Implemented Outbox on Requests

Author: Thuen

src/apps/Altinn.AccessManagement/src/Altinn.AccessManagement.Api.Enduser/Controllers/RequestController.cs

@@ -7,6 +7,7 @@
 using Altinn.AccessMgmt.Core.Audit;
 using Altinn.AccessMgmt.Core.Services;
 using Altinn.AccessMgmt.Core.Services.Contracts;
+using Altinn.AccessMgmt.Core.Utils;
 using Altinn.AccessMgmt.PersistenceEF.Constants;
 using Altinn.AccessMgmt.PersistenceEF.Migrations;
 using Altinn.AccessMgmt.PersistenceEF.Queries.Connection;
@@ -140,8 +141,8 @@ public async Task<IActionResult> CreateRequest([FromQuery] Guid party, [FromQuer
                     To = party,
                     Role = role.Id,
                     Status = status,
-                    Resource = resource?.Id,
-                    Package = package?.Id,
+                    Resource = DtoMapper.Convert(resource),
+                    Package = package,
                 },
                 ct
             );

src/apps/Altinn.AccessManagement/src/Altinn.AccessManagement.Api.ServiceOwner/Controllers/RequestController.cs

@@ -4,6 +4,7 @@
 using Altinn.AccessMgmt.Core;
 using Altinn.AccessMgmt.Core.Audit;
 using Altinn.AccessMgmt.Core.Services.Contracts;
+using Altinn.AccessMgmt.Core.Utils;
 using Altinn.AccessMgmt.PersistenceEF.Constants;
 using Altinn.AccessMgmt.PersistenceEF.Models;
 using Altinn.Authorization.Api.Contracts.AccessManagement.Request;
@@ -111,8 +112,8 @@ public async Task<IActionResult> CreateRequest([FromBody] CreateServiceOwnerRequ
                 To = to.Id,
                 Role = role.Id,
                 Status = status,
-                Resource = resource?.Id,
-                Package = package?.Id,
+                Resource = DtoMapper.Convert(resource),
+                Package = package,
             },
             ct
         );

src/apps/Altinn.AccessManagement/src/Altinn.AccessManagement/AccessManagementHost.cs

@@ -104,6 +104,8 @@ public static WebApplication Create(string[] args)
             options.Source = appsettings.RunInitOnly ? SourceType.Migration : SourceType.App;
             options.AddOutboxHandler<ResourceRequestAcceptedNotificationHandler>("resource_request_accepted");
             options.AddOutboxHandler<ResourceRequestPendingNotificationHandler>("resource_request_pending");
+            options.AddOutboxHandler<PackageRequestAcceptedNotificationHandler>("package_request_accepted");
+            options.AddOutboxHandler<PackageRequestPendingNotificationHandler>("package_request_pending");
         });
 
         builder.Services.AddAccessMgmtCore(builder.Configuration);

src/apps/Altinn.AccessManagement/src/Altinn.AccessMgmt.Core/Extensions/ServiceCollectionExtensions.cs

@@ -53,6 +53,8 @@ public static IServiceCollection AddAccessMgmtCore(this IServiceCollection servi
 
         services.AddTransient<ResourceRequestAcceptedNotificationHandler>();
         services.AddTransient<ResourceRequestPendingNotificationHandler>();
+        services.AddTransient<PackageRequestAcceptedNotificationHandler>();
+        services.AddTransient<PackageRequestPendingNotificationHandler>();
 
         services.AddSingleton<AuditMiddleware>();
 

src/apps/Altinn.AccessManagement/src/Altinn.AccessMgmt.Core/Outbox/PackageRequestAcceptedNotificationHandler.cs

