_postcode": "Postcode",
+  "cancel_rp_identify_postcode_hint": "For example, WA4 1AB",
+  "cancel_rp_identify_postcode_error": "Enter a postcode",
+  "cancel_rp_identify_postcode_pattern": "Your postcode doesn’t look right. Check and enter again",
   "change_licence_details_you": "Review or change the licence details",
   "change_licence_details_other": "Review or change the licence details",
   "change_licence_number": "Change licence number",
@@ -169,6 +182,7 @@
   "client_error_payment_start_again_pre": "Or, if you wish, you can discard this licence and ",
   "client_error_payment_start_again": "start again",
   "concession_applied": "Concession applied",
+  "confirm_continue": "Confirm and continue",
   "contact_summary_change": "Change",
   "contact_summary_email": "Email to ",
   "contact_summary_hidden_address": "address",
@@ -774,8 +788,13 @@
   "role_required_title": "Role required",
   "rp_cancel_complete_title": "Cancel your recurring card payment agreement - complete",
   "rp_cancel_confirm_title": "Cancel your recurring card payment agreement - confirm",
-  "rp_cancel_details_title": "Cancel your recurring card payment agreement - details",
-  "rp_cancel_identify_title": "Cancel your recurring card payment agreement - identify",
+  "rp_cancel_details_last_purchased": "Last licence purchased",
+  "rp_cancel_details_licence_holder": "Licence holder",
+  "rp_cancel_details_licence_type": "Licence type",
+  "rp_cancel_details_licence_valid_until": "Licence valid until",
+  "rp_cancel_details_payment_card": "Payment card (last 4 digits)",
+  "rp_cancel_details_title": "Check your details",
+  "rp_cancel_details_summary_title": "If you need help checking your details",
   "save_changes": "Save changes",
   "server_error_title_suffix": " - GOV.UK",
   "server_error_bulletpoint_1": "If you have requested an email or text notification, this should be delivered in 3 hours if a payment has been taken.",

package/src/pages/guidance/accessibility-statement.njk

@@ -59,17 +59,17 @@
         <p class="govuk-body">{{ mssgs.access_statement_tech_body }}</p>
 
         <h2 class="govuk-heading-m">{{ mssgs.access_statement_compliance_heading }}</h2>
-        <p class="govuk-body">{{ mssgs.access_statement_compliance_body_1 }}<a href="https://www.w3.org/TR/WCAG21/" class="govuk-link" target="_blank">{{ mssgs.access_statement_compliance_body_link_1 }}</a>{{ mssgs.full_stop }}</p>
-        <p class="govuk-body">{{ mssgs.access_statement_compliance_body_2 }}<a href="https://www.w3.org/TR/WCAG21/" class="govuk-link" target="_blank">{{ mssgs.access_statement_compliance_body_link_2 }}</a>{{ mssgs.full_stop }}</p>
+        <p class="govuk-body">{{ mssgs.access_statement_compliance_body_1 }}<a href="https://www.w3.org/TR/WCAG22/" class="govuk-link" target="_blank">{{ mssgs.access_statement_compliance_body_link_1 }}</a>{{ mssgs.full_stop }}</p>
+        <p class="govuk-body">{{ mssgs.access_statement_compliance_body_2 }}<a href="https://www.w3.org/TR/WCAG22/" class="govuk-link" target="_blank">{{ mssgs.access_statement_compliance_body_link_2 }}</a>{{ mssgs.full_stop }}</p>
 
         <h2 class="govuk-heading-m">{{ mssgs.access_statement_nonaccess_heading }}</h2>
         <p class="govuk-body">{{ mssgs.access_statement_nonaccess_body }}</p>
 
