@stamhoofd/backend 2.81.0 → 2.82.0

package/package.json

@@ -1,6 +1,6 @@
 {
     "name": "@stamhoofd/backend",
-    "version": "2.81.0",
+    "version": "2.82.0",
     "main": "./dist/index.js",
     "exports": {
         ".": {
@@ -38,14 +38,14 @@
         "@simonbackx/simple-encoding": "2.22.0",
         "@simonbackx/simple-endpoints": "1.19.1",
         "@simonbackx/simple-logging": "^1.0.1",
-        "@stamhoofd/backend-i18n": "2.81.0",
-        "@stamhoofd/backend-middleware": "2.81.0",
-        "@stamhoofd/email": "2.81.0",
-        "@stamhoofd/models": "2.81.0",
-        "@stamhoofd/queues": "2.81.0",
-        "@stamhoofd/sql": "2.81.0",
-        "@stamhoofd/structures": "2.81.0",
-        "@stamhoofd/utility": "2.81.0",
+        "@stamhoofd/backend-i18n": "2.82.0",
+        "@stamhoofd/backend-middleware": "2.82.0",
+        "@stamhoofd/email": "2.82.0",
+        "@stamhoofd/models": "2.82.0",
+        "@stamhoofd/queues": "2.82.0",
+        "@stamhoofd/sql": "2.82.0",
+        "@stamhoofd/structures": "2.82.0",
+        "@stamhoofd/utility": "2.82.0",
         "archiver": "^7.0.1",
         "aws-sdk": "^2.885.0",
         "axios": "1.6.8",
@@ -65,5 +65,5 @@
     "publishConfig": {
         "access": "public"
     },
-    "gitHead": "5a0faf4813aeb5c3d7216536278acb65ba2361e0"
+    "gitHead": "ce2a8fa52bc4881cc00f1c5d61c737cf19f3a62e"
 }

package/src/endpoints/global/email/PatchEmailEndpoint.test.ts

@@ -0,0 +1,139 @@
+import { Request } from '@simonbackx/simple-endpoints';
+import { Email, Organization, OrganizationFactory, RegistrationPeriod, RegistrationPeriodFactory, Token, User, UserFactory } from "@stamhoofd/models";
+import { EmailStatus, Email as EmailStruct, PermissionLevel, Permissions, Version } from "@stamhoofd/structures";
+import { TestUtils } from "@stamhoofd/test-utils";
+import { testServer } from "../../../../tests/helpers/TestServer";
+import { PatchEmailEndpoint } from "./PatchEmailEndpoint";
+
+const baseUrl = `/v${Version}/email`;
+
+describe('Endpoint.PatchEmailEndpoint', () => {
+    const endpoint = new PatchEmailEndpoint();
+    let period: RegistrationPeriod;
+    let organization: Organization;
+    let token: Token;
+    let user: User;
+
+    const patchEmail = async (email: EmailStruct, token: Token, organization?: Organization) => {
+        const id = email.id;
+        const request = Request.buildJson('PATCH', `${baseUrl}/${id}`, organization?.getApiHost(), email);
+        request.headers.authorization = 'Bearer ' + token.accessToken;
+        return await testServer.test(endpoint, request);
+    };
+
+    beforeEach(async () => {
+        TestUtils.setEnvironment('userMode', 'platform');
+    });
+
+    beforeAll(async () => {
+        period = await new RegistrationPeriodFactory({
+            startDate: new Date(2023, 0, 1),
+            endDate: new Date(2023, 11, 31),
+        }).create();
+
+        organization = await new OrganizationFactory({ period })
+        .create();
+
+        user = await new UserFactory({
+            organization,
+            permissions: Permissions.create({
+                level: PermissionLevel.Read,
+            }),
+        })
+        .create();
+
+        token = await Token.createToken(user);
+    });
+
+    test('Should throw error if no unsubscribe button in email html', async () => {
+        const email = new Email();
+        email.subject = 'test subject';
+        email.status = EmailStatus.Draft;
+        email.text = 'test email {{unsubscribeUrl}}';
+        email.html =  `<!DOCTYPE html>
+        <html>
+
+        <head>
+        <meta charset="utf-8" />
+        <meta http-equiv="X-UA-Compatible" content="IE=edge" />
+        <meta name="viewport" content="width=device-width,initial-scale=1.0" />
+        <title>test</title>
+        </head>
+
+        <body>
+        <p style="margin: 0; padding: 0; line-height: 1.4;">test email</p>
+        </body>
+
+        </html>`;
+        email.json = {
+            "content": [
+              {
+                "content": [
+                  {
+                    "text": "test email",
+                    "type": "text"
+                  }
+                ],
+                "type": "paragraph"
+              }
+            ],
+            "type": "doc"
+        };
+        email.userId = user.id;
+        email.organizationId = organization.id;
+
+        await email.save();
+
+        const body = EmailStruct.create({...email, fromAddress:'test@test.be', status: EmailStatus.Sending})
+
+        await expect(async () => await patchEmail(body, token, organization))
+        .rejects
+        .toThrow('Missing unsubscribe button');
+    })
+
+    test('Should throw error if no unsubscribe button in email text', async () => {
+        const email = new Email();
+        email.subject = 'test subject';
+        email.status = EmailStatus.Draft;
+        email.text = 'test email';
+        email.html =  `<!DOCTYPE html>
+        <html>
+
+        <head>
+        <meta charset="utf-8" />
+        <meta http-equiv="X-UA-Compatible" content="IE=edge" />
+        <meta name="viewport" content="width=device-width,initial-scale=1.0" />
+        <title>test</title>
+        </head>
+
+        <body>
+        <p style="margin: 0; padding: 0; line-height: 1.4;">test email {{unsubscribeUrl}}</p>
+        </body>
+
+        </html>`;
+        email.json = {
+            "content": [
+              {
+                "content": [
+                  {
+                    "text": "test email",
+                    "type": "text"
+                  }
+                ],
+                "type": "paragraph"
+              }
+            ],
+            "type": "doc"
+        };
+        email.userId = user.id;
+        email.organizationId = organization.id;
+
+        await email.save();
+
+        const body = EmailStruct.create({...email, fromAddress:'test@test.be', status: EmailStatus.Sending})
+
+        await expect(async () => await patchEmail(body, token, organization))
+        .rejects
+        .toThrow('Missing unsubscribe button');
+    })
+})

