ml-testing-toolkit 18.13.0

package/src/lib/oauth/OAuthHelper.js

@@ -0,0 +1,181 @@
+/*****
+ License
+ --------------
+ Copyright © 2020-2025 Mojaloop Foundation
+ The Mojaloop files are made available by the Mojaloop Foundation under the Apache License, Version 2.0 (the "License") and you may not use these files except in compliance with the License. You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, the Mojaloop files are distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
+
+ Contributors
+ --------------
+ This is the official list of the Mojaloop project contributors for this file.
+ Names of the original copyright holders (individuals or organizations)
+ should be listed with a '*' in the first column. People who have
+ contributed from an organization can be listed under the organization
+ that actually holds the copyright for their contributions (see the
+ Mojaloop Foundation for an example). Those individuals should have
+ their names indented and be marked with a '-'. Email address can be added
+ optionally within square brackets <email>.
+
+ * Mojaloop Foundation
+ - Name Surname <name.surname@mojaloop.io>
+
+ * ModusBox
+ * Georgi Logodazhki <georgi.logodazhki@modusbox.com> (Original Author)
+ --------------
+ ******/
+
+const Cookies = require('cookies')
+const passport = require('passport')
+const Config = require('../config')
+const fs = require('fs')
+const path = require('path')
+const customLogger = require('../requestLogger')
+
+function cookieExtractor (req) {
+  const cookies = new Cookies(req)
+  const token = cookies.get('TTK-API_ACCESS_TOKEN')
+  return token
+}
+
+/**
+ * Creates a JWTStrategy to use with passport
+ * @see http://www.passportjs.org/packages/passport-jwt/
+ */
+function createJwtStrategy (extraExtractors) {
+  const systemConfig = Config.getSystemConfig()
+  const JwtStrategy = require('passport-jwt').Strategy
+  const ExtractJwt = require('passport-jwt').ExtractJwt
+
+  const jwtStrategyOpts = {}
+  let extractors = []
+  if (extraExtractors) {
+    if (Array.isArray(extraExtractors)) {
+      extractors = extractors.concat(extraExtractors)
+    } else {
+      extractors.push(extraExtractors)
+    }
+  }
+  extractors = extractors.concat([ExtractJwt.fromAuthHeaderAsBearerToken(), cookieExtractor])
+
+  jwtStrategyOpts.jwtFromRequest = ExtractJwt.fromExtractors(extractors)
+
+  jwtStrategyOpts.passReqToCallback = true // passReqToCallback: If true the request will be passed to the verify callback. i.e. verify(request, jwt_payload, done_callback).
+  jwtStrategyOpts.jsonWebTokenOptions = {}
+  let certContent
+  if (systemConfig.OAUTH.EMBEDDED_CERTIFICATE) {
+    customLogger.logMessage('info', 'Setting Token Issuer certificate from Constants.OAUTH.EMBEDDED_CERTIFICATE', { notification: false })
+    certContent = systemConfig.OAUTH.EMBEDDED_CERTIFICATE
+  } else if (systemConfig.OAUTH.CERTIFICATE_FILE_NAME) {
+    customLogger.logMessage('info', `Setting Token Issuer certificate from Constants.OAUTH.CERTIFICATE_FILE_NAME: ${systemConfig.OAUTH.CERTIFICATE_FILE_NAME}`, { notification: false })
+    if (systemConfig.OAUTH.CERTIFICATE_FILE_NAME.startsWith('/')) {
+      customLogger.logMessage('info', 'Token Issuer Constants.OAUTH.CERTIFICATE_FILE_NAME absolute path', { notification: false })
+      certContent = fs.readFileSync(systemConfig.OAUTH.CERTIFICATE_FILE_NAME, 'utf8')
+    } else {
+      customLogger.logMessage('info', 'Token Issuer Constants.OAUTH.CERTIFICATE_FILE_NAME relative path', { notification: false })
+      certContent = fs.readFileSync(path.join(__dirname, '..', systemConfig.OAUTH.CERTIFICATE_FILE_NAME), 'utf8')
+    }
+  } else {
+    customLogger.logMessage('warn', 'No value specified for Constants.OAUTH.CERTIFICATE_FILE_NAME or Constants.OAUTH.EMBEDDED_CERTIFICATE. Auth will probably fail to validate the tokens', { notification: false })
+  }
+  customLogger.logMessage('info', `Token Issuer loaded: ${certContent}`, { notification: false })
+
+  jwtStrategyOpts.secretOrKey = certContent
+  // jwtStrategyOpts.secretOrKeyProvider = (request, rawJwtToken, done) => {
+  //   done(null, certContent)
+  // }
+  // jwtStrategyOpts.issuer = 'accounts.examplesoft.com'
+  // jwtStrategyOpts.audience = systemConfig.OAUTH.APP_OAUTH_CLIENT_KEY // audience: If defined, the token audience (aud) will be verified against this value.
