configuration-management 0.1.0

package/actions/configurations/sync-store-mappings-from-commerce/index.js

@@ -0,0 +1,199 @@
+/*
+Copyright 2025 Adobe. All rights reserved.
+This file is licensed to you under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License. You may obtain a copy
+of the License at http://www.apache.org/licenses/LICENSE-2.0
+*/
+
+// Rebuild the legacy `store_mappings` blob from Commerce REST and upsert it
+// into system_config_data at  general/settings/store_mappings  (default scope).
+//
+// Output shape (matches the original middleware-config.json):
+//   {
+//     "0": { "code": "admin",   "language_code": "en", "website_code": "admin", "website_id": "0" },
+//     "1": { "code": "default", "language_code": "en", "website_code": "base",  "website_id": "1" },
+//     "2": { "code": "en_ch",   "language_code": "en", "website_code": "ch",    "website_id": "2" },
+//     ...
+//   }
+//
+// Inputs (action params):
+//   dryRun         — true → preview only, no write
+//   includeAdmin   — true → include website id=0 ("admin"). Default false.
+//
+// Trigger from `POST .../sync-store-mappings-from-commerce` or wire to a UI
+// button. Stored as a JSON string in a textarea field, so existing
+// `getConfig('general/settings/store_mappings', params)` callers get the
+// parsed object back unchanged.
+
+const { Core } = require('@adobe/aio-sdk')
+const { errorResponse } = require('../../utils')
+const { getClient } = require('configuration-management/abdb')
+const { getCommerceOauthClient } = require('configuration-management/oauth1a')
+const { toStateKey } = require('configuration-management/shared')
+
+const DATA_COLLECTION = 'system_config_data'
+const PATH = 'general/settings/store_mappings'
+const SCOPE = 'default'
+const SCOPE_ID = '0'
+
+/**
+ * Derive language_code from a store-view code following the conventional
+ * `<lang>_<region>` pattern (e.g. en_ch → 'en', fr_ch → 'fr'). Codes without
+ * an underscore fall back to 'en' to match the legacy middleware shape.
+ */
+function deriveLanguageCode (code) {
+  const m = String(code || '').toLowerCase().match(/^([a-z]{2})_/)
+  return m ? m[1] : 'en'
+}
+
+async function ensureCollection (client, name) {
+  try {
+    await client.createCollection(name)
+  } catch (err) {
+    const msg = (err && err.message) ? String(err.message) : String(err)
+    if (!/exist|already|duplicate/i.test(msg)) throw err
+  }
+}
+
+async function tryFindOne (collection, query) {
+  try {
+    const arr = await collection.find(query).limit(1).toArray()
+    return arr && arr.length ? arr[0] : null
+  } catch (err) {
+    const msg = err && err.message ? String(err.message) : String(err)
+    if (/not found/i.test(msg)) return null
+    throw err
+  }
+}
+
+async function fetchCommerceData (params, logger) {
+  if (!params.COMMERCE_BASE_URL) {
+    throw new Error('COMMERCE_BASE_URL is not configured')
+  }
+  const oauth = getCommerceOauthClient(
+    {
+      url: params.COMMERCE_BASE_URL,
+      consumerKey: params.COMMERCE_CONSUMER_KEY,
+      consumerSecret: params.COMMERCE_CONSUMER_SECRET,
+      accessToken: params.COMMERCE_ACCESS_TOKEN,
+      accessTokenSecret: params.COMMERCE_ACCESS_TOKEN_SECRET
+    },
+    logger
+  )
+  const [storeViews, websites] = await Promise.all([
+    oauth.get('store/storeViews'),
+    oauth.get('store/websites')
+  ])
+  return {
+    storeViews: Array.isArray(storeViews) ? storeViews : [],
+    websites: Array.isArray(websites) ? websites : []
+  }
+}
+
+function buildStoreMappings (storeViews, websites, { includeAdmin }) {
+  const websiteById = new Map()
+  for (const w of websites) {
+    if (w && w.id != null) websiteById.set(String(w.id), w)
+  }
+
+  const mapping = {}
+  for (const sv of storeViews) {
+    if (!sv || sv.id == null) continue
+    const storeId = String(sv.id)
+    if (!includeAdmin && (storeId === '0' || sv.code === 'admin')) continue
+    const websiteId = sv.website_id != null ? String(sv.website_id) : ''
+    const website = websiteById.get(websiteId)
+    mapping[storeId] = {
+      code: String(sv.code || ''),
+      language_code: deriveLanguageCode(sv.code),
+      website_code: website ? String(website.code || '') : '',
+      website_id: websiteId
+    }
+  }
+  return mapping
+}
+
+async function main (params) {
+  const logger = Core.Logger('sync-store-mappings', { level: params.LOG_LEVEL || 'info' })
+  const dryRun = params.dryRun === true || params.dryRun === 'true'
+  const includeAdmin = params.includeAdmin === true || params.includeAdmin === 'true'
+
+  // 1. Fetch from Commerce.
