commit f70b3a2afa6323a17896f7a8ee40c4712c5bf2c2 · pyrox.dev/nixpkgs

nixos/tests/all-tests.nix

···

       1064
        
         systemd-userdbd = handleTest ./systemd-userdbd.nix {};

     

       1065
        
         systemd-homed = handleTest ./systemd-homed.nix {};

     

       1066
        
         systemtap = handleTest ./systemtap.nix {};

     

       0
        
       
     

       1067
        
         tandoor-recipes = handleTest ./tandoor-recipes.nix {};

     

       1068
        
         tandoor-recipes-script-name = handleTest ./tandoor-recipes-script-name.nix {};

     

       1069
        
         tang = handleTest ./tang.nix {};

···

       1064
        
         systemd-userdbd = handleTest ./systemd-userdbd.nix {};

     

       1065
        
         systemd-homed = handleTest ./systemd-homed.nix {};

     

       1066
        
         systemtap = handleTest ./systemtap.nix {};

     

       1067
       +
         taler = handleTest ./taler {};

     

       1068
        
         tandoor-recipes = handleTest ./tandoor-recipes.nix {};

     

       1069
        
         tandoor-recipes-script-name = handleTest ./tandoor-recipes-script-name.nix {};

     

       1070
        
         tang = handleTest ./tang.nix {};

+200

nixos/tests/taler/common/nodes.nix

···

       1
       +
       { lib, ... }:

     

       2
       +
       let

     

       3
       +
         # Forward SSH and WebUI ports to host machine

     

       4
       +
         #

     

       5
       +
         # Connect with: ssh root@localhost -p <hostPort>

     

       6
       +
         # Access WebUI from: http://localhost:<hostPort>

     

       7
       +
         #

     

       8
       +
         # NOTE: This is only accessible from an interactive test, for example:

     

       9
       +
         # $ eval $(nix-build -A nixosTests.taler.basic.driver)/bin/nixos-test-driver

     

       10
       +
         mkNode =

     

       11
       +
           {

     

       12
       +
             sshPort ? 0,

     

       13
       +
             webuiPort ? 0,

     

       14
       +
             nodeSettings ? { },

     

       15
       +
           }:

     

       16
       +
           lib.recursiveUpdate {

     

       17
       +
             services.openssh = {

     

       18
       +
               enable = true;

     

       19
       +
               settings = {

     

       20
       +
                 PermitRootLogin = "yes";

     

       21
       +
                 PermitEmptyPasswords = "yes";

     

       22
       +
               };

     

       23
       +
             };

     

       24
       +
             security.pam.services.sshd.allowNullPassword = true;

     

       25
       +
             virtualisation.forwardPorts =

     

       26
       +
               (lib.optionals (sshPort != 0) [

     

       27
       +
                 {

     

       28
       +
                   from = "host";

     

       29
       +
                   host.port = sshPort;

     

       30
       +
                   guest.port = 22;

     

       31
       +
                 }

     

       32
       +
               ])

     

       33
       +
               ++ (lib.optionals (webuiPort != 0) [

     

       34
       +
                 {

     

       35
       +
                   from = "host";

     

       36
       +
                   host.port = webuiPort;

     

       37
       +
                   guest.port = webuiPort;

     

       38
       +
                 }

     

       39
       +
               ]);

     

       40
       +
           } nodeSettings;

     

       41
       +
       in

     

       42
       +
       rec {

     

       43
       +
         CURRENCY = "KUDOS";

     

       44
       +
         FIAT_CURRENCY = "CHF";

     

       45
       +
       

     

       46
       +
         nodes = {

     

       47
       +
           exchange =

     

       48
       +
             { config, lib, ... }:

     

       49
       +
             mkNode {

     

       50
       +
               sshPort = 1111;

     

       51
       +
               webuiPort = 8081;

     

       52
       +
       

     

       53
       +
               nodeSettings = {

     

       54
       +
                 services.taler = {

     

       55
       +
                   settings = {

     

       56
       +
                     taler.CURRENCY = CURRENCY;

     

       57
       +
                   };

     

       58
       +
                   includes = [ ../conf/taler-accounts.conf ];

     

       59
       +
                   exchange = {

     

       60
       +
                     enable = true;

     

       61
       +
                     debug = true;

     

       62
       +
                     openFirewall = true;

     

       63
       +
                     denominationConfig = lib.readFile ../conf/taler-denominations.conf;

     

       64
       +
                     settings = {

     

       65
       +
                       exchange = {

     

       66
       +
                         MASTER_PUBLIC_KEY = "2TQSTPFZBC2MC4E52NHPA050YXYG02VC3AB50QESM6JX1QJEYVQ0";

     

       67
       +
                         BASE_URL = "http://exchange:8081/";

     

       68
       +
                       };

     

       69
       +
                       exchange-offline = {

     

       70
       +
                         MASTER_PRIV_FILE = "${../conf/private.key}";

     

       71
       +
                       };

     

       72
       +
                     };

     

       73
       +
                   };

     

       74
       +
                 };

     

       75
       +
               };

     

       76
       +
             };

     

       77
       +
       

     

       78
       +
           bank =

     

       79
       +
             { config, ... }:

     

       80
       +
             mkNode {

     

       81
       +
               sshPort = 2222;

     

       82
       +
               webuiPort = 8082;

     

       83
       +
       

     

       84
       +
               nodeSettings = {

     

       85
       +
                 services.libeufin.bank = {

     

       86
       +
                   enable = true;

     

       87
       +
                   debug = true;

     

       88
       +
       

     

       89
       +
                   openFirewall = true;

     

       90
       +
                   createLocalDatabase = true;

     

       91
       +
       

     

       92
       +
                   initialAccounts = [

     

       93
       +
                     {

     

       94
       +
                       username = "exchange";

     

       95
       +
                       password = "exchange";

     

       96
       +
                       name = "Exchange";

     

       97
       +
                     }

     

       98
       +
                   ];

     

       99
       +
       

     

       100
       +
                   settings = {

     

       101
       +
                     libeufin-bank = {

     

       102
       +
                       WIRE_TYPE = "x-taler-bank";

     

       103
       +
                       # WIRE_TYPE = "iban";

     

       104
       +
                       X_TALER_BANK_PAYTO_HOSTNAME = "bank:8082";

     

       105
       +
                       # IBAN_PAYTO_BIC = "SANDBOXX";

     

       106
       +
                       BASE_URL = "bank:8082";

     

       107
       +
       

     

       108
       +
                       # Allow creating new accounts

     

       109
       +
                       ALLOW_REGISTRATION = "yes";

     

       110
       +
       

     

       111
       +
                       # A registration bonus makes withdrawals easier since the

     

       112
       +
                       # bank account balance is not empty

     

       113
       +
                       REGISTRATION_BONUS_ENABLED = "yes";

     

       114
       +
                       REGISTRATION_BONUS = "${CURRENCY}:100";

     

       115
       +
       

     

       116
       +
                       DEFAULT_DEBT_LIMIT = "${CURRENCY}:500";

     

       117
       +
       

     

       118
       +
                       # NOTE: The exchange's bank account must be initialised before

     

       119
       +
                       # the main bank service starts, else it doesn't work.