package/src/endpoints/global/email/PatchEmailEndpoint.ts

@@ -2,19 +2,15 @@ import { DecodedRequest, Endpoint, Request, Response } from '@simonbackx/simple-
 import { Email } from '@stamhoofd/models';
 import { EmailPreview, EmailStatus, Email as EmailStruct } from '@stamhoofd/structures';
 
+import { AutoEncoderPatchType, Decoder, patchObject } from '@simonbackx/simple-encoding';
 import { SimpleError } from '@simonbackx/simple-errors';
 import { Context } from '../../../helpers/Context';
-import { AutoEncoderPatchType, Decoder, patchObject } from '@simonbackx/simple-encoding';
 
 type Params = { id: string };
 type Query = undefined;
 type Body = AutoEncoderPatchType<EmailStruct>;
 type ResponseBody = EmailPreview;
 
-/**
- * One endpoint to create, patch and delete groups. Usefull because on organization setup, we need to create multiple groups at once. Also, sometimes we need to link values and update multiple groups at once
- */
-
 export class PatchEmailEndpoint extends Endpoint<Params, Query, Body, ResponseBody> {
     bodyDecoder = EmailStruct.patchType() as Decoder<AutoEncoderPatchType<EmailStruct>>;
 
@@ -107,6 +103,33 @@ export class PatchEmailEndpoint extends Endpoint<Params, Query, Body, ResponseBo
 
