Modified platform cache handling for Altinn token.

Triopticon · Triopticon · commit 0df3cea5ffc0 · 2023-11-28T15:03:32.000+01:00
diff --git a/.vscode/extensions.json b/.vscode/extensions.json
@@ -4,7 +4,6 @@
         "aaron-bond.better-comments",
         "ChakrounAnas.turbo-console-log",
         "dbaeumer.vscode-eslint",
-        "donjayamanne.githistory",
         "eamodio.gitlens",
         "hnw.vscode-auto-open-markdown-preview",
         "IBM.output-colorizer",
diff --git a/force-app/altinn/classes/AltinnCalloutService.cls b/force-app/altinn/classes/AltinnCalloutService.cls
@@ -1,5 +1,19 @@
+/**
+ * @description Service class for calling Altinn APIs.
+ * 
+ * @author Frode Hoen <frode.hoen@nav.no>
+ * @since 2021-04-07 Created.
+ * @author Kenneth Soerensen <kenneth.sorensen@nav.no>
+ * @since 2023-11-13 Added token caching.
+ * 
+ * @see https://docs.altinn.studio/api/
+ * @see AltinnCalloutServiceTest
+ * 
+ * @group Altinn
+ */
 public with sharing class AltinnCalloutService {
     private final string API_CONFIG_NAME = 'ALTINN_API'; //API Config name to set when using the ApiController
+    @TestVisible
     private static final String TEST_SERVICE_TOKEN_RESPONSE =
         '{"access_token": "TEST_ACCESS", "expires": ' +
         JSON.serialize(Datetime.now().addSeconds(3600)) +
@@ -103,43 +117,100 @@ public with sharing class AltinnCalloutService {
         return errorRef;
     }
 
+    /**
+     * @description Gets the access token from the cache.
+     * If the token is not in the cache, it will be requested from Maskinporten.
+     * Note: This method is not the final method for retrieving the access token.
+     * 
+     * @return `String` The access token
+     */
+    @TestVisible
     private string getMaskinportenToken() {
-        String clientDeveloperName = Test.isRunningTest() ? 'salesforce_altinn_test' : 'salesforce_altinn';
-        String clientName = clientDeveloperName + '_tokendata';
+        String clientName = 'altinntokendata';
+
+        LoggerUtility logger = new LoggerUtility();
 
         Cache.OrgPartition orgPartition = Cache.Org.getPartition('local.tokens');
-        String tokenData = Test.isRunningTest()
+        /*String tokenData = Test.isRunningTest()
             ? CryptoService.encryptString(TEST_SERVICE_TOKEN_RESPONSE)
-            : (String) orgPartition.get(clientName);
+            : (String) orgPartition.get(clientName);*/
+            String tokenData = (String) orgPartition.get(clientName);
         
         if (String.isNotBlank(tokenData)) {
             String decryptedTokenData = CryptoService.decryptString(tokenData);
             Map<String, Object> tokenDataMap = (Map<String, Object>) JSON.deserializeUntyped(decryptedTokenData);
+            Datetime createdAt = (DateTime)JSON.deserialize('"' + tokenDataMap.get('created_at') + '"', DateTime.class);
+            System.debug('Token created at: ' + createdAt);
+            Datetime expiresAt = createdAt.addSeconds((Integer) tokenDataMap.get('expires_in'));
+            Datetime timeNow = Datetime.now();
+
+            if (expiresAt < timeNow) {
+                System.debug('Token expired, requesting new token');
+                logger.info('Token expired, requesting new token', null);
+                accessToken = this.refreshTokenCache();
+            }
+            System.debug('Token not expired, using existing token');
+            logger.info('Token not expired, using existing token', null);
             accessToken = (String) tokenDataMap.get('access_token');
+            
         } else {
-            MaskinportenService service = new MaskinportenService(clientDeveloperName);
+            
             if (accessToken == null) {
-                
-                MaskinportenService.AuthResponse response = service.doMaskinportenJWTExchange();
-                if (response == null) {
-                    return null;
-                }
-                accessToken = response.access_token;
-                Integer expiresIn = response.expires_in;
-                
-                orgPartition.put(
-                    clientName,
-                    CryptoService.encryptString(accessToken),
-                    expiresIn
-                );
+                System.debug('No token in cache, requesting new token');
+                logger.info('No token in cache, requesting new token', null);
+                accessToken = this.refreshTokenCache();
             }
         }
 
