@labdigital/commercetools-mock 2.10.0 → 2.11.0

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@labdigital/commercetools-mock",
   "author": "Michael van Tellingen",
-  "version": "2.10.0",
+  "version": "2.11.0",
   "license": "MIT",
   "main": "dist/index.cjs",
   "module": "dist/index.js",

package/src/oauth/server.test.ts

@@ -0,0 +1,55 @@
+import { describe, it, expect, beforeEach } from 'vitest'
+import express from 'express'
+import supertest from 'supertest'
+import { OAuth2Server } from './server'
+
+describe('OAuth2Server', () => {
+	let app: express.Express
+	let server: OAuth2Server
+
+	beforeEach(() => {
+		server = new OAuth2Server({ enabled: true, validate: false })
+		app = express()
+		app.use(server.createRouter())
+	})
+
+	describe('POST /token', () => {
+		it('should return a token for valid client credentials', async () => {
+			const response = await supertest(app)
+				.post('/token')
+				.auth('validClientId', 'validClientSecret')
+				.query({ grant_type: 'client_credentials' })
+				.send()
+
+			const body = await response.body
+
+			expect(response.status, JSON.stringify(body)).toBe(200)
+			expect(body).toHaveProperty('access_token')
+		})
+	})
+
+	describe('POST /:projectKey/anonymous/token', () => {
+		it('should return a token for anonymous access', async () => {
+			const projectKey = 'test-project'
+
+			const response = await supertest(app)
+				.post(`/${projectKey}/anonymous/token`)
+				.auth('validClientId', 'validClientSecret')
+				.query({ grant_type: 'client_credentials' })
+				.send()
+
+			expect(response.status).toBe(200)
+			expect(response.body).toHaveProperty('access_token')
+
+			const matches = response.body.scope?.match(
+				/(customer_id|anonymous_id):([^\s]+)/
+			)
+			if (matches) {
+				expect(matches[1]).toBe('anonymous_id')
+				expect(matches[2]).toBeDefined()
+			} else {
+				expect(response.body.scope).toBe('')
+			}
+		})
+	})
+})

package/src/oauth/server.ts

@@ -250,14 +250,27 @@ export class OAuth2Server {
 		response: Response,
 		next: NextFunction
 	) {
-		return next(
-			new CommercetoolsError<InvalidClientError>(
-				{
-					code: 'invalid_client',
-					message: 'Not implemented yet in commercetools-mock',
-				},
-				401
+		const grantType = request.query.grant_type || request.body.grant_type
+		if (!grantType) {
+			return next(
+				new CommercetoolsError<InvalidRequestError>(
+					{
+						code: 'invalid_request',
+						message: 'Missing required parameter: grant_type.',
+					},
+					400
+				)
 			)
-		)
+		}
+
+		if (grantType === 'client_credentials') {
+			const scope =
+				request.query.scope?.toString() || request.body.scope?.toString()
+
+			const anonymous_id = undefined
+
+			const token = this.store.getAnonymousToken(scope, anonymous_id)
+			return response.status(200).send(token)
+		}
 	}
 }

package/src/oauth/store.ts

@@ -1,4 +1,5 @@
 import { randomBytes } from 'crypto'
+import { v4 as uuidv4 } from 'uuid'
 
 type Token = {
 	access_token: string
@@ -26,14 +27,30 @@ export class OAuth2Store {
 		return token
 	}
 
+	getAnonymousToken(scope: string, anonymousId: string | undefined) {
+		if (!anonymousId) {
+			anonymousId = uuidv4()
+		}
+		const token: Token = {
+			access_token: randomBytes(16).toString('base64'),
+			token_type: 'Bearer',
+			expires_in: 172800,
+			scope: scope
+				? `${scope} anonymous_id:${anonymousId}`
+				: `anonymous_id:${anonymousId}`,
+		}
+		this.tokens.push(token)
+		return token
+	}
+
 	getCustomerToken(scope: string, customerId: string) {
 		const token: Token = {
 			access_token: randomBytes(16).toString('base64'),
 			token_type: 'Bearer',
 			expires_in: 172800,
 			scope: scope
-				? `${scope} custome_id:${customerId}`
-				: `customer_id: ${customerId}`,
+				? `${scope} customer_id:${customerId}`
+				: `customer_id:${customerId}`,
 		}
 		this.tokens.push(token)
 		return token