[FEATURE] Implémenter la double écriture des CGU dans l'API acceptLegalDocumenByUserId (PIX-22581). #16386

Author: pix-service-auto-merge

api/src/identity-access-management/application/user/user.controller.js

@@ -23,27 +23,21 @@ const acceptPixCertifTermsOfService = async function (request, h) {
 /**
  * @param request
  * @param h
- * @param {{
- *   userSerializer: UserSerializer
- * }} dependencies
  * @return {Promise<*>}
  */
-const acceptPixLastTermsOfService = async function (request, h, dependencies = { userSerializer }) {
+const acceptPixAppTermsOfService = async function (request, h) {
   const authenticatedUserId = request.auth.credentials.userId;
 
-  const updatedUser = await usecases.acceptPixLastTermsOfService({
+  await usecases.acceptPixAppTermsOfService({
     userId: authenticatedUserId,
   });
 
-  return dependencies.userSerializer.serialize(updatedUser);
+  return h.response().code(204);
 };
 
 /**
  * @param request
  * @param h
- * @param {{
- *   userSerializer: UserSerializer
- * }} dependencies
  * @return {Promise<*>}
  */
 const acceptPixOrgaTermsOfService = async function (request, h) {
@@ -289,7 +283,7 @@ const upgradeToRealUser = async function (request, h, dependencies = { userSeria
 
 export const userController = {
   acceptPixCertifTermsOfService,
-  acceptPixLastTermsOfService,
+  acceptPixAppTermsOfService,
   acceptPixOrgaTermsOfService,
   changeUserLocale,
   getCertificationPointOfContact,

api/src/identity-access-management/application/user/user.route.js

@@ -258,7 +258,7 @@ export const userRoutes = [
           id: identifiersType.userId,
         }),
       },
-      handler: (request, h) => userController.acceptPixLastTermsOfService(request, h),
+      handler: (request, h) => userController.acceptPixAppTermsOfService(request, h),
       notes: [
         '- **Cette route est restreinte aux utilisateurs authentifiés**\n' +
           "- Sauvegarde le fait que l'utilisateur a accepté les dernières Conditions Générales d'Utilisation de Pix App\n" +

api/src/identity-access-management/domain/usecases/accept-pix-app-terms-of-service.usecase.js

@@ -0,0 +1,10 @@
+/**
+ * @param {{
+ *   userId: string,
+ *   userRepository: UserRepository
+ * }} params
+ * @return {Promise<void>}
+ */
+export const acceptPixAppTermsOfService = async function ({ userId, legalDocumentApiRepository }) {
+  await legalDocumentApiRepository.acceptPixAppTos({ userId });
+};

api/src/identity-access-management/domain/usecases/accept-pix-last-terms-of-service.usecase.js

@@ -110,8 +110,8 @@ const utils = {
 
 const dependencies = Object.assign({ config, codeUtils }, repositories, services, validators, utils);
 
+import { acceptPixAppTermsOfService } from './accept-pix-app-terms-of-service.usecase.js';
 import { acceptPixCertifTermsOfService } from './accept-pix-certif-terms-of-service.usecase.js';
-import { acceptPixLastTermsOfService } from './accept-pix-last-terms-of-service.usecase.js';
 import { acceptPixOrgaTermsOfService } from './accept-pix-orga-terms-of-service.usecase.js';
 import { addOidcProvider } from './add-oidc-provider.js';
 import { addPixAuthenticationMethod } from './add-pix-authentication-method.usecase.js';
@@ -173,7 +173,7 @@ import { validateUserAccountEmail } from './validate-user-account-email.usecase.
 
 const usecasesWithoutInjectedDependencies = {
   acceptPixCertifTermsOfService,
-  acceptPixLastTermsOfService,
+  acceptPixAppTermsOfService,
   acceptPixOrgaTermsOfService,
   addOidcProvider,
   addPixAuthenticationMethod,

api/src/identity-access-management/domain/usecases/index.js

@@ -4,6 +4,10 @@ const acceptPixOrgaTos = async ({ userId, dependencies = { legalDocumentApi } })
   return dependencies.legalDocumentApi.acceptLegalDocumentByUserId({ userId, service: 'pix-orga', type: 'TOS' });
 };
 
-const legalDocumentApiRepository = { acceptPixOrgaTos };
+const acceptPixAppTos = async ({ userId, dependencies = { legalDocumentApi } }) => {
+  return dependencies.legalDocumentApi.acceptLegalDocumentByUserId({ userId, service: 'pix-app', type: 'TOS' });
+};
+
+const legalDocumentApiRepository = { acceptPixAppTos, acceptPixOrgaTos };
 
 export { legalDocumentApiRepository };

api/src/identity-access-management/infrastructure/repositories/legal-document-api.repository.js

@@ -342,16 +342,6 @@ const updateHasSeenChallengeTooltip = async function ({ userId, challengeType })
   return new User(user);
 };
 
