Banking Simulator Updates and Enhancements (#30)

* Remove unused database switching functionality (#1)

- Removed DB_FILE environment variable from .env.sample
- Deleted legacy investec.db file
- Cleaned up commented DB_FILE reference in app.ts

* Add profile and KYC compliant fields to accounts (#2)

* Add profile and KYC compliant fields to accounts

- Added Profile model with profileId and profileName
- Updated Account model with kycCompliant, profileId, and profileName fields
- Created profile seeding script with default profile (ID: 10001234567890, Name: Joe Soap)
- Updated account seeding to include profile references and KYC compliance
- Added database journal files to gitignore
- Applied Prisma migration to update existing database

This ensures production-like account responses for strict validation compatibility.

* Add updated database, edit migration

* Add profiles and dashboard summary (#4)

* Add profile and KYC compliant fields to accounts

- Added Profile model with profileId and profileName
- Updated Account model with kycCompliant, profileId, and profileName fields
- Created profile seeding script with default profile (ID: 10001234567890, Name: Joe Soap)
- Updated account seeding to include profile references and KYC compliance
- Added database journal files to gitignore
- Applied Prisma migration to update existing database

This ensures production-like account responses for strict validation compatibility.

* Add updated database, edit migration

* Add real-time database summary dashboard (#3)

* Add real-time database summary dashboard with Socket.IO

- Added Database Summary section showing live counts for profiles, accounts, cards, and transactions
- Implemented Socket.IO real-time updates for all database operations (create/delete accounts, transactions, clear/restore)
- Added /database-summary API endpoint with real-time emission via emitDatabaseSummary()
- Improved server logging to use req.originalUrl for complete path details
- Excluded internal database-summary calls from server logs to reduce noise
- Added .idea folder to .gitignore
* Update dev.db with test accounts and transactions

* Improve test coverage and robustness (#5)

* Improve test coverage and robustness

- Update account.spec.ts to include new profile fields (kycCompliant, profileId, profileName)
- Improve card.spec.ts with better timestamp validation instead of exact matching
- Enhance environmentalvariables.spec.ts with comprehensive structure validation
- Add new profile.spec.ts with comprehensive profile functionality testing
- Remove unnecessary comments from test files for cleaner code
- Fix TypeScript warnings with proper parameter types

* Remove remaining comments from test files

- Clean up card.spec.ts by removing unnecessary comments
- Clean up environmentalvariables.spec.ts by removing unnecessary comments
- Keep code clean and concise without explanatory comments

* Fix ESLint configuration and resolve linting issues

- Fix eslint.config.js max-len rule configuration with proper severity and options
- Fix Array() constructor usage in cards.ts to use array literal notation
- Fix line length issues in card.spec.ts by breaking long strings into concatenated lines
- Replace 'any' type with proper typing in profile.spec.ts
- All 26 tests still passing
- No ESLint errors remaining

* Add hide/show functionality for sensitive environment variables (#6)

- Client Secret and API Key fields now default to hidden state for security
- Toggle buttons positioned to the right of input fields with eye icons
- Client Secret uses password/text input type switching
- API Key uses conditional rendering between textarea and masked dots display
- Updated dashboard screenshot to reflect new UI changes

* Add basic health endpoint for service monitoring (#7)

- Implements GET /health endpoint returning HTTP 200 with { status: 'ok' }
- Provides simple service availability check for monitoring tools
- Lightweight response with no database dependencies

* Fix README typo and add health endpoint documentation (#8)

- Fixed typo: "room of the domain" to "root of the domain"
- Added /health endpoint to Dashboard section for completeness
- Preserved original formatting and structure

* Add scrollable logs container with auto-scroll functionality (#9)

- Added fixed height (300px) scrollable container for server logs
- Implemented auto-scroll to bottom when new log entries arrive
- Added custom scrollbar styling for better visibility
- Removed overflow-hidden from parent container to show scrollbar
- Enhanced log item padding and styling for better readability

* Add beneficiary deletion endpoint and fix TypeScript issues (#10)

* Update prisma database with latest schema changes (#11)

Author: stevebissett

README.md

@@ -45,7 +45,7 @@ npm run dev
 
 This will start the simulator on http://localhost:3000
 
-Accessing the room of the domain will show the dashboard view of the server. The dashboard allows you to set the environment variables for the server and view the logs of the server.
+Accessing the root of the domain will show the dashboard view of the server. The dashboard allows you to set the environment variables for the server and view the logs of the server.
 
