cloudcommerce 0.0.40 → 0.0.43

package/packages/modules/lib/firebase/serve-modules-api.js

@@ -0,0 +1,57 @@
+import { schemas } from '../index.js';
+import handleModule from './handle-module.js';
+
+export default (req, res, apiAuth) => {
+  const { method } = req;
+  if (method !== 'POST' && method !== 'GET') {
+    return res.sendStatus(405);
+  }
+  if (method === 'POST'
+        && (!req.body || typeof req.body !== 'object' || Array.isArray(req.body))) {
+    return res.sendStatus(400);
+  }
+  let { url } = req;
+  if (url.endsWith('.json')) {
+    url = url.slice(0, -5);
+  }
+  const modName = url.split('/')[1];
+  const sendSchema = (isResponseSchema = false) => {
+    return res.status(200)
+      .setHeader('Cache-Control', 'public, max-age=3600')
+      .send(schemas[modName][isResponseSchema ? 'response' : 'params']);
+  };
+  if (modName === '@checkout') {
+    if (url === '/@checkout') {
+      return res.status(200).send({
+        status: 200,
+        message: 'CHECKOUT',
+      });
+    }
+    if (url === '/@checkout/schema') {
+      return sendSchema();
+    }
+    return res.sendStatus(404);
+  }
+  if (schemas[modName]) {
+    const { params: schema, response: responseSchema } = schemas[modName];
+    if (!schema.$schema) {
+      schema.$schema = 'http://json-schema.org/draft-06/schema#';
+      schema.title = `Module \`${modName}\`: Params model`;
+    }
+    if (!responseSchema.$schema) {
+      responseSchema.$schema = 'http://json-schema.org/draft-06/schema#';
+      responseSchema.title = `Module \`${modName}\`: App response model`;
+    }
+    if (url === `/${modName}/schema`) {
+      return sendSchema();
+    }
+    if (url === `/${modName}/response_schema`) {
+      return sendSchema(true);
+    }
+    if (url === `/${modName}`) {
+      return handleModule(modName, schema, responseSchema, req, res, apiAuth);
+    }
+  }
+  return res.sendStatus(404);
+};
+// # sourceMappingURL=serve-modules-api.js.map

package/packages/modules/lib/firebase/serve-modules-api.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"serve-modules-api.js","sourceRoot":"","sources":["../../src/firebase/serve-modules-api.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,OAAO,EAAE,MAAM,UAAU,CAAC;AACnC,OAAO,YAAY,MAAM,iBAAiB,CAAC;AAE3C,eAAe,CACb,GAAY,EACZ,GAAa,EACb,OAAqD,EACrD,EAAE;IACF,MAAM,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC;IACvB,IAAI,MAAM,KAAK,MAAM,IAAI,MAAM,KAAK,KAAK,EAAE;QACzC,OAAO,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;KAC5B;IACD,IACE,MAAM,KAAK,MAAM;WACd,CAAC,CAAC,GAAG,CAAC,IAAI,IAAI,OAAO,GAAG,CAAC,IAAI,KAAK,QAAQ,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,EACzE;QACA,OAAO,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;KAC5B;IAED,IAAI,EAAE,GAAG,EAAE,GAAG,GAAG,CAAC;IAClB,IAAI,GAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE;QACzB,GAAG,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;KACxB;IACD,MAAM,OAAO,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;IAClC,MAAM,UAAU,GAAG,CAAC,gBAAgB,GAAG,KAAK,EAAE,EAAE;QAC9C,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC;aACnB,SAAS,CAAC,eAAe,EAAE,sBAAsB,CAAC;aAClD,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,gBAAgB,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC;IACtE,CAAC,CAAC;IAEF,IAAI,OAAO,KAAK,WAAW,EAAE;QAC3B,IAAI,GAAG,KAAK,YAAY,EAAE;YACxB,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBAC1B,MAAM,EAAE,GAAG;gBACX,OAAO,EAAE,UAAU;aACpB,CAAC,CAAC;SACJ;QACD,IAAI,GAAG,KAAK,mBAAmB,EAAE;YAC/B,OAAO,UAAU,EAAE,CAAC;SACrB;QACD,OAAO,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;KAC5B;IAED,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE;QACpB,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,cAAc,EAAE,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;QACtE,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE;YACnB,MAAM,CAAC,OAAO,GAAG,yCAAyC,CAAC;YAC3D,MAAM,CAAC,KAAK,GAAG,YAAY,OAAO,kBAAkB,CAAC;SACtD;QACD,IAAI,CAAC,cAAc,CAAC,OAAO,EAAE;YAC3B,cAAc,CAAC,OAAO,GAAG,yCAAyC,CAAC;YACnE,cAAc,CAAC,KAAK,GAAG,YAAY,OAAO,wBAAwB,CAAC;SACpE;QACD,IAAI,GAAG,KAAK,IAAI,OAAO,SAAS,EAAE;YAChC,OAAO,UAAU,EAAE,CAAC;SACrB;QACD,IAAI,GAAG,KAAK,IAAI,OAAO,kBAAkB,EAAE;YACzC,OAAO,UAAU,CAAC,IAAI,CAAC,CAAC;SACzB;QACD,IAAI,GAAG,KAAK,IAAI,OAAO,EAAE,EAAE;YACzB,OAAO,YAAY,CAAC,OAAO,EAAE,MAAM,EAAE,cAAc,EAAE,GAAG,EAAE,GAAG,EAAE,OAAO,CAAC,CAAC;SACzE;KACF;IACD,OAAO,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;AAC7B,CAAC,CAAC"}

