Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build: release v6.71.0 #6635

Merged
merged 12 commits into from
Aug 17, 2023
Merged

build: release v6.71.0 #6635

merged 12 commits into from
Aug 17, 2023

Conversation

wanlingt
Copy link
Contributor

@wanlingt wanlingt commented Aug 17, 2023
edited by LinHuiqing
Loading

New

  • feat: platform api v1 - get and update webhook settings #6608
  • fix: remove space from receipt link email #6634
  • feat: display payment products on individual response page and csv download #6629
  • fix: default payment type to products #6633
  • fix: skip qty validation when multiqty is disabled #6624
  • feat: add logging to capture DNS resolution error #6631
  • chore: reduce toast duration to 4s #6630
  • fix: product item button check for payment is not enabled #6625
  • build: merge v6.70.0 into develop #6627
  • feat: add datafix script to convert payment_fields_snapshot from an array to an object #6628

Dependencies

  • fix(deps): bump zod from 3.21.4 to 3.22.1 in /shared #6626

Dev-Dependencies

Tests

feat: platform api v1 - get and update webhook settings #6608

@LinHuiqing

POST /api/public/v1/admin/forms/:formId/webhooksettings to retrieve webhook settings

curl --request POST \
  --url https://staging.form.gov.sg/api/public/v1/admin/forms/:formId/settings \
  --header 'Authorization: Bearer test_v1_APITOKENHERE' \
  --header 'Content-Type: application/json' \
  --data '{"userEmail": "adminOfFormId"}'
  • Test that API call works - the webhook settings retrieved should be what's in the DB. The userEmail provided should be an admin of the formId in the URL
  • Use an invalid API token. You should get a 401 Unauthorised - Invalid API Key message
  • Use a user email that is a FormSG user, but isn't the admin of the form ID provided. You should get a 403 Forbidden message
  • Use an invalid form ID. You should get a 404 not found error
  • Use an invalid request body e.g. misspell userEmail to useEmail. You should get a 400 Bad Request validation error

PATCH /api/public/v1/admin/forms/:formId/webhooksettings to update webhook settings

curl --request PATCH \
  --url https://staging.form.gov.sg/api/public/v1/admin/forms/:formId/settings \
  --header 'Authorization: Bearer test_v1_APITOKENHERE' \
  --header 'Content-Type: application/json' \
  --data '{"userEmail": "adminOfFormId",
"webhook": {
		"url":"https://www.webhookUrl.com",
	"isRetryEnabled": true
}}'
  • Test that API call successfully updates the webhook settings. The userEmail provided should be an admin of the formId in the URL
  • Use an invalid API token. You should get a 401 Unauthorised - Invalid API Key message
  • Use a user email that is a FormSG user, but isn't the admin of the form ID provided. You should get a 403 Forbidden message
  • Use an invalid form ID. You should get a 404 not found error
  • Use an invalid request body e.g. misspell userEmail to useEmail. You should get a 400 Bad Request validation error
  • Use an invalid URL for the webhook (i.e. https://random.site.ugh). An error should be thrown and the webhook settings should not be updated.

fix: remove space from receipt link email #6634

@wanlingt

  • Make payment on a form. Check that the email received does not have a space behind the link for "here".

feat: display payment products on individual response page and csv download #6629

@foochifa

  • Submit a payment with payment by products (radio version). Once submitted, ensure that the product can be seen on the individual response page and CSV download.
  • Submit a payment with payment by products (checkbox version). Once submitted, ensure that the product can be seen on the individual response page and CSV download.
  • Submit a payment with payment by products (checkbox version with multiple quantity). Once submitted, ensure that the product can be seen on the individual response page and CSV download.
  • Regression: ensure that the product listing is - for older fixed payments on both of the individual response page and CSV download.

fix: default payment type to products #6633

@wanlingt

  • Create a new payment field
  • Delete the payment field
  • Go to create tab payment, the default payment type should be products (and you should not see the fixed payment option)

fix: skip qty validation when multiqty is disabled #6624

@wanlingt

Quantity below max payment amount (200k)

  • Save button should be enabled when amount is 20k, and toggle disabled
  • Enable toggle and set max quantity as 9
  • Save button remains enabled
  • Saving items succeeds and is reflected on payment input panel with amount as $20000.00

Quantity at max payment amount (200k)

  • Save button should be enabled when amount is 20k, and toggle disabled
  • Enable toggle and set max quantity as 10
  • Save button remains enabled
  • Saving items succeeds and is reflected on payment input panel with amount as $20000.00

Quantity above max payment amount (200k)

  • Save button should be enabled when amount is 20k, and toggle disabled
  • Enable toggle and set max quantity as 11
  • Save button is now disabled
  • Saving button should not be interactable
  • Disable toggle
  • Saving button is now enabled
  • Saving items succeeds and is reflected on payment input panel with amount as $20000.00

Regression

  • Add new products
  • Enabling toggle doesn't crash the modal
    • Shows error Please enter a valid payment amount
  • Disabling toggle doesn't crash the modal
    • Continue to show error Please enter a valid payment amount

feat: add logging to capture DNS resolution error #6631

@foochifa

  • Update a storage mode form with a webhook url that will fail DNS resolution
  • Submit a form
  • Check that error records appear in CloudWatch for the following query:
    fields @timestamp, @message, @logStream, @log
    | filter message like 'Webhook URL failed validation' and meta.action like 'validateWebhookUrl'

chore: reduce toast duration to 4s #6630

@justynoh

  • do any action that results in a toast (Create/delete form, create/update/delete fields)
  • check that the toast duration is ~4s

fix: product item button check for payment is not enabled #6625

@justynoh

Buttons are disabled and non-interactable

  • As an admin, create a product payment form with at least 1 product
  • Disconnect stripe account
  • Observe that the buttons on PaymentInputPanel are now faded out (disabled variant)
  • Buttons are also not interactable, it doesn't open modal or gets deleted

feat: add datafix script to convert payment_fields_snapshot from an array to an object #6628

Before running the DB script:

  • Load the payment summary page of a payment where its payment_fields_snapshot is an array. The product/service name should be missing.
    After running the DB script:
  • Load the payment summary page of the same payment. The product/service name should now be populated with the same name that's in the proof of payment.

