wip

nicolasburtey · nicolasburtey · commit 263498b1e0cd · 2024-04-30T13:27:17.000-06:00
diff --git a/core/api/package.json b/core/api/package.json
@@ -182,6 +182,7 @@
     "pino-pretty": "^10.3.1",
     "prettier": "^3.2.5",
     "protoc-gen-js": "^3.21.2",
+    "puppeteer": "^22.7.1",
     "react": "^18.2.0",
     "spectaql": "^2.3.1",
     "tiny-secp256k1": "^2.2.3",
diff --git a/core/api/test/integration/app/user/consent-list.spec.ts b/core/api/test/integration/app/user/consent-list.spec.ts
@@ -1,95 +1,120 @@
 import { consentList } from "@/services/hydra"
-import axios from "axios"
+import { sleep } from "@/utils"
+import puppeteer from "puppeteer"
 
 import { createUserAndWalletFromPhone, getUserIdByPhone, randomPhone } from "test/helpers"
 
 let userId: UserId
 const phone = randomPhone()
 // const phone = "+14152991378" as PhoneNumber
 
-const redirectUri = "http://localhost/callback"
-const scope = "offline read write"
-const grant_types = ["authorization_code", "refresh_token"]
-
 beforeAll(async () => {
   await createUserAndWalletFromPhone(phone)
   userId = await getUserIdByPhone(phone)
 })
 
-async function createOAuthClient() {
-  const hydraAdminUrl = "http://localhost:4445/admin/clients"
+async function performOAuthLogin() {
+  // create oauth2 client
+
+  const browser = await puppeteer.launch()
+  // const browser = await puppeteer.launch({ headless: true })
+  const page = await browser.newPage()
+
+  // Navigate the page to a URL
+  await page.goto("http://localhost:3001/api/auth/signin")
+
+  await page.waitForSelector(".button")
+
+  // Click the button with the text "Sign in with Blink"
+  await page.click(".button")
+
+  console.log("New URL:", page.url())
+
+  await page.waitForSelector('[data-testid="sign_in_with_phone_btn"]')
+  await page.waitForFunction(
+    "document.querySelector(\"[data-testid='sign_in_with_phone_btn']\").isConnected",
+  )
+  await sleep(500)
+  await page.click('[data-testid="sign_in_with_phone_btn"]')
+
+  await page.waitForSelector('[data-testid="phone_number_input"]')
+  await page.type('[data-testid="phone_number_input"]', phone)
+
+  console.log("phone", phone)
+
+  await page.click("#accept")
+
+  console.log("New URL:", page.url())
+
+  await sleep(500)
+
+  await page.screenshot({ path: "screenshot1.png" })
+
+  page.on("request", (request) => {
+    console.log(request.url())
+  })
+
+  page.on("response", (response) => {
+    console.log(response.url())
+  })
+
+  await page.waitForSelector("#code")
+  await page.type("#code", "000000", { delay: 100 })
+
+  await sleep(3000)
+  await page.screenshot({ path: "screenshot2.png" })
 
   try {
-    const response = await axios.post(hydraAdminUrl, {
-      client_name: "integration_test",
-      grant_types,
-      response_types: ["code", "id_token"],
-      redirect_uris: [redirectUri],
-      scope,
-      skip_consent: true,
-    })
-
-    const clientId = response.data.client_id
-    const clientSecret = response.data.client_secret
-
-    return { clientId, clientSecret }
-  } catch (error) {
-    console.error("Error creating OAuth client:", error.response)
-  }
-}
+    await page.click('[data-testid="verification_code_submit_btn"]')
+  } catch {}
 
-async function performOAuthLogin({
-  clientId,
-  clientSecret,
-}: {
-  clientId: string
-  clientSecret: string
-}) {
-  // create oauth2 client
+  await page.screenshot({ path: "screenshot3.png" })
+  await sleep(3000)
 
-  const responseType = "code"
-  const randomState = "MKfNw-q60talMJ4GU_h1kHFvcPtnQkZI0XLpTkHvJL4"
+  await page.screenshot({ path: "screenshot4.png" })
+  await sleep(3000)
+  await page.screenshot({ path: "screenshot5.png" })
 
