This repository contains the code for the streepaper payment system.
Check out the git submodules to load the wordpress, wpcli and parser git checkout mainrepositories:
git submodule update --init --recursiveCopy .env.example to .env via
cp .env.example /.envThen set KEYCLOAK_HOST=http://keycloak:8080/ in your .env
Copy docker/.env.parser.example to docker/.env.parser via
cp docker/.env.parser.example docker/.env.parserStart the application with Docker:
docker compose build
docker compose up -dGo to http://localhost:3000/api/hello/
Notes
- For developing in frontend or backend only, run this command
docker compose up -d augustin augustin-db augustin-db-test keycloak- To make the PDF-Parser run correctly check out description below.
- Temporary fix to remove wpcli file:
sudo rm docker/wpcli/.env.parser
Backend: localhost:3000
Wordpress: localhost:8090
Keycloak login mask: localhost:8080
PDF Parser: localhost:8070
Frontend / main webshop: localhost:8060
Visit http://localhost:3000/swagger/
To update swagger, install swagger
go install github.com/swaggo/swag/cmd/swag@latestRebuild swagger
cd app
swag init -g handlers/swagger.go --parseDependency --parseInternal --parseDepth 1Note: If the update does not show in your browser, reset cache.
Open the augustin shell in the container:
docker compose exec augustin bashRun linter within the augustin shell:
golint ./...Run tests within the augustin shell (sed is used to colorize the output, -p 1 is used to prevent parallel computing which causes problems with resetting the database for each test):
clear && go test ./... -p 1 -v -cover | sed ''/PASS/s//$(printf "\033[32mPASS\033[0m")/'' | sed ''/FAIL/s//$(printf "\033[31mFAIL\033[0m")/'' | sed ''/ERROR/s//$(printf "\033[31mERROR\033[0m")/''To run a specific Test Case:
go test ./... -p 1 -v -cover -run NameOfTestCaseTest coverage:
go test ./... -p 1 -coverprofile=cover.out
go tool cover -html cover.out -o cover.htmland then open the app/cover.html file in your browser.
Open SQL shell in the container (assuming the variables from .env.example are used):
docker exec -it augustin-db-test psql -U user -W product_apiAnd then enter password as password.
Run migrations within the augustin shell (see tern):
cd migrationsCreate a new migration:
tern new <migration_name>Apply all pending migrations:
tern migrateRevert last migration:
tern migrate --destination -1The e-mail templates are stored in the app/templates folder. Currently, the following templates are available:
digitalLicenceItemTemplate.html: This template is used to send the digital licence item to the customer after a successful purchase.
The password reset e-mail is sent by the Keycloak server and has to be configured there.
To send e-mails, you need to set the following environment variables in the .env file:
SMTP_SERVER=smtp.example.com
SMTP_PORT=587
SMTP_USERNAME=user
SMTP_PASSWORD=password
[email protected]For tunneling endpoints from the internet to your locaĺhost port, we use ngrok. If you keep using our demo account and stick with our code basis this command should do it in your terminal:
ngrok http --domain=workable-credible-mole.ngrok-free.app 3000When initializing the whole system, the database is being setup with three items (Newspapers, Donation and transaction cost) and default settings, which can be changed afterwards from the offices portal.
The only thing, which has to be done manually in production is to add at least one vendor to be able to pay online on this webshop with her license id.
The URL then looks like this: https:sample.domain/v/license-id
VS Code is our code editor of choice. Therefore, to develop in Go, we use the main VS Code Go extension. This enables a lot of features like formatting on save.
Further, we also lint on save by adding these two lines in our settings.json file for VS Code:
"go.lintOnSave": "package",
"go.lintTool": "golint"When variable CREATE_DEMO_DATA=true, demo data will be created during container creation. This data can be used for development purposes.
