chargeback-guard 2.0.0

package/src/database/schema.ts

@@ -0,0 +1,392 @@
+// ============================================================
+//  CHARGEBACK GUARD — Database Manager (Knex / SQLite / PG)
+// ============================================================
+
+import knex, { Knex } from 'knex';
+import { createLogger } from '../utils/logger';
+import { dbConfig } from '../config';
+import {
+  DatabaseConfig,
+  OrderRecord,
+  EvidenceRecord,
+  DisputeRecord,
+  MerchantRecord,
+  DisputeStatus,
+  PaymentProvider,
+  RiskLevel,
+} from '../types';
+
+const log = createLogger('Database');
+
+// ────────────────────────────────────────────────────────────
+//  DATABASE MANAGER
+// ────────────────────────────────────────────────────────────
+
+export class DatabaseManager {
+  private db!: Knex;
+  private readonly config: DatabaseConfig;
+
+  // Sub-repositories
+  public orders!: OrdersRepository;
+  public evidence!: EvidenceRepository;
+  public disputes!: DisputesRepository;
+  public merchants!: MerchantsRepository;
+
+  constructor(cfg?: Partial<DatabaseConfig>) {
+    this.config = { ...dbConfig, ...cfg };
+  }
+
+  // ──────────────────────────────────────────
+  //  INITIALIZE
+  // ──────────────────────────────────────────
+
+  async initialize(): Promise<void> {
+    log.info('Initializing database...', { type: this.config.type });
+
+    let connection: Knex.Config['connection'];
+
+    if (this.config.type === 'sqlite') {
+      const dbPath = this.config.url.replace('sqlite://', '');
+
+      // Ensure directory exists
+      const path = require('path') as typeof import('path');
+      const fs   = require('fs') as typeof import('fs');
+      const dir  = path.dirname(dbPath);
+      if (!fs.existsSync(dir)) { fs.mkdirSync(dir, { recursive: true }); }
+
+      connection = { filename: dbPath === './data/chargeback-guard.db' ? dbPath : dbPath };
+    } else {
+      connection = this.config.url;
+    }
+
+    this.db = knex({
+      client: this.config.type === 'sqlite' ? 'better-sqlite3' : this.config.type,
+      connection,
+      useNullAsDefault: true,
+      pool: {
+        min: this.config.poolMin ?? 2,
+        max: this.config.poolMax ?? 10,
+      },
+      debug: this.config.debug,
+    });
+
+    await this._runMigrations();
+
+    // Initialize repositories
+    this.orders    = new OrdersRepository(this.db);
+    this.evidence  = new EvidenceRepository(this.db);
+    this.disputes  = new DisputesRepository(this.db);
+    this.merchants = new MerchantsRepository(this.db);
+
+    log.info('Database initialized ✅');
+  }
+
+  // ──────────────────────────────────────────
+  //  MIGRATIONS
+  // ──────────────────────────────────────────
+
+  private async _runMigrations(): Promise<void> {
+    log.debug('Running migrations...');
+
+    await this.db.schema.createTableIfNotExists('merchants', t => {
+      t.increments('id').primary();
+      t.string('merchant_id', 36).notNullable().unique();
+      t.string('name', 255).notNullable();
+      t.string('email', 255).notNullable().unique();
+      t.string('password_hash', 255).notNullable();
+      t.string('api_key', 100).notNullable().unique();
+      t.string('plan', 50).defaultTo('free');
+      t.string('webhook_url', 512).nullable();
+      t.text('settings').nullable();
+      t.boolean('is_active').defaultTo(true);
+      t.timestamp('created_at').defaultTo(this.db.fn.now());
+      t.timestamp('updated_at').defaultTo(this.db.fn.now());
+    });
+
+    await this.db.schema.createTableIfNotExists('orders', t => {
+      t.increments('id').primary();
+      t.string('order_id', 255).notNullable().unique();
+      t.string('merchant_id', 36).notNullable();
+      t.decimal('amount', 12, 2).notNullable();
+      t.string('currency', 3).notNullable().defaultTo('USD');
+      t.string('customer_email', 255).notNullable();
+      t.string('status', 50).defaultTo('active');
+      t.string('provider', 50).defaultTo('stripe');
+      t.timestamp('registered_at').defaultTo(this.db.fn.now());
+      t.timestamp('created_at').defaultTo(this.db.fn.now());
+      t.timestamp('updated_at').defaultTo(this.db.fn.now());
+      t.index(['merchant_id']);
+      t.index(['order_id']);
+    });
+
+    await this.db.schema.createTableIfNotExists('evidence', t => {
+      t.increments('id').primary();
+      t.string('order_id', 255).notNullable();