+  let commerce
+  try {
+    commerce = await fetchCommerceData(params, logger)
+  } catch (e) {
+    logger.error(`Commerce REST failed: ${e.message}`)
+    return errorResponse(500, `Commerce REST failed: ${e.message}`, logger)
+  }
+
+  // 2. Build the mapping.
+  const mapping = buildStoreMappings(commerce.storeViews, commerce.websites, { includeAdmin })
+  const count = Object.keys(mapping).length
+  if (count === 0) {
+    return errorResponse(500, 'No store views returned by Commerce — refusing to overwrite with empty mapping', logger)
+  }
+
+  if (dryRun) {
+    return {
+      statusCode: 200,
+      body: { ok: true, dryRun: true, count, mapping }
+    }
+  }
+
+  // 3. Upsert into ABDB at general/settings/store_mappings (default scope).
+  let dbHandle
+  try {
+    dbHandle = await getClient(params)
+  } catch (e) {
+    logger.error(`ABDB connect failed: ${e.message}`)
+    return errorResponse(500, `ABDB connect failed: ${e.message}`, logger)
+  }
+  const { client, close } = dbHandle
+
+  try {
+    await ensureCollection(client, DATA_COLLECTION)
+    const collection = await client.collection(DATA_COLLECTION)
+    const _id = toStateKey(SCOPE, SCOPE_ID, PATH)
+    const now = new Date().toISOString()
+    // Stored as a JSON STRING (textarea field) so getConfig's maybeParseJson
+    // returns the object on read.
+    const value = JSON.stringify(mapping, null, 2)
+
+    try {
+      await collection.updateOne(
+        { _id },
+        {
+          $set: { value, updatedAt: now, scope: SCOPE, scope_id: SCOPE_ID, path: PATH },
+          $setOnInsert: { _id, createdAt: now }
+        },
+        { upsert: true }
+      )
+    } catch (err) {
+      const msg = (err && err.message) ? String(err.message) : String(err)
+      if (!/upsert|unsupported|not implemented/i.test(msg)) throw err
+      // Fallback: find-then-write.
+      const existing = await tryFindOne(collection, { _id })
+      if (existing) {
+        await collection.updateOne({ _id }, { $set: { value, updatedAt: now } })
+      } else {
+        await collection.insertOne({
+          _id, scope: SCOPE, scope_id: SCOPE_ID, path: PATH, value, createdAt: now, updatedAt: now
+        })
+      }
+    }
+
+    logger.info(`store_mappings synced: ${count} entries → ${PATH}`)
+    return {
+      statusCode: 200,
+      body: { ok: true, count, mapping, path: PATH, scope: SCOPE, scope_id: SCOPE_ID }
+    }
+  } catch (error) {
+    logger.error(error)
+    return errorResponse(500, error.message || 'sync failed', logger)
+  } finally {
+    try { await close() } catch (_) {}
+  }
+}
+
+exports.main = main

package/actions/configurations/system-config-list/index.js

@@ -0,0 +1,127 @@
+/*
+Copyright 2025 Adobe. All rights reserved.
+This file is licensed to you under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License. You may obtain a copy
+of the License at http://www.apache.org/licenses/LICENSE-2.0
+*/
+
+const { Core } = require('@adobe/aio-sdk')
+const { errorResponse, checkMissingRequestInputs } = require('../../utils')
+const { getClient } = require('configuration-management/abdb')
+const {
+  SENSITIVE_PLACEHOLDER,
+  toStateKey,
+  normalizeScope,
+  normalizeScopeId,
+  buildInheritanceChain
+} = require('configuration-management/shared')
+const { decrypt, isEncrypted } = require('configuration-management/crypto')
+
+const COLLECTION = 'system_config_data'
+
+async function ensureCollection (client) {
+  try {
+    await client.createCollection(COLLECTION)
+  } catch (err) {
+    const msg = (err && err.message) ? String(err.message) : String(err)
+    if (!/exist|already|duplicate/i.test(msg)) throw err
+  }
+}
+
+/**
+ * Returns values for the requested paths from the ABDB system_config_data
+ * collection, applying Magento-style scope inheritance.
