Solved a bug where it would not send the correct link to the e-mail
This commit is contained in:
Tiago Ribeiro
@@ -1,21 +1,13 @@
|
|||||||
// Next.js API route support: https://nextjs.org/docs/api-routes/introduction
|
// Next.js API route support: https://nextjs.org/docs/api-routes/introduction
|
||||||
import type { NextApiRequest, NextApiResponse } from "next";
|
import type {NextApiRequest, NextApiResponse} from "next";
|
||||||
import { app } from "@/firebase";
|
import {app} from "@/firebase";
|
||||||
import {
|
import {getFirestore, setDoc, doc, query, collection, where, getDocs} from "firebase/firestore";
|
||||||
getFirestore,
|
import {withIronSessionApiRoute} from "iron-session/next";
|
||||||
setDoc,
|
import {sessionOptions} from "@/lib/session";
|
||||||
doc,
|
import {Type} from "@/interfaces/user";
|
||||||
query,
|
import {PERMISSIONS} from "@/constants/userPermissions";
|
||||||
collection,
|
import {uuidv4} from "@firebase/util";
|
||||||
where,
|
import {prepareMailer, prepareMailOptions} from "@/email";
|
||||||
getDocs,
|
|
||||||
} from "firebase/firestore";
|
|
||||||
import { withIronSessionApiRoute } from "iron-session/next";
|
|
||||||
import { sessionOptions } from "@/lib/session";
|
|
||||||
import { Type } from "@/interfaces/user";
|
|
||||||
import { PERMISSIONS } from "@/constants/userPermissions";
|
|
||||||
import { uuidv4 } from "@firebase/util";
|
|
||||||
import { prepareMailer, prepareMailOptions } from "@/email";
|
|
||||||
|
|
||||||
const db = getFirestore(app);
|
const db = getFirestore(app);
|
||||||
|
|
||||||
@@ -25,18 +17,16 @@ async function handler(req: NextApiRequest, res: NextApiResponse) {
|
|||||||
if (req.method === "GET") return get(req, res);
|
if (req.method === "GET") return get(req, res);
|
||||||
if (req.method === "POST") return post(req, res);
|
if (req.method === "POST") return post(req, res);
|
||||||
|
|
||||||
return res.status(404).json({ ok: false });
|
return res.status(404).json({ok: false});
|
||||||
}
|
}
|
||||||
|
|
||||||
async function get(req: NextApiRequest, res: NextApiResponse) {
|
async function get(req: NextApiRequest, res: NextApiResponse) {
|
||||||
if (!req.session.user) {
|
if (!req.session.user) {
|
||||||
res
|
res.status(401).json({ok: false, reason: "You must be logged in to generate a code!"});
|
||||||
.status(401)
|
|
||||||
.json({ ok: false, reason: "You must be logged in to generate a code!" });
|
|
||||||
return;
|
return;
|
||||||
}
|
}
|
||||||
|
|
||||||
const { creator } = req.query as { creator?: string };
|
const {creator} = req.query as {creator?: string};
|
||||||
const q = query(collection(db, "codes"), where("creator", "==", creator));
|
const q = query(collection(db, "codes"), where("creator", "==", creator));
|
||||||
const snapshot = await getDocs(creator ? q : collection(db, "codes"));
|
const snapshot = await getDocs(creator ? q : collection(db, "codes"));
|
||||||
|
|
||||||
@@ -45,41 +35,30 @@ async function get(req: NextApiRequest, res: NextApiResponse) {
|
|||||||
|
|
||||||
async function post(req: NextApiRequest, res: NextApiResponse) {
|
async function post(req: NextApiRequest, res: NextApiResponse) {
|
||||||
if (!req.session.user) {
|
if (!req.session.user) {
|
||||||
res
|
res.status(401).json({ok: false, reason: "You must be logged in to generate a code!"});
|
||||||
.status(401)
|
|
||||||
.json({ ok: false, reason: "You must be logged in to generate a code!" });
|
|
||||||
return;
|
return;
|
||||||
}
|
}
|
||||||
|
|
||||||
const { type, codes, infos, expiryDate } = req.body as {
|
const {type, codes, infos, expiryDate} = req.body as {
|
||||||
type: Type;
|
type: Type;
|
||||||
codes: string[];
|
codes: string[];
|
||||||
infos?: { email: string; name: string; passport_id?: string }[];
|
