From a3e6f1ea29fcf884318133e2197c3ca45ce000b6 Mon Sep 17 00:00:00 2001 From: omaroughriss Date: Thu, 17 Jul 2025 14:52:05 +0200 Subject: [PATCH 1/5] Add .env exemple --- .env.exemple | 11 +++++++++++ 1 file changed, 11 insertions(+) create mode 100644 .env.exemple diff --git a/.env.exemple b/.env.exemple new file mode 100644 index 0000000..a6cc32c --- /dev/null +++ b/.env.exemple @@ -0,0 +1,11 @@ +# Configuration OVH +OVH_APP_KEY= +OVH_APP_SECRET= +OVH_CONSUMER_KEY= +OVH_SMS_SERVICE_NAME= + +# Configuration SMS Factor +SMS_FACTOR_TOKEN= + +# Configuration serveur +PORT= From c554f1162f57eeb58c9305b3946d908fb09019ca Mon Sep 17 00:00:00 2001 From: omaroughriss Date: Thu, 17 Jul 2025 14:52:33 +0200 Subject: [PATCH 2/5] Add ovh and dotenv deps --- package.json | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/package.json b/package.json index af505e7..8e6a76c 100644 --- a/package.json +++ b/package.json @@ -9,8 +9,10 @@ }, "dependencies": { "cors": "^2.8.5", + "dotenv": "^17.2.0", "express": "^4.18.2", - "node-fetch": "^2.6.7" + "node-fetch": "^2.6.7", + "ovh": "^2.0.3" }, "devDependencies": { "nodemon": "^3.0.1" From 4615c57629750f799396d88addf111b70ef1e601 Mon Sep 17 00:00:00 2001 From: omaroughriss Date: Thu, 17 Jul 2025 14:53:44 +0200 Subject: [PATCH 3/5] Rename the main server just for now --- src/main-server.js | 179 +++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 179 insertions(+) create mode 100644 src/main-server.js diff --git a/src/main-server.js b/src/main-server.js new file mode 100644 index 0000000..957a2a1 --- /dev/null +++ b/src/main-server.js @@ -0,0 +1,179 @@ +const express = require('express'); +const cors = require('cors'); +const fetch = require('node-fetch'); + +// Initialisation de l'application Express +const app = express(); +const PORT = process.env.PORT || 8080; + +// Configuration CORS +const corsOptions = { + origin: ['http://local.lecoffreio.4nkweb:3000', 'http://localhost:3000'], + methods: ['GET', 'POST', 'PUT', 'DELETE', 'OPTIONS'], + allowedHeaders: ['Content-Type', 'Authorization'] +}; + +app.use(cors(corsOptions)); +app.use(express.json()); + +function getOfficeStatus(statusName) { + switch (statusName) { + case 'Pourvu': + return 'ACTIVATED'; + case 'Pourvu mais décédé': + return 'ACTIVATED'; + case 'Sans titulaire': + return 'ACTIVATED'; + case 'Vacance': + return 'ACTIVATED'; + case 'En activité': + return 'ACTIVATED'; + default: + return 'DESACTIVATED'; + } +} + +function getRole(roleName) { + switch (roleName) { + case 'Notaire titulaire': + return { name: 'admin', label: 'Administrateur' }; + case 'Notaire associé': + return { name: 'admin', label: 'Administrateur' }; + case 'Notaire salarié': + return { name: 'notary', label: 'Notaire' }; + case 'Collaborateur': + return { name: 'notary', label: 'Notaire' }; + case 'Suppléant': + return { name: 'notary', label: 'Notaire' }; + case 'Administrateur': + return { name: 'admin', label: 'Administrateur' }; + case 'Curateur': + return { name: 'notary', label: 'Notaire' }; + default: + return { name: 'default', label: 'Défaut' }; + } +} + +function getCivility(civility) { + switch (civility) { + case 'Monsieur': + return 'MALE'; + case 'Madame': + return 'FEMALE'; + default: + return 'OTHERS'; + } +} + +app.get('/api/v1/health', (req, res) => { + res.json({ message: 'OK' }); +}); + +app.post('/api/v1/idnot/user/:code', async (req, res) => { + const code = req.params.code; + + try { + const params = { + client_id: 'B3CE56353EDB15A9', + client_secret: '3F733549E879878344B6C949B366BB5CDBB2DB5B7F7AB7EBBEBB0F0DD0776D1C', + redirect_uri: 'http://local.lecoffreio.4nkweb:3000/authorized-client', + grant_type: 'authorization_code', + code: code + }; + + const tokens = await ( + await fetch('https://qual-connexion.idnot.fr/user/IdPOAuth2/token/idnot_idp_v1', { + method: 'POST', + headers: { + 'Content-Type': 'application/x-www-form-urlencoded', + }, + body: new URLSearchParams(params).toString() + }) + ).json(); + + const jwt = tokens.id_token; + if (!jwt) { + console.error('jwt not defined'); + return null; + } + const payload = JSON.parse(Buffer.from(jwt.split('.')[1], 'base64').toString('utf8')); + + const searchParams = new URLSearchParams({ + key: 'ba557f84-0bf6-4dbf-844f-df2767555e3e' + }); + + let userData; + try { + userData = await ( + await fetch(`https://qual-api.notaires.fr/annuaire/api/pp/v2/rattachements/${payload.profile_idn}?` + searchParams, { + method: 'GET' + }) + ).json(); + } catch (error) { + console.error('Error fetching ' + `https://qual-api.notaires.fr/annuaire/api/pp/v2/rattachements/${payload.profile_idn}`, error); + return null; + } + if (!userData || !userData.statutDuRattachement || userData.entite.typeEntite.name !