wallet-core/packages/taler-wallet-core/src/bank-api-client.ts

/*
 This file is part of GNU Taler
 (C) 2022 Taler Systems S.A.

 GNU Taler is free software; you can redistribute it and/or modify it under the
 terms of the GNU General Public License as published by the Free Software
 Foundation; either version 3, or (at your option) any later version.

 GNU Taler is distributed in the hope that it will be useful, but WITHOUT ANY
 WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
 A PARTICULAR PURPOSE.  See the GNU General Public License for more details.

 You should have received a copy of the GNU General Public License along with
 GNU Taler; see the file COPYING.  If not, see <http://www.gnu.org/licenses/>
 */

/**
 * Client for the Taler (demo-)bank.
 */

/**
 * Imports.
 */
import {
  AmountString,
  buildCodecForObject,
  Codec,
  codecForAny,
  codecForString,
  encodeCrock,
  getRandomBytes,
  j2s,
  Logger,
  TalerErrorCode,
} from "@gnu-taler/taler-util";
import { TalerError } from "./errors.js";
import {
  HttpRequestLibrary,
  readSuccessResponseJsonOrErrorCode,
  readSuccessResponseJsonOrThrow,
} from "./index.browser.js";

const logger = new Logger("bank-api-client.ts");

export enum CreditDebitIndicator {
  Credit = "credit",
  Debit = "debit",
}

export interface BankAccountBalanceResponse {
  balance: {
    amount: AmountString;
    credit_debit_indicator: CreditDebitIndicator;
  };
}

export interface BankServiceHandle {
  readonly baseUrl: string;
  readonly bankAccessApiBaseUrl: string;
  readonly http: HttpRequestLibrary;
}

export interface BankUser {
  username: string;
  password: string;
  accountPaytoUri: string;
}

export interface WithdrawalOperationInfo {
  withdrawal_id: string;
  taler_withdraw_uri: string;
}

/**
 * FIXME: Rename, this is not part of the integration test harness anymore.
 */
export interface HarnessExchangeBankAccount {
  accountName: string;
  accountPassword: string;
  accountPaytoUri: string;
  wireGatewayApiBaseUrl: string;
}

/**
 * Helper function to generate the "Authorization" HTTP header.
 */
function makeBasicAuthHeader(username: string, password: string): string {
  const auth = `${username}:${password}`;
  const authEncoded: string = Buffer.from(auth).toString("base64");
  return `Basic ${authEncoded}`;
}

const codecForWithdrawalOperationInfo = (): Codec<WithdrawalOperationInfo> =>
  buildCodecForObject<WithdrawalOperationInfo>()
    .property("withdrawal_id", codecForString())
    .property("taler_withdraw_uri", codecForString())
    .build("WithdrawalOperationInfo");

export namespace BankApi {
  // FIXME: Move to BankAccessApi?!
  export async function registerAccount(
    bank: BankServiceHandle,
    username: string,
    password: string,
  ): Promise<BankUser> {
    const url = new URL("testing/register", bank.bankAccessApiBaseUrl);
    const resp = await bank.http.postJson(url.href, { username, password });
    let paytoUri = `payto://x-taler-bank/localhost/${username}`;
    if (resp.status !== 200 && resp.status !== 202 && resp.status !== 204) {
      logger.error(`${j2s(await resp.json())}`);
      throw TalerError.fromDetail(
        TalerErrorCode.GENERIC_UNEXPECTED_REQUEST_ERROR,
        {
          httpStatusCode: resp.status,
        },
      );
    }
    try {
      // Pybank has no body, thus this might throw.
      const respJson = await resp.json();
      // LibEuFin demobank returns payto URI in response
      if (respJson.paytoUri) {
        paytoUri = respJson.paytoUri;
      }
    } catch (e) {
      // Do nothing
    }
    return {
      password,
      username,
      accountPaytoUri: paytoUri,
    };
  }

  // FIXME: Move to BankAccessApi?!
  export async function createRandomBankUser(
    bank: BankServiceHandle,
  ): Promise<BankUser> {
    const username = "user-" + encodeCrock(getRandomBytes(10)).toLowerCase();
    const password = "pw-" + encodeCrock(getRandomBytes(10)).toLowerCase();
    return await registerAccount(bank, username, password);
  }

  export async function adminAddIncoming(
    bank: BankServiceHandle,
    params: {
      exchangeBankAccount: HarnessExchangeBankAccount;
      amount: string;
      reservePub: string;
      debitAccountPayto: string;
    },
  ) {
    let maybeBaseUrl = bank.baseUrl;
    let url = new URL(
      `taler-wire-gateway/${params.exchangeBankAccount.accountName}/admin/add-incoming`,
      maybeBaseUrl,
    );
    await bank.http.postJson(
      url.href,
      {
        amount: params.amount,
        reserve_pub: params.reservePub,
        debit_account: params.debitAccountPayto,
      },
      {
        headers: {
          Authorization: makeBasicAuthHeader(
            params.exchangeBankAccount.accountName,
            params.exchangeBankAccount.accountPassword,
          ),
        },
      },
    );
  }

