Added packages for students to be able to purchase

2023-11-26 10:08:57 +00:00
parent c312260721
commit 7e91a989b3
16 changed files with 552 additions and 35 deletions
--- a/src/pages/api/packages/index.ts
+++ b/src/pages/api/packages/index.ts
@@ -0,0 +1,44 @@
+// Next.js API route support: https://nextjs.org/docs/api-routes/introduction
+import type {NextApiRequest, NextApiResponse} from "next";
+import {app} from "@/firebase";
+import {getFirestore, collection, getDocs, setDoc, doc} from "firebase/firestore";
+import {withIronSessionApiRoute} from "iron-session/next";
+import {sessionOptions} from "@/lib/session";
+import {Group} from "@/interfaces/user";
+import {Package} from "@/interfaces/paypal";
+import {v4} from "uuid";
+
+const db = getFirestore(app);
+
+export default withIronSessionApiRoute(handler, sessionOptions);
+
+async function handler(req: NextApiRequest, res: NextApiResponse) {
+	if (!req.session.user) {
+		res.status(401).json({ok: false});
+		return;
+	}
+
+	if (req.method === "GET") await get(req, res);
+	if (req.method === "POST") await post(req, res);
+}
+
+async function get(req: NextApiRequest, res: NextApiResponse) {
+	const snapshot = await getDocs(collection(db, "packages"));
+
+	res.status(200).json(
+		snapshot.docs.map((doc) => ({
+			id: doc.id,
+			...doc.data(),
+		})),
+	);
+}
+
+async function post(req: NextApiRequest, res: NextApiResponse) {
+	if (!["developer", "owner"].includes(req.session.user!.type))
+		return res.status(403).json({ok: false, reason: "You do not have permission to create a new package"});
+
+	const body = req.body as Package;
+
+	await setDoc(doc(db, "packages", v4()), body);
+	res.status(200).json({ok: true});
+}
--- a/src/pages/api/paypal/approve.ts
+++ b/src/pages/api/paypal/approve.ts
@@ -0,0 +1,59 @@
+// Next.js API route support: https://nextjs.org/docs/api-routes/introduction
+import type {NextApiRequest, NextApiResponse} from "next";
+import {app} from "@/firebase";
+import {getFirestore, collection, getDocs, setDoc, doc} from "firebase/firestore";
+import {withIronSessionApiRoute} from "iron-session/next";
+import {sessionOptions} from "@/lib/session";
+import axios from "axios";
+import {DurationUnit, TokenError, TokenSuccess} from "@/interfaces/paypal";
+import {base64} from "@firebase/util";
+import {v4} from "uuid";
+import {OrderResponseBody} from "@paypal/paypal-js";
+import {getAccessToken} from "@/utils/paypal";
+import moment from "moment";
+
+const db = getFirestore(app);
+
+export default withIronSessionApiRoute(handler, sessionOptions);
+
+async function handler(req: NextApiRequest, res: NextApiResponse) {
+	if (req.method !== "POST") return res.status(404).json({ok: false, reason: "Method not supported!"});
+	if (!req.session.user) return res.status(401).json({ok: false});
+
+	const accessToken = await getAccessToken();
+	if (!accessToken) return res.status(401).json({ok: false, reason: "Authorization failed!"});
+
+	const {id, duration, duration_unit} = req.body as {id: string; duration: number; duration_unit: DurationUnit};
+
+	const request = await axios.post(
+		`${process.env.PAYPAL_ACCESS_TOKEN_URL}/v2/checkout/orders/${id}/capture`,
+		{},
+		{
+			headers: {
+				Authorization: `Bearer ${accessToken}`,
+			},
+		},
+	);
+
+	if (request.data.status === "COMPLETED") {
+		const subscriptionExpirationDate = req.session.user.subscriptionExpirationDate;
+		const today = moment(new Date());
+		const dateToBeAddedTo = !subscriptionExpirationDate
+			? today
+			: moment(subscriptionExpirationDate).isAfter(today)
+			? moment(subscriptionExpirationDate)
+			: today;
+
+		const updatedExpirationDate = dateToBeAddedTo.add(duration, duration_unit);
+		await setDoc(
+			doc(db, "users", req.session.user.id),
+			{subscriptionExpirationDate: updatedExpirationDate.toISOString(), status: "active"},
+			{merge: true},
+		);
+
+		res.status(200).json({ok: true});
+		return;
+	}
+
+	res.status(404).json({ok: false, reason: "Order ID not found or purchase was not approved!"});
+}
--- a/src/pages/api/paypal/index.ts
+++ b/src/pages/api/paypal/index.ts
@@ -0,0 +1,47 @@
+// Next.js API route support: https://nextjs.org/docs/api-routes/introduction
+import type {NextApiRequest, NextApiResponse} from "next";
+import {app} from "@/firebase";
+import {getFirestore, collection, getDocs} from "firebase/firestore";
+import {withIronSessionApiRoute} from "iron-session/next";
+import {sessionOptions} from "@/lib/session";
+import axios from "axios";
+import {v4} from "uuid";
+import {OrderResponseBody} from "@paypal/paypal-js";
+import {getAccessToken} from "@/utils/paypal";
+
+const db = getFirestore(app);
+
+export default withIronSessionApiRoute(handler, sessionOptions);
+
+async function handler(req: NextApiRequest, res: NextApiResponse) {
+	if (req.method !== "POST") return res.status(404).json({ok: false, reason: "Method not supported!"});
+	if (!req.session.user) return res.status(401).json({ok: false});
+
+	const accessToken = await getAccessToken();
+	if (!accessToken) return res.status(401).json({ok: false, reason: "Authorization failed!"});
+
+	const {currencyCode, price} = req.body as {currencyCode: string; price: number};
+
+	const request = await axios.post<OrderResponseBody>(
+		`${process.env.PAYPAL_ACCESS_TOKEN_URL}/v2/checkout/orders`,
+		{
+			purchase_units: [
+				{
+					amount: {
+						currency_code: currencyCode,
+						value: price.toString(),
+					},
+					reference_id: v4(),
+				},
+			],
+			intent: "CAPTURE",
+		},
+		{
+			headers: {
+				Authorization: `Bearer ${accessToken}`,
+			},
+		},
+	);
+
+	res.status(request.status).json(request.data);
+}