+ *
+ * Document shape (mirrors core_config_data):
+ *   { _id, scope, scope_id, path, value, updatedAt }
+ *
+ * Response:
+ *   { scope, scopeId, items: { "<path>": { value, origin, sensitive } } }
+ */
+async function main (params) {
+  const logger = Core.Logger('system-config-list', { level: params.LOG_LEVEL || 'info' })
+
+  const errorMessage = checkMissingRequestInputs(params, ['paths'], [])
+  if (errorMessage) return errorResponse(400, errorMessage, logger)
+
+  const { paths, sensitivePaths = [], scope: rawScope = 'default', scopeId: rawScopeId = '0', parentWebsiteId } = params
+  if (!Array.isArray(paths)) {
+    return errorResponse(400, 'paths must be an array of "section/group/field" strings', logger)
+  }
+
+  let scope, scopeId
+  try {
+    scope = normalizeScope(rawScope)
+    scopeId = normalizeScopeId(scope, rawScopeId)
+  } catch (e) {
+    return errorResponse(400, e.message, logger)
+  }
+
+  const sensitiveSet = new Set(sensitivePaths)
+  const chain = buildInheritanceChain(scope, scopeId, parentWebsiteId)
+
+  let dbHandle
+  try {
+    dbHandle = await getClient(params)
+  } catch (e) {
+    logger.error(`ABDB connect failed: ${e.message}`)
+    return errorResponse(500, `ABDB connect failed: ${e.message}`, logger)
+  }
+  const { client, close } = dbHandle
+
+  try {
+    await ensureCollection(client)
+    const collection = await client.collection(COLLECTION)
+
+    // Batch fetch every (scope, path) combination we might need in one go.
+    const ids = []
+    for (const path of paths) {
+      for (const link of chain) {
+        ids.push(toStateKey(link.scope, link.scopeId, path))
+      }
+    }
+    const docs = ids.length
+      ? await collection.find({ _id: { $in: ids } }).toArray()
+      : []
+    const byId = new Map(docs.map((d) => [d._id, d]))
+
+    const items = {}
+    for (const path of paths) {
+      let resolved = null
+      for (const link of chain) {
+        const id = toStateKey(link.scope, link.scopeId, path)
+        const doc = byId.get(id)
+        if (!doc || doc.value === undefined) continue
+
+        let value = doc.value
+        if (isEncrypted(value)) {
+          try {
+            value = decrypt(value, params)
+          } catch (e) {
+            logger.error(`Failed to decrypt ${path} @ ${link.scope}:${link.scopeId}: ${e.message}`)
+            value = ''
+          }
+        }
+        if (sensitiveSet.has(path) && value !== '' && value != null) {
+          value = SENSITIVE_PLACEHOLDER
+        }
+        resolved = { value, origin: { scope: link.scope, scopeId: link.scopeId } }
+        break
+      }
+      items[path] = resolved || { value: undefined, origin: null }
+      items[path].sensitive = sensitiveSet.has(path)
+    }
+
+    return {
+      statusCode: 200,
+      body: { message: 'System config fetched', scope, scopeId, items }
+    }
+  } catch (error) {
+    logger.error(error)
+    return errorResponse(500, error.message || 'Failed to read system config', logger)
+  } finally {
+    try { await close() } catch (_) {}
+  }
+}
+
+exports.main = main

package/actions/configurations/system-config-save/index.js

@@ -0,0 +1,160 @@
+/*
+Copyright 2025 Adobe. All rights reserved.
+This file is licensed to you under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License. You may obtain a copy
+of the License at http://www.apache.org/licenses/LICENSE-2.0
+*/
+
+const { Core } = require('@adobe/aio-sdk')
+const { errorResponse, checkMissingRequestInputs, logDetails } = require('../../utils')
+const { getClient } = require('configuration-management/abdb')
+const {
+  SENSITIVE_PLACEHOLDER,
+  USE_DEFAULT_SENTINEL,
+  isValidPath,
+  toStateKey,
+  normalizeScope,
+  normalizeScopeId
+} = require('configuration-management/shared')
+const { encrypt } = require('configuration-management/crypto')
+
+const COLLECTION = 'system_config_data'
+
+async function ensureCollection (client) {
+  try {
+    await client.createCollection(COLLECTION)
+  } catch (err) {
+    const msg = (err && err.message) ? String(err.message) : String(err)
+    if (!/exist|already|duplicate/i.test(msg)) throw err
+  }
+}
+
+/**
+ * ABDB's `findOne` throws "Document not found" on a miss in this driver
+ * version. `find().limit(1).toArray()` always returns an array, so use that
+ * to mean "fetch one or null". Belt-and-braces try/catch in case `find`
+ * itself starts throwing in a future version.
