From 07ef75876810c9f403513542c2d730e0c6d0f89a Mon Sep 17 00:00:00 2001
From: Jake Turner <jturner@cosmistack.com>
Date: Mon, 7 Oct 2024 10:02:28 -0700
Subject: [PATCH] fix(ADAPT): webhook signing

---
 server/controllers/AuthController.ts | 45 +++++++++++++++++++++-------
 1 file changed, 35 insertions(+), 10 deletions(-)

diff --git a/server/controllers/AuthController.ts b/server/controllers/AuthController.ts
index c531503..e618a51 100644
--- a/server/controllers/AuthController.ts
+++ b/server/controllers/AuthController.ts
@@ -1163,9 +1163,11 @@ export class AuthController {
     }
   }
 
-  private async _getADAPTWebhookHeaders() {
+  private async _getADAPTWebhookHeaders(data?: Record<string, string>) {
     const encoded = new TextEncoder().encode(process.env.ADAPT_API_KEY ?? 'unknown');
-    const jwtToSend = await new SignJWT({}).setProtectedHeader({ alg: 'HS256', typ: 'JWT' }).setIssuedAt().setExpirationTime('1h').sign(encoded);
+    const jwtToSend = await new SignJWT({
+      ...(data ?? {}),
+    }).setProtectedHeader({ alg: 'HS256', typ: 'JWT' }).setIssuedAt().setExpirationTime('1h').sign(encoded);
 
     return {
       'Content-Type': 'application/json',
@@ -1176,7 +1178,14 @@ export class AuthController {
   }
 
   private _getADAPTWebhookBase() {
-    return process.env.NODE_ENV === 'production' ? 'https://adapt.libretexts.org' : `https://${process.env.ADAPT_WEBHOOK_ENV}.adapt.libretexts.org`;
+    switch (process.env.ADAPT_WEBHOOK_ENV) {
+      case 'dev':
+        return 'https://dev.adapt.libretexts.org';
+      case 'staging':
+        return 'https://staging-adapt.libretexts.org';
+      default:
+        return 'https://adapt.libretexts.org';
+    }
   }
 
   private async _notifyADAPTOfNewUser(user: User) {
@@ -1190,19 +1199,30 @@ export class AuthController {
         last_name: user.last_name,
         email: user.email,
         time_zone: user.time_zone,
-        user_type: user.user_type,
+        role: user.user_type,
         verify_status: user.verify_status,
         ...(user.avatar && { avatar: user.avatar }),
       };
 
       const res = await axios.post(adaptWebhookURL, payload, {
-        headers: await this._getADAPTWebhookHeaders(),
+        headers: await this._getADAPTWebhookHeaders({
+          central_identity_id: user.uuid,
+          first_name: user.first_name,
+          last_name: user.last_name,
+          email: user.email,
+          time_zone: user.time_zone,
+          role: user.user_type ?? 'student',
+          verify_status: user.verify_status,
+          ...(user.avatar && { avatar: user.avatar }),
+        }),
       });
 
-      if (res.data.err) {
-        throw new Error(res.data.data.errMsg ?? 'Unknown error');
+      if (!res.data || res.data.type === 'error') {
+        throw new Error(res.data.message ?? 'Unknown error');
       }
 
+      console.log(res.data)
+
       return true;
     } catch (err) {
       console.error({
@@ -1225,13 +1245,18 @@ export class AuthController {
       };
 
       const res = await axios.post(adaptWebhookURL, payload, {
-        headers: await this._getADAPTWebhookHeaders(),
+        headers: await this._getADAPTWebhookHeaders({
+          central_identity_id: user.uuid,
+          verify_status: user.verify_status,
+        }),
       });
 
-      if (res.data.err) {
-        throw new Error(res.data.errMsg ?? 'Unknown error');
+      if (!res.data || res.data.type === 'error') {
+        throw new Error(res.data.message ?? 'Unknown error');
       }
 
+      console.log(res.data)
+
       return true;
     } catch (err) {
       console.error({