enrich request to optout service (#2131)

Author: Ian-Nara

src/main/java/com/uid2/operator/service/IUIDOperatorService.java

@@ -21,7 +21,9 @@ public interface IUIDOperatorService {
 
     List<SaltEntry> getModifiedBuckets(Instant sinceTimestamp);
 
-    void invalidateTokensAsync(UserIdentity userIdentity, Instant asOf, String uidTraceId, IdentityEnvironment env, Handler<AsyncResult<Instant>> handler);
+    void invalidateTokensAsync(UserIdentity userIdentity, Instant asOf, String uidTraceId, IdentityEnvironment env,
+                               String email, String phone, String clientIp,
+                               Handler<AsyncResult<Instant>> handler);
 
     boolean advertisingTokenMatches(String advertisingToken, UserIdentity userIdentity, Instant asOf, IdentityEnvironment env);
 }

src/main/java/com/uid2/operator/service/UIDOperatorService.java

@@ -180,11 +180,14 @@ private ISaltProvider.ISaltSnapshot getSaltProviderSnapshot(Instant asOf) {
     }
 
     @Override
-    public void invalidateTokensAsync(UserIdentity userIdentity, Instant asOf, String uidTraceId, IdentityEnvironment env, Handler<AsyncResult<Instant>> handler) {
+    public void invalidateTokensAsync(UserIdentity userIdentity, Instant asOf, String uidTraceId, IdentityEnvironment env,
+                                      String email, String phone, String clientIp,
+                                      Handler<AsyncResult<Instant>> handler) {
         final UserIdentity firstLevelHashIdentity = getFirstLevelHashIdentity(userIdentity, asOf);
         final MappedIdentity mappedIdentity = getMappedIdentity(firstLevelHashIdentity, asOf, env);
 
-        this.optOutStore.addEntry(firstLevelHashIdentity, mappedIdentity.advertisingId, uidTraceId, this.uidInstanceIdProvider.getInstanceId(), r -> {
+        this.optOutStore.addEntry(firstLevelHashIdentity, mappedIdentity.advertisingId, uidTraceId,
+                this.uidInstanceIdProvider.getInstanceId(), email, phone, clientIp, r -> {
             if (r.succeeded()) {
                 handler.handle(Future.succeededFuture(r.result()));
             } else {

src/main/java/com/uid2/operator/store/CloudSyncOptOutStore.java

@@ -88,24 +88,36 @@ public long getOptOutTimestampByAdId(String adId) {
     }
 
     @Override
-    public void addEntry(UserIdentity firstLevelHashIdentity, byte[] advertisingId, String uidTraceId, String uidInstanceId, Handler<AsyncResult<Instant>> handler) {
+    public void addEntry(UserIdentity firstLevelHashIdentity,
+                         byte[] advertisingId,
+                         String uidTraceId,
+                         String uidInstanceId,
+                         String email,
+                         String phone,
+                         String clientIp,
+                         Handler<AsyncResult<Instant>> handler) {
         if (remoteApiHost == null) {
             handler.handle(Future.failedFuture("remote api not set"));
             return;
         }
 
-        HttpRequest<String> request =this.webClient.get(remoteApiPort, remoteApiHost, remoteApiPath).
+        HttpRequest<String> request = this.webClient.post(remoteApiPort, remoteApiHost, remoteApiPath).
             addQueryParam("identity_hash", EncodingUtils.toBase64String(firstLevelHashIdentity.id))
             .addQueryParam("advertising_id", EncodingUtils.toBase64String(advertisingId))
             .putHeader("Authorization", remoteApiBearerToken)
             .putHeader(Audit.UID_INSTANCE_ID_HEADER, uidInstanceId)
             .as(BodyCodec.string());
 
+        JsonObject payload = new JsonObject();
+        if (email != null) payload.put("email", email);
+        if (phone != null) payload.put("phone", phone);
+        if (clientIp != null) payload.put("client_ip", clientIp);
+
         if (uidTraceId != null) {
             request = request.putHeader(Audit.UID_TRACE_ID_HEADER, uidTraceId);
         }
 
