186-template-175
/
mini-starter
Fork de 155-template-138/mini-starter


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451
							import { describe, it, expect, beforeEach, vi, afterEach } from 'vitest';
import { testClient } from 'hono/testing';
import {
  IntegrationTestDatabase,
  setupIntegrationDatabaseHooksWithEntities
} from '@d8d/shared-test-util';
import { PaymentMtRoutes } from '../../src/routes/payment.mt.routes.js';
import { PaymentMtEntity } from '../../src/entities/payment.mt.entity.js';
import { PaymentStatus } from '../../src/entities/payment.types.js';
import { UserEntityMt } from '@d8d/user-module-mt';
import { RoleMt } from '@d8d/user-module-mt';
import { FileMt } from '@d8d/file-module-mt';
import { OrderMt } from '@d8d/orders-module-mt';
import { MerchantMt } from '@d8d/merchant-module-mt';
import { SupplierMt } from '@d8d/supplier-module-mt';
import { DeliveryAddressMt } from '@d8d/delivery-address-module-mt';
import { AreaEntityMt } from '@d8d/geo-areas-mt';
import { config } from 'dotenv';
import { resolve } from 'path';
// 导入微信支付SDK用于模拟
import WxPay from 'wechatpay-node-v3';

// 在测试环境中加载环境变量
config({ path: resolve(process.cwd(), '.env.test') });

vi.mock('wechatpay-node-v3')

// 设置集成测试钩子
setupIntegrationDatabaseHooksWithEntities([PaymentMtEntity, UserEntityMt, FileMt, RoleMt, OrderMt, MerchantMt, SupplierMt, DeliveryAddressMt, AreaEntityMt])

describe('支付回调API集成测试 - 多租户版本', () => {
  let client: ReturnType<typeof testClient<typeof PaymentMtRoutes>>;
  let testUser: UserEntityMt;
  let testPayment: PaymentMtEntity;
  let testOrder: OrderMt;

  // 使用真实的微信支付回调数据 - 直接使用原始请求体字符串
  const rawBody = '{"id":"495e231b-9fd8-54a1-8a30-2a38a807744c","create_time":"2025-10-25T12:48:11+08:00","resource_type":"encrypt-resource","event_type":"TRANSACTION.SUCCESS","summary":"支付成功","resource":{"original_type":"transaction","algorithm":"AEAD_AES_256_GCM","ciphertext":"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","associated_data":"transaction","nonce":"sTnWce32BTQP"}}';
  const callbackHeader = {
    'wechatpay-timestamp': '1761367693',
    'wechatpay-nonce': 'PVDFxrQiJclkR28HpAYPDiIlS2VaGp9U',
    'wechatpay-signature': 'hwR1KKN1bIPAhatIHTen7fwNDyvONS/picpcqSHtUCGkbvhYLVUqC87ksBJs6bovNI0cKNvrLr6gqp/HR4TK/ijgrD6w9W/oYc6bKyO9lNarggsQKHBv5x5yX8OjBOzqtgiHOVj44RCPrglJ5bFDlxIhnhs9jnGUine0qlvrVwBZAylt5X4oFmPammHoV4lLHtGt0L4zr5y6LoZL80LpctDCOCtwC4JdUUY5AumkMYo8lNs+xK0NAN7EVNKCWUzoQ1pVdBTGZWDP+b8+6gswP6JDsL3a4H4Fw3WGh4DZPskDQAe0sn85UGXO3m03OkDq3WkiCkOut4YZMuKBeCBpWA==',
    'wechatpay-serial': '6C2C991E621267BFA5BFD5F32476427343A0B2AD'
  };

  beforeEach(async () => {
    // 创建测试客户端
    client = testClient(PaymentMtRoutes);

    // 创建测试用户
    const dataSource = await IntegrationTestDatabase.getDataSource();

    const userRepository = dataSource.getRepository(UserEntityMt);
    testUser = userRepository.create({
      username: `test_user_${Date.now()}`,
      password: 'test_password',
      nickname: '测试用户',
      openid: 'oJy1-16IIG18XZLl7G32k1hHMUFg',
      tenantId: 1
    });
    await userRepository.save(testUser);