  export async function confirmWithdrawalOperation(
    bank: BankServiceHandle,
    bankUser: BankUser,
    wopi: WithdrawalOperationInfo,
  ): Promise<void> {
    const url = new URL(
      `accounts/${bankUser.username}/withdrawals/${wopi.withdrawal_id}/confirm`,
      bank.bankAccessApiBaseUrl,
    );
    logger.info(`confirming withdrawal operation via ${url.href}`);
    const resp = await bank.http.postJson(
      url.href,
      {},
      {
        headers: {
          Authorization: makeBasicAuthHeader(
            bankUser.username,
            bankUser.password,
          ),
        },
      },
    );

    logger.info(`response status ${resp.status}`);
    const respJson = await readSuccessResponseJsonOrThrow(resp, codecForAny());

    // FIXME: We don't check the status here!
  }

  export async function abortWithdrawalOperation(
    bank: BankServiceHandle,
    bankUser: BankUser,
    wopi: WithdrawalOperationInfo,
  ): Promise<void> {
    const url = new URL(
      `accounts/${bankUser.username}/withdrawals/${wopi.withdrawal_id}/abort`,
      bank.bankAccessApiBaseUrl,
    );
    const resp = await bank.http.postJson(
      url.href,
      {},
      {
        headers: {
          Authorization: makeBasicAuthHeader(
            bankUser.username,
            bankUser.password,
          ),
        },
      },
    );
    await readSuccessResponseJsonOrThrow(resp, codecForAny());
  }
}

export namespace BankAccessApi {
  export async function getAccountBalance(
    bank: BankServiceHandle,
    bankUser: BankUser,
  ): Promise<BankAccountBalanceResponse> {
    const url = new URL(
      `accounts/${bankUser.username}`,
      bank.bankAccessApiBaseUrl,
    );
    const resp = await bank.http.get(url.href, {
      headers: {
        Authorization: makeBasicAuthHeader(
          bankUser.username,
          bankUser.password,
        ),
      },
    });
    return await resp.json();
  }

  export async function createWithdrawalOperation(
    bank: BankServiceHandle,
    bankUser: BankUser,
    amount: string,
  ): Promise<WithdrawalOperationInfo> {
    const url = new URL(
      `accounts/${bankUser.username}/withdrawals`,
      bank.bankAccessApiBaseUrl,
    );
    const resp = await bank.http.postJson(
      url.href,
      {
        amount,
      },
      {
        headers: {
          Authorization: makeBasicAuthHeader(
            bankUser.username,
            bankUser.password,
          ),
        },
      },
    );
    return readSuccessResponseJsonOrThrow(
      resp,
      codecForWithdrawalOperationInfo(),
    );
  }
}
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`/*`
			`This file is part of GNU Taler`
			`(C) 2022 Taler Systems S.A.`

			`GNU Taler is free software; you can redistribute it and/or modify it under the`
			`terms of the GNU General Public License as published by the Free Software`
			`Foundation; either version 3, or (at your option) any later version.`

			`GNU Taler is distributed in the hope that it will be useful, but WITHOUT ANY`
			`WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR`
			`A PARTICULAR PURPOSE. See the GNU General Public License for more details.`

			`You should have received a copy of the GNU General Public License along with`
			`GNU Taler; see the file COPYING. If not, see <http://www.gnu.org/licenses/>`
			`*/`

			`/**`
			`* Client for the Taler (demo-)bank.`
			`*/`

			`/**`
			`* Imports.`
			`*/`
			`import {`
			`AmountString,`
			`buildCodecForObject,`
			`Codec,`
wallet: t_s/d_us migration 2022-03-18 15:32:41 +01:00			`codecForAny,`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`codecForString,`
			`encodeCrock,`
			`getRandomBytes,`
wallet: db-less benchmarking 2022-03-15 17:51:05 +01:00			`j2s,`
			`Logger,`
wallet: improve error handling and error codes 2022-03-22 21:16:38 +01:00			`TalerErrorCode,`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`} from "@gnu-taler/taler-util";`
wallet: improve error handling and error codes 2022-03-22 21:16:38 +01:00			`import { TalerError } from "./errors.js";`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`import {`
			`HttpRequestLibrary,`
			`readSuccessResponseJsonOrErrorCode,`
			`readSuccessResponseJsonOrThrow,`
			`} from "./index.browser.js";`

wallet: db-less benchmarking 2022-03-15 17:51:05 +01:00			`const logger = new Logger("bank-api-client.ts");`

wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`export enum CreditDebitIndicator {`
			`Credit = "credit",`
			`Debit = "debit",`
			`}`

