Merge pull request #234 from petersdt/test/contract-helpers

Test/contract helpers

Author: Baskarayelu

.eslintrc.json

@@ -0,0 +1,3 @@
+{
+    "extends": "next/core-web-vitals"
+}

.github/workflows/e2e.yml

@@ -34,6 +34,9 @@ jobs:
       - name: Install dependencies
         run: npm ci
 
+      - name: Run Unit Tests
+        run: npm run test
+
       - name: Install Playwright Browsers
         run: npx playwright install --with-deps chromium
 

app/api/auth/nonce/route.ts

@@ -1,5 +1,5 @@
 import { NextRequest, NextResponse } from "next/server";
-import { setNonce } from "@/lib/auth-cache";
+import { storeNonce } from "@/lib/auth/nonce-store";
 import { randomBytes } from "crypto";
 
 export async function POST(request: NextRequest) {
@@ -17,7 +17,7 @@ export async function POST(request: NextRequest) {
   const nonce = nonceBuffer.toString("hex");
 
   // Store nonce in cache for later verification
-  setNonce(publicKey, nonce);
+  storeNonce(publicKey, nonce);
 
   return NextResponse.json({ nonce });
 }

app/api/remittance/build/route.ts

@@ -167,9 +167,9 @@ async function simulateTransaction(xdr: string): Promise<{
   const server = getServer();
 
   try {
-    const { Transaction } = await import('@stellar/stellar-sdk');
-    const transaction = Transaction.fromXDR(xdr, getNetworkPassphrase());
-    
+    const { TransactionBuilder } = await import('@stellar/stellar-sdk');
+    const transaction = TransactionBuilder.fromXDR(xdr, getNetworkPassphrase());
+
     const simulation = await server.simulateTransaction(transaction);
 
     // Check for simulation errors
@@ -243,12 +243,12 @@ export async function POST(request: NextRequest) {
   // Check for common errors
   if (!simulation.success) {
     const errorMsg = simulation.error || 'Unknown simulation error';
-    
+
     // Check for insufficient balance
     if (errorMsg.toLowerCase().includes('insufficient') || errorMsg.toLowerCase().includes('balance')) {
       return jsonError('VALIDATION_ERROR', 'Insufficient balance to complete this transaction');
     }
-    
+
     // Check for invalid destination
     if (errorMsg.toLowerCase().includes('destination') || errorMsg.toLowerCase().includes('account')) {
       return jsonError('VALIDATION_ERROR', 'Invalid or non-existent recipient address');
@@ -268,52 +268,4 @@ export async function POST(request: NextRequest) {
   };
 
   return jsonSuccess(response);
-import { NextRequest, NextResponse } from 'next/server';
-import { withIdempotency } from '@/lib/idempotency';
-
-/**
- * POST /api/remittance/build
- * Build a remittance transaction
- * 
- * Supports idempotency via Idempotency-Key header
- */
-export async function POST(request: NextRequest) {
-    return withIdempotency(request, async (body) => {
-        // TODO: Add authentication
-        // const session = await getSession(request);
-        // if (!session) {
-        //   return NextResponse.json({ error: 'Unauthorized' }, { status: 401 });
-        // }
-
-        // Validate request body
-        const { amount, recipient, currency } = body;
-
-        if (!amount || !recipient || !currency) {
-            return NextResponse.json(
-                { error: 'Missing required fields: amount, recipient, currency' },
-                { status: 400 }
-            );
-        }
-
-        if (amount <= 0) {
-            return NextResponse.json(
-                { error: 'Amount must be greater than 0' },
-                { status: 400 }
-            );
-        }
-
-        // TODO: Implement actual remittance building logic
-        // For now, return a mock response
-        const transactionId = `tx_${Date.now()}_${Math.random().toString(36).substr(2, 9)}`;
-
-        return NextResponse.json({
-            transactionId,
-            amount,
-            recipient,
-            currency,
-            status: 'pending',
-            createdAt: new Date().toISOString(),
-            message: 'Remittance transaction built successfully',
-        });
-    });
 }

app/transactions/page.tsx

@@ -221,7 +221,7 @@ export default function TransactionsPage() {
                         ))
                     ) : (
                         <div className="text-center py-12 text-gray-500">
-                            No transactions found matching "{searchQuery}"
+                            No transactions found matching &quot;{searchQuery}&quot;
                         </div>
                     )}
                 </div>

components/Dashboard/SavingsByGoalWidget.tsx

@@ -27,9 +27,9 @@ export default function SavingsByGoalWidget({
         <PiggyBank className="w-6 h-6 text-red-500" />
         <h2 className="text-xl font-bold text-white">Savings by Goal</h2>
       </div>
-      
+
       {/* Subtitle */}
-      <p className="text-sm text-gray-400 mb-6">Where you're saving</p>
+      <p className="text-sm text-gray-400 mb-6">Where you&apos;re saving</p>
 
