SerenityJS integration for Sharethrift #264

anya-m-patel · 2025-11-10T19:17:47Z

Summary by Sourcery

Unify reservation request editing under a single permission, tighten domain validation around reservation and listing state transitions, and introduce SerenityJS- and Cucumber-based acceptance tests for core listing and reservation flows.

New Features:

Add SerenityJS-based acceptance test harness with actors, abilities, tasks, and questions to exercise listing creation and reservation request flows via Cucumber scenarios.
Introduce an AppealRequest union type covering user and listing appeal request entity references.

Bug Fixes:

Fix reservation request initialisation to set the initial state directly on props, avoiding incorrect state handling for newly created aggregates.

Enhancements:

Refine reservation request state transition logic into explicit guarded transition methods with centralised permission checks using a single canEditReservationRequest domain permission.
Simplify admin and personal user reservation request visas to use the consolidated edit permission and update corresponding feature files and unit tests.
Extend listing item domain permissions and visas with an explicit canReserveItemListing permission and clarify that reserved is a derived, not persisted, listing state.
Add state setter logic to ItemListing to route assignments through publish, pause, and cancel behaviours while ensuring invalid transitions raise domain errors.
Tidy appeal request repository and entity typings and formatting for listing and user appeal requests, including more precise generic parameter naming.

Build:

Add SerenityJS and Cucumber-related devDependencies to the domain package and configure the serenity test script to run cucumber-js with the shared cucumber.yaml.
Update third-party dependencies such as twilio and jsonwebtoken to newer patch versions.

Tests:

Replace fine-grained reservation request permissions in tests with a unified canEditReservationRequest flag and expand coverage for invalid transitions and close-request behaviours.
Add Cucumber feature files and step definitions for ReservationRequest and ItemListing aggregates, plus shared test fixtures for reusable personal user references.
Introduce acceptance-level features and screenplay tasks/questions to drive and verify listing creation and lifecycle scenarios through the domain.

Chores:

Broaden system passport permission spec to include reservation request permissions and remove SerenityJS-specific formatters from the Cucumber configuration.

sourcery-ai · 2025-11-10T19:17:53Z

Reviewer's Guide

Consolidates reservation request permissions into a single canEditReservationRequest flag, tightens reservation and listing state transition rules, and introduces SerenityJS/Cucumber acceptance tests and supporting fixtures for item listings and reservation requests, along with minor domain typing/formatting updates and test runner wiring.

Sequence diagram for ReservationRequest state update with unified edit permission

sequenceDiagram
  participant ClientCode
  participant ReservationRequest
  participant Visa

  ClientCode->>ReservationRequest: set state("ACCEPTED")
  activate ReservationRequest
  ReservationRequest->>ReservationRequest: state setter invoked
  alt isNew is false and target state is not REQUESTED
    ReservationRequest->>Visa: determineIf(canEditReservationRequest)
    Visa-->>ReservationRequest: boolean allowed
    alt allowed is false
      ReservationRequest-->>ClientCode: throw PermissionError
    else allowed is true
      ReservationRequest->>ReservationRequest: transitionToAccepted()
      ReservationRequest->>ReservationRequest: setStateValue("ACCEPTED")
      ReservationRequest-->>ClientCode: state updated
    end
  else isNew is true and target state is REQUESTED
    ReservationRequest->>ReservationRequest: transitionToRequested()
    ReservationRequest->>ReservationRequest: setStateValue("REQUESTED")
    ReservationRequest-->>ClientCode: state initialised
  end
  deactivate ReservationRequest

Class diagram for ReservationRequest, ItemListing, and updated visa permissions

classDiagram
  class ReservationRequestDomainPermissions {
    +boolean canEditReservationRequest
  }

  class ListingDomainPermissions {
    +boolean canCreateItemListing
    +boolean canEditItemListing
    +boolean canViewItemListing
    +boolean canPublishItemListing
    +boolean canUnpublishItemListing
    +boolean canReserveItemListing
  }

  class ReservationRequestProps {
    +string state
    +boolean closeRequestedBySharer
    +boolean closeRequestedByReserver
    +Date reservationPeriodStart
    +Date reservationPeriodEnd
  }

  class ReservationRequest {
    -ReservationRequestProps props
    -boolean isNew
    -visa
    +string get state()
    +void set state(value string)
    +boolean get closeRequestedBySharer()
    +void set closeRequestedBySharer(value boolean)
    +boolean get closeRequestedByReserver()
    +void set closeRequestedByReserver(value boolean)
    +Date get reservationPeriodStart()
    +Date get reservationPeriodEnd()
    -void ensureCanEditReservationRequest()
    -void transitionToAccepted()
    -void transitionToRejected()
    -void transitionToCancelled()
    -void transitionToClosed()
    -void transitionToRequested()
    -void setStateValue(stateValue string)
    -void ensureCanRequestClose()
  }

  class ItemListingProps {
    +string state
    +string title
    +string description
    +string category
    +string location
    +Date sharingPeriodStart
    +Date sharingPeriodEnd
    +string listingType
  }

  class ItemListing {
    -ItemListingProps props
    +string get state()
    +void set state(value string)
    +void publish()
    +void pause()
    +void cancel()
  }

  class AdminUserReservationRequestVisa {
    -admin
    -root
    +boolean determineIf(func ReservationRequestDomainPermissions) 
  }

  class PersonalUserReservationRequestVisa {
    -user
    -root
    +boolean determineIf(func ReservationRequestDomainPermissions)
  }

  class AdminUserListingItemListingVisa {
    -admin
    -root
    +boolean determineIf(func ListingDomainPermissions)
  }

  class PersonalUserListingItemListingVisa {
    -user
    -root
    +boolean determineIf(func ListingDomainPermissions)
  }

  ReservationRequest --> ReservationRequestProps
  ItemListing --> ItemListingProps

  AdminUserReservationRequestVisa ..> ReservationRequestDomainPermissions
  PersonalUserReservationRequestVisa ..> ReservationRequestDomainPermissions