@@ -0,0 +1,165 @@
+using System.Text;
+using System.Text.Json;
+using Altinn.AccessMgmt.Core.Services.Contracts;
+using Altinn.AccessMgmt.PersistenceEF.Constants;
+using Altinn.AccessMgmt.PersistenceEF.Extensions;
+using Altinn.AccessMgmt.PersistenceEF.Models;
+using Altinn.Authorization.Integration.Platform.Notification;
+using Altinn.Authorization.Integration.Platform.Notification.Models;
+using Altinn.Authorization.Integration.Platform.Notification.Models.Email;
+using Altinn.Authorization.Integration.Platform.Notification.Models.Recipient;
+
+namespace Altinn.AccessMgmt.Core.Outbox;
+
+public class PackageRequestAcceptedNotificationHandler(IAltinnNotification notification, IEntityService entityService) : IOutboxHandler
+{
+    public async Task Handle(OutboxMessage message, CancellationToken cancellationToken)
+    {
+        var (recipient, sender, packages) = await GetContext(message, cancellationToken);
+
+        var response = await notification.Send(
+            new()
+            {
+                IdempotencyId = $"auth_package_request_accept_{recipient.Id}",
+                Recipient = await CreateRecipient(recipient, sender, packages, cancellationToken),
+                RequestedSendTime = DateTime.UtcNow,
+            },
+            cancellationToken);
+
+        if (response.IsProblem)
+        {
+            throw new InvalidOperationException(response.ProblemDetails.Detail);
+        }
+    }
+
+    private async Task<(Entity Recipient, Entity Approver, IEnumerable<string> Packages)> GetContext(OutboxMessage message, CancellationToken cancellationToken)
+    {
+        var content = JsonSerializer.Deserialize<List<PackageRequestAcceptedNotificationMessage>>(message.Data);
+        if (content is null || content.Count == 0)
+        {
+            throw new InvalidOperationException("Data is empty. Can't send notification without content.");
+        }
+
+        var recipients = content.GroupBy(m => m.RecipientId);
+        if (recipients.Count() != 1)
+        {
+            throw new InvalidOperationException("Outbox message contains multiple recipients, should contain only one.");
+        }
+
+        var approvers = recipients.Single();
+        var approver = content.GroupBy(m => m.AcceptorId);
+        if (approver.Count() != 1)
+        {
+            throw new InvalidOperationException("Outbox message contains multiple senders, should contain only one.");
+        }
+
+        var sender = approver.Single();
+        var entityRecipient = await entityService.GetEntity(approvers.Key, cancellationToken);
+        if (entityRecipient is null)
+        {
+            throw new InvalidOperationException($"Recipient entity with id '{approvers.Key}' not found.");
+        }
+
+        var entitySender = await entityService.GetEntity(sender.Key, cancellationToken);
+        if (sender is null)
+        {
+            throw new InvalidOperationException($"Sender entity with id '{sender.Key}' not found.");
+        }
+
+        return (
+            entityRecipient,
+            entitySender,
+            content.Select(m => m.Package).Distinct()
+        );
+    }
+
+    private static async Task<NotificationRecipientExt> CreateRecipient(Entity recipient, Entity approver, IEnumerable<string> packages, CancellationToken cancellationToken = default)
+    {
+        ArgumentNullException.ThrowIfNull(recipient);
+
+        if (recipient.TypeId == EntityTypeConstants.Person)
+        {
+            var emailContent = new StringBuilder();
+            emailContent.AppendLine($"<p>{approver.Name} har akseptert din forespørsel om følgende tilgangspakker.</p>");
+            emailContent.AppendLine("<ul>");
+            foreach (var package in packages)
+            {
+                emailContent.AppendLine($"<li>{package}</li>");
+            }
+
+            emailContent.AppendLine("</ul>");
+            emailContent.AppendLine($"<p>Med vennnlig hilsen<b>Altinn</b></p>");
+
+            return new NotificationRecipientExt
+            {
+                RecipientPerson = new RecipientPersonExt
+                {
+                    NationalIdentityNumber = recipient.PersonIdentifier,
+                    ChannelSchema = NotificationChannelExt.EmailAndSms,
+                    ResourceId = "altinn_access_management_hovedadmin",
+                    EmailSettings = new EmailSendingOptionsExt
+                    {
+                        Subject = "Altinn Godkjent Tilgangsforespørsel",
+                        Body = emailContent.ToString()
+                    }
+                }
+            };
+        }
+        else if (recipient.TypeId == EntityTypeConstants.Organization)
+        {
+            var emailContent = new StringBuilder();
+            emailContent.AppendLine($"<p>{approver.Name} med Org.nr {recipient.OrganizationIdentifier} har akseptert din forespørsel om følgende tilgangspakker.</p>");
+            emailContent.AppendLine("<ul>");
+            foreach (var package in packages)
+            {
+                emailContent.AppendLine($"<li>{package}</li>");
+            }
+
+            emailContent.AppendLine("</ul>");
+            emailContent.AppendLine($"<p>Med vennnlig hilsen<b>Altinn</b></p>");
+
+            return new NotificationRecipientExt
+            {
+                RecipientOrganization = new RecipientOrganizationExt
+                {
+                    OrgNumber = recipient.OrganizationIdentifier,
+                    ChannelSchema = NotificationChannelExt.EmailPreferred,
+                    ResourceId = "altinn_access_management_hovedadmin",
+                    EmailSettings = new()
+                    {
+                        Subject = "Altinn Godkjent Tilgangsforespørsel",
+                        Body = emailContent.ToString()
+                    }
+                }
+            };
+        }
+
+        throw new InvalidOperationException("Unsupported party type. not person or organization");
+    }
+}
+
+/// <summary>
+/// Model used for deserializing content of outbox message for package request notification.
+/// </summary>
+public class PackageRequestAcceptedNotificationMessage
+{
+    /// <summary>
+    /// Entity ID of the acceptor, either person or organization.
+    /// </summary>
+    public Guid AcceptorId { get; set; }
+
+    /// <summary>
+    /// Entity ID of the recipient, either person or organization. 
+    /// </summary>
+    public Guid RecipientId { get; set; }
+
+    /// <summary>
+    /// Name of package.
+    /// </summary>
+    public string Package { get; set; }
+
+    /// <summary>
+    /// Used for creating a unique idempotency key and external ref id
+    /// </summary>
+    public DateTime RefId { get; set; }
+}

