fix marketplace flow

Author: brettstack

README.md

@@ -148,9 +148,9 @@ The product billing dimension name should be "apigateway" with description "Requ
 
 ### Marketplace Flow
 
-When buyers subscribe through the AWS Marketplace console, the buyers browser will send a POST request to /marketplace-confirm/[USAGE_PLAN_ID] in your backend API. By default, this operation simply redirects the buyer to marketplace-subscribe.html in the developer portal.
+When buyers subscribe through the AWS Marketplace console, the buyers browser will send a POST request to /marketplace-confirm/[USAGE_PLAN_ID] in your backend API. By default, this redirects the request to the developer portal with the `usagePlanId` and `token` in the query string.
 
-From here, the buyer is asked to login or register for the developer portal (or the existing session will be used). Once authenticated the buyer confirms the subscription and a PUT request is made to /marketplace-subscriptions/[USAGE_PLAN_ID].
+From here, the buyer is asked to login or register for the developer portal (or the existing session will be used). Once authenticated, a PUT request is made to /marketplace-subscriptions/[USAGE_PLAN_ID].
 
 This operation makes a request to Marketplace Metering Service to resolve the buyer customer ID as well as the marketplace product code being subscribed to. By default, this operation simply associates the marketplace customer ID with the currently authenticated Cognito identity in DynamoDb for later use. It also calls API Gateway to get or create an API key for this user and associates this API Key with the marketplace customer ID.
 

dev-portal/src/components/Register/index.js

@@ -2,6 +2,7 @@ import React, { PureComponent } from 'react'
 import { Button, Form, Message, Modal } from 'semantic-ui-react'
 import { Redirect } from 'react-router-dom'
 import { register } from '../../services/self'
+import { confirmMarketplaceSubscription } from '../../services/api-catalog'
 
  export default class Register extends PureComponent {
   state = {
@@ -18,8 +19,17 @@ import { register } from '../../services/self'
   _handleRegister(event, serializedForm) {
     event.preventDefault()
     this.setState({isSubmitting: true})
+
     register(serializedForm.email, serializedForm.password)
-    .then(() => this.setState({signedIn: true, isSubmitting: false, errorMessage: ''}))
+    .then(() => {
+        this.setState({signedIn: true, isSubmitting: false, errorMessage: ''})
+
+        const { usagePlanId, token } = this.props
+
+        if (usagePlanId && token) {
+   	       return confirmMarketplaceSubscription(usagePlanId, token)
+        }
+    })
     .catch((e) => this.setState({errorMessage: e.message, isSubmitting: false}))
   }
 

dev-portal/src/components/SignIn/index.js

@@ -2,6 +2,7 @@ import React, { PureComponent } from 'react'
 import { Button, Form, Message, Modal } from 'semantic-ui-react'
 import { Redirect } from 'react-router-dom'
 import { login } from '../../services/self'
+import { confirmMarketplaceSubscription } from '../../services/api-catalog'
 
  export default class SignIn extends PureComponent {
    state = {
@@ -19,7 +20,15 @@ import { login } from '../../services/self'
     this.setState({isSubmitting: true})
 
     login(serializedForm.email, serializedForm.password)
-    .then(() => this.setState({signedIn: true, isSubmitting: false, errorMessage: ''}))
+    .then(() => {
+        this.setState({signedIn: true, isSubmitting: false, errorMessage: ''})
+
+        const { usagePlanId, token } = this.props
+
+        if (usagePlanId && token) {
+   	       return confirmMarketplaceSubscription(usagePlanId, token)
+        }
+    })
     .catch((e) => this.setState({errorMessage: e.message, isSubmitting: false}))
   }
 

dev-portal/src/pages/Home.js

@@ -1,36 +1,58 @@
-import React from 'react'
+import React, { PureComponent } from 'react'
 import { Link } from 'react-router-dom'
 import { Container, Segment, Divider, Card } from 'semantic-ui-react'
 import SignIn from '../components/SignIn'
 import Register from '../components/Register'
 import { isAuthenticated } from '../services/self'
+import { confirmMarketplaceSubscription } from '../services/api-catalog'
+import { getQueryString } from '../services/misc'
 