    // 创建商户记录
    const merchantRepository = dataSource.getRepository(MerchantMt);
    const testMerchant = merchantRepository.create({
      tenantId: 1,
      name: '测试商户',
      username: `m${Date.now()}`.slice(-19), // 确保不超过20字符
      password: 'test_password',
      state: 1,
      createdBy: testUser.id,
      updatedBy: testUser.id
    });
    await merchantRepository.save(testMerchant);

    // 创建供货商记录
    const supplierRepository = dataSource.getRepository(SupplierMt);
    const testSupplier = supplierRepository.create({
      tenantId: 1,
      name: '测试供货商',
      username: `s${Date.now()}`.slice(-49), // 确保不超过50字符
      password: 'test_password',
      state: 1,
      createdBy: testUser.id,
      updatedBy: testUser.id
    });
    await supplierRepository.save(testSupplier);

    // 创建配送地址记录
    const addressRepository = dataSource.getRepository(DeliveryAddressMt);
    const testAddress = addressRepository.create({
      tenantId: 1,
      userId: testUser.id,
      name: '测试收货人',
      mobile: '13800138000',
      province: 110000,
      city: 110100,
      district: 110101,
      town: 110101001,
      address: '测试地址',
      isDefault: 1,
      createdBy: testUser.id,
      updatedBy: testUser.id
    });
    await addressRepository.save(testAddress);

    // 创建测试订单
    const orderRepository = dataSource.getRepository(OrderMt);
    testOrder = orderRepository.create({
      tenantId: 1,
      orderNo: `ORD${Date.now()}`,
      userId: testUser.id,
      amount: 1,
      costAmount: 0.5,
      payAmount: 1,
      orderType: 1,
      payType: 2,
      payState: 0, // 未支付
      state: 0,
      addressId: testAddress.id,
      merchantId: testMerchant.id,
      supplierId: testSupplier.id,
      createdBy: testUser.id,
      updatedBy: testUser.id
    });
    await orderRepository.save(testOrder);

    // 创建测试支付记录，使用与真实回调数据一致的金额
    const paymentRepository = dataSource.getRepository(PaymentMtEntity);
    testPayment = paymentRepository.create({
      externalOrderId: testOrder.id, // 使用订单ID作为外部订单ID
      userId: testUser.id,
      totalAmount: 1, // 1分钱，与真实回调数据一致
      description: '测试支付',
      paymentStatus: PaymentStatus.PROCESSING, // 设置为处理中状态，模拟已发起支付
      openid: testUser.openid!,
      outTradeNo: `ORDER_${testOrder.id}_${Date.now()}`,
      tenantId: 1
    });
    await paymentRepository.save(testPayment);

    // 设置微信支付SDK的全局mock
    const mockWxPay = {
      transactions_jsapi: vi.fn().mockResolvedValue({
        package: 'prepay_id=wx_test_prepay_id_123456',
        timeStamp: Math.floor(Date.now() / 1000).toString(),
        nonceStr: 'test_nonce_string',
        signType: 'RSA',
        paySign: 'test_pay_sign'
      }),
      verifySign: vi.fn().mockResolvedValue(true),
      decipher_gcm: vi.fn().mockReturnValue(JSON.stringify({
        out_trade_no: testPayment.outTradeNo, // 使用数据库中保存的 outTradeNo
        trade_state: 'SUCCESS',
        transaction_id: 'test_transaction_id',
        amount: {
          total: 1
        }
      })),
      getSignature: vi.fn().mockReturnValue('mock_signature')
    };

    // 模拟PaymentService的wxPay实例
    vi.mocked(WxPay).mockImplementation(() => mockWxPay as any);
  });

  afterEach(() => {
    // 清理 mock
    vi.mocked(WxPay).mockClear();
  });

  describe('POST /payment/callback - 支付回调', () => {
    it('应该成功处理支付成功回调并更新订单状态', async () => {
      const response = await client.payment.callback.$post({
        // 使用空的json参数，通过init传递原始请求体
        json: {}
      }, {
        headers: callbackHeader,
        init: {
          body: rawBody
        }
      });

