feat: implement checkout config data sync

Author: johnsonogwuru

cmd/root.go

@@ -0,0 +1,57 @@
+package cmd
+
+import (
+	"fmt"
+	"os"
+
+	"github.com/spf13/cobra"
+
+	"github.com/commercetools/checkout-cloud-sync/internal/config"
+	"github.com/commercetools/checkout-cloud-sync/internal/sync"
+)
+
+var (
+	configFile string
+	full      bool
+)
+
+var rootCmd = &cobra.Command{
+	Use:   "checkout-cloud-sync",
+	Short: "Migrate commercetools Checkout resources between cloud providers",
+	Long: `checkout-cloud-sync migrates commercetools Checkout resources
+(applications and payment-integrations) from a source project to a target project.
+
+Without -f, runs in dry-run mode and prints what would be migrated.
+With -f, performs the actual migration of both applications and payment-integrations.
+
+Example:
+  checkout-cloud-sync -c config.yml        # dry-run
+  checkout-cloud-sync -c config.yml -f     # execute migration`,
+	SilenceUsage: true,
+	RunE: func(cmd *cobra.Command, args []string) error {
+		cfg, err := config.Load(configFile)
+		if err != nil {
+			return fmt.Errorf("loading config: %w", err)
+		}
+
+		syncer, err := sync.New(cfg, os.Stdout)
+		if err != nil {
+			return fmt.Errorf("initializing syncer: %w", err)
+		}
+
+		return syncer.Sync(cmd.Context(), full)
+	},
+}
+
+func init() {
+	rootCmd.PersistentFlags().StringVarP(&configFile, "config", "c", "config.yml", "Path to config file")
+	rootCmd.Flags().BoolVarP(&full, "full", "f", false, "Execute migration (omit for dry-run)")
+}
+
+// Execute runs the CLI.
+func Execute() {
+	if err := rootCmd.Execute(); err != nil {
+		fmt.Fprintln(os.Stderr, err)
+		os.Exit(1)
+	}
+}

config.example.yml

@@ -0,0 +1,23 @@
+source:
+  project_key: ""
+  client_id: ""
+  client_secret: ""
+  # OAuth token endpoint (Composable Commerce), not the Checkout API host.
+  auth_url: "https://auth.europe-west1.gcp.commercetools.com/oauth/token"
+  # Prefer explicit Checkout API host.
+  checkout_api_url: "https://checkout.europe-west1.gcp.commercetools.com"
+  scopes: ""
+
+target:
+  project_key: ""
+  client_id: ""
+  client_secret: ""
+  auth_url: "https://auth.eu-central-1.aws.commercetools.com/oauth/token"
+  checkout_api_url: "https://checkout.eu-central-1.aws.commercetools.com"
+  scopes: ""
+
+# Map source connector deployment UUIDs to target deployment UUIDs when IDs differ between clouds.
+# deployment_mapping:
+#   "source-deployment-uuid": "target-deployment-uuid"
+deployment_mapping:
+  "7da2cbeb-d00d-40d3-ab29-5f23f1bdcb21": "5e20cfe4-e849-4abe-b600-c8f569519138"

go.mod

@@ -0,0 +1,13 @@
+module github.com/commercetools/checkout-cloud-sync
+
+go 1.21
+
+require (
+	github.com/spf13/cobra v1.8.0
+	gopkg.in/yaml.v3 v3.0.1
+)
+
+require (
+	github.com/inconshreveable/mousetrap v1.1.0 // indirect
+	github.com/spf13/pflag v1.0.5 // indirect
+)

go.sum

@@ -0,0 +1,12 @@
+github.com/cpuguy83/go-md2man/v2 v2.0.3/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
+github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
+github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
+github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
+github.com/spf13/cobra v1.8.0 h1:7aJaZx1B85qltLMc546zn58BxxfZdR/W22ej9CFoEf0=
+github.com/spf13/cobra v1.8.0/go.mod h1:WXLWApfZ71AjXPya3WOlMsY9yMs7YeiHhFVlvLyhcho=
+github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
+github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
+gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405 h1:yhCVgyC4o1eVCa2tZl7eS0r+SDo693bJlVdllGtEeKM=
+gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
+gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=