+ */
+async function tryFindOne (collection, query) {
+  try {
+    const arr = await collection.find(query).limit(1).toArray()
+    return arr && arr.length ? arr[0] : null
+  } catch (err) {
+    const msg = (err && err.message) ? String(err.message) : String(err)
+    if (/not found/i.test(msg)) return null
+    throw err
+  }
+}
+
+/**
+ * Upsert/delete values in the ABDB `system_config_data` collection.
+ *
+ * Per-value behavior (unchanged):
+ *   - value === SENSITIVE_PLACEHOLDER → no-op (UI sent back a masked value)
+ *   - value === USE_DEFAULT_SENTINEL  → delete the scope override (inherit)
+ *   - sensitive=true                  → encrypt with AES-256-GCM before writing
+ *
+ * Document shape (mirrors core_config_data):
+ *   { _id, scope, scope_id, path, value, createdAt, updatedAt }
+ */
+async function main (params) {
+  const logger = Core.Logger('system-config-save', { level: params.LOG_LEVEL || 'info' })
+
+  const errorMessage = checkMissingRequestInputs(params, ['values'], [])
+  if (errorMessage) return errorResponse(400, errorMessage, logger)
+
+  const { values, sensitivePaths = [], scope: rawScope = 'default', scopeId: rawScopeId = '0' } = params
+  if (!values || typeof values !== 'object' || Array.isArray(values)) {
+    return errorResponse(400, 'values must be an object of { "section/group/field": value }', logger)
+  }
+
+  let scope, scopeId
+  try {
+    scope = normalizeScope(rawScope)
+    scopeId = normalizeScopeId(scope, rawScopeId)
+  } catch (e) {
+    return errorResponse(400, e.message, logger)
+  }
+
+  const sensitiveSet = new Set(sensitivePaths)
+
+  let dbHandle
+  try {
+    dbHandle = await getClient(params)
+  } catch (e) {
+    logger.error(`ABDB connect failed: ${e.message}`)
+    return errorResponse(500, `ABDB connect failed: ${e.message}`, logger)
+  }
+  const { client, close } = dbHandle
+
+  try {
+    await ensureCollection(client)
+    const collection = await client.collection(COLLECTION)
+    const now = new Date().toISOString()
+    const saved = []
+    const deleted = []
+    const skipped = []
+
+    for (const [path, value] of Object.entries(values)) {
+      if (!isValidPath(path)) {
+        skipped.push({ path, reason: 'invalid path format' })
+        continue
+      }
+      const id = toStateKey(scope, scopeId, path)
+
+      if (value === USE_DEFAULT_SENTINEL) {
+        await collection.deleteOne({ _id: id })
+        deleted.push(path)
+        continue
+      }
+      if (sensitiveSet.has(path) && value === SENSITIVE_PLACEHOLDER) {
+        skipped.push({ path, reason: 'masked placeholder, kept existing' })
+        continue
+      }
+
+      let stored = value
+      if (sensitiveSet.has(path) && stored !== '' && stored != null) {
+        stored = encrypt(String(stored), params)
+      }
+
+      const existing = await tryFindOne(collection, { _id: id })
+      if (existing) {
+        await collection.updateOne(
+          { _id: id },
+          { $set: { value: stored, updatedAt: now } }
+        )
+      } else {
+        await collection.insertOne({
+          _id: id,
+          scope,
+          scope_id: scopeId,
+          path,
+          value: stored,
+          createdAt: now,
+          updatedAt: now
+        })
+      }
+      saved.push(path)
+    }
+
+    const redactedForLog = Object.fromEntries(
+      Object.entries(values).map(([p, v]) => [p, sensitiveSet.has(p) ? '[REDACTED]' : v])
+    )
+    logDetails(
+      'system-config-save',
+      `scope=${scope}:${scopeId} payload=${JSON.stringify(redactedForLog)}`
+    )
+
+    return {
+      statusCode: 200,
+      body: { message: 'System config saved', scope, scopeId, saved, deleted, skipped }
+    }
+  } catch (error) {
+    logger.error(error)
+    return errorResponse(500, error.message || 'Failed to save system config', logger)
+  } finally {
+    try { await close() } catch (_) {}
+  }
+}
+
+exports.main = main