== 'office') { + console.error('User not attached to an office (May be a partner)'); + return null; + } + + let officeLocationData; + try { + officeLocationData = (await ( + await fetch(`https://qual-api.notaires.fr/annuaire${userData.entite.locationsUrl}?` + searchParams, + { + method: 'GET' + }) + ).json()); + } catch (error) { + console.error('Error fetching' + `https://qual-api.notaires.fr/annuaire${userData.entite.locationsUrl}`, error); + return null; + } + if (!officeLocationData || !officeLocationData.result || officeLocationData.result.length === 0) { + console.error('Office location data not found'); + return null; + } + + const idnotUser = { + idNot: payload.sub, + office: { + idNot: payload.entity_idn, + name: userData.entite.denominationSociale ?? userData.entite.codeCrpcen, + crpcen: userData.entite.codeCrpcen, + office_status: getOfficeStatus(userData.entite.statutEntite.name), + address: { + address: officeLocationData.result[0].adrGeo4, + city: officeLocationData.result[0].adrGeoVille.split(' ')[0] ?? officeLocationData.result[0].adrGeoVille, + zip_code: Number(officeLocationData.result[0].adrGeoCodePostal) + }, + status: 'ACTIVE' + }, + role: getRole(userData.typeLien.name), + contact: { + first_name: userData.personne.prenom, + last_name: userData.personne.nomUsuel, + email: userData.mailRattachement, + phone_number: userData.numeroTelephone, + cell_phone_number: userData.numeroMobile ?? userData.numeroTelephone, + civility: getCivility(userData.personne.civilite) + } + }; + + if (!idnotUser.contact.email) { + console.error("User pro email empty"); + return null; + } + + res.json(idnotUser); + } catch (error) { + res.status(500).json({ + error: 'Internal Server Error', + message: error.message + }); + } +}); + +app.listen(PORT, () => { + console.log(`Server is running on port ${PORT}`); +}); From 862d82ac6bb3dbb2a5ba59e677f9c4aeac647899 Mon Sep 17 00:00:00 2001 From: omaroughriss Date: Thu, 17 Jul 2025 14:54:10 +0200 Subject: [PATCH 4/5] Add the SMS feature --- src/server.js | 369 ++++++++++++++++++++++++++++---------------------- 1 file changed, 207 insertions(+), 162 deletions(-) diff --git a/src/server.js b/src/server.js index 957a2a1..e9001ac 100644 --- a/src/server.js +++ b/src/server.js @@ -1,179 +1,224 @@ const express = require('express'); -const cors = require('cors'); const fetch = require('node-fetch'); +const ovh = require('ovh'); +require('dotenv').config(); -// Initialisation de l'application Express const app = express(); -const PORT = process.env.PORT || 8080; - -// Configuration CORS -const corsOptions = { - origin: ['http://local.lecoffreio.4nkweb:3000', 'http://localhost:3000'], - methods: ['GET', 'POST', 'PUT', 'DELETE', 'OPTIONS'], - allowedHeaders: ['Content-Type', 'Authorization'] -}; - -app.use(cors(corsOptions)); app.use(express.json()); -function getOfficeStatus(statusName) { - switch (statusName) { - case 'Pourvu': - return 'ACTIVATED'; - case 'Pourvu mais décédé': - return 'ACTIVATED'; - case 'Sans titulaire': - return 'ACTIVATED'; - case 'Vacance': - return 'ACTIVATED'; - case 'En activité': - return 'ACTIVATED'; - default: - return 'DESACTIVATED'; - } -} +const config = { + // Configuration OVH + OVH_APP_KEY: process.env.OVH_APP_KEY, + OVH_APP_SECRET: process.env.OVH_APP_SECRET, + OVH_CONSUMER_KEY: process.env.OVH_CONSUMER_KEY, + OVH_SMS_SERVICE_NAME: process.env.OVH_SMS_SERVICE_NAME, + + // Configuration SMS Factor + SMS_FACTOR_TOKEN: process.env.SMS_FACTOR_TOKEN, + + PORT: process.env.PORT || 8080 +}; -function getRole(roleName) { - switch (roleName) { - case 'Notaire titulaire': - return { name: 'admin', label: 'Administrateur' }; - case 'Notaire associé': - return { name: 'admin', label: 'Administrateur' }; - case 'Notaire salarié': - return { name: 'notary', label: 'Notaire' }; - case 'Collaborateur': - return { name: 'notary', label: 'Notaire' }; - case 'Suppléant': - return { name: 'notary', label: 'Notaire' }; - case 'Administrateur': - return { name: 'admin', label: 'Administrateur' }; - case 'Curateur': - return { name: 'notary', label: 'Notaire' }; - default: - return { name: 'default', label: 'Défaut' }; - } -} +// Stockage temporaire des codes +const verificationCodes = new Map(); -function getCivility(civility) { - switch (civility) { - case 'Monsieur': - return 'MALE'; - case 'Madame': - return 'FEMALE'; - default: - return 'OTHERS'; - } -} - -app.get('/api/v1/health', (req, res) => { - res.json({ message: 'OK' }); -}); - -app.post('/api/v1/idnot/user/:code', async (req, res) => { - const code = req.params.code; - - try { - const params = { - client_id: 'B3CE56353EDB15A9', - client_secret: '3F733549E879878344B6C949B366BB5CDBB2DB5B7F7AB7EBBEBB0F0DD0776D1C', - redirect_uri: 'http://local.lecoffreio.4nkweb:3000/authorized-client', - grant_type: 'authorization_code', - code: code - }; - - const tokens = await ( - await fetch('https://qual-connexion.idnot.fr/user/IdPOAuth2/token/idnot_idp_v1', { - method: 'POST', - headers: { - 'Content-Type': 'application/x-www-form-urlencoded', - }, - body: new URLSearchParams(params).toString() - }) - ).json(); - - const jwt = tokens.id_token; - if (!jwt) { - console.error('jwt not defined'); - return null; +// Service SMS +class SmsService { + static generateCode() { + return Math.floor(100000 + Math.random() * 900000); } - const payload = JSON.parse(Buffer.from(jwt.split('.')