feat(auth): allow non-interactive grants for incoming payments

[sabineschaller]

Changes proposed in this pull request

• if the access type is incoming-payment, the grant will be issued right away, without interaction

Context

• fixes Support grant issuance without interaction #415

Checklist

• Related issues linked using fixes #number
• Tests added/updated
• Documentation added
• Make sure that all checks pass

[sabineschaller]

Q: Should we have the same behavior for quote grant requests? @wilsonianb

[wilsonianb]

Q: Should we have the same behavior for quote grant requests? @wilsonianb

I'm not sure.
Creating a quote can indirectly reveal the sender's available balance at the account provider.
OTOH a grant allowing quote creation is likely to also include outgoing payment creation, which would require interaction.

[wilsonianb]

Does this have checks that aren't covered by the OpenAPI validator middleware?

rafiki/packages/auth/src/app.ts

Line 239 in 0642a0f

createValidatorMiddleware<ContextType<typeof route>>(openApi, {

[sabineschaller]

I don't think so but I'd like @njlie to confirm.

[wilsonianb]

I think we're missing out on the benefits of the OpenAPI validator middleware type guard by not specifying the ctx.body type in createGrantInitiation and elsewhere

rafiki/packages/openapi/src/index.ts

Lines 47 to 51 in 668e7cb

	export type ValidateFunction<T> = (data: any) => data is T
	export interface OpenAPI {
	paths: Paths
	createRequestValidator<T>(options: RequestOptions): ValidateFunction<T>

See:

rafiki/packages/backend/src/open_payments/payment/incoming/routes.ts

Lines 79 to 88 in 668e7cb

	export type CreateBody = {
	description?: string
	expiresAt?: string
	incomingAmount?: AmountJSON
	externalRef?: string
	}
	async function createIncomingPayment(
	deps: ServiceDependencies,
	ctx: CreateContext<CreateBody>

• Maybe reopen Validate GNAP requests with OpenAPI #351 ?

[sabineschaller]

I'd hold off on any work there now that Adrian has been working on his auth server implementation.

[njlie]

I don't think so but I'd like @njlie to confirm.

Yeah I'm pretty sure this can be excised now, I wrote this before we had brought OpenAPI into the auth service. This basically is a type guard against the POST / request which is definitely covered.

[sabineschaller]

I removed the validation function and re-opened #351

[sabineschaller]

Creating a quote can indirectly reveal the sender's available balance at the account provider.
OTOH a grant allowing quote creation is likely to also include outgoing payment creation, which would require interaction.

Then let's leave it as is for now.

[wilsonianb]

• Should config.authServerSpec be updated to include feat(auth-spec): grant request changes open-payments#168 ?

[wilsonianb]

I prefer your version over:

rafiki/packages/backend/src/config/app.ts

Lines 20 to 23 in 668e7cb

	// function envBool(name: string, value: boolean): boolean {
	// const envValue = process.env[name]
	// return envValue == null ? value : Boolean(envValue)
	// }

[sabineschaller]

I didn't know we had that.

[wilsonianb]

I think we're missing out on the benefits of the OpenAPI validator middleware type guard by not specifying the ctx.body type in createGrantInitiation and elsewhere

rafiki/packages/openapi/src/index.ts

Lines 47 to 51 in 668e7cb

	export type ValidateFunction<T> = (data: any) => data is T
	export interface OpenAPI {
	paths: Paths
	createRequestValidator<T>(options: RequestOptions): ValidateFunction<T>

See:

rafiki/packages/backend/src/open_payments/payment/incoming/routes.ts

Lines 79 to 88 in 668e7cb

	export type CreateBody = {
	description?: string
	expiresAt?: string
	incomingAmount?: AmountJSON
	externalRef?: string
	}
	async function createIncomingPayment(
	deps: ServiceDependencies,
	ctx: CreateContext<CreateBody>

• Maybe reopen Validate GNAP requests with OpenAPI #351 ?

[wilsonianb]

Suggested change

	return isIncomingPaymentAccessRequest(acc as IncomingPaymentRequest)
	return isIncomingPaymentAccessRequest(acc as AccessRequest)

I think the isIncomingPaymentAccessRequest argument type should be changed to AccessRequest.

Also, if we specified ctx.body type we wouldn't need to cast here at all (#588 (comment))

[wilsonianb]

bump

[sabineschaller]

I didn't want to touch this because I thought I would add the change to have the ctx.body typed but that's probably going to be a subsequent PR so yes, I'll change that.

[sabineschaller]

But it complains with

Types of property 'type' are incompatible.
      Type 'AccessType.OutgoingPayment' is not assignable to type 'AccessType.IncomingPayment'.ts(2345)

[wilsonianb]

BaseAccessRequest might work, but I just noticed the other type guards also have the target type as the argument type.
Maybe they can all be updated as part of #351 instead of this pr.

[sabineschaller]

I think that is a good idea.

[njlie]

It shouldn't be necessary to generate continuation information if interaction (or further continuation) isn't necessary for a grant. The POST / should just return the access token without any continuation information. Continuation information could just be generated if the grant is modified in a way that requires interaction to be issued again (if we end up supporting that again).

[sabineschaller]

I think we discussed that while you were away. We always want to be able to delete/revoke the grant and for that you need the continue token and id. Hence, it must always be present. We also already changed the spec to make it always required.

[njlie]

We can exclude the continue object if there's no interaction required and the AS can just supply an access_token instead. Also vice/versa for if interaction is required. It's basically an either/or situation between continue and access_token with how we're using GNAP.

[sabineschaller]

See above.

[wilsonianb]

bump

[wilsonianb]

Should this still include wait (RECOMMENDED)?
https://datatracker.ietf.org/doc/html/draft-ietf-gnap-core-protocol#section-3.1

[sabineschaller]

I don't think so because the grant is granted right away. At least that was my interpretation of it.