-        
+        logger.publish();
         return accessToken;
     }
 
+    /**
+     * @description Refreshes the token cache.
+     * Note: This method is not the final method for refreshing the token cache.
+     * 
+     * @return `String` The access token
+     */
+    @TestVisible
+    private String refreshTokenCache() {
+        String clientDeveloperName = Test.isRunningTest() ? 'salesforce_altinn_test' : 'salesforce_altinn';
+        String clientName = 'altinntokendata';
+        LoggerUtility logger = new LoggerUtility();
+
+        Cache.OrgPartition orgPartition = Cache.Org.getPartition('local.tokens');
+        MaskinportenService service = new MaskinportenService(clientDeveloperName);
+
+        MaskinportenService.AuthResponse testResponse = new MaskinportenService.AuthResponse();
+        testResponse.access_token = 'access_token_test';
+        testResponse.expires_in = 119;
+        testResponse.created_at = Datetime.now();
+        testResponse.scope = 'test_scope';
 
+        MaskinportenService.AuthResponse response = Test.isRunningTest()
+        ? testResponse
+        : service.doMaskinportenJWTExchange();
+
+        if (response == null) {
+            return null;
+        }
+        accessToken = response.access_token;
+        Integer expiresIn = 300;//response.expires_in;
+        
+        try {
+            orgPartition.put(
+                clientName,
+                CryptoService.encryptString(JSON.serialize(response)),
+                expiresIn
+            );
+        } catch (Exception ex) {
+            logger.error('Error putting info into cache.' + '\n ' + 'Exception: ' + ex, null);
+            System.debug('Error putting info into cache.' + '\n ' + 'Exception: ' + ex);
+        }
+        
+
+        return accessToken;
+    }
 