     

       120
       +
                       # The `services.libeufin.bank.initialAccounts` option can be used to do this.

     

       121
       +
                       ALLOW_CONVERSION = "yes";

     

       122
       +
                       ALLOW_EDIT_CASHOUT_PAYTO_URI = "yes";

     

       123
       +
       

     

       124
       +
                       SUGGESTED_WITHDRAWAL_EXCHANGE = "http://exchange:8081/";

     

       125
       +
       

     

       126
       +
                       inherit CURRENCY FIAT_CURRENCY;

     

       127
       +
                     };

     

       128
       +
                   };

     

       129
       +
                 };

     

       130
       +
       

     

       131
       +
                 services.libeufin.nexus = {

     

       132
       +
                   enable = true;

     

       133
       +
                   debug = true;

     

       134
       +
       

     

       135
       +
                   openFirewall = true;

     

       136
       +
                   createLocalDatabase = true;

     

       137
       +
       

     

       138
       +
                   settings = {

     

       139
       +
                     # https://docs.taler.net/libeufin/setup-ebics-at-postfinance.html

     

       140
       +
                     nexus-ebics = {

     

       141
       +
                       # == Mandatory ==

     

       142
       +
                       CURRENCY = FIAT_CURRENCY;

     

       143
       +
                       # Bank

     

       144
       +
                       HOST_BASE_URL = "https://isotest.postfinance.ch/ebicsweb/ebicsweb";

     

       145
       +
                       BANK_DIALECT = "postfinance";

     

       146
       +
                       # EBICS IDs

     

       147
       +
                       HOST_ID = "PFEBICS";

     

       148
       +
                       USER_ID = "PFC00639";

     

       149
       +
                       PARTNER_ID = "PFC00639";

     

       150
       +
                       # Account information

     

       151
       +
                       IBAN = "CH4740123RW4167362694";

     

       152
       +
                       BIC = "BIC";

     

       153
       +
                       NAME = "nixosTest nixosTest";

     

       154
       +
       

     

       155
       +
                       # == Optional ==

     

       156
       +
                       CLIENT_PRIVATE_KEYS_FILE = "${../conf/client-ebics-keys.json}";

     

       157
       +
                       BANK_PUBLIC_KEYS_FILE = "${../conf/bank-ebics-keys.json}";

     

       158
       +
                     };

     

       159
       +
                   };

     

       160
       +
                 };

     

       161
       +
               };

     

       162
       +
             };

     

       163
       +
       

     

       164
       +
           merchant =

     

       165
       +
             { config, ... }:

     

       166
       +
             mkNode {

     

       167
       +
               sshPort = 3333;

     

       168
       +
               webuiPort = 8083;

     

       169
       +
       

     

       170
       +
               nodeSettings = {

     

       171
       +
                 services.taler = {

     

       172
       +
                   settings = {

     

       173
       +
                     taler.CURRENCY = CURRENCY;

     

       174
       +
                   };

     

       175
       +
                   merchant = {

     

       176
       +
                     enable = true;

     

       177
       +
                     debug = true;

     

       178
       +
                     openFirewall = true;

     

       179
       +
                     settings.merchant-exchange-test = {

     

       180
       +
                       EXCHANGE_BASE_URL = "http://exchange:8081/";

     

       181
       +
                       MASTER_KEY = "2TQSTPFZBC2MC4E52NHPA050YXYG02VC3AB50QESM6JX1QJEYVQ0";

     

       182
       +
                       inherit CURRENCY;

     

       183
       +
                     };

     

       184
       +
                   };

     

       185
       +
                 };

     

       186
       +
               };

     

       187
       +
             };

     

       188
       +
       

     

       189
       +
           client =

     

       190
       +
             { pkgs, ... }:

     

       191
       +
             mkNode {

     

       192
       +
               sshPort = 4444;

     

       193
       +
       

     

       194
       +
               nodeSettings = {

     

       195
       +
                 environment.systemPackages = [ pkgs.taler-wallet-core ];

     

       196
       +
               };

     

       197
       +
             };

     

       198
       +
         };

     

       199
       +
       

     

       200
       +
       }

+107

nixos/tests/taler/common/scripts.nix

···

       1
       +
       {

     

       2
       +
         lib,

     

       3
       +
         pkgs,

     

       4
       +
         nodes,

     

       5
       +
         ...

     

       6
       +
       }:

     

       7
       +
       

     

       8
       +
       let

     

       9
       +
         cfgNodes = pkgs.callPackage ./nodes.nix { inherit lib; };

     

       10
       +
         bankConfig = nodes.bank.config.environment.etc."libeufin/libeufin.conf".source;

     

       11
       +
       

     

       12
       +
         inherit (cfgNodes) CURRENCY FIAT_CURRENCY;

     

       13
       +
       in

     

       14
       +
       {

     

       15
       +
         commonScripts =

     

       16
       +
           # python

     

       17
       +
           ''

     

       18
       +
             def succeed(machine, commands):

     

       19
       +
                 """A more convenient `machine.succeed` that supports multi-line inputs"""

     

       20
       +
                 flattened_commands = [c.replace("\n", "") for c in commands] # flatten multi-line

     

       21
       +
                 return machine.succeed(" ".join(flattened_commands))

     

       22
       +
       

     

       23
       +
       

     

       24
       +
             def systemd_run(machine, cmd, user="nobody", group="nobody"):

     

       25
       +
                 """Execute command as a systemd DynamicUser"""

     

       26
       +
                 machine.log(f"Executing command (via systemd-run): \"{cmd}\"")

     

       27
       +
       

     

       28
       +
                 (status, out) = machine.execute( " ".join([

     

       29
       +
                     "systemd-run",

     

       30
       +
                     "--service-type=exec",

     

       31
       +
                     "--quiet",

     

       32
       +
                     "--wait",

     

       33
       +
                     "-E PATH=\"$PATH\"",

     

       34
       +
                     "-p StandardOutput=journal",

     

       35
       +
                     "-p StandardError=journal",

     

       36
       +
                     "-p DynamicUser=yes",

     