infos?: {email: string; name: string; passport_id?: string}[];
|
||||||
expiryDate: null | Date;
|
expiryDate: null | Date;
|
||||||
};
|
};
|
||||||
const permission = PERMISSIONS.generateCode[type];
|
const permission = PERMISSIONS.generateCode[type];
|
||||||
|
|
||||||
if (!permission.includes(req.session.user.type)) {
|
if (!permission.includes(req.session.user.type)) {
|
||||||
res
|
res.status(403).json({
|
||||||
.status(403)
|
|
||||||
.json({
|
|
||||||
ok: false,
|
ok: false,
|
||||||
reason:
|
reason: "Your account type does not have permissions to generate a code for that type of user!",
|
||||||
"Your account type does not have permissions to generate a code for that type of user!",
|
|
||||||
});
|
});
|
||||||
return;
|
return;
|
||||||
}
|
}
|
||||||
|
|
||||||
if (req.session.user.type === "corporate") {
|
if (req.session.user.type === "corporate") {
|
||||||
const codesGeneratedByUserSnapshot = await getDocs(
|
const codesGeneratedByUserSnapshot = await getDocs(query(collection(db, "codes"), where("creator", "==", req.session.user.id)));
|
||||||
query(
|
|
||||||
collection(db, "codes"),
|
|
||||||
where("creator", "==", req.session.user.id),
|
|
||||||
),
|
|
||||||
);
|
|
||||||
const totalCodes = codesGeneratedByUserSnapshot.docs.length + codes.length;
|
const totalCodes = codesGeneratedByUserSnapshot.docs.length + codes.length;
|
||||||
const allowedCodes =
|
const allowedCodes = req.session.user.corporateInformation?.companyInformation.userAmount || 0;
|
||||||
req.session.user.corporateInformation?.companyInformation.userAmount || 0;
|
|
||||||
|
|
||||||
if (totalCodes > allowedCodes) {
|
if (totalCodes > allowedCodes) {
|
||||||
res.status(403).json({
|
res.status(403).json({
|
||||||
@@ -102,13 +81,14 @@ async function post(req: NextApiRequest, res: NextApiResponse) {
|
|||||||
};
|
};
|
||||||
|
|
||||||
if (infos && infos.length > index) {
|
if (infos && infos.length > index) {
|
||||||
const { email, name, passport_id } = infos[index];
|
const {email, name, passport_id} = infos[index];
|
||||||
|
|
||||||
const transport = prepareMailer();
|
const transport = prepareMailer();
|
||||||
const mailOptions = prepareMailOptions(
|
const mailOptions = prepareMailOptions(
|
||||||
{
|
{
|
||||||
type,
|
type,
|
||||||
code,
|
code,
|
||||||
|
environment: process.env.ENVIRONMENT,
|
||||||
},
|
},
|
||||||
[email.toLowerCase().trim()],
|
[email.toLowerCase().trim()],
|
||||||
"EnCoach Registration",
|
"EnCoach Registration",
|
||||||
@@ -123,9 +103,9 @@ async function post(req: NextApiRequest, res: NextApiResponse) {
|
|||||||
...codeInformation,
|
...codeInformation,
|
||||||
email: email.trim().toLowerCase(),
|
email: email.trim().toLowerCase(),
|
||||||
name: name.trim(),
|
name: name.trim(),
|
||||||
...(passport_id ? { passport_id: passport_id.trim() } : {}),
|
...(passport_id ? {passport_id: passport_id.trim()} : {}),
|
||||||
},
|
},
|
||||||
{ merge: true },
|
{merge: true},
|
||||||
);
|
);
|
||||||
|
|
||||||
return true;
|
return true;
|
||||||
@@ -138,6 +118,6 @@ async function post(req: NextApiRequest, res: NextApiResponse) {
|
|||||||
});
|
});
|
||||||
|
|
||||||
Promise.all(codePromises).then((results) => {
|
Promise.all(codePromises).then((results) => {
|
||||||
res.status(200).json({ ok: true, valid: results.filter((x) => x).length });
|
res.status(200).json({ok: true, valid: results.filter((x) => x).length});
|
||||||
});
|
});
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -65,6 +65,7 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
|
|||||||
{
|
{
|
||||||
type: "student",
|
type: "student",
|
||||||
code,
|
code,
|
||||||
|
environment: process.env.ENVIRONMENT,
|
||||||
},
|
},
|
||||||
[email],
|
[email],
|
||||||
"EnCoach Registration",
|
"EnCoach Registration",
|
||||||
|
|||||||
Reference in New Issue
Block a user