  AdminUserListingItemListingVisa ..> ListingDomainPermissions
  PersonalUserListingItemListingVisa ..> ListingDomainPermissions

  ReservationRequest --> AdminUserReservationRequestVisa : uses visa
  ReservationRequest --> PersonalUserReservationRequestVisa : uses visa

  ItemListing --> AdminUserListingItemListingVisa : uses visa
  ItemListing --> PersonalUserListingItemListingVisa : uses visa

State diagram for ReservationRequest lifecycle with consolidated edit permission

stateDiagram-v2
  state "ReservationRequestLifecycle" as ReservationRequestLifecycle

  [*] --> Requested

  Requested --> Accepted: set state to ACCEPTED
  Requested --> Rejected: set state to REJECTED
  Requested --> Cancelled: set state to CANCELLED

  Rejected --> Cancelled: set state to CANCELLED

  Accepted --> Closed: set state to CLOSED

  note right of Accepted
    Closing requires closeRequestedBySharer or closeRequestedByReserver
    and canEditReservationRequest permission
  end note

  note right of Requested
    Transitions from non-initial states require canEditReservationRequest
  end note

  state Requested
  state Accepted
  state Rejected
  state Cancelled
  state Closed

State diagram for ItemListing state transitions with derived Reserved status

stateDiagram-v2
  state "ItemListingLifecycle" as ItemListingLifecycle

  [*] --> Drafted

  Drafted --> Published: publish

  Published --> Paused: pause
  Paused --> Published: publish

  Published --> Cancelled: cancel
  Paused --> Cancelled: cancel

  state Drafted
  state Published
  state Paused
  state Cancelled

File-Level Changes

Change	Details	Files
Refactor ReservationRequest aggregate to centralise permission checks and enforce valid state transitions.	Set initial reservation request state directly on props instead of via the state setter during construction. Introduce a state setter that routes to dedicated transition methods (accepted, rejected, cancelled, closed, requested) and uses a common edit-permission guard for non-initial transitions. Add ensureCanRequestClose helper reused by closeRequestedBySharer/closeRequestedByReserver setters, and remove old per-action permission helpers (accept/reject/cancel/close/request). Ensure close transitions require at least one close request flag and that REQUESTED can only be set at creation time.	`packages/sthrift/domain/src/domain/contexts/reservation-request/reservation-request/reservation-request.ts`
Replace granular reservation request permissions with a single canEditReservationRequest across visas, tests, and system passport.	Collapse canAcceptRequest/canRejectRequest/canCancelRequest/canCloseRequest into canEditReservationRequest in ReservationRequestDomainPermissions. Update admin and personal user reservation request visas to compute and expose canEditReservationRequest from existing moderation and ownership rules. Adjust reservation-request unit tests and Gherkin feature files to assert edit permission instead of specific action permissions. Extend SystemPassportBase PermissionsSpec union to include ReservationRequestDomainPermissions so system passports can carry reservation permissions.	`packages/sthrift/domain/src/domain/contexts/reservation-request/reservation-request.domain-permissions.ts` `packages/sthrift/domain/src/domain/iam/user/admin-user/contexts/admin-user.reservation-request.visa.ts` `packages/sthrift/domain/src/domain/iam/user/admin-user/contexts/admin-user.reservation-request.visa.test.ts` `packages/sthrift/domain/src/domain/iam/user/admin-user/contexts/features/admin-user.reservation-request.visa.feature` `packages/sthrift/domain/src/domain/iam/user/personal-user/contexts/personal-user.reservation-request.visa.ts` `packages/sthrift/domain/src/domain/iam/user/personal-user/contexts/personal-user.reservation-request.visa.test.ts` `packages/sthrift/domain/src/domain/iam/user/personal-user/contexts/features/personal-user.reservation-request.visa.feature` `packages/sthrift/domain/src/domain/contexts/reservation-request/reservation-request/reservation-request.test.ts` `packages/sthrift/domain/src/domain/iam/system/system.passport-base.ts`
Tighten ItemListing domain model around value objects, state transitions, and permissions.	Ensure initial listing state uses valueOf() from ListingState value objects when creating new instances. Add a state setter that delegates to publish/pause/cancel and throws on invalid target states. Remove redundant updatedAt comments and keep value-object usage consistent for core fields and images. Clarify that Reserved is derived rather than stored in ItemListingProps and add canReserveItemListing permission to listing domain permissions and visas for admin and personal users.	`packages/sthrift/domain/src/domain/contexts/listing/item/item-listing.ts` `packages/sthrift/domain/src/domain/contexts/listing/item/item-listing.entity.ts` `packages/sthrift/domain/src/domain/contexts/listing/item/item-listing.value-objects.ts` `packages/sthrift/domain/src/domain/contexts/listing/listing.domain-permissions.ts` `packages/sthrift/domain/src/domain/iam/user/admin-user/contexts/admin-user.listing.item-listing.visa.ts` `packages/sthrift/domain/src/domain/iam/user/personal-user/contexts/personal-user.listing.item-listing.visa.ts` `packages/sthrift/domain/src/domain/iam/user/personal-user/contexts/personal-user.listing.visa.ts`
Improve appeal request domain typing and introduce a shared union type for entity references.	Refine ListingAppealRequestRepository and UserAppealRequestRepository generics to use a clear PropType parameter and update return types accordingly. Apply minor formatting/whitespace cleanups to appeal request entities and aggregates. Export an AppealRequestEntityReference union covering user and listing appeal requests from the appeal-request context index.	`packages/sthrift/domain/src/domain/contexts/appeal-request/listing-appeal-request/listing-appeal-request.repository.ts` `packages/sthrift/domain/src/domain/contexts/appeal-request/user-appeal-request/user-appeal-request.repository.ts` `packages/sthrift/domain/src/domain/contexts/appeal-request/index.ts` `packages/sthrift/domain/src/domain/contexts/appeal-request/listing-appeal-request/listing-appeal-request.entity.ts` `packages/sthrift/domain/src/domain/contexts/appeal-request/listing-appeal-request/listing-appeal-request.ts` `packages/sthrift/domain/src/domain/contexts/appeal-request/user-appeal-request/user-appeal-request.entity.ts` `packages/sthrift/domain/src/domain/contexts/appeal-request/user-appeal-request/user-appeal-request.ts`
Introduce SerenityJS/Cucumber acceptance testing infrastructure and domain-focused features for listings and reservation requests.	Add SerenityJS, Cucumber, Serenity BDD libraries as dev dependencies and configure cucumber-js to use the local cucumber.yaml, trimming obsolete Serenity formatters. Create shared SerenityJS actor helper, fixtures for personal users, and abilities for creating and managing listings in-memory. Define Gherkin features and step definitions for ReservationRequest and ItemListing aggregates that exercise creation, validation, state transitions, permissions, and audit fields using SerenityJS assertions. Add higher-level create-listing domain feature plus screenplay tasks/questions to drive the GraphQL API (authenticate, create listings, query listings) for end-to-end style acceptance tests, and wire a dedicated test:serenity script.	`package.json` `packages/sthrift/domain/package.json` `packages/sthrift/domain/cucumber.yaml` `packages/sthrift/domain/tests/acceptance/features/reservation-request.feature` `packages/sthrift/domain/tests/acceptance/step-definitions/reservation-request.steps.ts` `packages/sthrift/domain/tests/acceptance/features/item-listing.feature` `packages/sthrift/domain/tests/acceptance/step-definitions/item-listing.steps.ts` `packages/sthrift/domain/tests/acceptance/features/create-listing.feature` `packages/sthrift/domain/tests/acceptance/step-definitions/create-listing.steps.ts` `packages/sthrift/domain/tests/acceptance/screenplay/actors.ts` `packages/sthrift/domain/tests/acceptance/screenplay/tasks/create-listing.ts` `packages/sthrift/domain/tests/acceptance/screenplay/tasks/authenticate.ts` `packages/sthrift/domain/tests/acceptance/screenplay/questions/listing-in-db.ts` `packages/sthrift/domain/tests/acceptance/screenplay/questions/Listings.ts` `packages/sthrift/domain/tests/acceptance/features/abilities/create-listing.ability.ts` `packages/sthrift/domain/tests/acceptance/fixtures/test-user-fixtures.ts` `packages/sthrift/domain/tests/acceptance/step-definitions/shared.steps.ts`
Miscellaneous dependency and lockfile updates.	Bump Twilio and jsonwebtoken dependency versions in API and mock-payment-server packages. Regenerate or add lockfiles to track new dependencies.	`apps/api/package.json` `packages/cellix/mock-payment-server/package.json` `pnpm-lock.yaml` `package-lock.json`