[1], 'base64').toString('utf8')); - const searchParams = new URLSearchParams({ - key: 'ba557f84-0bf6-4dbf-844f-df2767555e3e' - }); + // Service OVH + static sendSmsWithOvh(phoneNumber, message) { + return new Promise((resolve, reject) => { + const ovhClient = ovh({ + appKey: config.OVH_APP_KEY, + appSecret: config.OVH_APP_SECRET, + consumerKey: config.OVH_CONSUMER_KEY + }); + + ovhClient.request('POST', `/sms/${config.OVH_SMS_SERVICE_NAME}/jobs`, { + message: message, + receivers: [phoneNumber], + senderForResponse: false, + sender: "not.IT Fact", + noStopClause: true + }, (error, result) => { + if (error) { + console.error('Erreur OVH SMS:', error); + resolve({ success: false, error: 'Échec de l\'envoi du SMS via OVH' }); + } else { + resolve({ success: true }); + } + }); + }); + } + + // Service SMS Factor + static async sendSmsWithSmsFactor(phoneNumber, message) { + try { + const url = new URL('https://api.smsfactor.com/send/simulate'); + url.searchParams.append('to', phoneNumber); + url.searchParams.append('text', message); + url.searchParams.append('sender', 'LeCoffre'); + url.searchParams.append('token', config.SMS_FACTOR_TOKEN); + + const response = await fetch(url.toString()); + + if (!response.ok) { + throw new Error(`HTTP error! status: ${response.status}`); + } + + return { success: true }; + } catch (error) { + console.error('Erreur SMS Factor:', error); + return { success: false, error: 'Échec de l\'envoi du SMS via SMS Factor' }; + } + } + + // Méthode principale d'envoi + static async sendSms(phoneNumber, message) { + // Essai d'abord avec OVH + const ovhResult = await this.sendSmsWithOvh(phoneNumber, message); + + if (ovhResult.success) { + return ovhResult; + } + + // Si OVH échoue, essai avec SMS Factor + console.log('OVH SMS failed, trying SMS Factor...'); + return await this.sendSmsWithSmsFactor(phoneNumber, message); + } +} + +// Middleware de validation +const validatePhoneNumber = (req, res, next) => { + const { phoneNumber } = req.body; + + if (!phoneNumber) { + return res.status(400).json({ + success: false, + message: 'Le numéro de téléphone est requis' + }); + } + + // Validation basique du format + const phoneRegex = /^\+?[1-9]\d{1,14}$/; + if (!phoneRegex.test(phoneNumber)) { + return res.status(400).json({ + success: false, + message: 'Format de numéro de téléphone invalide' + }); + } + + next(); +}; + +// Routes +app.post('/api/send-verification', validatePhoneNumber, async (req, res) => { + const { phoneNumber } = req.body; - let userData; try { - userData = await ( - await fetch(`https://qual-api.notaires.fr/annuaire/api/pp/v2/rattachements/${payload.profile_idn}?` + searchParams, { - method: 'GET' - }) - ).json(); + // Vérifier si un code existe déjà et n'est pas expiré + const existingVerification = verificationCodes.get(phoneNumber); + if (existingVerification) { + const timeSinceLastSend = Date.now() - existingVerification.timestamp; + if (timeSinceLastSend < 30000) { // 30 secondes + return res.status(429).json({ + success: false, + message: 'Veuillez attendre 30 secondes avant de demander un nouveau code' + }); + } + } + + // Générer un nouveau code + const code = SmsService.generateCode(); + + // Stocker le code + verificationCodes.set(phoneNumber, { + code, + timestamp: Date.now(), + attempts: 0 + }); + + // Envoyer le SMS + const message = `Votre code de vérification LeCoffre est : ${code}`; + const result = await SmsService.sendSms(phoneNumber, message); + + if (result.success) { + res.json({ + success: true, + message: 'Code envoyé avec succès', + }); + } else { + res.status(500).json({ + success: false, + message: 'Échec de l\'envoi du SMS via les deux fournisseurs' + }); + } } catch (error) { - console.error('Error fetching ' + `https://qual-api.notaires.fr/annuaire/api/pp/v2/rattachements/${payload.profile_idn}`, error); - return null; + console.error('Erreur:', error); + res.status(500).json({ + success: false, + message: 'Erreur serveur lors de l\'envoi du code' + }); } - if (!userData || !userData.statutDuRattachement || userData.entite.typeEntite.name !== 'office') { - console.error('User not attached to an office (May be a partner)'); - return null; - } - - let officeLocationData; - try { - officeLocationData = (await ( - await fetch(`https://qual-api.notaires.fr/annuaire${userData.entite.locationsUrl}?