src/apps/Altinn.AccessManagement/src/Altinn.AccessMgmt.Core/Outbox/PackageRequestPendingNotificationHandler.cs

@@ -0,0 +1,167 @@
+using System.Text;
+using System.Text.Json;
+using Altinn.AccessMgmt.Core.Services.Contracts;
+using Altinn.AccessMgmt.PersistenceEF.Constants;
+using Altinn.AccessMgmt.PersistenceEF.Extensions;
+using Altinn.AccessMgmt.PersistenceEF.Models;
+using Altinn.Authorization.Integration.Platform.Notification;
+using Altinn.Authorization.Integration.Platform.Notification.Models;
+using Altinn.Authorization.Integration.Platform.Notification.Models.Email;
+using Altinn.Authorization.Integration.Platform.Notification.Models.Recipient;
+
+namespace Altinn.AccessMgmt.Core.Outbox;
+
+public class PackageRequestPendingNotificationHandler(IAltinnNotification notification, IEntityService entityService) : IOutboxHandler
+{
+    public async Task Handle(OutboxMessage message, CancellationToken cancellationToken)
+    {
+        var (recipient, sender, packages) = await GetContext(message, cancellationToken);
+
+        var response = await notification.Send(
+            new()
+            {
+                IdempotencyId = $"auth_package_request_accept_{recipient.Id}",
+                Recipient = CreateRecipient(recipient, sender, packages),
+                RequestedSendTime = DateTime.UtcNow,
+            },
+            cancellationToken);
+
+        if (response.IsProblem)
+        {
+            throw new InvalidOperationException(response.ProblemDetails.Detail);
+        }
+    }
+
+    private async Task<(Entity Recipient, Entity Sender, IEnumerable<string> Packages)> GetContext(OutboxMessage message, CancellationToken cancellationToken)
+    {
+        var content = JsonSerializer.Deserialize<List<PackageRequestPendingNotificationMessage>>(message.Data);
+        if (content is null || content.Count == 0)
+        {
+            throw new InvalidOperationException("Data is empty. Can't send notification without content.");
+        }
+
+        var recipients = content.GroupBy(m => m.RecipientId);
+        if (recipients.Count() != 1)
+        {
+            throw new InvalidOperationException("Outbox message contains multiple recipients, should contain only one.");
+        }
+
+        var recipient = recipients.Single();
+        var senders = content.GroupBy(m => m.RequesterId);
+        if (senders.Count() != 1)
+        {
+            throw new InvalidOperationException("Outbox message contains multiple senders, should contain only one.");
+        }
+
+        var sender = senders.Single();
+        var entityRecipient = await entityService.GetEntity(recipient.Key, cancellationToken);
+        if (entityRecipient is null)
+        {
+            throw new InvalidOperationException($"Recipient entity with id '{recipient.Key}' not found.");
+        }
+
+        var entitySender = await entityService.GetEntity(sender.Key, cancellationToken);
+        if (sender is null)
+        {
+            throw new InvalidOperationException($"Sender entity with id '{sender.Key}' not found.");
+        }
+
+        return (
+            entityRecipient,
+            entitySender,
+            content.Select(m => m.Package).Distinct()
+        );
+    }
+
+    private static NotificationRecipientExt CreateRecipient(Entity recipient, Entity sender, IEnumerable<string> packages)
+    {
+        ArgumentNullException.ThrowIfNull(recipient);
+
+        if (recipient.TypeId == EntityTypeConstants.Person)
+        {
+            var emailContent = new StringBuilder();