Assessment against linked issues

Issue	Objective	Addressed
#212	Integrate SerenityJS with Cucumber for the ShareThrift DDD application, including workflow/configuration and an example test structure.	✅
#212	Implement at least two SerenityJS-based BDD scenarios that cover core listing and reservation flows, aligned with BRD/SRD examples or standard BDD practices.	✅
#212	Provide and adapt SerenityJS Screenplay patterns (actors, abilities, tasks, questions) suitable for the ShareThrift domain, drawing from prior patterns such as the Owner Community repo.	✅

Possibly linked issues

#Develop SerenityJS BDD Test Approach for DDD Application: PR delivers SerenityJS+Cucumber integration, BDD features, and screenplay-based tests for listings and reservation requests as requested.

Tips and commands

Interacting with Sourcery

Trigger a new review: Comment @sourcery-ai review on the pull request.
Continue discussions: Reply directly to Sourcery's review comments.
Generate a GitHub issue from a review comment: Ask Sourcery to create an
issue from a review comment by replying to it. You can also reply to a
review comment with @sourcery-ai issue to create an issue from it.
Generate a pull request title: Write @sourcery-ai anywhere in the pull
request title to generate a title at any time. You can also comment
@sourcery-ai title on the pull request to (re-)generate the title at any time.
Generate a pull request summary: Write @sourcery-ai summary anywhere in
the pull request body to generate a PR summary at any time exactly where you
want it. You can also comment @sourcery-ai summary on the pull request to
(re-)generate the summary at any time.
Generate reviewer's guide: Comment @sourcery-ai guide on the pull
request to (re-)generate the reviewer's guide at any time.
Resolve all Sourcery comments: Comment @sourcery-ai resolve on the
pull request to resolve all Sourcery comments. Useful if you've already
addressed all the comments and don't want to see them anymore.
Dismiss all Sourcery reviews: Comment @sourcery-ai dismiss on the pull
request to dismiss all existing Sourcery reviews. Especially useful if you
want to start fresh with a new review - don't forget to comment
@sourcery-ai review to trigger a new review!

Customizing Your Experience

Access your dashboard to:

Enable or disable review features such as the Sourcery-generated pull request
summary, the reviewer's guide, and others.
Change the review language.
Add, remove or edit custom review instructions.
Adjust other review settings.

Getting Help

Contact our support team for questions or feedback.
Visit our documentation for detailed guides and information.
Keep in touch with the Sourcery team by following us on X/Twitter, LinkedIn or GitHub.

sourcery-ai

Hey there - I've reviewed your changes - here's some feedback:

Remove leftover console.log debug statements from domain entities and replace them with a proper logger or remove entirely before merging.
Standardize error handling in the domain methods by using DomainSeedwork.PermissionError for all permission and state validation failures instead of mixing generic Error.
Consider splitting the large SerenityJS test scaffolding into a separate PR to isolate domain logic changes and improve overall reviewability.

Prompt for AI Agents

Please address the comments from this code review:

## Overall Comments
- Remove leftover console.log debug statements from domain entities and replace them with a proper logger or remove entirely before merging.
- Standardize error handling in the domain methods by using DomainSeedwork.PermissionError for all permission and state validation failures instead of mixing generic Error.
- Consider splitting the large SerenityJS test scaffolding into a separate PR to isolate domain logic changes and improve overall reviewability.

