@defra/forms-engine-plugin 0.0.4 → 0.0.5
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/package.json +3 -2
- package/src/client/javascripts/application.js +87 -0
- package/src/client/javascripts/file-upload.js +386 -0
- package/src/client/stylesheets/_code.scss +33 -0
- package/src/client/stylesheets/_govuk-frontend.scss +4 -0
- package/src/client/stylesheets/_prose.scss +56 -0
- package/src/client/stylesheets/_service-banner.scss +24 -0
- package/src/client/stylesheets/_summary-list.scss +28 -0
- package/src/client/stylesheets/_tag-env.scss +24 -0
- package/src/client/stylesheets/application.scss +14 -0
- package/src/common/cookies.js +58 -0
- package/src/common/cookies.test.js +23 -0
- package/src/common/types.js +5 -0
- package/src/config/index.ts +271 -0
- package/src/index.ts +31 -0
- package/src/server/common/helpers/logging/logger-options.test.ts +50 -0
- package/src/server/common/helpers/logging/logger-options.ts +46 -0
- package/src/server/common/helpers/logging/logger.ts +7 -0
- package/src/server/common/helpers/logging/request-logger.ts +9 -0
- package/src/server/common/helpers/logging/request-tracing.js +10 -0
- package/src/server/common/helpers/redis-client.js +70 -0
- package/src/server/constants.js +1 -0
- package/src/server/forms/README.md +10 -0
- package/src/server/forms/components.json +1015 -0
- package/src/server/forms/report-a-terrorist.json +270 -0
- package/src/server/forms/runner-components-test.json +365 -0
- package/src/server/forms/test.json +581 -0
- package/src/server/index.test.ts +582 -0
- package/src/server/index.ts +140 -0
- package/src/server/plugins/blankie.test.ts +73 -0
- package/src/server/plugins/blankie.ts +48 -0
- package/src/server/plugins/crumb.ts +20 -0
- package/src/server/plugins/engine/README.md +87 -0
- package/src/server/plugins/engine/components/AutocompleteField.test.ts +294 -0
- package/src/server/plugins/engine/components/AutocompleteField.ts +49 -0
- package/src/server/plugins/engine/components/CheckboxesField.test.ts +379 -0
- package/src/server/plugins/engine/components/CheckboxesField.ts +106 -0
- package/src/server/plugins/engine/components/ComponentBase.ts +97 -0
- package/src/server/plugins/engine/components/ComponentCollection.ts +278 -0
- package/src/server/plugins/engine/components/DatePartsField.test.ts +822 -0
- package/src/server/plugins/engine/components/DatePartsField.ts +264 -0
- package/src/server/plugins/engine/components/Details.test.ts +49 -0
- package/src/server/plugins/engine/components/Details.ts +30 -0
- package/src/server/plugins/engine/components/EmailAddressField.test.ts +395 -0
- package/src/server/plugins/engine/components/EmailAddressField.ts +55 -0
- package/src/server/plugins/engine/components/FileUploadField.test.ts +778 -0
- package/src/server/plugins/engine/components/FileUploadField.ts +262 -0
- package/src/server/plugins/engine/components/FormComponent.ts +249 -0
- package/src/server/plugins/engine/components/Html.test.ts +48 -0
- package/src/server/plugins/engine/components/Html.ts +29 -0
- package/src/server/plugins/engine/components/InsetText.test.ts +48 -0
- package/src/server/plugins/engine/components/InsetText.ts +27 -0
- package/src/server/plugins/engine/components/List.test.ts +76 -0
- package/src/server/plugins/engine/components/List.ts +72 -0
- package/src/server/plugins/engine/components/ListFormComponent.ts +140 -0
- package/src/server/plugins/engine/components/MonthYearField.test.ts +567 -0
- package/src/server/plugins/engine/components/MonthYearField.ts +222 -0
- package/src/server/plugins/engine/components/MultilineTextField.test.ts +558 -0
- package/src/server/plugins/engine/components/MultilineTextField.ts +138 -0
- package/src/server/plugins/engine/components/NumberField.test.ts +701 -0
- package/src/server/plugins/engine/components/NumberField.ts +163 -0
- package/src/server/plugins/engine/components/RadiosField.test.ts +288 -0
- package/src/server/plugins/engine/components/RadiosField.ts +24 -0
- package/src/server/plugins/engine/components/SelectField.test.ts +288 -0
- package/src/server/plugins/engine/components/SelectField.ts +47 -0
- package/src/server/plugins/engine/components/SelectionControlField.ts +43 -0
- package/src/server/plugins/engine/components/TelephoneNumberField.test.ts +356 -0
- package/src/server/plugins/engine/components/TelephoneNumberField.ts +67 -0
- package/src/server/plugins/engine/components/TextField.test.ts +489 -0
- package/src/server/plugins/engine/components/TextField.ts +96 -0
