feat: OI-533 FE add pairwise in admin control panel (#916)

* feat: add validate and plan endpoint

* feat: add new client and header to update/create function

* feat: add new zod schema

* feat: add pairwise switch

* test: register ut

* refactor: code style

* test: ut

* refactor: comments implementation

* test: uncommitted test

* chore: add changeset

Author: BenSca

.changeset/cyan-actors-brush.md

@@ -0,0 +1,5 @@
+---
+"oi-control-panel": minor
+---
+
+Add switch and supporting logic to enable the Pairwise feature

.changeset/forty-cars-invent.md

@@ -0,0 +1,5 @@
+---
+"oneid-lambda-client-registration": minor
+---
+
+Change headers for pairwise feature

src/infra/api/oi-admin.tpl.json

@@ -35,7 +35,7 @@
         "operationId": "Post_oidc_register",
         "parameters":[
           {
-            "name": "PDV-X-Api-Key",
+            "name": "Plan-Api-Key",
             "in": "header",
             "description": "PDV API key used for plan validation when pairwise = true",
             "required": false,
@@ -44,7 +44,7 @@
             }
           },
           {
-            "name": "PDV-Plan-Name",
+            "name": "Plan-Name",
             "in": "header",
             "description": "PDV plan name associated with the PDV API key when pairwise = true",
             "required": false,
@@ -168,7 +168,7 @@
             }
           },
           {
-            "name": "PDV-X-Api-Key",
+            "name": "Plan-Api-Key",
             "in": "header",
             "description": "PDV API key used for plan validation when pairwise = true",
             "required": false,
@@ -177,7 +177,7 @@
             }
           },
           {
-            "name": "PDV-Plan-Name",
+            "name": "Plan-Name",
             "in": "header",
             "description": "PDV plan name associated with the PDV API key when pairwise = true",
             "required": false,

src/oneid/oneid-control-panel/.env.dev

@@ -7,6 +7,8 @@ VITE_PUBLIC_URL=https://admin.dev.oneid.pagopa.it
 
 VITE_URL_CDN=/assets
 VITE_URL_API_LOGIN=/oidc/register
+VITE_URL_API_PLAN_LIST_SCHEMA=/plan-list
+VITE_URL_API_VALIDATE_PLAN_SCHEMA=/validate-api-key
 VITE_URL_API_REGISTER=https://admin.dev.oneid.pagopa.it/oidc/register
 VITE_URL_API_CLIENT_USERS=https://admin.dev.oneid.pagopa.it/client-manager/client-users
 

src/oneid/oneid-control-panel/.env.development

@@ -7,6 +7,8 @@ VITE_PUBLIC_URL=http://localhost:5173
 
 VITE_URL_CDN=/assets
 VITE_URL_API_LOGIN=/oidc/register
+VITE_URL_API_PLAN_LIST_SCHEMA=/plan-list
+VITE_URL_API_VALIDATE_PLAN_SCHEMA=/validate-api-key
 VITE_URL_API_REGISTER=https://admin.dev.oneid.pagopa.it/oidc/register
 VITE_URL_API_CLIENT_USERS=https://admin.dev.oneid.pagopa.it/client-manager/client-users
 

src/oneid/oneid-control-panel/.env.prod

@@ -7,6 +7,8 @@ VITE_PUBLIC_URL=https://admin.oneid.pagopa.it
 
 VITE_URL_CDN=/assets
 VITE_URL_API_LOGIN=/oidc/register
+VITE_URL_API_PLAN_LIST_SCHEMA=/plan-list
+VITE_URL_API_VALIDATE_PLAN_SCHEMA=/validate-api-key
 VITE_URL_API_REGISTER=https://admin.oneid.pagopa.it/oidc/register
 
 # Cognito user pool

src/oneid/oneid-control-panel/.env.uat

@@ -7,6 +7,8 @@ VITE_PUBLIC_URL=https://admin.uat.oneid.pagopa.it
 
 VITE_URL_CDN=/assets
 VITE_URL_API_LOGIN=/oidc/register
+VITE_URL_API_PLAN_LIST_SCHEMA=/plan-list
+VITE_URL_API_VALIDATE_PLAN_SCHEMA=/validate-api-key
 VITE_URL_API_REGISTER=https://admin.uat.oneid.pagopa.it/oidc/register
 VITE_URL_API_CLIENT_USERS=https://admin.uat.oneid.pagopa.it/client-manager/client-users
 

src/oneid/oneid-control-panel/src/api/register.test.ts

@@ -1,12 +1,25 @@
 import { describe, it, expect, vi, beforeEach } from 'vitest';
-import { getClientData, createOrUpdateClient } from './register';
+import {
+  getClientData,
+  createOrUpdateClient,
+  getPlanList,
+  validateApiKeyPlan,
+} from './register';
 import { ENV } from '../utils/env';
-import { Client, SamlAttribute, SpidLevel } from '../types/api';
+import {
+  Client,
+  SamlAttribute,
+  SpidLevel,
+  ValidateApiKeySchema,
+  ValidatePlanSchema,
+} from '../types/api';
 
 vi.mock('../utils/env', () => ({
   ENV: { URL_API: { REGISTER: 'https://api.example.com/register' } },
 }));
 
+const unexpectedError = 'Unexpected error';
+
 const axiosMock = vi.hoisted(() => ({
   get: vi.fn(),
   post: vi.fn(),
@@ -53,7 +66,7 @@ describe('getClientData', () => {
     vi.restoreAllMocks();
   });
 
-  it('fetches client data successfully', async () => {
+  it('fetches plan data successfully', async () => {
     axiosMock.get.mockResolvedValueOnce({
       data: mockClientData,
     });
@@ -151,6 +164,43 @@ describe('createOrUpdateClient', () => {
     );
   });
 