package/packages/modules/lib/firebase.js

@@ -5,12 +5,19 @@ import { initializeApp } from 'firebase-admin/app';
 // eslint-disable-next-line import/no-unresolved
 import { onRequest } from 'firebase-functions/v2/https';
 import config from '@cloudcommerce/firebase/lib/config';
+import getEnv from '@cloudcommerce/firebase/lib/env';
+import serveModulesApi from './firebase/serve-modules-api.js';
 
 initializeApp();
-const options = config.get().httpsFunctionOptions;
+const { httpsFunctionOptions } = config.get();
 
-export const modulesApi = onRequest(options, (request, response) => {
+export const modulesApi = onRequest(httpsFunctionOptions, (req, res) => {
+  const { authenticationId, apiKey } = getEnv();
+  // Hide API key for security
   process.env.ECOM_API_KEY = '***';
-  response.send('Hello modules!');
+  serveModulesApi(req, res, {
+    authenticationId,
+    apiKey,
+  });
 });
 // # sourceMappingURL=firebase.js.map

package/packages/modules/lib/firebase.js.map

@@ -1 +1 @@
-{"version":3,"file":"firebase.js","sourceRoot":"","sources":["../src/firebase.ts"],"names":[],"mappings":"AAAA,iDAAiD;AAEjD,OAAO,gCAAgC,CAAC;AACxC,gDAAgD;AAChD,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AACnD,gDAAgD;AAChD,OAAO,EAAE,SAAS,EAAE,MAAM,6BAA6B,CAAC;AACxD,OAAO,MAAM,MAAM,oCAAoC,CAAC;AAExD,aAAa,EAAE,CAAC;AAChB,MAAM,OAAO,GAAG,MAAM,CAAC,GAAG,EAAE,CAAC,oBAAoB,CAAC;AAElD,MAAM,CAAC,MAAM,UAAU,GAAG,SAAS,CAAC,OAAO,EAAE,CAAC,OAAO,EAAE,QAAQ,EAAE,EAAE;IACjE,OAAO,CAAC,GAAG,CAAC,YAAY,GAAG,KAAK,CAAC;IACjC,QAAQ,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;AAClC,CAAC,CAAC,CAAC"}
+{"version":3,"file":"firebase.js","sourceRoot":"","sources":["../src/firebase.ts"],"names":[],"mappings":"AAAA,iDAAiD;AAEjD,OAAO,gCAAgC,CAAC;AACxC,gDAAgD;AAChD,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AACnD,gDAAgD;AAChD,OAAO,EAAE,SAAS,EAAE,MAAM,6BAA6B,CAAC;AACxD,OAAO,MAAM,MAAM,oCAAoC,CAAC;AACxD,OAAO,MAAM,MAAM,iCAAiC,CAAC;AACrD,OAAO,eAAe,MAAM,8BAA8B,CAAC;AAE3D,aAAa,EAAE,CAAC;AAChB,MAAM,EAAE,oBAAoB,EAAE,GAAG,MAAM,CAAC,GAAG,EAAE,CAAC;AAE9C,MAAM,CAAC,MAAM,UAAU,GAAG,SAAS,CAAC,oBAAoB,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;IACrE,MAAM,EAAE,gBAAgB,EAAE,MAAM,EAAE,GAAG,MAAM,EAAE,CAAC;IAC9C,4BAA4B;IAC5B,OAAO,CAAC,GAAG,CAAC,YAAY,GAAG,KAAK,CAAC;IACjC,eAAe,CAAC,GAAG,EAAE,GAAG,EAAE;QACxB,gBAAgB;QAChB,MAAM;KACP,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/packages/modules/lib/index.js