+  const jwtStrategy = new JwtStrategy(jwtStrategyOpts, verifyCallback)
+  return jwtStrategy
+}
+
+/**
+ * Verifies the basic jwtPayload parameters, whatever it is needed before checking for the specific permissions
+ * requested by the req
+ *
+ * This validates the issuer, sub, that the jwt has groups, and the creates a client and authInfo and calls the callback
+ *
+ * @param {Request} req http request
+ * @param {Object} jwtPayload JWT Payload as an Object
+ * @param {function(err, client|false, authInfo)} done callback called with the verification results
+ */
+function verifyCallback (req, jwtPayload, done) {
+  if (!jwtPayload.sub) {
+    const message = 'Invalid Authentication info: no sub'
+    customLogger.logMessage('error', `OAuthHelper.verifyCallback received ${jwtPayload}. Verification failed because ${message}`, { notification: false })
+    return done(null, false, message)
+  }
+  if (!jwtPayload.iss) {
+    const message = 'Invalid Authentication info: no iss'
+    customLogger.logMessage('error', `OAuthHelper.verifyCallback received ${jwtPayload}. Verification failed because ${message}`, { notification: false })
+    return done(null, false, message)
+  }
+  const systemConfig = Config.getSystemConfig()
+  if (jwtPayload.iss !== systemConfig.OAUTH.OAUTH2_ISSUER && jwtPayload.iss !== systemConfig.OAUTH.OAUTH2_TOKEN_ISS) {
+    const message = `Invalid Authentication: wrong issuer ${jwtPayload.iss}, expecting: ${systemConfig.OAUTH.OAUTH2_ISSUER} or ${systemConfig.OAUTH.OAUTH2_TOKEN_ISS}`
+    customLogger.logMessage('error', `OAuthHelper.verifyCallback received ${jwtPayload}. Verification failed because ${message}`, { notification: false })
+    return done(null, false, message)
+  }
+  if (!jwtPayload.groups) {
+    const message = 'Invalid Authentication info: no groups'
+    customLogger.logMessage('error', `OAuthHelper.verifyCallback received ${jwtPayload}. Verification failed because ${message}`, { notification: false })
+    return done(null, false, message)
+  }
+  const foundMTA = jwtPayload.groups.includes(systemConfig.OAUTH.MTA_ROLE)
+  const foundPTA = jwtPayload.groups.includes(systemConfig.OAUTH.PTA_ROLE)
+  const foundEveryone = jwtPayload.groups.includes(systemConfig.OAUTH.EVERYONE_ROLE)
+  const client = { name: jwtPayload.sub, dfspId: jwtPayload.dfspId }
+  const roles = { mta: foundMTA, pta: foundPTA, everyone: foundEveryone }
+  for (const group of jwtPayload.groups) {
+    roles[group] = true
+  }
+  const authInfo = { roles }
+  return done(null, client, authInfo)
+}
+
+/**
+ * Creates a passport OAUth2 authenticating middleware
+ *
+ * @returns a connect middleware that handles OAuth2
+ */
+function getOAuth2Middleware () {
+  const jwtStrategy = createJwtStrategy()
+  passport.use(jwtStrategy)
+}
+
+const handleMiddleware = () => {
+  if (Config.getSystemConfig().OAUTH && Config.getSystemConfig().OAUTH.AUTH_ENABLED) {
+    customLogger.logMessage('info', 'Enabling OAUTH', { notification: false })
+    getOAuth2Middleware()
+  } else {
+    customLogger.logMessage('info', 'NOT enabling OAUTH', { notification: false })
+  }
+}
+
+/**
+ * Validates that the user has the required permissions to execute the operation.
+ *
+ * callback accepts one
+ * argument - an Error if unauthorized. The Error may include "message",
+ * "state", and "code" fields to be conveyed to the client in the response
+ * body and a "headers" field containing an object representing headers
+ * to be set on the response to the client. In addition, if the Error has
+ * a statusCode field, the response statusCode will be set to match -
+ * otherwise, the statusCode will be set to 403.
+ *
+ * @param {Request} req HTTP request. req.user and req.authInfo come from the passport verify callback (`return done(null, client, authInfo)`)
+ * @param {SecurityDefiniton} securityDefinition SecurityDefiniton from the swagger doc
+ * @param {String} scopes scopes required for this operation from the operation definition in the Swagger doc. Same as req.swagger.security[0].OAuth2
+ * @param {(error)} callback function to call with the result. If unauthorized, send the error.
+ */
+
+module.exports = {
+  getOAuth2Middleware,
+  handleMiddleware,
+  cookieExtractor,
+  createJwtStrategy,
+  verifyCallback
+}

