shiny/openpayments-mock
6
0
Fork 0
Code Issues 1 Pull Requests Actions Packages Projects Releases Activity

feat: Open Payments aggregator mock for acctest
openpayments-mock / check (push) Has been skipped
Details
openpayments-mock / vulnerabilities (push) Has been skipped
Details
openpayments-mock / build (push) Failing after 1m8s
Details

Browse Source 
Tiny in-memory stand-in for the Open Payments PSD2/BerlinGroup
aggregator, extracted from acctest where it lived inline (which
couldn't docker-build on the self-hosted CI runner — /.docker/buildx
was read-only). A separate repo:

- lets the mock build + publish its image via the standard shiny CI
  flow, pulled like any other service
- keeps acctest focused on test infra, not service source
- gives the mock its own versioned release lifecycle

**Endpoints** (see README for the full list)
- OAuth: POST /token → canned bearer token.
- AIS: aspsps catalog, consent lifecycle, /authorize self-redirect SCA
  stub, payment + card accounts + transactions.
- PIS: sepa-credit-transfers initiate + status (RCVD → PDNG → ACSC;
  creditor name 'REJECT ME' → RJCT), signing baskets (RCVD → ACCP →
  ACSC; basket ACSC advances all linked payments).
- Admin: /admin/* endpoints let acctest force deterministic
  transitions, seed transactions, reset state, override consent
  expiry.

**CI**
Standard shiny ci.yaml: check (go build + vet), vulnerabilities
(govulncheck), build (buildtools publishes oci.unbound.se/shiny/
openpayments-mock:${COMMIT}). No deploy job — image is consumed by
acctest only.

**k8s/deploy.yaml**
Deployment + Service on port 8080 with /healthz readiness/liveness.
acctest's infra manifest will reference the published tag.
This commit is contained in:
Joakim Olsson
2026-04-20 22:11:12 +02:00
commit 898023c794
9 changed files with 275 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
README.md
+48
View File
@@ -0,0 +1,48 @@
# openpayments-mock
Tiny in-memory stand-in for the Open Payments PSD2/BerlinGroup aggregator,
used by the `banking-suite` acceptance tests. Accepts any bearer token
and returns canned responses.
Not safe for anything but tests — state is entirely in-memory and there
are no authentication checks.
## Endpoints
### OAuth
- `POST /token` — returns static `{access_token: "acctest", ...}`
### AIS (BerlinGroup shape)
- `GET /psd2/aspspinformation/v1/aspsps` — catalog
- `POST /psd2/consent/v1/consents`
- `GET /psd2/consent/v1/consents/{id}/status`
- `DELETE /psd2/consent/v1/consents/{id}`
- `GET /authorize` — mock SCA stub that immediately redirects back to the
`TPP-Redirect-URI` with `?code=mock-auth-code&state=...`
- `GET /psd2/accountinformation/v1/accounts`
- `GET /psd2/accountinformation/v1/accounts/{id}/balances`
- `GET /psd2/accountinformation/v1/accounts/{id}/transactions`
- `GET /psd2/cardaccountinformation/v1/card-accounts`
### PIS
- `POST /psd2/paymentinitiation/v1/payments/sepa-credit-transfers`
- `GET /psd2/paymentinitiation/v1/payments/sepa-credit-transfers/{id}/status`
— transitions RCVD → PDNG → ACSC deterministically on successive polls.
Creditor name `"REJECT ME"` transitions to RJCT.
- `POST /psd2/v1/signing-baskets`
- `GET /psd2/v1/signing-baskets/{id}/status` — RCVD → ACCP → ACSC;
reaching ACSC advances all linked payments to ACSC.
### Admin (acctest only, not part of PSD2)
- `POST /admin/reset`
- `GET /admin/consents`
- `POST /admin/transactions` — body `{ accountId, bookingStatus, entries: [...] }`
- `POST /admin/payments/{id}/status` — body `{ status }`
- `POST /admin/baskets/{id}/status` — body `{ status }`
- `POST /admin/consents/{id}/expires-at` — body `{ expiresAt }`
## Build
```bash
docker build -t openpayments-mock:acctest .
```