internal/client/client.go

@@ -0,0 +1,176 @@
+// Package client provides an authenticated HTTP client for the commercetools Checkout API.
+package client
+
+import (
+	"bytes"
+	"context"
+	"encoding/base64"
+	"encoding/json"
+	"fmt"
+	"io"
+	"net/http"
+	"net/url"
+	"strings"
+	"time"
+
+	"github.com/commercetools/checkout-cloud-sync/internal/config"
+)
+
+// Client is an authenticated Checkout API client for a single project.
+type Client struct {
+	http        *http.Client
+	cfg         config.ProjectConfig
+	accessToken string
+	tokenExpiry time.Time
+}
+
+type tokenResponse struct {
+	AccessToken string `json:"access_token"`
+	ExpiresIn   int    `json:"expires_in"`
+}
+
+// ctError is the standard commercetools error envelope.
+type ctError struct {
+	Message string `json:"message"`
+	Errors  []struct {
+		Code    string `json:"code"`
+		Message string `json:"message"`
+	} `json:"errors"`
+}
+
+// HTTPError represents an unsuccessful HTTP response from the Checkout API.
+// Callers can use errors.As to inspect the status code rather than parsing
+// the error string.
+type HTTPError struct {
+	Method     string
+	Path       string
+	StatusCode int
+	Message    string
+}
+
+func (e *HTTPError) Error() string {
+	return fmt.Sprintf("%s %s: HTTP %d: %s", e.Method, e.Path, e.StatusCode, e.Message)
+}
+
+// New creates a Client and eagerly fetches an OAuth2 client-credentials token.
+func New(cfg config.ProjectConfig) (*Client, error) {
+	c := &Client{
+		http: &http.Client{Timeout: 30 * time.Second},
+		cfg:  cfg,
+	}
+	if err := c.fetchToken(context.Background()); err != nil {
+		return nil, fmt.Errorf("authenticating against %s: %w", cfg.AuthURL, err)
+	}
+	return c, nil
+}
+
+func (c *Client) fetchToken(ctx context.Context) error {
+	form := url.Values{"grant_type": {"client_credentials"}}
+	if c.cfg.Scopes != "" {
+		form.Set("scope", c.cfg.Scopes)
+	}
+
+	req, err := http.NewRequestWithContext(ctx, http.MethodPost, c.cfg.AuthURL, strings.NewReader(form.Encode()))
+	if err != nil {
+		return err
+	}
+	creds := base64.StdEncoding.EncodeToString([]byte(c.cfg.ClientID + ":" + c.cfg.ClientSecret))
+	req.Header.Set("Authorization", "Basic "+creds)
+	req.Header.Set("Content-Type", "application/x-www-form-urlencoded")
+
+	resp, err := c.http.Do(req)
+	if err != nil {
+		return fmt.Errorf("token request failed: %w", err)
+	}
+	defer resp.Body.Close()
+
+	body, _ := io.ReadAll(resp.Body)
+	if resp.StatusCode != http.StatusOK {
+		return fmt.Errorf("token endpoint returned HTTP %d: %s", resp.StatusCode, body)
+	}
+
+	var t tokenResponse
+	if err := json.Unmarshal(body, &t); err != nil {
+		return fmt.Errorf("parsing token response: %w", err)
+	}
+	c.accessToken = t.AccessToken
+	// Refresh 30 seconds before the token expires to avoid races.
+	c.tokenExpiry = time.Now().Add(time.Duration(t.ExpiresIn-30) * time.Second)
+	return nil
+}
+
+func (c *Client) ensureToken(ctx context.Context) error {
+	if time.Now().Before(c.tokenExpiry) {
+		return nil
+	}
+	return c.fetchToken(ctx)
+}
+
+// baseURL returns the project-scoped API root, e.g. https://checkout.example.com/my-project.
+func (c *Client) baseURL() string {
+	return strings.TrimRight(c.cfg.CheckoutAPIURL, "/") + "/" + c.cfg.ProjectKey
+}
+
+// Get performs a GET and decodes the JSON response into result.
+func (c *Client) Get(ctx context.Context, path string, result interface{}) error {
+	return c.do(ctx, http.MethodGet, path, nil, result, http.StatusOK)
+}
+
+// Post performs a POST with a JSON body and decodes the response into result (may be nil).
+func (c *Client) Post(ctx context.Context, path string, reqBody interface{}, result interface{}) error {
+	return c.do(ctx, http.MethodPost, path, reqBody, result, http.StatusOK, http.StatusCreated)
+}
+
+// Delete performs a DELETE.
+func (c *Client) Delete(ctx context.Context, path string) error {
+	return c.do(ctx, http.MethodDelete, path, nil, nil, http.StatusOK, http.StatusNoContent)
+}
+
+func (c *Client) do(ctx context.Context, method, path string, body interface{}, result interface{}, acceptStatus ...int) error {
+	if err := c.ensureToken(ctx); err != nil {
+		return err
+	}
+
+	var reqBody io.Reader
+	if body != nil {
+		b, err := json.Marshal(body)
+		if err != nil {
+			return fmt.Errorf("marshaling request body: %w", err)
+		}
+		reqBody = bytes.NewReader(b)
+	}
+
+	req, err := http.NewRequestWithContext(ctx, method, c.baseURL()+path, reqBody)
+	if err != nil {
+		return err
+	}
+	req.Header.Set("Authorization", "Bearer "+c.accessToken)
+	if body != nil {
+		req.Header.Set("Content-Type", "application/json")
+	}
+
+	resp, err := c.http.Do(req)
+	if err != nil {
+		return fmt.Errorf("%s %s: %w", method, path, err)
+	}
+	defer resp.Body.Close()
+
+	respBody, _ := io.ReadAll(resp.Body)
+
+	for _, s := range acceptStatus {
+		if resp.StatusCode == s {
+			if result != nil {
+				return json.Unmarshal(respBody, result)
+			}
+			return nil
+		}
+	}
+
+	// Surface the commercetools error message when available.
+	msg := string(respBody)
+	var ctErr ctError
+	if json.Unmarshal(respBody, &ctErr) == nil && ctErr.Message != "" {
+		msg = ctErr.Message
+	}
+	return &HTTPError{Method: method, Path: path, StatusCode: resp.StatusCode, Message: msg}
+}