@labdigital/commercetools-mock 2.0.0 → 2.1.0

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@labdigital/commercetools-mock",
   "author": "Michael van Tellingen",
-  "version": "2.0.0",
+  "version": "2.1.0",
   "license": "MIT",
   "main": "dist/index.cjs",
   "module": "dist/index.js",

package/src/ctMock.ts

@@ -106,6 +106,7 @@ export class CommercetoolsMock {
 
 	private createApp(options?: AppOptions): express.Express {
 		this._repositories = createRepositories(this._storage)
+		this._oauth2.setCustomerRepository(this._repositories.customer)
 
 		const app = express()
 
@@ -139,6 +140,14 @@ export class CommercetoolsMock {
 
 		app.use((err: Error, req: Request, resp: Response, next: NextFunction) => {
 			if (err instanceof CommercetoolsError) {
+				if (err.errors?.length > 0) {
+					return resp.status(err.statusCode).send({
+						statusCode: err.statusCode,
+						message: err.message,
+						errors: err.errors,
+					})
+				}
+
 				return resp.status(err.statusCode).send({
 					statusCode: err.statusCode,
 					message: err.message,

package/src/exceptions.ts

@@ -1,15 +1,19 @@
 export abstract class BaseError {
 	abstract message: string
+	abstract errors?: BaseError[]
 }
 
 export class CommercetoolsError<T extends BaseError> extends Error {
 	info: T
 	statusCode: number
 
+	errors: BaseError[]
+
 	constructor(info: T, statusCode = 400) {
 		super(info.message)
 		this.info = info
 		this.statusCode = statusCode || 500
+		this.errors = info.errors ?? []
 	}
 }
 

package/src/lib/password.ts

@@ -0,0 +1,7 @@
+export const validatePassword = (
+	clearPassword: string,
+	hashedPassword: string
+) => hashPassword(clearPassword) === hashedPassword
+
+export const hashPassword = (clearPassword: string) =>
+	Buffer.from(clearPassword).toString('base64')

package/src/oauth/server.ts

@@ -10,18 +10,45 @@ import { CommercetoolsError, InvalidRequestError } from '../exceptions.js'
 import { InvalidClientError, UnsupportedGrantType } from './errors.js'
 import { OAuth2Store } from './store.js'
 import { getBearerToken } from './helpers.js'
+import { CustomerRepository } from '../repositories/customer.js'
+import { hashPassword } from '../lib/password.js'
+
+type AuthRequest = Request & {
+	credentials: {
+		clientId: string
+		clientSecret: string
+	}
+}
 
 export class OAuth2Server {
 	store: OAuth2Store
+	private customerRepository: CustomerRepository
 
 	constructor(options: { enabled: boolean; validate: boolean }) {
 		this.store = new OAuth2Store(options.validate)
 	}
 
+	setCustomerRepository(repository: CustomerRepository) {
+		this.customerRepository = repository
+	}
+
 	createRouter() {
 		const router = express.Router()
 		router.use(bodyParser.urlencoded({ extended: true }))
+		router.use(this.validateClientCredentials.bind(this))
 		router.post('/token', this.tokenHandler.bind(this))
+		router.post(
+			'/:projectKey/customers/token',
+			this.customerTokenHandler.bind(this)
+		)
+		router.post(
+			'/:projectKey/in-store/key=:storeKey/customers/token',
+			this.inStoreCustomerTokenHandler.bind(this)
+		)
+		router.post(
+			'/:projectKey/anonymous/token',
+			this.anonymousTokenHandler.bind(this)
+		)
 		return router
 	}
 
@@ -56,7 +83,12 @@ export class OAuth2Server {
 			next()
 		}
 	}
-	async tokenHandler(request: Request, response: Response, next: NextFunction) {
+
+	async validateClientCredentials(
+		request: AuthRequest,
+		response: Response,
+		next: NextFunction
+	) {
 		const authHeader = request.header('Authorization')
 		if (!authHeader) {
 			return next(
@@ -84,6 +116,19 @@ export class OAuth2Server {
 			)
 		}
 
+		request.credentials = {
+			clientId: credentials.name,
+			clientSecret: credentials.pass,
+		}
+
+		next()
+	}
+
+	async tokenHandler(
+		request: AuthRequest,
+		response: Response,
+		next: NextFunction
+	) {
 		const grantType = request.query.grant_type || request.body.grant_type
 		if (!grantType) {
 			return next(
@@ -99,8 +144,15 @@ export class OAuth2Server {
 