Deploy Notes

New scripts:

  • convert-payment-fields-snapshot-to-object.js : This script adds the payment_fields_snapshot field to the payments collection and sets the field as the form document's payment_field for all existing documents.

New environment variables:

  • PLATFORM_API_RATE_LIMIT: Per-minute, per-IP, per-instance request limit for platform APIs

dependabot bot and others added 12 commits August 15, 2023 20:24
@dependabot
fix(deps): bump zod from 3.21.4 to 3.22.1 in /shared (#6626)
cd92e06 
Bumps [zod](https://github.com/colinhacks/zod) from 3.21.4 to 3.22.1.
- [Release notes](https://github.com/colinhacks/zod/releases)
- [Changelog](https://github.com/colinhacks/zod/blob/master/CHANGELOG.md)
- [Commits](colinhacks/zod@v3.21.4...v3.22.1)

---
updated-dependencies:
- dependency-name: zod
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@wanlingt
feat: add datafix script to convert payment_fields_snapshot from an a…
0d68e44 
…rray to an object (#6628)

feat: add datafix script
@wanlingt
Merge pull request #6627 from opengovsg/release-al2
71895ab 
build: merge v6.70.0 into develop
@KenLSM
fix: product item button check for payment is not enabled (#6625)
45b3d1a
@foochifa
chore: reduce toast duration to 4s (#6630)
cb7178b
@wanlingt
feat: add logging to capture DNS resolution error (#6631)
9f8fa1b
@KenLSM
fix: skip qty validation when multiqty is disabled (#6624)
9272cb7 
* fix: skip qty validation when multiqty is disabled

* test: add cases to test for disabled multi qty field

* fix: updatepaymentsproduct should treat qty as 1 when multiqty is false

* chore: update copy for min max ammount

* fix: incorrect test cases

* fix: multi_qty not having defaults, maxqty validation should skip if display_amount_keys is undefined

* fix: max quantity error swallowed by empty amount
@foochifa
fix: default payment type to products (#6633)
df72251
@justynoh
feat: display payment products on individual response page and csv do…
55737d4 
…wnload (#6629)
@LinHuiqing
fix: remove space from receipt link email (#6634)
940cc26
@wanlingt
feat: platform api v1 - get and update webhook settings (#6608)
753d1f2 
* feat: add isPlatform property to user model

* feat: add new endpoint for platform api routes

* feat: add routes to get and patch webhook settings

* feat: add rate limit config for platform API

* doc: update status codes

* fix: refine validator

* feat: create api user types

* fix: remove logging of api token

* feat: add logging to admin-form.controller

* fix: change isPlatform to boolean type

* fix: use POST instead of GET and add validator

* fix: allow non-platform users to exit isPlatformApiUser middleware

* fix: move routes from /platform/v1 to /public/v1

* fix: remove all references to /platform/v1

* fix: catch error from missing user
@wanlingt
chore: bump version to v6.71.0
62aa237
LinHuiqing
LinHuiqing approved these changes Aug 17, 2023
View reviewed changes
Copy link
Contributor

@LinHuiqing LinHuiqing left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

all tests are done! :)

@wanlingt wanlingt merged commit dcb5379 into release-al2 Aug 17, 2023
87 checks passed
@wanlingt wanlingt deleted the release_v6.71.0 branch August 17, 2023 05:32
@LinHuiqing
Copy link
Contributor

LinHuiqing commented Aug 17, 2023
edited
Loading

2 comments on #6608:

  • Seems a bit strange to me that the API for retrieving webhook details is a POST request instead of a GET request, is this intentional?
  • For the PATCH request, we can add 1 more test! (edit: added the test for this PR's description)
    • Use an invalid URL for the webhook (i.e. https://random.site.ugh). An error should be thrown and the webhook settings should not be updated.

@foochifa
Copy link
Contributor

foochifa commented Aug 17, 2023
edited
Loading

On pt1 I think it's because we have to include the user email right? And its unsafe to use a param or to put it as part of the url path. I think previously @timotheeg and I had a discussion about this when checking for duplicate payments based on email

Maybe relevant

@LinHuiqing
Copy link
Contributor

On pt1 I think it's because we have to include the user email right? And its unsafe to use a param or to put it as part of the url path. I think previously @timotheeg and I had a discussion about this when checking for duplicate payments based on email

Maybe relevant

Oo cool, TIL. Thanks @foochifa!

@wanlingt
Copy link
Contributor Author

@LinHuiqing thanks for adding the test!! and great question! yes to what @foochifa said

@wanlingt wanlingt mentioned this pull request Aug 23, 2023
Merged
44 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@LinHuiqing LinHuiqing LinHuiqing approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@wanlingt @LinHuiqing @foochifa @KenLSM @justynoh