The keycloak server is available at http://localhost:8080 and the admin console at http://localhost:8080/auth/admin
The admin user for the master realm is admin and the password is admin
Additionaly there are the following users for the augustin realm:
| Username | Password | Role |
|---|---|---|
| test_nouser | Test123! | - |
| test_user | Test123! | magazin-1 |
| test_user_all | Test123! | magazin-1, magazin-2, magazin-3 |
| test_superuser | Test123! | admin |
| test_vendor | Test123! | vendor |
The default openid configuration is available at http://localhost:8080/auth/realms/augustin/.well-known/openid-configuration
The default openid client is wordpress and the client secret is 84uZmW6FlEPgvUd201QUsWRmHzUIamZB
Keycloak Groups, ech group has a corresponding role:
| Group | Description |
|---|---|
| admin | Admins can access the admin portal |
| vendor | Vendors can access the vendor portal |
| customer | Customers can access the newspaper portal |
| all_newspapers | Customers can access all newspapers |
| magazin-1 | Customers can access magazin-1 |
| magazin-2 | Customers can access magazin-2 |
| magazin-3 | Customers can access magazin-3 |
Install the OpenID Connect Generic plugin and configure it as follows:
| Setting | Value |
|---|---|
| Login Type | Auto Login - SSO |
| Client ID | wordpress |
| Client Secret Key | 84uZmW6FlEPgvUd201QUsWRmHzUIamZB |
| OpenID Scope | email profile openid offline_access roles |
| Login Endpoint URL | http://localhost:8080/realms/augustin/protocol/openid-connect/auth |
| Userinfo Endpoint URL | http://localhost:8080/realms/augustin/protocol/openid-connect/userinfo |
| Token Validation Endpoint URL | http://localhost:8080/realms/augustin/protocol/openid-connect/token |
| End Session Endpoint URL | http://localhost:8080/realms/augustin/protocol/openid-connect/logout |
| Enforce Privacy | Yes |
Install the plugin Groups and the plugin Augustin and it should work automatically.
After running the application with docker compose, the keycloak configs can be exported with the following command:
docker compose exec keycloak /opt/keycloak/bin/kc.sh export --dir /tmp/exportthe exported configs are available in the docker/keycloak/export folder.
curl --location --request POST 'http://localhost:8080/realms/augustin/protocol/openid-connect/token' --header 'Content-Type: application/x-www-form-urlencoded' --data-urlencode 'client_id=frontend' --data-urlencode 'grant_type=password' --data-urlencode 'username=user001' --data-urlencode 'password=Test123!' --data-urlencode 'scope=openid'The wpcli container resets the wordpress installation on every start. This will delete all data in the database and install a fresh wordpress installation.
The pdf parser needs a wp app password in order to autopublish the articles to the wordpress. This password is stored in the ./docker/.env.parser file and is used by the parser to authenticate itself against the wordpress. Either you can create a new app password by copying ./docker/.env.parser.example to ./docker/.env.parser or run the wpcli container to set up a new one. Note: the wpcli container resets the wordpress installation on every start. This will delete all data in the database and install a fresh wordpress installation.
After setting an app password, the PDF-Parser container has to be deployed again with docker compose up -d parser.
This is due to the reason that the docker container 'wpcli' sets new environment variables, which have to be set again for the PDF-Parser.
In case your PDF-Parser does not work, make sure everything ran fine in yout wpcli container or might restart it via docker compose restart wpcliand then run docker compose up -d parser
"invalid character '}' looking for beginning of object key string
-> You might have a false commY at the end of your json
All the following credentials are needed in your .env file.
VIVA_WALLET_SOURCE_CODE="6343"
VIVA_WALLET_SMART_CHECKOUT_CLIENT_ID="e76rpevturffktne7n18v0oxyj3m6s532r1q4y4k4xx13.apps.vivapayments.com"
VIVA_WALLET_SMART_CHECKOUT_CLIENT_KEY="qh08FkU0dF8vMwH76jGAuBmWib9WsP"
VIVA_WALLET_VERIFICATION_KEY="94FA5D3BA6DBC79DC56E6BC7E2F8A3F25A566EAE"
VIVA_WALLET_API_URL="https://demo-api.vivapayments.com"
VIVA_WALLET_ACCOUNTS_URL="https://demo-accounts.vivapayments.com"
To get your Source code, follow the instructions here: https://developer.vivawallet.com/getting-started/create-a-payment-source/payment-source-for-online-payments/ In case this did not help, try this link: https://help.vivawallet.com/en/articles/5119253-where-can-i-find-the-source-code
To get your Smart Checkout Client ID and Client Key, follow the instructions here: https://developer.vivawallet.com/getting-started/find-your-account-credentials/client-smart-checkout-credentials/
To create a new verification key, follow the instructions here: https://developer.vivawallet.com/webhooks-for-payments/#generate-a-webhook-verification-key
From the documents on how to create a Base64-encoded header.