@@ -4,18 +4,22 @@ import * as listPayments from '../schemas/list_payments.cjs';
 import * as createTransaction from '../schemas/create_transaction.cjs';
 import * as checkout from '../schemas/@checkout.cjs';
 
+const schemas = {
+  calculate_shipping: calculateShipping,
+  apply_discount: applyDiscount,
+  list_payments: listPayments,
+  create_transaction: createTransaction,
+  '@checkout': checkout,
+};
+
 export default {
   calculateShipping,
   applyDiscount,
   listPayments,
   createTransaction,
   checkout,
-  schemas: {
-    calculate_shipping: calculateShipping,
-    apply_discount: applyDiscount,
-    list_payments: listPayments,
-    create_transaction: createTransaction,
-    '@checkout': checkout,
-  },
+  schemas,
 };
+
+export { schemas };
 // # sourceMappingURL=index.js.map

package/packages/modules/lib/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,iBAAiB,MAAM,mCAAmC,CAAC;AACvE,OAAO,KAAK,aAAa,MAAM,+BAA+B,CAAC;AAC/D,OAAO,KAAK,YAAY,MAAM,8BAA8B,CAAC;AAC7D,OAAO,KAAK,iBAAiB,MAAM,mCAAmC,CAAC;AACvE,OAAO,KAAK,QAAQ,MAAM,0BAA0B,CAAC;AAErD,eAAe;IACb,iBAAiB;IACjB,aAAa;IACb,YAAY;IACZ,iBAAiB;IACjB,QAAQ;IAER,OAAO,EAAE;QACP,kBAAkB,EAAE,iBAAiB;QACrC,cAAc,EAAE,aAAa;QAC7B,aAAa,EAAE,YAAY;QAC3B,kBAAkB,EAAE,iBAAiB;QACrC,WAAW,EAAE,QAAQ;KACtB;CACF,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,iBAAiB,MAAM,mCAAmC,CAAC;AACvE,OAAO,KAAK,aAAa,MAAM,+BAA+B,CAAC;AAC/D,OAAO,KAAK,YAAY,MAAM,8BAA8B,CAAC;AAC7D,OAAO,KAAK,iBAAiB,MAAM,mCAAmC,CAAC;AACvE,OAAO,KAAK,QAAQ,MAAM,0BAA0B,CAAC;AAErD,MAAM,OAAO,GAAG;IACd,kBAAkB,EAAE,iBAAiB;IACrC,cAAc,EAAE,aAAa;IAC7B,aAAa,EAAE,YAAY;IAC3B,kBAAkB,EAAE,iBAAiB;IACrC,WAAW,EAAE,QAAQ;CACtB,CAAC;AAEF,eAAe;IACb,iBAAiB;IACjB,aAAa;IACb,YAAY;IACZ,iBAAiB;IACjB,QAAQ;IACR,OAAO;CACR,CAAC;AAEF,OAAO,EAAE,OAAO,EAAE,CAAC"}

