👽 Tar i bruk oasis for innsending av søknad og mellomlagring

lib/api/ErrorMedStatus.ts

@@ -0,0 +1,22 @@
+// TODO: Errorcode og developerMessage vil returneres fra innsending og oppslag etterhvert.
+// Her må vi støtte begge deler parallelt i en periode.
+
+export class ErrorMedStatus extends Error {
+  status: number;
+  developerMessage?: string;
+  errorCode?: string;
+  navCallId?: string;
+  constructor(
+    message: string,
+    status: number,
+    navCallId = '',
+    developerMessage = '',
+    errorCode = '',
+  ) {
+    super(message);
+    this.status = status;
+    this.developerMessage = developerMessage;
+    this.errorCode = errorCode;
+    this.navCallId = navCallId;
+  }
+}

lib/api/simpleTokenXProxy.ts

@@ -0,0 +1,86 @@
+import { validateToken, requestOboToken, getToken } from '@navikt/oasis';
+import { logError, logInfo } from '@navikt/aap-felles-utils';
+import { randomUUID } from 'crypto';
+import { IncomingMessage } from 'http';
+import { ErrorMedStatus } from 'lib/api/ErrorMedStatus';
+
+export const getOnBefalfOfToken = async (
+  audience: string,
+  url: string,
+  req: IncomingMessage,
+): Promise<string> => {
+  const token = getToken(req);
+  if (!token) {
+    logError(`Token for ${url} er undefined`);
+    throw new Error('Token for simpleTokenXProxy is undefined');
+  }
+
+  const validation = await validateToken(token);
+  if (!validation.ok) {
+    logError(`Token for ${url} validerte ikke`);
+    throw new Error('Token for simpleTokenXProxy didnt validate');
+  }
+
+  const onBehalfOf = await requestOboToken(token, audience);
+  if (!onBehalfOf.ok) {
+    logError(`Henting av oboToken for ${url} feilet`);
+    throw new Error('Request oboToken for simpleTokenXProxy failed');
+  }
+
+  return onBehalfOf.token;
+};
+
+interface Opts {
+  url: string;
+  method?: 'GET' | 'POST' | 'DELETE';
+  audience: string;
+  body?: object;
+  req?: IncomingMessage;
+}
+
+export const simpleTokenXProxy = async <T>({
+  url,
+  audience,
+  req,
+  method = 'GET',
+  body,
+}: Opts): Promise<T> => {
+  if (!req) {
+    logError(`Request for ${url} er undefined`);
+    throw new Error('Request for simpleTokenXProxy is undefined');
+  }
+  const onBehalfOfToken = await getOnBefalfOfToken(audience, url, req);
+  const navCallId = randomUUID();
+
+  logInfo(`${req.method} ${url}, callId ${navCallId}`);
+
+  const response = await fetch(url, {
+    method: method,
+    headers: {
+      Authorization: `Bearer ${onBehalfOfToken}`,
+      'Content-Type': 'application/json',
+      'Nav-CallId': navCallId,
+    },
+    body: method === 'POST' ? JSON.stringify(body) : undefined,
+  });
+
+  try {
+    if (response.ok) {
+      logInfo(`OK ${url}, status ${response.status}, callId ${navCallId}`);
+      const headers = response.headers.get('content-type');
+      const isJson = headers?.includes('application/json');
+
+      // TODO: Midlertidig, til innsending returnerer json på alle OK-responser
+      if (!isJson) {
+        return (await response.text()) as T;
+      }
+      return await response.json();
+    }
+  } catch (error) {
+    logError(`Unable to parse response for ${url}`, error);
+  }
+  logError(
+    `Error fetching simpleTokenXProxy. Fikk responskode ${response.status} fra ${url} med navCallId: ${navCallId}`,
+  );
+  throw new ErrorMedStatus('Error fetching simpleTokenXProxy', response.status, navCallId);
+};