         if (request.body.status === EmailStatus.Sending || request.body.status === EmailStatus.Sent) {
             model.throwIfNotReadyToSend();
+
+            const replacement = '{{unsubscribeUrl}}';
+ 
+            if (model.html) {
+                // Check email contains an unsubscribe button
+                if (!model.html.includes(replacement)) {
+                    throw new SimpleError({
+                        code: "missing_unsubscribe_button",
+                        message: "Missing unsubscribe button",
+                        human: "Je moet een ‘uitschrijven’-knop of link toevoegen onderaan je e-mail. Klik daarvoor onderaan op het ‘toverstaf’ icoontje en kies voor ‘Knop om uit te schrijven voor e-mails’. Dit is verplicht volgens de GDPR-wetgeving, maar het zorgt ook voor een betere e-mail reputatie omdat minder e-mails als spam worden gemarkeerd.",
+                        field: "html"
+                    })
+                }
+            }
+
+            if (model.text) {
+                // Check email contains an unsubscribe button
+                if (!model.text.includes(replacement)) {
+                    throw new SimpleError({
+                        code: "missing_unsubscribe_button",
+                        message: "Missing unsubscribe button",
+                        human: "Je moet een ‘uitschrijven’-knop of link toevoegen onderaan je e-mail. Klik daarvoor onderaan op het ‘toverstaf’ icoontje en kies voor ‘Knop om uit te schrijven voor e-mails’. Dit is verplicht volgens de GDPR-wetgeving, maar het zorgt ook voor een betere e-mail reputatie omdat minder e-mails als spam worden gemarkeerd.",
+                        field: "text"
+                    })
+                }
+            }
+
             model.send().catch(console.error);
         }
 

package/src/endpoints/global/events/PatchEventNotificationsEndpoint.test.ts

@@ -1,36 +1,17 @@
 import { PatchableArray, PatchMap, patchObject } from '@simonbackx/simple-encoding';
 import { Endpoint, Request } from '@simonbackx/simple-endpoints';
-import { EventNotificationFactory, EventFactory, EventNotificationTypeFactory, Organization, OrganizationFactory, Token, User, UserFactory, EmailTemplateFactory, RecordCategoryFactory, RegistrationPeriodFactory, RecordAnswerFactory, EventNotification } from '@stamhoofd/models';
-import { AccessRight, BaseOrganization, EmailTemplateType, Event, EventNotificationStatus, EventNotification as EventNotificationStruct, PermissionLevel, Permissions, PermissionsResourceType, RecordAnswer, RecordType, ResourcePermissions } from '@stamhoofd/structures';
-import { TestUtils } from '@stamhoofd/test-utils';
-import { PatchEventNotificationsEndpoint } from './PatchEventNotificationsEndpoint';
-import { testServer } from '../../../../tests/helpers/TestServer';
 import { EmailMocker } from '@stamhoofd/email';
+import { EmailTemplateFactory, EventFactory, EventNotification, EventNotificationFactory, EventNotificationTypeFactory, Organization, OrganizationFactory, RecordAnswerFactory, RecordCategoryFactory, RegistrationPeriodFactory, Token, User, UserFactory } from '@stamhoofd/models';
+import { AccessRight, BaseOrganization, EmailTemplateType, Event, EventNotificationStatus, EventNotification as EventNotificationStruct, Permissions, PermissionsResourceType, RecordType, ResourcePermissions } from '@stamhoofd/structures';
+import { SHExpect, TestUtils } from '@stamhoofd/test-utils';
+import { testServer } from '../../../../tests/helpers/TestServer';
+import { PatchEventNotificationsEndpoint } from './PatchEventNotificationsEndpoint';
 
 const baseUrl = `/event-notifications`;
 const endpoint = new PatchEventNotificationsEndpoint();
 type EndpointType = typeof endpoint;
 type Body = EndpointType extends Endpoint<any, any, infer B, any> ? B : never;
 
-const errorWithCode = (code: string) => expect.objectContaining({ code }) as jest.Constructable;
-const errorWithMessage = (message: string) => expect.objectContaining({ message }) as jest.Constructable;
-const simpleError = (data: {
-    code?: string;
-    message?: string;
-    field?: string;
-}) => {
-    const d = {
-        code: data.code ?? expect.any(String),
-        message: data.message ?? expect.any(String),
-        field: data.field ?? expect.anything(),
-    };
-
-    if (!data.field) {
-        delete d.field;
-    }
-    return expect.objectContaining(d) as jest.Constructable;
-};
-
 const minimumUserPermissions = Permissions.create({
     resources: new Map([
         [PermissionsResourceType.Groups, new Map([
@@ -169,7 +150,7 @@ describe('Endpoint.PatchEventNotificationsEndpoint', () => {
         );
 
         await expect(TestRequest.patch({ body, user, organization })).rejects.toThrow(
-            simpleError({ code: 'invalid_field', field: 'typeId' }),
+            SHExpect.simpleError({ code: 'invalid_field', field: 'typeId' }),
         );
     });
 
