gary-rowe / multibit-merchant Goto Github PK

One key feature for MBM is to provide a paywall for digital media. This could respond with a 402 Payment Required and could have a rel="payment" as an associated link structure.

Staff will need to communicate with each other to co-ordinate actions involving customers. This could be done out of band through email, but this approach

• exposes customer details to a third-party
• breaches privacy
• is not easy to audit
• introduces friction

A secure internal messaging system could be built up from the Atmosphere framework since a common use case for this is a chat window. This could

• report the online status of other staff members
• hold messages until the recipient comes online
• support Markdown for making links out of system IDs (customer, invoice, order etc)
• provide a general alert mechanism (broadcast to all)
• provide a reminder mechanism to ensure staff keep in touch with customers
• provide a memo system for customer email chains

In order to authenticate and authorise requests against a standard
As a platform client
I want to apply these guidelines and support the Warden HMAC Ruby gem

Estimated time (days): 0.5

Acceptance Criteria

Scenario 1: Title
Given a GET request with an AuthHMAC header
And some valid corresponding data
When I attempt to authenticate
Then I should authenticate

In order to limit the possibility of a DoS attack against the MBM platform all requests should be subjected to upper and lower limits of use see Coding Horror: Rate Limiting and Coding Horror: Designing for Evil.

Given that MBM is designed for anonymity, this should be tied into the HMAC authentication api key so that requests from a particular client can be monitored.

Viewing various open source projects, Spring is becoming the juggernaut it was meant to replace. So far Dropwizard has removed the need for much of the Spring framework, but dependency injection is still useful - perhaps Guice can assist with it?

OData has

• a Java server and client library in odata4j
• a JavaScript client library in JayData

OData offers a complete AtomPub-based application protocol. At first glance it appears overkill, but may hold promise and requires an attempt at integration.

Have a read of articles stemming from An Analysis Pattern for Order and Shipment of a Product

Any code relying on a cookie will need to provide a notice indicating how cookies are used.

In order to administer the Cart entity
As a Customer
I want to perform CRUD operations

Estimated time (days): 2

Acceptance Criteria

Scenario 1: Developer level acceptance
Given a running MBM platform
And a local in-memory database
When a GET request against /cart is issued with Customer credentials
Then the response will contain a HAL representation of all Carts owned by the Customer
Done?

Scenario 2: Developer level acceptance
Given a running MBM platform
And a local in-memory database
When a POST request against /cart is issued with Customer credentials
And the request contains a valid CreateCart entity represented in HAL
Then the response will contain a HAL representation of the new Cart
Done?

Scenario 3: Developer level acceptance
Given a running MBM platform
And a local in-memory database
When a PUT request against /cart/{cartId} is issued with Customer credentials
And the request contains a valid UpdateCart entity represented in HAL
Then the response will contain a HAL representation of the updated Cart
Done?

Scenario 4: Developer level acceptance
Given a running MBM platform
And a local in-memory database
When a DELETE request against /cart/{cartId} is issued with Customer credentials
Then the response will contain a confirmation of the delete
Done?

Questions that need answering are:

1. Horizontal scalability - is it important at this stage?
   • Probably not - a single node should be able to handle the kind of load likely to be encountered by early adopters of the platform
2. Can traditional SQL databases like H2 and HSQLDB operate in an arbitrary cloud? (EC2, Heroku, Linode etc)
3. Is NoSQL a good choice for an ecommerce platform?
   • Heroku thinks so for digital asset management
   • Interesting research article using e-commerce on Riak
4. Should MBM have a polyglot persistence solution where different DBs are used for different purposes?
   • It would greatly increase the complexity (plethora of DBs)
5. Ease of maintenance
   • Consider schema changes, indexing, backups, restores, integrated security
   • Consider admin tool (see DBVis
6. Avoidance of provider lock in
   • MBM is a general-purpose app that can be deployed by the user on a single box if necessary, but allows any part of it to be scaled out horizontally
   • Ideally, a Java-based open source DB is required to allow anyone to run it
     • OrientDB - NoSQL looks interesting
     • Neo4J - NoSQL too commercial
   • VoltDB - SQL with horizontal scaling support

In order to reduce currency volatility risk
As a customer
I want to see a countdown timer during checkout

Estimated time (days): 1

Acceptance Criteria

Scenario 1: Making payment
Given a shopping cart with items
And the payment page
When I confirm the order
Then a timer will start against the online quote
And if I navigate away and come back the timer will continue from the original starting point

Require a way of binding user stories and acceptance tests together. This will allow continuous creation of business value in an agile manner.