- package/src/server/plugins/engine/components/UkAddressField.test.ts +623 -0
- package/src/server/plugins/engine/components/UkAddressField.ts +172 -0
- package/src/server/plugins/engine/components/YesNoField.test.ts +248 -0
- package/src/server/plugins/engine/components/YesNoField.ts +31 -0
- package/src/server/plugins/engine/components/constants.ts +1 -0
- package/src/server/plugins/engine/components/helpers.ts +330 -0
- package/src/server/plugins/engine/components/index.ts +24 -0
- package/src/server/plugins/engine/components/types.ts +117 -0
- package/src/server/plugins/engine/configureEnginePlugin.ts +47 -0
- package/src/server/plugins/engine/helpers.test.ts +791 -0
- package/src/server/plugins/engine/helpers.ts +379 -0
- package/src/server/plugins/engine/index.ts +7 -0
- package/src/server/plugins/engine/models/FormModel.test.ts +42 -0
- package/src/server/plugins/engine/models/FormModel.ts +443 -0
- package/src/server/plugins/engine/models/RepeatingSummaryViewModel.ts +0 -0
- package/src/server/plugins/engine/models/Section.ts +0 -0
- package/src/server/plugins/engine/models/SummaryViewModel.test.ts +209 -0
- package/src/server/plugins/engine/models/SummaryViewModel.ts +220 -0
- package/src/server/plugins/engine/models/index.ts +2 -0
- package/src/server/plugins/engine/models/types.ts +114 -0
- package/src/server/plugins/engine/outputFormatters/human/v1.test.ts +143 -0
- package/src/server/plugins/engine/outputFormatters/human/v1.ts +73 -0
- package/src/server/plugins/engine/outputFormatters/index.test.ts +17 -0
- package/src/server/plugins/engine/outputFormatters/index.ts +44 -0
- package/src/server/plugins/engine/outputFormatters/machine/v1.test.ts +229 -0
- package/src/server/plugins/engine/outputFormatters/machine/v1.ts +140 -0
- package/src/server/plugins/engine/outputFormatters/machine/v2.test.ts +229 -0
- package/src/server/plugins/engine/outputFormatters/machine/v2.ts +153 -0
- package/src/server/plugins/engine/pageControllers/FileUploadPageController.test.ts +1108 -0
- package/src/server/plugins/engine/pageControllers/FileUploadPageController.ts +446 -0
- package/src/server/plugins/engine/pageControllers/PageController.test.ts +205 -0
- package/src/server/plugins/engine/pageControllers/PageController.ts +176 -0
- package/src/server/plugins/engine/pageControllers/QuestionPageController.test.ts +1264 -0
- package/src/server/plugins/engine/pageControllers/QuestionPageController.ts +561 -0
- package/src/server/plugins/engine/pageControllers/README.md +28 -0
- package/src/server/plugins/engine/pageControllers/RepeatPageController.test.ts +264 -0
- package/src/server/plugins/engine/pageControllers/RepeatPageController.ts +458 -0
- package/src/server/plugins/engine/pageControllers/StartPageController.ts +18 -0
- package/src/server/plugins/engine/pageControllers/StatusPageController.ts +50 -0
- package/src/server/plugins/engine/pageControllers/SummaryPageController.ts +261 -0
- package/src/server/plugins/engine/pageControllers/TerminalController.test.ts +28 -0
- package/src/server/plugins/engine/pageControllers/TerminalPageController.ts +19 -0
- package/src/server/plugins/engine/pageControllers/helpers.test.ts +198 -0
- package/src/server/plugins/engine/pageControllers/helpers.ts +101 -0
- package/src/server/plugins/engine/pageControllers/index.ts +10 -0
- package/src/server/plugins/engine/pageControllers/validationOptions.ts +89 -0
- package/src/server/plugins/engine/plugin.ts +673 -0
- package/src/server/plugins/engine/services/formSubmissionService.js +46 -0
- package/src/server/plugins/engine/services/formsService.js +46 -0
- package/src/server/plugins/engine/services/formsService.test.js +90 -0
- package/src/server/plugins/engine/services/index.js +3 -0
- package/src/server/plugins/engine/services/notifyService.test.ts +132 -0
- package/src/server/plugins/engine/services/notifyService.ts +64 -0
- package/src/server/plugins/engine/services/uploadService.js +60 -0
- package/src/server/plugins/engine/types.ts +315 -0
- package/src/server/plugins/engine/views/components/autocompletefield.html +5 -0
- package/src/server/plugins/engine/views/components/checkboxesfield.html +5 -0
- package/src/server/plugins/engine/views/components/datepartsfield.html +5 -0
- package/src/server/plugins/engine/views/components/details.html +6 -0
- package/src/server/plugins/engine/views/components/emailaddressfield.html +5 -0
- package/src/server/plugins/engine/views/components/fileuploadfield-key.html +8 -0
- package/src/server/plugins/engine/views/components/fileuploadfield-value.html +3 -0