       37
       +
                     f"-p Group={group}" if group != "nobody" else "",

     

       38
       +
                     f"-p User={user}" if user != "nobody" else "",

     

       39
       +
                     f"$SHELL -c '{cmd}'"

     

       40
       +
                     ]) )

     

       41
       +
       

     

       42
       +
                 if status != 0:

     

       43
       +
                     raise Exception(f"systemd_run failed (status {status})")

     

       44
       +
       

     

       45
       +
                 machine.log("systemd-run finished successfully")

     

       46
       +
       

     

       47
       +
       

     

       48
       +
             def register_bank_account(username, password, name, is_exchange=False):

     

       49
       +
                 """Register Libeufin bank account for the x-taler-bank wire method"""

     

       50
       +
                 return systemd_run(bank, " ".join([

     

       51
       +
                     'libeufin-bank',

     

       52
       +
                     'create-account',

     

       53
       +
                     '-c ${bankConfig}',

     

       54
       +
                     f'--username {username}',

     

       55
       +
                     f'--password {password}',

     

       56
       +
                     f'--name {name}',

     

       57
       +
                     f'--payto_uri="payto://x-taler-bank/bank:8082/{username}?receiver-name={name}"',

     

       58
       +
                     '--exchange' if (is_exchange or username.lower()=="exchange") else ' '

     

       59
       +
                     ]),

     

       60
       +
                     user="libeufin-bank")

     

       61
       +
       

     

       62
       +
       

     

       63
       +
             def wallet_cli(command):

     

       64
       +
                 """Wrapper for the Taler CLI wallet"""

     

       65
       +
                 return client.succeed(

     

       66
       +
                     "taler-wallet-cli "

     

       67
       +
                     "--no-throttle "    # don't do any request throttling

     

       68
       +
                     + command

     

       69
       +
                 )

     

       70
       +
       

     

       71
       +
       

     

       72
       +
             def verify_balance(balanceWanted: str):

     

       73
       +
                 """Compare Taler CLI wallet balance with expected amount"""

     

       74
       +
                 balance = wallet_cli("balance --json")

     

       75
       +
                 try:

     

       76
       +
                     balanceGot = json.loads(balance)["balances"][0]["available"]

     

       77
       +
                 except:

     

       78
       +
                     balanceGot = "${CURRENCY}:0"

     

       79
       +
       

     

       80
       +
                 # Compare balance with expected value

     

       81
       +
                 if balanceGot != balanceWanted:

     

       82
       +
                     client.fail(f'echo Wanted balance: "{balanceWanted}", got: "{balanceGot}"')

     

       83
       +
                 else:

     

       84
       +
                     client.succeed(f"echo Withdraw successfully made. New balance: {balanceWanted}")

     

       85
       +
       

     

       86
       +
       

     

       87
       +
             def verify_conversion(regionalWanted: str):

     

       88
       +
                 """Compare converted Libeufin Nexus funds with expected regional currency"""

     

       89
       +
                 # Get transaction details

     

       90
       +
                 response = json.loads(

     

       91
       +
                     succeed(bank, [

     

       92
       +
                         "curl -sSfL",

     

       93
       +
                         # TODO: get exchange from config?

     

       94
       +
                         "-u exchange:exchange",

     

       95
       +
                         "http://bank:8082/accounts/exchange/transactions"

     

       96
       +
                     ])

     

       97
       +
                 )

     

       98
       +
                 amount = response["transactions"][0]["amount"].split(":") # CURRENCY:VALUE

     

       99
       +
                 currencyGot, regionalGot = amount

     

       100
       +
       

     

       101
       +
                 # Check conversion (1:1 ratio)

     

       102
       +
                 if (regionalGot != regionalWanted) or (currencyGot != "${CURRENCY}"):

     

       103
       +
                     client.fail(f'echo Wanted "${CURRENCY}:{regionalWanted}", got: "{currencyGot}:{regionalGot}"')

     

       104
       +
                 else:

     

       105
       +
                     client.succeed(f'echo Conversion successfully made: "${FIAT_CURRENCY}:{regionalWanted}" -> "{currencyGot}:{regionalGot}"')

     

       106
       +
           '';

     

       107
       +
       }

nixos/tests/taler/conf/bank-ebics-keys.json

···

       0

···

       1
       +
       {"bank_encryption_public_key":"621028HG1M30JAM6923FE381040GA003G80GY01GG80GM0M2040G1EACATA11EF5SVKNBNBYF1S3WSKQ2A2R9VZ7RW2HRX00293JPZ7VQ780RFRVYTQKKDDNJAQGBH4659GT9QYBMJCG1RKZEH1WDJ0GAAY7B7NBMW6FWXCKFYRMZQME0WBGZ1AAMY2VBQ5XAFV8216EFNF2EPG6M5ZGHG9RG6EGED56TK9JESQ02Q7AAVBRAAARVBN9NHCN64KQ3SRRHYXB8RWRK4TSSC93XG8RWMQH4ZDJSBYDCEXFY6G3AWTZ0EZNCJJAYB98T4GNFWZMN81AVYCQHXT1APX81AXCAYNK7J9XETF5CN1J1WV0BVA2BYG4VAMAW123REPN67JF1TNWPTADBMHS17N2V1GFYT8JRWX4TGM2996NXTEPMA8C2CDDE0CRY2A6HT8C5H2D6C62YGRSCF820C0G008","bank_authentication_public_key":"621028HG1M30JAM6923FE381040GA003G80GY01GG80GM0M2040G1EACATA11EF5SVKNBNBYF1S3WSKQ2A2R9VZ7RW2HRX00293JPZ7VQ780RFRVYTQKKDDNJAQGBH4659GT9QYBMJCG1RKZEH1WDJ0GAAY7B7NBMW6FWXCKFYRMZQME0WBGZ1AAMY2VBQ5XAFV8216EFNF2EPG6M5ZGHG9RG6EGED56TK9JESQ02Q7AAVBRAAARVBN9NHCN64KQ3SRRHYXB8RWRK4TSSC93XG8RWMQH4ZDJSBYDCEXFY6G3AWTZ0EZNCJJAYB98T4GNFWZMN81AVYCQHXT1APX81AXCAYNK7J9XETF5CN1J1WV0BVA2BYG4VAMAW123REPN67JF1TNWPTADBMHS17N2V1GFYT8JRWX4TGM2996NXTEPMA8C2CDDE0CRY2A6HT8C5H2D6C62YGRSCF820C0G008","accepted":true}