Considered JBehave, Instinct, JUnit only, cuke4duke and others (see this question on Stack Overflow), and Spock seems the right way to go for me. As a useful side effect it introduces an additional JVM language (Groovy) into the mix which will stimulate greater learning.

Require a feature branch to explore how it can be integrated into the existing code.

Require a wiki entry (or blog article) detailing how to deploy MBM to the EC2 platform.

The write up should emphasise the use of Amazon scripts (perhaps supply them as part of the download?) and which instances are most suitable and secure.

See this article

Have a read of the following articles:

• Code Project
• jQuery plugin

UX

• StackExchange UX search
• StackExchange UX best practices
• Creative eCommerce

Fix ConcurrentHashMap using the info in this article

Require a method of managing an Access Control List (ACL) within the Dropwizard environment. Something like the Spring Security approach, but blended with the simple @Auth annotation.

The intention is to restrict access based on the Role and Authority so that customers can get access to their private information through the public port. Staff will perform their operations against the restricted port (specific IP addresses, permitted access hours, permitted information etc).

Need to have documentation on how to get this thing live.

As an administrator I want to import a large collection of items using an industry standard format (or at least a very common one recognised by other ecommerce platforms) so that I don't have much hassle trying MBM out.

Require support for samples of digital downloads of video and audio. HTML5 offers a way of integrating this directly into the browser.

Supporting articles

HTML5 Doctor

Various API methods need authentication support. HMAC is probably the easiest to support as a general case.

Completed parts

• Must be easy to code against (uses @RestrictedTo custom annotation) - done
• Support for functional testing - done
• ACL handling (via Authority enum) - done
• Support for various hashing algorithms (SHA1, SHA256 etc) - done
• Verify HTTP standards compliant (Authorization header use) - done subject to issues seen in MBM-50
• Verify cross-client support is possible (JavaScript, Ruby etc) - done (Ruby OK, JavaScript OK, PHP OK)

Remaining work

• Verify use across HTTP verbs (GET, POST, PUT, DELETE, OPTIONS) and different URL encoding - in progress

In order to administer the User entity
As an administrator
I want to perform CRUD operations

Estimated time (days): 2

Acceptance Criteria

Scenario 1: Developer level acceptance
Given a running MBM platform
And a local in-memory database
When a GET request against /user is issued with admin credentials
Then the response will contain a HAL representation of all Users (paged)
Done? Yes

Scenario 2: Developer level acceptance
Given a running MBM platform
And a local in-memory database
When a POST request against /user is issued with admin credentials
And the request contains a valid CreateUser entity represented in HAL
Then the response will contain a HAL representation of the new User
Done?

Scenario 3: Developer level acceptance
Given a running MBM platform
And a local in-memory database
When a PUT request against /user/{userId} is issued with admin credentials
And the request contains a valid UpdateUser entity represented in HAL
Then the response will contain a HAL representation of the updated User
Done?

Scenario 4: Developer level acceptance
Given a running MBM platform
And a local in-memory database
When a DELETE request against /user/{userId} is issued with admin credentials
Then the response will contain a confirmation of the delete
Done?

Require support for a variety of logistics companies (Parcel2Go, DHL, FedEx etc)

Provide an eco-system that allows plugins to satisfy these requirements in the clients.

Getting shipping costs via the Parcel2Go API
Getting shipping costs via Fedex

HAL+JSON and HAL+XML has a support framework in HalBuilder that could offer the right balance between simple resource representation and sufficiently well-described linking to allow a HATEOAS approach.

See the HAL IETF draft

Provide a proof of concept with User and Customer entities.

Should the platform provide a security image and/or code word during checkout to improve customer confidence?

Require additional types of accounts: Memo, Detail and Summary (see Martin Fowler's Analysis Patterns)

Could an OpenId or OpenAuth login be used to locate a better product match for the customer, if such details are permitted?

In order to administer the Item entity
As an Administrator
I want to perform CRUD operations

Estimated time (days): 2

Acceptance Criteria

Scenario 1: Developer level acceptance
Given a running MBM platform
And a local in-memory database
When a GET request against /item is issued with admin credentials
Then the response will contain a HAL representation of all Items owned by the admin
Done?