` + searchParams, - { - method: 'GET' - }) - ).json()); - } catch (error) { - console.error('Error fetching' + `https://qual-api.notaires.fr/annuaire${userData.entite.locationsUrl}`, error); - return null; - } - if (!officeLocationData || !officeLocationData.result || officeLocationData.result.length === 0) { - console.error('Office location data not found'); - return null; - } - - const idnotUser = { - idNot: payload.sub, - office: { - idNot: payload.entity_idn, - name: userData.entite.denominationSociale ?? userData.entite.codeCrpcen, - crpcen: userData.entite.codeCrpcen, - office_status: getOfficeStatus(userData.entite.statutEntite.name), - address: { - address: officeLocationData.result[0].adrGeo4, - city: officeLocationData.result[0].adrGeoVille.split(' ')[0] ?? officeLocationData.result[0].adrGeoVille, - zip_code: Number(officeLocationData.result[0].adrGeoCodePostal) - }, - status: 'ACTIVE' - }, - role: getRole(userData.typeLien.name), - contact: { - first_name: userData.personne.prenom, - last_name: userData.personne.nomUsuel, - email: userData.mailRattachement, - phone_number: userData.numeroTelephone, - cell_phone_number: userData.numeroMobile ?? userData.numeroTelephone, - civility: getCivility(userData.personne.civilite) - } - }; - - if (!idnotUser.contact.email) { - console.error("User pro email empty"); - return null; - } - - res.json(idnotUser); - } catch (error) { - res.status(500).json({ - error: 'Internal Server Error', - message: error.message - }); - } }); -app.listen(PORT, () => { - console.log(`Server is running on port ${PORT}`); +app.post('/api/verify-code', validatePhoneNumber, (req, res) => { + const { phoneNumber, code } = req.body; + + if (!code) { + return res.status(400).json({ + success: false, + message: 'Le code est requis' + }); + } + + const verification = verificationCodes.get(phoneNumber); + + if (!verification) { + return res.status(400).json({ + success: false, + message: 'Aucun code n\'a été envoyé à ce numéro' + }); + } + + // Vérifier si le code n'a pas expiré (5 minutes) + if (Date.now() - verification.timestamp > 5 * 60 * 1000) { + verificationCodes.delete(phoneNumber); + return res.status(400).json({ + success: false, + message: 'Le code a expiré' + }); + } + + // Vérifier le code + if (verification.code.toString() === code.toString()) { + verificationCodes.delete(phoneNumber); + res.json({ + success: true, + message: 'Code vérifié avec succès' + }); + } else { + verification.attempts += 1; + + if (verification.attempts >= 3) { + verificationCodes.delete(phoneNumber); + res.status(400).json({ + success: false, + message: 'Trop de tentatives. Veuillez demander un nouveau code' + }); + } else { + res.status(400).json({ + success: false, + message: 'Code incorrect' + }); + } + } }); + +// Démarrage du serveur +app.listen(config.PORT, () => { + console.log(`Serveur démarré sur le port ${config.PORT}`); +}); \ No newline at end of file From f6f36e1453391e7852d7fe74379308731b4aaeca Mon Sep 17 00:00:00 2001 From: Omar Oughriss Date: Fri, 18 Jul 2025 15:41:58 +0200 Subject: [PATCH 5/5] Move SMS feature to the main file --- src/main-server.js | 179 --------------- src/server.js | 535 ++++++++++++++++++++++++++++++--------------- 2 files changed, 353 insertions(+), 361 deletions(-) delete mode 100644 src/main-server.js diff --git a/src/main-server.js b/src/main-server.js deleted file mode 100644 index 957a2a1..0000000 --- a/src/main-server.js +++ /dev/null @@ -1,179 +0,0 @@ -const express = require('express'); -const cors = require('cors'); -const fetch = require('node-fetch'); - -// Initialisation de l'application Express -const app = express(); -const PORT = process.env.PORT || 8080; - -// Configuration CORS -const corsOptions = { - origin: ['http://local.lecoffreio.4nkweb:3000', 'http://localhost:3000'], - methods: ['GET', 'POST', 'PUT', 'DELETE', 'OPTIONS'], - allowedHeaders: ['Content-Type', 'Authorization'] -}; - -app.use(cors(corsOptions)); -app.use(express.json()); - -function getOfficeStatus(statusName) { - switch (statusName) { - case 'Pourvu': - return 'ACTIVATED'; - case 'Pourvu mais décédé': - return 'ACTIVATED'; - case 'Sans titulaire': - return 'ACTIVATED'; - case 'Vacance': - return 'ACTIVATED'; - case 'En activité': - return 'ACTIVATED'; - default: - return 'DESACTIVATED'; - } -} - -function getRole(roleName) { - switch (roleName) { - case 'Notaire titulaire': - return { name: 'admin', label: 'Administrateur' }; - case 'Notaire associé': - return { name: 'admin', label: 'Administrateur' }; - case 'Notaire salarié': - return { name: 'notary', label: 'Notaire' }; - case 'Collaborateur': - return { name: 'notary', label: 'Notaire' }; - case 'Suppléant': - return { name: 'notary', label: 'Notaire' }; - case 'Administrateur': - return { name: 'admin', label: 