-const acceptPixLastTermsOfService = async function (id) {
-  const knexConn = DomainTransaction.getConnection();
-  const [user] = await knexConn('users')
-    .where({ id })
-    .update({ lastTermsOfServiceValidatedAt: new Date(), mustValidateTermsOfService: false, updatedAt: new Date() })
-    .returning('*');
-
-  return new User(user);
-};
-
 const updatePixCertifTermsOfServiceAcceptedToTrue = async function (id) {
   const knexConn = DomainTransaction.getConnection();
   const now = new Date();
@@ -443,7 +433,6 @@ const updateLastDataProtectionPolicySeenAt = async function ({ userId }) {
 
 /**
  * @typedef {Object} UserRepository
- * @property {function} acceptPixLastTermsOfService
  * @property {function} checkIfEmailIsAvailable
  * @property {function} findAnotherUserByEmail
  * @property {function} findAnotherUserByUsername
@@ -476,7 +465,6 @@ const updateLastDataProtectionPolicySeenAt = async function ({ userId }) {
  */
 
 export {
-  acceptPixLastTermsOfService,
   checkIfEmailIsAvailable,
   findAnotherUserByEmail,
   findAnotherUserByUsername,

api/src/identity-access-management/infrastructure/repositories/user.repository.js

@@ -2,6 +2,9 @@ import { withTransaction } from '../../../shared/domain/DomainTransaction.js';
 import { LegalDocumentService } from '../models/LegalDocumentService.js';
 import { LegalDocumentType } from '../models/LegalDocumentType.js';
 
+const { TOS } = LegalDocumentType.VALUES;
+const { PIX_APP } = LegalDocumentService.VALUES;
+
 /**
  * Accepts a legal document by user ID.
  *
@@ -12,10 +15,15 @@ import { LegalDocumentType } from '../models/LegalDocumentType.js';
  * @returns {Promise<void>} A promise that resolves when the operation is complete.
  */
 const acceptLegalDocumentByUserId = withTransaction(
-  async ({ userId, service, type, legalDocumentRepository, userAcceptanceRepository, logger }) => {
+  async ({ userId, service, type, legalDocumentRepository, userAcceptanceRepository, userRepository, logger }) => {
     LegalDocumentType.assert(type);
     LegalDocumentService.assert(service);
 
+    // legacy document acceptance
+    if (type === TOS && service === PIX_APP) {
+      await userRepository.acceptLegacyPixAppTermsOfService(userId);
+    }
+
     const legalDocument = await legalDocumentRepository.findLastVersionByTypeAndService({ service, type });
     if (!legalDocument) {
       logger.warn(`No legal document found for service: ${service} and type: ${type}`);

api/src/legal-documents/domain/usecases/accept-legal-document-by-user-id.usecase.js

@@ -11,4 +11,14 @@ const getPixAppLegacyCguByUserId = async (userId) => {
   return user;
 };
 
-export { getPixAppLegacyCguByUserId };
+const acceptLegacyPixAppTermsOfService = async function (id) {
+  const knexConn = DomainTransaction.getConnection();
+  await knexConn('users').where({ id }).update({
+    lastTermsOfServiceValidatedAt: new Date(),
+    mustValidateTermsOfService: false,
+    updatedAt: new Date(),
+    cgu: true,
+  });
+};
+
+export { acceptLegacyPixAppTermsOfService, getPixAppLegacyCguByUserId };

api/src/legal-documents/infrastructure/repositories/user.repository.js

@@ -7,6 +7,8 @@ import * as authenticationMethodRepository from '../../../../../src/identity-acc
 import { emailValidationDemandRepository } from '../../../../../src/identity-access-management/infrastructure/repositories/email-validation-demand.repository.js';
 import * as userRepository from '../../../../../src/identity-access-management/infrastructure/repositories/user.repository.js';
 import { userEmailRepository } from '../../../../../src/identity-access-management/infrastructure/repositories/user-email.repository.js';
+import { LegalDocumentService } from '../../../../../src/legal-documents/domain/models/LegalDocumentService.js';
+import { LegalDocumentType } from '../../../../../src/legal-documents/domain/models/LegalDocumentType.js';
 import { constants } from '../../../../../src/shared/domain/constants.js';
 import { Assessment } from '../../../../../src/shared/domain/models/Assessment.js';
 import { featureToggles } from '../../../../../src/shared/infrastructure/feature-toggles/index.js';
@@ -19,6 +21,8 @@ import {
 } from '../../../../tooling/test-utils/http-server.js';
 
 const { pick } = lodash;
+const { PIX_APP } = LegalDocumentService.VALUES;
+const { TOS } = LegalDocumentType.VALUES;
 
 describe('Acceptance | Identity Access Management | Application | Route | User', function () {
   let server;
@@ -492,14 +496,16 @@ describe('Acceptance | Identity Access Management | Application | Route | User',
     });
 
     describe('Success case', function () {
-      it('returns the user with pixTermsOfServiceAccepted', async function () {
+      it('replies with 204 status code', async function () {
+        // given
+        databaseBuilder.factory.buildLegalDocumentVersion({ service: PIX_APP, type: TOS });
+        databaseBuilder.commit();
+
         // when
         const response = await server.inject(options);
 
         // then
-        expect(response.statusCode).to.equal(200);
-        expect(response.result.data.attributes['must-validate-terms-of-service']).to.be.false;
-        expect(response.result.data.attributes['last-terms-of-service-validated-at']).to.exist;
+        expect(response.statusCode).to.equal(204);
       });
     });
   });