Scenario 2: Developer level acceptance
Given a running MBM platform
And a local in-memory database
When a POST request against /item is issued with admin credentials
And the request contains a valid CreateItem entity represented in HAL
Then the response will contain a HAL representation of the new Item
Done?

Scenario 3: Developer level acceptance
Given a running MBM platform
And a local in-memory database
When a PUT request against /item/{itemId} is issued with admin credentials
And the request contains a valid UpdateItem entity represented in HAL
Then the response will contain a HAL representation of the updated Item
Done?

Scenario 4: Developer level acceptance
Given a running MBM platform
And a local in-memory database
When a DELETE request against /item/{itemId} is issued with admin credentials
Then the response will contain a confirmation of the delete
Done?

In order to administer the Role entity
As an administrator
I want to perform CRUD operations

Estimated time (days): 0.5 (relying on previously created User patterns)

Acceptance Criteria

Scenario 1: Developer level acceptance
Given a running MBM platform
And a local in-memory database
When a GET request against /role is issued with admin credentials
Then the response will contain a HAL representation of all Roles
Done?

Scenario 2: Developer level acceptance
Given a running MBM platform
And a local in-memory database
When a POST request against /role is issued with admin credentials
And the request contains a valid CreateRole entity represented in HAL
Then the response will contain a HAL representation of the new Role
Done?

Scenario 3: Developer level acceptance
Given a running MBM platform
And a local in-memory database
When a PUT request against /role/{roleId} is issued with admin credentials
And the request contains a valid UpdateRole entity represented in HAL
Then the response will contain a HAL representation of the updated Role
Done?

Scenario 4: Developer level acceptance
Given a running MBM platform
And a local in-memory database
When a DELETE request against /role/{RoleId} is issued with admin credentials
Then the response will contain a confirmation of the delete
Done?

Clients will rely on JavaScript, which in turn depends on various possible support libraries.

Major choices include:

• jQuery and jQuery UI - lightweight and well-known (fragmented widget library)
• Dojo - single unified framework (ease of maintenance of widget library)
• YUI - provides a complete framework

Minor choices include:

• Mootools - similar scope to jQuery
• Qooxdoo - seems to offer a complete Python based toolchain

Objective is to create a simple minimalistic UI that can be used as both a demonstrator and a real-life operational component.

Supporting articles
StackOverflow X vs Y

Require a wiki entry (or blog article) detailing how to deploy MBM to the Heroku platform.

The write up should emphasise the use of Heroku scripts (perhaps supply them as part of the download?) and which instances are most suitable and secure.

Replace getInstance() with newBuilder() to follow the Guava convention
Prefix builder methods using 'with'

Require a mechanism to allow the local database to be patched and populated safely.

The following approach could be used (includes client UI and platform operations):

1. MH From the admin screen user clicks the Upgrade button
2. CH All active user sessions are sent an alert giving them 1 minute before forced log out
3. CH New users arriving are shown a system maintenance screen
4. MH All active users sessions are suspended, and no new ones permitted.
5. MH Database is backed up to {currentVersion}-final-snapshot.zip
6. MH Admin is given message that upgrade preparation is complete
7. CH Call out to script to perform shutdown and launch upgrade
8. MH On startup new version uses existing database as basis for upgrade
9. MH The version table contains the previous version and is used as the basis for applying a sequence of one-way patches to reach the current version
10. MH If a patch fails at all, the upgrade fails and a rollback procedure is started (see later)
11. MH Admin is given message that upgrade is complete
12. MH Customers are accepted back on to the system

For rollback the following process could be used (includes client UI and platform operations):

1. MH From the admin screen user clicks the Rollback button. Only available if an upgrade has failed.
2. MH Existing database is backed up to {currentVersion}-failed-upgrade.zip to allow for more sophisticated recovery operations if necessary
3. MH Existing database removed and restored from most recent of {previousVersion}-final-snapshot.zip
4. MH Admin is given message that rollback preparation is complete
5. CH Call out to script to perform shutdown and launch previous version

The returns and refunds processes need research to cover

• how a customer can report a return
• paying refunds (probably through MultiBit in an out of band transaction)
• failed delivery (poor quality, broken, stolen etc)
• failed receipt (supplier failure etc)

Introduce the "master-develop" branching strategy.