package.json

@@ -14,6 +14,7 @@
     "@navikt/ds-react": "^5.17.4",
     "@navikt/nav-dekoratoren-moduler": "^2.1.5",
     "@navikt/next-api-proxy": "3.4.0",
+    "@navikt/oasis": "^3.2.2",
     "@ungap/structured-clone": "^1.2.0",
     "@vercel/otel": "1.2.1",
     "cross-fetch": "^4.0.0",

pages/[step].tsx

@@ -46,9 +46,9 @@ import {
 import { getKrr } from 'pages/api/oppslag/krr';
 import { Barn, getBarn } from 'pages/api/oppslag/barn';
 import { formatNavn } from 'utils/StringFormatters';
-import { hentMellomlagring } from 'pages/api/mellomlagring/les';
 import { RequiredVedlegg } from 'types/SoknadContext';
 import { logError, logInfo, logWarning } from '@navikt/aap-felles-utils';
+import { hentMellomlagring } from 'pages/api/mellomlagring/les';
 
 interface PageProps {
   søker: SokerOppslagState;
@@ -242,7 +242,7 @@ export const getServerSideProps = beskyttetSide(
 
     try {
       const [mellomlagretSøknadFraSoknadApi, mellomlagretSøknadFraAapInnsending] =
-        await Promise.all([lesBucket('STANDARD', bearerToken), hentMellomlagring(bearerToken)]);
+        await Promise.all([lesBucket('STANDARD', bearerToken), hentMellomlagring(ctx.req)]);
 
       if (mellomlagretSøknadFraAapInnsending && mellomlagretSøknadFraSoknadApi) {
         logError('pages/step: finner mellomlagring fra begge kilder');

pages/api/innsending/soknadinnsending.ts

@@ -1,5 +1,5 @@
 import { beskyttetApi } from 'auth/beskyttetApi';
-import { logError, tokenXApiProxy } from '@navikt/aap-felles-utils';
+import { logError } from '@navikt/aap-felles-utils';
 import { NextApiRequest, NextApiResponse } from 'next';
 import metrics from 'utils/metrics';
 import { ErrorMedStatus } from 'auth/ErrorMedStatus';
@@ -19,6 +19,8 @@ import { getYrkesskadeSchema } from 'components/pageComponents/standard/Yrkesska
 import { getAccessTokenFromRequest } from 'auth/accessToken';
 import { AttachmentType, RequiredVedlegg } from 'types/SoknadContext';
 import { SOKNAD_VERSION } from 'context/soknadcontext/soknadContext';
+import { simpleTokenXProxy } from 'lib/api/simpleTokenXProxy';
+import { IncomingMessage } from 'http';
 
 // TODO: Sjekke om vi må generere pdf på samme språk som bruker har valgt når de fyller ut søknaden
 function getIntl() {
@@ -107,7 +109,7 @@ const handler = beskyttetApi(async (req: NextApiRequest, res: NextApiResponse) =
         kvittering: søknadPdf,
         filer,
       },
-      accessToken,
+      req,
     );
 
     metrics.sendSoknadCounter.inc({ type: 'STANDARD' });
@@ -146,27 +148,28 @@ function mapVedleggTypeTilVedleggTekst(vedleggType: AttachmentType): string {
 
 export const sendSoknadViaAapInnsending = async (
   innsending: SoknadInnsendingRequestBody,
-  accessToken?: string,
+  req?: IncomingMessage,
 ) => {
   if (isFunctionalTest()) {
     return 'Vi har mottat søknaden din.';
   }
   if (isMock()) {
-    await slettBucket('STANDARD', accessToken);
+    await slettBucket('STANDARD', 'mock-token');
     return 'Vi har mottat søknaden din.';
   }
-  const søknad = await tokenXApiProxy({
-    url: `${process.env.INNSENDING_URL}/innsending`,
-    prometheusPath: 'innsending/soknad',
-    method: 'POST',
-    data: JSON.stringify(innsending),
-    audience: process.env.INNSENDING_AUDIENCE!,
-    bearerToken: accessToken,
-    metricsStatusCodeCounter: metrics.backendApiStatusCodeCounter,
-    metricsTimer: metrics.backendApiDurationHistogram,
-    noResponse: true,
-  });
-  return søknad;
+  try {
+    const søknad = await simpleTokenXProxy({
+      url: `${process.env.INNSENDING_URL}/innsending`,
+      audience: process.env.INNSENDING_AUDIENCE!,
+      method: 'POST',
+      req,
+      body: innsending,
+    });
+    return søknad;
+  } catch (error) {
+    logError('Feil ved innsending av søknad', error);
+    throw new Error('Feil ved innsending av søknad');
+  }
 };
 