## Individual Comments

### Comment 1
<location> `packages/sthrift/domain/tests/acceptance/step-definitions/item-listing.steps.ts:204-190` </location>
<code_context>
+    );
+});
+
+When('I create a new ItemListing aggregate using getNewInstance with isDraft true and empty title, description, category, and location', function () {
+    const actor = actorCalled('User');
+    const now = new Date();
+    const tomorrow = new Date();
+    tomorrow.setDate(tomorrow.getDate() + 1);
+    
+    actor.currentListing = ItemListing.getNewInstance<ItemListingProps>(
+        actor.personalUser,
+        {
</code_context>

<issue_to_address>
**suggestion (testing):** Missing test for reserving a listing.

Please add tests for reserve(): (1) reserving a published listing with permission, (2) preventing double reservation, (3) denying reservation without permission, and (4) verifying reservedBy is set.

Suggested implementation:

```typescript
});

// Test: Reserving a published listing with permission
When('I reserve a published ItemListing as an authorized user', function () {
    const actor = actorCalled('User');
    // Assume listing is published and actor has permission
    actor.currentListing.publish(actor.passport);
    actor.currentListing.reserve(actor.passport);
});

Then('the ItemListing should be reserved by me', function () {
    const actor = actorCalled('User');
    expect(actor.currentListing.reservedBy).toEqual(actor.personalUser.id);
});

// Test: Preventing double reservation
When('I try to reserve an already reserved ItemListing', function () {
    const actor = actorCalled('User');
    actor.currentListing.publish(actor.passport);
    actor.currentListing.reserve(actor.passport);
    actor.doubleReserveError = null;
    try {
        actor.currentListing.reserve(actor.passport);
    } catch (err) {
        actor.doubleReserveError = err;
    }
});

Then('I should get an error indicating the ItemListing is already reserved', function () {
    const actor = actorCalled('User');
    expect(actor.doubleReserveError).toBeDefined();
    expect(actor.doubleReserveError.message).toMatch(/already reserved/i);
});

// Test: Denying reservation without permission
When('I try to reserve a published ItemListing without permission', function () {
    const actor = actorCalled('User');
    actor.currentListing.publish(actor.passport);
    // Simulate a passport without permission
    const unauthorizedPassport = { ...actor.passport, canReserve: false };
    actor.noPermissionReserveError = null;
    try {
        actor.currentListing.reserve(unauthorizedPassport);
    } catch (err) {
        actor.noPermissionReserveError = err;
    }
});

Then('I should get an error indicating I do not have permission to reserve', function () {
    const actor = actorCalled('User');
    expect(actor.noPermissionReserveError).toBeDefined();
    expect(actor.noPermissionReserveError.message).toMatch(/permission/i);
});

// Test: Verifying reservedBy is set
Then('the reservedBy field of the ItemListing should be set to my user id', function () {
    const actor = actorCalled('User');
    expect(actor.currentListing.reservedBy).toEqual(actor.personalUser.id);
});

```

- Ensure that the `reserve` method on `ItemListing` throws appropriate errors for double reservation and permission denial.
- The passport object and permission logic may need to be adjusted to match your actual implementation.
- You may need to import or define `expect` and `actorCalled` if not already present in the file.
</issue_to_address>

### Comment 2
<location> `packages/sthrift/domain/tests/acceptance/step-definitions/item-listing.steps.ts:508-512` </location>
<code_context>
+    );
+});
+
+Then('the listing\'s images should be [{string}, {string}]', function (image1: string, image2: string) {
+    const actor = actorCalled('User');
+    const listing = actor.currentListing;
+    if (!listing) {
+        throw new Error('No listing was created');
+    }
+    actor.attemptsTo(
+        Ensure.that(listing.images, equals([image1, image2]))
+    );
</code_context>

<issue_to_address>
**suggestion (testing):** No test for reservedBy property getter.

Please add tests for the reservedBy getter to confirm it returns the correct user after reservation and null when not reserved.

```suggestion
    actor.attemptsTo(
        Ensure.that(listing.sharingPeriodStart, equals(new Date('2025-10-10'))),
        Ensure.that(listing.sharingPeriodEnd, equals(new Date('2025-12-10')))
    );
});

Then('the listing\'s reservedBy should be null', function () {
    const actor = actorCalled('User');
    const listing = actor.currentListing;
    if (!listing) {
        throw new Error('No listing was created');
    }
    actor.attemptsTo(
        Ensure.that(listing.reservedBy, equals(null))
    );
});

When('I reserve the listing as another user', function () {
    const actor = actorCalled('User');
    const otherUser = actorCalled('OtherUser').personalUser;
    const listing = actor.currentListing;
    if (!listing) {
        throw new Error('No listing was created');
    }
    listing.reserve(otherUser);
    actor.reservedByUser = otherUser;
});

Then('the listing\'s reservedBy should be the reserving user', function () {
    const actor = actorCalled('User');
    const listing = actor.currentListing;
    if (!listing) {
        throw new Error('No listing was created');
    }
    const reservedByUser = actor.reservedByUser;
    if (!reservedByUser) {
        throw new Error('No user reserved the listing');
    }
    actor.attemptsTo(
        Ensure.that(listing.reservedBy, equals(reservedByUser))
    );
});
```
</issue_to_address>

### Comment 3
<location> `packages/sthrift/domain/tests/acceptance/step-definitions/item-listing.steps.ts:159-165` </location>
<code_context>
+    };
+});
+
+Given('an ItemListing aggregate with permission to update item listing', function () {
+    const actor = actorCalled('User');
+    const passport = new SystemPassport({ canUpdateItemListing: true });
+    if (actor.currentListing) {
+        // Create a new instance with the updated passport
+        actor.currentListing = new ItemListing(actor.currentListing.getEntityReference(), passport);
+        actor.originalUpdatedAt = actor.currentListing.updatedAt;
+    }
+});
</code_context>

<issue_to_address>
**suggestion (testing):** No negative test for reserving non-published listings.

Please add tests to ensure reserve() throws an error when called on draft, expired, or blocked listings.

