@W-17233341 - Updating SFAP endpoint, removal of csrf, removal of credential file

neilmathewm · neilmathewm · commit 5be21267f252 · 2024-11-15T18:34:08.000+05:30
diff --git a/package.json b/package.json
@@ -11,15 +11,14 @@
     "@salesforce/kit": "^3.2.2",
     "@salesforce/sf-plugins-core": "^11.3.12",
     "form-data": "^4.0.1",
-    "got": "^14.4.3",
-    "tough-cookie": "^4.1.4"
+    "got": "^14.4.3"
   },
   "devDependencies": {
     "@oclif/plugin-command-snapshot": "^5.2.21",
     "@salesforce/cli-plugins-testkit": "^5.3.35",
     "@salesforce/dev-scripts": "^10.2.9",
-    "@types/tough-cookie": "^4.0.5",
     "@salesforce/plugin-command-reference": "^3.1.32",
+    "@types/tough-cookie": "^4.0.5",
     "eslint-plugin-sf-plugin": "^1.20.11",
     "oclif": "^4.15.14",
     "ts-node": "^10.9.2",
diff --git a/src/commands/data-seeding/generate/index.ts b/src/commands/data-seeding/generate/index.ts
@@ -67,7 +67,15 @@ export default class DataSeedingGenerate extends SfCommand<DataSeedingGenerateRe
 
     // Fetch Valid JWT with Data Seed Org Perm
     const { jwt: jwtValue } = await initiateJWTMint(srcOrgInstUrl, srcAccessToken, tgtOrgInstUrl, tgtAccessToken);
-    const { request_id: jobId } = await initiateDataSeed(configFile, 'data-generation', jwtValue);
+    const { request_id: jobId } = await initiateDataSeed(
+      configFile,
+      'data-generation',
+      jwtValue,
+      srcOrgInstUrl,
+      srcAccessToken,
+      tgtOrgInstUrl,
+      tgtAccessToken
+    );
     const reportMessage = messages.getMessage('report.suggestion', [jobId]);
 
     if (!jobId) throw new Error('Failed to receive job id');
diff --git a/src/commands/data-seeding/migrate/index.ts b/src/commands/data-seeding/migrate/index.ts
@@ -67,8 +67,15 @@ export default class DataSeedingMigrate extends SfCommand<DataSeedingMigrateResu
 
     // Fetch Valid JWT with Data Seed Org Perm
     const { jwt: jwtValue } = await initiateJWTMint(srcOrgInstUrl, srcAccessToken, tgtOrgInstUrl, tgtAccessToken);
-
-    const { request_id: jobId } = await initiateDataSeed(configFile, 'data-copy', jwtValue);
+    const { request_id: jobId } = await initiateDataSeed(
+      configFile,
+      'data-copy',
+      jwtValue,
+      srcOrgInstUrl,
+      srcAccessToken,
+      tgtOrgInstUrl,
+      tgtAccessToken
+    );
 
     if (!jobId) throw new Error('Failed to receive job id');
 
diff --git a/src/utils/api.ts b/src/utils/api.ts
@@ -7,7 +7,6 @@
 
 import fs from 'node:fs';
 import got from 'got';
-import { CookieJar } from 'tough-cookie';
 import FormData from 'form-data';
 import { SfError, Logger } from '@salesforce/core';
 
@@ -17,6 +16,10 @@ export type SeedResponse = {
 export type ServletResponse = {
   jwt: string;
 };
+export type AuthServletResponse = {
+  statusCode: string;
+  body: string;
+};
 
 export type PollSeedResponse = {
   execution_end_time: string;
@@ -29,46 +32,33 @@ export type PollSeedResponse = {
 
 export type DataSeedingOperation = 'data-generation' | 'data-copy';
 
-// TODO Change to SFAP Endpoint
-const baseUrl = process.env.SF_DATA_SEEDING_URL ?? 'https://data-seed-gid.sfdc-yfeipo.svc.sfdcfc.net';
-const csrfUrl = `${baseUrl}/get-csrf-token`;
+const baseUrl = 'https://api.salesforce.com/platform/data-seed/v1';
 const seedUrl = `${baseUrl}/data-seed`;
 const pollUrl = `${baseUrl}/status`;
 