-  const authUrl = `http://localhost:4444/oauth2/auth?response_type=${responseType}&client_id=${clientId}&redirect_uri=${encodeURIComponent(redirectUri)}&scope=${encodeURIComponent(scope)}&state=${randomState}`
+  // const authUrl = `http://localhost:4444/oauth2/auth?response_type=${responseType}&client_id=${clientId}&redirect_uri=${encodeURIComponent(redirectUri)}&scope=${encodeURIComponent(scope)}&state=${randomState}`
 
   // https://oauth.blink.sv/oauth2/auth?client_id=73ae7c3e-e526-412a-856c-25d1ae0cbc55&scope=read%20write&response_type=code&redirect_uri=https%3A%2F%2Fdashboard.blink.sv%2Fapi%2Fauth%2Fcallback%2Fblink&state=MKfNw-q60talMJ4GU_h1kHFvcPtnQkZI0XLpTkHvJL4
 
   // Simulate user going to the authorization URL and logging in
   // This part would require a real user interaction or a browser automation tool like puppeteer
 
-  let data
-  try {
-    const res = await axios.get(authUrl)
-    data = res.data
-  } catch (error) {
-    console.error("Error getting auth URL:", error)
-    return
-  }
+  // let data
+  // try {
+  //   const res = await axios.get(authUrl)
+  //   data = res.data
+  // } catch (error) {
+  //   console.error("Error getting auth URL:", error)
+  //   return
+  // }
 
   // You need to extract the code from the callback response
-  const code = data.code // Simplified: Actual extraction depends on your OAuth provider
-
-  console.log("data", data)
-  console.log("code", code)
-
-  try {
-    // Exchange the code for a token
-    const tokenResponse = await axios.post("http://localhost:4444/oauth2/token", {
-      code,
-      redirect_uri: redirectUri,
-      client_id: clientId,
-      client_secret: clientSecret,
-      grant_type: "authorization_code",
-    })
-
-    const accessToken = tokenResponse.data.access_token
-
-    // Use the access token to get user info or other secured resources
-    // Update the consent list as needed
-    return accessToken // This might be used for further secured requests
-  } catch (error) {
-    console.error("Error exchanging code for token:", error)
-  }
+  // const code = data.code // Simplified: Actual extraction depends on your OAuth provider
+
+  // console.log("data", data)
+  // console.log("code", code)
+
+  // try {
+  //   // Exchange the code for a token
+  //   const tokenResponse = await axios.post("http://localhost:4444/oauth2/token", {
+  //     code,
+  //     redirect_uri: redirectUri,
+  //     client_id: clientId,
+  //     client_secret: clientSecret,
+  //     grant_type: "authorization_code",
+  //   })
+
+  //   const accessToken = tokenResponse.data.access_token
+
+  //   // Use the access token to get user info or other secured resources
+  //   // Update the consent list as needed
+  //   return accessToken // This might be used for further secured requests
+  // } catch (error) {
+  //   console.error("Error exchanging code for token:", error)
+  // }
 }
 
 describe("Hydra", () => {
@@ -99,12 +124,7 @@ describe("Hydra", () => {
   })
 
   it("get consent list when the user had perform oauth2 login", async () => {
-    const res = await createOAuthClient()
-    if (!res) return
-    const { clientId, clientSecret } = res
-    console.log("clientId", clientId, "clientSecret", clientSecret)
-
-    const accessToken = await performOAuthLogin({ clientId, clientSecret })
+    const accessToken = await performOAuthLogin()
     console.log("accessToken", accessToken)
   })
 })
diff --git a/dev/bin/setup-hydra-client.sh b/dev/bin/setup-hydra-client.sh
@@ -21,7 +21,8 @@ hydra_cli create client \
     --format json \
     --scope read --scope write \
     --redirect-uri "$redirect_uri" > "${HYDRA_CLIENT_JSON}" \
-    --name "${hydra_client_name}"
+    --name "${hydra_client_name}" \
+    --skip-consent
 
 CLIENT_ID=$(jq -r '.client_id' < "${HYDRA_CLIENT_JSON}")
 CLIENT_SECRET=$(jq -r '.client_secret' < "${HYDRA_CLIENT_JSON}")
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