			`export interface BankAccountBalanceResponse {`
			`balance: {`
			`amount: AmountString;`
			`credit_debit_indicator: CreditDebitIndicator;`
			`};`
			`}`

			`export interface BankServiceHandle {`
			`readonly baseUrl: string;`
use fakebank for integration tests 2022-08-23 22:30:05 +02:00			`readonly bankAccessApiBaseUrl: string;`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`readonly http: HttpRequestLibrary;`
			`}`

			`export interface BankUser {`
			`username: string;`
			`password: string;`
			`accountPaytoUri: string;`
			`}`

			`export interface WithdrawalOperationInfo {`
			`withdrawal_id: string;`
			`taler_withdraw_uri: string;`
			`}`

			`/**`
			`* FIXME: Rename, this is not part of the integration test harness anymore.`
			`*/`
			`export interface HarnessExchangeBankAccount {`
			`accountName: string;`
			`accountPassword: string;`
			`accountPaytoUri: string;`
			`wireGatewayApiBaseUrl: string;`
			`}`

			`/**`
			`* Helper function to generate the "Authorization" HTTP header.`
			`*/`
			`function makeBasicAuthHeader(username: string, password: string): string {`
			const auth = `${username}:${password}`;
			`const authEncoded: string = Buffer.from(auth).toString("base64");`
			return `Basic ${authEncoded}`;
			`}`

			`const codecForWithdrawalOperationInfo = (): Codec<WithdrawalOperationInfo> =>`
			`buildCodecForObject<WithdrawalOperationInfo>()`
			`.property("withdrawal_id", codecForString())`
			`.property("taler_withdraw_uri", codecForString())`
			`.build("WithdrawalOperationInfo");`

			`export namespace BankApi {`
use fakebank for integration tests 2022-08-23 22:30:05 +02:00			`// FIXME: Move to BankAccessApi?!`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`export async function registerAccount(`
			`bank: BankServiceHandle,`
			`username: string,`
			`password: string,`
			`): Promise<BankUser> {`
use fakebank for integration tests 2022-08-23 22:30:05 +02:00			`const url = new URL("testing/register", bank.bankAccessApiBaseUrl);`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`const resp = await bank.http.postJson(url.href, { username, password });`
			let paytoUri = `payto://x-taler-bank/localhost/${username}`;
integration tests: various fixes 2022-08-25 23:35:29 +02:00			`if (resp.status !== 200 && resp.status !== 202 && resp.status !== 204) {`
wallet: t_s/d_us migration 2022-03-18 15:32:41 +01:00			logger.error(`${j2s(await resp.json())}`);
wallet: improve error handling and error codes 2022-03-22 21:16:38 +01:00			`throw TalerError.fromDetail(`
			`TalerErrorCode.GENERIC_UNEXPECTED_REQUEST_ERROR,`
			`{`
			`httpStatusCode: resp.status,`
			`},`
			`);`
wallet: t_s/d_us migration 2022-03-18 15:32:41 +01:00			`}`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`try {`
wallet: improve error handling and error codes 2022-03-22 21:16:38 +01:00			`// Pybank has no body, thus this might throw.`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`const respJson = await resp.json();`
wallet: improve error handling and error codes 2022-03-22 21:16:38 +01:00			`// LibEuFin demobank returns payto URI in response`
			`if (respJson.paytoUri) {`
			`paytoUri = respJson.paytoUri;`
			`}`
all retryInfo function in the same namespace, adding missing retryInfo increment 2022-05-18 19:41:51 +02:00			`} catch (e) {`
integration tests: one variable for pybank/libeufin switch 2022-06-01 10:14:23 +02:00			`// Do nothing`
all retryInfo function in the same namespace, adding missing retryInfo increment 2022-05-18 19:41:51 +02:00			`}`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`return {`
			`password,`
			`username,`
			`accountPaytoUri: paytoUri,`
			`};`
			`}`

use fakebank for integration tests 2022-08-23 22:30:05 +02:00			`// FIXME: Move to BankAccessApi?!`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`export async function createRandomBankUser(`
			`bank: BankServiceHandle,`
			`): Promise<BankUser> {`
			`const username = "user-" + encodeCrock(getRandomBytes(10)).toLowerCase();`
			`const password = "pw-" + encodeCrock(getRandomBytes(10)).toLowerCase();`
			`return await registerAccount(bank, username, password);`
			`}`