       {/* Goals List */}
       <div className="space-y-6">
@@ -43,7 +43,7 @@ export default function SavingsByGoalWidget({
                 <span className="text-xs text-gray-400">{goal.percentage}%</span>
               </div>
             </div>
-            
+
             {/* Progress Bar */}
             <div className="w-full bg-gray-800 rounded-full h-2.5 overflow-hidden">
               <div

components/FAQSection.tsx

@@ -56,7 +56,7 @@ export default function FAQSection() {
                         Frequently Asked <span className="text-[#DC2626]">Questions</span>
                     </h2>
                     <p className="text-white/60 max-w-xl mx-auto text-base font-regular">
-                        Got questions? We've got answers. Find everything you need to know
+                        Got questions? We&apos;ve got answers. Find everything you need to know
                         about using our platform, plans, and features.
                     </p>
                 </div>

lib/auth.ts

@@ -36,7 +36,7 @@ export function unauthorizedResponse() {
   });
 }
 
-import {  NextResponse } from "next/server";
+import { NextResponse } from "next/server";
 import { getSession } from "@/lib/session";
 
 type NextHandler = (req: NextRequest, address: string) => Promise<NextResponse>;
@@ -45,85 +45,13 @@ export function withAuth(handler: NextHandler) {
   return async (req: NextRequest) => {
 
     const session = await getSession();
-      if (!session?.address) {
-        return NextResponse.json(
-          { error: 'Unauthorized', message: 'Not authenticated' },
-          { status: 401 }
-        );
-      }
-    
-    return handler(req, session.address);
-/**
- * Higher-order function that wraps a route handler with auth validation.
- * Extracts the Bearer token and passes it to the handler as `session`.
- * Returns 401 if no valid token is present.
- *
- * Usage:
- *   async function handler(req: NextRequest, session: string) { ... }
- *   export const GET = withAuth(handler);
- */
-export function withAuth(
-  handler: (request: NextRequest, session: string) => Promise<NextResponse>
-) {
-  return async (request: NextRequest): Promise<NextResponse> => {
-    const authHeader = request.headers.get("authorization") ?? "";
-    const token = authHeader.startsWith("Bearer ")
-      ? authHeader.slice(7).trim()
-      : null;
-
-    if (!token) {
-      return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
-    }
-
-    if (token !== process.env.AUTH_SECRET) {
-      return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
-    }
-
-    return handler(request, token);
-  };
-}
- * Wrapper for protecting route handlers with session-based authentication.
- *
- * Extracts session from encrypted cookie and passes to handler.
- * Returns 401 Unauthorized if session is missing or invalid.
- *
- * @param handler - Route handler that receives (request, session)
- * @returns Route handler compatible with Next.js App Router
- *
- * @example
- * async function handler(request: NextRequest, session: string) {
- *   return NextResponse.json({ address: session });
- * }
- * export const GET = withAuth(handler);
- */
-export function withAuth(
-  handler: (request: NextRequest, session: string) => Promise<Response>,
-) {
-  return async (request: NextRequest): Promise<Response> => {
-    try {
-      const sessionData = await getSession();
-      if (!sessionData?.address) {
-        return NextResponse.json(
-          { error: "Unauthorized", message: "Not authenticated" },
-          { status: 401 },
-        );
-      }
-
-      return await handler(request, sessionData.address);
-    } catch (error) {
-      if (error instanceof ApiError) {
-        return NextResponse.json(
-          { error: error.message },
-          { status: error.status },
-        );
-      }
-
-      // Log unexpected errors but don't expose details
-      console.error("Route handler error:", error);
+    if (!session?.address) {
       return NextResponse.json(
-        { error: "Internal server error" },
-        { status: 500 },
+        { error: 'Unauthorized', message: 'Not authenticated' },
+        { status: 401 }
       );
     }
+
+    return handler(req, session.address);
   };
 }

lib/auth/nonce-store.ts

@@ -12,8 +12,9 @@ interface NonceRecord {
     expiresAt: number;
 }
 
-// In-memory store (replace with Redis/DB in production)
-const nonceStore = new Map<string, NonceRecord>();
+const globalForNonce = globalThis as unknown as { nonceStore: Map<string, NonceRecord> };
+const nonceStore = globalForNonce.nonceStore || new Map<string, NonceRecord>();
+if (process.env.NODE_ENV !== "production") globalForNonce.nonceStore = nonceStore;
 