- package/src/server/plugins/engine/views/components/fileuploadfield.html +24 -0
- package/src/server/plugins/engine/views/components/html.html +3 -0
- package/src/server/plugins/engine/views/components/insettext.html +7 -0
- package/src/server/plugins/engine/views/components/list.html +36 -0
- package/src/server/plugins/engine/views/components/monthyearfield.html +5 -0
- package/src/server/plugins/engine/views/components/multilinetextfield.html +10 -0
- package/src/server/plugins/engine/views/components/numberfield.html +5 -0
- package/src/server/plugins/engine/views/components/radiosfield.html +5 -0
- package/src/server/plugins/engine/views/components/selectfield.html +5 -0
- package/src/server/plugins/engine/views/components/telephonenumberfield.html +5 -0
- package/src/server/plugins/engine/views/components/textfield.html +5 -0
- package/src/server/plugins/engine/views/components/ukaddressfield.html +25 -0
- package/src/server/plugins/engine/views/components/yesnofield.html +5 -0
- package/src/server/plugins/engine/views/file-upload.html +45 -0
- package/src/server/plugins/engine/views/index.html +39 -0
- package/src/server/plugins/engine/views/item-delete.html +56 -0
- package/src/server/plugins/engine/views/partials/components.html +6 -0
- package/src/server/plugins/engine/views/partials/conditional-components.html +3 -0
- package/src/server/plugins/engine/views/partials/debug.html +44 -0
- package/src/server/plugins/engine/views/partials/form.html +15 -0
- package/src/server/plugins/engine/views/partials/heading.html +16 -0
- package/src/server/plugins/engine/views/partials/preview-banner.html +32 -0
- package/src/server/plugins/engine/views/partials/preview-banner.test.js +122 -0
- package/src/server/plugins/engine/views/partials/warn-missing-notification-email.html +10 -0
- package/src/server/plugins/engine/views/repeat-list-summary.html +53 -0
- package/src/server/plugins/errorPages.ts +58 -0
- package/src/server/plugins/nunjucks/context.js +88 -0
- package/src/server/plugins/nunjucks/context.test.js +142 -0
- package/src/server/plugins/nunjucks/enviroment.test.js +201 -0
- package/src/server/plugins/nunjucks/environment.js +116 -0
- package/src/server/plugins/nunjucks/filters/answer.js +27 -0
- package/src/server/plugins/nunjucks/filters/answer.test.js +89 -0
- package/src/server/plugins/nunjucks/filters/evaluate.js +21 -0
- package/src/server/plugins/nunjucks/filters/field.js +28 -0
- package/src/server/plugins/nunjucks/filters/field.test.js +75 -0
- package/src/server/plugins/nunjucks/filters/highlight.js +11 -0
- package/src/server/plugins/nunjucks/filters/href.js +30 -0
- package/src/server/plugins/nunjucks/filters/href.test.js +80 -0
- package/src/server/plugins/nunjucks/filters/index.js +8 -0
- package/src/server/plugins/nunjucks/filters/inspect.js +15 -0
- package/src/server/plugins/nunjucks/filters/page.js +24 -0
- package/src/server/plugins/nunjucks/filters/page.test.js +65 -0
- package/src/server/plugins/nunjucks/index.js +3 -0
- package/src/server/plugins/nunjucks/plugin.js +40 -0
- package/src/server/plugins/nunjucks/render.js +42 -0
- package/src/server/plugins/nunjucks/types.js +40 -0
- package/src/server/plugins/pulse.ts +11 -0
- package/src/server/plugins/router.ts +201 -0
- package/src/server/plugins/session.ts +28 -0
- package/src/server/routes/health.js +13 -0
- package/src/server/routes/health.test.js +35 -0
- package/src/server/routes/index.test.ts +125 -0
- package/src/server/routes/index.ts +2 -0
- package/src/server/routes/public.ts +47 -0
- package/src/server/routes/types.ts +48 -0
- package/src/server/schemas/index.ts +34 -0
- package/src/server/secure-context.js +43 -0
- package/src/server/services/cacheService.test.ts +276 -0
- package/src/server/services/cacheService.ts +131 -0
- package/src/server/services/httpService.test.js +491 -0
- package/src/server/services/httpService.ts +50 -0
- package/src/server/services/index.ts +1 -0
- package/src/server/types.ts +54 -0
- package/src/server/utils/notify.test.ts +37 -0
- package/src/server/utils/notify.ts +50 -0
- package/src/server/utils/secure-context/get-trust-store-certs.js +11 -0
- package/src/server/utils/secure-context/get-trust-store-certs.test.js +19 -0
- package/src/server/utils/utils.js +24 -0
- package/src/server/utils/utils.test.js +54 -0
- package/src/server/views/404.html +16 -0
- package/src/server/views/500.html +19 -0
- package/src/server/views/components/debug/macro.njk +3 -0