package/packages/modules/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@cloudcommerce/modules",
   "type": "module",
-  "version": "0.0.40",
+  "version": "0.0.43",
   "description": "E-Com Plus Cloud Commerce modules API",
   "main": "lib/index.cjs",
   "exports": {
@@ -24,8 +24,11 @@
     "build:types": "sh scripts/build-types.sh"
   },
   "dependencies": {
+    "@cloudcommerce/api": "workspace:*",
     "@cloudcommerce/firebase": "workspace:*",
-    "firebase-admin": "^11.0.0",
+    "ajv": "^8.11.0",
+    "axios": "^0.27.2",
+    "firebase-admin": "^11.0.1",
     "firebase-functions": "^3.22.0",
     "source-map-support": "^0.5.21"
   },

package/packages/modules/src/firebase/ajv.ts

@@ -0,0 +1,38 @@
+import type { Response } from 'firebase-functions';
+import Ajv, { Options, ErrorObject } from 'ajv';
+
+const ajvOptions: Options = {
+  coerceTypes: false,
+  useDefaults: true,
+  removeAdditional: true,
+  // Explicitly set `allErrors` to false, when set to true a DoS attack is possible
+  allErrors: false,
+  multipleOfPrecision: 5,
+  allowMatchingProperties: true,
+};
+const ajv = new Ajv(ajvOptions);
+
+const parseAjvErrors = (errors?: ErrorObject[] | null, ajvInstance = ajv) => {
+  return ajvInstance.errorsText(errors, { separator: '\n' });
+};
+
+const sendRequestError = (res: Response, modName: string, errors?: ErrorObject[] | null) => {
+  res.status(400).send({
+    status: 400,
+    error_code: 'MOD901',
+    message: 'Bad-formatted JSON body (POST) or URL params (GET), details in `user_message`',
+    user_message: {
+      en_us: ajv.errorsText(errors, { separator: '\n' }),
+    },
+    more_info: `/${modName}/schema`,
+  });
+};
+
+export default ajv;
+
+export {
+  ajv,
+  ajvOptions,
+  parseAjvErrors,
+  sendRequestError,
+};

package/packages/modules/src/firebase/call-app-module.ts

@@ -0,0 +1,72 @@
+import { logger } from 'firebase-functions';
+import axios, { AxiosResponse } from 'axios';
+import config from '@cloudcommerce/firebase/lib/config';
+
+// Blacklist urls to prevent consecultive errors
+const blacklist = {};
+
+export default async (url: string, data: any, isBigTimeout: boolean) => {
+  if (blacklist[url] > 2) {
+    logger.log(`> Skipping blacklisted ${url}`);
+    const err = new Error('Blacklited endpoint URL');
+    return Promise.reject(err);
+  }
+  const { storeId } = config.get();
+
+  const debug = (response: AxiosResponse) => {
+    const status = response ? response.status : 0;
+    if (!blacklist[url]) {
+      blacklist[url] = 1;
+    } else {
+      blacklist[url] += 1;
+    }
+    setTimeout(() => {
+      if (blacklist[url] > 1) {
+        blacklist[url] -= 1;
+      } else {
+        delete blacklist[url];
+      }
+    }, !status ? 180000 : 6000);
+
+    logger.info(`${url} : ${status}`);
+    if (status >= 400 && status < 500) {
+      const { data: resData } = response;
+      if (typeof resData === 'object' && resData !== null) {
+        const { error, message } = resData;
+        if (typeof error === 'string' && error.length && typeof message === 'string') {
+          logger.warn(JSON.stringify({ error, message }));
+        }
+      }
+    }
+  };
+
+  return axios({
+    method: 'POST',
+    maxRedirects: 2,
+    responseType: 'json',
+    maxContentLength: 1000000, // 1MB
+    url,
+    data,
+    headers: {
+      'X-Store-ID': storeId.toString(),
+    },
+    // Wait 10s by default and 30s in specific cases
+    timeout: isBigTimeout ? 30000 : 10000,
+  })
+    .then((response) => {
+      debug(response);
+      return response.data;
+    })
+    .catch((err) => {
+      const { response } = err;
+      debug(response);
+      if (err.message || err.code) {
+        let msg = `Axios error ${err.code}: ${err.message}`;
+        if (data) {
+          msg += `\n\n${JSON.stringify(data)}`;
+        }
+        logger.warn(msg);
+      }
+      throw err;
+    });
+};