nixos/tests/taler/conf/client-ebics-keys.json

···

       0

···

       1
       +
       {"signature_private_key":"62109F020403038614N8CJ46YW6G20810M0090G4MRR84152080G00M2040G1G344ZCHJWVZJVC7X42WJ6H99ZM4MND4QA766HQXG24QCE3FMAZWVSDWJYRPNM0PVWB1AH39685XN11P7EEHDHW89W0XNDYB4EMYTMA771DVMQWV57NZA9C5QGAK2N7FGKE73020ENJF74N49DEQCXW78FQQNZSDPAC07Y0GNJCR53Q59Z97T14E29NRKFMFYF2CQK45TPAK8M80H8K275TG5FMW16YVTSK3YJBSJN0G7MT187QCNS6P25SJD9Q30K578H3YY30F6R852ZG904BW07PAZT29HTV5F3ZE5K86F4MAQ9H2H7C3AYG8P6SZEK60E0QWWX79M0SP2BAC0QT8310X0TDZ16298SBSD5SDFGQT6FG44BEQNES1KVW1JZYD8GSB6TQQZ3VDFE7N9SBNST820C0G0082G7ZNG0X14DZMZZNP1NY2FQCKTRWN6JJVJR8F6AF76PWSAJ2A6R4P8MAMAJATDC0HKKQ6M9JDTFXRX9J8TFPZSEWD2N3CYZP39PGJG26GE8F6EN5P367K2JX45W1GC0FJF2Q1Z131QMKMYQNKT87C8Q5WXXKZ010H6N6YD47PFHBM3KPTEJJ0MSVH9RTCCABKA5MJ7N262BPRVYD6Y4G0Q3TDNYKX62MRXB4GAGS1CEEEGMYZ6TSC2WMWTVJYJCG4ZSDM2D9GEJ5KTH2RTWSJCYHN6E807VQM3GMMZCFCQP4309H592WQE93R2Y93VWD6PDQRJEXSZJDM4F7XHB9BNGAP4S1T67971K1AJQ2PSJXC99KFF8D1JN7GH40E8ZC3W599Y0WHKSD69Q1SB0WCEQEGZ90G50C103FCEV1ZD5CXVQ4T2Q438DGWKVE1K2JVR4EAKYT9AQ7F7EQZ35J04ACC2XVXZ8DN2ZDRY70WDK36GDRGFKZ2SFPACAQ7QAYXJW4PT3VGXAXP78HD8X9T608FY92SJWEE235AAYR26FEYX9VKQ6RH7XJE9Z5QYHZDJBSNY3VJES8GW8FR0WXVVDH5NFYRNPC5H8TESBFYDQXWQW82G60G1Q8MNSTSWRPWZ9GDZ7P73RQFBKXVNFKVY5T2VH3JEW68PGR1P4MV75ZM4SHN7RTGB0BZQEMRRC9SNDTJ2NF9YCZG8DHES8AYHZKWXQN5GSJBE0MTP316PW23W2RVNJCVCS6TC28J6GGJ660JEET1T1G2YJ0R846NQRK575WT24DR2Q2PK1Q837VE2EN05KQMCD8C4SCDTTVRF4183080NT78B8YY25XM9EHV5M3B82WJY8ADA4VNX7BCNFDRHP9EWHXA0SRTEJJCNMRVW30YD1XYDRZ2VD3SEDE55A3VDTQFHPAZQ8C227RV2WN1H8WD8FSM5WTQXH4PX6R09ERRXWFY15B67JA1W0RGA77BJS5X4D7N9XDJZ8EDE1NHXHNETX71FR7FA979E6ESAE8CGK8SNDYC8Z5920M1G0JESJAYPYZREV826MBMVSMANNFTXNNXEGXJRQD27K12F8W0SNJC8B2C8W4CY9XYNXBBQG6T8TH0M8EB0HR5E36VKYB7A9H7JTPBNB7T24EV9HYX1Q38ZJ6DKABKRQGDMSDHVSHQ2Y77EZVH6KF3XNEGVBACVJ1ZPKSH2E8J963AW6K4S22N3JPMCCTYJZPQT001GCB7E91ZNW82G60G1F5TBF02RRWS5FENV7SVW0P2WXKM4KGZNP0H3T0SP1S8H2P9R5ARQYT1XB44D4C6N9DGXW0ZY9RTPDN7FV2ZZ809EKEVD0PFJNNE7QENVE3AJ9YB4CEQ30APTVY6DJBSE90MXVJ1DT7PG7P404J6A6VCCJVSSCH330X97D8E8GCJV8T3A5TMANN5CAC8M5RR22PJAMP3ZC9XVC","encryption_private_key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authentication_private_key":"62109F820403038614N8CJ46YW6G20810M0090G4MWR84153080G00M2040G1CZR41XW4ANY74SDV2B2ZEFWPR0E9RXRWFAVAXJHZBMSYXHE5F32X4PKDTVBNHVNYAQYXDXMFV9WCYZA16PKDCEWZ87FKKDH8EJP7NQZB5GK83HJ6KX3P04BD878D99QZ44EE6SYK3YJZMBEP9H1755FKR25RBH5VEYRZ9X2T2DTBV34SREH7F7A81KCC4ZWBRWP1EH179T4RH17R278A9834G2FNPAKST9HK7P878W85DW9XG9BJQ40YCDTP6DGACTKZBJ992M6BDJN69HQZ9GDHF73M2CV7C96YYH8YKMD3V3YXNR17PP0BMKAB30T7KGTDMM92XH6Z0CKA6VQSRFFA59H77GESQYT05SY4N2AGRM9468G1XYJ7M2PM3EXZAYM1GJ934PRGG965Z8KRVZEFF820C0G0082G80G05FQQ0106J3KPWETPQ35EPRCTP0K8VTBJTDZ7P6PG6CXM968G5AP2GN6640WVE6D5AB2J4RYSNTVF4X6JJWWSYDCB7JTDFK1W27T7ZMEQB2MA2K57J0S5QPN4PQAF4C19J962JV51YSFNECVDT328F8H05MJF05H76N61QX5VQ2REQ879M02B7QRQ9NH284XCWWTA5T8HSJ6BG70SCF7S0YJX8F3DQDB763X3D4RY8Y7HVPVBCR9JKJC521R2BHR12WYZ329KN38MVJ69NHJMH2BFT76TRQXY8N6ECEGVC9GWC1KCVSGKQE4XSP6ZYFFVFBNTEVR3653PMF9S9XYSJYBPKQBTF2Q4SY2D56B0Z5MN0A0R7YY1PGZN69A9RPT8H18QVQPJR1YTM1BBNTQHS6KC382G60G1R1Q8A547XJHMF7Z9BR8PC9YPKAMCRKMFNFD71MS5P8CY3TC81MYWRBVNBC7DJA7DCFXHTW3BMC0RCZ39SYY2PS29FQJQR7ZDT8H260P4X8Q8D5JYYAJFDBSY82BQY4K71V5PGYH6PS0Q79CRWWQJQ68JHESE2C829CMNXDWTCW21G9SZC6JJ32P6HSGQ1T5K8VD9B6GFPZ6XC183080SNXJNZ2MFM6GRPHEN3SHTNE9M63KWHG4EQBEPYYG7E5DH5Q4NYP19ZGJ192XV7GJFRSH14XB3DXR4GEZACKMMEMSFTFJ16NQXMYYXTRF4KY9NPYPSD3E65RMF9CDGWAGMT46RTWZE2PRSSRFS15Z0CQ0HCN5K9EG16GGE77E27DNN43XFD2G3YKYXAMDPF7CGT3K8V3T328ZE0M1G1SM8XBMTY9SWK7MXZWVR8SM5SBWDXZDC72DSYWFDBNJ5Y0D3NMVKVPRDGJ23SQM7H0JSXAY8SPBM8D5NNAKD6SRRRHN8VYSHMX2S21FB0594DRA8G8VY4D1XRR90G4VNHF06BSHWVPRCPC1R68ZPW0BGBBE3ZHWN344AD0HM7GCA3N8B0276YZHQRJ2YAZ4RKG7Q8V4VJ8Q9682G60G1F9CJZV9E4J9W42PBKY5GD66FHBYDPKAH54MQ5BX7VFXES4ZAR46BM6MRBM90FQQ7DRVXGVGER6NWJK2195XJXMKQHW7B36HGT12HK1QQFF1J7RB6QWJEEFXR2M7M4YK3CS00RRMYA5XKVNNPV2VZNBXKGJ5SCHGSN6GKDNXE0HSM2VMBKS794DGB7D4PYSEYKSB9BM57G1B4418303W3D38F61CC4RC8DNDZNH9S7N0E4AM97QVRPMY7FERHN0JM4VHD5ET49RYJVW9Y9GBREB801N4A70Z9EGCBM2WJZYSF9KXX8EVDFX37KDJ2G4MTJNR628QV206M1QJ4P4EKS04D9GB8TTQNHJCXJ1PX9PJ44WYGAPKQQP5ENN1VCJAHVXTD5BXHJZYASWZ8QZJY7V760W36ER0","submitted_ini":true,"submitted_hia":true}