 There are helpful links to the Investec docs, Community wiki, GitHub repo and the Postman collection.
 
@@ -54,6 +54,8 @@ There are helpful links to the Investec docs, Community wiki, GitHub repo and th
 ### Dashboard
 - **GET /**
     - Dashboard view of the server
+- **GET /health**
+    - Health check endpoint returning service status
 ### Auth
 - **POST /identity/v2/oauth2/token**
     - Get an access token (only required if auth is turned on)
@@ -105,6 +107,10 @@ There are helpful links to the Investec docs, Community wiki, GitHub repo and th
     - Create a new account
 - **DELETE /za/pb/v1/accounts/:accountId**
     - Deletes the account and its transactions
+- **POST /za/pb/v1/accounts/beneficiaries**
+    - Create a new beneficiary
+- **DELETE /za/pb/v1/accounts/beneficiaries/:beneficiaryId**
+    - Delete a beneficiary
 - **POST /za/v1/cards/:cardKey/code/execute-live**
     - Used for the POS to execute the code on the card
 

eslint.config.js

@@ -9,7 +9,7 @@ export default [
       '@stylistic/js': stylisticJs,
     },
     rules: {
-      '@stylistic/js/max-len': 120,
+      '@stylistic/js/max-len': ['error', { code: 120 }],
     },
   },
   { files: ['**/*.{js,mjs,cjs,ts}'] },

images/dashboard.png

@@ -207,6 +207,9 @@ app.get('/envs', async (req: Request, res: Response) => {
   }
 })
 
+app.get('/health', (req: Request, res: Response) => {
+  res.status(200).json({ status: 'ok' })
+})
 app.get('/database-summary', async (req: Request, res: Response) => {
   try {
     const [profileCount, accountCount, cardCount, transactionCount] = await Promise.all([