@@ -194,7 +175,7 @@ describe('Endpoint.PatchEventNotificationsEndpoint', () => {
         );
 
         await expect(TestRequest.patch({ body, user, organization })).rejects.toThrow(
-            simpleError({ code: 'invalid_field', field: 'events' }),
+            SHExpect.simpleError({ code: 'invalid_field', field: 'events' }),
         );
     });
 
@@ -228,7 +209,7 @@ describe('Endpoint.PatchEventNotificationsEndpoint', () => {
             }),
         );
         await expect(TestRequest.patch({ body, user, organization })).rejects.toThrow(
-            simpleError({ code: 'invalid_period', field: 'startDate' }),
+            SHExpect.simpleError({ code: 'invalid_period', field: 'startDate' }),
         );
     });
 
@@ -256,7 +237,7 @@ describe('Endpoint.PatchEventNotificationsEndpoint', () => {
         );
 
         await expect(TestRequest.patch({ body, user, organization })).rejects.toThrow(
-            simpleError({ code: 'invalid_field', field: 'events' }),
+            SHExpect.simpleError({ code: 'invalid_field', field: 'events' }),
         );
     });
 
@@ -416,7 +397,7 @@ describe('Endpoint.PatchEventNotificationsEndpoint', () => {
         );
 
         await expect(TestRequest.patch({ body, user, organization })).rejects.toThrow(
-            simpleError({ code: 'permission_denied' }),
+            SHExpect.simpleError({ code: 'permission_denied' }),
         );
     });
 
@@ -442,7 +423,7 @@ describe('Endpoint.PatchEventNotificationsEndpoint', () => {
         );
 
         await expect(TestRequest.patch({ body, user, organization })).rejects.toThrow(
-            simpleError({ code: 'permission_denied' }),
+            SHExpect.simpleError({ code: 'permission_denied' }),
         );
     });
 
@@ -468,7 +449,7 @@ describe('Endpoint.PatchEventNotificationsEndpoint', () => {
         );
 
         await expect(TestRequest.patch({ body, user, organization })).rejects.toThrow(
-            simpleError({ code: 'permission_denied' }),
+            SHExpect.simpleError({ code: 'permission_denied' }),
         );
     });
 
@@ -494,7 +475,7 @@ describe('Endpoint.PatchEventNotificationsEndpoint', () => {
         );
 
         await expect(TestRequest.patch({ body, user, organization })).rejects.toThrow(
-            simpleError({ code: 'permission_denied' }),
+            SHExpect.simpleError({ code: 'permission_denied' }),
         );
     });
 
@@ -520,7 +501,7 @@ describe('Endpoint.PatchEventNotificationsEndpoint', () => {
         );
 
         await expect(TestRequest.patch({ body, user, organization })).rejects.toThrow(
-            simpleError({ code: 'permission_denied' }),
+            SHExpect.simpleError({ code: 'permission_denied' }),
         );
     });
 
@@ -603,7 +584,7 @@ describe('Endpoint.PatchEventNotificationsEndpoint', () => {
         );
 
         await expect(TestRequest.patch({ body, user, organization })).rejects.toThrow(
-            simpleError({ code: 'permission_denied' }),
+            SHExpect.simpleError({ code: 'permission_denied' }),
         );
     });
 
@@ -991,7 +972,7 @@ describe('Endpoint.PatchEventNotificationsEndpoint', () => {
         );
 
         await expect(TestRequest.patch({ body, user, organization })).rejects.toThrow(
-            simpleError({ code: 'permission_denied' }),
+            SHExpect.simpleError({ code: 'permission_denied' }),
         );
     });
 });

package/src/endpoints/global/members/PatchOrganizationMembersEndpoint.test.ts

@@ -3,7 +3,7 @@ import { PatchableArray, PatchableArrayAutoEncoder, PatchMap } from '@simonbackx
 import { Endpoint, Request } from '@simonbackx/simple-endpoints';
 import { GroupFactory, MemberFactory, OrganizationFactory, OrganizationTagFactory, Platform, RegistrationFactory, Token, UserFactory } from '@stamhoofd/models';
 import { Address, Country, EmergencyContact, MemberDetails, MemberWithRegistrationsBlob, OrganizationMetaData, OrganizationRecordsConfiguration, Parent, PatchAnswers, PermissionLevel, Permissions, PermissionsResourceType, RecordCategory, RecordSettings, RecordTextAnswer, ResourcePermissions, ReviewTime, ReviewTimes } from '@stamhoofd/structures';
-import { TestUtils } from '@stamhoofd/test-utils';
+import { SHExpect, TestUtils } from '@stamhoofd/test-utils';
 import { testServer } from '../../../../tests/helpers/TestServer';
 import { PatchOrganizationMembersEndpoint } from './PatchOrganizationMembersEndpoint';
 
