Merge branch 'AC-461' into develop-bugfixes-121621

Author: dvoskoboinikov

ReCaptchaCheckoutSalesRule/Block/LayoutProcessor/Checkout/Onepage.php

@@ -0,0 +1,62 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+declare(strict_types=1);
+
+namespace Magento\ReCaptchaCheckoutSalesRule\Block\LayoutProcessor\Checkout;
+
+use Magento\Checkout\Block\Checkout\LayoutProcessorInterface;
+use Magento\Framework\Exception\InputException;
+use Magento\ReCaptchaUi\Model\IsCaptchaEnabledInterface;
+use Magento\ReCaptchaUi\Model\UiConfigResolverInterface;
+
+/**
+ * Provides reCaptcha component configuration.
+ */
+class Onepage implements LayoutProcessorInterface
+{
+    /**
+     * @var UiConfigResolverInterface
+     */
+    private $captchaUiConfigResolver;
+
+    /**
+     * @var IsCaptchaEnabledInterface
+     */
+    private $isCaptchaEnabled;
+
+    /**
+     * @param UiConfigResolverInterface $captchaUiConfigResolver
+     * @param IsCaptchaEnabledInterface $isCaptchaEnabled
+     */
+    public function __construct(
+        UiConfigResolverInterface $captchaUiConfigResolver,
+        IsCaptchaEnabledInterface $isCaptchaEnabled
+    ) {
+        $this->captchaUiConfigResolver = $captchaUiConfigResolver;
+        $this->isCaptchaEnabled = $isCaptchaEnabled;
+    }
+
+    /**
+     * @inheritDoc
+     */
+    public function process($jsLayout)
+    {
+        $key = 'coupon_code';
+        if ($this->isCaptchaEnabled->isCaptchaEnabledFor($key)) {
+            $jsLayout['components']['checkout']['children']['steps']['children']['billing-step']['children']
+            ['payment']['children']['afterMethods']['children']['discount']['children']
+            ['checkout_sales_rule']['settings'] = $this->captchaUiConfigResolver->get($key);
+        } else {
+            if (isset($jsLayout['components']['checkout']['children']['steps']['children']['billing-step']['children']
+                ['payment']['children']['afterMethods']['children']['discount']['children']['checkout_sales_rule'])) {
+                unset($jsLayout['components']['checkout']['children']['steps']['children']['billing-step']['children']
+                    ['payment']['children']['afterMethods']['children']['discount']['children']['checkout_sales_rule']);
+            }
+        }
+
+        return $jsLayout;
+    }
+}

ReCaptchaCheckoutSalesRule/Model/WebapiConfigProvider.php

@@ -0,0 +1,63 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+declare(strict_types=1);
+
+namespace Magento\ReCaptchaCheckoutSalesRule\Model;
+
+use Magento\ReCaptchaUi\Model\IsCaptchaEnabledInterface;
+use Magento\ReCaptchaUi\Model\ValidationConfigResolverInterface;
+use Magento\ReCaptchaValidationApi\Api\Data\ValidationConfigInterface;
+use Magento\ReCaptchaWebapiApi\Api\Data\EndpointInterface;
+use Magento\ReCaptchaWebapiApi\Api\WebapiValidationConfigProviderInterface;
+
+/**
+ * Provide checkout related endpoint configuration.
+ */
+class WebapiConfigProvider implements WebapiValidationConfigProviderInterface
+{
+    private const CAPTCHA_ID = 'coupon_code';
+
+    /**
+     * @var IsCaptchaEnabledInterface
+     */
+    private $isEnabled;
+
+    /**
+     * @var ValidationConfigResolverInterface
+     */
+    private $configResolver;
+
+    /**
+     * @param IsCaptchaEnabledInterface $isEnabled
+     * @param ValidationConfigResolverInterface $configResolver
+     */
+    public function __construct(IsCaptchaEnabledInterface $isEnabled, ValidationConfigResolverInterface $configResolver)
+    {
+        $this->isEnabled = $isEnabled;
+        $this->configResolver = $configResolver;
+    }
+
+    /**
+     * @inheritDoc
+     */
+    public function getConfigFor(EndpointInterface $endpoint): ?ValidationConfigInterface
+    {
+        //phpcs:disable Magento2.PHP.LiteralNamespaces
+        if ((($endpoint->getServiceClass() === 'Magento\Quote\Api\CouponManagementInterface' ||
+                    $endpoint->getServiceClass() === 'Magento\Quote\Api\GuestCouponManagementInterface') &&
+                $endpoint->getServiceMethod() === 'set')
+            || ($endpoint->getServiceClass() === 'Magento\QuoteGraphQl\Model\Resolver\ApplyCouponToCart'
+                || $endpoint->getServiceMethod() === 'ApplyCouponToCart')
+        ) {
+            if ($this->isEnabled->isCaptchaEnabledFor(self::CAPTCHA_ID)) {
+                return $this->configResolver->get(self::CAPTCHA_ID);
+            }
+        }
+        //phpcs:enable Magento2.PHP.LiteralNamespaces
+
+        return null;
+    }
+}

