Merge branch 'main' into main

jesusmpds · web-flow · commit 1f5b8a54dd50 · 2025-03-12T12:48:06.000-03:00
diff --git a/README.md b/README.md
@@ -17,6 +17,7 @@ Be sure to check the README for each function in the functions folder, as they p
 - Datastore integrations: 
     - [datastore-integration-webflow](src/functions/datastore-integration-webflow): Validates the price and/or availability of items against Webflow CMS collections before a payment is processed.
     - [datastore-integration-orderdesk](src/functions/datastore-integration-orderdesk): Validates the cart against OrderDesk and updates the inventory upon successful transaction.
+    - [datastore-integration-wix](src/functions/datastore-integration-wix): Validates the price and/or availability of items against Wix Stores before a payment is processed.
 - Other features:
   - [cart](src/functions/cart): Converts a cart between recurring and non-recurring. Useful in an upsell flow.
   - [idevaffiliate-marketplace](src/functions/idevaffiliate-marketplace): A marketplace-style integration, using iDevAffiliate.
diff --git a/config.js b/config.js
@@ -30,9 +30,14 @@ const config = {
         storeId: env("FOXY_ORDERDESK_STORE_ID"),
       },
       webflow: {
-        collection: env("FOXY_WEBFLOW_COLLECTION"),
-        token: env("FOXY_WEBFLOW_TOKEN") || env("WEBFLOW_TOKEN"),
+        collection: env('FOXY_WEBFLOW_COLLECTION'),
+        token: env('FOXY_WEBFLOW_TOKEN') || env('WEBFLOW_TOKEN'),
       },
+      wix: {
+        accountId: env("FOXY_WIX_ACCOUNT_ID"),
+        apiKey: env("FOXY_WIX_API_KEY"),
+        siteId: env("FOXY_WIX_SITE_ID"),
+      }
     },
     skipUpdate: {
       inventory: env("FOXY_SKIP_INVENTORY_UPDATE_CODES"),
diff --git a/src/functions/datastore-integration-wix/README.md b/src/functions/datastore-integration-wix/README.md
@@ -0,0 +1,58 @@
+# Pre-checkout webhook for Wix-Foxy
+
+This pre-checkout webhook provides security against HTML modifications on your Wix site. It is triggered when a Foxy checkout request is submitted and validates all items in cart to ensure they have sufficient inventory and matched pricing in your Wix store.
+
+It requires using Wix Stores to manage products and integrating with Foxy by following [this tutorial](https://foxy.io/help/articles/use-wix-stores-to-manage-foxy-products).
+
+## Usage
+
+### Get Wix API and account credentials
+
+#### Wix API Key
+
+1. Go to [Wix API Keys Manager](https://manage.wix.com/account/api-keys)
+2. Click the **Generate API Key** button
+3. Enter a name for the API key
+4. For Permissions, expand All site permissions by clicking the **See all** button
+5. Check the checkbox for **Wix Stores**
+6. Click the **Generate Key** button
+7. Copy the API key token and store it somewhere safe
+
+#### Wix Account ID
+
+After generating an API key, in your [Wix API Keys Manager](https://manage.wix.com/account/api-keys), you should see your Wix account ID on the right.
+
+#### Wix Site ID
+
+1. Go to your Wix dashboard and select your site
+2. Get the site ID from the URL, which appears after `/dashboard/` in the URL:
+   ![](https://wixmp-833713b177cebf373f611808.wixmp.com/images/about-api-keys-md_media_siteid.png)
+
+### Deploy this repository to Netlify
+
+1. Click the **Fork** button at the top right corner of this page
+2. Go to [Netlify](https://www.netlify.com/) and log in your account
+3. Add a new site and select the **Import an existing project** option
+4. Connect your GitHub account
+5. Select repository `foxy-node-netlify-functions`
+6. On the review configuration page, under the Environment variables section, click the **Add environment variables** button to add the following variables:
+   | Key | Value |
+   | ----------- | ----------- |
+   | FOXY_WIX_API_KEY | Your Wix API key token |
+   | FOXY_WIX_ACCOUNT_ID | Your Wix account ID |
+   | FOXY_WIX_SITE_ID | Your Wix site ID |
+7. Click the **Deploy foxy-node-netlify-functions** button
+
+### Configure the pre-checkout webhook in Foxy
+
+1. After the site is deployed successfully on Netlify, click **Logs** > **Functions** from the navigation bar on the left
+2. Choose the `datastore-integration-wix` function from the list
+3. On the function logs page, copy the endpoint URL
+4. Log in your [Foxy Admin](https://admin.foxy.io/)
+5. Go to **Settings** > **Payments** and choose the payment set that the pre-checkout webhook should be applied to
+6. Click the **Add fraud protection** button and choose **Pre-Checkout Webhook**
+7. Toggle **Enabled**
+8. In the **URL** field, paste the Netlify function endpoint URL from step 3
+9. Select an option for the Failure handling setting
+10. Click the **Add fraud protection** button
+11. Run some test transactions to ensure the pre-checkout webhook is configured correctly
diff --git a/src/functions/datastore-integration-wix/index.js b/src/functions/datastore-integration-wix/index.js
@@ -0,0 +1,157 @@
+const fetch = require("node-fetch");
+const { config } = require("../../../config.js");
+
+/**
+ * Receives the request, validates the price and inventory in Wix and sends the response.