package/src/lib/oauth/OAuthValidator.js

@@ -0,0 +1,118 @@
+/*****
+ License
+ --------------
+ Copyright © 2020-2025 Mojaloop Foundation
+ The Mojaloop files are made available by the Mojaloop Foundation under the Apache License, Version 2.0 (the "License") and you may not use these files except in compliance with the License. You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, the Mojaloop files are distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
+
+ Contributors
+ --------------
+ This is the official list of the Mojaloop project contributors for this file.
+ Names of the original copyright holders (individuals or organizations)
+ should be listed with a '*' in the first column. People who have
+ contributed from an organization can be listed under the organization
+ that actually holds the copyright for their contributions (see the
+ Mojaloop Foundation for an example). Those individuals should have
+ their names indented and be marked with a '-'. Email address can be added
+ optionally within square brackets <email>.
+
+ * Mojaloop Foundation
+ - Name Surname <name.surname@mojaloop.io>
+
+ * ModusBox
+ * Vijay Kumar Guthi <vijaya.guthi@modusbox.com> (Original Author)
+ --------------
+ ******/
+
+const Config = require('../config')
+const Utils = require('../utils')
+const path = require('path')
+const customLogger = require('../requestLogger')
+const { promisify } = require('util')
+const jwt = require('jsonwebtoken')
+const readFileAsync = Utils.readFileAsync
+
+const verifyToken = async (token) => {
+  const systemConfig = Config.getSystemConfig()
+
+  let certContent
+  if (systemConfig.OAUTH.EMBEDDED_CERTIFICATE) {
+    customLogger.logMessage('info', 'Setting Token Issuer certificate from Constants.OAUTH.EMBEDDED_CERTIFICATE', { notification: false })
+    certContent = systemConfig.OAUTH.EMBEDDED_CERTIFICATE
+  } else if (systemConfig.OAUTH.CERTIFICATE_FILE_NAME) {
+    customLogger.logMessage('info', `Setting Token Issuer certificate from Constants.OAUTH.CERTIFICATE_FILE_NAME: ${systemConfig.OAUTH.CERTIFICATE_FILE_NAME}`, { notification: false })
+    if (systemConfig.OAUTH.CERTIFICATE_FILE_NAME.startsWith('/')) {
+      customLogger.logMessage('info', 'Token Issuer Constants.OAUTH.CERTIFICATE_FILE_NAME absolute path', { notification: false })
+      certContent = await readFileAsync(systemConfig.OAUTH.CERTIFICATE_FILE_NAME, 'utf8')
+    } else {
+      customLogger.logMessage('info', 'Token Issuer Constants.OAUTH.CERTIFICATE_FILE_NAME relative path', { notification: false })
+      certContent = await readFileAsync(path.join(__dirname, '..', systemConfig.OAUTH.CERTIFICATE_FILE_NAME), 'utf8')
+    }
+  } else {
+    customLogger.logMessage('warn', 'No value specified for Constants.OAUTH.CERTIFICATE_FILE_NAME or Constants.OAUTH.EMBEDDED_CERTIFICATE. Auth will probably fail to validate the tokens', { notification: false })