+16

nixos/tests/taler/conf/exchange-account.json

···

       1
       +
       [

     

       2
       +
         {

     

       3
       +
           "operation": "exchange-enable-wire-0",

     

       4
       +
           "arguments": {

     

       5
       +
             "payto_uri": "payto://x-taler-bank/bank:8082/exchange?receiver-name=Exchange",

     

       6
       +
             "debit_restrictions": [],

     

       7
       +
             "credit_restrictions": [],

     

       8
       +
             "priority": 0,

     

       9
       +
             "validity_start": {

     

       10
       +
               "t_s": 1725886541

     

       11
       +
             },

     

       12
       +
             "master_sig_add": "68WDT3JX1S5GQ9D3RZWXQVZK9AHFZ46YY5DA993720YA3SCBR4SW3X09NH5DECTXGWBKSN0MGKE1ANA9QZ95SKSNYPS9T9G46PCJC20",

     

       13
       +
             "master_sig_wire": "39CEN9007DEXXMSDFZX1R2YYNANZYAFHX4EZC4ZX3C8DQEYT83JNVCVYMWYDGWEX6S891ZPXD6QHJE9J41YV9EN703Q0NM0MVE4FP18"

     

       14
       +
           }

     

       15
       +
         }

     

       16
       +
       ]

nixos/tests/taler/conf/private.key

···

       0

···

       1
       +
       ��'IՂ�v&�������H{VW�r��Cj�>�

+10

nixos/tests/taler/conf/taler-accounts.conf

···

       1
       +
       [exchange-account-test]

     

       2
       +
       PAYTO_URI = payto://x-taler-bank/bank:8082/exchange?receiver-name=Exchange

     

       3
       +
       ENABLE_DEBIT = YES

     

       4
       +
       ENABLE_CREDIT = YES

     

       5
       +
       

     

       6
       +
       [exchange-accountcredentials-test]

     

       7
       +
       WIRE_GATEWAY_URL = http://bank:8082/accounts/exchange/taler-wire-gateway/

     

       8
       +
       WIRE_GATEWAY_AUTH_METHOD = BASIC

     

       9
       +
       USERNAME = exchange

     

       10
       +
       PASSWORD = exchange

+95

nixos/tests/taler/conf/taler-denominations.conf

···

       1
       +
       [COIN-KUDOS-n1-t1726827661]

     

       2
       +
       VALUE = KUDOS:0.1

     

       3
       +
       DURATION_WITHDRAW = 7 days

     

       4
       +
       DURATION_SPEND = 2 years

     

       5
       +
       DURATION_LEGAL = 6 years

     

       6
       +
       FEE_WITHDRAW = KUDOS:0

     

       7
       +
       FEE_DEPOSIT = KUDOS:0

     

       8
       +
       FEE_REFRESH = KUDOS:0

     

       9
       +
       FEE_REFUND = KUDOS:0

     

       10
       +
       RSA_KEYSIZE = 2048

     

       11
       +
       CIPHER = RSA

     

       12
       +
       

     

       13
       +
       [COIN-KUDOS-n2-t1726827661]

     

       14
       +
       VALUE = KUDOS:0.2

     

       15
       +
       DURATION_WITHDRAW = 7 days

     

       16
       +
       DURATION_SPEND = 2 years

     

       17
       +
       DURATION_LEGAL = 6 years

     

       18
       +
       FEE_WITHDRAW = KUDOS:0

     

       19
       +
       FEE_DEPOSIT = KUDOS:0

     

       20
       +
       FEE_REFRESH = KUDOS:0

     

       21
       +
       FEE_REFUND = KUDOS:0

     

       22
       +
       RSA_KEYSIZE = 2048

     

       23
       +
       CIPHER = RSA

     

       24
       +
       

     

       25
       +
       [COIN-KUDOS-n3-t1726827661]

     

       26
       +
       VALUE = KUDOS:0.4

     

       27
       +
       DURATION_WITHDRAW = 7 days

     

       28
       +
       DURATION_SPEND = 2 years

     

       29
       +
       DURATION_LEGAL = 6 years

     

       30
       +
       FEE_WITHDRAW = KUDOS:0

     

       31
       +
       FEE_DEPOSIT = KUDOS:0

     