- package/src/server/views/components/debug/template.njk +13 -0
- package/src/server/views/components/service-banner/macro.njk +3 -0
- package/src/server/views/components/service-banner/template.njk +20 -0
- package/src/server/views/components/service-banner/template.test.js +43 -0
- package/src/server/views/components/tag-env/macro.njk +3 -0
- package/src/server/views/components/tag-env/template.njk +30 -0
- package/src/server/views/components/tag-env/template.test.js +66 -0
- package/src/server/views/confirmation.html +19 -0
- package/src/server/views/help/accessibility-statement.html +58 -0
- package/src/server/views/help/cookie-preferences.html +57 -0
- package/src/server/views/help/cookies.html +71 -0
- package/src/server/views/help/get-support.html +37 -0
- package/src/server/views/help/privacy-notice.html +68 -0
- package/src/server/views/help/terms-and-conditions.html +83 -0
- package/src/server/views/layout.html +199 -0
- package/src/server/views/summary.html +50 -0
- package/src/typings/hapi/index.d.ts +95 -0
- package/src/typings/hapi-tracing/index.d.ts +6 -0
- package/src/typings/index.d.ts +3 -0
- package/src/typings/joi/index.d.ts +22 -0
|
@@ -0,0 +1,201 @@
|
|
|
1
|
+
import { slugSchema } from '@defra/forms-model'
|
|
2
|
+
import Boom from '@hapi/boom'
|
|
3
|
+
import { type ServerRegisterPluginObject } from '@hapi/hapi'
|
|
4
|
+
import humanizeDuration from 'humanize-duration'
|
|
5
|
+
import Joi from 'joi'
|
|
6
|
+
|
|
7
|
+
import {
|
|
8
|
+
defaultConsent,
|
|
9
|
+
parseCookieConsent,
|
|
10
|
+
serialiseCookieConsent
|
|
11
|
+
} from '~/src/common/cookies.js'
|
|
12
|
+
import { type CookieConsent } from '~/src/common/types.js'
|
|
13
|
+
import { config } from '~/src/config/index.js'
|
|
14
|
+
import { isPathRelative } from '~/src/server/plugins/engine/helpers.js'
|
|
15
|
+
import { getFormMetadata } from '~/src/server/plugins/engine/services/formsService.js'
|
|
16
|
+
import { healthRoute, publicRoutes } from '~/src/server/routes/index.js'
|
|
17
|
+
import { crumbSchema } from '~/src/server/schemas/index.js'
|
|
18
|
+
|
|
19
|
+
const routes = [...publicRoutes, healthRoute]
|
|
20
|
+
|
|
21
|
+
export default {
|
|
22
|
+
plugin: {
|
|
23
|
+
name: 'router',
|
|
24
|
+
register: (server) => {
|
|
25
|
+
server.route(routes)
|
|
26
|
+
|
|
27
|
+
// Shared help routes params schema & options
|
|
28
|
+
const params = Joi.object()
|
|
29
|
+
.keys({
|
|
30
|
+
slug: slugSchema
|
|
31
|
+
})
|
|
32
|
+
.required()
|
|
33
|
+
|
|
34
|
+
const options = {
|
|
35
|
+
validate: {
|
|
36
|
+
params
|
|
37
|
+
}
|
|
38
|
+
}
|
|
39
|
+
|
|
40
|
+
server.route<{ Params: { slug: string } }>({
|
|
41
|
+
method: 'get',
|
|
42
|
+
path: '/help/get-support/{slug}',
|
|
43
|
+
async handler(request, h) {
|
|
44
|
+
const { slug } = request.params
|
|
45
|
+
const form = await getFormMetadata(slug)
|
|
46
|
+
|
|
47
|
+
return h.view('help/get-support', { form })
|
|
48
|
+
},
|
|
49
|
+
options
|
|
50
|
+
})
|
|
51
|
+
|
|
52
|
+
server.route<{ Params: { slug: string } }>({
|
|
53
|
+
method: 'get',
|
|
54
|
+
path: '/help/privacy/{slug}',
|
|
55
|
+
async handler(request, h) {
|
|
56
|
+
const { slug } = request.params
|
|
57
|
+
const form = await getFormMetadata(slug)
|
|
58
|
+
|
|
59
|
+
return h.view('help/privacy-notice', { form })
|
|
60
|
+
},
|
|
61
|
+
options
|
|
62
|
+
})
|
|
63
|
+
|
|
64
|
+
server.route<{ Params: { slug: string } }>({
|
|
65
|
+
method: 'get',
|
|
66
|
+
path: '/help/cookies/{slug}',
|
|
67
|
+
handler(_request, h) {
|
|
68
|
+
const sessionTimeout = config.get('sessionTimeout')
|
|
69
|
+
|
|
70
|
+
const sessionDurationPretty = humanizeDuration(sessionTimeout)
|
|
71
|
+
|
|
72
|
+
return h.view('help/cookies', {
|
|
73
|
+
googleAnalyticsContainerId: config
|
|
74
|
+
.get('googleAnalyticsTrackingId')
|
|
75
|
+
.replace(/^G-/, ''),
|
|
76
|
+
sessionDurationPretty
|
|
77
|
+
})
|
|
78
|
+
},
|
|
79
|
+
options
|
|
80
|
+
})
|
|
81
|
+
|
|
82
|
+
server.route<{
|
|
83
|
+
Params: { slug: string }
|
|
84
|
+
Payload: {
|
|
85
|
+
crumb?: string
|
|
86
|
+
'cookies[analytics]'?: string
|
|
87
|
+
'cookies[dismissed]'?: string
|
|
88
|
+
}
|
|
89
|
+
Query: { returnUrl?: string }
|
|
90
|
+
}>({
|
|
91
|
+
method: 'post',
|
|
92
|
+
path: '/help/cookie-preferences/{slug}',
|
|
93
|
+
handler(request, h) {
|
|
94
|
+
const { params, payload, query } = request
|
|
95
|
+
const { slug } = params
|
|
96
|
+
let { returnUrl } = query
|
|
97
|
+
|
|
98
|
+
if (returnUrl && !isPathRelative(returnUrl)) {
|
|
