refactor: sanitize input values for qris, merchant and payment fee category

fyvri · fyvri · commit 83ede1451695 · 2024-12-17T23:32:39.000+07:00
diff --git a/api/routes/route.go b/api/routes/route.go
@@ -17,11 +17,12 @@ func Setup(env *bootstrap.Env, ginEngine *gin.Engine) {
 			Message: "Made with love by Alvriyanto Azis",
 			Data: map[string]any{
 				"1_Title":       "Go-QRIS",
-				"2_Description": "Go-QRIS is a Go-based project designed to convert QRIS code into dynamic ones. QRIS (Quick Response Code Indonesian Standard) is widely used for payments, but QR code have limitations in flexibility. This tool enhances QRIS transactions by enabling dynamic data like payment amounts, merchant details, and fees, making payments more adaptable and efficient. Go-QRIS simplifies the process of generating dynamic QRIS code, improving payment flexibility for businesses and providing a seamless experience for customers.",
-				"3_Resources": [3]any{
+				"2_Description": "Go-QRIS is a Go-based project designed to convert QRIS code into dynamic ones. QRIS (Quick Response Code Indonesian Standard) is widely used for payments, but QR code has limitations in flexibility. This tool enhances QRIS transactions by enabling dynamic data like payment amounts, merchant details, and fees, making payments more adaptable and efficient. Go-QRIS simplifies the process of generating dynamic QRIS code, improving payment flexibility for businesses and providing a seamless experience for customers.",
+				"3_Related URLs": [4]any{
 					"https://github.com/fyvri/go-qris",
 					"https://pkg.go.dev/github.com/fyvri/go-qris",
 					"https://hub.docker.com/r/azisalvriyanto/go-qris",
+					"https://documenter.getpostman.com/view/6937269/2sAYJ1jMc7",
 				},
 				"4_API_Endpoints": [3]any{
 					map[string]any{
diff --git a/internal/interface/controllers/qris.go b/internal/interface/controllers/qris.go
@@ -47,15 +47,15 @@ func (c *QRIS) Convert(qrisString string, merchantCityValue string, merchantPost
 	merchantCityValue = c.inputUtil.Sanitize(merchantCityValue)
 	merchantPostalCodeValue = c.inputUtil.Sanitize(merchantPostalCodeValue)
 	paymentFeeCategoryValue = strings.ToUpper(c.inputUtil.Sanitize(paymentFeeCategoryValue))
-	qrDynamic := c.qrisUsecase.Modify(qris, merchantCityValue, merchantPostalCodeValue, paymentAmountValue, paymentFeeCategoryValue, paymentFeeValue)
-	qrDynamicString := c.qrisUsecase.ToString(qrDynamic)
+	qris = c.qrisUsecase.Modify(qris, merchantCityValue, merchantPostalCodeValue, paymentAmountValue, paymentFeeCategoryValue, paymentFeeValue)
+	qrisString = c.qrisUsecase.ToString(qris)
 
-	qrCode, err := c.qrCodeUtil.StringToImageBase64(qrDynamicString, c.qrCodeSize)
+	qrCode, err := c.qrCodeUtil.StringToImageBase64(qrisString, c.qrCodeSize)
 	if err != nil {
-		return qrDynamicString, "", err, nil
+		return qrisString, "", err, nil
 	}
 
-	return qrDynamicString, qrCode, nil, nil
+	return qrisString, qrCode, nil, nil
 }
 
 func (c *QRIS) IsValid(qrisString string) (error, *[]string) {
diff --git a/pkg/services/qris.go b/pkg/services/qris.go
@@ -1,22 +1,26 @@
 package services
 
 import (
+	"strings"
+
 	"github.com/fyvri/go-qris/internal/config"
 	"github.com/fyvri/go-qris/internal/usecases"
 	"github.com/fyvri/go-qris/pkg/models"
+	"github.com/fyvri/go-qris/pkg/utils"
 )
 
 type QRIS struct {
 	crc16CCITTUsecase usecases.CRC16CCITTInterface
 	qrisUsecase       usecases.QRISInterface
+	inputUtil         utils.InputInterface
 }
 