-export default (props) => (
-  <Container>
-    <Card.Group itemsPerRow={3} stackable style={{textAlign: 'center'}}>
-      <Card>
-        <Card.Content>
-          <Card.Header><Link to='/case-studies'>Case Studies</Link></Card.Header>
-          <Card.Description>Want to learn about what you can achieve by integrating with our APIs? The possibilities are endless, but <Link to='/case-studies'>here are just a few examples</Link>.</Card.Description>
-        </Card.Content>
-      </Card>
-      <Card>
-        <Card.Content>
-          <Card.Header><Link to='/apis'>APIs</Link></Card.Header>
-          <Card.Description><Link to='/apis'>See what APIs we have on offer</Link>, including extensive documentation. Sign in to manage your subscriptions, see your current usage, get your API Key, and test against our live API.</Card.Description>
-        </Card.Content>
-      </Card>
-      <Card>
-        <Card.Content>
-          <Card.Header><Link to='/getting-started'>Getting Started</Link></Card.Header>
-          <Card.Description>Ready to get started? This is the place that answers all your questions. We'll have you up and running in no time. <Link to='/getting-started'>Let's get started!</Link></Card.Description>
-        </Card.Content>
-      </Card>
-    </Card.Group>
-    { isAuthenticated() ? '' : (<Segment padded>
-      <SignIn />
-      <Divider horizontal>Or</Divider>
-      <Register />
-    </Segment>) }
-  </Container>
-)
+export default class HomePage extends PureComponent {
+  constructor() {
+    super()
+    this.state = {}
+
+    const { usagePlanId, token } = getQueryString()
+    if (usagePlanId && token) {
+      this.state = { usagePlanId, token }
+
+      if (isAuthenticated()) {
+        confirmMarketplaceSubscription(usagePlanId, token).then(() => {
+          window.location.href = '/apis'
+        })
+      }
+    }
+  }
+
+  render() {
+    return (
+      <Container>
+        <Card.Group itemsPerRow={3} stackable style={{textAlign: 'center'}}>
+          <Card>
+            <Card.Content>
+              <Card.Header><Link to='/case-studies'>Case Studies</Link></Card.Header>
+              <Card.Description>Want to learn about what you can achieve by integrating with our APIs? The possibilities are endless, but <Link to='/case-studies'>here are just a few examples</Link>.</Card.Description>
+            </Card.Content>
+          </Card>
+          <Card>
+            <Card.Content>
+              <Card.Header><Link to='/apis'>APIs</Link></Card.Header>
+              <Card.Description><Link to='/apis'>See what APIs we have on offer</Link>, including extensive documentation. Sign in to manage your subscriptions, see your current usage, get your API Key, and test against our live API.</Card.Description>
+            </Card.Content>
+          </Card>
+          <Card>
+            <Card.Content>
+              <Card.Header><Link to='/getting-started'>Getting Started</Link></Card.Header>
+              <Card.Description>Ready to get started? This is the place that answers all your questions. We'll have you up and running in no time. <Link to='/getting-started'>Let's get started!</Link></Card.Description>
+            </Card.Content>
+          </Card>
+        </Card.Group>
+        { isAuthenticated() ? '' : (<Segment padded>
+          <SignIn usagePlanId={this.state.usagePlanId} token={this.state.token} />
+          <Divider horizontal>Or</Divider>
+          <Register usagePlanId={this.state.usagePlanId} token={this.state.token} />
+        </Segment>) }
+      </Container>
+    )
+  }
+}

dev-portal/src/services/misc.js

@@ -0,0 +1,13 @@
+export function getQueryString() {
+  const { search: q } = window.location
+
+  if (!q) return {}
+
+  return (/^[?#]/.test(q) ? q.slice(1) : q)
+    .split('&')
+    .reduce((params, param) => {
+      let [ key, value ] = param.split('=');
+      params[key] = value ? decodeURIComponent(value) : '';
+      return params;
+    }, { })
+}

lambdas/_common/customers-controller.js

@@ -1,9 +1,7 @@
 'use strict'
 const AWS = require('aws-sdk')
-const doc = require('dynamodb-doc')
 
-const dynamodb = new doc.DynamoDB()
-const dynamodbdoc = new AWS.DynamoDB.DocumentClient()
+const dynamoDb = new AWS.DynamoDB.DocumentClient()
 const apigateway = new AWS.APIGateway()
 
 const customersTable = 'DevPortalCustomers'
@@ -18,7 +16,7 @@ function ensureCustomerItem(cognitoIdentityId, keyId, error, callback) {
             Id: customerId
         }
     }
-    dynamodbdoc.get(getParams, (err, data) => {
+    dynamoDb.get(getParams, (err, data) => {
         if (err) {
             error(err)
         } else if (data.Item === undefined) {
@@ -29,7 +27,8 @@ function ensureCustomerItem(cognitoIdentityId, keyId, error, callback) {
                     ApiKeyId: keyId
                 }
             }
-            dynamodb.putItem(putParams, (customerErr, customerData) => {
+
+            dynamoDb.putItem(putParams, (customerErr, customerData) => {
                 if (customerErr) {
                     error(customerErr)
                 } else {
@@ -54,7 +53,7 @@ function getCognitoIdentityId(marketplaceCustomerId, error, callback) {
         },
         ProjectionExpression: "MarketplaceCustomerId, Id"
     }
-    dynamodbdoc.query(params, (err, data) => {
+    dynamoDb.query(params, (err, data) => {
         if (err) {
             error(err)
         } else if (data.Items === undefined || data.Items.length === 0) {
@@ -211,7 +210,7 @@ function getUsagePlanForProductCode(productCode, error, callback) {
             error(err)
         } else {
             console.log(`Got usage plans ${JSON.stringify(data.items)}`)
-            
+
             // note: ensure that only one usage plan maps to a given marketplace product code
             const usageplan = data.items.find(function (item) {
                 return item.productCode !== undefined && item.productCode === productCode
@@ -242,7 +241,7 @@ function updateCustomerMarketplaceId(cognitoIdentityId, marketplaceCustomerId, e
 