package/packages/modules/src/firebase/handle-module.ts

@@ -0,0 +1,191 @@
+import type { Request, Response } from 'firebase-functions';
+import type { Applications } from '@cloudcommerce/types';
+import { logger } from 'firebase-functions';
+import Ajv, { ValidateFunction } from 'ajv';
+import api, { ApiError, ApiConfig } from '@cloudcommerce/api';
+import config from '@cloudcommerce/firebase/lib/config';
+import {
+  ajv,
+  ajvOptions,
+  parseAjvErrors,
+  sendRequestError,
+} from './ajv';
+import callAppModule from './call-app-module';
+
+const ajvAppsResponse = new Ajv({ ...ajvOptions, allErrors: true });
+
+// Cache apps list and no params modules results
+const appsCache = {};
+const resultsCache = {};
+
+async function runModule(
+  apiAuth: { authenticationId: string, apiKey: string },
+  params: { [key: string]: any },
+  res: Response,
+  modName: string,
+  validate: ValidateFunction,
+  responseValidate: ValidateFunction,
+  appId?: any,
+) {
+  const respond = (result: any[]) => res.send({
+    result,
+    meta: params,
+  });
+  const { storeId } = config.get();
+  const isEmptyParams = (!params || !Object.keys(params).length);
+  if (!validate(params)) {
+    return sendRequestError(res, modName, validate.errors);
+  }
+  let canCache = true;
+  const cacheKey = `${storeId}:${modName}`;
+  const listAppsParams: ApiConfig['params'] = {
+    state: 'active',
+    [`modules.${modName}.enabled`]: true,
+    fields: `_id,app_id,version,data,hidden_data,modules.${modName}`,
+  };
+  if (
+    appId
+    && (typeof appId === 'number' || (typeof appId === 'string' && /^\d+$/.test(appId)))
+  ) {
+    canCache = false;
+    listAppsParams.app_id = appId;
+    listAppsParams.limit = 1;
+  }
+  let canCacheResults = false;
+  if (canCache && isEmptyParams) {
+    if (resultsCache[cacheKey]) {
+      return respond(resultsCache[cacheKey]);
+    }
+    canCacheResults = true;
+  }
+
+  let appsList: Applications[];
+  if (canCache && appsCache[cacheKey]) {
+    appsList = appsCache[cacheKey];
+  } else {
+    try {
+      const { data } = await api.get('applications', {
+        ...apiAuth,
+        params: listAppsParams,
+      });
+      appsList = data.result;
+    } catch (err: any) {
+      logger.error(err);
+      const error = err as ApiError;
+      return res.status(500).send({
+        status: 500,
+        error_code: 'MOD801',
+        message: `Store API returned status ${error.statusCode} trying to list apps`,
+        more_info: error.data?.user_message?.en_us,
+      });
+    }
+  }
+
+  if (Array.isArray(appsList)) {
+    if (!appsList.length) {
+      return respond([]);
+    }
+    if (canCache && !appsCache[cacheKey]) {
+      appsCache[cacheKey] = appsList;
+      setTimeout(() => {
+        appsCache[cacheKey] = null;
+        delete appsCache[cacheKey];
+      }, appsList.length ? 60000 : 3000);
+    }
+    const moduleReqs: Promise<any>[] = [];
+    for (let i = 0; i < appsList.length; i++) {
+      const application = appsList[i] as Applications & { modules: { [key: string]: any } };
+      if (!application.hidden_data) {
+        application.hidden_data = {};
+      }
+      if (!application.data) {
+        application.data = {};
+      }
+      const appModuleUrl = application.modules[modName].endpoint as string;
+      // Handle request with big timeout if proxying one app (by ID) only
+      const isBigTimeout = !!(appId);
+      const appModuleBody = {
+        module: modName,
+        params,
+        application,
+      };
+
+      const reqStartTime = Date.now();
+      moduleReqs.push(new Promise((resolve) => {
+        let response: any;
+        let isError = false;
+        let errorMessage: string | null = null;
+        callAppModule(appModuleUrl, appModuleBody, isBigTimeout)
+          .then((appResponse) => {
+            response = appResponse;
+          })
+          .catch((err: any) => {
+            response = null;
+            isError = true;
+            errorMessage = err.message;
+          })
+          .finally(() => {
+            const result = {
+              _id: application._id,
+              app_id: application.app_id,
+              took: Date.now() - reqStartTime,
+              version: application.version,
+              validated: false,
+              response_errors: null,
+              error: isError,
+              error_message: errorMessage,
+              response,
+            };
+            if (typeof response === 'object' && response !== null) {
+              result.validated = responseValidate(response);
+              if (!result.validated) {
+                // @ts-ignore
+                result.response_errors = parseAjvErrors(
+                  responseValidate.errors,
+                  ajvAppsResponse,
+                );
+              }
+            }
+            resolve(result);
+          });
+      }));
+    }
+
+    return Promise.all(moduleReqs).then((results) => {
+      if (!results.find(({ response }) => response)) {
+        res.status(409);
+        canCacheResults = false;
+      }
+      if (canCacheResults && !resultsCache[cacheKey]) {
+        resultsCache[cacheKey] = results;
+        setTimeout(() => {
+          resultsCache[cacheKey] = null;
+          delete resultsCache[cacheKey];
+        }, 60000);
+      }
+      return respond(results);
+    });
+  }
+  // Shoud never happen
+  return res.sendStatus(501);
+}
+
+export default (
+  modName: string,
+  schema: { [key: string]: any },
+  responseSchema: { [key: string]: any },
+  req: Request,
+  res: Response,
+  apiAuth: { authenticationId: string, apiKey: string },
+) => {
+  const validate = ajv.compile(schema);
+  const responseValidate = ajvAppsResponse.compile(responseSchema);
+  return {
+    GET() {
+      runModule(apiAuth, req.query, res, modName, validate, responseValidate);
+    },
+    POST() {
+      runModule(apiAuth, req.body, res, modName, validate, responseValidate, req.query.app_id);
+    },
+  };
+};