     // RESPONSE WRAPPERS
     public class AltinnOrganizationsResponse {
diff --git a/force-app/altinn/classes/AltinnCalloutService.cls-meta.xml b/force-app/altinn/classes/AltinnCalloutService.cls-meta.xml
@@ -1,5 +1,5 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <ApexClass xmlns="http://soap.sforce.com/2006/04/metadata">
-    <apiVersion>51.0</apiVersion>
+    <apiVersion>59.0</apiVersion>
     <status>Active</status>
 </ApexClass>
diff --git a/force-app/altinn/classes/AltinnCalloutServiceTest.cls b/force-app/altinn/classes/AltinnCalloutServiceTest.cls
@@ -77,4 +77,72 @@ private with sharing class AltinnCalloutServiceTest {
         System.assert(resp.errorMessage.contains('Kunne ikke hente rettigheter fra Altinn.'), 'Expect error message');
         System.assertEquals(null, resp.rights, 'Expect no rights');
     }
+
+    @IsTest
+    static void testGetMaskinportenTokenMethodPlatformCachePositive(){
+
+        Cache.OrgPartition orgPartition = Cache.Org.getPartition('local.tokens');
+        AltinnCalloutService altinnCalloutService = new AltinnCalloutService();
+
+        System.Test.startTest();
+        /*orgPartition.put(
+            'altinntokendata',
+            'abcdefghijklmnopqrstuv=',
+            300
+        );*/
+                    
+        String accessToken = altinnCalloutService.getMaskinportenToken();
+        System.debug('accessToken: ' + accessToken);
+        String accessToken2 = altinnCalloutService.getMaskinportenToken();
+        System.debug('accessToken2: ' + accessToken2);
+
+        MaskinportenService.AuthResponse testResponse = new MaskinportenService.AuthResponse();
+        testResponse.access_token = 'access_token_test';
+        testResponse.expires_in = 119;
+        testResponse.created_at = Datetime.now().addSeconds(-210);//.format('yyyy-MM-dd HH:mm:ss');
+        testResponse.scope = 'test_scope';
+
+        orgPartition.put(
+            'altinntokendata',
+            CryptoService.encryptString(JSON.serialize(testResponse)),
+            300
+        );
+
+        String accessToken3 = altinnCalloutService.getMaskinportenToken();
+        System.debug('accessToken3: ' + accessToken3);
+        String accessToken4 = altinnCalloutService.getMaskinportenToken();
+        System.debug('accessToken4: ' + accessToken4);
+
+        testResponse.access_token = 'access_token_test';
+        testResponse.expires_in = 119;
+        testResponse.created_at = Datetime.now().addSeconds(-210);//.format('yyyy-MM-dd HH:mm:ss');
+        testResponse.scope = 'test_scope';
+
+        orgPartition.put(
+            'altinntokendata',
+            CryptoService.encryptString(JSON.serialize(testResponse)),
+            300
+        );
+
+
+        String accessToken5 = altinnCalloutService.getMaskinportenToken();
+        System.debug('accessToken5: ' + accessToken5);
+        System.Test.stopTest();
+        
+        String tokenData = (String) orgPartition.get('altinntokendata');
+
+        String decryptedTokenData = CryptoService.decryptString(tokenData);
+        Map<String, Object> tokenDataMap = (Map<String, Object>) JSON.deserializeUntyped(decryptedTokenData);
+        accessToken = (String) tokenDataMap.get('access_token');
+        Integer expiresIn = (Integer) tokenDataMap.get('expires_in');
+        String createdAt = (String) tokenDataMap.get('created_at');
+        String scope = (String) tokenDataMap.get('scope');
+
+        System.debug('accessToken: ' + accessToken);
+        System.debug('expiresIn: ' + expiresIn);
+        System.debug('createdAt: ' + createdAt);
+        System.debug('scope: ' + scope);
+        System.Assert.areEqual('access_token_test', accessToken, 'Access token should be the same');
+        
+    }
 }
diff --git a/force-app/krr-integration/classes/MaskinportenService.cls b/force-app/krr-integration/classes/MaskinportenService.cls
@@ -32,12 +32,16 @@ public class MaskinportenService {
 
         // Do callout, parse body, and return parsed response
         HttpResponse res = new Http().send(req);
-        return (AuthResponse) Json.deserialize(res.getBody(), AuthResponse.class);
+        AuthResponse authResponse = (AuthResponse) Json.deserialize(res.getBody(), AuthResponse.class);
+        authResponse.created_at = Datetime.now();
+
+        return authResponse;
     }
 
     public class AuthResponse {
         public String access_token;
         public Integer expires_in;
-        String scope;
+        public Datetime created_at;
+        public String scope;
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -32,12 +32,16 @@ public class MaskinportenService {`
`32`	`32`
`33`	`33`	`// Do callout, parse body, and return parsed response`
`34`	`34`	`HttpResponse res = new Http().send(req);`
`35`		`- return (AuthResponse) Json.deserialize(res.getBody(), AuthResponse.class);`
	`35`	`+ AuthResponse authResponse = (AuthResponse) Json.deserialize(res.getBody(), AuthResponse.class);`
	`36`	`+ authResponse.created_at = Datetime.now();`
	`37`	`+`
	`38`	`+ return authResponse;`
`36`	`39`	`}`
`37`	`40`
`38`	`41`	`public class AuthResponse {`
`39`	`42`	`public String access_token;`
`40`	`43`	`public Integer expires_in;`
`41`		`- String scope;`
	`44`	`+ public Datetime created_at;`
	`45`	`+ public String scope;`
`42`	`46`	`}`
`43`	`47`	`}`