codebuff 1.0.142 → 1.0.143

package/dist/common/actions.d.ts

@@ -497,7 +497,7 @@ export declare const CLIENT_ACTION_SCHEMA: z.ZodDiscriminatedUnion<"type", [z.Zo
         content: string;
         filePath: string;
     }>, "many">;
-    costMode: z.ZodDefault<z.ZodOptional<z.ZodEnum<["lite", "normal", "pro"]>>>;
+    costMode: z.ZodDefault<z.ZodOptional<z.ZodEnum<["lite", "normal", "max"]>>>;
 }, "strip", z.ZodTypeAny, {
     type: "user-input";
     fingerprintId: string;
@@ -558,7 +558,7 @@ export declare const CLIENT_ACTION_SCHEMA: z.ZodDiscriminatedUnion<"type", [z.Zo
         content: string;
         filePath: string;
     }[];
-    costMode: "lite" | "normal" | "pro";
+    costMode: "lite" | "normal" | "max";
     authToken?: string | undefined;
 }, {
     type: "user-input";
@@ -621,7 +621,7 @@ export declare const CLIENT_ACTION_SCHEMA: z.ZodDiscriminatedUnion<"type", [z.Zo
         filePath: string;
     }[];
     authToken?: string | undefined;
-    costMode?: "lite" | "normal" | "pro" | undefined;
+    costMode?: "lite" | "normal" | "max" | undefined;
 }>, z.ZodObject<{
     type: z.ZodLiteral<"read-files-response">;
     files: z.ZodRecord<z.ZodString, z.ZodUnion<[z.ZodString, z.ZodNull]>>;

package/dist/common/billing/payment-guards.d.ts

@@ -0,0 +1,11 @@
+export declare class PaymentGuards {
+    private subscriptionId;
+    constructor(subscriptionId: string);
+    validatePaymentMethod(): Promise<{
+        valid: boolean;
+        error?: string;
+    }>;
+    handleFailedPayment(): Promise<void>;
+    processPartialPayment(amountPaid: number): Promise<void>;
+    handleRefund(amount: number): Promise<void>;
+}