-        request.send(ar -> {
+        request.sendJson(payload, ar -> {
             Exception failure = null;
             if (ar.failed()) {
                 failure = new Exception(ar.cause());

src/main/java/com/uid2/operator/store/IOptOutStore.java

@@ -17,5 +17,12 @@ public interface IOptOutStore {
 
     long getOptOutTimestampByAdId(String adId);
 
-    void addEntry(UserIdentity firstLevelHashIdentity, byte[] advertisingId, String uidTraceId, String uidInstanceId, Handler<AsyncResult<Instant>> handler);
+    void addEntry(UserIdentity firstLevelHashIdentity,
+                  byte[] advertisingId,
+                  String uidTraceId,
+                  String uidInstanceId,
+                  String email,
+                  String phone,
+                  String clientIp,
+                  Handler<AsyncResult<Instant>> handler);
 }

src/main/java/com/uid2/operator/vertx/UIDOperatorVerticle.java

@@ -986,7 +986,13 @@ private Future handleLogoutAsyncV2(RoutingContext rc) {
             final Instant now = Instant.now();
 
             Promise promise = Promise.promise();
-            this.idService.invalidateTokensAsync(input.toUserIdentity(this.identityScope, 0, now), now, uidTraceId, env, ar -> {
+            final String email = req == null ? null : req.getString("email");
+            final String phone = req == null ? null : req.getString("phone");
+            final String clientIp = req == null ? null : req.getString("clientIp");
+
+            this.idService.invalidateTokensAsync(input.toUserIdentity(this.identityScope, 0, now), now, uidTraceId, env,
+                    email, phone, clientIp,
+                    ar -> {
                 if (ar.succeeded()) {
                     JsonObject body = new JsonObject();
                     body.put("optout", "OK");

src/test/java/com/uid2/operator/UIDOperatorVerticleTest.java

@@ -2645,10 +2645,22 @@ void logoutV2(boolean useV4Uid, String contentType, Vertx vertx, VertxTestContex
         req.put("email", "[email protected]");
 
         doAnswer(invocation -> {
-            Handler<AsyncResult<Instant>> handler = invocation.getArgument(4);
+            String passedTrace = invocation.getArgument(2);
+            String passedInstanceId = invocation.getArgument(3);
+            String passedEmail = invocation.getArgument(4);
+            String passedPhone = invocation.getArgument(5);
+            String passedClientIp = invocation.getArgument(6);
+
+            assertEquals("uid-trace-id", passedTrace);
+            assertEquals("test-instance-id", passedInstanceId);
+            assertEquals("[email protected]", passedEmail);
+            assertNull(passedClientIp);
+            assertNull(passedPhone);
+
+            Handler<AsyncResult<Instant>> handler = invocation.getArgument(7);
             handler.handle(Future.succeededFuture(Instant.now()));
             return null;
-        }).when(this.optOutStore).addEntry(any(), any(), eq("uid-trace-id"), eq("test-instance-id"), any());
+        }).when(this.optOutStore).addEntry(any(), any(), any(), any(), any(), any(), any(), any());
 
         send(vertx, "v2/token/logout", req, 200, respJson -> {
             assertEquals("success", respJson.getString("status"));
@@ -2658,6 +2670,42 @@ void logoutV2(boolean useV4Uid, String contentType, Vertx vertx, VertxTestContex
                 HttpHeaders.CONTENT_TYPE.toString(), contentType));
     }
 