 type QRISInterface interface {
 	Parse(qrisString string) (*models.QRIS, error, *[]string)
 	IsValid(qris *models.QRIS) bool
-	Modify(qris *models.QRIS, merchantCityValue string, merchantPostalCode string, paymentAmountValue int, paymentFeeCategoryValue string, paymentFeeValue int) *models.QRIS
+	Modify(qris *models.QRIS, merchantCityValue string, merchantPostalCodeValue string, paymentAmountValue int, paymentFeeCategoryValue string, paymentFeeValue int) *models.QRIS
 	ToString(qris *models.QRIS) string
-	Convert(qrisString string, merchantCityValue string, merchantPostalCode string, paymentAmountValue int, paymentFeeCategoryValue string, paymentFeeValue int) (string, error, *[]string)
+	Convert(qrisString string, merchantCityValue string, merchantPostalCodeValue string, paymentAmountValue int, paymentFeeCategoryValue string, paymentFeeValue int) (string, error, *[]string)
 }
 
 func NewQRIS() QRISInterface {
@@ -72,14 +76,17 @@ func NewQRIS() QRISInterface {
 		qrisCategoryContents,
 		qrisPaymentFeeCategoryContents,
 	)
+	inputUtil := utils.NewInput()
 
 	return &QRIS{
 		crc16CCITTUsecase: crc16CCITTUsecase,
 		qrisUsecase:       qrisUsecase,
+		inputUtil:         inputUtil,
 	}
 }
 
 func (s *QRIS) Parse(qrisString string) (*models.QRIS, error, *[]string) {
+	qrisString = s.inputUtil.Sanitize(qrisString)
 	qris, err, errs := s.qrisUsecase.Parse(qrisString)
 	if err != nil {
 		return nil, err, errs
@@ -94,9 +101,13 @@ func (s *QRIS) IsValid(qris *models.QRIS) bool {
 	return s.qrisUsecase.IsValid(qrisEntity)
 }
 
-func (s *QRIS) Modify(qris *models.QRIS, merchantCityValue string, merchantPostalCode string, paymentAmountValue int, paymentFeeCategoryValue string, paymentFeeValue int) *models.QRIS {
+func (s *QRIS) Modify(qris *models.QRIS, merchantCityValue string, merchantPostalCodeValue string, paymentAmountValue int, paymentFeeCategoryValue string, paymentFeeValue int) *models.QRIS {
 	qrisEntity := mapQRISModelToEntity(qris)
-	qrisModel := s.qrisUsecase.Modify(qrisEntity, merchantCityValue, merchantPostalCode, uint32(paymentAmountValue), paymentFeeCategoryValue, uint32(paymentFeeValue))
+
+	merchantCityValue = s.inputUtil.Sanitize(merchantCityValue)
+	merchantPostalCodeValue = s.inputUtil.Sanitize(merchantPostalCodeValue)
+	paymentFeeCategoryValue = strings.ToUpper(s.inputUtil.Sanitize(paymentFeeCategoryValue))
+	qrisModel := s.qrisUsecase.Modify(qrisEntity, merchantCityValue, merchantPostalCodeValue, uint32(paymentAmountValue), paymentFeeCategoryValue, uint32(paymentFeeValue))
 
 	return mapQRISEntityToModel(qrisModel)
 }
@@ -121,12 +132,17 @@ func (s *QRIS) ToString(qris *models.QRIS) string {
 	return qrisString + s.crc16CCITTUsecase.GenerateCode(qrisString)
 }
 