+            emailContent.AppendLine($"<p>{sender.Name} har bedt om følgende tilgangspakker fra deg.</p>");
+            emailContent.AppendLine("<ul>");
+            foreach (var package in packages)
+            {
+                emailContent.AppendLine($"<li>{package}</li>");
+            }
+
+            emailContent.AppendLine("</ul>");
+            emailContent.AppendLine("<p>Logg inn i Altinn, gå til tilgangsstyring og forespørsler for å behandle forespørselen.</p>");
+            emailContent.AppendLine($"<p>Med vennnlig hilsen<b>Altinn</b></p>");
+
+            return new NotificationRecipientExt
+            {
+                RecipientPerson = new RecipientPersonExt
+                {
+                    NationalIdentityNumber = recipient.PersonIdentifier,
+                    ChannelSchema = NotificationChannelExt.EmailAndSms,
+                    ResourceId = "altinn_access_management_hovedadmin",
+                    EmailSettings = new EmailSendingOptionsExt
+                    {
+                        Subject = "Altinn Tilgangsforespørsel",
+                        Body = emailContent.ToString()
+                    }
+                }
+            };
+        }
+        else if (recipient.TypeId == EntityTypeConstants.Organization)
+        {
+            var emailContent = new StringBuilder();
+            emailContent.AppendLine($"<p>{sender.Name} har bedt om følgende tilgangspakker fra {recipient.Name} med Org.nr {recipient.OrganizationIdentifier}.</p>");
+            emailContent.AppendLine("<ul>");
+            foreach (var package in packages)
+            {
+                emailContent.AppendLine($"<li>{package}</li>");
+            }
+
+            emailContent.AppendLine("</ul>");
+            emailContent.AppendLine($"<p>Du mottar denne forespørselen fordi du har tilgangspakken hovedaministrator for {recipient.Name} i Altinn. Logg inn i Altinn velg riktig aktør og gå til tilgangsstyring og forespørsler for å behandle forespørselen.</p>");
+            emailContent.AppendLine($"<p>Med vennnlig hilsen<b>Altinn</b></p>");
+
+            return new NotificationRecipientExt
+            {
+                RecipientOrganization = new RecipientOrganizationExt
+                {
+                    OrgNumber = recipient.OrganizationIdentifier,
+                    ChannelSchema = NotificationChannelExt.EmailPreferred,
+                    ResourceId = "altinn_access_management_hovedadmin",
+                    EmailSettings = new()
+                    {
+                        Subject = "Altinn Tilgangsforespørsel",
+                        Body = emailContent.ToString()
+                    }
+                }
+            };
+        }
+
+        throw new InvalidOperationException("Unsupported party type. not person or organization");
+    }
+}
+
+/// <summary>
+/// Model used for deserializing content of outbox message for package request notification.
+/// </summary>
+public class PackageRequestPendingNotificationMessage
+{
+    /// <summary>
+    /// Entity ID of the requester, either person or organization.
+    /// </summary>
+    public Guid RequesterId { get; set; }
+
+    /// <summary>
+    /// Entity ID of the recipient, either person or organization. 
+    /// </summary>
+    public Guid RecipientId { get; set; }
+
+    /// <summary>
+    /// Name of package.
+    /// </summary>
+    public string Package { get; set; }
+
+    /// <summary>
+    /// Used for creating a unique idempotency key and external ref id
+    /// </summary>
+    public DateTime RefId { get; set; }
+}