package/dist/common/billing/payment-guards.js

@@ -0,0 +1,136 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || function (mod) {
+    if (mod && mod.__esModule) return mod;
+    var result = {};
+    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
+    __setModuleDefault(result, mod);
+    return result;
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PaymentGuards = void 0;
+const stripe_1 = require("../util/stripe");
+const db_1 = __importDefault(require("../db"));
+const schema = __importStar(require("../db/schema"));
+const drizzle_orm_1 = require("drizzle-orm");
+class PaymentGuards {
+    subscriptionId;
+    constructor(subscriptionId) {
+        this.subscriptionId = subscriptionId;
+    }
+    async validatePaymentMethod() {
+        try {
+            const subscription = await stripe_1.stripeServer.subscriptions.retrieve(this.subscriptionId, {
+                expand: ['latest_invoice.payment_intent'],
+            });
+            const invoice = subscription.latest_invoice;
+            if (!invoice?.payment_intent) {
+                return { valid: true }; // No payment needed
+            }
+            const paymentIntent = invoice.payment_intent;
+            if (paymentIntent.status === 'succeeded') {
+                return { valid: true };
+            }
+            return {
+                valid: false,
+                error: `Payment failed: ${paymentIntent.last_payment_error?.message || 'Unknown error'}`,
+            };
+        }
+        catch (error) {
+            console.error('Error validating payment method:', error);
+            return {
+                valid: false,
+                error: 'Failed to validate payment method',
+            };
+        }
+    }
+    async handleFailedPayment() {
+        // Record the failed attempt
+        await db_1.default.insert(schema.payment_attempts).values({
+            id: crypto.randomUUID(),
+            subscription_id: this.subscriptionId,
+            status: 'failed',
+            created_at: new Date(),
+        });
+        // Get the subscription to check retry count
+        const attempts = await db_1.default
+            .select({
+            count: (0, drizzle_orm_1.sql) `count(*)::int`,
+        })
+            .from(schema.payment_attempts)
+            .where((0, drizzle_orm_1.and)((0, drizzle_orm_1.eq)(schema.payment_attempts.subscription_id, this.subscriptionId), (0, drizzle_orm_1.eq)(schema.payment_attempts.status, 'failed'), (0, drizzle_orm_1.sql) `created_at > now() - interval '24 hours'`));
+        const retryCount = attempts[0].count;
+        if (retryCount >= 3) {
+            // Too many failures, pause the subscription
+            await stripe_1.stripeServer.subscriptions.update(this.subscriptionId, {
+                pause_collection: {
+                    behavior: 'void',
+                },
+            });
+        }
+    }
+    async processPartialPayment(amountPaid) {
+        // Record the partial payment
+        await db_1.default.insert(schema.payment_attempts).values({
+            id: crypto.randomUUID(),
+            subscription_id: this.subscriptionId,
+            amount: amountPaid.toString(), // Convert to string for decimal type
+            status: 'partial',
+            created_at: new Date(),
+        });
+        // Update the subscription with remaining balance
+        const subscription = await stripe_1.stripeServer.subscriptions.retrieve(this.subscriptionId, {
+            expand: ['latest_invoice'],
+        });
+        const invoice = subscription.latest_invoice;
+        if (invoice) {
+            const remainingAmount = invoice.amount_due - amountPaid;
+            if (remainingAmount > 0) {
+                await stripe_1.stripeServer.invoices.update(invoice.id, {
+                    description: `Partial payment received: ${amountPaid}. Remaining: ${remainingAmount}`,
+                });
+            }
+        }
+    }
+    async handleRefund(amount) {
+        const subscription = await stripe_1.stripeServer.subscriptions.retrieve(this.subscriptionId, {
+            expand: ['latest_invoice.payment_intent'],
+        });
+        const invoice = subscription.latest_invoice;
+        if (!invoice?.payment_intent) {
+            throw new Error('No payment found to refund');
+        }
+        await stripe_1.stripeServer.refunds.create({
+            payment_intent: invoice.payment_intent.id,
+            amount,
+        });
+        // Record the refund
+        await db_1.default.insert(schema.payment_attempts).values({
+            id: crypto.randomUUID(),
+            subscription_id: this.subscriptionId,
+            amount: (-amount).toString(), // Convert to string for decimal type
+            status: 'refunded',
+            created_at: new Date(),
+        });
+    }
+}
+exports.PaymentGuards = PaymentGuards;
+//# sourceMappingURL=payment-guards.js.map