+  }
+  customLogger.logMessage('info', `Token Issuer loaded: ${certContent}`, { notification: false })
+  const jwtOpts = {}
+  // jwtOpts.audience = systemConfig.OAUTH.APP_OAUTH_CLIENT_KEY // audience: If defined, the token audience (aud) will be verified against this value.
+  // const jwtStrategy = new JwtStrategy(jwtOpts, verifyCallback)
+  const jwtPayload = await promisify(jwt.verify)(token, certContent, jwtOpts)
+  additionalVerification(jwtPayload)
+  const dfspId = getDfspIdFromClientToken(jwtPayload)
+  return {
+    dfspId,
+    decodedToken: jwtPayload
+  }
+}
+
+// function getDfspIdFromUserToken (jwtPayload) {
+//   let dfspId = null
+//   if (jwtPayload.dfspId) {
+//     dfspId = jwtPayload.dfspId
+//   } else {
+//     const dfspGroup = jwtPayload.groups.find(groupName => groupName.startsWith('Application/DFSP:'))
+//     if (dfspGroup) {
+//       dfspId = dfspGroup.replace('Application/DFSP:', '')
+//     }
+//   }
+//   return dfspId
+// }
+
+function getDfspIdFromClientToken (jwtPayload) {
+  return jwtPayload.clientId
+}
+
+function additionalVerification (jwtPayload) {
+  if (!jwtPayload.sub) {
+    const message = 'Invalid Authentication info: no sub'
+    customLogger.logMessage('error', `OAuthHelper.verifyCallback received ${jwtPayload}. Verification failed because ${message}`, { notification: false })
+    throw (new Error(message))
+  }
+  if (!jwtPayload.iss) {
+    const message = 'Invalid Authentication info: no iss'
+    customLogger.logMessage('error', `OAuthHelper.verifyCallback received ${jwtPayload}. Verification failed because ${message}`, { notification: false })
+    throw (new Error(message))
+  }
+  // const systemConfig = Config.getSystemConfig()
+  // if (jwtPayload.iss !== systemConfig.OAUTH.OAUTH2_ISSUER && jwtPayload.iss !== systemConfig.OAUTH.OAUTH2_TOKEN_ISS) {
+  //   const message = `Invalid Authentication: wrong issuer ${jwtPayload.iss}, expecting: ${systemConfig.OAUTH.OAUTH2_ISSUER} or ${systemConfig.OAUTH.OAUTH2_TOKEN_ISS}`
+  //   customLogger.logMessage('error', `OAuthHelper.verifyCallback received ${jwtPayload}. Verification failed because ${message}`, { notification: false })
+  //   throw (new Error(message))
+  // }
+  // if (!jwtPayload.groups) {
+  //   const message = 'Invalid Authentication info: no groups'
+  //   customLogger.logMessage('error', `OAuthHelper.verifyCallback received ${jwtPayload}. Verification failed because ${message}`, { notification: false })
+  //   throw (new Error(message))
+  // }
+  if (!jwtPayload.clientId) {
+    const message = 'There is no clientId specified'
+    customLogger.logMessage('error', `OAuthHelper.verifyCallback received ${jwtPayload}. Verification failed because ${message}`, { notification: false })
+    throw (new Error(message))
+  }
+}
+
+module.exports = {
+  verifyToken
+}