When you pass your credentials in the header, you must Base64-encode them in the format Merchant_ID:API_Key. You can then use these encoded values as follows:
Authorization: Basic ZmJmMWUwOTAtNjVkZS00Yzc1LWI1ODAtZDlkOWJjNDk0YWQyOldEdi1WKw==
With a client such as cURL, you pass your encoded credentials in the header with the -H option, as the following example shows:
To have an overview which transaction type id means what, follow this link: https://developer.vivawallet.com/integration-reference/response-codes/#transactiontypeid-parameter
- URL:
http://localhost:3000/api/transaction/ - POST Request
- Sample cURL call
curl --header "Content-Type: application/json" \
--request POST \
--data '{"amount":2500}' \
http://localhost:3000/api/transaction/- Here the amount is in cents, so this call requests to charge 2500 cents which is 25€
- If successful, response in demo instance is the checkout URL:
{"SmartCheckoutURL":"https://demo.vivapayments.com/web/checkout?ref=8958019584072636"} - Extract link and paste it to your browser or if possible click on it to move forward to next step
- After being redirected to the VivaWallet checkout URL, you need to use a VivaWallet Test Card to have a successful process.
- NOTE: First option with Visa card did not work for me but third card option for Mastercard did.
- After a successful transaction the user is being redirected to a success page, which is right now
https://local.com/successand will be changed towards production. - NOTE: The whole sample URL, looks something like this
https://local.com/success?t=d87ea0e6-91da-4312-abdf-67ebb84ee981&s=5857961245421135&lang=en-GB&eventId=0&eci=1 - Here the frontend (or developer for testing purposes) has to extract the transactionID, which is t or in this sample URL above
d87ea0e6-91da-4312-abdf-67ebb84ee981
When the .env variable Development is set to true, every order is automatically being verified.
To see the 'Payment-Confirmation-Page', simply paste the query of the redirected link i.e. something like success?t=d87ea0e6-91da-4312-abdf-67ebb84ee981&s=5857961245421135&lang=en-GB&eventId=0&eci=1 and paste it after localhost:5173.
- It is the frontends task to extract the transactionID from the URL to verify the transaction via new endpoint
- URL: http://localhost:3000/api/verification/
- POST Request
- Sample cURL call
curl --header "Content-Type: application/json" \ --request POST \ --data '{"transactionid":"0a384178-d329-4d54-9474-75c4adff51c0"}' \ http://localhost:3000/api/verification/
- If successful, response is:
{"Verification":true}-> checkout process is successfully finished - If unsuccessfil, response is:
{"Verification":false}-> this step is still unclear, in which circumstances a user can be redirected to the success page but her transaction cannot be verified
When the Verification key is set up, then weebhooks have to be set:
- Transaction Failed -> /api/webhooks/vivawallet/failure/
- Transaction Price Calculated -> /api/webhooks/vivawallet/price/
- Transaction Payment Created -> /api/webhooks/vivawallet/success/
The software has a matrix and email error notification system. To use it, you need to set the following environment variables:
For email:
NOTIFICATIONS_EMAIL_ENABLED=true
NOTIFICATIONS_EMAIL_SERVER=
NOTIFICATIONS_EMAIL_PORT=587 #ssl aka 465 not supported
[email protected]
NOTIFICATIONS_EMAIL_USER=user
NOTIFICATIONS_EMAIL_PASSWORD=password
[email protected] #multiple receivers are possible, separated by comma
NOTIFICATIONS_PREFIX=augustinFor Matrix:
NOTIFICATIONS_MATRIX_ENABLED=true
NOTIFICATIONS_MATRIX_HOME_SERVER=matrix.org
NOTIFICATIONS_MATRIX_ACCESS_TOKEN=
NOTIFICATIONS_MATRIX_ROOM_ID=
NOTIFICATIONS_MATRIX_USER_ID=To enable the digital license items, you need to set the following environment variables:
SEND_CUSTOMER_EMAIL=true
ONLINE_PAPER_URL=http://augustin.localTo enable sentry error logging please fill the env variables in .env with a valid sentry dsn. The system works perfectly fine with self hosted alternatives of sentry like GlitchTip.
SENTRY_DSN= # Backend sentry
VITE_SENTRY_DSN= # Frontend sentry