package/dist/common/billing/payment-guards.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"payment-guards.js","sourceRoot":"","sources":["../../src/billing/payment-guards.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,2CAA6C;AAC7C,+CAAsB;AACtB,qDAAsC;AACtC,6CAA0C;AAE1C,MAAa,aAAa;IACJ;IAApB,YAAoB,cAAsB;QAAtB,mBAAc,GAAd,cAAc,CAAQ;IAAG,CAAC;IAE9C,KAAK,CAAC,qBAAqB;QAIzB,IAAI,CAAC;YACH,MAAM,YAAY,GAAG,MAAM,qBAAY,CAAC,aAAa,CAAC,QAAQ,CAC5D,IAAI,CAAC,cAAc,EACnB;gBACE,MAAM,EAAE,CAAC,+BAA+B,CAAC;aAC1C,CACF,CAAA;YAED,MAAM,OAAO,GAAG,YAAY,CAAC,cAAqB,CAAA;YAClD,IAAI,CAAC,OAAO,EAAE,cAAc,EAAE,CAAC;gBAC7B,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,CAAA,CAAC,oBAAoB;YAC7C,CAAC;YAED,MAAM,aAAa,GAAG,OAAO,CAAC,cAAc,CAAA;YAC5C,IAAI,aAAa,CAAC,MAAM,KAAK,WAAW,EAAE,CAAC;gBACzC,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,CAAA;YACxB,CAAC;YAED,OAAO;gBACL,KAAK,EAAE,KAAK;gBACZ,KAAK,EAAE,mBAAmB,aAAa,CAAC,kBAAkB,EAAE,OAAO,IAAI,eAAe,EAAE;aACzF,CAAA;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,KAAK,CAAC,kCAAkC,EAAE,KAAK,CAAC,CAAA;YACxD,OAAO;gBACL,KAAK,EAAE,KAAK;gBACZ,KAAK,EAAE,mCAAmC;aAC3C,CAAA;QACH,CAAC;IACH,CAAC;IAED,KAAK,CAAC,mBAAmB;QACvB,4BAA4B;QAC5B,MAAM,YAAE,CAAC,MAAM,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAC,MAAM,CAAC;YAC9C,EAAE,EAAE,MAAM,CAAC,UAAU,EAAE;YACvB,eAAe,EAAE,IAAI,CAAC,cAAc;YACpC,MAAM,EAAE,QAAQ;YAChB,UAAU,EAAE,IAAI,IAAI,EAAE;SACvB,CAAC,CAAA;QAEF,4CAA4C;QAC5C,MAAM,QAAQ,GAAG,MAAM,YAAE;aACtB,MAAM,CAAC;YACN,KAAK,EAAE,IAAA,iBAAG,EAAQ,eAAe;SAClC,CAAC;aACD,IAAI,CAAC,MAAM,CAAC,gBAAgB,CAAC;aAC7B,KAAK,CACJ,IAAA,iBAAG,EACD,IAAA,gBAAE,EAAC,MAAM,CAAC,gBAAgB,CAAC,eAAe,EAAE,IAAI,CAAC,cAAc,CAAC,EAChE,IAAA,gBAAE,EAAC,MAAM,CAAC,gBAAgB,CAAC,MAAM,EAAE,QAAQ,CAAC,EAC5C,IAAA,iBAAG,EAAA,0CAA0C,CAC9C,CACF,CAAA;QAEH,MAAM,UAAU,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC,KAAK,CAAA;QACpC,IAAI,UAAU,IAAI,CAAC,EAAE,CAAC;YACpB,4CAA4C;YAC5C,MAAM,qBAAY,CAAC,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,cAAc,EAAE;gBAC3D,gBAAgB,EAAE;oBAChB,QAAQ,EAAE,MAAM;iBACjB;aACF,CAAC,CAAA;QACJ,CAAC;IACH,CAAC;IAED,KAAK,CAAC,qBAAqB,CAAC,UAAkB;QAC5C,6BAA6B;QAC7B,MAAM,YAAE,CAAC,MAAM,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAC,MAAM,CAAC;YAC9C,EAAE,EAAE,MAAM,CAAC,UAAU,EAAE;YACvB,eAAe,EAAE,IAAI,CAAC,cAAc;YACpC,MAAM,EAAE,UAAU,CAAC,QAAQ,EAAE,EAAE,qCAAqC;YACpE,MAAM,EAAE,SAAS;YACjB,UAAU,EAAE,IAAI,IAAI,EAAE;SACvB,CAAC,CAAA;QAEF,iDAAiD;QACjD,MAAM,YAAY,GAAG,MAAM,qBAAY,CAAC,aAAa,CAAC,QAAQ,CAC5D,IAAI,CAAC,cAAc,EACnB;YACE,MAAM,EAAE,CAAC,gBAAgB,CAAC;SAC3B,CACF,CAAA;QAED,MAAM,OAAO,GAAG,YAAY,CAAC,cAAqB,CAAA;QAClD,IAAI,OAAO,EAAE,CAAC;YACZ,MAAM,eAAe,GAAG,OAAO,CAAC,UAAU,GAAG,UAAU,CAAA;YACvD,IAAI,eAAe,GAAG,CAAC,EAAE,CAAC;gBACxB,MAAM,qBAAY,CAAC,QAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,EAAE;oBAC7C,WAAW,EAAE,6BAA6B,UAAU,gBAAgB,eAAe,EAAE;iBACtF,CAAC,CAAA;YACJ,CAAC;QACH,CAAC;IACH,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,MAAc;QAC/B,MAAM,YAAY,GAAG,MAAM,qBAAY,CAAC,aAAa,CAAC,QAAQ,CAC5D,IAAI,CAAC,cAAc,EACnB;YACE,MAAM,EAAE,CAAC,+BAA+B,CAAC;SAC1C,CACF,CAAA;QAED,MAAM,OAAO,GAAG,YAAY,CAAC,cAAqB,CAAA;QAClD,IAAI,CAAC,OAAO,EAAE,cAAc,EAAE,CAAC;YAC7B,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAA;QAC/C,CAAC;QAED,MAAM,qBAAY,CAAC,OAAO,CAAC,MAAM,CAAC;YAChC,cAAc,EAAE,OAAO,CAAC,cAAc,CAAC,EAAE;YACzC,MAAM;SACP,CAAC,CAAA;QAEF,oBAAoB;QACpB,MAAM,YAAE,CAAC,MAAM,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAC,MAAM,CAAC;YAC9C,EAAE,EAAE,MAAM,CAAC,UAAU,EAAE;YACvB,eAAe,EAAE,IAAI,CAAC,cAAc;YACpC,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,QAAQ,EAAE,EAAE,qCAAqC;YACnE,MAAM,EAAE,UAAU;YAClB,UAAU,EAAE,IAAI,IAAI,EAAE;SACvB,CAAC,CAAA;IACJ,CAAC;CACF;AAhID,sCAgIC"}