'Administrateur' }; - case 'Curateur': - return { name: 'notary', label: 'Notaire' }; - default: - return { name: 'default', label: 'Défaut' }; - } -} - -function getCivility(civility) { - switch (civility) { - case 'Monsieur': - return 'MALE'; - case 'Madame': - return 'FEMALE'; - default: - return 'OTHERS'; - } -} - -app.get('/api/v1/health', (req, res) => { - res.json({ message: 'OK' }); -}); - -app.post('/api/v1/idnot/user/:code', async (req, res) => { - const code = req.params.code; - - try { - const params = { - client_id: 'B3CE56353EDB15A9', - client_secret: '3F733549E879878344B6C949B366BB5CDBB2DB5B7F7AB7EBBEBB0F0DD0776D1C', - redirect_uri: 'http://local.lecoffreio.4nkweb:3000/authorized-client', - grant_type: 'authorization_code', - code: code - }; - - const tokens = await ( - await fetch('https://qual-connexion.idnot.fr/user/IdPOAuth2/token/idnot_idp_v1', { - method: 'POST', - headers: { - 'Content-Type': 'application/x-www-form-urlencoded', - }, - body: new URLSearchParams(params).toString() - }) - ).json(); - - const jwt = tokens.id_token; - if (!jwt) { - console.error('jwt not defined'); - return null; - } - const payload = JSON.parse(Buffer.from(jwt.split('.')[1], 'base64').toString('utf8')); - - const searchParams = new URLSearchParams({ - key: 'ba557f84-0bf6-4dbf-844f-df2767555e3e' - }); - - let userData; - try { - userData = await ( - await fetch(`https://qual-api.notaires.fr/annuaire/api/pp/v2/rattachements/${payload.profile_idn}?` + searchParams, { - method: 'GET' - }) - ).json(); - } catch (error) { - console.error('Error fetching ' + `https://qual-api.notaires.fr/annuaire/api/pp/v2/rattachements/${payload.profile_idn}`, error); - return null; - } - if (!userData || !userData.statutDuRattachement || userData.entite.typeEntite.name !== 'office') { - console.error('User not attached to an office (May be a partner)'); - return null; - } - - let officeLocationData; - try { - officeLocationData = (await ( - await fetch(`https://qual-api.notaires.fr/annuaire${userData.entite.locationsUrl}?` + searchParams, - { - method: 'GET' - }) - ).json()); - } catch (error) { - console.error('Error fetching' + `https://qual-api.notaires.fr/annuaire${userData.entite.locationsUrl}`, error); - return null; - } - if (!officeLocationData || !officeLocationData.result || officeLocationData.result.length === 0) { - console.error('Office location data not found'); - return null; - } - - const idnotUser = { - idNot: payload.sub, - office: { - idNot: payload.entity_idn, - name: userData.entite.denominationSociale ?? userData.entite.codeCrpcen, - crpcen: userData.entite.codeCrpcen, - office_status: getOfficeStatus(userData.entite.statutEntite.name), - address: { - address: officeLocationData.result[0].adrGeo4, - city: officeLocationData.result[0].adrGeoVille.split(' ')[0] ?? officeLocationData.result[0].adrGeoVille, - zip_code: Number(officeLocationData.result[0].adrGeoCodePostal) - }, - status: 'ACTIVE' - }, - role: getRole(userData.typeLien.name), - contact: { - first_name: userData.personne.prenom, - last_name: userData.personne.nomUsuel, - email: userData.mailRattachement, - phone_number: userData.numeroTelephone, - cell_phone_number: userData.numeroMobile ?? userData.numeroTelephone, - civility: getCivility(userData.personne.civilite) - } - }; - - if (!idnotUser.contact.email) { - console.error("User pro email empty"); - return null; - } - - res.json(idnotUser); - } catch (error) { - res.status(500).json({ - error: 'Internal Server Error', - message: error.message - }); - } -}); - -app.listen(PORT, () => { - console.log(`Server is running on port ${PORT}`); -}); diff --git a/src/server.js b/src/server.js index e9001ac..dd7f302 100644 --- a/src/server.js +++ b/src/server.js @@ -1,224 +1,395 @@ const express = require('express'); +const cors = require('cors'); const fetch = require('node-fetch'); const ovh = require('ovh'); require('dotenv').config(); +// Initialisation de l'application Express const app = express(); -app.use(express.json()); +const PORT = process.env.PORT || 8080; -const config = { - // Configuration OVH - OVH_APP_KEY: process.env.OVH_APP_KEY, - OVH_APP_SECRET: process.env.OVH_APP_SECRET, - OVH_CONSUMER_KEY: process.env.OVH_CONSUMER_KEY, - OVH_SMS_SERVICE_NAME: process.env.OVH_SMS_SERVICE_NAME, - - // Configuration SMS Factor - SMS_FACTOR_TOKEN: process.env.SMS_FACTOR_TOKEN, - - PORT: process.env.PORT || 8080 +// Configuration CORS +const corsOptions = { + origin: ['http://local.lecoffreio.4nkweb:3000', 'http://localhost:3000'], + methods: ['GET', 'POST', 'PUT', 'DELETE', 'OPTIONS'], + allowedHeaders: ['Content-Type', 'Authorization'] }; -// Stockage temporaire des codes +app.use(cors(corsOptions)); +app.use(express.json()); + +function getOfficeStatus(statusName) { + switch (statusName) { + case 'Pourvu': + return 