 export default handler;

pages/api/mellomlagring/lagre.ts

@@ -1,51 +1,33 @@
-import { NextApiRequest, NextApiResponse } from 'next';
-import { getAccessTokenFromRequest } from 'auth/accessToken';
-import { beskyttetApi } from 'auth/beskyttetApi';
-import { logError, tokenXApiProxy } from '@navikt/aap-felles-utils';
+import { beskyttetApi } from '@navikt/aap-felles-utils';
 import { lagreCache } from 'mock/mellomlagringsCache';
 import { isFunctionalTest, isMock } from 'utils/environments';
-import metrics from 'utils/metrics';
 
-import { StepType } from 'components/StepWizard/Step';
-import { hentMellomlagring } from 'pages/api/mellomlagring/les';
+import { getOnBefalfOfToken } from 'lib/api/simpleTokenXProxy';
+import { proxyApiRouteRequest } from '@navikt/next-api-proxy';
 
-const handler = beskyttetApi(async (req: NextApiRequest, res: NextApiResponse) => {
-  const accessToken = getAccessTokenFromRequest(req);
+const handler = beskyttetApi(async (req, res) => {
+  if (isFunctionalTest()) return;
+  if (isMock()) return await lagreCache(JSON.stringify(req.body));
 
-  const eksisterendeSøknad = await hentMellomlagring(accessToken);
-  if (
-    eksisterendeSøknad &&
-    eksisterendeSøknad.søknad &&
-    Object.keys(eksisterendeSøknad.søknad).length > 0 &&
-    Object.keys(req.body.søknad).length === 0
-  ) {
-    const activeStepIndex = eksisterendeSøknad?.lagretStepList?.find(
-      (e: StepType) => e.active,
-    )?.stepIndex;
+  const url = `/mellomlagring/søknad`;
+  const onBehalfOfToken = await getOnBefalfOfToken(process.env.INNSENDING_AUDIENCE!, url, req);
 
-    logError(
-      `Overskriver eksisterende søknad med en tom søknad på side ${activeStepIndex ?? 'ukjent'}`,
-    );
-  }
-  await lagreBucket(req.body, accessToken);
-  res.status(201).json({});
+  return await proxyApiRouteRequest({
+    hostname: 'innsending',
+    path: url,
+    req: req,
+    res: res,
+    bearerToken: onBehalfOfToken,
+    https: false,
+  });
 });
 
-export const lagreBucket = async (data: string, accessToken?: string) => {
-  if (isFunctionalTest()) return;
-  if (isMock()) return await lagreCache(JSON.stringify(data));
-  await tokenXApiProxy({
-    url: `${process.env.INNSENDING_URL}/mellomlagring/søknad`,
-    prometheusPath: `mellomlagring`,
-    method: 'POST',
-    data: JSON.stringify(data),
-    audience: process.env.INNSENDING_AUDIENCE!,
-    noResponse: true,
-    bearerToken: accessToken,
-    metricsStatusCodeCounter: metrics.backendApiStatusCodeCounter,
-    metricsTimer: metrics.backendApiDurationHistogram,
-  });
-  return;
+export const config = {
+  api: {
+    responseLimit: '50mb',
+    bodyParser: false,
+    externalResolver: true,
+  },
 };
 
 export default handler;

pages/api/mellomlagring/les.ts

@@ -7,15 +7,16 @@ import { lesCache } from 'mock/mellomlagringsCache';
 import { isFunctionalTest, isMock } from 'utils/environments';
 import { defaultStepList } from 'pages';
 import { SOKNAD_VERSION, SoknadContextState } from 'context/soknadcontext/soknadContext';
+import { IncomingMessage } from 'http';
+import { simpleTokenXProxy } from 'lib/api/simpleTokenXProxy';
 