package/dist/common/billing/subscription-state.d.ts

@@ -0,0 +1,13 @@
+import { z } from 'zod';
+export type SubscriptionState = 'active' | 'past_due' | 'incomplete' | 'canceled' | 'trialing' | 'paused' | 'transitioning';
+export declare const subscriptionStateSchema: z.ZodEnum<["active", "past_due", "incomplete", "canceled", "trialing", "paused", "transitioning"]>;
+export declare class SubscriptionStateManager {
+    private subscriptionId;
+    private transitionLock;
+    constructor(subscriptionId: string);
+    getCurrentState(): Promise<SubscriptionState>;
+    beginStateTransition(): Promise<boolean>;
+    endStateTransition(): Promise<void>;
+    addStateHistoryEntry(fromState: SubscriptionState, toState: SubscriptionState, reason?: string): Promise<void>;
+    private mapStripeState;
+}

package/dist/common/billing/subscription-state.js

@@ -0,0 +1,117 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || function (mod) {
+    if (mod && mod.__esModule) return mod;
+    var result = {};
+    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
+    __setModuleDefault(result, mod);
+    return result;
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SubscriptionStateManager = exports.subscriptionStateSchema = void 0;
+const zod_1 = require("zod");
+const drizzle_orm_1 = require("drizzle-orm");
+const db_1 = __importDefault(require("../db"));
+const schema = __importStar(require("../db/schema"));
+const stripe_1 = require("../util/stripe");
+exports.subscriptionStateSchema = zod_1.z.enum([
+    'active',
+    'past_due',
+    'incomplete',
+    'canceled',
+    'trialing',
+    'paused',
+    'transitioning',
+]);
+class SubscriptionStateManager {
+    subscriptionId;
+    transitionLock = null;
+    constructor(subscriptionId) {
+        this.subscriptionId = subscriptionId;
+    }
+    async getCurrentState() {
+        const subscription = await stripe_1.stripeServer.subscriptions.retrieve(this.subscriptionId);
+        return this.mapStripeState(subscription.status);
+    }
+    async beginStateTransition() {
+        // Generate a new lock UUID
+        const newLock = crypto.randomUUID();
+        // Try to acquire lock
+        const result = await db_1.default
+            .update(schema.user)
+            .set({
+            transition_lock: newLock,
+        })
+            .where((0, drizzle_orm_1.and)((0, drizzle_orm_1.eq)(schema.user.stripe_price_id, this.subscriptionId), (0, drizzle_orm_1.sql) `transition_lock IS NULL`))
+            .returning({ transitionLock: schema.user.transition_lock });
+        if (result.length === 0) {
+            return false; // Lock acquisition failed
+        }
+        this.transitionLock = newLock;
+        return true;
+    }
+    async endStateTransition() {
+        if (!this.transitionLock) {
+            throw new Error('No active transition');
+        }
+        await db_1.default
+            .update(schema.user)
+            .set({
+            transition_lock: null,
+        })
+            .where((0, drizzle_orm_1.and)((0, drizzle_orm_1.eq)(schema.user.stripe_price_id, this.subscriptionId), (0, drizzle_orm_1.eq)(schema.user.transition_lock, this.transitionLock)));
+        this.transitionLock = null;
+    }
+    async addStateHistoryEntry(fromState, toState, reason) {
+        const entry = {
+            fromState,
+            toState,
+            reason,
+            timestamp: new Date().toISOString(),
+        };
+        await db_1.default
+            .update(schema.user)
+            .set({
+            state_history: (0, drizzle_orm_1.sql) `COALESCE(state_history, '[]'::jsonb) || ${JSON.stringify(entry)}::jsonb`,
+        })
+            .where((0, drizzle_orm_1.eq)(schema.user.stripe_price_id, this.subscriptionId));
+    }
+    mapStripeState(stripeStatus) {
+        switch (stripeStatus) {
+            case 'active':
+                return 'active';
+            case 'past_due':
+                return 'past_due';
+            case 'incomplete':
+                return 'incomplete';
+            case 'canceled':
+                return 'canceled';
+            case 'trialing':
+                return 'trialing';
+            case 'paused':
+                return 'paused';
+            default:
+                throw new Error(`Unknown Stripe status: ${stripeStatus}`);
+        }
+    }
+}
+exports.SubscriptionStateManager = SubscriptionStateManager;
+//# sourceMappingURL=subscription-state.js.map