         <h2 class="govuk-heading-m">{{ mssgs.access_statement_noncompliance_heading }}</h2>
         <ul class="govuk-list govuk-list--bullet">
-            <li> {{ mssgs.access_statement_noncompliance_body_1 }}<a href="https://www.w3.org/WAI/WCAG21/Understanding/keyboard-no-exception.html" class="govuk-link" target="_blank">{{ mssgs.access_statement_noncompliance_body_link_1 }}</a>{{ mssgs.access_statement_noncompliance_body_2 }}</li>
-            <li> {{ mssgs.access_statement_noncompliance_body_3 }}<a href="https://www.w3.org/WAI/WCAG21/Understanding/contrast-enhanced.html" class="govuk-link" target="_blank">{{ mssgs.access_statement_noncompliance_body_link_2 }}</a>{{ mssgs.access_statement_noncompliance_body_4 }} </li>
-            <li> {{ mssgs.access_statement_noncompliance_body_5 }}<a href="https://www.w3.org/WAI/WCAG21/Understanding/link-purpose-link-only.html" class="govuk-link" target="_blank">{{ mssgs.access_statement_noncompliance_body_link_3 }}</a>{{ mssgs.access_statement_noncompliance_body_6 }} </li>
+            <li> {{ mssgs.access_statement_noncompliance_body_1 }}<a href="https://www.w3.org/WAI/WCAG22/Understanding/keyboard-no-exception.html" class="govuk-link" target="_blank">{{ mssgs.access_statement_noncompliance_body_link_1 }}</a>{{ mssgs.access_statement_noncompliance_body_2 }}</li>
+            <li> {{ mssgs.access_statement_noncompliance_body_3 }}<a href="https://www.w3.org/WAI/WCAG22/Understanding/contrast-enhanced.html" class="govuk-link" target="_blank">{{ mssgs.access_statement_noncompliance_body_link_2 }}</a>{{ mssgs.access_statement_noncompliance_body_4 }} </li>
+            <li> {{ mssgs.access_statement_noncompliance_body_5 }}<a href="https://www.w3.org/WAI/WCAG22/Understanding/link-purpose-link-only.html" class="govuk-link" target="_blank">{{ mssgs.access_statement_noncompliance_body_link_3 }}</a>{{ mssgs.access_statement_noncompliance_body_6 }} </li>
         </ul>
 
