Validate individual transaction report parameters

Author: ugexe

CHANGELOG.md

@@ -6,6 +6,8 @@
   `ip_address` parameter optional. Now the `tag` and at least one of the
   following parameters must be supplied: `ip_address`, `maxmind_id`,
   `minfraud_id`, `transaction_id`.
+* Updated the validation for the Report Transactions API to check that
+  `ip_address`, `maxmind_id`, and `minfraud_id`  contain valid values.
 
 ## v2.5.0 (2024-04-16)
 

lib/minfraud/components/report/transaction.rb

@@ -8,6 +8,7 @@ module Report
       # @see https://dev.maxmind.com/minfraud/report-a-transaction?lang=en
       class Transaction < Base
         include ::Minfraud::Enum
+        include ::Minfraud::Validates
 
         # The IP address of the customer placing the order. This should be
         # passed as a string like "152.216.7.110". This field is not required
@@ -89,6 +90,10 @@ def initialize(params = {})
         def validate
           return if !Minfraud.enable_validation
 
+          validate_ip('ip_address', @ip_address)
+          validate_string('maxmind_id', 8, @maxmind_id)
+          validate_uuid('minfraud_id', @minfraud_id)
+
           if ip_address.nil? &&
              minfraud_id.nil? &&
              (maxmind_id.nil? || maxmind_id.empty?) &&

lib/minfraud/validates.rb

@@ -24,6 +24,19 @@ def validate_md5(field, value)
       end
     end
 
+    def validate_uuid(field, value)
+      return if !value
+
+      stripped_value = value.to_s.gsub('-', '')
+
+      # Define a regex pattern for a valid UUID without dashes
+      uuid_regex = /\A[0-9a-f]{32}\z/i
+
+      unless uuid_regex.match(stripped_value)
+        raise InvalidInputError, "The #{field} value is not valid. It must be a UUID string."
+      end
+    end
+
     def validate_subdivision_code(field, value)
       return if !value