Suggested implementation:

```typescript
Given('an ItemListing aggregate with permission to update item listing', function () {
    const actor = actorCalled('User');
    const passport = new SystemPassport({ canUpdateItemListing: true });
    if (actor.currentListing) {
        // Create a new instance with the updated passport
        actor.currentListing = new ItemListing(actor.currentListing.getEntityReference(), passport);
        actor.originalUpdatedAt = actor.currentListing.updatedAt;
    }
});

// Negative test: reserve() throws on draft listing
Then('reserving a draft listing throws an error', function () {
    const actor = actorCalled('User');
    const passport = new SystemPassport({ canUpdateItemListing: true });
    // Create a draft listing
    const draftListing = new ItemListing({ id: 'draft-id', status: 'draft' }, passport);
    expect(() => draftListing.reserve(actor.passport)).toThrow();
});

// Negative test: reserve() throws on expired listing
Then('reserving an expired listing throws an error', function () {
    const actor = actorCalled('User');
    const passport = new SystemPassport({ canUpdateItemListing: true });
    // Create an expired listing
    const expiredListing = new ItemListing({ id: 'expired-id', status: 'expired' }, passport);
    expect(() => expiredListing.reserve(actor.passport)).toThrow();
});

// Negative test: reserve() throws on blocked listing
Then('reserving a blocked listing throws an error', function () {
    const actor = actorCalled('User');
    const passport = new SystemPassport({ canUpdateItemListing: true });
    // Create a blocked listing
    const blockedListing = new ItemListing({ id: 'blocked-id', status: 'blocked' }, passport);
    expect(() => blockedListing.reserve(actor.passport)).toThrow();
});

```

- Ensure that the ItemListing constructor and the `reserve()` method accept the parameters as shown, and that the status property is used to determine listing state.
- If your test framework uses a different assertion style, adjust `expect(...).toThrow()` accordingly.
- You may need to import or mock ItemListing and SystemPassport if not already present in the test file.
</issue_to_address>

### Comment 4
<location> `packages/sthrift/domain/tests/acceptance/step-definitions/reservation-request.steps.ts:512-527` </location>
<code_context>
+    }
+});
+
+When('I set state to {string}', function (state: string) {
+    const actor = actorCalled('User');
+    try {
+        if (actor.currentReservationRequest) {
+            const stateValue = state === 'REQUESTED' ? ReservationRequestStates.REQUESTED :
+                            state === 'ACCEPTED' ? ReservationRequestStates.ACCEPTED :
+                            state === 'REJECTED' ? ReservationRequestStates.REJECTED :
+                            state === 'CANCELLED' ? ReservationRequestStates.CANCELLED :
+                            state === 'CLOSED' ? ReservationRequestStates.CLOSED :
+                            state;
+            actor.currentReservationRequest.state = stateValue;
+        }
+    } catch (e) {
+        actor.error = e as Error;
+    }
+});
</code_context>

<issue_to_address>
**suggestion (testing):** No test for setting state to REQUESTED after creation.

Please add a test that verifies a PermissionError is raised when attempting to set the state to REQUESTED on an existing reservation.

```suggestion
When('I set state to {string}', function (state: string) {
    const actor = actorCalled('User');
    try {
        if (actor.currentReservationRequest) {
            const stateValue = state === 'REQUESTED' ? ReservationRequestStates.REQUESTED :
                            state === 'ACCEPTED' ? ReservationRequestStates.ACCEPTED :
                            state === 'REJECTED' ? ReservationRequestStates.REJECTED :
                            state === 'CANCELLED' ? ReservationRequestStates.CANCELLED :
                            state === 'CLOSED' ? ReservationRequestStates.CLOSED :
                            state;
            actor.currentReservationRequest.state = stateValue;
        }
    } catch (e) {
        actor.error = e as Error;
    }
});

// Test: Setting state to REQUESTED after creation should raise PermissionError
Then('setting state to REQUESTED on an existing reservation should raise a PermissionError', function () {
    const actor = actorCalled('User');
    let errorCaught = null;
    try {
        if (actor.currentReservationRequest) {
            actor.currentReservationRequest.state = ReservationRequestStates.REQUESTED;
        }
    } catch (e) {
        errorCaught = e;
    }
    if (!errorCaught || errorCaught.name !== 'PermissionError') {
        throw new Error('PermissionError was not raised when setting state to REQUESTED on an existing reservation');
    }
});
```
</issue_to_address>

Sourcery is free for open source - if you like our reviews please consider sharing them ✨

_{Help me be more useful! Please click 👍 or 👎 on each comment and I'll use the feedback to improve your reviews.}

packages/sthrift/domain/tests/acceptance/step-definitions/item-listing.steps.ts

packages/sthrift/domain/tests/acceptance/step-definitions/reservation-request.steps.ts

packages/sthrift/domain/src/domain/contexts/listing/item/item-listing.ts

packages/sthrift/domain/tests/acceptance/features/abilities/create-listing.ability.ts

packages/sthrift/domain/tests/acceptance/features/create-listing/create-listing.steps.ts

packages/sthrift/domain/tests/acceptance/screenplay/questions/Listings.ts

packages/sthrift/domain/tests/acceptance/screenplay/questions/listing-in-db.ts

packages/sthrift/domain/tests/acceptance/screenplay/tasks/authenticate.ts

packages/sthrift/domain/tests/acceptance/support/serenity-config.ts

packages/sthrift/domain/tests/acceptance/screenplay/actors.ts

packages/sthrift/domain/tests/acceptance/screenplay/feature-steps-helper.ts

packages/sthrift/domain/tests/acceptance/features/abilities/create-listing.ability.ts

- Updated test:serenity script to use NODE_OPTIONS='--import tsx' instead of deprecated --loader flag - Removed tsx from cucumber.yaml loader config