'ACTIVATED'; + case 'Pourvu mais décédé': + return 'ACTIVATED'; + case 'Sans titulaire': + return 'ACTIVATED'; + case 'Vacance': + return 'ACTIVATED'; + case 'En activité': + return 'ACTIVATED'; + default: + return 'DESACTIVATED'; + } +} + +function getRole(roleName) { + switch (roleName) { + case 'Notaire titulaire': + return { name: 'admin', label: 'Administrateur' }; + case 'Notaire associé': + return { name: 'admin', label: 'Administrateur' }; + case 'Notaire salarié': + return { name: 'notary', label: 'Notaire' }; + case 'Collaborateur': + return { name: 'notary', label: 'Notaire' }; + case 'Suppléant': + return { name: 'notary', label: 'Notaire' }; + case 'Administrateur': + return { name: 'admin', label: 'Administrateur' }; + case 'Curateur': + return { name: 'notary', label: 'Notaire' }; + default: + return { name: 'default', label: 'Défaut' }; + } +} + +function getCivility(civility) { + switch (civility) { + case 'Monsieur': + return 'MALE'; + case 'Madame': + return 'FEMALE'; + default: + return 'OTHERS'; + } +} + +app.get('/api/v1/health', (req, res) => { + res.json({ message: 'OK' }); +}); + +app.post('/api/v1/idnot/user/:code', async (req, res) => { + const code = req.params.code; + + try { + const params = { + client_id: 'B3CE56353EDB15A9', + client_secret: '3F733549E879878344B6C949B366BB5CDBB2DB5B7F7AB7EBBEBB0F0DD0776D1C', + redirect_uri: 'http://local.lecoffreio.4nkweb:3000/authorized-client', + grant_type: 'authorization_code', + code: code + }; + + const tokens = await ( + await fetch('https://qual-connexion.idnot.fr/user/IdPOAuth2/token/idnot_idp_v1', { + method: 'POST', + headers: { + 'Content-Type': 'application/x-www-form-urlencoded', + }, + body: new URLSearchParams(params).toString() + }) + ).json(); + + const jwt = tokens.id_token; + if (!jwt) { + console.error('jwt not defined'); + return null; + } + const payload = JSON.parse(Buffer.from(jwt.split('.')[1], 'base64').toString('utf8')); + + const searchParams = new URLSearchParams({ + key: 'ba557f84-0bf6-4dbf-844f-df2767555e3e' + }); + + let userData; + try { + userData = await ( + await fetch(`https://qual-api.notaires.fr/annuaire/api/pp/v2/rattachements/${payload.profile_idn}?` + searchParams, { + method: 'GET' + }) + ).json(); + } catch (error) { + console.error('Error fetching ' + `https://qual-api.notaires.fr/annuaire/api/pp/v2/rattachements/${payload.profile_idn}`, error); + return null; + } + if (!userData || !userData.statutDuRattachement || userData.entite.typeEntite.name !== 'office') { + console.error('User not attached to an office (May be a partner)'); + return null; + } + + let officeLocationData; + try { + officeLocationData = (await ( + await fetch(`https://qual-api.notaires.fr/annuaire${userData.entite.locationsUrl}?` + searchParams, + { + method: 'GET' + }) + ).json()); + } catch (error) { + console.error('Error fetching' + `https://qual-api.notaires.fr/annuaire${userData.entite.locationsUrl}`, error); + return null; + } + if (!officeLocationData || !officeLocationData.result || officeLocationData.result.length === 0) { + console.error('Office location data not found'); + return null; + } + + const idnotUser = { + idNot: payload.sub, + office: { + idNot: payload.entity_idn, + name: userData.entite.denominationSociale ?? userData.entite.codeCrpcen, + crpcen: userData.entite.codeCrpcen, + office_status: getOfficeStatus(userData.entite.statutEntite.name), + address: { + address: officeLocationData.result[0].adrGeo4, + city: officeLocationData.result[0].adrGeoVille.split(' ')[0] ?? officeLocationData.result[0].adrGeoVille, + zip_code: Number(officeLocationData.result[0].adrGeoCodePostal) + }, + status: 'ACTIVE' + }, + role: getRole(userData.typeLien.name), + contact: { + first_name: userData.personne.prenom, + last_name: userData.personne.nomUsuel, + email: userData.mailRattachement, + phone_number: userData.numeroTelephone, + cell_phone_number: userData.numeroMobile ?? userData.numeroTelephone, + civility: getCivility(userData.personne.civilite) + } + }; + + if (!idnotUser.contact.email) { + console.error("User pro email empty"); + return null; + } + + res.json(idnotUser); + } catch (error) { + res.status(500).json({ + error: 'Internal Server Error', + message: error.message + }); + } +}); + +//------------------------------------ SMS Section ------------------------------------ + +const config = { + // OVH config + OVH_APP_KEY: process.env.OVH_APP_KEY, + OVH_APP_SECRET: process.env.OVH_APP_SECRET, + OVH_CONSUMER_KEY: process.env.OVH_CONSUMER_KEY, + OVH_SMS_SERVICE_NAME: process.env.OVH_SMS_SERVICE_NAME, + + // SMS Factor config + SMS_FACTOR_TOKEN: process.env.SMS_FACTOR_TOKEN, + + PORT: process.env.PORT || 8080 +}; + +// Codes storage const verificationCodes = new Map(); // Service SMS class SmsService { - static