 const handler = beskyttetApi(async (req: NextApiRequest, res: NextApiResponse) => {
-  const accessToken = getAccessTokenFromRequest(req);
-  const result = await hentMellomlagring(accessToken);
+  const result = await hentMellomlagring(req);
   res.status(200).json(result);
 });
 
 export const hentMellomlagring = async (
-  accessToken?: string,
+  req?: IncomingMessage,
 ): Promise<SoknadContextState | undefined> => {
   if (isFunctionalTest()) {
     return {
@@ -31,14 +32,10 @@ export const hentMellomlagring = async (
     return result ? JSON.parse(result) : {};
   }
   try {
-    const mellomlagretSøknad = await tokenXApiProxy({
+    const mellomlagretSøknad = await simpleTokenXProxy<SoknadContextState>({
       url: `${process.env.INNSENDING_URL}/mellomlagring/søknad`,
-      prometheusPath: `mellomlagring`,
-      method: 'GET',
       audience: process.env.INNSENDING_AUDIENCE!,
-      bearerToken: accessToken,
-      metricsStatusCodeCounter: metrics.backendApiStatusCodeCounter,
-      metricsTimer: metrics.backendApiDurationHistogram,
+      req,
     });
 
     return mellomlagretSøknad;

pages/api/mellomlagring/slett.ts

@@ -1,33 +1,36 @@
 import { NextApiRequest, NextApiResponse } from 'next';
 import { getAccessTokenFromRequest } from 'auth/accessToken';
 import { beskyttetApi } from 'auth/beskyttetApi';
-import { tokenXApiProxy } from '@navikt/aap-felles-utils';
+import { logError, tokenXApiProxy } from '@navikt/aap-felles-utils';
 import metrics from 'utils/metrics';
 import { deleteCache } from 'mock/mellomlagringsCache';
 import { isMock } from 'utils/environments';
+import { simpleTokenXProxy } from 'lib/api/simpleTokenXProxy';
 
 const handler = beskyttetApi(async (req: NextApiRequest, res: NextApiResponse) => {
   const accessToken = getAccessTokenFromRequest(req);
-  await slettBucket(accessToken);
+  await slettInnsending(req);
   res.status(204).json({});
 });
 
-export const slettBucket = async (accessToken?: string) => {
+export const slettInnsending = async (req: NextApiRequest) => {
   if (isMock()) {
     await deleteCache();
     return;
   }
 
-  await tokenXApiProxy({
-    url: `${process.env.INNSENDING_URL}/mellomlagring/søknad`,
-    prometheusPath: `mellomlagring`,
-    method: 'DELETE',
-    noResponse: true,
-    audience: process.env.INNSENDING_AUDIENCE!,
-    bearerToken: accessToken,
-    metricsStatusCodeCounter: metrics.backendApiStatusCodeCounter,
-    metricsTimer: metrics.backendApiDurationHistogram,
-  });
+  try {
+    const response = await simpleTokenXProxy({
+      url: `${process.env.INNSENDING_URL}/mellomlagring/søknad`,
+      audience: process.env.INNSENDING_AUDIENCE!,
+      method: 'DELETE',
+      req,
+    });
+    return response;
+  } catch (error) {
+    logError('Error sending slettInnsending', error);
+    throw new Error('Error sending slettInnsending');
+  }
 };
 
 export default handler;

pages/index.tsx

@@ -115,7 +115,7 @@ export const getServerSideProps = beskyttetSide(
 
     try {
       const [mellomlagretSøknadFraSoknadApi, mellomlagretSøknadFraAapInnsending] =
-        await Promise.all([lesBucket('STANDARD', bearerToken), hentMellomlagring(bearerToken)]);
+        await Promise.all([lesBucket('STANDARD', bearerToken), hentMellomlagring(ctx.req)]);
 
       if (mellomlagretSøknadFraAapInnsending && mellomlagretSøknadFraSoknadApi) {
         logError('pages/index: finner mellomlagring fra begge kilder');