topcoder-platform
diff --git a/‎.env‎
Lines changed: 17 additions & 2 deletions b/‎.env‎
Lines changed: 17 additions & 2 deletions
diff --git a/‎.env.example‎
Lines changed: 17 additions & 2 deletions b/‎.env.example‎
Lines changed: 17 additions & 2 deletions
diff --git a/‎README.md‎
Lines changed: 12 additions & 3 deletions b/‎README.md‎
Lines changed: 12 additions & 3 deletions
diff --git a/‎docker-compose.yml‎
Lines changed: 0 additions & 2 deletions b/‎docker-compose.yml‎
Lines changed: 0 additions & 2 deletions
diff --git a/‎src/auth/auth0.module.ts‎
Lines changed: 10 additions & 0 deletions b/‎src/auth/auth0.module.ts‎
Lines changed: 10 additions & 0 deletions
diff --git a/‎src/auth/auth0.service.ts‎
Lines changed: 100 additions & 0 deletions b/‎src/auth/auth0.service.ts‎
Lines changed: 100 additions & 0 deletions
diff --git a/‎src/autopilot/interfaces/autopilot.interface.ts‎
Lines changed: 1 addition & 0 deletions b/‎src/autopilot/interfaces/autopilot.interface.ts‎
Lines changed: 1 addition & 0 deletions
@@ -43,13 +43,28 @@ SCHEMA_REGISTRY_PASSWORD=
 # -------------------------------------
 # The base URL for the Topcoder Challenge API v6
 CHALLENGE_API_URL=https://api.topcoder-dev.com/v6
-# A valid M2M token for authenticating with the Challenge API
-CHALLENGE_API_M2M_TOKEN='your_m2m_token_here'
+# Removed static M2M token - now using Auth0 service
 # The number of retry attempts for failed Challenge API calls
 CHALLENGE_API_RETRY_ATTEMPTS=3
 # The initial delay (in ms) for the first retry attempt
 CHALLENGE_API_RETRY_DELAY=1000
 
+# -------------------------------------
+# Auth0 Configuration
+# -------------------------------------
+# The Auth0 URL for token generation (full OAuth endpoint)
+AUTH0_URL=<your-auth0-url>
+# Client ID for M2M application
+AUTH0_CLIENT_ID=<your-auth0-client-id>
+# Client secret for M2M application
+AUTH0_CLIENT_SECRET=<your-auth0-client-secret>
+# The Auth0 domain
+AUTH0_DOMAIN=<your-auth0-domain>
+# The audience/API identifier for the Challenge API
+AUTH0_AUDIENCE=<your-auth0-audience>
+# Auth0 proxy server URL (optional)
+AUTH0_PROXY_SEREVR_URL=
+
 # -------------------------------------
 # Sync Service Configuration
 # -------------------------------------
 
@@ -43,13 +43,28 @@ SCHEMA_REGISTRY_PASSWORD=
 # -------------------------------------
 # The base URL for the Topcoder Challenge API v6
 CHALLENGE_API_URL=https://api.topcoder-dev.com/v6
-# A valid M2M token for authenticating with the Challenge API
-CHALLENGE_API_M2M_TOKEN='your_m2m_token_here'
+# Removed static M2M token - now using Auth0 service
 # The number of retry attempts for failed Challenge API calls
 CHALLENGE_API_RETRY_ATTEMPTS=3
 # The initial delay (in ms) for the first retry attempt
 CHALLENGE_API_RETRY_DELAY=1000
 
+# -------------------------------------
+# Auth0 Configuration
+# -------------------------------------
+# The Auth0 URL for token generation (full OAuth endpoint)
+AUTH0_URL=<your-auth0-url>
+# Client ID for M2M application
+AUTH0_CLIENT_ID=<your-auth0-client-id>
+# Client secret for M2M application
+AUTH0_CLIENT_SECRET=<your-auth0-client-secret>
+# The Auth0 domain
+AUTH0_DOMAIN=<your-auth0-domain>
+# The audience/API identifier for the Challenge API
+AUTH0_AUDIENCE=<your-auth0-audience>
+# Auth0 proxy server URL (optional)
+AUTH0_PROXY_SEREVR_URL=
+
 # -------------------------------------
 # Sync Service Configuration
 # -------------------------------------
 