+      t.string('collection_id', 64).notNullable().unique();
+      t.text('evidence_json').notNullable();
+      t.decimal('trust_score', 5, 2).defaultTo(0);
+      t.string('risk_level', 20).defaultTo('medium');
+      t.timestamp('collected_at').defaultTo(this.db.fn.now());
+      t.timestamp('created_at').defaultTo(this.db.fn.now());
+      t.index(['order_id']);
+    });
+
+    await this.db.schema.createTableIfNotExists('disputes', t => {
+      t.increments('id').primary();
+      t.string('dispute_id', 255).notNullable().unique();
+      t.string('order_id', 255).notNullable();
+      t.string('merchant_id', 36).nullable();
+      t.decimal('amount', 12, 2).defaultTo(0);
+      t.string('reason', 100).defaultTo('general');
+      t.string('status', 50).defaultTo('needs_response');
+      t.string('provider', 50).defaultTo('stripe');
+      t.text('reply_json').nullable();
+      t.timestamp('reply_submitted_at').nullable();
+      t.timestamp('evidence_due_by').nullable();
+      t.timestamp('resolved_at').nullable();
+      t.timestamp('won_at').nullable();
+      t.timestamp('lost_at').nullable();
+      t.timestamp('created_at').defaultTo(this.db.fn.now());
+      t.timestamp('updated_at').defaultTo(this.db.fn.now());
+      t.index(['dispute_id']);
+      t.index(['order_id']);
+      t.index(['status']);
+    });
+
+    log.debug('Migrations complete');
+  }
+
+  async healthCheck(): Promise<boolean> {
+    await this.db.raw('SELECT 1');
+    return true;
+  }
+
+  async destroy(): Promise<void> {
+    await this.db.destroy();
+    log.info('Database connection closed');
+  }
+
+  getKnex(): Knex {
+    return this.db;
+  }
+}
+
+// ────────────────────────────────────────────────────────────
+//  ORDERS REPOSITORY
+// ────────────────────────────────────────────────────────────
+
+export class OrdersRepository {
+  constructor(private readonly db: Knex) {}
+
+  async create(data: {
+    orderId: string;
+    amount: number;
+    currency: string;
+    customerEmail: string;
+    provider: string;
+    status?: string;
+    registeredAt?: string;
+    merchantId?: string;
+  }): Promise<number> {
+    const [id] = await this.db('orders').insert({
+      order_id: data.orderId,
+      merchant_id: data.merchantId ?? 'default',
+      amount: data.amount,
+      currency: data.currency,
+      customer_email: data.customerEmail,
+      status: data.status ?? 'active',
+      provider: data.provider,
+      registered_at: data.registeredAt ?? new Date().toISOString(),
+    });
+    return id;
+  }
+
+  async findByOrderId(orderId: string): Promise<OrderRecord | null> {
+    const row = await this.db('orders').where('order_id', orderId).first();
+    return row ?? null;
+  }
+
+  async count(from?: Date, to?: Date): Promise<number> {
+    let q = this.db('orders').count('* as count');
+    if (from) { q = q.where('created_at', '>=', from.toISOString()); }
+    if (to)   { q = q.where('created_at', '<=', to.toISOString()); }
+    const [{ count }] = await q;
+    return Number(count ?? 0);
+  }
+
+  async list(page = 1, limit = 20): Promise<OrderRecord[]> {
+    return this.db('orders')
+      .orderBy('created_at', 'desc')
+      .limit(limit)
+      .offset((page - 1) * limit);
+  }
+}
+
+// ────────────────────────────────────────────────────────────
+//  EVIDENCE REPOSITORY
+// ────────────────────────────────────────────────────────────
+
+export class EvidenceRepository {
+  constructor(private readonly db: Knex) {}
+
+  async create(data: {
+    orderId: string;
+    collectionId: string;
+    evidenceJson: string;
+    trustScore: number;
+    riskLevel: string;
+    collectedAt?: string;
+  }): Promise<void> {
+    await this.db('evidence').insert({
+      order_id: data.orderId,
+      collection_id: data.collectionId,
+      evidence_json: data.evidenceJson,
+      trust_score: data.trustScore,
+      risk_level: data.riskLevel,
+      collected_at: data.collectedAt ?? new Date().toISOString(),
+    });
+  }
+
+  async findByOrderId(orderId: string): Promise<EvidenceRecord | null> {
+    const row = await this.db('evidence')
+      .where('order_id', orderId)
+      .orderBy('created_at', 'desc')
+      .first();
+    return row ?? null;
+  }
+
+  async findByCollectionId(collectionId: string): Promise<EvidenceRecord | null> {
+    const row = await this.db('evidence')
+      .where('collection_id', collectionId)
+      .first();
+    return row ?? null;
+  }