package/dist/common/billing/subscription-state.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"subscription-state.js","sourceRoot":"","sources":["../../src/billing/subscription-state.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,6BAAuB;AACvB,6CAA0C;AAC1C,+CAAsB;AACtB,qDAAsC;AACtC,2CAA6C;AAWhC,QAAA,uBAAuB,GAAG,OAAC,CAAC,IAAI,CAAC;IAC5C,QAAQ;IACR,UAAU;IACV,YAAY;IACZ,UAAU;IACV,UAAU;IACV,QAAQ;IACR,eAAe;CAChB,CAAC,CAAA;AAEF,MAAa,wBAAwB;IAGf;IAFZ,cAAc,GAAkB,IAAI,CAAA;IAE5C,YAAoB,cAAsB;QAAtB,mBAAc,GAAd,cAAc,CAAQ;IAAG,CAAC;IAE9C,KAAK,CAAC,eAAe;QACnB,MAAM,YAAY,GAAG,MAAM,qBAAY,CAAC,aAAa,CAAC,QAAQ,CAAC,IAAI,CAAC,cAAc,CAAC,CAAA;QACnF,OAAO,IAAI,CAAC,cAAc,CAAC,YAAY,CAAC,MAAM,CAAC,CAAA;IACjD,CAAC;IAED,KAAK,CAAC,oBAAoB;QACxB,2BAA2B;QAC3B,MAAM,OAAO,GAAG,MAAM,CAAC,UAAU,EAAE,CAAA;QAEnC,sBAAsB;QACtB,MAAM,MAAM,GAAG,MAAM,YAAE;aACpB,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC;aACnB,GAAG,CAAC;YACH,eAAe,EAAE,OAAO;SACzB,CAAC;aACD,KAAK,CACJ,IAAA,iBAAG,EACD,IAAA,gBAAE,EAAC,MAAM,CAAC,IAAI,CAAC,eAAe,EAAE,IAAI,CAAC,cAAc,CAAC,EACpD,IAAA,iBAAG,EAAA,yBAAyB,CAC7B,CACF;aACA,SAAS,CAAC,EAAE,cAAc,EAAE,MAAM,CAAC,IAAI,CAAC,eAAe,EAAE,CAAC,CAAA;QAE7D,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACxB,OAAO,KAAK,CAAA,CAAC,0BAA0B;QACzC,CAAC;QAED,IAAI,CAAC,cAAc,GAAG,OAAO,CAAA;QAC7B,OAAO,IAAI,CAAA;IACb,CAAC;IAED,KAAK,CAAC,kBAAkB;QACtB,IAAI,CAAC,IAAI,CAAC,cAAc,EAAE,CAAC;YACzB,MAAM,IAAI,KAAK,CAAC,sBAAsB,CAAC,CAAA;QACzC,CAAC;QAED,MAAM,YAAE;aACL,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC;aACnB,GAAG,CAAC;YACH,eAAe,EAAE,IAAI;SACtB,CAAC;aACD,KAAK,CACJ,IAAA,iBAAG,EACD,IAAA,gBAAE,EAAC,MAAM,CAAC,IAAI,CAAC,eAAe,EAAE,IAAI,CAAC,cAAc,CAAC,EACpD,IAAA,gBAAE,EAAC,MAAM,CAAC,IAAI,CAAC,eAAe,EAAE,IAAI,CAAC,cAAc,CAAC,CACrD,CACF,CAAA;QAEH,IAAI,CAAC,cAAc,GAAG,IAAI,CAAA;IAC5B,CAAC;IAED,KAAK,CAAC,oBAAoB,CACxB,SAA4B,EAC5B,OAA0B,EAC1B,MAAe;QAEf,MAAM,KAAK,GAAG;YACZ,SAAS;YACT,OAAO;YACP,MAAM;YACN,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACpC,CAAA;QAED,MAAM,YAAE;aACL,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC;aACnB,GAAG,CAAC;YACH,aAAa,EAAE,IAAA,iBAAG,EAAA,2CAA2C,IAAI,CAAC,SAAS,CACzE,KAAK,CACN,SAAS;SACX,CAAC;aACD,KAAK,CAAC,IAAA,gBAAE,EAAC,MAAM,CAAC,IAAI,CAAC,eAAe,EAAE,IAAI,CAAC,cAAc,CAAC,CAAC,CAAA;IAChE,CAAC;IAEO,cAAc,CAAC,YAAoB;QACzC,QAAQ,YAAY,EAAE,CAAC;YACrB,KAAK,QAAQ;gBACX,OAAO,QAAQ,CAAA;YACjB,KAAK,UAAU;gBACb,OAAO,UAAU,CAAA;YACnB,KAAK,YAAY;gBACf,OAAO,YAAY,CAAA;YACrB,KAAK,UAAU;gBACb,OAAO,UAAU,CAAA;YACnB,KAAK,UAAU;gBACb,OAAO,UAAU,CAAA;YACnB,KAAK,QAAQ;gBACX,OAAO,QAAQ,CAAA;YACjB;gBACE,MAAM,IAAI,KAAK,CAAC,0BAA0B,YAAY,EAAE,CAAC,CAAA;QAC7D,CAAC;IACH,CAAC;CACF;AAhGD,4DAgGC"}