ReCaptchaCheckoutSalesRule/Observer/CouponCodeObserver.php

@@ -0,0 +1,73 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+declare(strict_types=1);
+
+namespace Magento\ReCaptchaCheckoutSalesRule\Observer;
+
+use Magento\Framework\App\Action\Action;
+use Magento\Framework\App\Response\RedirectInterface;
+use Magento\Framework\Event\Observer;
+use Magento\Framework\Event\ObserverInterface;
+use Magento\Framework\Exception\InputException;
+use Magento\ReCaptchaUi\Model\IsCaptchaEnabledInterface;
+use Magento\ReCaptchaUi\Model\RequestHandlerInterface;
+
+/**
+ * Add ReCaptcha support for Coupon Code
+ */
+class CouponCodeObserver implements ObserverInterface
+{
+    private const CAPTCHA_KEY = 'coupon_code';
+
+    /**
+     * @var RedirectInterface
+     */
+    private $redirect;
+
+    /**
+     * @var IsCaptchaEnabledInterface
+     */
+    private $isCaptchaEnabled;
+
+    /**
+     * @var RequestHandlerInterface
+     */
+    private $requestHandler;
+
+    /**
+     * @param RedirectInterface $redirect
+     * @param IsCaptchaEnabledInterface $isCaptchaEnabled
+     * @param RequestHandlerInterface $requestHandler
+     */
+    public function __construct(
+        RedirectInterface $redirect,
+        IsCaptchaEnabledInterface $isCaptchaEnabled,
+        RequestHandlerInterface $requestHandler
+    ) {
+        $this->redirect = $redirect;
+        $this->isCaptchaEnabled = $isCaptchaEnabled;
+        $this->requestHandler = $requestHandler;
+    }
+
+    /**
+     * @inheritdoc
+     * @param Observer $observer
+     * @return void
+     * @throws InputException
+     */
+    public function execute(Observer $observer): void
+    {
+        /** @var Action $controller */
+        $controller = $observer->getControllerAction();
+        $request_param = $controller->getRequest()->getParams();
+        if (!isset($request_param['remove']) && $this->isCaptchaEnabled->isCaptchaEnabledFor(self::CAPTCHA_KEY)) {
+            $request = $controller->getRequest();
+            $response = $controller->getResponse();
+            $redirectOnFailureUrl = $this->redirect->getRefererUrl();
+            $this->requestHandler->execute(self::CAPTCHA_KEY, $request, $response, $redirectOnFailureUrl);
+        }
+    }
+}

ReCaptchaCheckoutSalesRule/Plugin/CouponSetLayoutPlugin.php

@@ -0,0 +1,40 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+namespace Magento\ReCaptchaCheckoutSalesRule\Plugin;
+
+use Magento\Checkout\Block\Cart\Coupon;
+use Magento\ReCaptchaUi\Block\ReCaptcha;
+
+/**
+ * Plugin for adding recaptcha in coupon form
+ */
+class CouponSetLayoutPlugin
+{
+    /**
+     * Add Child ReCaptcha in Coupon form
+     *
+     * @param Coupon $subject
+     * @return Coupon
+     * @SuppressWarnings(PHPMD.UnusedFormalParameter)
+     */
+    public function afterSetLayout(Coupon $subject): Coupon
+    {
+        if (!$subject->getChildBlock('captcha')) {
+            $subject->addChild(
+                'captcha',
+                ReCaptcha::class,
+                [
+                    'jsLayout' => [
+                        'components' => [
+                            'captcha' => ['component' => 'Magento_ReCaptchaFrontendUi/js/reCaptcha']
+                        ]
+                    ]
+                ]
+            );
+        }
+        return $subject;
+    }
+}

ReCaptchaCheckoutSalesRule/README.md

@@ -0,0 +1,6 @@
+Magento reCAPTCHA
+Google reCAPTCHA ensures that a human being, rather than a computer (or “bot”), is interacting with your website. Unlike the standard Magento CAPTCHA, Google reCAPTCHA provides enhanced security with a selection of different display options and methods. Additional website traffic information is available in the dashboard of your Google reCAPTCHA account.
+
+This module provides the reCAPTCHA implementations related to coupon code apply action on checkout cart & payment.
+
+For more information please visit the Magento document for reCAPTCHA.