         <h2 class="govuk-heading-m">{{ mssgs.access_statement_burden_title }}</h2>

package/src/pages/recurring-payments/cancel/details/__tests__/route.spec.js

@@ -0,0 +1,131 @@
+import pageRoute from '../../../../../routes/page-route.js'
+import { CANCEL_RP_DETAILS, CANCEL_RP_CONFIRM } from '../../../../../uri.js'
+import { addLanguageCodeToUri } from '../../../../../processors/uri-helper.js'
+import { getData } from '../route.js'
+
+jest.mock('../../../../../routes/page-route.js')
+jest.mock('../../../../../uri.js', () => ({
+  ...jest.requireActual('../../../../../uri.js'),
+  CANCEL_RP_DETAILS: { page: Symbol('cancel-rp-details-page'), uri: Symbol('cancel-rp-details-uri') },
+  CANCEL_RP_CONFIRM: { uri: Symbol('cancel-rp-confirm-uri') }
+}))
+jest.mock('../../../../../processors/uri-helper.js')
+
+describe('route', () => {
+  beforeEach(jest.clearAllMocks)
+
+  describe('pageRoute receives expected arguments', () => {
+    it('should call the pageRoute with cancel-rp-details, /buy/cancel-recurring-payment/details, dateOfBirthValidator, nextPage and getData', async () => {
+      jest.isolateModules(() => {
+        require('../route.js')
+        expect(pageRoute).toHaveBeenCalledWith(
+          CANCEL_RP_DETAILS.page,
+          CANCEL_RP_DETAILS.uri,
+          expect.any(Function),
+          expect.any(Function),
+          expect.any(Function)
+        )
+      })
+    })
+  })
+
+  it('calls addLanguageCodeToUri with request object', async () => {
+    jest.isolateModules(() => {
+      require('../route.js')
+    })
+    const [[, , , completion]] = pageRoute.mock.calls
+    const sampleRequest = Symbol('sample request')
+    completion(sampleRequest)
+    expect(addLanguageCodeToUri).toHaveBeenCalledWith(sampleRequest, expect.anything())
+  })
+
+  it('calls addLanguageCodeToUri with CANCEL_RP_AUTHENTICATE uri', () => {
+    jest.isolateModules(() => {
+      require('../route.js')
+    })
+    const [[, , , completion]] = pageRoute.mock.calls
+    completion({})
+    expect(addLanguageCodeToUri).toHaveBeenCalledWith(expect.anything(), CANCEL_RP_CONFIRM.uri)
+  })
+
+  it('returns the value of addLanguageCodeToUri', () => {
+    jest.isolateModules(() => {
+      require('../route.js')
+    })
+    const [[, , , completion]] = pageRoute.mock.calls
+    const expectedCompletionRedirect = Symbol('expected-completion-redirect')
+    addLanguageCodeToUri.mockReturnValueOnce(expectedCompletionRedirect)
+
+    const completionRedirect = completion({})
+
+    expect(completionRedirect).toBe(expectedCompletionRedirect)
+  })
+
+  const getSampleCatalog = () => ({
+    rp_cancel_details_licence_holder: 'Licence holder',
+    rp_cancel_details_licence_type: 'Licence type',
+    rp_cancel_details_payment_card: 'Payment card',
+    rp_cancel_details_last_purchased: 'Last purchased',
+    rp_cancel_details_licence_valid_until: 'Valid until'
+  })
+
+  const getSamplePermission = () => ({
+    permission: {
+      licensee: {
+        firstName: 'John',
+        lastName: 'Smith'
+      },
+      permit: {
+        description: 'Salmon and sea trout'
+      },
+      endDate: '01-01-2026',
+      referenceNumber: 'abc123'
+    },
+    recurringPayment: {
+      lastDigitsCardNumbers: 1234
+    }
+  })
+
+  const createMockRequest = ({ currentPermission = getSamplePermission(), catalog = getSampleCatalog() } = {}) => ({
+    cache: () => ({
+      helpers: {
+        transaction: {
+          getCurrentPermission: jest.fn().mockResolvedValue(currentPermission)
+        }
+      }
+    }),
+    i18n: {
+      getCatalog: () => catalog
+    }
+  })
+
+  describe('getData', () => {
+    beforeEach(() => {
+      jest.clearAllMocks()
+    })
+
+    it('returns request.i18n.getCatalog()', async () => {
+      const mssgs = getSampleCatalog()
+      const mockRequest = createMockRequest({ catalog: mssgs })
+
+      const result = await getData(mockRequest)
+
+      expect(result.mssgs).toEqual(mssgs)
+    })
+
+    it('returns summaryTable with expected data', async () => {
+      const mssgs = getSampleCatalog()
+      const mockRequest = createMockRequest({ catalog: mssgs })
+
+      const result = await getData(mockRequest)
+
+      expect(result.summaryTable).toEqual([
+        { key: { text: mssgs.rp_cancel_details_licence_holder }, value: { text: 'John Smith' } },
+        { key: { text: mssgs.rp_cancel_details_licence_type }, value: { text: 'Salmon and sea trout' } },
+        { key: { text: mssgs.rp_cancel_details_payment_card }, value: { text: 1234 } },
+        { key: { text: mssgs.rp_cancel_details_last_purchased }, value: { text: 'abc123' } },
+        { key: { text: mssgs.rp_cancel_details_licence_valid_until }, value: { text: '01-01-2026' } }
+      ])
+    })
+  })
+})

package/src/pages/recurring-payments/cancel/details/cancel-rp-details.njk

@@ -2,22 +2,70 @@
 
 {% from "button/macro.njk" import govukButton %}
 {% from "page-title.njk" import pageTitle %}
+{% from "fieldset/macro.njk" import govukFieldset %}
+{% from "summary-list/macro.njk" import govukSummaryList %}
+{% from "details/macro.njk" import govukDetails %}
 
 {% set title = mssgs.rp_cancel_details_title %}
 {% block pageTitle %}{{ pageTitle(title, error, mssgs) }}{% endblock %}
 