package/dist/common/billing/webhook-processor.d.ts

@@ -0,0 +1,21 @@
+import type Stripe from 'stripe';
+export declare class WebhookProcessor {
+    private stripeSignature;
+    private rawBody;
+    constructor(stripeSignature: string, rawBody: string);
+    validateWebhook(): Promise<{
+        valid: boolean;
+        event?: Stripe.Event;
+        error?: string;
+    }>;
+    private checkDuplicateEvent;
+    processEvent(event: Stripe.Event): Promise<void>;
+    private handleEvent;
+    private handleSubscriptionChange;
+    private handleSubscriptionDeletion;
+    private handleInvoiceCreation;
+    private handleInvoicePayment;
+    private handlePaymentFailure;
+    private getTotalReferralCredits;
+    private mapStripeStatus;
+}

package/dist/common/billing/webhook-processor.js

@@ -0,0 +1,315 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || function (mod) {
+    if (mod && mod.__esModule) return mod;
+    var result = {};
+    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
+    __setModuleDefault(result, mod);
+    return result;
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.WebhookProcessor = void 0;
+const stripe_1 = require("../util/stripe");
+const db_1 = __importDefault(require("../db"));
+const schema = __importStar(require("../db/schema"));
+const drizzle_orm_1 = require("drizzle-orm");
+const zod_1 = require("zod");
+const subscription_state_1 = require("./subscription-state");
+const quota_manager_1 = require("./quota-manager");
+const payment_guards_1 = require("./payment-guards");
+const webhookEventSchema = zod_1.z.object({
+    id: zod_1.z.string(),
+    type: zod_1.z.string(),
+    created: zod_1.z.number(),
+    data: zod_1.z.object({
+        object: zod_1.z.record(zod_1.z.any()),
+    }),
+});
+class WebhookProcessor {
+    stripeSignature;
+    rawBody;
+    constructor(stripeSignature, rawBody) {
+        this.stripeSignature = stripeSignature;
+        this.rawBody = rawBody;
+    }
+    async validateWebhook() {
+        try {
+            const event = stripe_1.stripeServer.webhooks.constructEvent(this.rawBody, this.stripeSignature, process.env.STRIPE_WEBHOOK_SECRET_KEY);
+            // Validate event structure
+            const result = webhookEventSchema.safeParse(event);
+            if (!result.success) {
+                return {
+                    valid: false,
+                    error: 'Invalid event structure',
+                };
+            }
+            // Check for duplicate events
+            const isDuplicate = await this.checkDuplicateEvent(event.id);
+            if (isDuplicate) {
+                return {
+                    valid: false,
+                    error: 'Duplicate event',
+                };
+            }
+            return {
+                valid: true,
+                event,
+            };
+        }
+        catch (error) {
+            return {
+                valid: false,
+                error: error instanceof Error ? error.message : 'Unknown error',
+            };
+        }
+    }
+    async checkDuplicateEvent(eventId) {
+        // First try to insert the event
+        try {
+            await db_1.default.insert(schema.webhook_events).values({
+                id: eventId,
+                processed_at: new Date(),
+            });
+            return false; // Not a duplicate
+        }
+        catch (error) {
+            // If insert fails due to unique constraint, it's a duplicate
+            return true;
+        }
+    }
+    async processEvent(event) {
+        // Start transaction to ensure atomic processing
+        await db_1.default.transaction(async (tx) => {
+            // Lock the subscription record if this is a subscription-related event
+            if (event.type.startsWith('customer.subscription.')) {
+                const subscription = event.data.object;
+                await tx
+                    .select()
+                    .from(schema.user)
+                    .where((0, drizzle_orm_1.eq)(schema.user.stripe_price_id, subscription.id))
+                    .for('update');
+            }
+            // Record event processing start
+            await tx.insert(schema.webhook_processing).values({
+                id: crypto.randomUUID(),
+                event_id: event.id,
+                started_at: new Date(),