 // Default TTL: 5 minutes
 const DEFAULT_NONCE_TTL_MS = 5 * 60 * 1000;
@@ -41,6 +42,7 @@ export function storeNonce(
     nonce: string,
     ttlMs: number = DEFAULT_NONCE_TTL_MS
 ): void {
+    console.log(`[NONCE-STORE] Storing nonce for ${address}: ${nonce}`);
     const now = Date.now();
     const record: NonceRecord = {
         nonce,
@@ -58,6 +60,7 @@ export function storeNonce(
  * Returns the nonce if valid, null if expired or not found
  */
 export function getNonce(address: string): string | null {
+    console.log(`[NONCE-STORE] Getting nonce for ${address}. Current store size: ${nonceStore.size}, store keys:`, Array.from(nonceStore.keys()));
     const record = nonceStore.get(address);
 
     if (!record) {

lib/contracts/bill-payments.test.ts

@@ -0,0 +1,113 @@
+import { describe, it, expect, vi, beforeEach } from 'vitest'
+import {
+    buildCreateBillTx,
+    buildPayBillTx,
+    buildCancelBillTx,
+} from './bill-payments'
+import * as StellarSdk from '@stellar/stellar-sdk'
+
+vi.spyOn(StellarSdk.Horizon.Server.prototype, 'loadAccount').mockImplementation(async (accountId: string) => {
+    if (accountId.startsWith('G')) {
+        return { sequence: '123' } as any
+    }
+    throw new Error('invalid-account')
+})
+
+describe('bill-payments helper', () => {
+    let validPublicKey: string
+
+    beforeEach(() => {
+        vi.clearAllMocks()
+        validPublicKey = StellarSdk.Keypair.random().publicKey()
+    })
+
+    describe('buildCreateBillTx', () => {
+        it('returns a valid XDR for a one-time bill', async () => {
+            const owner = validPublicKey
+            const name = 'Electric Bill'
+            const amount = 50
+            const dueDate = new Date(Date.now() + 86400000).toISOString() // tomorrow
+            const recurring = false
+
+            const xdr = await buildCreateBillTx(owner, name, amount, dueDate, recurring)
+            expect(typeof xdr).toBe('string')
+            expect(xdr.length).toBeGreaterThan(0)
+
+            const tx = new StellarSdk.Transaction(xdr, StellarSdk.Networks.TESTNET)
+            expect(tx.operations).toHaveLength(4)
+        })
+
+        it('returns a valid XDR for a recurring bill', async () => {
+            const owner = validPublicKey
+            const name = 'Internet Bill'
+            const amount = 80
+            const dueDate = new Date(Date.now() + 86400000).toISOString()
+            const recurring = true
+            const frequencyDays = 30
+
+            const xdr = await buildCreateBillTx(owner, name, amount, dueDate, recurring, frequencyDays)
+            expect(typeof xdr).toBe('string')
+
+            const tx = new StellarSdk.Transaction(xdr, StellarSdk.Networks.TESTNET)
+            expect(tx.operations).toHaveLength(5)
+        })
+
+        it('throws error for invalid owner public key', async () => {
+            await expect(
+                buildCreateBillTx('invalid-key', 'Bill', 50, new Date().toISOString(), false)
+            ).rejects.toThrow('invalid-owner')
+        })
+
+        it('throws error for invalid amount', async () => {
+            await expect(
+                buildCreateBillTx(validPublicKey, 'Bill', -10, new Date().toISOString(), false)
+            ).rejects.toThrow('invalid-amount')
+        })
+
+        it('throws error for invalid frequency', async () => {
+            await expect(
+                buildCreateBillTx(validPublicKey, 'Bill', 50, new Date().toISOString(), true, -5)
+            ).rejects.toThrow('invalid-frequency')
+        })
+
+        it('throws error for invalid due date', async () => {
+            await expect(
+                buildCreateBillTx(validPublicKey, 'Bill', 50, 'not-a-date', false)
+            ).rejects.toThrow('invalid-dueDate')
+        })
+    })
+
+    describe('buildPayBillTx', () => {
+        it('returns a valid XDR for paying a bill', async () => {
+            const xdr = await buildPayBillTx(validPublicKey, 'bill-123')
+            expect(typeof xdr).toBe('string')
+            const tx = new StellarSdk.Transaction(xdr, StellarSdk.Networks.TESTNET)
+            expect(tx.operations).toHaveLength(1)
+        })
+
+        it('throws error for invalid caller', async () => {
+            await expect(buildPayBillTx('invalid', 'bill-123')).rejects.toThrow('invalid-caller')
+        })
+
+        it('throws error for missing billId', async () => {
+            await expect(buildPayBillTx(validPublicKey, '')).rejects.toThrow('invalid-billId')
+        })
+    })
+
+    describe('buildCancelBillTx', () => {
+        it('returns a valid XDR for canceling a bill', async () => {
+            const xdr = await buildCancelBillTx(validPublicKey, 'bill-456')
+            expect(typeof xdr).toBe('string')
+            const tx = new StellarSdk.Transaction(xdr, StellarSdk.Networks.TESTNET)
+            expect(tx.operations).toHaveLength(1)
+        })
+
+        it('throws error for invalid caller', async () => {
+            await expect(buildCancelBillTx('invalid', 'bill-123')).rejects.toThrow('invalid-caller')
+        })
+
+        it('throws error for missing billId', async () => {
+            await expect(buildCancelBillTx(validPublicKey, '')).rejects.toThrow('invalid-billId')
+        })
+    })
+})