@@ -16,8 +16,6 @@ const firstName = 'John';
 const lastName = 'Doe';
 const birthDay = { year: 1993, month: 4, day: 5 };
 
-const errorWithCode = (code: string) => expect.objectContaining({ code }) as jest.Constructable;
-
 describe('Endpoint.PatchOrganizationMembersEndpoint', () => {
     beforeEach(async () => {
         TestUtils.setEnvironment('userMode', 'platform');
@@ -59,7 +57,7 @@ describe('Endpoint.PatchOrganizationMembersEndpoint', () => {
             request.headers.authorization = 'Bearer ' + token.accessToken;
             await expect(testServer.test(endpoint, request))
                 .rejects
-                .toThrow(errorWithCode('known_member_missing_rights'));
+                .toThrow(SHExpect.errorWithCode('known_member_missing_rights'));
         });
 
         test('The security code is not a requirement for members without additional data', async () => {
@@ -219,7 +217,7 @@ describe('Endpoint.PatchOrganizationMembersEndpoint', () => {
 
             const request = Request.buildJson('PATCH', baseUrl, organization.getApiHost(), arr);
             request.headers.authorization = 'Bearer ' + token.accessToken;
-            await expect(testServer.test(endpoint, request)).rejects.toThrow(errorWithCode('not_found'));
+            await expect(testServer.test(endpoint, request)).rejects.toThrow(SHExpect.errorWithCode('not_found'));
         });
 
         test('An admin can edit members registered in its own organization', async () => {
@@ -495,7 +493,7 @@ describe('Endpoint.PatchOrganizationMembersEndpoint', () => {
 
             const request = Request.buildJson('PATCH', baseUrl, organization.getApiHost(), arr);
             request.headers.authorization = 'Bearer ' + token.accessToken;
-            await expect(testServer.test(endpoint, request)).rejects.toThrow(errorWithCode('permission_denied'));
+            await expect(testServer.test(endpoint, request)).rejects.toThrow(SHExpect.errorWithCode('permission_denied'));
         });
 
         test('An admin without record category permission cannot set the records in that category', async () => {
@@ -564,7 +562,7 @@ describe('Endpoint.PatchOrganizationMembersEndpoint', () => {
 
             const request = Request.buildJson('PATCH', baseUrl, organization.getApiHost(), arr);
             request.headers.authorization = 'Bearer ' + token.accessToken;
-            await expect(testServer.test(endpoint, request)).rejects.toThrow(errorWithCode('permission_denied'));
+            await expect(testServer.test(endpoint, request)).rejects.toThrow(SHExpect.errorWithCode('permission_denied'));
         });
 
         test('An admin can set records of the platform', async () => {
@@ -1458,7 +1456,9 @@ describe('Endpoint.PatchOrganizationMembersEndpoint', () => {
             await member3.refresh();
 
             // Check all parents equal
-            const expectedParent = parent3;
+            const expectedParent = parent3.patch({
+                createdAt: parent1.createdAt, // parent1 created at can be 1ms smaller, and oldest will be used
+            });
 
             expect(member1.details.parents).toEqual([expectedParent]);
             expect(member2.details.parents).toEqual([expectedParent]);

package/src/endpoints/global/payments/StripeWebhookEndpoint.ts

@@ -52,6 +52,11 @@ export class StripeWebookEndpoint extends Endpoint<Params, Query, Body, Response
 
     async handle(request: DecodedRequest<Params, Query, Body>) {
         console.log('Received Stripe Webhook', request.body.type);
+        const secret = request.body.account ? STAMHOOFD.STRIPE_CONNECT_ENDPOINT_SECRET : STAMHOOFD.STRIPE_ENDPOINT_SECRET;
+
+        if (!secret) {
+            throw StripeHelper.notConfiguredError;
+        }
 