- Updated cucumber.yaml to use Serenity test structure - Changed paths from vitest-cucumber files to proper Serenity locations - Added @serenity-js/cucumber reporter for BDD reports - Fixed feature file path: tests/acceptance/features/**/*.feature - Fixed step definitions path: tests/acceptance/step-definitions/**/*.steps.ts - Created sample Serenity test: Create Listing feature - Feature file with BDD scenarios for creating draft listings - Step definitions using Serenity Screenplay Pattern - Integrates with existing CreateListingAbility - Tests pass: 1 scenario (1 passed), 4 steps (4 passed) - Fixed Node v22 compatibility - Uses NODE_OPTIONS='--import tsx' for ESM loader - Removed deprecated --loader flag from cucumber config

packages/sthrift/domain/tests/acceptance/step-definitions/create-listing.steps.ts

…tion or class' Co-authored-by: Copilot Autofix powered by AI <223894421+github-code-quality[bot]@users.noreply.github.com>

packages/sthrift/domain/tests/acceptance/step-definitions/create-listing.steps.ts

…tion or class' Co-authored-by: Copilot Autofix powered by AI <223894421+github-code-quality[bot]@users.noreply.github.com>

- Updated cucumber.yaml to output reports to target/site/serenity - Added HTML report output: cucumber-report.html - Added JSON report output: cucumber-report.json - Matches standard Serenity BDD directory structure - Updated package.json scripts - test:serenity now outputs to target/site/serenity - test:serenity:report reads from target directory - clean script now removes target directory - Added **/target to .gitignore - Generated reports should not be committed - Will be regenerated in CI/CD pipeline

- Added step to generate Serenity BDD HTML reports after build and test - Executes pnpm run test:serenity:report in domain package - Will fail pipeline if report generation errors out (set -euo pipefail) - Reports generated in target/site/serenity directory

- Removed async keyword from placeholder step definitions - Functions don't have await expressions so async is not needed - Fixes biome linting error in Azure DevOps build

…o fix pipeline error - Removed uuid from domain/package.json (no longer used after ItemListing refactor) - Removed tsx from knip.json ignoreDependencies

Copilot

Pull request overview

Copilot reviewed 52 out of 59 changed files in this pull request and generated 11 comments.

Files not reviewed (1)

pnpm-lock.yaml: Language not supported

Copilot · 2025-12-23T18:48:35Z

packages/sthrift/domain/cucumber.yaml

+  # Step definitions location - Serenity step definitions (not vitest-cucumber)
+  import:


The cucumber.yaml configuration references a deleted file 'tests/acceptance/support/serenity-config.ts' that was removed in this PR (as shown in packages/sthrift/domain/tests/acceptance/support/serenity.config.ts diff). However, the cucumber.yaml has been updated to remove this reference, so this appears to be correctly handled. However, verify that the Serenity configuration is now properly initialized through other means since the BeforeAll/AfterAll hooks in the deleted file are no longer present.

Suggested change

# Step definitions location - Serenity step definitions (not vitest-cucumber)

import:

# Step definitions and support hooks - Serenity step definitions (not vitest-cucumber)

import:

- tests/acceptance/support/**/*.ts

Copilot · 2025-12-23T18:48:35Z

packages/sthrift/domain/tests/acceptance/step-definitions/create-listing.steps.ts

+import { Given, When, Then, DataTable } from '@cucumber/cucumber';
+import { Ensure, equals, isTrue } from '@serenity-js/assertions';
+import type { Domain } from '@sthrift/domain';
+
+// World context to store test data
+interface TestWorld {
+	createdListing?: Domain.Contexts.Listing.ItemListing.ItemListingEntityReference;
+	listingParams?: {
+		title: string;
+		description: string;
+		category: string;
+		location: string;
+	};
+}
+
+// Store the world context
+let world: TestWorld = {};
+
+Given('I am a personal user', function () {
+	// TODO: Set up actor with CreateListingAbility
+	// This will be implemented with proper test setup (MongoDB memory server, etc.)
+	// For now, we're validating the test structure compiles correctly
+	world = {};
+});
+
+When(
+	'I create a draft listing with the following details:',
+	function (dataTable: DataTable) {
+		const rows = dataTable.rowsHash();
+
+		world.listingParams = {
+			title: rows.title,
+			description: rows.description,
+			category: rows.category,
+			location: rows.location,
+		};
+
+		// TODO: Use actor's CreateListingAbility to create listing
+		// Example (to be implemented with proper setup):
+		// const actor = actorInTheSpotlight();
+		// world.createdListing = await CreateListingAbility.as(actor).createListing({
+		//   ...world.listingParams,
+		//   sharingPeriodStart: new Date(),
+		//   sharingPeriodEnd: new Date(Date.now() + 86400000),
+		//   isDraft: true
+		// });
+	},
+);
+
+Then('the listing should be created successfully', function () {
+	// TODO: Verify listing was created
+	// await actorInTheSpotlight().attemptsTo(
+	//   Ensure.that(world.createdListing, isDefined())
+	// );
+});
+
+Then('the listing should be in draft state', function () {
+	// TODO: Verify listing state
+	// await actorInTheSpotlight().attemptsTo(
+	//   Ensure.that(world.createdListing?.state, equals('DRAFT'))
+	// );
+});


The step definition file creates a draft listing but the test implementation is incomplete with TODO comments. All the actual test logic is commented out or contains placeholder TODOs. This means the acceptance tests won't actually verify the domain behavior. Either complete the implementation or mark these scenarios as @wip (work in progress) in the feature file so they're skipped during test runs.

Copilot · 2025-12-23T18:48:36Z

...ft/domain/src/domain/contexts/reservation-request/reservation-request/reservation-request.ts

+
 	set state(value: string) {
-		switch (value) {
+		const stateValue = value.valueOf ? value.valueOf() : value;


The ReservationRequest state setter has a potential issue at line 70. The code uses 'value.valueOf ? value.valueOf() : value' to handle both string and object values. However, this pattern may not correctly handle all edge cases. If value is already a string, calling valueOf() on it will return the string itself, making the ternary unnecessary. Consider simplifying to just use the value directly or explicitly checking the type with typeof.