prisma/dev.db

@@ -4,6 +4,22 @@
     <meta name="viewport" content="width=device-width,initial-scale=1.0">
     <title>Programmable Sandbox Sim</title>
     <link href="/output.css" rel="stylesheet">
+    <style>
+        .logs-container::-webkit-scrollbar {
+            width: 8px;
+        }
+        .logs-container::-webkit-scrollbar-track {
+            background: #f1f5f9;
+            border-radius: 4px;
+        }
+        .logs-container::-webkit-scrollbar-thumb {
+            background: #9ca3af;
+            border-radius: 4px;
+        }
+        .logs-container::-webkit-scrollbar-thumb:hover {
+            background: #6b7280;
+        }
+    </style>
 <script async defer src="https://buttons.github.io/buttons.js"></script>
   </head>
   <body class="h-full antialiased light bg-gray-100">
@@ -84,17 +100,19 @@ <h2 class="text-lg font-semibold leading-6 text-gray-900">Database Summary</h2>
                 </div>
             </div>
             <!-- Server Logs -->
-            <div class="mt-4 divide-y divide-gray-200 overflow-hidden rounded-lg bg-white shadow">
+            <div class="mt-4 divide-y divide-gray-200 rounded-lg bg-white shadow">
                 <div class="px-4 py-5 sm:p-6">
                     <h2 class="text-lg font-semibold leading-6 text-gray-900">Server Logs</h2>
                 </div>
                 <div class="px-4 py-5 sm:p-6">
-                    <ul role="list" id="messages" v-if="messages" class="divide-y divide-gray-200">
-                        <li v-for="item in messages" class="even:bg-gray-50 odd:bg-white">
-                            {{ item }}
-                        </li>
-                    </ul>
-                    <p v-else>No logs available. Send a request to view here.</p>
+                    <div ref="logsContainer" class="logs-container border border-gray-200 rounded bg-gray-50" style="height: 300px !important; overflow-y: scroll !important; overflow-x: hidden !important; scrollbar-width: auto !important; -webkit-overflow-scrolling: touch;">
+                        <ul role="list" id="messages" v-if="messages" class="divide-y divide-gray-200" style="min-height: 350px;">
+                            <li v-for="item in messages" class="even:bg-gray-50 odd:bg-white px-3 py-2">
+                                {{ item }}
+                            </li>
+                        </ul>
+                        <p v-else class="px-3 py-2 text-gray-500" style="min-height: 350px;">No logs available. Send a request to view here.</p>
+                    </div>
                 </div>
             </div>
             <!-- Environment Variables -->
@@ -112,14 +130,35 @@ <h2 class="text-base font-semibold leading-7 text-gray-900">Environmental Variab
                             </div>
                             <div class="sm:col-span-4">
                                 <label for="client_secret" class="block text-sm font-medium leading-6 text-gray-900">Client Secret</label>
-                                <div class="mt-2">
-                                    <input v-model="client_secret" id="client_secret" name="client_secet" type="input" required="" class="block w-full px-3 rounded-md border-0 py-1.5 text-gray-900 shadow-sm ring-1 ring-inset ring-gray-300 placeholder:text-gray-400 focus:ring-2 focus:ring-inset focus:ring-gray-900 sm:text-sm sm:leading-6" />
+                                <div class="mt-2 flex gap-2">
+                                    <input v-model="client_secret" id="client_secret" name="client_secet" :type="showClientSecret ? 'text' : 'password'" required="" class="block w-full px-3 rounded-md border-0 py-1.5 text-gray-900 shadow-sm ring-1 ring-inset ring-gray-300 placeholder:text-gray-400 focus:ring-2 focus:ring-inset focus:ring-gray-900 sm:text-sm sm:leading-6" />
+                                    <button type="button" @click="toggleClientSecretVisibility" class="flex items-center justify-center px-3 py-1.5 text-gray-400 hover:text-gray-600 focus:outline-none">
+                                        <svg v-if="!showClientSecret" class="h-4 w-4" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+                                            <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M15 12a3 3 0 11-6 0 3 3 0 016 0z" />
+                                            <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M2.458 12C3.732 7.943 7.523 5 12 5c4.478 0 8.268 2.943 9.542 7-1.274 4.057-5.064 7-9.542 7-4.477 0-8.268-2.943-9.542-7z" />
+                                        </svg>
+                                        <svg v-else class="h-4 w-4" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+                                            <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M13.875 18.825A10.05 10.05 0 0112 19c-4.478 0-8.268-2.943-9.543-7a9.97 9.97 0 011.563-3.029m5.858.908a3 3 0 114.243 4.243M9.878 9.878l4.242 4.242M9.878 9.878L3 3m6.878 6.878L21 21" />
+                                        </svg>
+                                    </button>
                                 </div>
                             </div>
                             <div class="col-span-full">
                                 <label for="api_key" class="block text-sm font-medium leading-6 text-gray-900">API Key</label>
-                                <div class="mt-2">
-                                    <textarea v-model="api_key" id="api_key" name="api_key" rows="3" class="block w-full rounded-md border-0 py-1.5 text-gray-900 shadow-sm ring-1 ring-inset ring-gray-300 placeholder:text-gray-400 focus:ring-2 focus:ring-inset focus:ring-gray-900 sm:text-sm"></textarea>
+                                <div class="mt-2 flex gap-2">
+                                    <textarea v-if="showApiKey" v-model="api_key" id="api_key" name="api_key" rows="3" class="block w-full rounded-md border-0 py-1.5 text-gray-900 shadow-sm ring-1 ring-inset ring-gray-300 placeholder:text-gray-400 focus:ring-2 focus:ring-inset focus:ring-gray-900 sm:text-sm"></textarea>
+                                    <div v-else class="block w-full rounded-md border-0 py-1.5 text-gray-900 shadow-sm ring-1 ring-inset ring-gray-300 sm:text-sm min-h-[72px] bg-white flex items-start pt-1.5 px-3" style="font-family: inherit; letter-spacing: normal; font-size: 14px; line-height: 1.5;">
+                                        <span style="word-break: break-all;">{{ api_key ? '•'.repeat(api_key.length) : '' }}</span>
+                                    </div>
+                                    <button type="button" @click="toggleApiKeyVisibility" class="flex items-center justify-center px-3 py-1.5 text-gray-400 hover:text-gray-600 focus:outline-none">
+                                        <svg v-if="!showApiKey" class="h-4 w-4" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+                                            <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M15 12a3 3 0 11-6 0 3 3 0 016 0z" />
+                                            <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M2.458 12C3.732 7.943 7.523 5 12 5c4.478 0 8.268 2.943 9.542 7-1.274 4.057-5.064 7-9.542 7-4.477 0-8.268-2.943-9.542-7z" />
+                                        </svg>
+                                        <svg v-else class="h-4 w-4" fill="none" viewBox="0 0 24 24" stroke="currentColor">
+                                            <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M13.875 18.825A10.05 10.05 0 0112 19c-4.478 0-8.268-2.943-9.543-7a9.97 9.97 0 011.563-3.029m5.858.908a3 3 0 114.243 4.243M9.878 9.878l4.242 4.242M9.878 9.878L3 3m6.878 6.878L21 21" />
+                                        </svg>
+                                    </button>
                                 </div>
                             </div>
                             <div class="col-span-2">
@@ -163,6 +202,8 @@ <h2 class="text-base font-semibold leading-7 text-gray-900">Environmental Variab
                 token_expiry: 1799,
                 auth: false,
                 alertMessage: null,
+                showClientSecret: false,
+                showApiKey: false,
                 summary: {
                     profiles: 0,
                     accounts: 0,
@@ -178,7 +219,12 @@ <h2 class="text-base font-semibold leading-7 text-gray-900">Environmental Variab
                         this.messages = [];
                     }
                     this.messages.push(msg);
-                    // window.scrollTo(0, document.body.scrollHeight);
+                    this.$nextTick(() => {
+                        const container = this.$refs.logsContainer;
+                        if (container) {
+                            container.scrollTop = container.scrollHeight;
+                        }
+                    });
                 });
                 this.socket.on('envs', (msg) => {
                     this.client_id = msg.client_id;
@@ -255,6 +301,12 @@ <h2 class="text-base font-semibold leading-7 text-gray-900">Environmental Variab
             clearToast() {
                 this.alertMessage = null;
             },
+            toggleClientSecretVisibility() {
+                this.showClientSecret = !this.showClientSecret;
+            },
+            toggleApiKeyVisibility() {
+                this.showApiKey = !this.showApiKey;
+            },
           },
         }).mount('#app')
       </script>