       32
       +
       FEE_REFRESH = KUDOS:0

     

       33
       +
       FEE_REFUND = KUDOS:0

     

       34
       +
       RSA_KEYSIZE = 2048

     

       35
       +
       CIPHER = RSA

     

       36
       +
       

     

       37
       +
       [COIN-KUDOS-n4-t1726827661]

     

       38
       +
       VALUE = KUDOS:0.8

     

       39
       +
       DURATION_WITHDRAW = 7 days

     

       40
       +
       DURATION_SPEND = 2 years

     

       41
       +
       DURATION_LEGAL = 6 years

     

       42
       +
       FEE_WITHDRAW = KUDOS:0

     

       43
       +
       FEE_DEPOSIT = KUDOS:0

     

       44
       +
       FEE_REFRESH = KUDOS:0

     

       45
       +
       FEE_REFUND = KUDOS:0

     

       46
       +
       RSA_KEYSIZE = 2048

     

       47
       +
       CIPHER = RSA

     

       48
       +
       

     

       49
       +
       [COIN-KUDOS-n5-t1726827661]

     

       50
       +
       VALUE = KUDOS:1.6

     

       51
       +
       DURATION_WITHDRAW = 7 days

     

       52
       +
       DURATION_SPEND = 2 years

     

       53
       +
       DURATION_LEGAL = 6 years

     

       54
       +
       FEE_WITHDRAW = KUDOS:0

     

       55
       +
       FEE_DEPOSIT = KUDOS:0

     

       56
       +
       FEE_REFRESH = KUDOS:0

     

       57
       +
       FEE_REFUND = KUDOS:0

     

       58
       +
       RSA_KEYSIZE = 2048

     

       59
       +
       CIPHER = RSA

     

       60
       +
       

     

       61
       +
       [COIN-KUDOS-n6-t1726827661]

     

       62
       +
       VALUE = KUDOS:3.2

     

       63
       +
       DURATION_WITHDRAW = 7 days

     

       64
       +
       DURATION_SPEND = 2 years

     

       65
       +
       DURATION_LEGAL = 6 years

     

       66
       +
       FEE_WITHDRAW = KUDOS:0

     

       67
       +
       FEE_DEPOSIT = KUDOS:0

     

       68
       +
       FEE_REFRESH = KUDOS:0

     

       69
       +
       FEE_REFUND = KUDOS:0

     

       70
       +
       RSA_KEYSIZE = 2048

     

       71
       +
       CIPHER = RSA

     

       72
       +
       

     

       73
       +
       [COIN-KUDOS-n7-t1726827661]

     

       74
       +
       VALUE = KUDOS:6.4

     

       75
       +
       DURATION_WITHDRAW = 7 days

     

       76
       +
       DURATION_SPEND = 2 years

     

       77
       +
       DURATION_LEGAL = 6 years

     

       78
       +
       FEE_WITHDRAW = KUDOS:0

     

       79
       +
       FEE_DEPOSIT = KUDOS:0

     

       80
       +
       FEE_REFRESH = KUDOS:0

     

       81
       +
       FEE_REFUND = KUDOS:0

     

       82
       +
       RSA_KEYSIZE = 2048

     

       83
       +
       CIPHER = RSA

     

       84
       +
       

     

       85
       +
       [COIN-KUDOS-n8-t1726827661]

     

       86
       +
       VALUE = KUDOS:12.8

     

       87
       +
       DURATION_WITHDRAW = 7 days

     

       88
       +
       DURATION_SPEND = 2 years

     

       89
       +
       DURATION_LEGAL = 6 years

     

       90
       +
       FEE_WITHDRAW = KUDOS:0

     

       91
       +
       FEE_DEPOSIT = KUDOS:0

     

       92
       +
       FEE_REFRESH = KUDOS:0

     

       93
       +
       FEE_REFUND = KUDOS:0

     

       94
       +
       RSA_KEYSIZE = 2048

     

       95
       +
       CIPHER = RSA

nixos/tests/taler/default.nix

···

       1
       +
       {

     

       2
       +
         system ? builtins.currentSystem,

     

       3
       +
         pkgs ? import ../../.. { inherit system; },

     

       4
       +
       }:

     

       5
       +
       {

     

       6
       +
         basic = import ./tests/basic.nix { inherit system pkgs; };

     

       7
       +
       }

+270

nixos/tests/taler/tests/basic.nix

···

       1
       +
       import ../../make-test-python.nix (

     

       2
       +
         { pkgs, lib, ... }:

     

       3
       +
         let

     

       4
       +
           cfgNodes = pkgs.callPackage ../common/nodes.nix { inherit lib; };

     

       5
       +
         in

     

       6
       +
         {

     

       7
       +
           # NOTE: The Nexus conversion subtest requires internet access, so to run it

     

       8
       +
           # you must run the test with:

     

       9
       +
           # - nix run .#nixosTests.taler.basic.driver

     

       10
       +
           # or interactively:

     

       11
       +
           # - nix run .#nixosTests.taler.basic.driverInteractive

     

       12
       +
           # - run_tests()

     

       13
       +
       

     

       14
       +
           name = "GNU Taler Basic Test";

     

       15
       +
           meta = {

     

       16
       +
             maintainers = lib.teams.ngi.members;

     

       17
       +
           };

     

       18
       +
       

     

       19
       +
           # Taler components virtual-machine nodes

     

       20
       +
           nodes = {

     

       21
       +
             inherit (cfgNodes.nodes)

     

       22
       +
               bank

     

       23
       +
               client

     

       24
       +
               exchange

     

       25
       +
               merchant

     

       26
       +
               ;

     

       27
       +
           };

     

       28
       +
       

     

       29
       +
           # TODO: make tests for each component?

