Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Phase 2 Support #15

Merged
merged 103 commits into from
Dec 6, 2023
Merged

Phase 2 Support #15

merged 103 commits into from
Dec 6, 2023

Conversation

obahareth
Copy link
Contributor

@obahareth obahareth commented Aug 25, 2022
edited

Support for #11 and #8.

  • Wrap all API endpoints (V2)
  • Add and test modules to serialize to required formats
    • Simplified invoice
    • Standard invoice
  • Cryptographic stamp
  • Hashing invoices
  • Update version with breaking change due to bump to Ruby 2.5 as the minimum supported version
  • Dockerize ZATCA's SDK for running it easily
  • Fix XML sample that's generated by the SDK to go through ZATCA's validator (there's a signing error)

Update Wiki with

  • Samples of requests (Partially done)
  • Getting credentials
  • Constructing an invoice
  • Checking invoice compliance
  • Links to ZATCA docs

For a future PR

  • Add request specs

@obahareth
➕ Add Dependencies to Help with Phase 2 API
8b86ffe 
- httpx for making API calls
- vcr and webmock to help with caching and testing responses
- amazing_print to help examine responses.
@obahareth
🔧 Configure VCR
d21f8f1
@obahareth
✨ Add HTTP Client for ZATCA API
9356c78
@obahareth obahareth mentioned this pull request Aug 25, 2022
Closed
@obahareth obahareth mentioned this pull request Sep 20, 2022
Closed
@obahareth
Fix Typo
3c8176a
@obahareth
Add Missing Inflectors
11d0bb2
@obahareth
Support Generating Simplified Invoices
a26ac1d 
This is a lot of changes in one commit, which is something I’ve been trying to avoid, but I spent A LOT of work getting this to finally work and this does have a passing unit test that generates the same exact signed simplified invoice as ZATCA’s sample.
@obahareth
Fix Lint Issue
03779d4
@obahareth obahareth changed the title Add API Wrapper Phase 2 Support Nov 21, 2022
@obahareth
Allow Nullable Latest Delivery Date on Delivery
8602ce3
@obahareth
Stop Formatting Invoice’s Invoiced Quantity
4a607bc 
The samples in ZATCA’s docs have all kinds of formats.
@obahareth
Use Index as InvoiceLine ID
391ff89
@obahareth
Properly Initialize @classified_tax_category
3825709
@obahareth
Support Nilable prepaid_amount and payable_amount on LegalMonetaryTotal
d5613d8
@obahareth
Support LineCountNumeric on Invoice
e6e2302
@obahareth
Snake Case Simplified Invoice Fixture
4d0f9c6
@obahareth
Add Standard Invoice Spec
cefe948 
This is currently purposefully failing with the diff at the end of the message. The goal is to make it pass once we figure out the things I wrote below.

(the red diff or the one with minus sign is the version that’s in ZATCA’s samples, the green or plus is ours)

1. Find out why the signature method is different
```diff
     -                <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
       +                <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
```

2. Find out if closing styles matter

```diff
       -              <ds:SignatureValue></ds:SignatureValue>
       +              <ds:SignatureValue/>
```

3. Find out if keeping schemeAgencyID and schemeID on TaxCategory is alright

```diff
       -        <cbc:ID>S</cbc:ID>
       +        <cbc:ID schemeAgencyID="6" schemeID="UN/ECE 5305">S</cbc:ID>
```

```diff
       -          <cbc:ID>VAT</cbc:ID>
       +          <cbc:ID schemeAgencyID="6" schemeID="UN/ECE 5153">VAT</cbc:ID>
```

Entire diff:

```diff
       @@ -11,7 +11,7 @@
                    <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#" Id="signature">
                      <ds:SignedInfo>
                        <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2006/12/xml-c14n11"/>
       -                <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
       +                <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
                        <ds:Reference Id="invoiceSignedData" URI="">
                          <ds:Transforms>
                            <ds:Transform Algorithm="http://www.w3.org/TR/1999/REC-xpath-19991116">
       @@ -33,7 +33,7 @@
                          <ds:DigestValue>M2ZkZWViYTg3OGYwNGQ3ZjhkOGJiNWUyZjlhODViMTc1YTg0MmE4MDFmNjU1MWJhYmYyYWFlMDc4MjRmMGVlOQ==</ds:DigestValue>
                        </ds:Reference>
                      </ds:SignedInfo>
       -              <ds:SignatureValue></ds:SignatureValue>
       +              <ds:SignatureValue/>
                      <ds:KeyInfo>
                        <ds:X509Data>
                          <ds:X509Certificate>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</ds:X509Certificate>

       @@ -162,10 +162,10 @@
              <cbc:TaxableAmount currencyID="SAR">900.00</cbc:TaxableAmount>
              <cbc:TaxAmount currencyID="SAR">135.00</cbc:TaxAmount>
              <cac:TaxCategory>
       -        <cbc:ID>S</cbc:ID>
       +        <cbc:ID schemeAgencyID="6" schemeID="UN/ECE 5305">S</cbc:ID>
                <cbc:Percent>15</cbc:Percent>
                <cac:TaxScheme>
       -          <cbc:ID>VAT</cbc:ID>
       +          <cbc:ID schemeAgencyID="6" schemeID="UN/ECE 5153">VAT</cbc:ID>
                </cac:TaxScheme>
              </cac:TaxCategory>
            </cac:TaxSubtotal>
```
@obahareth
Get Everything Except Crypto Stuff Working
c6e064c 
This is a giant commit I spent too long on but it mostly:

1. Adds (under progress) support for hashing/signing
2. Extracting certificate signatures
3. Using Dry Initializer for larger classes
@obahareth
Pass Proper Parameters to QR Code TLV
74d814b 
The public key of the certificate is supposed to be in bytes, and we needed the certificate’s signature in the QR code rather than its hash.