99
|
+
throw Boom.badRequest('Return URL must be relative')
|
|
100
|
+
}
|
|
101
|
+
|
|
102
|
+
const analyticsDecision = (
|
|
103
|
+
payload['cookies[analytics]'] ?? ''
|
|
104
|
+
).toLowerCase()
|
|
105
|
+
|
|
106
|
+
const dismissedDecision = (
|
|
107
|
+
payload['cookies[dismissed]'] ?? ''
|
|
108
|
+
).toLowerCase()
|
|
109
|
+
|
|
110
|
+
// move the parser into our JS code so we can delegate to the frontend in a future iteration
|
|
111
|
+
let cookieConsent: CookieConsent
|
|
112
|
+
|
|
113
|
+
if (typeof request.state.cookieConsent === 'string') {
|
|
114
|
+
cookieConsent = parseCookieConsent(request.state.cookieConsent)
|
|
115
|
+
} else {
|
|
116
|
+
cookieConsent = defaultConsent
|
|
117
|
+
}
|
|
118
|
+
|
|
119
|
+
if (analyticsDecision) {
|
|
120
|
+
cookieConsent.analytics = analyticsDecision === 'yes'
|
|
121
|
+
cookieConsent.dismissed = false
|
|
122
|
+
}
|
|
123
|
+
|
|
124
|
+
if (dismissedDecision) {
|
|
125
|
+
cookieConsent.dismissed = dismissedDecision === 'yes'
|
|
126
|
+
}
|
|
127
|
+
|
|
128
|
+
if (!returnUrl) {
|
|
129
|
+
cookieConsent.dismissed = true // this page already has a confirmation message, don't show another
|
|
130
|
+
returnUrl = `/help/cookie-preferences/${slug}`
|
|
131
|
+
}
|
|
132
|
+
|
|
133
|
+
const serialisedCookieConsent = serialiseCookieConsent(cookieConsent)
|
|
134
|
+
h.state('cookieConsent', serialisedCookieConsent)
|
|
135
|
+
|
|
136
|
+
return h.redirect(returnUrl)
|
|
137
|
+
},
|
|
138
|
+
options: {
|
|
139
|
+
validate: {
|
|
140
|
+
params,
|
|
141
|
+
payload: Joi.object({
|
|
142
|
+
crumb: crumbSchema,
|
|
143
|
+
'cookies[analytics]': Joi.string().valid('yes', 'no').optional(),
|
|
144
|
+
'cookies[dismissed]': Joi.string().valid('yes', 'no').optional()
|
|
145
|
+
}),
|
|
146
|
+
query: Joi.object({
|
|
147
|
+
returnUrl: Joi.string().optional()
|
|
148
|
+
})
|
|
149
|
+
}
|
|
150
|
+
}
|
|
151
|
+
})
|
|
152
|
+
|
|
153
|
+
server.route({
|
|
154
|
+
method: 'get',
|
|
155
|
+
path: '/',
|
|
156
|
+
handler() {
|
|
157
|
+
throw Boom.notFound()
|
|
158
|
+
}
|
|
159
|
+
})
|
|
160
|
+
|
|
161
|
+
server.route<{ Params: { slug: string } }>({
|
|
162
|
+
method: 'get',
|
|
163
|
+
path: '/help/cookie-preferences/{slug}',
|
|
164
|
+
handler(request, h) {
|
|
165
|
+
const { params } = request
|
|
166
|
+
const { slug } = params
|
|
167
|
+
let cookieConsentDismissed = false
|
|
168
|
+
|
|
169
|
+
if (typeof request.state.cookieConsent === 'string') {
|
|
170
|
+
const cookieConsent = parseCookieConsent(
|
|
171
|
+
request.state.cookieConsent
|
|
172
|
+
)
|
|
173
|
+
|
|
174
|
+
cookieConsentDismissed = cookieConsent.dismissed
|
|
175
|
+
}
|
|
176
|
+
|
|
177
|
+
// if the user has come back to this page after updating their preferences
|
|
178
|
+
// override the 'dismissed' behaviour to show a success notification instead of
|
|
179
|
+
// the cookie banner
|
|
180
|
+
const showConsentSuccess =
|
|
181
|
+
cookieConsentDismissed &&
|
|
182
|
+
request.info.referrer.endsWith(`/help/cookie-preferences/${slug}`)
|
|
183
|
+
|
|
184
|
+
return h.view('help/cookie-preferences', {
|
|
185
|
+
cookieConsentUpdated: showConsentSuccess
|
|
186
|
+
})
|
|
187
|
+
},
|
|
188
|
+
options
|
|
189
|
+
})
|
|
190
|
+
|
|
191
|
+
server.route<{ Params: { slug: string } }>({
|
|
192
|
+
method: 'get',
|
|
193
|
+
path: '/help/accessibility-statement/{slug}',
|
|
194
|
+
handler(_request, h) {
|
|
195
|
+
return h.view('help/accessibility-statement')
|
|
196
|
+
},
|
|
197
|
+
options
|
|
198
|
+
})
|
|
199
|
+
}
|
|
200
|
+
}
|
|
201
|
+
} satisfies ServerRegisterPluginObject<void>
|
|
@@ -0,0 +1,28 @@
|
|
|
1
|
+
import { type ServerRegisterPluginObject } from '@hapi/hapi'
|
|
2
|
+
import yar, { type YarOptions } from '@hapi/yar'
|
|
3
|
+
|
|
4
|
+
import { config } from '~/src/config/index.js'
|
|
5
|
+
|
|
6
|
+
/**
|
|
7
|
+
* Yar is used for temporary session data but not form submissions, e.g. UI helpers, session flags.
|
|
8
|
+
*/
|
|
9
|
+
export default {
|
|
10
|
+
plugin: yar,
|
|
11
|
+
options: {
|
|
12
|
+
maxCookieSize: 0, // Always use server-side storage
|
|
13
|
+
cache: {
|
|
14
|
+
cache: 'session',
|
|
15
|
+
segment: 'session',
|
|
16
|
+
expiresIn: config.get('sessionTimeout')
|
|
17
|
+
},
|
|
18
|
+
/**
|
|
19
|
+
* @todo storeBlank is current commented out as it's a minor efficiency gain but breaks the auth tests if enabled.
|
|
20
|
+
* this only seems to affect the auth code, which we might remove anyway so it's temporarily disabled.