generateCode() { - return Math.floor(100000 + Math.random() * 900000); - } + static generateCode() { + return Math.floor(100000 + Math.random() * 900000); + } - // Service OVH - static sendSmsWithOvh(phoneNumber, message) { - return new Promise((resolve, reject) => { - const ovhClient = ovh({ - appKey: config.OVH_APP_KEY, - appSecret: config.OVH_APP_SECRET, - consumerKey: config.OVH_CONSUMER_KEY - }); + // OVH Service + static sendSmsWithOvh(phoneNumber, message) { + return new Promise((resolve, reject) => { + const ovhClient = ovh({ + appKey: config.OVH_APP_KEY, + appSecret: config.OVH_APP_SECRET, + consumerKey: config.OVH_CONSUMER_KEY + }); - ovhClient.request('POST', `/sms/${config.OVH_SMS_SERVICE_NAME}/jobs`, { - message: message, - receivers: [phoneNumber], - senderForResponse: false, - sender: "not.IT Fact", - noStopClause: true - }, (error, result) => { - if (error) { - console.error('Erreur OVH SMS:', error); - resolve({ success: false, error: 'Échec de l\'envoi du SMS via OVH' }); - } else { - resolve({ success: true }); - } - }); - }); - } + ovhClient.request('POST', `/sms/${config.OVH_SMS_SERVICE_NAME}/jobs`, { + message: message, + receivers: [phoneNumber], + senderForResponse: false, + sender: "not.IT Fact", + noStopClause: true + }, (error, result) => { + if (error) { + console.error('Erreur OVH SMS:', error); + resolve({ success: false, error: 'Échec de l\'envoi du SMS via OVH' }); + } else { + resolve({ success: true }); + } + }); + }); + } - // Service SMS Factor - static async sendSmsWithSmsFactor(phoneNumber, message) { - try { - const url = new URL('https://api.smsfactor.com/send/simulate'); - url.searchParams.append('to', phoneNumber); - url.searchParams.append('text', message); - url.searchParams.append('sender', 'LeCoffre'); - url.searchParams.append('token', config.SMS_FACTOR_TOKEN); + // SMS Factor Service + static async sendSmsWithSmsFactor(phoneNumber, message) { + try { + const url = new URL('https://api.smsfactor.com/send/simulate'); + url.searchParams.append('to', phoneNumber); + url.searchParams.append('text', message); + url.searchParams.append('sender', 'LeCoffre'); + url.searchParams.append('token', config.SMS_FACTOR_TOKEN); - const response = await fetch(url.toString()); - - if (!response.ok) { - throw new Error(`HTTP error! status: ${response.status}`); - } + const response = await fetch(url.toString()); + + if (!response.ok) { + throw new Error(`HTTP error! status: ${response.status}`); + } - return { success: true }; - } catch (error) { - console.error('Erreur SMS Factor:', error); - return { success: false, error: 'Échec de l\'envoi du SMS via SMS Factor' }; - } - } + return { success: true }; + } catch (error) { + console.error('Erreur SMS Factor:', error); + return { success: false, error: 'Échec de l\'envoi du SMS via SMS Factor' }; + } + } - // Méthode principale d'envoi - static async sendSms(phoneNumber, message) { - // Essai d'abord avec OVH - const ovhResult = await this.sendSmsWithOvh(phoneNumber, message); - - if (ovhResult.success) { - return ovhResult; - } + // Main method + static async sendSms(phoneNumber, message) { + // Try first with OVH + const ovhResult = await this.sendSmsWithOvh(phoneNumber, message); + + if (ovhResult.success) { + return ovhResult; + } - // Si OVH échoue, essai avec SMS Factor - console.log('OVH SMS failed, trying SMS Factor...'); - return await this.sendSmsWithSmsFactor(phoneNumber, message); - } + // If OVH fails, try with SMS Factor + console.log('OVH SMS failed, trying SMS Factor...'); + return await this.sendSmsWithSmsFactor(phoneNumber, message); + } } -// Middleware de validation +// Phone number validation middleware const validatePhoneNumber = (req, res, next) => { - const { phoneNumber } = req.body; - - if (!phoneNumber) { - return res.status(400).json({ - success: false, - message: 'Le numéro de téléphone est requis' - }); - } + const { phoneNumber } = req.body; + + if (!phoneNumber) { + return res.status(400).json({ + success: false, + message: 'Le numéro de téléphone est requis' + }); + } - // Validation basique du format - const phoneRegex = /^\+?[1-9]\d{1,14}$/; - if (!phoneRegex.test(phoneNumber)) { - return res.status(400).json({ - success: false, - message: 'Format de numéro de téléphone invalide' - }); - } + // Validation basique du format + const phoneRegex = /^\+?