      // 现在支付记录存在，回调处理应该成功
      expect(response.status).toBe(200);

      if (response.status === 200) {
        const result = await response.text();
        expect(result).toBe('SUCCESS');

        // 验证订单状态已更新为已支付 (2)
        const dataSource = await IntegrationTestDatabase.getDataSource();
        const orderRepository = dataSource.getRepository(OrderMt);
        const updatedOrder = await orderRepository.findOne({
          where: { id: testOrder.id, tenantId: 1 }
        });

        expect(updatedOrder).toBeDefined();
        expect(updatedOrder?.payState).toBe(2); // 已支付
      }
    });

    it('应该处理支付失败回调并更新订单状态', async () => {
      // 模拟支付失败的回调数据
      const mockWxPay = {
        verifySign: vi.fn().mockResolvedValue(true),
        decipher_gcm: vi.fn().mockReturnValue(JSON.stringify({
          out_trade_no: testPayment.outTradeNo,
          trade_state: 'FAIL',
          transaction_id: null,
          amount: {
            total: 1
          }
        }))
      };
      vi.mocked(WxPay).mockImplementation(() => mockWxPay as any);

      const response = await client.payment.callback.$post({
        json: {}
      }, {
        headers: callbackHeader,
        init: {
          body: rawBody
        }
      });

      expect(response.status).toBe(200);

      if (response.status === 200) {
        const result = await response.text();
        expect(result).toBe('SUCCESS');

        // 验证订单状态已更新为支付失败 (4)
        const dataSource = await IntegrationTestDatabase.getDataSource();
        const orderRepository = dataSource.getRepository(OrderMt);
        const updatedOrder = await orderRepository.findOne({
          where: { id: testOrder.id, tenantId: 1 }
        });

        expect(updatedOrder).toBeDefined();
        expect(updatedOrder?.payState).toBe(4); // 支付失败
      }
    });

    it('应该处理退款回调并更新订单状态', async () => {
      // 模拟退款回调数据
      const mockWxPay = {
        verifySign: vi.fn().mockResolvedValue(true),
        decipher_gcm: vi.fn().mockReturnValue(JSON.stringify({
          out_trade_no: testPayment.outTradeNo,
          trade_state: 'REFUND',
          transaction_id: 'test_refund_transaction_id',
          amount: {
            total: 1
          }
        }))
      };
      vi.mocked(WxPay).mockImplementation(() => mockWxPay as any);

      const response = await client.payment.callback.$post({
        json: {}
      }, {
        headers: callbackHeader,
        init: {
          body: rawBody
        }
      });

      expect(response.status).toBe(200);

      if (response.status === 200) {
        const result = await response.text();
        expect(result).toBe('SUCCESS');

        // 验证订单状态已更新为已退款 (3)
        const dataSource = await IntegrationTestDatabase.getDataSource();
        const orderRepository = dataSource.getRepository(OrderMt);
        const updatedOrder = await orderRepository.findOne({
          where: { id: testOrder.id, tenantId: 1 }
        });

        expect(updatedOrder).toBeDefined();
        expect(updatedOrder?.payState).toBe(3); // 已退款
      }
    });

    it('应该验证多租户数据隔离', async () => {
      // 创建第二个租户的测试数据
      const dataSource = await IntegrationTestDatabase.getDataSource();

      const userRepository = dataSource.getRepository(UserEntityMt);
      const testUser2 = userRepository.create({
        username: `test_user2_${Date.now()}`,
        password: 'test_password',
        nickname: '测试用户2',
        openid: 'oJy1-16IIG18XZLl7G32k1hHMUFg2',
        tenantId: 2
      });
      await userRepository.save(testUser2);

      // 创建第二个租户的商户记录
      const merchantRepository = dataSource.getRepository(MerchantMt);
      const testMerchant2 = merchantRepository.create({
        tenantId: 2,
        name: '测试商户2',
        username: `test_merchant2_${Date.now()}`,
        password: 'test_password',
        state: 1,
        createdBy: testUser2.id,
        updatedBy: testUser2.id
      });
      await merchantRepository.save(testMerchant2);