src/app.ts

@@ -362,8 +362,22 @@ router.delete('/:accountId/transactions/:postingDate',
 // function to create an account
 router.post('/', async (req: Request, res: Response) => {
   try {
-    let account = Investec.account()
-    account = { ...account, ...req.body }
+    const baseAccount = Investec.account()
+    
+    // Get the default profile (or first available profile)
+    const defaultProfile = await prisma.profile.findFirst()
+    if (!defaultProfile) {
+      console.log('No profile found. Please seed the database first.')
+      return formatErrorResponse(req, res, 500)
+    }
+    
+    const account = { 
+      ...baseAccount,
+      profileId: defaultProfile.profileId,
+      profileName: defaultProfile.profileName,
+      kycCompliant: true,
+      ...req.body 
+    }
     // check that the account exists
     const accountcheck = await prisma.account.findFirst({
       where: {
@@ -450,4 +464,33 @@ router.post('/beneficiaries', async (req: Request, res: Response) => {
   }
 })
 
+// Delete a beneficiary
+router.delete('/za/pb/v1/accounts/beneficiaries/:beneficiaryId', async (req: Request, res: Response) => {
+  try {
+    const { beneficiaryId } = req.params
+
+    // Check if beneficiary exists
+    const existingBeneficiary = await prisma.beneficiary.findUnique({
+      where: { beneficiaryId },
+    })
+
+    if (!existingBeneficiary) {
+      return formatErrorResponse(req, res, 404)
+    }
+
+    // Delete the beneficiary
+    await prisma.beneficiary.delete({
+      where: { beneficiaryId },
+    })
+
+    // Emit database summary update for real-time dashboard
+    await emitDatabaseSummary()
+
+    return res.status(200).json({})
+  } catch (error) {
+    console.log(error)
+    return formatErrorResponse(req, res, 500)
+  }
+})
+
 export default router

src/index.html

@@ -7,10 +7,20 @@ import { v4 as uuidv4 } from 'uuid'
 import emu from 'programmable-card-code-emulator'
 import { ExecutionItem } from '../types.js'
 
+interface CardResponse {
+  CardKey: string
+  CardNumber: string
+  IsProgrammable: boolean
+  status: string
+  CardTypeCode: string
+  AccountNumber: string
+  AccountId: string
+}
+
 router.get('/', async (req: Request, res: Response) => {
   try {
     const result = await prisma.card.findMany()
-    const cards = Array()
+    const cards: CardResponse[] = []
     result.forEach(card => {
       cards.push({
         CardKey: card.cardKey,

src/routes/accounts.ts

@@ -12,6 +12,9 @@ describe('Test the accounts', () => {
       accountName: 'Mr J Soap',
       referenceName: 'Mr J Soap',
       productName: 'Mortgage Loan Account',
+      kycCompliant: true,
+      profileId: '10001234567890',
+      profileName: 'Joe Soap',
     })
   })
 