package/src/lib/oauth/Wso2Client.js

@@ -0,0 +1,64 @@
+/*****
+ License
+ --------------
+ Copyright © 2020-2025 Mojaloop Foundation
+ The Mojaloop files are made available by the Mojaloop Foundation under the Apache License, Version 2.0 (the "License") and you may not use these files except in compliance with the License. You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, the Mojaloop files are distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
+
+ Contributors
+ --------------
+ This is the official list of the Mojaloop project contributors for this file.
+ Names of the original copyright holders (individuals or organizations)
+ should be listed with a '*' in the first column. People who have
+ contributed from an organization can be listed under the organization
+ that actually holds the copyright for their contributions (see the
+ Mojaloop Foundation for an example). Those individuals should have
+ their names indented and be marked with a '-'. Email address can be added
+ optionally within square brackets <email>.
+
+ * Mojaloop Foundation
+ - Name Surname <name.surname@mojaloop.io>
+
+ * ModusBox
+ * Georgi Logodazhki <georgi.logodazhki@modusbox.com> (Original Author)
+ --------------
+ ******/
+
+'use strict'
+const Config = require('../config')
+const axios = require('axios')
+const customLogger = require('../requestLogger')
+
+exports.getToken = async (username, password) => {
+  const form = new URLSearchParams({
+    username,
+    password,
+    scope: 'openid',
+    grant_type: 'password'
+  })
+
+  try {
+    const Constants = Config.getSystemConfig()
+    const url = Constants.OAUTH.OAUTH2_ISSUER
+    const response = await axios.post(url, form.toString(), {
+      headers: {
+        'Content-Type': 'application/x-www-form-urlencoded'
+      },
+      auth: {
+        username: Constants.OAUTH.APP_OAUTH_CLIENT_KEY,
+        password: Constants.OAUTH.APP_OAUTH_CLIENT_SECRET
+      }
+    })
+
+    customLogger.logMessage('info', `Wso2Client.getToken received ${JSON.stringify(response.data)}`, { notification: false })
+    return response.data
+  } catch (error) {
+    if (error.response?.status === 400 && error.response?.data?.message.includes('Authentication failed')) {
+      throw new Error(`Authentication failed for user ${username}`)
+    }
+    throw error
+  }
+}

package/src/lib/objectStore/inMemoryImpl.js

@@ -0,0 +1,50 @@
+/*****
+ License
+ --------------
+ Copyright © 2020-2025 Mojaloop Foundation
+ The Mojaloop files are made available by the Mojaloop Foundation under the Apache License, Version 2.0 (the "License") and you may not use these files except in compliance with the License. You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, the Mojaloop files are distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
+
+ Contributors
+ --------------
+ This is the official list of the Mojaloop project contributors for this file.
+ Names of the original copyright holders (individuals or organizations)
+ should be listed with a '*' in the first column. People who have
+ contributed from an organization can be listed under the organization
+ that actually holds the copyright for their contributions (see the
+ Mojaloop Foundation for an example). Those individuals should have
+ their names indented and be marked with a '-'. Email address can be added
+ optionally within square brackets <email>.
+
+ * Mojaloop Foundation
+ - Name Surname <name.surname@mojaloop.io>
+
+ * ModusBox
+ * Vijaya Kumar Guthi <vijaya.guthi@modusbox.com> (Original Author)
+ --------------
+ ******/
+
+const storedObject = {
+  transactions: {}
+}
+
+const set = async (key, value) => {
+  storedObject[key] = { ...value }
+}
+
+const get = async (key) => {
+  return { ...storedObject[key] }
+}
+
+const init = async () => {
+  return null
+}
+
+module.exports = {
+  set,
+  get,
+  init
+}

package/src/lib/objectStore/objectStoreInterface.js

@@ -0,0 +1,51 @@
+/*****
+ License
+ --------------
+ Copyright © 2020-2025 Mojaloop Foundation
+ The Mojaloop files are made available by the Mojaloop Foundation under the Apache License, Version 2.0 (the "License") and you may not use these files except in compliance with the License. You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, the Mojaloop files are distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
+
+ Contributors
+ --------------
+ This is the official list of the Mojaloop project contributors for this file.
+ Names of the original copyright holders (individuals or organizations)
+ should be listed with a '*' in the first column. People who have
+ contributed from an organization can be listed under the organization
+ that actually holds the copyright for their contributions (see the
+ Mojaloop Foundation for an example). Those individuals should have
+ their names indented and be marked with a '-'. Email address can be added
+ optionally within square brackets <email>.
+
+ * Mojaloop Foundation
+ - Name Surname <name.surname@mojaloop.io>
+
+ * ModusBox
+ * Vijaya Kumar Guthi <vijaya.guthi@modusbox.com> (Original Author)
+ --------------
+ ******/
+
+const objectStoreImpl = require('./inMemoryImpl')
+
+const set = async (key, value) => {
+  // console.log('### OBJECT_STORE #### Setting key', key, 'Value', value )
+  await objectStoreImpl.set(key, value)
+}
+
+const get = async (key) => {
+  const value = await objectStoreImpl.get(key)
+  // console.log('### OBJECT_STORE #### Getting key', key, 'Value', value )
+  return value
+}
+
+const init = async () => {
+  await objectStoreImpl.init()
+}
+
+module.exports = {
+  set,
+  get,
+  init
+}