         // Verify webhook signature and extract the event.
         // See https://stripe.com/docs/webhooks/signatures for more information.
@@ -66,7 +71,6 @@ export class StripeWebookEndpoint extends Endpoint<Params, Query, Body, Response
                     statusCode: 400,
                 });
             }
-            const secret = request.body.account ? STAMHOOFD.STRIPE_CONNECT_ENDPOINT_SECRET : STAMHOOFD.STRIPE_ENDPOINT_SECRET;
             event = await stripe.webhooks.constructEventAsync(await request.request.bodyPromise!, sig, secret);
         }
         catch (err) {

package/src/endpoints/global/platform/GetPlatformEndpoint.test.ts

@@ -0,0 +1,68 @@
+import { Request } from '@simonbackx/simple-endpoints';
+import { Token, UserFactory } from '@stamhoofd/models';
+import { PermissionLevel, Permissions, Version } from '@stamhoofd/structures';
+
+import { TestUtils } from '@stamhoofd/test-utils';
+import { testServer } from '../../../../tests/helpers/TestServer';
+import { GetPlatformEndpoint } from './GetPlatformEndpoint';
+
+describe('Endpoint.GetPlatformEndpoint', () => {
+    const endpoint = new GetPlatformEndpoint();
+
+    const getPlatform = async (token?: Token) => {
+        const request = Request.buildJson('GET', `/v${Version}/platform`);
+        if (token) {
+            request.headers.authorization = 'Bearer ' + token.accessToken;
+        }
+        return await testServer.test(endpoint, request);
+    };
+
+    beforeEach(async () => {
+        TestUtils.setEnvironment('userMode', 'platform');
+    });
+
+    test('Should return platform without private config if not authenticated', async () => {
+        const platform = await getPlatform();
+        expect(platform.body.privateConfig).toBeNull();
+    });
+
+    test('Should return platform without private config if no platform access', async () => {
+        const user = await new UserFactory({
+            globalPermissions: Permissions.create({
+                level: PermissionLevel.None,
+            }),
+        })
+            .create();
+
+        const token = await Token.createToken(user);
+        const platform = await getPlatform(token);
+        expect(platform.body.privateConfig).toBeNull();
+    });
+
+    test('Should return platform with private config if authenticated and has platform access', async () => {
+        const user = await new UserFactory({
+            globalPermissions: Permissions.create({
+                level: PermissionLevel.Full,
+            }),
+        })
+            .create();
+
+        const token = await Token.createToken(user);
+        const platform = await getPlatform(token);
+        expect(platform.body.privateConfig).not.toBeNull();
+    });
+
+    test('Should throw if invalid token', async () => {
+        const user = await new UserFactory({
+            globalPermissions: Permissions.create({
+                level: PermissionLevel.Full,
+            }),
+        })
+            .create();
+
+        const token = await Token.createToken(user);
+        token.accessToken = 'invalid-token';
+        await token.save();
+        await expect(getPlatform(token)).rejects.toThrow('The access token is invalid');
+    });
+});

package/src/endpoints/global/registration/PatchUserMembersEndpoint.test.ts

@@ -5,7 +5,7 @@ import { MemberDetails, MemberWithRegistrationsBlob, OrganizationMetaData, Organ
 import { testServer } from '../../../../tests/helpers/TestServer';
 import { PatchUserMembersEndpoint } from './PatchUserMembersEndpoint';
 import { Database } from '@simonbackx/simple-database';
-import { TestUtils } from '@stamhoofd/test-utils';
+import { SHExpect, TestUtils } from '@stamhoofd/test-utils';
 
 const baseUrl = `/members`;
 const endpoint = new PatchUserMembersEndpoint();
@@ -16,8 +16,6 @@ const firstName = 'John';
 const lastName = 'Doe';
 const birthDay = { year: 1993, month: 4, day: 5 };
 
-const errorWithCode = (code: string) => expect.objectContaining({ code }) as jest.Constructable;
-
 describe('Endpoint.PatchUserMembersEndpoint', () => {
     beforeEach(async () => {
         TestUtils.setEnvironment('userMode', 'platform');
@@ -55,7 +53,7 @@ describe('Endpoint.PatchUserMembersEndpoint', () => {
             request.headers.authorization = 'Bearer ' + token.accessToken;
             await expect(testServer.test(endpoint, request))
                 .rejects
-                .toThrow(errorWithCode('known_member_missing_rights'));
+                .toThrow(SHExpect.errorWithCode('known_member_missing_rights'));
         });
 