Also match ZATCA’s timestamp and VAT total format on this QR code.
@obahareth obahareth mentioned this pull request Dec 12, 2022
Closed
5 tasks
@obahareth
Update E-Invoicing-SDK to 3.1.18
ddb7cd3
@obahareth
Fix Typo
0388330
@obahareth
Fix TLV Generation to Match Latest ZATCA Specs
8502c0c 
ZATCA previously instructed to convert strings to 8-bit ASCII but now they allow UTF8 characters and throw errors if you return 8-bit ASCII.
@obahareth
Ensure Invoices are Structued as ZATCA Expects
9d5ef2e 
- Ensure invoice signer generates both Base64 and SHA256 hashes, as both are needed in different contexts.
- Ensure we generate hashes on canonicalized XML only, for both the invoice and signed properties.
- Update specs with correct values.
wes4m and others added 7 commits August 30, 2023 20:59
@wes4m
x509 certificate signature and public key extraction
6c44808
@obahareth
Fix Tag Order
e25feab 
In order to match wes4m/zatca-xml-js, the tag order that was in our repo was already correct before.
@obahareth
Use Certificate Public Key Bytes Instead of ECDA Signature
5ff973e 
This actually integrates the change that wes4m did in `lib/zatca/signing/certificate.rb`
@obahareth
Ensure QR Code Timestamp Matches Invoice
167aa64
@obahareth
Merge pull request #17 from wes4m/feature/api_wrapper_cert_info_extra…
fa05cd0 
…ction
@obahareth
Try to get Signed Properties Blcok like ZATCA Wants for Signing
bf9ff81
@obahareth
Apply ZATCA Feedback on Signed Properties
a3588fe 
ZATCA’s latest update is that SignedProperties should not be canonicalized anymore. You should use a specific version of the XML element with specific whitespace and add a single attribute only when hashing SignedProperties but remove it in all other instances.

We now use a HEREDOC just for generating this version of the XML for hashing because it does not have consistent indentation.

See:
https://zatca1.discourse.group/t/what-do-signed-properties-look-like-when-hashing
https://web.archive.org/web/20230925182417/https://zatca1.discourse.group/t/what-do-signed-properties-look-like-when-hashing/717
@obahareth
Fix Test and Lint Issues
f1d5812 
Lint issues: An extra new line
Tests: A variable removed in the last commit was still being referenced
@obahareth
Always Set Qualifying Properties Indentation Matching ZATCA’s
cb98979 
After generating the XML, we modify the QualifyingProperties block’s indentation to match ZATCA’s. ZATCA’s server performs hashing serverside on the SignedProperties as-is without transforming them to their required indentation format.

This forces us to have to make the SignedProperties have the same identation as in their files.
@obahareth
Update README
9dfe32c
@obahareth
Abstract Hash Types from Library Users
b4052a9
@obahareth
Fix Tests
043fdda
@obahareth
Invalide Bundler Cache on Test Github Action
cf261cb
@obahareth
Attempt Matching ZATCA Whitespace to get past Errors
b4a4507
@obahareth
Revert Back to Original Approach
d88eef5 
Apparently our approach from many months ago (with the exception of SignedProperties spacing) works fine, ZATCA says they did not change anything on their end but suddenly that approach is passing their validator.
@obahareth
Copy link
Contributor Author

Good news, this is passing ZATCA's compliance checks. I'm just doing some final updates to the wiki and verifications and will be merging this in the coming weeks.

@obahareth
Allow BaseComponent#elements to be Nilable or have nil Elements
8560070
@obahareth
Require “active_support/all” at Beginning Instead of Each File
51bc541 
This should help avoid active_support errors like NoMethodError on simple functions like `blank?` in GitHub Actions and non-Rails environments where ActiveSupport isn’t loaded.
@obahareth
Support Billing References for Credit & Debit Notes
10b4370
@obahareth
Support TaxExemptionReasonCode on TaxCategory
be22a03
@obahareth
Update ZATCA E-Invoicing SDK
9d564ba 
This is the latest version from their website, the odd things are:

1. The Java JAR file is gone
2. The version number changed from 3.1.8 to 3.2.7

Download link:
https://zatca.gov.sa/en/E-Invoicing/SystemsDevelopers/ComplianceEnablementToolbox/Pages/DownloadSDK.aspx

https://sandbox.zatca.gov.sa/downloadSDK

Both links give different files, not sure which is correct.
@obahareth obahareth merged commit 8d43f2e into main Dec 6, 2023
6 checks passed
@obahareth obahareth deleted the feature/api_wrapper branch December 6, 2023 22:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@obahareth @omar2205 @wes4m