+    @Test
+    void logoutV2_withClientIp(Vertx vertx, VertxTestContext testContext) {
+        final int clientSiteId = 201;
+        fakeAuth(clientSiteId, Role.OPTOUT);
+        setupKeys();
+        setupSalts();
+
+        JsonObject req = new JsonObject();
+        req.put("email", "[email protected]");
+        req.put("clientIp", "127.0.0.1");
+
+        doAnswer(invocation -> {
+            String passedTrace = invocation.getArgument(2);
+            String passedInstanceId = invocation.getArgument(3);
+            String passedEmail = invocation.getArgument(4);
+            String passedPhone = invocation.getArgument(5);
+            String passedClientIp = invocation.getArgument(6);
+
+            assertEquals("uid-trace-id", passedTrace);
+            assertEquals("test-instance-id", passedInstanceId);
+            assertEquals("[email protected]", passedEmail);
+            assertNull(passedPhone);
+            assertEquals("127.0.0.1", passedClientIp);
+
+            Handler<AsyncResult<Instant>> handler = invocation.getArgument(7);
+            handler.handle(Future.succeededFuture(Instant.now()));
+            return null;
+        }).when(this.optOutStore).addEntry(any(), any(), any(), any(), any(), any(), any(), any());
+
+        send(vertx, "v2/token/logout", req, 200, respJson -> {
+            assertEquals("success", respJson.getString("status"));
+            assertEquals("OK", respJson.getJsonObject("body").getString("optout"));
+            testContext.completeNow();
+        }, Map.of(Audit.UID_TRACE_ID_HEADER, "uid-trace-id"));
+    }
+
     @Test
     void logoutV2SaltsExpired(Vertx vertx, VertxTestContext testContext) {
         when(saltProviderSnapshot.getExpires()).thenReturn(Instant.now().minus(1, ChronoUnit.HOURS));
@@ -2670,10 +2718,10 @@ void logoutV2SaltsExpired(Vertx vertx, VertxTestContext testContext) {
         req.put("email", "[email protected]");
 
         doAnswer(invocation -> {
-            Handler<AsyncResult<Instant>> handler = invocation.getArgument(4);
+            Handler<AsyncResult<Instant>> handler = invocation.getArgument(7);
             handler.handle(Future.succeededFuture(Instant.now()));
             return null;
-        }).when(this.optOutStore).addEntry(any(), any(), any(), any(), any());
+        }).when(this.optOutStore).addEntry(any(), any(), any(), any(), any(), any(), any(), any());
 
         send(vertx, "v2/token/logout", req, 200, respJson -> {
             assertEquals("success", respJson.getString("status"));

src/test/java/com/uid2/operator/benchmark/BenchmarkCommon.java

@@ -196,7 +196,14 @@ public Instant getLatestEntry(UserIdentity firstLevelHashIdentity) {
         }
 
         @Override
-        public void addEntry(UserIdentity firstLevelHashIdentity, byte[] advertisingId, String uidTraceId, String uidInstanceId, Handler<AsyncResult<Instant>> handler) {
+        public void addEntry(UserIdentity firstLevelHashIdentity,
+                             byte[] advertisingId,
+                             String uidTraceId,
+                             String uidInstanceId,
+                             String email,
+                             String phone,
+                             String clientIp,
+                             Handler<AsyncResult<Instant>> handler) {
             // noop
         }
 