|
|
21
|
+
*/
|
|
22
|
+
// storeBlank: false,
|
|
23
|
+
cookieOptions: {
|
|
24
|
+
password: config.get('sessionCookiePassword'),
|
|
25
|
+
isSecure: config.get('isProduction')
|
|
26
|
+
}
|
|
27
|
+
}
|
|
28
|
+
} satisfies ServerRegisterPluginObject<YarOptions>
|
|
@@ -0,0 +1,13 @@
|
|
|
1
|
+
import { StatusCodes } from 'http-status-codes'
|
|
2
|
+
|
|
3
|
+
export default /** @type {ServerRoute} */ ({
|
|
4
|
+
method: 'GET',
|
|
5
|
+
path: '/health',
|
|
6
|
+
handler(_, h) {
|
|
7
|
+
return h.response({ message: 'success' }).code(StatusCodes.OK)
|
|
8
|
+
}
|
|
9
|
+
})
|
|
10
|
+
|
|
11
|
+
/**
|
|
12
|
+
* @import { ServerRoute } from '@hapi/hapi'
|
|
13
|
+
*/
|
|
@@ -0,0 +1,35 @@
|
|
|
1
|
+
import { createServer } from '~/src/server/index.js'
|
|
2
|
+
|
|
3
|
+
describe('Health check route', () => {
|
|
4
|
+
const startServer = async () => {
|
|
5
|
+
const server = await createServer()
|
|
6
|
+
await server.initialize()
|
|
7
|
+
return server
|
|
8
|
+
}
|
|
9
|
+
|
|
10
|
+
/** @type {Server} */
|
|
11
|
+
let server
|
|
12
|
+
|
|
13
|
+
afterEach(async () => {
|
|
14
|
+
await server.stop()
|
|
15
|
+
})
|
|
16
|
+
|
|
17
|
+
test('/health route response is correct', async () => {
|
|
18
|
+
server = await startServer()
|
|
19
|
+
|
|
20
|
+
const options = {
|
|
21
|
+
method: 'GET',
|
|
22
|
+
url: '/health'
|
|
23
|
+
}
|
|
24
|
+
|
|
25
|
+
const { result } = await server.inject(options)
|
|
26
|
+
|
|
27
|
+
expect(result).toMatchObject({
|
|
28
|
+
message: 'success'
|
|
29
|
+
})
|
|
30
|
+
})
|
|
31
|
+
})
|
|
32
|
+
|
|
33
|
+
/**
|
|
34
|
+
* @import { Server } from '@hapi/hapi'
|
|
35
|
+
*/
|
|
@@ -0,0 +1,125 @@
|
|
|
1
|
+
import { type Server } from '@hapi/hapi'
|
|
2
|
+
import { StatusCodes } from 'http-status-codes'
|
|
3
|
+
|
|
4
|
+
import { config } from '~/src/config/index.js'
|
|
5
|
+
import { createServer } from '~/src/server/index.js'
|
|
6
|
+
import { getFormMetadata } from '~/src/server/plugins/engine/services/formsService.js'
|
|
7
|
+
import * as fixtures from '~/test/fixtures/index.js'
|
|
8
|
+
import { renderResponse } from '~/test/helpers/component-helpers.js'
|
|
9
|
+
|
|
10
|
+
jest.mock('~/src/server/plugins/engine/services/formsService.js')
|
|
11
|
+
|
|
12
|
+
describe('Routes', () => {
|
|
13
|
+
let server: Server
|
|
14
|
+
|
|
15
|
+
beforeAll(async () => {
|
|
16
|
+
server = await createServer()
|
|
17
|
+
await server.initialize()
|
|
18
|
+
})
|
|
19
|
+
|
|
20
|
+
afterAll(async () => {
|
|
21
|
+
await server.stop()
|
|
22
|
+
})
|
|
23
|
+
|
|
24
|
+
test('cookies page is served with 24 hour duration', async () => {
|
|
25
|
+
config.set('sessionTimeout', 86400000)
|
|
26
|
+
|
|
27
|
+
const options = {
|
|
28
|
+
method: 'GET',
|
|
29
|
+
url: '/help/cookies/slug'
|
|
30
|
+
}
|
|
31
|
+
|
|
32
|
+
const { container } = await renderResponse(server, options)
|
|
33
|
+
|
|
34
|
+
const $heading = container.getByRole('heading', {
|
|
35
|
+
name: 'Cookies',
|
|
36
|
+
level: 1
|
|
37
|
+
})
|
|
38
|
+
|
|
39
|
+
const $googleAnalyticsRowheader = container.getByRole('rowheader', {
|
|
40
|
+
name: '_ga_123456789'
|
|
41
|
+
})
|
|
42
|
+
|
|
43
|
+
const $sessionDurationRow = container.getByRole('row', {
|
|
44
|
+
name: 'session Remembers the information you enter When you close the browser, or after 1 day'
|
|
45
|
+
})
|
|
46
|
+
|
|
47
|
+
expect($heading).toBeInTheDocument()
|
|
48
|
+
expect($heading).toHaveClass('govuk-heading-l')
|
|
49
|
+
expect($googleAnalyticsRowheader).toBeInTheDocument()
|
|
50
|
+
expect($sessionDurationRow).toBeInTheDocument()
|
|
51
|
+
})
|
|
52
|
+
|
|
53
|
+
test('accessibility statement page is served', async () => {
|
|
54
|
+
const options = {
|
|
55
|
+
method: 'GET',
|
|
56
|
+
url: '/help/accessibility-statement/slug'
|
|
57
|
+
}
|
|
58
|
+
|
|
59
|
+
const { container } = await renderResponse(server, options)
|
|
60
|
+
|
|
61
|
+
const $heading = container.getByRole('heading', {