package/packages/modules/src/firebase/serve-modules-api.ts

@@ -0,0 +1,66 @@
+import type { Request, Response } from 'firebase-functions';
+import { schemas } from '../index';
+import handleModule from './handle-module';
+
+export default (
+  req: Request,
+  res: Response,
+  apiAuth: { authenticationId: string, apiKey: string },
+) => {
+  const { method } = req;
+  if (method !== 'POST' && method !== 'GET') {
+    return res.sendStatus(405);
+  }
+  if (
+    method === 'POST'
+    && (!req.body || typeof req.body !== 'object' || Array.isArray(req.body))
+  ) {
+    return res.sendStatus(400);
+  }
+
+  let { url } = req;
+  if (url.endsWith('.json')) {
+    url = url.slice(0, -5);
+  }
+  const modName = url.split('/')[1];
+  const sendSchema = (isResponseSchema = false) => {
+    return res.status(200)
+      .setHeader('Cache-Control', 'public, max-age=3600')
+      .send(schemas[modName][isResponseSchema ? 'response' : 'params']);
+  };
+
+  if (modName === '@checkout') {
+    if (url === '/@checkout') {
+      return res.status(200).send({
+        status: 200,
+        message: 'CHECKOUT',
+      });
+    }
+    if (url === '/@checkout/schema') {
+      return sendSchema();
+    }
+    return res.sendStatus(404);
+  }
+
+  if (schemas[modName]) {
+    const { params: schema, response: responseSchema } = schemas[modName];
+    if (!schema.$schema) {
+      schema.$schema = 'http://json-schema.org/draft-06/schema#';
+      schema.title = `Module \`${modName}\`: Params model`;
+    }
+    if (!responseSchema.$schema) {
+      responseSchema.$schema = 'http://json-schema.org/draft-06/schema#';
+      responseSchema.title = `Module \`${modName}\`: App response model`;
+    }
+    if (url === `/${modName}/schema`) {
+      return sendSchema();
+    }
+    if (url === `/${modName}/response_schema`) {
+      return sendSchema(true);
+    }
+    if (url === `/${modName}`) {
+      return handleModule(modName, schema, responseSchema, req, res, apiAuth);
+    }
+  }
+  return res.sendStatus(404);
+};