-export const getCookieJar = async (): Promise<CookieJar> => {
-  const cookieJar = new CookieJar();
-  await got(csrfUrl, { cookieJar });
-  return cookieJar;
-};
-
-export const getCsrfToken = (cookieJar: CookieJar): string => {
-  const csrfToken = cookieJar.getCookiesSync(csrfUrl).find((cookie) => cookie.key === 'csrf_token')?.value;
-  if (!csrfToken) throw new SfError('Failed to obtain CSRF token');
-
-  return csrfToken;
-};
-
 export const initiateDataSeed = async (
   config: string,
   operation: DataSeedingOperation,
-  jwt: string
+  jwt: string,
+  srcOrgUrl: string,
+  srcAccessToken: string,
+  tgtOrgUrl: string,
+  tgtAccessToken: string
 ): Promise<SeedResponse> => {
-  // const cookieJar = await getCookieJar();
-  // const csrf = getCsrfToken(cookieJar);
   const form = new FormData();
   form.append('config_file', fs.createReadStream(config));
-  // TODO : Remove credential file once SFAP is active and dataseed endpoint accepts orgurl and token
-  form.append('credentials_file', fs.createReadStream('ignore/credentials.txt'));
   form.append('operation', operation);
+  form.append('source_access_token', srcAccessToken);
+  form.append('source_instance_url', srcOrgUrl);
+  form.append('target_access_token', tgtAccessToken);
+  form.append('target_instance_url', tgtOrgUrl);
   // TODO: Update to use .json() instead of JSON.parse once the Error response is changed to be JSON
   //       Update the return type as well
   const response = await got.post(seedUrl, {
     throwHttpErrors: false,
-    // cookieJar,
     headers: {
       ...form.getHeaders(),
-      // 'X-CSRFToken': csrf,
-      Authorization: 'Bearer ' + jwt,
+      Authorization: `Bearer ${jwt}`,
     },
     body: form,
   });
@@ -86,31 +76,38 @@ export const initiateJWTMint = async (
   tgtOrgUrl: string,
   tgtAccessToken: string
 ): Promise<ServletResponse> => {
-  const srcServletUrl = srcOrgUrl + '/dataseed/auth';
-  const responseSrc = await got.post(srcServletUrl, {
-    throwHttpErrors: false,
-    headers: {
-      Authorization: 'Bearer ' + srcAccessToken,
-    },
-  });
+  const srcServletUrl = `${srcOrgUrl}/dataseed/auth`;
+  const tgtServletUrl = `${tgtOrgUrl}/dataseed/auth`;
+
+  const [responseSrc, responseTgt] = await Promise.all([
+    callAuthServlet(srcServletUrl, srcAccessToken),
+    callAuthServlet(tgtServletUrl, tgtAccessToken),
+  ]);
 
-  if (responseSrc.statusCode !== 200) {
-    const tgtServletUrl = tgtOrgUrl + '/dataseed/auth';
-    const responseTgt = await got.post(tgtServletUrl, {
-      throwHttpErrors: false,
-      headers: {
-        Authorization: 'Bearer ' + tgtAccessToken,
-      },
-    });
-    if (responseTgt.statusCode !== 200) {
-      throw new SfError(
-        `Org permission for data seed not found in source & target org.\nSource Response: Error Code : ${responseSrc.statusCode} - ${responseSrc.body}.  \nTarget Response: Error Code : ${responseTgt.statusCode} - ${responseTgt.body}`
-      );
-    }
+  if (responseSrc.statusCode === '200') {
+    return JSON.parse(responseSrc.body) as ServletResponse;
+  }
+
+  if (responseTgt.statusCode === '200') {
     return JSON.parse(responseTgt.body) as ServletResponse;
   }
 
-  return JSON.parse(responseSrc.body) as ServletResponse;
+  throw new SfError(
+    `Org permission for data seed not found in either the source or target org.\nSource Response: Error Code : ${responseSrc.statusCode} - ${responseSrc.body}.  \nTarget Response: Error Code : ${responseTgt.statusCode} - ${responseTgt.body}`
+  );
+};
+
+const callAuthServlet = async (url: string, accessToken: string): Promise<AuthServletResponse> => {
+  const response = await got.post(url, {
+    throwHttpErrors: false,
+    headers: {
+      Authorization: `Bearer ${accessToken}`,
+    },
+  });
+  return {
+    statusCode: response.statusCode.toString(), // Convert to string
+    body: response.body,
+  };
 };
 
 export const pollSeedStatus = async (jobId: string): Promise<PollSeedResponse> => {
diff --git a/yarn.lock b/yarn.lock
@@ -7171,16 +7171,6 @@ tough-cookie@*:
     universalify "^0.2.0"
     url-parse "^1.5.3"
 
-tough-cookie@^4.1.4:
-  version "4.1.4"
-  resolved "https://registry.yarnpkg.com/tough-cookie/-/tough-cookie-4.1.4.tgz#945f1461b45b5a8c76821c33ea49c3ac192c1b36"
-  integrity sha512-Loo5UUvLD9ScZ6jh8beX1T6sO1w2/MpCRpEP7V280GKMVUQ0Jzar2U3UJPsrdbziLEMMhu3Ujnq//rhiFuIeag==
-  dependencies:
-    psl "^1.1.33"
-    punycode "^2.1.1"
-    universalify "^0.2.0"
-    url-parse "^1.5.3"
-
 tr46@~0.0.3:
   version "0.0.3"
   resolved "https://registry.yarnpkg.com/tr46/-/tr46-0.0.3.tgz#8184fd347dac9cdc185992f3a6622e14b9d9ab6a"
