feat(middleware-auth): add method for anonymous session flow

affects: @commercetools/sdk-middleware-auth

Author: Abimbola Idowu

docs/sdk/api/sdkMiddlewareAuth.md

@@ -129,3 +129,40 @@ const client = createClient({
   ],
 })
 ```
+
+## `createAuthMiddlewareForAnonymousSessionFlow(options)`
+
+Creates a [middleware](/sdk/Glossary.md#middleware) to handle authentication for the [Anonymous Session Flow](http://dev.commercetools.com/http-api-authorization.html#tokens-for-anonymous-sessions) of the commercetools platform API.
+
+#### Named arguments (options)
+
+1. `host` *(String)*: the host of the OAuth API service
+2. `projectKey` *(String)*: the key of the project to assign the default scope to
+3. `credentials` *(Object)*: the client credentials for authentication (`clientId`, `clientSecret`, `anonymousId`)
+4. `scopes` *(Array)*: a list of [scopes](http://dev.commercetools.com/http-api-authorization.html#scopes) (default `manage_project:{projectKey}`) to assign to the OAuth token
+
+
+#### Usage example
+
+```js
+import { createClient } from '@commercetools/sdk-client'
+import { createAuthMiddlewareForAnonymousSessionFlow } from '@commercetools/sdk-middleware-auth'
+
+const client = createClient({
+  middlewares: [
+    createAuthMiddlewareForAnonymousSessionFlow({
+      host: 'https://auth.commercetools.com',
+      projectKey: 'test',
+      credentials: {
+        clientId: '123',
+        clientSecret: 'secret',
+        anonymousId: 'unique-id-of-customer-not-required',
+      },
+      scopes: [
+        'view_products:test',
+        'manage_orders:test',
+      ],
+    }),
+  ],
+})
+```

packages/sdk-middleware-auth/src/anonymous-session-flow.js

@@ -1,3 +1,36 @@
-export default function createAuthMiddlewareForAnonymousSessionFlow () {
-  throw new Error('Middleware not implemented yet')
+/* @flow */
+import type {
+  AuthMiddlewareOptions,
+  Middleware,
+  MiddlewareRequest,
+  MiddlewareResponse,
+  Next,
+  Task,
+} from 'types/sdk'
+
+import { buildRequestForAnonymousSessionFlow } from './build-requests'
+import authMiddlewareBase from './base-auth-flow'
+import store from './utils'
+
+export default function createAuthMiddlewareForAnonymousSessionFlow (
+  options: AuthMiddlewareOptions,
+): Middleware {
+  const tokenCache = store({})
+  const pendingTasks: Array<Task> = []
+
+  const requestState = store(false)
+  return (next: Next) => (
+    request: MiddlewareRequest,
+    response: MiddlewareResponse,
+  ) => {
+    const params = {
+      request,
+      response,
+      ...buildRequestForAnonymousSessionFlow(options),
+      pendingTasks,
+      requestState,
+      tokenCache,
+    }
+    authMiddlewareBase(params, next)
+  }
 }

packages/sdk-middleware-auth/test/anonymous-session-flow.spec.js

@@ -0,0 +1,63 @@
+import {
+  createAuthMiddlewareForAnonymousSessionFlow,
+} from '../src'
+
+import authMiddlewareBase from '../src/base-auth-flow'
+
+jest.mock('../src/base-auth-flow')
+
+function createTestRequest (options) {
+  return {
+    url: '',
+    method: 'GET',
+    body: null,
+    headers: {},
+    ...options,
+  }
+}
+
+function createTestMiddlewareOptions (options) {
+  return {
+    host: 'https://auth.commercetools.co',
+    projectKey: 'foo',
+    credentials: {
+      clientId: '123',
+      clientSecret: 'secret',
+      anonymousId: 'secretme',
+    },
+    ...options,
+  }
+}
+
+describe('Anonymous Session Flow', () => {
+  it('should call the base-auth-flow method with the right params', () =>
+    new Promise((resolve, reject) => {
+      authMiddlewareBase.mockImplementation((params, next) => {
+        next(params) // makes it easy to test what was passed in
+      })
+      const request = createTestRequest()
+      const response = {
+        resolve,
+        reject,
+      }
+      const next = (actualParams) => {
+        expect(actualParams.request).toEqual(actualParams.request)
+        expect(actualParams.response).toEqual(actualParams.response)
+        expect(actualParams.pendingTasks).toEqual([])
+        expect(actualParams.url).toBe(
+          'https://auth.commercetools.co/oauth/foo/anonymous/token',
+        )
+        expect('MTIzOnNlY3JldA==').toBe(actualParams.basicAuth)
+        expect(authMiddlewareBase).toHaveBeenCalledTimes(1)
+        jest.unmock('../src/base-auth-flow')
+        resolve()
+      }
+      const middlewareOptions = createTestMiddlewareOptions()
+      const authMiddleware = createAuthMiddlewareForAnonymousSessionFlow(
+        middlewareOptions,
+      )
+
+      authMiddleware(next)(request, response)
+    }),
+  )
+})