			`export async function adminAddIncoming(`
			`bank: BankServiceHandle,`
			`params: {`
			`exchangeBankAccount: HarnessExchangeBankAccount;`
			`amount: string;`
			`reservePub: string;`
			`debitAccountPayto: string;`
			`},`
			`) {`
			`let maybeBaseUrl = bank.baseUrl;`
			`let url = new URL(`
			`taler-wire-gateway/${params.exchangeBankAccount.accountName}/admin/add-incoming`,
			`maybeBaseUrl,`
			`);`
			`await bank.http.postJson(`
			`url.href,`
			`{`
			`amount: params.amount,`
			`reserve_pub: params.reservePub,`
			`debit_account: params.debitAccountPayto,`
			`},`
			`{`
			`headers: {`
			`Authorization: makeBasicAuthHeader(`
			`params.exchangeBankAccount.accountName,`
			`params.exchangeBankAccount.accountPassword,`
			`),`
			`},`
			`},`
			`);`
			`}`

			`export async function confirmWithdrawalOperation(`
			`bank: BankServiceHandle,`
			`bankUser: BankUser,`
			`wopi: WithdrawalOperationInfo,`
			`): Promise<void> {`
			`const url = new URL(`
			`accounts/${bankUser.username}/withdrawals/${wopi.withdrawal_id}/confirm`,
use fakebank for integration tests 2022-08-23 22:30:05 +02:00			`bank.bankAccessApiBaseUrl,`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`);`
use fakebank for integration tests 2022-08-23 22:30:05 +02:00			logger.info(`confirming withdrawal operation via ${url.href}`);
			`const resp = await bank.http.postJson(`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`url.href,`
			`{},`
			`{`
			`headers: {`
			`Authorization: makeBasicAuthHeader(`
			`bankUser.username,`
			`bankUser.password,`
			`),`
			`},`
			`},`
			`);`
use fakebank for integration tests 2022-08-23 22:30:05 +02:00
			logger.info(`response status ${resp.status}`);
specify bank access API separately in tests 2022-08-25 18:34:25 +02:00			`const respJson = await readSuccessResponseJsonOrThrow(resp, codecForAny());`
use fakebank for integration tests 2022-08-23 22:30:05 +02:00
			`// FIXME: We don't check the status here!`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`}`

			`export async function abortWithdrawalOperation(`
			`bank: BankServiceHandle,`
			`bankUser: BankUser,`
			`wopi: WithdrawalOperationInfo,`
			`): Promise<void> {`
			`const url = new URL(`
			`accounts/${bankUser.username}/withdrawals/${wopi.withdrawal_id}/abort`,
integration tests: various fixes 2022-08-25 23:35:29 +02:00			`bank.bankAccessApiBaseUrl,`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`);`
specify bank access API separately in tests 2022-08-25 18:34:25 +02:00			`const resp = await bank.http.postJson(`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`url.href,`
			`{},`
			`{`
			`headers: {`
			`Authorization: makeBasicAuthHeader(`
			`bankUser.username,`
			`bankUser.password,`
			`),`
			`},`
			`},`
			`);`
specify bank access API separately in tests 2022-08-25 18:34:25 +02:00			`await readSuccessResponseJsonOrThrow(resp, codecForAny());`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`}`
			`}`

			`export namespace BankAccessApi {`
			`export async function getAccountBalance(`
			`bank: BankServiceHandle,`
			`bankUser: BankUser,`
			`): Promise<BankAccountBalanceResponse> {`
use fakebank for integration tests 2022-08-23 22:30:05 +02:00			`const url = new URL(`
			`accounts/${bankUser.username}`,
			`bank.bankAccessApiBaseUrl,`
			`);`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`const resp = await bank.http.get(url.href, {`
			`headers: {`
			`Authorization: makeBasicAuthHeader(`
			`bankUser.username,`
			`bankUser.password,`
			`),`
			`},`
			`});`
			`return await resp.json();`
			`}`

			`export async function createWithdrawalOperation(`
			`bank: BankServiceHandle,`
			`bankUser: BankUser,`
			`amount: string,`
			`): Promise<WithdrawalOperationInfo> {`
			`const url = new URL(`
			`accounts/${bankUser.username}/withdrawals`,
use fakebank for integration tests 2022-08-23 22:30:05 +02:00			`bank.bankAccessApiBaseUrl,`
wallet: towards db-less benchmarking, some refactoring 2022-03-14 18:31:30 +01:00			`);`
			`const resp = await bank.http.postJson(`
			`url.href,`
			`{`
			`amount,`
			`},`
			`{`
			`headers: {`
			`Authorization: makeBasicAuthHeader(`
			`bankUser.username,`
			`bankUser.password,`
			`),`
			`},`
			`},`
			`);`
			`return readSuccessResponseJsonOrThrow(`
			`resp,`
			`codecForWithdrawalOperationInfo(),`
			`);`
			`}`
			`}`