+{% set licenseDetailsSummary %}
+  {% set legendHtml %}
+    <span class="govuk-caption-l">{{ mssgs.cancel_rp_identify_caption }}</span>
+    {{ title }}
+  {% endset %}
+
+  {% call govukFieldset({
+    legend: {
+      html: legendHtml,
+      classes: "govuk-fieldset__legend--l govuk-!-margin-bottom-3",
+      isPageHeading: true
+    }
+  }) %}
+    {{ govukSummaryList({
+      classes: 'licence-summary-list',
+      rows: data.summaryTable
+    }) }}
+  {% endcall %}
+{% endset -%}
+
+{% set detailsHtml %}
+  <p class="govuk-body">
+    {{ mssgs.refund_bulletpoint_1_2 }}
+  </p>
+  <p class="govuk-body">
+    {{ mssgs.refund_bulletpoint_1_3 }}
+  </p>
+  <p class="govuk-body">
+    {{ mssgs.refund_bulletpoint_1_4 }}
+  </p>
+  <p class="govuk-body govuk-!-margin-bottom-0">
+    <a class="govuk-link" href="https://www.gov.uk/call-charges" target="_blank" rel="noreferrer noopener">
+      {{ mssgs.refund_bulletpoint_1_5 }}
+    </a>
+  </p>
+{% endset %}
+
 {% block content %}
 <div class="govuk-grid-row">
     <div class="govuk-grid-column-two-thirds">
-        <form method="post" class="govuk-!-margin-bottom-6">
-          {{ govukButton({
-            attributes: { id: 'continue' },
-            preventDoubleClick: true,
-            name: "continue",
-            text: mssgs.continue,
-            classes: "govuk-!-margin-top-1"
-          }) }}
-          {{ csrf() }}
+        <form method="post">
+            {{ licenseDetailsSummary | trim | safe }}
+
+            {{ govukButton({
+                attributes: { id: 'continue' },
+                preventDoubleClick: true,
+                name: "continue",
+                text: mssgs.confirm_continue,
+                classes: "govuk-!-margin-top-5"
+            }) }}
+
+            {{ govukDetails({
+              summaryText: mssgs.rp_cancel_details_summary_title,
+              html: detailsHtml
+            }) }}
+
+            {{ csrf() }}
         </form>
     </div>
 </div>

package/src/pages/recurring-payments/cancel/details/route.js

@@ -2,10 +2,31 @@ import pageRoute from '../../../../routes/page-route.js'
 import { CANCEL_RP_DETAILS, CANCEL_RP_CONFIRM } from '../../../../uri.js'
 import { addLanguageCodeToUri } from '../../../../processors/uri-helper.js'
 
+const getLicenseeDetailsSummaryRows = (currentPermission, mssgs) => [
+  {
+    key: { text: mssgs.rp_cancel_details_licence_holder },
+    value: { text: `${currentPermission.permission.licensee.firstName} ${currentPermission.permission.licensee.lastName}` }
+  },
+  { key: { text: mssgs.rp_cancel_details_licence_type }, value: { text: currentPermission.permission.permit.description } },
+  { key: { text: mssgs.rp_cancel_details_payment_card }, value: { text: currentPermission.recurringPayment.lastDigitsCardNumbers } },
+  { key: { text: mssgs.rp_cancel_details_last_purchased }, value: { text: currentPermission.permission.referenceNumber } },
+  { key: { text: mssgs.rp_cancel_details_licence_valid_until }, value: { text: currentPermission.permission.endDate } }
+]
+
+export const getData = async request => {
+  const currentPermission = await request.cache().helpers.transaction.getCurrentPermission()
+  const mssgs = request.i18n.getCatalog()
+
+  return {
+    mssgs,
+    summaryTable: getLicenseeDetailsSummaryRows(currentPermission, mssgs)
+  }
+}
+
 export default pageRoute(
   CANCEL_RP_DETAILS.page,
   CANCEL_RP_DETAILS.uri,
   () => {},
   request => addLanguageCodeToUri(request, CANCEL_RP_CONFIRM.uri),
-  () => {}
+  getData
 )