|
|
62
|
+
name: 'Accessibility statement for this form',
|
|
63
|
+
level: 1
|
|
64
|
+
})
|
|
65
|
+
|
|
66
|
+
expect($heading).toBeInTheDocument()
|
|
67
|
+
expect($heading).toHaveClass('govuk-heading-l')
|
|
68
|
+
})
|
|
69
|
+
|
|
70
|
+
test('Help page is served', async () => {
|
|
71
|
+
jest.mocked(getFormMetadata).mockResolvedValue(fixtures.form.metadata)
|
|
72
|
+
|
|
73
|
+
const options = {
|
|
74
|
+
method: 'GET',
|
|
75
|
+
url: '/help/get-support/slug'
|
|
76
|
+
}
|
|
77
|
+
|
|
78
|
+
const res = await server.inject(options)
|
|
79
|
+
|
|
80
|
+
expect(res.statusCode).toBe(StatusCodes.OK)
|
|
81
|
+
})
|
|
82
|
+
|
|
83
|
+
test('Service banner is not shown by default', async () => {
|
|
84
|
+
const { container } = await renderResponse(server, {
|
|
85
|
+
method: 'GET',
|
|
86
|
+
url: '/'
|
|
87
|
+
})
|
|
88
|
+
|
|
89
|
+
const $banner = container.queryByRole('complementary', {
|
|
90
|
+
name: 'Service status'
|
|
91
|
+
})
|
|
92
|
+
|
|
93
|
+
expect($banner).not.toBeInTheDocument()
|
|
94
|
+
})
|
|
95
|
+
|
|
96
|
+
test('Service banner is not shown when empty', async () => {
|
|
97
|
+
config.set('serviceBannerText', '')
|
|
98
|
+
|
|
99
|
+
const { container } = await renderResponse(server, {
|
|
100
|
+
method: 'GET',
|
|
101
|
+
url: '/'
|
|
102
|
+
})
|
|
103
|
+
|
|
104
|
+
const $banner = container.queryByRole('complementary', {
|
|
105
|
+
name: 'Service status'
|
|
106
|
+
})
|
|
107
|
+
|
|
108
|
+
expect($banner).not.toBeInTheDocument()
|
|
109
|
+
})
|
|
110
|
+
|
|
111
|
+
test('Service banner is shown when configured', async () => {
|
|
112
|
+
config.set('serviceBannerText', 'Hello world')
|
|
113
|
+
|
|
114
|
+
const { container } = await renderResponse(server, {
|
|
115
|
+
method: 'GET',
|
|
116
|
+
url: '/'
|
|
117
|
+
})
|
|
118
|
+
|
|
119
|
+
const $banner = container.getByRole('complementary', {
|
|
120
|
+
name: 'Service status'
|
|
121
|
+
})
|
|
122
|
+
|
|
123
|
+
expect($banner).toHaveTextContent('Hello world')
|
|
124
|
+
})
|
|
125
|
+
})
|
|
@@ -0,0 +1,47 @@
|
|
|
1
|
+
import { join } from 'node:path'
|
|
2
|
+
|
|
3
|
+
import { type HandlerDecorations, type ServerRoute } from '@hapi/hapi'
|
|
4
|
+
|
|
5
|
+
import { config } from '~/src/config/index.js'
|
|
6
|
+
|
|
7
|
+
export default [
|
|
8
|
+
{
|
|
9
|
+
from: '/javascripts/{path*}',
|
|
10
|
+
to: join(config.get('publicDir'), 'javascripts'),
|
|
11
|
+
immutable: true
|
|
12
|
+
},
|
|
13
|
+
{
|
|
14
|
+
from: '/stylesheets/{path*}',
|
|
15
|
+
to: join(config.get('publicDir'), 'stylesheets'),
|
|
16
|
+
immutable: true
|
|
17
|
+
},
|
|
18
|
+
{
|
|
19
|
+
from: '/assets/fonts/{path*}',
|
|
20
|
+
to: join(config.get('publicDir'), 'assets/fonts'),
|
|
21
|
+
immutable: true
|
|
22
|
+
},
|
|
23
|
+
{
|
|
24
|
+
from: '/assets/{path*}',
|
|
25
|
+
to: join(config.get('publicDir'), 'assets'),
|
|
26
|
+
immutable: false
|
|
27
|
+
}
|
|
28
|
+
].map((options) => {
|
|
29
|
+
return {
|
|
30
|
+
method: 'GET',
|
|
31
|
+
path: options.from,
|
|
32
|
+
options: {
|
|
33
|
+
cache: {
|
|
34
|
+
// Historically, an infinite max-age is the 32-bit maximum 2,147,483,648
|
|
35
|
+
// https://datatracker.ietf.org/doc/html/rfc9111#section-1.2.2
|
|
36
|
+
otherwise: options.immutable
|
|
37
|
+
? 'public, max-age=2147483648, immutable'
|
|
38
|
+
: 'public, max-age=0, must-revalidate'
|
|
39
|
+
},
|
|
40
|
+
handler: {
|
|
41
|
+
directory: {
|
|
42
|
+
path: options.to
|
|
43
|
+
}
|
|
44
|
+
} satisfies HandlerDecorations
|
|
45
|
+
}
|
|
46
|
+
} satisfies ServerRoute
|
|
47
|
+
})
|
|
@@ -0,0 +1,48 @@
|
|
|
1
|
+
import { type ReqRefDefaults, type Request } from '@hapi/hapi'
|
|
2
|
+
|
|
3
|
+
import { type FormPayload } from '~/src/server/plugins/engine/types.js'
|
|
4
|
+
|
|
5
|
+
export interface FormQuery extends Partial<Record<string, string>> {
|
|
6
|
+
/**
|
|
7
|
+
* Allow preview URL direct access without relevant page checks