-func (s *QRIS) Convert(qrisString string, merchantCityValue string, merchantPostalCode string, paymentAmountValue int, paymentFeeCategoryValue string, paymentFeeValue int) (string, error, *[]string) {
+func (s *QRIS) Convert(qrisString string, merchantCityValue string, merchantPostalCodeValue string, paymentAmountValue int, paymentFeeCategoryValue string, paymentFeeValue int) (string, error, *[]string) {
+	qrisString = s.inputUtil.Sanitize(qrisString)
 	qrisEntity, err, errs := s.qrisUsecase.Parse(qrisString)
 	if err != nil {
 		return "", err, errs
 	}
-	qrisEntity = s.qrisUsecase.Modify(qrisEntity, merchantCityValue, merchantPostalCode, uint32(paymentAmountValue), paymentFeeCategoryValue, uint32(paymentFeeValue))
+
+	merchantCityValue = s.inputUtil.Sanitize(merchantCityValue)
+	merchantPostalCodeValue = s.inputUtil.Sanitize(merchantPostalCodeValue)
+	paymentFeeCategoryValue = strings.ToUpper(s.inputUtil.Sanitize(paymentFeeCategoryValue))
+	qrisEntity = s.qrisUsecase.Modify(qrisEntity, merchantCityValue, merchantPostalCodeValue, uint32(paymentAmountValue), paymentFeeCategoryValue, uint32(paymentFeeValue))
 
 	return s.qrisUsecase.ToString(qrisEntity), nil, nil
 }
diff --git a/pkg/services/qris_test.go b/pkg/services/qris_test.go
@@ -9,6 +9,7 @@ import (
 	"github.com/fyvri/go-qris/internal/domain/entities"
 	"github.com/fyvri/go-qris/internal/usecases"
 	"github.com/fyvri/go-qris/pkg/models"
+	"github.com/fyvri/go-qris/pkg/utils"
 )
 
 func TestNewQRIS(t *testing.T) {
@@ -53,6 +54,7 @@ func TestNewQRIS(t *testing.T) {
 		qrisCategoryContents,
 		qrisPaymentFeeCategoryContents,
 	)
+	inputUtil := utils.NewInput()
 
 	tests := []struct {
 		name string
@@ -63,6 +65,7 @@ func TestNewQRIS(t *testing.T) {
 			want: &QRIS{
 				crc16CCITTUsecase: crc16CCITTUsecase,
 				qrisUsecase:       qrisUsecase,
+				inputUtil:         inputUtil,
 			},
 		},
 	}
@@ -102,6 +105,11 @@ func TestQRISParse(t *testing.T) {
 		{
 			name: "Error: s.qrisUsecase.Parse()",
 			fields: QRIS{
+				inputUtil: &mockInputUtil{
+					SanitizeFunc: func(input string) string {
+						return testQRISEntityString
+					},
+				},
 				qrisUsecase: &mockQRISUsecase{
 					ParseFunc: func(qrString string) (*entities.QRIS, error, *[]string) {
 						return nil, fmt.Errorf("invalid format code"), nil
@@ -117,6 +125,11 @@ func TestQRISParse(t *testing.T) {
 		{
 			name: "Success",
 			fields: QRIS{
+				inputUtil: &mockInputUtil{
+					SanitizeFunc: func(input string) string {
+						return testQRISEntityString
+					},
+				},
 				qrisUsecase: &mockQRISUsecase{
 					ParseFunc: func(qrString string) (*entities.QRIS, error, *[]string) {
 						return &testQRISEntity, nil, nil
@@ -136,6 +149,7 @@ func TestQRISParse(t *testing.T) {
 			uc := &QRIS{
 				crc16CCITTUsecase: test.fields.crc16CCITTUsecase,
 				qrisUsecase:       test.fields.qrisUsecase,
+				inputUtil:         test.fields.inputUtil,
 			}
 
 			got, err, _ := uc.Parse(test.args.qrString)
@@ -181,6 +195,7 @@ func TestQRISIsValid(t *testing.T) {
 			uc := &QRIS{
 				crc16CCITTUsecase: test.fields.crc16CCITTUsecase,
 				qrisUsecase:       test.fields.qrisUsecase,
+				inputUtil:         test.fields.inputUtil,
 			}
 