+  it('updates an existing client successfully pairwise enabled', async () => {
+    const clientId = 'existing-client-id';
+    axiosMock.put.mockResolvedValueOnce({
+      data: {
+        ...mockClientData,
+        pairwise: true,
+      },
+    });
+
+    const mockValidatePlanSchema: ValidatePlanSchema = {
+      apiKeyId: 'plan1',
+      apiKeyValue: 'keyValue',
+    };
+
+    const result = await createOrUpdateClient(
+      mockClientData,
+      token,
+      clientId,
+      mockValidatePlanSchema
+    );
+    expect(result).toEqual({
+      ...mockClientData,
+      pairwise: true,
+    });
+    expect(axiosMock.put).toHaveBeenCalledWith(
+      `${ENV.URL_API.REGISTER}/client_id/${clientId}`,
+      mockClientData,
+      {
+        headers: {
+          Authorization: `Bearer ${token}`,
+          'Plan-Api-Key': mockValidatePlanSchema.apiKeyValue,
+          'Plan-Name': mockValidatePlanSchema.apiKeyId,
+        },
+      }
+    );
+  });
+
   it('throws validation errors for invalid client data', async () => {
     const invalidData = { ...mockClientData, client_name: '' }; // Invalid client_name
     await expect(createOrUpdateClient(invalidData, token)).rejects.toThrow();
@@ -168,11 +218,136 @@ describe('createOrUpdateClient', () => {
   });
 
   it('throws a generic error if the API call fails unexpectedly', async () => {
-    const mockError = { isAxiosError: false, message: 'Unexpected error' };
+    const mockError = { isAxiosError: false, message: unexpectedError };
     axiosMock.post.mockRejectedValueOnce(mockError);
 
     await expect(createOrUpdateClient(mockClientData, token)).rejects.toThrow(
-      'Unexpected error'
+      unexpectedError
+    );
+  });
+});
+describe('getPlanData', () => {
+  const clientID = '0000000000000000000000000000000000000000000';
+
+  const mockPlanData = {
+    api_keys: [
+      {
+        id: 'id1',
+        name: 'plan1',
+      },
+      {
+        id: 'id2',
+        name: 'plan2',
+      },
+    ],
+  };
+
+  beforeEach(() => {
+    vi.stubGlobal('window', {
+      location: { search: `?client_id=${clientID}` },
+    });
+  });
+
+  afterEach(() => {
+    vi.restoreAllMocks();
+  });
+
+  it('fetches plan data successfully', async () => {
+    axiosMock.get.mockResolvedValueOnce({
+      data: mockPlanData,
+    });
+
+    const result = await getPlanList('token');
+    expect(result).toEqual(mockPlanData);
+  });
+
+  it('throws a custom error if the fetch fails', async () => {
+    axiosMock.get.mockRejectedValue({
+      isAxiosError: true,
+      response: { data: { status: 401, message: 'Unauthorized' } },
+    });
+
+    await expect(getPlanList('token')).rejects.toThrow('Unauthorized');
+  });
+
+  it('throws an error if the fetch fails', async () => {
+    axiosMock.get.mockRejectedValue({
+      isAxiosError: true,
+      response: { data: { status: 401 } },
+    });
+
+    await expect(getPlanList('token')).rejects.toThrow(
+      'Failed to fetch plan data'
+    );
+  });
+  it('throws a generic error if the fetch fails', async () => {
+    const mockError = {
+      isAxiosError: false,
+      response: { data: { status: 401 } },
+    };
+    axiosMock.get.mockRejectedValue(mockError);
+
+    await expect(getPlanList('token')).rejects.toThrow(
+      `An unknown error occurred ${JSON.stringify(mockError)}`
+    );
+  });
+});
+
+describe('validateApiKeyPlan', () => {
+  const mockValidateApiKeyData: ValidateApiKeySchema = {
+    valid: true,
+  };
+
+  const mockValidatePlan: ValidatePlanSchema = {
+    apiKeyId: 'plan1',
+    apiKeyValue: 'keyValue',
+  };
+
+  const token = 'test-token';
+
+  it('validates key successfully', async () => {
+    axiosMock.post.mockResolvedValueOnce({
+      data: {
+        ...mockValidateApiKeyData,
+      },
+    });
+
+    const result = await validateApiKeyPlan(mockValidatePlan, token);
+    expect(result).toEqual({
+      ...mockValidateApiKeyData,
+    });
+    expect(axiosMock.post).toHaveBeenCalledWith(
+      ENV.URL_API.REGISTER + ENV.URL_API.VALIDATE_API_PLAN,
+      {
+        api_key_id: mockValidatePlan.apiKeyId,
+        api_key_value: mockValidatePlan.apiKeyValue,
+      },
+      { headers: { Authorization: `Bearer ${token}` } }
+    );
+  });
+
+  it('throws validation errors for invalid API key data', async () => {
+    const invalidData = { ...mockValidatePlan, apiKeyValue: '' };
+    await expect(validateApiKeyPlan(invalidData, token)).rejects.toThrow();
+  });
+
+  it('throws an error if the API call fails', async () => {
+    axiosMock.post.mockRejectedValueOnce({
+      isAxiosError: true,
+      response: { data: { message: 'Failed to validate API key' } },
+    });
+
+    await expect(validateApiKeyPlan(mockValidatePlan, token)).rejects.toThrow(
+      'Failed to validate API key'
+    );
+  });
+
+  it('throws a generic error if the API call fails unexpectedly', async () => {
+    const mockError = { isAxiosError: false, message: unexpectedError };
+    axiosMock.post.mockRejectedValueOnce(mockError);
+
+    await expect(validateApiKeyPlan(mockValidatePlan, token)).rejects.toThrow(
+      unexpectedError
     );
   });
 });