     

       30
       +
           testScript =

     

       31
       +
             { nodes, ... }:

     

       32
       +
             let

     

       33
       +
               cfgScripts = pkgs.callPackage ../common/scripts.nix { inherit lib pkgs nodes; };

     

       34
       +
       

     

       35
       +
               inherit (cfgNodes) CURRENCY FIAT_CURRENCY;

     

       36
       +
               inherit (cfgScripts) commonScripts;

     

       37
       +
       

     

       38
       +
               bankConfig = nodes.bank.config.environment.etc."libeufin/libeufin.conf".source;

     

       39
       +
               bankSettings = nodes.bank.services.libeufin.settings.libeufin-bank;

     

       40
       +
               nexusSettings = nodes.bank.services.libeufin.nexus.settings;

     

       41
       +
       

     

       42
       +
               # Bank admin account credentials

     

       43
       +
               AUSER = "admin";

     

       44
       +
               APASS = "admin";

     

       45
       +
       

     

       46
       +
               TUSER = "testUser";

     

       47
       +
               TPASS = "testUser";

     

       48
       +
       

     

       49
       +
               exchangeAccount = ../conf/exchange-account.json;

     

       50
       +
             in

     

       51
       +
       

     

       52
       +
             # python

     

       53
       +
             ''

     

       54
       +
               import json

     

       55
       +
       

     

       56
       +
               # import common scripts

     

       57
       +
               ${commonScripts}

     

       58
       +
       

     

       59
       +
       

     

       60
       +
               # NOTE: start components up individually so they don't conflict before their setup is done

     

       61
       +
               bank.start()

     

       62
       +
               client.start()

     

       63
       +
               bank.wait_for_open_port(8082)

     

       64
       +
       

     

       65
       +
               with subtest("Set up Libeufin bank"):

     

       66
       +
                   # Modify admin account password, increase debit threshold

     

       67
       +
                   systemd_run(bank, 'libeufin-bank passwd -c "${bankConfig}" "${AUSER}" "${APASS}"', "libeufin-bank")

     

       68
       +
                   systemd_run(bank, 'libeufin-bank edit-account -c ${bankConfig} --debit_threshold="${bankSettings.CURRENCY}:1000000" ${AUSER}', "libeufin-bank")

     

       69
       +
       

     

       70
       +
                   # NOTE: the exchange is enabled before the bank starts using the `initialAccounts` option

     

       71
       +
                   # TODO: just use that option instead of this?

     

       72
       +
                   with subtest("Register bank accounts"):

     

       73
       +
                       # username, password, name

     

       74
       +
                       register_bank_account("testUser", "testUser", "User")

     

       75
       +
                       register_bank_account("merchant", "merchant", "Merchant")

     

       76
       +
       

     

       77
       +
       

     

       78
       +
               exchange.start()

     

       79
       +
               exchange.wait_for_open_port(8081)

     

       80
       +
       

     

       81
       +
       

     

       82
       +
               with subtest("Set up exchange"):

     

       83
       +
                   exchange.wait_until_succeeds("taler-exchange-offline download sign upload")

     

       84
       +
                   # Enable exchange wire account

     

       85
       +
                   exchange.succeed('taler-exchange-offline upload < ${exchangeAccount}')

     

       86
       +
       

     

       87
       +
                   # NOTE: cannot deposit coins/pay merchant if wire fees are not set up

     

       88
       +
                   exchange.succeed('taler-exchange-offline wire-fee now x-taler-bank "${CURRENCY}:0" "${CURRENCY}:0" upload')

     

       89
       +
                   exchange.succeed('taler-exchange-offline global-fee now "${CURRENCY}:0" "${CURRENCY}:0" "${CURRENCY}:0" 1h 6a 0 upload')

     

       90
       +
       

     

       91
       +
       

     

       92
       +
               # Verify that exchange keys exist

     

       93
       +
               bank.succeed("curl -s http://exchange:8081/keys")

     

       94
       +
       

     

       95
       +
       

     

       96
       +
               merchant.start()

     

       97
       +
               merchant.wait_for_open_port(8083)

     

       98
       +
       

     

       99
       +
       

     

       100
       +
               with subtest("Set up merchant"):

     

       101
       +
                   # Create default instance (similar to admin)

     

       102
       +
                   succeed(merchant, [

     

       103
       +
                       "curl -X POST",

     

       104
       +
                       "-H 'Authorization: Bearer secret-token:super_secret'",

     

       105
       +
                       """

     

       106
       +
                       --data '{

     

       107
       +
                         "auth": { "method": "external" },

     

       108
       +
                         "id": "default",

     

       109
       +
                         "name": "default",

     

       110
       +
                         "user_type": "business",

     

       111
       +
                         "address": {},

     

       112
       +
                         "jurisdiction": {},

     

       113
       +
                         "use_stefan": true,

     

       114
       +
                         "default_wire_transfer_delay": { "d_us": 3600000000 },

     

       115
       +
                         "default_pay_delay": { "d_us": 3600000000 }

     

       116
       +
                       }'

     

       117
       +
                       """,

     

       118
       +
                       "-sSfL 'http://merchant:8083/management/instances'"

     

       119
       +
                   ])

     

       120
       +
                   # Register bank account address

     

       121
       +
                   succeed(merchant, [

     

       122
       +
                       "curl -X POST",

     

       123
       +
                       "-H 'Content-Type: application/json'",

     

       124
       +
                       """

     

       125
       +
                       --data '{

     

       126
       +
                         "payto_uri": "payto://x-taler-bank/bank:8082/merchant?receiver-name=Merchant",

     

       127
       +
                         "credit_facade_url": "http://bank:8082/accounts/merchant/taler-revenue/",

     

       128
       +
                         "credit_facade_credentials":{"type":"basic","username":"merchant","password":"merchant"}

     

       129
       +
                       }'

     

       130
       +
                       """,

     

       131
       +
                       "-sSfL 'http://merchant:8083/private/accounts'"

     

       132
       +
                   ])

     

       133
       +
                   # Register a new product to be ordered

     

       134
       +
                   succeed(merchant, [

     

       135
       +
                       "curl -X POST",

     

       136
       +
                       "-H 'Content-Type: application/json'",

     

       137
       +
                       """

     

       138
       +
                       --data '{

     

       139
       +
                         "product_id": "1",

     

       140
       +
                         "description": "Product with id 1 and price 1",

     

       141
       +
                         "price": "${CURRENCY}:1",

     

       142
       +
                         "total_stock": 20,

     

       143
       +
                         "unit": "packages",

     

       144
       +
                         "next_restock": { "t_s": "never" }

     

       145
       +
                       }'

     

       146
       +
                       """,

     

       147
       +
                       "-sSfL 'http://merchant:8083/private/products'"

     

       148
       +
                   ])

     

       149
       +
       

     

       150
       +
       

     

       151
       +
               client.succeed("curl -s http://exchange:8081/")

     

       152
       +
       

     

       153
       +
       

     

       154
       +
               # Make a withdrawal from the CLI wallet

     

       155
       +
               with subtest("Make a withdrawal from the CLI wallet"):

     

       156
       +
                   balanceWanted = "${CURRENCY}:10"

     

       157
       +
       

     

       158
       +
                   # Register exchange

     

       159
       +
                   with subtest("Register exchange"):

     

       160
       +
                       wallet_cli("exchanges add http://exchange:8081/")

     

       161
       +
                       wallet_cli("exchanges accept-tos http://exchange:8081/")

     

       162
       +
       

     