Suggested change

const stateValue = value.valueOf ? value.valueOf() : value;

const stateValue = typeof value === 'string' ? value : String(value);

Copilot · 2025-12-23T18:48:36Z

packages/sthrift/domain/src/domain/contexts/listing/item/item-listing.entity.ts


 export interface ItemListingEntityReference
-	extends Readonly<Omit<ItemListingProps, 'sharer'>> {
+	extends Readonly<Omit<ItemListingProps, 'sharer' | 'loadSharer'>> {


The loadSharer method is added to the ItemListingEntityReference interface but removed from the Omit type. However, there's an inconsistency: the interface now declares loadSharer() as a method that must be implemented, but it's not clear if the actual ItemListing class implements this method or if it's only part of the entity reference contract. Verify that all implementations of ItemListingEntityReference properly implement the loadSharer method.

Suggested change

extends Readonly<Omit<ItemListingProps, 'sharer' | 'loadSharer'>> {

extends Readonly<Omit<ItemListingProps, 'sharer'>> {

Copilot · 2025-12-23T18:48:36Z

packages/sthrift/persistence/src/datasources/domain/listing/item/item-listing.repository.ts

+			adapter,
+			this.passport,
+			sharer,
+			fields.title,
+			fields.description,
+			fields.category,
+			fields.location,
+			fields.sharingPeriodStart,
+			fields.sharingPeriodEnd,
+			fields.images,
+			fields.isDraft,
+		);


The getNewInstance method for ItemListing is called with passport as the third parameter, but in the new signature it should be the second parameter (after newProps). The parameters appear to be: newProps, passport, sharer, title, description, etc. However, in the repository the call shows passport being passed after the field parameters. Verify the parameter order matches the method signature to avoid runtime errors.

Copilot · 2025-12-23T18:48:37Z

packages/sthrift/domain/src/domain/contexts/listing/item/item-listing.ts

+		title: string,
+		description: string,
+		category: string,
+		location: string,
+		sharingPeriodStart: Date,
+		sharingPeriodEnd: Date,
+		images?: string[],
+		isDraft?: boolean,
+		expiresAt?: Date,


The ItemListing.getNewInstance factory method's parameters have been changed from an object with named fields to individual positional parameters. This is a breaking API change that makes the method call harder to read and maintain, especially with 9 parameters where some are optional. Consider reverting to the object parameter approach or using a builder pattern for better maintainability and readability.

Copilot · 2025-12-23T18:48:37Z

...ft/domain/src/domain/contexts/reservation-request/reservation-request/reservation-request.ts

+	private transitionToAccepted(): void {
+		if (this.props.state !== ReservationRequestStates.REQUESTED) {
+			throw new DomainSeedwork.PermissionError(
+				'Can only accept requested reservations',
+			);
+		}
+		this.setStateValue(ReservationRequestStates.ACCEPTED);


The transitionToAccepted method enforces that transitions to ACCEPTED can only occur from REQUESTED state (line 121-125). However, during initialization when isNew is true, the state setter bypasses the ensureCanEditReservationRequest check but still calls transitionToAccepted which checks the current props.state. If a reservation is created directly with ACCEPTED state via getNewInstance, this validation will fail unless props.state is already REQUESTED. This creates inconsistency in initialization logic. Consider either allowing ACCEPTED during initialization or ensuring tests don't bypass this validation.

Copilot · 2025-12-23T18:48:37Z

packages/sthrift/domain/src/domain/contexts/listing/item/item-listing.ts

+				'Cannot set state directly. Use domain methods (publish(), pause(), cancel(), reinstate()) to change state.',
+			);
+		}
+		this.props.state = new ValueObjects.ListingState(value).valueOf();
 	}

+	// Note: State is read-only after creation; the state setter only works during creation.
+	// Use domain methods (publish(), pause(), cancel(), reinstate()) to change state so that
+	// permission checks and state transition validations are always enforced.


The state setter now throws an error for any state assignment after creation, requiring the use of domain methods like publish(), pause(), cancel(), or reinstate(). However, there's no reinstate() method call visible in the diff where it's being set. Additionally, the error message suggests using reinstate() but this method may not cover all valid state transitions. Ensure that all necessary state transition methods are implemented and that the error message accurately reflects available options.

Suggested change

'Cannot set state directly. Use domain methods (publish(), pause(), cancel(), reinstate()) to change state.',

);

}

this.props.state = new ValueObjects.ListingState(value).valueOf();

}

// Note: State is read-only after creation; the state setter only works during creation.

// Use domain methods (publish(), pause(), cancel(), reinstate()) to change state so that

// permission checks and state transition validations are always enforced.

'Cannot set state directly. Use the appropriate domain methods (for example, publish(), pause(), or cancel()) to change state.',

);

}

this.props.state = new ValueObjects.ListingState(value).valueOf();

}

// Note: State is read-only after creation; the state setter only works during creation.

// Use the appropriate domain methods (for example, publish(), pause(), or cancel()) to change

// state so that permission checks and state transition validations are always enforced.

Copilot · 2025-12-23T18:48:37Z

...ources/domain/reservation-request/reservation-request/reservation-request.repository.test.ts

+            When('I call getNewInstance with state "PENDING", a valid listing, and the invalid reserver', async () => {
+                listing = vi.mocked({
+                    id: createValidObjectId('listing-1'),
+                } as unknown as Domain.Contexts.Listing.ItemListing.ItemListingEntityReference);				try {


Line 409 contains misaligned code where the closing brace and try statement appear on the same line after significant whitespace. This appears to be a formatting error that should be corrected for code readability.

Copilot · 2025-12-23T18:48:38Z

packages/sthrift/domain/tests/acceptance/step-definitions/create-listing.steps.ts

@@ -0,0 +1,62 @@
+import { Given, When, Then, DataTable } from '@cucumber/cucumber';
+import { Ensure, equals, isTrue } from '@serenity-js/assertions';


Unused imports Ensure, equals, isTrue.