src/test/java/com/uid2/operator/store/CloudSyncOptOutStoreTest.java

@@ -0,0 +1,120 @@
+package com.uid2.operator.store;
+
+import com.uid2.operator.Const;
+import com.uid2.operator.model.IdentityScope;
+import com.uid2.operator.model.IdentityType;
+import com.uid2.operator.model.UserIdentity;
+import com.uid2.operator.service.EncodingUtils;
+import com.uid2.shared.cloud.MemCachedStorage;
+import com.uid2.shared.audit.Audit;
+import io.vertx.core.Vertx;
+import io.vertx.core.http.HttpMethod;
+import io.vertx.core.http.HttpServer;
+import io.vertx.core.json.JsonObject;
+import io.vertx.ext.web.Router;
+import io.vertx.ext.web.handler.BodyHandler;
+import org.junit.jupiter.api.AfterEach;
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.api.Test;
+
+import java.time.Clock;
+import java.time.Instant;
+import java.util.concurrent.CountDownLatch;
+import java.util.concurrent.TimeUnit;
+
+import static org.junit.jupiter.api.Assertions.*;
+
+public class CloudSyncOptOutStoreTest {
+    private Vertx vertx;
+    private HttpServer server;
+    private int port;
+    private Router router;
+
+    @BeforeEach
+    void setUp() throws InterruptedException {
+        vertx = Vertx.vertx();
+        CountDownLatch latch = new CountDownLatch(1);
+        server = vertx.createHttpServer();
+        router = Router.router(vertx);
+        router.route().handler(BodyHandler.create());
+        server.requestHandler(router);
+        server.listen(0, ar -> {
+            if (ar.succeeded()) {
+                port = ar.result().actualPort();
+                latch.countDown();
+            }
+        });
+        assertTrue(latch.await(5, TimeUnit.SECONDS));
+    }
+
+    @AfterEach
+    void tearDown() throws InterruptedException {
+        CountDownLatch latch = new CountDownLatch(1);
+        server.close(ar -> latch.countDown());
+        assertTrue(latch.await(5, TimeUnit.SECONDS));
+        CountDownLatch latch2 = new CountDownLatch(1);
+        vertx.close(ar -> latch2.countDown());
+        assertTrue(latch2.await(5, TimeUnit.SECONDS));
+    }
+
+    @Test
+    void addEntry_sendsPostWithQueryAndJsonBody() throws Exception {
+        final String path = "/optout/replicate";
+        final String operatorKey = "test-operator-key";
+        final String uidTraceId = "trace-123";
+        final String email = "[email protected]";
+        final String phone = null;
+        final String clientIp = "203.0.113.5";
+
+        final byte[] userIdBytes = new byte[] {10, 20, 30};
+        final byte[] advIdBytes = new byte[] {1, 2, 3};
+        final String expectedIdentityHash = EncodingUtils.toBase64String(userIdBytes);
+        final String expectedAdvertisingId = EncodingUtils.toBase64String(advIdBytes);
+
+        CountDownLatch received = new CountDownLatch(1);
+
+        router.post(path).handler(ctx -> {
+            try {
+                assertEquals(HttpMethod.POST, ctx.request().method());
+                assertEquals(path, ctx.normalisedPath());
+                assertEquals(expectedIdentityHash, ctx.request().getParam("identity_hash"));
+                assertEquals(expectedAdvertisingId, ctx.request().getParam("advertising_id"));
+                assertEquals("Bearer " + operatorKey, ctx.request().getHeader("Authorization"));
+                assertEquals(uidTraceId, ctx.request().getHeader(Audit.UID_TRACE_ID_HEADER));
+
+                JsonObject body = ctx.body().asJsonObject();
+                assertNotNull(body);
+                assertEquals(email, body.getString("email"));
+                assertEquals(clientIp, body.getString("client_ip"));
+                assertFalse(body.containsKey("unexpected"));
+
+                ctx.response().setStatusCode(200).end();
+            } finally {
+                received.countDown();
+            }
+        });
+        JsonObject config = new JsonObject()
+                .put(Const.Config.OptOutApiUriProp, "http://localhost:" + port + path)
+                .put(Const.Config.OptOutBloomFilterSizeProp, 8192)
+                .put(Const.Config.OptOutHeapDefaultCapacityProp, 8192)
+                .put(Const.Config.OptOutStatusApiEnabled, true)
+                .put(Const.Config.OptOutDataDirProp, "/tmp/uid2-operator-test")
+                // Additional required config for FileUtils/optout snapshot
+                .put("optout_delta_rotate_interval", 300)
+                .put("optout_delta_backtrack_in_days", 1)
+                .put("optout_partition_interval", 86400)
+                .put("optout_max_partitions", 30)
+                .put("optout_s3_folder", "optout/")
+                .put("optout_s3_path_compat", false);
+
+        CloudSyncOptOutStore store = new CloudSyncOptOutStore(vertx, new MemCachedStorage(), config, operatorKey, Clock.systemUTC());
+
+        UserIdentity uid = new UserIdentity(IdentityScope.UID2, IdentityType.Email, userIdBytes, 0, Instant.now(), Instant.now());
+
+        CountDownLatch done = new CountDownLatch(1);
+        store.addEntry(uid, advIdBytes, uidTraceId, "local-instance", email, phone, clientIp, ar -> done.countDown());
+
+        assertTrue(received.await(5, TimeUnit.SECONDS));
+        assertTrue(done.await(5, TimeUnit.SECONDS));
+    }
+}