       163
       +
                   # Request withdrawal from the bank

     

       164
       +
                   withdrawal = json.loads(

     

       165
       +
                       succeed(client, [

     

       166
       +
                           "curl -X POST",

     

       167
       +
                           "-u ${TUSER}:${TPASS}",

     

       168
       +
                           "-H 'Content-Type: application/json'",

     

       169
       +
                           f"""--data '{{"amount": "{balanceWanted}"}}'""", # double brackets escapes them

     

       170
       +
                           "-sSfL 'http://bank:8082/accounts/${TUSER}/withdrawals'"

     

       171
       +
                       ])

     

       172
       +
                   )

     

       173
       +
       

     

       174
       +
                   # Accept & confirm withdrawal

     

       175
       +
                   with subtest("Accept & confirm withdrawal"):

     

       176
       +
                       wallet_cli(f"withdraw accept-uri {withdrawal["taler_withdraw_uri"]} --exchange http://exchange:8081/")

     

       177
       +
                       succeed(client, [

     

       178
       +
                           "curl -X POST",

     

       179
       +
                           "-u ${TUSER}:${TPASS}",

     

       180
       +
                           "-H 'Content-Type: application/json'",

     

       181
       +
                           f"-sSfL 'http://bank:8082/accounts/${TUSER}/withdrawals/{withdrawal["withdrawal_id"]}/confirm'"

     

       182
       +
                       ])

     

       183
       +
       

     

       184
       +
                   # Process transactions

     

       185
       +
                   wallet_cli("run-until-done")

     

       186
       +
       

     

       187
       +
                   verify_balance(balanceWanted)

     

       188
       +
       

     

       189
       +
       

     

       190
       +
               with subtest("Pay for an order"):

     

       191
       +
                   balanceWanted = "${CURRENCY}:9" # after paying

     

       192
       +
       

     

       193
       +
                   # Create an order to be paid

     

       194
       +
                   response = json.loads(

     

       195
       +
                       succeed(merchant, [

     

       196
       +
                           "curl -X POST",

     

       197
       +
                           "-H 'Content-Type: application/json'",

     

       198
       +
                           """

     

       199
       +
                           --data '{

     

       200
       +
                             "order": { "amount": "${CURRENCY}:1", "summary": "Test Order" },

     

       201
       +
                             "inventory_products": [{ "product_id": "1", "quantity": 1 }]

     

       202
       +
                           }'

     

       203
       +
                           """,

     

       204
       +
                           "-sSfL 'http://merchant:8083/private/orders'"

     

       205
       +
                       ])

     

       206
       +
                   )

     

       207
       +
                   order_id = response["order_id"]

     

       208
       +
                   token = response["token"]

     

       209
       +
       

     

       210
       +
                   # Get order pay URI

     

       211
       +
                   response = json.loads(

     

       212
       +
                       succeed(merchant, [

     

       213
       +
                           "curl -sSfL",

     

       214
       +
                           f"http://merchant:8083/private/orders/{order_id}"

     

       215
       +
                       ])

     

       216
       +
                   )

     

       217
       +
                   wallet_cli("run-until-done")

     

       218
       +
       

     

       219
       +
                   # Process transaction

     

       220
       +
                   wallet_cli(f"""handle-uri -y '{response["taler_pay_uri"]}'""")

     

       221
       +
                   wallet_cli("run-until-done")

     

       222
       +
       

     

       223
       +
                   verify_balance(balanceWanted)

     

       224
       +
       

     

       225
       +
               # Only run Nexus conversion test if ebics server is available

     

       226
       +
               (status, out) = bank.execute('curl -sSfL "${nexusSettings.nexus-ebics.HOST_BASE_URL}"')

     

       227
       +
       

     

       228
       +
               if status != 0:

     

       229
       +
                   bank.log("Can't connect to ebics server. Skipping Nexus conversion subtest.")

     

       230
       +
               else:

     

       231
       +
                   with subtest("Libeufin Nexus currency conversion"):

     

       232
       +
                       regionalWanted = "20"

     

       233
       +
       

     

       234
       +
                       # Setup Nexus ebics keys

     

       235
       +
                       systemd_run(bank, "libeufin-nexus ebics-setup -L debug -c /etc/libeufin/libeufin.conf", "libeufin-nexus")

     

       236
       +
       

     

       237
       +
                       # Set currency conversion rates (1:1)

     

       238
       +
                       succeed(bank, [

     

       239
       +
                           "curl -X POST",

     

       240
       +
                           "-H 'Content-Type: application/json'",

     

       241
       +
                           "-u ${AUSER}:${APASS}",

     

       242
       +
                           """

     

       243
       +
                           --data '{

     

       244
       +
                             "cashin_ratio": "1",

     

       245
       +
                             "cashin_fee": "${CURRENCY}:0",

     

       246
       +
                             "cashin_tiny_amount": "${CURRENCY}:0.01",

     

       247
       +
                             "cashin_rounding_mode": "nearest",

     

       248
       +
                             "cashin_min_amount": "${FIAT_CURRENCY}:1",

     

       249
       +
                             "cashout_ratio": "1",

     

       250
       +
                             "cashout_fee": "${FIAT_CURRENCY}:0",

     

       251
       +
                             "cashout_tiny_amount": "${FIAT_CURRENCY}:0.01",

     

       252
       +
                             "cashout_rounding_mode": "nearest",

     

       253
       +
                             "cashout_min_amount": "${CURRENCY}:1"

     

       254
       +
                           }'

     

       255
       +
                           """,

     

       256
       +
                           "-sSfL 'http://bank:8082/conversion-info/conversion-rate'"

     

       257
       +
                       ])

     

       258
       +
       

     

       259
       +
                       # Make fake transaction (we only need reservePub)

     

       260
       +
                       response = wallet_cli("""api 'acceptManualWithdrawal' '{ "exchangeBaseUrl":"http://exchange:8081/", "amount":"${CURRENCY}:5" }'""")

     

       261
       +
                       reservePub = json.loads(response)["result"]["reservePub"]

     

       262
       +
       

     

       263
       +
                       # Convert fiat currency to regional

     

       264
       +
                       systemd_run(bank, f"""libeufin-nexus testing fake-incoming -c ${bankConfig} --amount="${FIAT_CURRENCY}:{regionalWanted}" --subject="{reservePub}" "payto://iban/CH4740123RW4167362694" """, "libeufin-nexus")

     

       265
       +
                       wallet_cli("run-until-done")

     

       266
       +
       

     

       267
       +
                       verify_conversion(regionalWanted)

     

       268
       +
             '';

     

       269
       +
         }

     

       270
       +
       )