|
|
8
|
+
*/
|
|
9
|
+
force?: string
|
|
10
|
+
|
|
11
|
+
/**
|
|
12
|
+
* Redirect location after 'continue' form action
|
|
13
|
+
*/
|
|
14
|
+
returnUrl?: string
|
|
15
|
+
}
|
|
16
|
+
|
|
17
|
+
export interface FormParams extends Partial<Record<string, string>> {
|
|
18
|
+
path: string
|
|
19
|
+
slug: string
|
|
20
|
+
state?: FormStatus
|
|
21
|
+
}
|
|
22
|
+
|
|
23
|
+
export interface FormRequestRefs
|
|
24
|
+
extends Omit<ReqRefDefaults, 'Params' | 'Payload' | 'Query'> {
|
|
25
|
+
Params: FormParams
|
|
26
|
+
Payload: object | undefined
|
|
27
|
+
Query: FormQuery
|
|
28
|
+
}
|
|
29
|
+
|
|
30
|
+
export interface FormRequestPayloadRefs extends FormRequestRefs {
|
|
31
|
+
Payload: FormPayload
|
|
32
|
+
}
|
|
33
|
+
|
|
34
|
+
export type FormRequest = Request<FormRequestRefs>
|
|
35
|
+
export type FormRequestPayload = Request<FormRequestPayloadRefs>
|
|
36
|
+
|
|
37
|
+
export enum FormAction {
|
|
38
|
+
Continue = 'continue',
|
|
39
|
+
Validate = 'validate',
|
|
40
|
+
Delete = 'delete',
|
|
41
|
+
AddAnother = 'add-another',
|
|
42
|
+
Send = 'send'
|
|
43
|
+
}
|
|
44
|
+
|
|
45
|
+
export enum FormStatus {
|
|
46
|
+
Draft = 'draft',
|
|
47
|
+
Live = 'live'
|
|
48
|
+
}
|
|
@@ -0,0 +1,34 @@
|
|
|
1
|
+
import Joi from 'joi'
|
|
2
|
+
|
|
3
|
+
import { type FormParams } from '~/src/server/plugins/engine/types.js'
|
|
4
|
+
import { FormAction, FormStatus } from '~/src/server/routes/types.js'
|
|
5
|
+
|
|
6
|
+
export const stateSchema = Joi.string<FormStatus>()
|
|
7
|
+
.valid(FormStatus.Draft, FormStatus.Live)
|
|
8
|
+
.required()
|
|
9
|
+
|
|
10
|
+
export const actionSchema = Joi.string<FormAction>()
|
|
11
|
+
.valid(
|
|
12
|
+
FormAction.Continue,
|
|
13
|
+
FormAction.Validate,
|
|
14
|
+
FormAction.Delete,
|
|
15
|
+
FormAction.AddAnother,
|
|
16
|
+
FormAction.Send
|
|
17
|
+
)
|
|
18
|
+
.default(FormAction.Validate)
|
|
19
|
+
.optional()
|
|
20
|
+
|
|
21
|
+
export const pathSchema = Joi.string().required()
|
|
22
|
+
export const itemIdSchema = Joi.string().uuid().required()
|
|
23
|
+
export const crumbSchema = Joi.string().optional().allow('')
|
|
24
|
+
export const confirmSchema = Joi.boolean().empty(false)
|
|
25
|
+
|
|
26
|
+
export const paramsSchema = Joi.object<FormParams>()
|
|
27
|
+
.keys({
|
|
28
|
+
action: actionSchema,
|
|
29
|
+
confirm: confirmSchema,
|
|
30
|
+
crumb: crumbSchema,
|
|
31
|
+
itemId: itemIdSchema.optional()
|
|
32
|
+
})
|
|
33
|
+
.default({})
|
|
34
|
+
.optional()
|
|
@@ -0,0 +1,43 @@
|
|
|
1
|
+
import tls from 'node:tls'
|
|
2
|
+
|
|
3
|
+
import { getTrustStoreCerts } from '~/src/server/utils/secure-context/get-trust-store-certs.js'
|
|
4
|
+
|
|
5
|
+
/**
|
|
6
|
+
* @type {SecureContext}
|
|
7
|
+
*/
|
|
8
|
+
export let secureContext
|
|
9
|
+
|
|
10
|
+
/**
|
|
11
|
+
* Prepares the TLS secure context
|
|
12
|
+
* @param {Server} server
|
|
13
|
+
* @returns
|
|
14
|
+
*/
|
|
15
|
+
export function prepareSecureContext(server) {
|
|
16
|
+
const originalCreateSecureContext = tls.createSecureContext
|
|
17
|
+
|
|
18
|
+
tls.createSecureContext = function (options = {}) {
|
|
19
|
+
const trustStoreCerts = getTrustStoreCerts(process.env)
|
|
20
|
+
|
|
21
|
+
if (!trustStoreCerts.length) {
|
|
22
|
+
server.logger.info('Could not find any TRUSTSTORE_ certificates')
|
|
23
|
+
}
|
|
24
|
+
|
|
25
|
+
const originalSecureContext = originalCreateSecureContext(options)
|
|
26
|
+
|
|
27
|
+
trustStoreCerts.forEach((cert) => {
|
|
28
|
+
// eslint-disable-next-line -- Node.js API not documented
|
|
29
|
+
originalSecureContext.context.addCACert(cert)
|
|
30
|
+
})
|
|
31
|
+
|
|
32
|
+
return originalSecureContext
|
|
33
|
+
}
|
|
34
|
+
|
|
35
|
+
secureContext = tls.createSecureContext()
|
|
36
|
+
|
|
37
|
+
return secureContext
|
|
38
|
+
}
|
|
39
|
+
|
|
40
|
+
/**
|
|
41
|
+
* @import { Server } from '@hapi/hapi'
|
|
42
|
+
* @import { SecureContext } from 'node:tls'
|
|
43
|
+
*/
|