Requires

• updates to the Wiki so that developers know what to do
• integration with Maven build process (the develop branch version remain consistent)
• creation of supporting branches in git
• support in the CI server
• support in the repository (should be automatic)

Need to determine how trading in foreign currencies is reported. Spot rate at time? Later? VAT? Seek advice from accountant, community etc

JSP client admin needs to support a collection of URIs to pass in as a model for head.jspf, cdn-scripts.jspf and so on.

This removes the need for mbm-scripts.jspf since it's now redundant.

This will give rise to a need to storing local preferences on the client since this kind of configuration is confined to clients rather than being provided at a platform level.

The 3x4 grid offers a potentially useful HTML5 clients

Need to research how the searching for products will be done.

Main candidates are:

• Full text search with the resident database
• Using Lucene as a local search engine (see Lucene+Solr

Output from the search egnine, could be made to conform to OpenSearch which is a typical interpretation of rel="search" and offers a standard response format.

The satoshi client provides a mechanism to sign arbitrary text with the private key of a given address. Certain use cases make this worthwhile for a merchant:

• proof of purchase by client in case of problem
• proof of refund

The client must have a strong motivation to jump through this hoop so could be made part of a warranty agreement.

Consider how MBM could be used to support

• affiliate referrals and their remuneration
• agents managing groups of sellers

Need to decide on an application-level communication protocol for the platform. This will provide the main interface to the platform and needs to be easily understood by a wide variety of clients.

Candidates include:

• AtomPub using Apache Abdera or similar
• Custom JAXB annotated objects (e.g. SomethingRequest/SomethingResponse and paging thereof)
• OData using odata4j
• WADL stylesheet for human documentation
• OpenSearch for standardised search results within the catalogs
• JSON linking with HAL

Supporting research links
How to GET a cup of coffee
BigCommerce API to ease compatibility with traditional ecommerce solutions?

When entering the text details of a product, it is important to do the following:

• provide an easy to use markup language
• provide instant visual feedback during data entry
• make internal linking easy (permalinks to known resources)
• support multiple languages

Candidates include Freemarker, Markdown, Mustache.

Would need to offer support for conversion from other formats such as HTML.

Supporting articles

• Bootstrap WYSI HTML5 - wysiwyg editor

Related issue:

• Internal messaging

Reports can be provided for a variety of purposes:

• formatted emails
• spreadsheets for accounting
• customer receipts
• purchase orders
• invoices
• delivery notes

Users will expect them to be customisable to

• include own text
• include own graphics (logos, banners, skyscrapers etc)

Need a generic approach to this, and to include recommendations for stationery and so on

The final artifacts should be available in Maven Central. This will require registration and obtaining a suitable GPG key to sign the final artifacts. This key needs to be securely held outside of version control to allow genuine MBM releases to be distinguished from forks.

Consider how 2-factor authentication could be implemented with MBM, or obviated if possible.

As an alternative to a bulk import, a digital product (audio, video, document) should be uploaded. A smooth interface to this would involve drag and drop and upload (similar to GMail file attach).

Supporting articles:

• Drag and drop upload

Consider a minimalistic approach for the JSP and JavaScript clients. Intention to provide an easy to use interface by a smartphone or tablet with access to a bitcoin wallet. The image load time should be as low as possible.

Supporting links
Shift icons - icon font
Riloadr - optimised loading of images through JavaScript on jQuery

Require a client-side mechanism that allows a user to see a walk-through of how to use MBM:

• walk-through of making a purchase
• walk-through of performing admin tasks

Supporting articles

• CSS arrow

In order to "some reason or business value"
As a "type of user"
I want "some feature"

Estimated time (days): 0.5, 1, 2, 3, 5, ?

Acceptance Criteria

Scenario 1: Title
Given [context]
And [some more context]...
When [event]
Then [outcome]
And [another outcome]...

When discussing, remember INVEST:

• Independent – a user story should not be dependent upon another story.
• Negotiable – the details of the story will be worked out during the conversation. Talk about the story before working on it.
• Valuable – the user story needs to be valuable to someone.
• Estimable – the estimation need not be perfect, but good enough so you can rank and schedule a story.
• Small – small is easier to estimate. Label as Small: 0.5-1, Medium: 2-3, Large 5+.
• Testable – make sure that you can validate the user story is done using automated tests.

See the Extreme Programming notes.

The Java JSP client has drifted from the current MBM platform RESTful API. Once the communication protocol has been decided then the client code needs to be updated to use it.