+                status: 'processing',
+            });
+            try {
+                // Process the event based on type
+                await this.handleEvent(event);
+                // Record successful processing
+                await tx
+                    .update(schema.webhook_processing)
+                    .set({
+                    status: 'completed',
+                    completed_at: new Date(),
+                })
+                    .where((0, drizzle_orm_1.eq)(schema.webhook_processing.event_id, event.id));
+            }
+            catch (error) {
+                // Record failed processing
+                await tx
+                    .update(schema.webhook_processing)
+                    .set({
+                    status: 'failed',
+                    error_message: error instanceof Error ? error.message : 'Unknown error',
+                    completed_at: new Date(),
+                })
+                    .where((0, drizzle_orm_1.eq)(schema.webhook_processing.event_id, event.id));
+                throw error; // Re-throw to rollback transaction
+            }
+        });
+    }
+    async handleEvent(event) {
+        // Check for older unprocessed events
+        const pendingEvents = await db_1.default
+            .select({
+            id: schema.webhook_events.id,
+            created: schema.webhook_events.created_at,
+        })
+            .from(schema.webhook_events)
+            .where((0, drizzle_orm_1.and)((0, drizzle_orm_1.sql) `created_at < ${new Date(event.created * 1000)}`, (0, drizzle_orm_1.eq)(schema.webhook_events.processed, false)))
+            .orderBy(schema.webhook_events.created_at);
+        // If there are older unprocessed events, delay processing this one
+        if (pendingEvents.length > 0) {
+            throw new Error(`Unprocessed events exist before ${event.id}. Process those first.`);
+        }
+        // Process based on event type
+        switch (event.type) {
+            case 'customer.subscription.created':
+            case 'customer.subscription.updated':
+                await this.handleSubscriptionChange(event);
+                break;
+            case 'customer.subscription.deleted':
+                await this.handleSubscriptionDeletion(event);
+                break;
+            case 'invoice.created':
+                await this.handleInvoiceCreation(event);
+                break;
+            case 'invoice.paid':
+                await this.handleInvoicePayment(event);
+                break;
+            case 'invoice.payment_failed':
+                await this.handlePaymentFailure(event);
+                break;
+            default:
+                console.log(`Unhandled event type ${event.type}`);
+        }
+        // Mark event as processed
+        await db_1.default
+            .update(schema.webhook_events)
+            .set({
+            processed: true,
+            processed_at: new Date(),
+        })
+            .where((0, drizzle_orm_1.eq)(schema.webhook_events.id, event.id));
+    }
+    async handleSubscriptionChange(event) {
+        const subscription = event.data.object;
+        const stateManager = new subscription_state_1.SubscriptionStateManager(subscription.id);
+        const quotaManager = new quota_manager_1.QuotaManager(subscription.id);
+        // Get the current state and update it
+        const currentState = await stateManager.getCurrentState();
+        const newState = this.mapStripeStatus(subscription.status);
+        if (currentState !== newState) {
+            // Acquire lock for state transition
+            const lockAcquired = await stateManager.beginStateTransition();
+            if (!lockAcquired) {
+                throw new Error('Failed to acquire transition lock');
+            }
+            try {
+                // Record state change
+                await stateManager.addStateHistoryEntry(currentState, newState, `Webhook event: ${event.type}`);
+                // Handle quota updates if needed
+                if (newState === 'active' && currentState !== 'active') {
+                    await quotaManager.resetQuota();
+                }
+            }
+            finally {
+                await stateManager.endStateTransition();
+            }
+        }
+    }
+    async handleSubscriptionDeletion(event) {