      // 创建第二个租户的供货商记录
      const supplierRepository = dataSource.getRepository(SupplierMt);
      const testSupplier2 = supplierRepository.create({
        tenantId: 2,
        name: '测试供货商2',
        username: `test_supplier2_${Date.now()}`,
        password: 'test_password',
        state: 1,
        createdBy: testUser2.id,
        updatedBy: testUser2.id
      });
      await supplierRepository.save(testSupplier2);

      // 创建第二个租户的配送地址记录
      const addressRepository = dataSource.getRepository(DeliveryAddressMt);
      const testAddress2 = addressRepository.create({
        tenantId: 2,
        userId: testUser2.id,
        name: '测试收货人2',
        mobile: '13800138001',
        province: 110000,
        city: 110100,
        district: 110101,
        town: 110101001,
        address: '测试地址2',
        isDefault: 1,
        createdBy: testUser2.id,
        updatedBy: testUser2.id
      });
      await addressRepository.save(testAddress2);

      const orderRepository = dataSource.getRepository(OrderMt);
      const testOrder2 = orderRepository.create({
        tenantId: 2,
        orderNo: `ORD${Date.now()}_2`,
        userId: testUser2.id,
        amount: 1,
        costAmount: 0.5,
        payAmount: 1,
        orderType: 1,
        payType: 2,
        payState: 0,
        state: 0,
        addressId: testAddress2.id,
        merchantId: testMerchant2.id,
        supplierId: testSupplier2.id,
        createdBy: testUser2.id,
        updatedBy: testUser2.id
      });
      await orderRepository.save(testOrder2);

      const paymentRepository = dataSource.getRepository(PaymentMtEntity);
      const testPayment2 = paymentRepository.create({
        externalOrderId: testOrder2.id,
        userId: testUser2.id,
        totalAmount: 1,
        description: '测试支付2',
        paymentStatus: PaymentStatus.PROCESSING,
        openid: testUser2.openid!,
        outTradeNo: `ORDER_${testOrder2.id}_${Date.now()}`,
        tenantId: 2
      });
      await paymentRepository.save(testPayment2);

      // 处理租户1的支付回调
      const response = await client.payment.callback.$post({
        json: {}
      }, {
        headers: callbackHeader,
        init: {
          body: rawBody
        }
      });

      expect(response.status).toBe(200);

      // 验证租户1的订单状态已更新
      const updatedOrder1 = await orderRepository.findOne({
        where: { id: testOrder.id, tenantId: 1 }
      });
      expect(updatedOrder1?.payState).toBe(2); // 已支付

      // 验证租户2的订单状态未受影响
      const updatedOrder2 = await orderRepository.findOne({
        where: { id: testOrder2.id, tenantId: 2 }
      });
      expect(updatedOrder2?.payState).toBe(0); // 仍为未支付
    });

    it('应该处理无效的回调数据格式', async () => {
      const response = await client.payment.callback.$post({
        body: 'invalid json data'
      }, {
        headers: {
          ...callbackHeader,
          'content-type': 'text/plain'
        }
      });

      // 由于JSON解析失败，应该返回500错误
      expect(response.status).toBe(500);
    });

    it('应该处理缺少必要头信息的情况', async () => {
      const response = await client.payment.callback.$post({
        body: rawBody
      }, {
        headers: {
          // 缺少必要的微信支付头信息
          'Content-Type': 'text/plain'
        }
      });

      // 由于缺少必要头信息，应该返回500错误
      expect(response.status).toBe(500);
    });

    it('应该验证回调数据解密后的支付处理', async () => {
      const response = await client.payment.callback.$post({
        // 使用空的json参数，通过init传递原始请求体
        json: {}
      }, {
        headers: callbackHeader,
        init: {
          body: rawBody
        }
      });

      // 现在支付记录存在，回调处理应该成功
      expect(response.status).toBe(200);

      if (response.status === 200) {
        const result = await response.text();
        expect(result).toBe('SUCCESS');
      }
    });
  });
});