 			got := uc.IsValid(test.args.qris)
@@ -205,6 +220,20 @@ func TestQRISModify(t *testing.T) {
 		{
 			name: "Success: Fixed Payment Fee",
 			fields: QRIS{
+				inputUtil: &mockInputUtil{
+					SanitizeFunc: func(input string) string {
+						switch input {
+						case testMerchantCityContent:
+							return testMerchantCityContent
+						case testMerchantPostalCodeContent:
+							return testMerchantPostalCodeContent
+						case testPaymentFeeCategoryFixedContent:
+							return testPaymentFeeCategoryFixedContent
+						default:
+							return ""
+						}
+					},
+				},
 				qrisUsecase: &mockQRISUsecase{
 					ModifyFunc: func(qris *entities.QRIS, merchantCityValue string, merchantPostalCodeValue string, paymentAmountValue uint32, paymentFeeCategoryValue string, paymentFeeValue uint32) *entities.QRIS {
 						return &testQRISEntityModified
@@ -223,6 +252,7 @@ func TestQRISModify(t *testing.T) {
 			uc := &QRIS{
 				crc16CCITTUsecase: test.fields.crc16CCITTUsecase,
 				qrisUsecase:       test.fields.qrisUsecase,
+				inputUtil:         test.fields.inputUtil,
 			}
 
 			got := uc.Modify(test.args.qris, testMerchantCityContent, testMerchantPostalCodeContent, testPaymentAmountValue, testPaymentFeeCategoryFixedContent, testPaymentFeeValue)
@@ -279,6 +309,7 @@ func TestQRISToString(t *testing.T) {
 			uc := &QRIS{
 				crc16CCITTUsecase: test.fields.crc16CCITTUsecase,
 				qrisUsecase:       test.fields.qrisUsecase,
+				inputUtil:         test.fields.inputUtil,
 			}
 
 			got := uc.ToString(test.args.qris)
@@ -304,6 +335,11 @@ func TestQRISConvert(t *testing.T) {
 		{
 			name: "Error: s.qrisUsecase.Parse()",
 			fields: QRIS{
+				inputUtil: &mockInputUtil{
+					SanitizeFunc: func(input string) string {
+						return testQRISEntityString
+					},
+				},
 				qrisUsecase: &mockQRISUsecase{
 					ParseFunc: func(qrString string) (*entities.QRIS, error, *[]string) {
 						return nil, fmt.Errorf("invalid extract acquirer for content %s", testQRISEntity.Acquirer.Content), nil
@@ -319,6 +355,22 @@ func TestQRISConvert(t *testing.T) {
 		{
 			name: "Success",
 			fields: QRIS{
+				inputUtil: &mockInputUtil{
+					SanitizeFunc: func(input string) string {
+						switch input {
+						case testQRISEntityString:
+							return testQRISEntityString
+						case testMerchantCityContent:
+							return testMerchantCityContent
+						case testMerchantPostalCodeContent:
+							return testMerchantPostalCodeContent
+						case testPaymentFeeCategoryFixedContent:
+							return testPaymentFeeCategoryFixedContent
+						default:
+							return ""
+						}
+					},
+				},
 				qrisUsecase: &mockQRISUsecase{
 					ParseFunc: func(qrString string) (*entities.QRIS, error, *[]string) {
 						return &testQRISEntity, nil, nil
@@ -344,6 +396,7 @@ func TestQRISConvert(t *testing.T) {
 			uc := &QRIS{
 				crc16CCITTUsecase: test.fields.crc16CCITTUsecase,
 				qrisUsecase:       test.fields.qrisUsecase,
+				inputUtil:         test.fields.inputUtil,
 			}
 
 			got, err, _ := uc.Convert(test.args.qrString, testMerchantCityContent, testMerchantPostalCodeContent, testPaymentAmountValue, testPaymentFeeCategoryFixedContent, testPaymentFeeValue)
diff --git a/pkg/services/service_test.go b/pkg/services/service_test.go
@@ -559,3 +559,14 @@ func (m *mockQRISUsecase) ToString(qris *entities.QRIS) string {
 	}
 	return ""
 }
+
+type mockInputUtil struct {
+	SanitizeFunc func(input string) string
+}
+
+func (m *mockInputUtil) Sanitize(input string) string {
+	if m.SanitizeFunc != nil {
+		return m.SanitizeFunc(input)
+	}
+	return ""
+}