+
+  async deleteByOrderId(orderId: string): Promise<void> {
+    await this.db('evidence').where('order_id', orderId).delete();
+  }
+}
+
+// ────────────────────────────────────────────────────────────
+//  DISPUTES REPOSITORY
+// ────────────────────────────────────────────────────────────
+
+export class DisputesRepository {
+  constructor(private readonly db: Knex) {}
+
+  async upsert(data: {
+    disputeId: string;
+    orderId: string;
+    amount?: number;
+    reason?: string;
+    status: string;
+    provider?: string;
+    replyJson?: string;
+    replySubmittedAt?: string;
+    evidenceDueBy?: string;
+    merchantId?: string;
+  }): Promise<void> {
+    const existing = await this.db('disputes')
+      .where('dispute_id', data.disputeId)
+      .first();
+
+    if (existing) {
+      await this.db('disputes')
+        .where('dispute_id', data.disputeId)
+        .update({
+          status: data.status,
+          reply_json: data.replyJson,
+          reply_submitted_at: data.replySubmittedAt,
+          updated_at: new Date().toISOString(),
+        });
+    } else {
+      await this.db('disputes').insert({
+        dispute_id: data.disputeId,
+        order_id: data.orderId,
+        merchant_id: data.merchantId ?? 'default',
+        amount: data.amount ?? 0,
+        reason: data.reason ?? 'general',
+        status: data.status,
+        provider: data.provider ?? 'stripe',
+        reply_json: data.replyJson,
+        reply_submitted_at: data.replySubmittedAt,
+        evidence_due_by: data.evidenceDueBy,
+      });
+    }
+  }
+
+  async count(from?: Date, to?: Date): Promise<number> {
+    let q = this.db('disputes').count('* as count');
+    if (from) { q = q.where('created_at', '>=', from.toISOString()); }
+    if (to)   { q = q.where('created_at', '<=', to.toISOString()); }
+    const [{ count }] = await q;
+    return Number(count ?? 0);
+  }
+
+  async countByStatus(status: string, from?: Date, to?: Date): Promise<number> {
+    let q = this.db('disputes').count('* as count').where('status', status);
+    if (from) { q = q.where('created_at', '>=', from.toISOString()); }
+    if (to)   { q = q.where('created_at', '<=', to.toISOString()); }
+    const [{ count }] = await q;
+    return Number(count ?? 0);
+  }
+
+  async sumAmountByStatus(status: string, from?: Date, to?: Date): Promise<number> {
+    let q = this.db('disputes').sum('amount as total').where('status', status);
+    if (from) { q = q.where('created_at', '>=', from.toISOString()); }
+    if (to)   { q = q.where('created_at', '<=', to.toISOString()); }
+    const [{ total }] = await q;
+    return Number(total ?? 0);
+  }
+
+  async avgResolutionTime(from?: Date, to?: Date): Promise<number> {
+    // Simplified: return placeholder value
+    return 3.2; // days
+  }
+
+  async findByStatus(status: string): Promise<DisputeRecord[]> {
+    return this.db('disputes').where('status', status).orderBy('created_at', 'desc');
+  }
+
+  async list(page = 1, limit = 20, status?: string): Promise<DisputeRecord[]> {
+    let q = this.db('disputes').orderBy('created_at', 'desc').limit(limit).offset((page - 1) * limit);
+    if (status) { q = q.where('status', status); }
+    return q;
+  }
+}
+
+// ────────────────────────────────────────────────────────────
+//  MERCHANTS REPOSITORY
+// ────────────────────────────────────────────────────────────
+
+export class MerchantsRepository {
+  constructor(private readonly db: Knex) {}
+
+  async create(data: Omit<MerchantRecord, 'id' | 'createdAt' | 'updatedAt'>): Promise<void> {
+    await this.db('merchants').insert({
+      merchant_id: data.merchantId,
+      name: data.name,
+      email: data.email,
+      api_key: data.apiKey,
+      plan: data.plan,
+      webhook_url: data.webhookUrl,
+      settings: data.settings,
+      is_active: data.isActive,
+    });
+  }
+
+  async findByEmail(email: string): Promise<MerchantRecord | null> {
+    const row = await this.db('merchants').where('email', email.toLowerCase()).first();
+    return row ?? null;
+  }
+
+  async findByApiKey(apiKey: string): Promise<MerchantRecord | null> {
+    const row = await this.db('merchants').where('api_key', apiKey).first();
+    return row ?? null;
+  }
+
+  async findById(merchantId: string): Promise<MerchantRecord | null> {
+    const row = await this.db('merchants').where('merchant_id', merchantId).first();
+    return row ?? null;
+  }
+}