src/routes/cards.ts

@@ -20,29 +20,66 @@ describe('Test the card helpers', () => {
   it('should respond with the cards saved code', async () => {
     const response = await request(app).get('/za/v1/cards/700615/code')
     assert.equal(response.statusCode, 200)
-    assert.deepEqual(response.body.data, {
+    
+    const expectedStructure = {
       cardCode: {
         codeId: 'DC5A7EE9-DD2A-4327-9305-78B9185890CA',
-        code: '// This function runs before a transaction.\nconst beforeTransaction = async (authorization) => {\n  console.log(authorization);\n};\n// This function runs after a transaction was successful.\nconst afterTransaction = async (transaction) => {\n  console.log(transaction);\n};\n// This function runs after a transaction was declined.\nconst afterDecline = async (transaction) => {\n  console.log(transaction);\n};',
-        createdAt: '2024-08-01T13:05:33.685Z',
-        updatedAt: '2024-08-01T13:05:33.685Z',
-        publishedAt: '2024-08-01T13:05:33.685Z',
+        code: '// This function runs before a transaction.\n' +
+          'const beforeTransaction = async (authorization) => {\n' +
+          '  console.log(authorization);\n' +
+          '};\n' +
+          '// This function runs after a transaction was successful.\n' +
+          'const afterTransaction = async (transaction) => {\n' +
+          '  console.log(transaction);\n' +
+          '};\n' +
+          '// This function runs after a transaction was declined.\n' +
+          'const afterDecline = async (transaction) => {\n' +
+          '  console.log(transaction);\n' +
+          '};',
       },
-    })
+    }
+    
+    assert.equal(response.body.data.cardCode.codeId, expectedStructure.cardCode.codeId)
+    assert.equal(response.body.data.cardCode.code, expectedStructure.cardCode.code)
+    
+    assert.exists(response.body.data.cardCode.createdAt)
+    assert.exists(response.body.data.cardCode.updatedAt)
+    assert.exists(response.body.data.cardCode.publishedAt)
+    assert.isTrue(new Date(response.body.data.cardCode.createdAt) instanceof Date)
+    assert.isTrue(new Date(response.body.data.cardCode.updatedAt) instanceof Date)
+    assert.isTrue(new Date(response.body.data.cardCode.publishedAt) instanceof Date)
   })
 
   it('should respond with the cards published code', async () => {
     const response = await request(app).get('/za/v1/cards/700615/publishedcode')
     assert.equal(response.statusCode, 200)
-    assert.deepEqual(response.body.data, {
+    
+    const expectedStructure = {
       cardCode: {
         codeId: '3BB77753-R2D2-4U2B-1A2B-4C213E7D0AC3',
-        code: '// This function runs before a transaction.\nconst beforeTransaction = async (authorization) => {\n  console.log(authorization);\n};\n// This function runs after a transaction was successful.\nconst afterTransaction = async (transaction) => {\n  console.log(transaction);\n};\n// This function runs after a transaction was declined.\nconst afterDecline = async (transaction) => {\n  console.log(transaction);\n};',
-        createdAt: '2024-08-01T13:05:33.685Z',
-        updatedAt: '2024-08-01T13:05:33.685Z',
-        publishedAt: '2024-08-01T13:05:33.685Z',
+        code: '// This function runs before a transaction.\n' +
+          'const beforeTransaction = async (authorization) => {\n' +
+          '  console.log(authorization);\n' +
+          '};\n' +
+          '// This function runs after a transaction was successful.\n' +
+          'const afterTransaction = async (transaction) => {\n' +
+          '  console.log(transaction);\n' +
+          '};\n' +
+          '// This function runs after a transaction was declined.\n' +
+          'const afterDecline = async (transaction) => {\n' +
+          '  console.log(transaction);\n' +
+          '};',
       },
-    })
+    }
+    
+    assert.equal(response.body.data.cardCode.codeId, expectedStructure.cardCode.codeId)
+    assert.equal(response.body.data.cardCode.code, expectedStructure.cardCode.code)
+    assert.exists(response.body.data.cardCode.createdAt)
+    assert.exists(response.body.data.cardCode.updatedAt)
+    assert.exists(response.body.data.cardCode.publishedAt)
+    assert.isTrue(new Date(response.body.data.cardCode.createdAt) instanceof Date)
+    assert.isTrue(new Date(response.body.data.cardCode.updatedAt) instanceof Date)
+    assert.isTrue(new Date(response.body.data.cardCode.publishedAt) instanceof Date)
   })
 
   it('should respond with the merchant code list', async () => {