@@ -31,7 +31,7 @@ Create a `.env` file in the root directory:
 cp .env.example .env
 ```
 
-Open the `.env` file and configure the variables for your environment. It is crucial to set a valid `CHALLENGE_API_M2M_TOKEN`.
+Open the `.env` file and configure the variables for your environment. It is crucial to set valid Auth0 credentials.
 
    ```plaintext
    # -------------------------------------
@@ -57,10 +57,19 @@ Open the `.env` file and configure the variables for your environment. It is cru
    # Challenge API Configuration
    # -------------------------------------
    CHALLENGE_API_URL=https://api.topcoder-dev.com/v6
-   CHALLENGE_API_M2M_TOKEN='your_m2m_token_here' # <-- IMPORTANT: REPLACE THIS
    CHALLENGE_API_RETRY_ATTEMPTS=3
    CHALLENGE_API_RETRY_DELAY=1000
 
+   # -------------------------------------
+   # Auth0 Configuration
+   # -------------------------------------
+   AUTH0_URL=<your-auth0-url> # <-- IMPORTANT: REPLACE THIS
+   AUTH0_CLIENT_ID=<your-auth0-client-id> # <-- IMPORTANT: REPLACE THIS
+   AUTH0_CLIENT_SECRET=<your-auth0-client-secret> # <-- IMPORTANT: REPLACE THIS
+   AUTH0_DOMAIN=<your-auth0-domain> # <-- IMPORTANT: REPLACE THIS
+   AUTH0_AUDIENCE=<your-auth0-audience> # <-- IMPORTANT: REPLACE THIS
+   AUTH0_PROXY_SEREVR_URL=
+
    # -------------------------------------
    # Sync Service Configuration
    # -------------------------------------
@@ -218,4 +227,4 @@ For more detailed technical information, please see the documents in the `docs/`
    docker compose up -d
    ```
 
-- **API Authentication Errors**: Ensure `CHALLENGE_API_M2M_TOKEN` in your `.env` file is valid and not expired.
+- **API Authentication Errors**: Ensure Auth0 credentials (`AUTH0_URL`, `AUTH0_CLIENT_ID`, `AUTH0_CLIENT_SECRET`, `AUTH0_AUDIENCE`) in your `.env` file are valid and not expired.
@@ -1,5 +1,3 @@
-version: '3.8'
-
 services:
   zookeeper:
     image: confluentinc/cp-zookeeper:7.4.0
 
@@ -0,0 +1,10 @@
+import { Module } from '@nestjs/common';
+import { HttpModule } from '@nestjs/axios';
+import { Auth0Service } from './auth0.service';
+
+@Module({
+  imports: [HttpModule],
+  providers: [Auth0Service],
+  exports: [Auth0Service],
+})
+export class Auth0Module {}
@@ -0,0 +1,100 @@
+import { Injectable, Logger } from '@nestjs/common';
+import { ConfigService } from '@nestjs/config';
+import { HttpService } from '@nestjs/axios';
+import { firstValueFrom } from 'rxjs';
+
+interface Auth0TokenResponse {
+  access_token: string;
+  token_type: string;
+  expires_in: number;
+}
+
+interface Auth0TokenCache {
+  token: string;
+  expiresAt: number;
+}
+
+@Injectable()
+export class Auth0Service {
+  private readonly logger = new Logger(Auth0Service.name);
+  private readonly auth0Url: string;
+  private readonly clientId: string;
+  private readonly clientSecret: string;
+  private readonly audience: string;
+  private tokenCache: Auth0TokenCache | null = null;
+
+  constructor(
+    private readonly httpService: HttpService,
+    private readonly configService: ConfigService,
+  ) {
+    this.auth0Url = this.configService.get<string>('auth0.url') || '';
+    this.clientId = this.configService.get<string>('auth0.clientId') || '';
+    this.clientSecret =
+      this.configService.get<string>('auth0.clientSecret') || '';
+    this.audience = this.configService.get<string>('auth0.audience') || '';
+
+    if (
+      !this.auth0Url ||
+      !this.clientId ||
+      !this.clientSecret ||
+      !this.audience
+    ) {
+      this.logger.error(
+        'Missing required Auth0 configuration. Please check AUTH0_URL, AUTH0_CLIENT_ID, AUTH0_CLIENT_SECRET, and AUTH0_AUDIENCE environment variables.',
+      );
+    }
+  }
+
+  async getAccessToken(): Promise<string> {
+    // Check if we have a valid cached token
+    if (this.tokenCache && Date.now() < this.tokenCache.expiresAt) {
+      this.logger.debug('Using cached Auth0 token');
+      return this.tokenCache.token;
+    }
+
+    try {
+      this.logger.log('Requesting new Auth0 M2M token');
+
+      const tokenUrl = this.auth0Url; // Use the full URL from config
+      const body = {
+        client_id: this.clientId,
+        client_secret: this.clientSecret,
+        audience: this.audience,
+        grant_type: 'client_credentials',
+      };
+
+      const response = await firstValueFrom(
+        this.httpService.post<Auth0TokenResponse>(tokenUrl, body, {
+          headers: {
+            'Content-Type': 'application/json',
+          },
+          timeout: 10000,
+        }),
+      );
+
+      const { access_token, expires_in } = response.data;
+
+      // Cache the token with a buffer (subtract 60 seconds to ensure we refresh before expiry)
+      const expiresAt = Date.now() + (expires_in - 60) * 1000;
+      this.tokenCache = {
+        token: access_token,
+        expiresAt,
+      };
+
+      this.logger.log('Successfully obtained new Auth0 M2M token');
+      return access_token;
+    } catch (error) {
+      const err = error as Error;
+      this.logger.error(
+        `Failed to obtain Auth0 M2M token: ${err.message}`,
+        err.stack,
+      );
+      throw new Error('Failed to obtain Auth0 access token');
+    }
+  }
+
+  clearTokenCache(): void {
+    this.logger.log('Clearing Auth0 token cache');
+    this.tokenCache = null;
+  }
+}
@@ -33,6 +33,7 @@ export interface CommandPayload {
   command: string;
   operator: string;
   projectId?: number;
+  challengeId?: string; // Added challengeId for new command handling
   date?: string;
   phaseId?: string; // Changed from number to string
 }
Original file line number	Diff line number	Diff line change
`@@ -1,5 +1,3 @@`
`1`		`-version: '3.8'`
`2`		`-`
`3`	`1`	`services:`
`4`	`2`	`zookeeper:`
`5`	`3`	`image: confluentinc/cp-zookeeper:7.4.0`
Original file line number	Diff line number	Diff line change
`@@ -33,6 +33,7 @@ export interface CommandPayload {`
`33`	`33`	`command: string;`
`34`	`34`	`operator: string;`
`35`	`35`	`projectId?: number;`
	`36`	`+ challengeId?: string; // Added challengeId for new command handling`
`36`	`37`	`date?: string;`
`37`	`38`	`phaseId?: string; // Changed from number to string`
`38`	`39`	`}`