… it from root - Added test:serenity:report turbo task to root package.json - Configured turbo.json with test:serenity:report task definition - Updated pipeline to run pnpm run test:serenity:report from root (no cd required)

…messages

- Resolved conflict in personal-user.reservation-request.visa.test.ts - Kept canEditReservationRequest test (matches current permissions interface) - Removed invalid canCloseRequest test (permission doesn't exist yet)

- Changed cucumber.js to cucumber.yaml in inputs (matches actual config file) - Updated test:serenity outputs from test-results/** to target/site/serenity/** - Made test:serenity:report inputs consistent with test:serenity (watches src, tests, cucumber.yaml) - Both tasks now consistently output to target/site/serenity/** - Turbo will invalidate cache when source, tests, or cucumber config changes Verified both tasks work correctly: - test:serenity generates cucumber-report.json and cucumber-report.html - test:serenity:report generates full Serenity BDD HTML report from the JSON

… visa test - Removed 'Reservation visa evaluates reserver close permission' scenario - The scenario referenced non-existent canCloseReservationRequest permission - Fixes ScenarioNotCalledError that was failing CI build - All 3030 tests now pass

- Remove leftover screenplay directory from reverted Serenity implementation - Fix lint warnings in create-listing.steps.ts (arrow functions, unused imports) - Update prebuild script to run clean before lint to avoid linting generated files - Build now passes consistently even after running Serenity reports

Copilot

Pull request overview

Copilot reviewed 45 out of 53 changed files in this pull request and generated 7 comments.

Files not reviewed (1)

pnpm-lock.yaml: Language not supported

packages/sthrift/domain/package.json

build-pipeline/core/monorepo-build-stage.yml

Copilot · 2026-01-02T14:24:58Z

...ft/domain/src/domain/contexts/reservation-request/reservation-request/reservation-request.ts

+	private ensureCanEditReservationRequest(): void {
+		if (!this.isNew && !this.visa.determineIf(
+			(domainPermissions) => domainPermissions.canEditReservationRequest,
+		)) {
+			throw new DomainSeedwork.PermissionError(
+				'You do not have permission to update this reservation request',
+			);
+		}
+	}


The ensureCanEditReservationRequest method checks !this.isNew twice: once in the condition and once inside the condition block. The inner check is redundant since it's already verified by the outer condition.

packages/cellix/mock-oauth2-server/src/index.ts

turbo.json

Copilot · 2026-01-02T14:24:59Z

sonar-project.properties

+# Exclude test files and generated code
+# Exclude domain value objects and adapters - architectural duplication between layers is by design
+# Exclude seed data files - intentionally repetitive test data
+sonar.cpd.exclusions=**/*.test.ts,**/generated.tsx,**/*-permissions.ts,**/*.domain-adapter.ts,**/*.helpers.ts,**/seed/**/*.ts,**/mock-*/src/**/*.ts


The comment explaining CPD exclusions has been updated but the actual exclusion pattern now includes **/.helpers.ts and /seed//.ts. These patterns are very broad and may exclude helper files and seed data that should still be checked for code duplication. Consider being more specific about which helpers and seed files genuinely have architectural duplication by design versus those that might have accidental duplication.

Copilot · 2026-01-02T14:24:59Z

packages/sthrift/domain/tests/acceptance/step-definitions/create-listing.steps.ts

+When(
+	'I create a draft listing with the following details:',
+	(dataTable: DataTable) => {
+		const rows = dataTable.rowsHash();
+
+		world.listingParams = {
+			title: rows.title,
+			description: rows.description,
+			category: rows.category,
+			location: rows.location,
+		};
+
+		// TODO: Use actor's CreateListingAbility to create listing
+		// Example (to be implemented with proper setup):
+		// const actor = actorInTheSpotlight();
+		// world.createdListing = await CreateListingAbility.as(actor).createListing({
+		//   ...world.listingParams,
+		//   sharingPeriodStart: new Date(),
+		//   sharingPeriodEnd: new Date(Date.now() + 86400000),
+		//   isDraft: true
+		// });
+	},
+);
+
+Then('the listing should be created successfully', () => {
+	// TODO: Verify listing was created
+	// await actorInTheSpotlight().attemptsTo(
+	//   Ensure.that(world.createdListing, isDefined())
+	// );
+});
+
+Then('the listing should be in draft state', () => {
+	// TODO: Verify listing state
+	// await actorInTheSpotlight().attemptsTo(
+	//   Ensure.that(world.createdListing?.state, equals('DRAFT'))
+	// );
+});


The step definition functions are not async but the commented-out example code shows they should be async when implemented. The When and Then step definitions should be declared as async functions to support the eventual await calls.

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

- Fix inconsistent indentation on lines 190-200 inside /token endpoint handler - Credentials assignment block now uses proper two-tab indentation - Aligns with surrounding code structure inside the endpoint scope

- Remove redundant inputs (src/**, tests/**, cucumber.yaml) - Only track actual input: cucumber-report.json from test:serenity - Improves cache invalidation precision since dependsOn already handles source changes

SerenityJS integration for Sharethrift

ccb1a42

anya-m-patel requested a review from kishor-gupta November 10, 2025 19:17

anya-m-patel self-assigned this Nov 10, 2025

sourcery-ai bot reviewed Nov 10, 2025

View reviewed changes

kishor-gupta reviewed Nov 11, 2025

View reviewed changes

packages/sthrift/domain/src/domain/contexts/listing/item/item-listing.ts Outdated Show resolved Hide resolved

kishor-gupta reviewed Nov 11, 2025

View reviewed changes

packages/sthrift/domain/src/domain/contexts/listing/item/item-listing.ts Outdated Show resolved Hide resolved

kishor-gupta reviewed Nov 11, 2025

View reviewed changes

packages/sthrift/domain/src/domain/contexts/listing/item/item-listing.ts Outdated Show resolved Hide resolved

kishor-gupta reviewed Nov 11, 2025

View reviewed changes

packages/sthrift/domain/tests/acceptance/features/abilities/create-listing.ability.ts Outdated Show resolved Hide resolved

kishor-gupta reviewed Nov 11, 2025

View reviewed changes

packages/sthrift/domain/tests/acceptance/features/create-listing/create-listing.steps.ts Outdated Show resolved Hide resolved