+        const subscription = event.data.object;
+        const stateManager = new subscription_state_1.SubscriptionStateManager(subscription.id);
+        const lockAcquired = await stateManager.beginStateTransition();
+        if (!lockAcquired) {
+            throw new Error('Failed to acquire transition lock');
+        }
+        try {
+            await stateManager.addStateHistoryEntry('active', 'canceled', 'Subscription deleted');
+        }
+        finally {
+            await stateManager.endStateTransition();
+        }
+    }
+    async handleInvoiceCreation(event) {
+        const invoice = event.data.object;
+        if (!invoice.subscription)
+            return;
+        // Handle referral credits if applicable
+        if (invoice.customer) {
+            const referralCredits = await this.getTotalReferralCredits(invoice.customer.toString());
+            if (referralCredits > 0) {
+                // Apply referral credits as credit on the invoice
+                await stripe_1.stripeServer.invoices.update(invoice.id, {
+                    description: `Including referral credits: ${referralCredits}`,
+                });
+            }
+        }
+    }
+    async handleInvoicePayment(event) {
+        const invoice = event.data.object;
+        if (!invoice.subscription)
+            return;
+        const stateManager = new subscription_state_1.SubscriptionStateManager(invoice.subscription.toString());
+        const quotaManager = new quota_manager_1.QuotaManager(invoice.subscription.toString());
+        // Reset quota for new billing period
+        await quotaManager.resetQuota();
+        // Update subscription state if needed
+        const currentState = await stateManager.getCurrentState();
+        if (currentState !== 'active') {
+            const lockAcquired = await stateManager.beginStateTransition();
+            if (!lockAcquired) {
+                throw new Error('Failed to acquire transition lock');
+            }
+            try {
+                await stateManager.addStateHistoryEntry(currentState, 'active', 'Invoice payment successful');
+            }
+            finally {
+                await stateManager.endStateTransition();
+            }
+        }
+    }
+    async handlePaymentFailure(event) {
+        const invoice = event.data.object;
+        if (!invoice.subscription)
+            return;
+        const paymentGuards = new payment_guards_1.PaymentGuards(invoice.subscription.toString());
+        await paymentGuards.handleFailedPayment();
+        // Update subscription state
+        const stateManager = new subscription_state_1.SubscriptionStateManager(invoice.subscription.toString());
+        const lockAcquired = await stateManager.beginStateTransition();
+        if (!lockAcquired) {
+            throw new Error('Failed to acquire transition lock');
+        }
+        try {
+            await stateManager.addStateHistoryEntry('active', 'past_due', 'Payment failed');
+        }
+        finally {
+            await stateManager.endStateTransition();
+        }
+    }
+    async getTotalReferralCredits(customerId) {
+        const result = await db_1.default
+            .select({
+            total: (0, drizzle_orm_1.sql) `COALESCE(SUM(${schema.referral.credits}), 0)::int`,
+        })
+            .from(schema.user)
+            .leftJoin(schema.referral, (0, drizzle_orm_1.or)((0, drizzle_orm_1.eq)(schema.referral.referrer_id, schema.user.id), (0, drizzle_orm_1.eq)(schema.referral.referred_id, schema.user.id)))
+            .where((0, drizzle_orm_1.eq)(schema.user.stripe_customer_id, customerId))
+            .groupBy(schema.user.id);
+        return result[0]?.total || 0;
+    }
+    mapStripeStatus(status) {
+        switch (status) {
+            case 'active':
+                return 'active';
+            case 'past_due':
+                return 'past_due';
+            case 'incomplete':
+                return 'incomplete';
+            case 'canceled':
+                return 'canceled';
+            case 'trialing':
+                return 'trialing';
+            case 'paused':
+                return 'paused';
+            default:
+                throw new Error(`Unknown Stripe status: ${status}`);
+        }
+    }
+}
+exports.WebhookProcessor = WebhookProcessor;
+//# sourceMappingURL=webhook-processor.js.map