         test('The security code is not a requirement for members without additional data', async () => {
@@ -280,7 +278,7 @@ describe('Endpoint.PatchUserMembersEndpoint', () => {
 
             const request = Request.buildJson('PATCH', baseUrl, organization.getApiHost(), arr);
             request.headers.authorization = 'Bearer ' + token.accessToken;
-            await expect(testServer.test(endpoint, request)).rejects.toThrow(errorWithCode('permission_denied'));
+            await expect(testServer.test(endpoint, request)).rejects.toThrow(SHExpect.errorWithCode('permission_denied'));
         });
 
         test('A user can save answers of records of the platform', async () => {
@@ -391,7 +389,7 @@ describe('Endpoint.PatchUserMembersEndpoint', () => {
 
             const request = Request.buildJson('PATCH', baseUrl, organization.getApiHost(), arr);
             request.headers.authorization = 'Bearer ' + token.accessToken;
-            await expect(testServer.test(endpoint, request)).rejects.toThrow(errorWithCode('permission_denied'));
+            await expect(testServer.test(endpoint, request)).rejects.toThrow(SHExpect.errorWithCode('permission_denied'));
         });
 
         test('A user can not save anwers to inexisting records', async () => {
@@ -437,7 +435,7 @@ describe('Endpoint.PatchUserMembersEndpoint', () => {
 
             const request = Request.buildJson('PATCH', baseUrl, organization.getApiHost(), arr);
             request.headers.authorization = 'Bearer ' + token.accessToken;
-            await expect(testServer.test(endpoint, request)).rejects.toThrow(errorWithCode('permission_denied'));
+            await expect(testServer.test(endpoint, request)).rejects.toThrow(SHExpect.errorWithCode('permission_denied'));
         });
     });
 });

package/src/endpoints/global/webshops/GetWebshopFromDomainEndpoint.ts

@@ -26,8 +26,8 @@ export class GetWebshopFromDomainEndpoint extends Endpoint<Params, Query, Body,
     queryDecoder = Query as Decoder<Query>;
     webshopDomains = [
         ...new Set([
-            ...Object.values(STAMHOOFD.domains.webshop),
-            ...Object.values(STAMHOOFD.domains.marketing),
+            ...Object.values(STAMHOOFD.domains.webshop ?? {}),
+            ...Object.values(STAMHOOFD.domains.marketing ?? {}),
         ]),
     ];
 

package/src/endpoints/organization/dashboard/organization/SetOrganizationDomainEndpoint.ts

@@ -113,7 +113,7 @@ export class SetOrganizationDomainEndpoint extends Endpoint<Params, Query, Body,
                         type: DNSRecordType.CNAME,
                         name: organization.privateMeta.mailFromDomain + '.',
                         // Use shops for mail domain, to allow reuse
-                        value: STAMHOOFD.domains.webshopCname + '.',
+                        value: (STAMHOOFD.domains.webshopCname ?? STAMHOOFD.domains.registrationCname) + '.',
                     }));
 
                     if (STAMHOOFD.domains.registration && organization.privateMeta.pendingRegisterDomain) {

package/src/endpoints/organization/dashboard/stripe/ConnectStripeEndpoint.ts

@@ -46,7 +46,7 @@ export class ConnectMollieEndpoint extends Endpoint<Params, Query, Body, Respons
             });
         }
 
-        const type = STAMHOOFD.STRIPE_CONNECT_METHOD;
+        const type = STAMHOOFD.STRIPE_CONNECT_METHOD ?? 'standard';
 
         const sharedData: Stripe.AccountCreateParams = {
             capabilities: {

package/src/endpoints/organization/dashboard/stripe/DeleteStripeAccountEndpoint.ts

@@ -42,7 +42,7 @@ export class DeleteStripeAccountEndpoint extends Endpoint<Params, Query, Body, R
             throw Context.auth.notFoundOrNoAccess('Account niet gevonden');
         }
 
-        if (model.accountId === STAMHOOFD.STRIPE_ACCOUNT_ID) {
+        if (STAMHOOFD.STRIPE_ACCOUNT_ID && model.accountId === STAMHOOFD.STRIPE_ACCOUNT_ID) {
             throw new SimpleError({
                 code: 'invalid_request',
                 message: 'Je kan het hoofdaccount van het platform niet verwijderen.',