[GraphQl][GiftMessage] Add functionality for getting message for order item

[Usik2203]

Description (*)

Now we use customerOrders query for getting GiftMessage of order

But this query is DEPRECATED @deprecated(reason: "Use orders from customer instead")

1.

Using correct query we are getting issue

2.

*Using this query we can't get GiftMessage of order items

{
  customer {
   orders(filter:{number:{eq:"000000234"}}){
    total_count
    items
    {
      id
      number
      status
      order_date
      items {
        product_sku
        gift_message {
          from
          to 
          message
        }
      }
      gift_message {
        from
        to
        message
      }
    }
   }
 }
}

Actual result

This PR fixes first issue and add functionality to get GiftMessage for Order Items

Fixed Issues (if relevant)

1. Fixes magento/magento2#<issue_number>

Manual testing scenarios (*)

1. ...
2. ...

Questions or comments

Contribution checklist (*)

• Pull request has a meaningful description of its purpose
• All commits are accompanied by meaningful commit messages
• All new or changed code is covered with unit/integration tests (if applicable)
• All automated tests passed successfully (all builds are green)

Resolved issues:

1. resolves [Issue] [GraphQl][GiftMessage] Add functionality for getting message for order item  #29418: [GraphQl][GiftMessage] Add functionality for getting message for order item

[m2-assistant]

Hi @Usik2203. Thank you for your contribution
Here is some useful tips how you can test your changes using Magento test environment.
Add the comment under your pull request to deploy test or vanilla Magento instance:

• @magento give me test instance - deploy test instance based on PR changes
• @magento give me 2.4-develop instance - deploy vanilla Magento instance

❗ Automated tests can be triggered manually with an appropriate comment:

• @magento run all tests - run or re-run all required tests against the PR changes
• @magento run <test-build(s)> - run or re-run specific test build(s)
  For example: @magento run Unit Tests

<test-build(s)> is a comma-separated list of build names. Allowed build names are:

1. Database Compare
2. Functional Tests CE
3. Functional Tests EE,
4. Functional Tests B2B
5. Integration Tests
6. Magento Health Index
7. Sample Data Tests CE
8. Sample Data Tests EE
9. Sample Data Tests B2B
10. Static Tests
11. Unit Tests
12. WebAPI Tests

You can find more information about the builds here

ℹ️ Please run only needed test builds instead of all when developing. Please run all test builds before sending your PR for review.

For more details, please, review the Magento Contributor Guide documentation.

⚠️ According to the Magento Contribution requirements, all Pull Requests must go through the Community Contributions Triage process. Community Contributions Triage is a public meeting.

🕙 You can find the schedule on the Magento Community Calendar page.

📞 The triage of Pull Requests happens in the queue order. If you want to speed up the delivery of your contribution, please join the Community Contributions Triage session to discuss the appropriate ticket.

🎥 You can find the recording of the previous Community Contributions Triage on the Magento Youtube Channel

✏️ Feel free to post questions/proposals/feedback related to the Community Contributions Triage process to the corresponding Slack Channel

[Usik2203]

@magento create issue

[Usik2203]

@magento run all tests

[Usik2203]

@magento run all tests

[rvitaliy]

i think that we must be more careful with values provided from FE.

<?php

declare(strict_types=1);

echo "\nit's wrong (string)`1 hi all!` !== (int)`1`\n";
$a = base64_encode('1 hi all!');
var_dump((int)base64_decode($a));


echo "\nit's wrong (string)`1 hi all!` !== (int)`1`\n";
var_dump((int) '1 hi all!');

https://3v4l.org/dAvUu

[Usik2203]

Hi @rvitaliy
I am sorry but I am not sure that i understand your remark.
Yes, I understood problem which you provided in example but i can't get how it is related with this case in the code.
Perhaps you could explain your point ?
Thanks

[cpartica]

he means if we trust that $value['id'] is a trusted value
and he explained a way to exploit such a value and how it can be misleading using base64_decode

if you wouldn't add this empty line we would of not seen this :)
we actually have a safer way to do this \Magento\Framework\GraphQl\Query\Uid::decode
you can use it if you want, but it's not really the purpose of this PR

[rogyar]

I just want to double-check we really need this part. If we calling isMessageAllowed with type = "items", the second invocation (with type = "item") will be performed eventually. See the following implementation

magento2/app/code/Magento/GiftMessage/Helper/Message.php

Line 162 in 30b1cc5

if ($this->isMessagesAllowed($_type, $item, $store)) {

Please, correct me if I'm wrong

[Usik2203]

Hi @rogyar
isMessageAllowed with type = "item" need for checking isMessageAllowed on product level because we can have situation where GiftMessages are enable in configs but disable for some products
Thanks

[magento-engcom-team]

Hi @sidolov, thank you for the review.
ENGCOM-8059 has been created to process this Pull Request

[ishakhsuvarov]

Hi @Usik2203

Is there any chance you could take a look and resolve the merge conflict with the leatest 2.4-develop branch? I have tried getting this processedc and delivered but now I'm getting red builds all over the place.

Thank you

[engcom-Charlie]

@magento run all tests

[magento-automated-testing]

The requested builds are added to the queue. You should be able to see them here within a few minutes. Please re-request them if they don't show in a reasonable amount of time.

[engcom-Charlie]

@magento run Functional Tests B2B, Functional Tests EE, Integration Tests, Static Tests, Unit Tests , WebAPI Tests

[magento-automated-testing]

The requested builds are added to the queue. You should be able to see them here within a few minutes. Please re-request them if they don't show in a reasonable amount of time.

[engcom-Charlie]

@magento run all tests

[magento-automated-testing]

The requested builds are added to the queue. You should be able to see them here within a few minutes. Please re-request them if they don't show in a reasonable amount of time.

[engcom-Charlie]

@magento run Functional Tests B2B, Functional Tests EE, Integration Tests, Static Tests

[magento-automated-testing]

The requested builds are added to the queue. You should be able to see them here within a few minutes. Please re-request them if they don't show in a reasonable amount of time.

[engcom-Charlie]

@magento run all tests

[magento-automated-testing]

The requested builds are added to the queue. You should be able to see them here within a few minutes. Please re-request them if they don't show in a reasonable amount of time.

[engcom-Charlie]

Hi @ishakhsuvarov,

I have resolved the merge conflicts. Also fixed all the build failures.

The functional b2b failures are not part of this PR, or not even failing because of this PR's changes. Hence moving this PR to Merge in Progress now.

Thank you!

[engcom-Charlie]

@magento run Functional Tests B2B, Unit Tests

[magento-automated-testing]

The requested builds are added to the queue. You should be able to see them here within a few minutes. Please re-request them if they don't show in a reasonable amount of time.