ReCaptchaCheckoutSalesRule/Test/Api/CouponApplyFormRecaptchaTest.php

@@ -0,0 +1,115 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+declare(strict_types=1);
+
+namespace Magento\ReCaptchaCheckoutSalesRule\Test\Api;
+
+use Magento\Framework\Webapi\Rest\Request;
+use Magento\Quote\Model\Quote;
+use Magento\Quote\Model\QuoteFactory;
+use Magento\TestFramework\TestCase\WebapiAbstract;
+
+/**
+ * Test that Coupon APIs are covered with ReCaptcha
+ */
+class CouponApplyFormRecaptchaTest extends WebapiAbstract
+{
+    private const API_ROUTE   = '/V1/carts/mine/coupons/%s';
+    private const COUPON_CODE = 'testCoupon';
+
+    /**
+     * @var \Magento\TestFramework\ObjectManager
+     */
+    protected $objectManager;
+
+    /**
+     * @var QuoteFactory
+     */
+    private $quoteFactory;
+
+    /**
+     * @inheritDoc
+     */
+    protected function setUp(): void
+    {
+        parent::setUp();
+
+        $this->_markTestAsRestOnly();
+        $this->objectManager = \Magento\TestFramework\Helper\Bootstrap::getObjectManager();
+        $this->quoteFactory = $this->objectManager->get(QuoteFactory::class);
+    }
+
+    /**
+     * @magentoApiDataFixture Magento/Checkout/_files/quote.php
+     * @magentoApiDataFixture Magento/Customer/_files/customer.php
+     * @magentoConfigFixture default_store customer/captcha/enable 0
+     * @magentoConfigFixture base_website recaptcha_frontend/type_invisible/public_key test_public_key
+     * @magentoConfigFixture base_website recaptcha_frontend/type_invisible/private_key test_private_key
+     * @magentoConfigFixture base_website recaptcha_frontend/type_for/coupon_code invisible
+     */
+    public function testRequired(): void
+    {
+        $this->expectException(\Throwable::class);
+        $this->expectExceptionCode(400);
+        $this->expectExceptionMessage('{"message":"ReCaptcha validation failed, please try again"}');
+
+        // get customer ID token
+        /** @var \Magento\Integration\Api\CustomerTokenServiceInterface $customerTokenService */
+        $customerTokenService = $this->objectManager->create(
+            \Magento\Integration\Api\CustomerTokenServiceInterface::class
+        );
+        $token = $customerTokenService->createCustomerAccessToken('[email protected]', 'password');
+
+        /** @var Quote $quote */
+        $quote = $this->quoteFactory->create();
+        $quote->load('test_order_1', 'reserved_order_id');
+        $cartId = $quote->getId();
+
+        $api_url = sprintf(self::API_ROUTE, self::COUPON_CODE);
+        $serviceInfo = [
+            'rest' => [
+                'resourcePath' => $api_url,
+                'httpMethod' => Request::HTTP_METHOD_PUT,
+                'token' => $token,
+            ],
+        ];
+        $requestData = [
+            'cart_id' => $cartId
+        ];
+
+        $this->_webApiCall($serviceInfo, $requestData);
+    }
+
+    /**
+     * @magentoApiDataFixture Magento/Checkout/_files/quote.php
+     * @magentoConfigFixture default_store customer/captcha/enable 0
+     * @magentoConfigFixture base_website recaptcha_frontend/type_invisible/public_key test_public_key
+     * @magentoConfigFixture base_website recaptcha_frontend/type_invisible/private_key test_private_key
+     * @magentoConfigFixture base_website recaptcha_frontend/type_for/coupon_code invisible
+     */
+    public function testGuestCartTest(): void
+    {
+        $this->expectException(\Throwable::class);
+        $this->expectExceptionCode(400);
+        $this->expectExceptionMessage('{"message":"ReCaptcha validation failed, please try again"}');
+
+        /** @var Quote $quote */
+        $quote = $this->quoteFactory->create();
+        $quote->load('test_order_1', 'reserved_order_id');
+        $cartId = $quote->getId();
+        $api_url = "/V1/guest-carts/$cartId/coupons/".self::COUPON_CODE;
+
+        $serviceInfo = [
+            'rest' => [
+                'resourcePath' => $api_url,
+                'httpMethod' => Request::HTTP_METHOD_PUT,
+                'token' => null
+            ],
+        ];
+        $requestData = [];
+        $this->_webApiCall($serviceInfo, $requestData);
+    }
+}