 		if (grantType === 'client_credentials') {
 			const token = this.store.getClientToken(
-				credentials.name,
-				credentials.pass,
+				request.credentials.clientId,
+				request.credentials.clientSecret,
+				request.query.scope?.toString()
+			)
+			return response.status(200).send(token)
+		} else if (grantType === 'refresh_token') {
+			const token = this.store.getClientToken(
+				request.credentials.clientId,
+				request.credentials.clientSecret,
 				request.query.scope?.toString()
 			)
 			return response.status(200).send(token)
@@ -116,4 +168,86 @@ export class OAuth2Server {
 			)
 		}
 	}
+	async customerTokenHandler(
+		request: AuthRequest,
+		response: Response,
+		next: NextFunction
+	) {
+		const grantType = request.query.grant_type || request.body.grant_type
+		if (!grantType) {
+			return next(
+				new CommercetoolsError<InvalidRequestError>(
+					{
+						code: 'invalid_request',
+						message: 'Missing required parameter: grant_type.',
+					},
+					400
+				)
+			)
+		}
+
+		if (grantType === 'password') {
+			const username = request.query.username || request.body.username
+			const password = hashPassword(
+				request.query.password || request.body.password
+			)
+			const scope =
+				request.query.scope?.toString() || request.body.scope?.toString()
+
+			const result = this.customerRepository.query(
+				{ projectKey: request.params.projectKey },
+				{
+					where: [`email = "${username}"`, `password = "${password}"`],
+				}
+			)
+
+			if (result.count === 0) {
+				return next(
+					new CommercetoolsError<any>(
+						{
+							code: 'invalid_customer_account_credentials',
+							message: 'Customer account with the given credentials not found.',
+						},
+						400
+					)
+				)
+			}
+
+			const customer = result.results[0]
+			const token = this.store.getCustomerToken(scope, customer.id)
+			return response.status(200).send(token)
+		}
+	}
+
+	async inStoreCustomerTokenHandler(
+		request: Request,
+		response: Response,
+		next: NextFunction
+	) {
+		return next(
+			new CommercetoolsError<InvalidClientError>(
+				{
+					code: 'invalid_client',
+					message: 'Not implemented yet in commercetools-mock',
+				},
+				401
+			)
+		)
+	}
+
+	async anonymousTokenHandler(
+		request: Request,
+		response: Response,
+		next: NextFunction
+	) {
+		return next(
+			new CommercetoolsError<InvalidClientError>(
+				{
+					code: 'invalid_client',
+					message: 'Not implemented yet in commercetools-mock',
+				},
+				401
+			)
+		)
+	}
 }

package/src/oauth/store.ts

@@ -26,6 +26,19 @@ export class OAuth2Store {
 		return token
 	}
 
+	getCustomerToken(scope: string, customerId: string) {
+		const token: Token = {
+			access_token: randomBytes(16).toString('base64'),
+			token_type: 'Bearer',
+			expires_in: 172800,
+			scope: scope
+				? `${scope} custome_id:${customerId}`
+				: `customer_id: ${customerId}`,
+		}
+		this.tokens.push(token)
+		return token
+	}
+
 	validateToken(token: string) {
 		if (!this.validate) return true
 

package/src/repositories/customer.ts

@@ -4,6 +4,7 @@ import type {
 	CustomerDraft,
 	CustomerSetAuthenticationModeAction,
 	CustomerSetCustomFieldAction,
+	DuplicateFieldError,
 	InvalidInputError,
 	InvalidJsonInputError,
 } from '@commercetools/platform-sdk'
@@ -14,6 +15,7 @@ import {
 	AbstractResourceRepository,
 	type RepositoryContext,
 } from './abstract.js'
+import { hashPassword } from '../lib/password.js'
 
 export class CustomerRepository extends AbstractResourceRepository<'customer'> {
 	getTypeId() {
@@ -21,13 +23,32 @@ export class CustomerRepository extends AbstractResourceRepository<'customer'> {
 	}
 
 	create(context: RepositoryContext, draft: CustomerDraft): Customer {
+		// Check uniqueness
+		const results = this._storage.query(context.projectKey, this.getTypeId(), {
+			where: [`email="${draft.email.toLocaleLowerCase()}"`],
+		})
+		if (results.count > 0) {
+			throw new CommercetoolsError<any>({
+				code: 'CustomerAlreadyExists',
+				statusCode: 400,
+				message:
+					'There is already an existing customer with the provided email.',
+				errors: [
+					{
+						code: 'DuplicateField',
+						message: `Customer with email '${draft.email}' already exists.`,
+						duplicateValue: draft.email,
+						field: 'email',
+					} as DuplicateFieldError,
+				],
+			})
+		}
+
 		const resource: Customer = {
 			...getBaseResourceProperties(),
 			authenticationMode: draft.authenticationMode || 'Password',
-			email: draft.email,
-			password: draft.password
-				? Buffer.from(draft.password).toString('base64')
-				: undefined,
+			email: draft.email.toLowerCase(),
+			password: draft.password ? hashPassword(draft.password) : undefined,
 			isEmailVerified: draft.isEmailVerified || false,
 			addresses: [],
 		}
@@ -36,11 +57,14 @@ export class CustomerRepository extends AbstractResourceRepository<'customer'> {
 	}
 
 	getMe(context: RepositoryContext): Customer | undefined {
+		// grab the first customer you can find for now. In the future we should
+		// use the customer id from the scope of the token
 		const results = this._storage.query(
 			context.projectKey,
 			this.getTypeId(),
 			{}
-		) // grab the first customer you can find
+		)
+
 		if (results.count > 0) {
 			return results.results[0] as Customer
 		}
@@ -76,9 +100,7 @@ export class CustomerRepository extends AbstractResourceRepository<'customer'> {
 				return
 			}
 			if (authMode === 'Password') {
-				resource.password = password
-					? Buffer.from(password).toString('base64')
-					: undefined
+				resource.password = password ? hashPassword(password) : undefined
 				return
 			}
 			throw new CommercetoolsError<InvalidJsonInputError>(

package/src/services/my-customer.ts

@@ -2,6 +2,7 @@ import { Request, Response, Router } from 'express'
 import { CustomerRepository } from '../repositories/customer.js'
 import { getRepositoryContext } from '../repositories/helpers.js'
 import AbstractService from './abstract.js'
+import { hashPassword } from '../lib/password.js'
 
 export class MyCustomerService extends AbstractService {
 	public repository: CustomerRepository
@@ -51,7 +52,7 @@ export class MyCustomerService extends AbstractService {
 
 	signIn(request: Request, response: Response) {
 		const { email, password } = request.body
-		const encodedPassword = Buffer.from(password).toString('base64')
+		const encodedPassword = hashPassword(password)
 
 		const result = this.repository.query(getRepositoryContext(request), {
 			where: [`email = "${email}"`, `password = "${encodedPassword}"`],