     // update DDB customer record with marketplace customer id
     // and update API Gateway API Key with marketplace customer id
-    dynamodbdoc.update(dynamoDbParams, (dynamoDbErr) => {
+    dynamoDb.update(dynamoDbParams, (dynamoDbErr) => {
         if (dynamoDbErr) {
             error(dynamoDbErr)
         } else {
@@ -310,7 +309,7 @@ function updateCustomerApiKeyId(cognitoIdentityId, apiKeyId, error, success) {
         }
     }
 
-    dynamodbdoc.update(dynamoDbParams, (dynamoDbErr) => {
+    dynamoDb.update(dynamoDbParams, (dynamoDbErr) => {
         if (dynamoDbErr) {
             error(dynamoDbErr)
         } else {

lambdas/backend/express-server-local.js

@@ -0,0 +1,5 @@
+const app = require('./express-server')
+const port = 4000
+
+app.listen(port)
+console.log(`listening on http://localhost:${port}`)

lambdas/backend/express-server.js

@@ -200,10 +200,9 @@ app.post('/marketplace-confirm/:usagePlanId', (req, res) => {
     console.log(`Marketplace token: ${marketplaceToken}`)
     const usagePlanId = req.params.usagePlanId
 
-    // TODO: update to new location of marketplace-subscribe route
     // WARNING: the redirect URL should be HTTPS as the token is subject to MITM attacks over HTTP. Token expires after 60min
     // ideally this should be saved in a secure manner (i.e. DDB) until the subscription completes
-    const confirmUrl = `${baseUrl}marketplace-subscribe.html?usagePlanId=${usagePlanId}&token=${marketplaceToken}`
+    const confirmUrl = `${baseUrl}?usagePlanId=${usagePlanId}&token=${marketplaceToken}`
 
     // redirect to the registration/login page
     res.redirect(302, confirmUrl)
@@ -212,9 +211,9 @@ app.post('/marketplace-confirm/:usagePlanId', (req, res) => {
 app.put('/marketplace-subscriptions/:usagePlanId', (req, res) => {
     const marketplaceToken = req.body.token
     const usagePlanId = req.params.usagePlanId
+    console.log(`Marketplace token: ${marketplaceToken} usage plan id: ${usagePlanId}`)
     const cognitoIdentityId = getCognitoIdentityId(req)
-
-    console.log(`Marketplace token: ${marketplaceToken} usage plan id: ${usagePlanId} cognito id: ${cognitoIdentityId}`)
+    console.log(`cognito id: ${cognitoIdentityId}`)
 
     function error(data) {
         console.log(`error: ${data}`)
@@ -225,6 +224,10 @@ app.put('/marketplace-subscriptions/:usagePlanId', (req, res) => {
         res.status(200).json(data)
     }
 
+    function subscribeCustomerToUsagePlan(data) {
+        customersController.subscribe(cognitoIdentityId, usagePlanId, error, success)
+    }
+
     const marketplace = new AWS.MarketplaceMetering()
 
     const params = {
@@ -235,14 +238,14 @@ app.put('/marketplace-subscriptions/:usagePlanId', (req, res) => {
     marketplace.resolveCustomer(params, (err, data) => {
         if (err) {
             console.log(`marketplace error: ${JSON.stringify(err)}`)
-            res.status(400).json(err.data.message)
+            res.status(400).json(err.message)
         } else {
             console.log(`marketplace data: ${JSON.stringify(data)}`)
 
             // persist the marketplaceCustomerId in DDB
             // this is used when the subscription listener receives the subscribe notification
             const marketplaceCustomerId = data.CustomerIdentifier
-            customersController.updateCustomerMarketplaceId(cognitoIdentityId, marketplaceCustomerId, error, success)
+            customersController.updateCustomerMarketplaceId(cognitoIdentityId, marketplaceCustomerId, error, subscribeCustomerToUsagePlan)
         }
     })
 })

lambdas/backend/package.json

@@ -4,7 +4,9 @@
   "description": "Example application for running a Serverless Developer Portal with API Gateway and Lambda",
   "main": "index.js",
   "config": {},
-  "scripts": {},
+  "scripts": {
+    "local": "node ./express-server-local"
+  },
   "license": "Apache-2.0",
   "dependencies": {
     "aws-sdk": "^2.7.10",