package/packages/modules/src/firebase.ts

@@ -6,11 +6,18 @@ import { initializeApp } from 'firebase-admin/app';
 // eslint-disable-next-line import/no-unresolved
 import { onRequest } from 'firebase-functions/v2/https';
 import config from '@cloudcommerce/firebase/lib/config';
+import getEnv from '@cloudcommerce/firebase/lib/env';
+import serveModulesApi from './firebase/serve-modules-api';
 
 initializeApp();
-const options = config.get().httpsFunctionOptions;
+const { httpsFunctionOptions } = config.get();
 
-export const modulesApi = onRequest(options, (request, response) => {
+export const modulesApi = onRequest(httpsFunctionOptions, (req, res) => {
+  const { authenticationId, apiKey } = getEnv();
+  // Hide API key for security
   process.env.ECOM_API_KEY = '***';
-  response.send('Hello modules!');
+  serveModulesApi(req, res, {
+    authenticationId,
+    apiKey,
+  });
 });

package/packages/modules/src/index.ts

@@ -4,18 +4,21 @@ import * as listPayments from '../schemas/list_payments.cjs';
 import * as createTransaction from '../schemas/create_transaction.cjs';
 import * as checkout from '../schemas/@checkout.cjs';
 
+const schemas = {
+  calculate_shipping: calculateShipping,
+  apply_discount: applyDiscount,
+  list_payments: listPayments,
+  create_transaction: createTransaction,
+  '@checkout': checkout,
+};
+
 export default {
   calculateShipping,
   applyDiscount,
   listPayments,
   createTransaction,
   checkout,
-
-  schemas: {
-    calculate_shipping: calculateShipping,
-    apply_discount: applyDiscount,
-    list_payments: listPayments,
-    create_transaction: createTransaction,
-    '@checkout': checkout,
-  },
+  schemas,
 };
+
+export { schemas };

package/packages/passport/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@cloudcommerce/passport",
   "type": "module",
-  "version": "0.0.40",
+  "version": "0.0.43",
   "description": "E-Com Plus Cloud Commerce customers authentication (passport) API",
   "main": "lib/index.js",
   "exports": {
@@ -25,7 +25,7 @@
   "dependencies": {
     "@cloudcommerce/api": "workspace:*",
     "@cloudcommerce/firebase": "workspace:*",
-    "firebase-admin": "^11.0.0",
+    "firebase-admin": "^11.0.1",
     "firebase-functions": "^3.22.0",
     "source-map-support": "^0.5.21"
   },

package/packages/ssr/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@cloudcommerce/ssr",
   "type": "module",
-  "version": "0.0.40",
+  "version": "0.0.43",
   "description": "E-Com Plus Cloud Commerce storefront SSR",
   "main": "lib/index.js",
   "exports": {
@@ -26,7 +26,7 @@
     "@cloudcommerce/api": "workspace:*",
     "@cloudcommerce/firebase": "workspace:*",
     "@cloudcommerce/storefront": "workspace:*",
-    "firebase-admin": "^11.0.0",
+    "firebase-admin": "^11.0.1",
     "firebase-functions": "^3.22.0",
     "source-map-support": "^0.5.21"
   },

package/packages/storefront/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@cloudcommerce/storefront",
   "type": "module",
-  "version": "0.0.40",
+  "version": "0.0.43",
   "description": "E-Com Plus Cloud Commerce storefront with Astro",
   "main": "src/index.js",
   "repository": {
@@ -20,6 +20,6 @@
   },
   "dependencies": {
     "@cloudcommerce/api": "workspace:*",
-    "astro": "1.0.0-rc.1"
+    "astro": "1.0.0-rc.3"
   }
 }

package/packages/types/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@cloudcommerce/types",
   "type": "module",
-  "version": "0.0.40",
+  "version": "0.0.43",
   "description": "E-Com Plus Cloud Commerce reusable type definitions",
   "main": "index.ts",
   "repository": {