[1-9]\d{1,14}$/; + if (!phoneRegex.test(phoneNumber)) { + return res.status(400).json({ + success: false, + message: 'Format de numéro de téléphone invalide' + }); + } - next(); + next(); }; // Routes -app.post('/api/send-verification', validatePhoneNumber, async (req, res) => { - const { phoneNumber } = req.body; +app.post('/api/send-code', validatePhoneNumber, async (req, res) => { + const { phoneNumber } = req.body; - try { - // Vérifier si un code existe déjà et n'est pas expiré - const existingVerification = verificationCodes.get(phoneNumber); - if (existingVerification) { - const timeSinceLastSend = Date.now() - existingVerification.timestamp; - if (timeSinceLastSend < 30000) { // 30 secondes - return res.status(429).json({ - success: false, - message: 'Veuillez attendre 30 secondes avant de demander un nouveau code' - }); - } - } + try { + // Check if a code already exists and is not expired + const existingVerification = verificationCodes.get(phoneNumber); + if (existingVerification) { + const timeSinceLastSend = Date.now() - existingVerification.timestamp; + if (timeSinceLastSend < 30000) { // 30 secondes + return res.status(429).json({ + success: false, + message: 'Veuillez attendre 30 secondes avant de demander un nouveau code' + }); + } + } - // Générer un nouveau code - const code = SmsService.generateCode(); - - // Stocker le code - verificationCodes.set(phoneNumber, { - code, - timestamp: Date.now(), - attempts: 0 - }); + // Generate a new code + const code = SmsService.generateCode(); + + // Store the code + verificationCodes.set(phoneNumber, { + code, + timestamp: Date.now(), + attempts: 0 + }); - // Envoyer le SMS - const message = `Votre code de vérification LeCoffre est : ${code}`; - const result = await SmsService.sendSms(phoneNumber, message); + // Send the SMS + const message = `Votre code de vérification LeCoffre est : ${code}`; + const result = await SmsService.sendSms(phoneNumber, message); - if (result.success) { - res.json({ - success: true, - message: 'Code envoyé avec succès', - }); - } else { - res.status(500).json({ - success: false, - message: 'Échec de l\'envoi du SMS via les deux fournisseurs' - }); - } - } catch (error) { - console.error('Erreur:', error); - res.status(500).json({ - success: false, - message: 'Erreur serveur lors de l\'envoi du code' - }); - } + if (result.success) { + res.json({ + success: true, + message: 'Code envoyé avec succès', + }); + } else { + res.status(500).json({ + success: false, + message: 'Échec de l\'envoi du SMS via les deux fournisseurs' + }); + } + } catch (error) { + console.error('Erreur:', error); + res.status(500).json({ + success: false, + message: 'Erreur serveur lors de l\'envoi du code' + }); + } }); app.post('/api/verify-code', validatePhoneNumber, (req, res) => { - const { phoneNumber, code } = req.body; + const { phoneNumber, code } = req.body; - if (!code) { - return res.status(400).json({ - success: false, - message: 'Le code est requis' - }); - } + if (!code) { + return res.status(400).json({ + success: false, + message: 'Le code est requis' + }); + } - const verification = verificationCodes.get(phoneNumber); + const verification = verificationCodes.get(phoneNumber); - if (!verification) { - return res.status(400).json({ - success: false, - message: 'Aucun code n\'a été envoyé à ce numéro' - }); - } + if (!verification) { + return res.status(400).json({ + success: false, + message: 'Aucun code n\'a été envoyé à ce numéro' + }); + } - // Vérifier si le code n'a pas expiré (5 minutes) - if (Date.now() - verification.timestamp > 5 * 60 * 1000) { - verificationCodes.delete(phoneNumber); - return res.status(400).json({ - success: false, - message: 'Le code a expiré' - }); - } + // Check if the code has not expired (5 minutes) + if (Date.now() - verification.timestamp > 5 * 60 * 1000) { + verificationCodes.delete(phoneNumber); + return res.status(400).json({ + success: false, + message: 'Le code a expiré' + }); + } - // Vérifier le code - if (verification.code.toString() === code.toString()) { - verificationCodes.delete(phoneNumber); - res.json({ - success: true, - message: 'Code vérifié avec succès' - }); - } else { - verification.attempts += 1; - - if (verification.attempts >= 3) { - verificationCodes.delete(phoneNumber); - res.status(400).json({ - success: false, - message: 'Trop de tentatives. Veuillez demander un nouveau code' - }); - } else { - res.status(400).json({ - success: false, - message: 'Code incorrect' - }); - } - } + // Check if the code is correct + if (verification.code.toString() === code.toString()) { + verificationCodes.delete(phoneNumber); + res.json({ + success: true, + message: 'Code vérifié avec succès' + }); + } else { + verification.attempts += 1; + + if (verification.attempts >= 3) { + verificationCodes.delete(phoneNumber); + res.status(400).json({ + success: false, + message: 'Trop de tentatives. Veuillez demander un nouveau code' + }); + } else { + res.status(400).json({ + success: false, + message: 'Code incorrect' + }); + } + } }); -// Démarrage du serveur -app.listen(config.PORT, () => { - console.log(`Serveur démarré sur le port ${config.PORT}`); -}); \ No newline at end of file +app.listen(PORT, () => { + console.log(`Server is running on port ${PORT}`); +});