+ *
+ * @param {Object} requestEvent the request event built by Netlify Functions
+ * @returns {Promise<{statusCode: number, body: string}>} the response object
+ */
+async function handler(requestEvent) {
+  const cart = JSON.parse(requestEvent.body);
+
+  console.log(`Starting up for transaction ${cart.id}`);
+
+  const items = cart["_embedded"]["fx:items"];
+  const mismatchedPrice = [];
+  const insufficientInventory = [];
+
+  try {
+    for (const item of items) {
+      const slug = item["_embedded"]["fx:item_options"].find(
+        (option) => option.name.toLowerCase() === "slug"
+      )?.value;
+      if (!slug) {
+        const details = `Cannot find slug in item options for item ${item.name}`;
+        console.error(details);
+        return {
+          body: JSON.stringify({
+            details,
+            ok: false,
+          }),
+          statusCode: 200,
+        };
+      }
+
+      const wixCreds = config.datastore.provider.wix;
+      const res = await fetch(
+        "https://www.wixapis.com/stores-reader/v1/products/query",
+        {
+          body: JSON.stringify({
+            includeVariants: true,
+            query: {
+              filter: JSON.stringify({ slug }),
+            },
+          }),
+          headers: {
+            Authorization: wixCreds.apiKey,
+            "Content-Type": "application/json",
+            "wix-account-id": wixCreds.accountId,
+            "wix-site-id": wixCreds.siteId,
+          },
+          method: "POST",
+        }
+      );
+      const data = await res.json();
+
+      if (data.totalResults !== 1) {
+        const details = `Cannot find product in Wix by slug ${slug}`;
+        console.error(details);
+        return {
+          body: JSON.stringify({
+            details,
+            ok: false,
+          }),
+          statusCode: 200,
+        };
+      }
+
+      const product = data.products[0];
+      const variant = product.variants.find(
+        (variant) => variant.variant.sku === item.code
+      );
+
+      if (!variant) {
+        const details = `Cannot find variant by sku ${item.code}`;
+        console.error(details);
+        return {
+          body: JSON.stringify({
+            details,
+            ok: false,
+          }),
+          statusCode: 200,
+        };
+      }
+
+      const skipPriceCodes =
+        (config.datastore.skipValidation.price || "")
+          .split(",")
+          .map((code) => code.trim())
+          .filter((code) => !!code) || [];
+      const skipInventoryCodes =
+        (config.datastore.skipValidation.inventory || "")
+          .split(",")
+          .map((code) => code.trim())
+          .filter((code) => !!code) || [];
+
+      if (!skipPriceCodes.includes(item.code)) {
+        const price = variant.variant.priceData.discountedPrice;
+        if (price !== item.price) {
+          mismatchedPrice.push(item.code);
+        }
+      }
+
+      if (!skipInventoryCodes.includes(item.code)) {
+        const stock = variant.stock;
+        if (stock.trackQuantity) {
+          if (stock.quantity < item.quantity) {
+            insufficientInventory.push(item.code);
+          }
+        } else {
+          if (!stock.inStock) {
+            insufficientInventory.push(item.code);
+          }
+        }
+      }
+    }
+
+    if (mismatchedPrice.length > 0 || insufficientInventory.length > 0) {
+      console.error({ insufficientInventory, mismatchedPrice });
+      return {
+        body: JSON.stringify({
+          details:
+            (insufficientInventory.length > 0
+              ? `Insufficient inventory for these items: ${insufficientInventory}. `
+              : "") +
+            (mismatchedPrice.length > 0
+              ? `Price does not match for these items: ${mismatchedPrice}.`
+              : ""),
+          ok: false,
+        }),
+        statusCode: 200,
+      };
+    } else {
+      console.log("All checks have passed");
+      return {
+        body: JSON.stringify({
+          details: "",
+          ok: true,
+        }),
+        statusCode: 200,
+      };
+    }
+  } catch (error) {
+    console.error(error);
+    return {
+      body: JSON.stringify({
+        details: "An internal error has occurred",
+        ok: false,
+      }),
+      statusCode: 500,
+    };
+  }
+}
+
+module.exports = {
+  handler,
+};