package/src/lib/objectStore.js

@@ -0,0 +1,122 @@
+/*****
+ License
+ --------------
+ Copyright © 2020-2025 Mojaloop Foundation
+ The Mojaloop files are made available by the Mojaloop Foundation under the Apache License, Version 2.0 (the "License") and you may not use these files except in compliance with the License. You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, the Mojaloop files are distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
+
+ Contributors
+ --------------
+ This is the official list of the Mojaloop project contributors for this file.
+ Names of the original copyright holders (individuals or organizations)
+ should be listed with a '*' in the first column. People who have
+ contributed from an organization can be listed under the organization
+ that actually holds the copyright for their contributions (see the
+ Mojaloop Foundation for an example). Those individuals should have
+ their names indented and be marked with a '-'. Email address can be added
+ optionally within square brackets <email>.
+
+ * Mojaloop Foundation
+ - Name Surname <name.surname@mojaloop.io>
+
+ * ModusBox
+ * Georgi Logodazhki <georgi.logodazhki@modusbox.com>
+ * Vijaya Kumar Guthi <vijaya.guthi@modusbox.com> (Original Author)
+ --------------
+ ******/
+
+const _ = require('lodash')
+
+const storedObject = {
+  data: {
+    transactions: {},
+    inboundEnvironment: {},
+    requests: {},
+    callbacks: {}
+  }
+}
+
+const init = (key, user) => {
+  const context = user ? user.dfspId : 'data'
+  if (!storedObject[context]) {
+    storedObject[context] = {}
+  }
+  if (!storedObject[context][key]) {
+    storedObject[context][key] = {}
+  }
+  return context
+}
+
+const set = (key, value, user) => {
+  const context = init(key, user)
+  storedObject[context][key] = { ...value }
+}
+
+const get = (key, item, user) => {
+  const context = init(key, user)
+  if (item) {
+    if (storedObject[context][key][item]) {
+      return { ...storedObject[context][key][item] }
+    }
+    return null
+  } else {
+    return { ...storedObject[context][key] }
+  }
+}
+
+const push = (key, item, value, user) => {
+  const context = init(key, user)
+  storedObject[context][key][item] = {
+    insertedDate: Date.now(),
+    data: JSON.parse(JSON.stringify(value))
+  }
+}
+
+const clear = (object, interval) => {
+  for (const context in storedObject) {
+    for (const item in storedObject[context][object]) {
+      const timeDiff = Date.now() - storedObject[context][object][item].insertedDate
+      if (timeDiff > interval) {
+        delete storedObject[context][object][item]
+      }
+    }
+  }
+}
+
+const popObject = (key, item, user) => {
+  const context = init(key, user)
+  if (Object.prototype.hasOwnProperty.call(storedObject[context][key], item)) {
+    const foundData = JSON.parse(JSON.stringify(storedObject[context][key][item].data))
+    delete storedObject[context][key][item]
+    return foundData
+  }
+  return null
+}
+
+const clearOldObjects = () => {
+  const interval = 10 * 60 * 1000
+  clear('transactions', interval)
+  clear('requests', interval)
+  clear('callbacks', interval)
+  clear('requestsHistory', interval)
+  clear('callbacksHistory', interval)
+}
+
+const initObjectStore = (initConfig = null) => {
+  if (initConfig) {
+    _.merge(storedObject.data, initConfig)
+  }
+  setInterval(clearOldObjects, 1000)
+}
+
+module.exports = {
+  set,
+  get,
+  initObjectStore,
+  push,
+  clear,
+  popObject
+}