mirror of
https://github.com/wasp-lang/open-saas.git
synced 2025-03-29 11:12:19 +01:00
Validate payment operations args
This commit is contained in:
Mihovil Ilakovac
parent
be1b5adf19
commit
16f9766928
@ -1,17 +1,23 @@
|
||||
import * as z from 'zod';
|
||||
import type { GenerateCheckoutSession, GetCustomerPortalUrl } from 'wasp/server/operations';
|
||||
import { PaymentPlanId, paymentPlans } from '../payment/plans';
|
||||
import { paymentProcessor } from './paymentProcessor';
|
||||
import { HttpError } from 'wasp/server';
|
||||
import { ensureValidArgsOrThrowHttpError } from '../server/schema';
|
||||
|
||||
export type CheckoutSession = {
|
||||
sessionUrl: string | null;
|
||||
sessionId: string;
|
||||
};
|
||||
|
||||
export const generateCheckoutSession: GenerateCheckoutSession<PaymentPlanId, CheckoutSession> = async (
|
||||
paymentPlanId,
|
||||
context
|
||||
) => {
|
||||
const generateCheckoutSessionArgsSchema = z.nativeEnum(PaymentPlanId, {
|
||||
message: 'Invalid payment plan ID provided.',
|
||||
});
|
||||
|
||||
export const generateCheckoutSession: GenerateCheckoutSession<
|
||||
z.infer<typeof generateCheckoutSessionArgsSchema>,
|
||||
CheckoutSession
|
||||
> = async (rawArgs: unknown, context) => {
|
||||
if (!context.user) {
|
||||
throw new HttpError(401);
|
||||
}
|
||||
@ -24,12 +30,13 @@ export const generateCheckoutSession: GenerateCheckoutSession<PaymentPlanId, Che
|
||||
);
|
||||
}
|
||||
|
||||
const paymentPlan = paymentPlans[paymentPlanId];
|
||||
const args = ensureValidArgsOrThrowHttpError(rawArgs, generateCheckoutSessionArgsSchema);
|
||||
const paymentPlan = paymentPlans[args];
|
||||
const { session } = await paymentProcessor.createCheckoutSession({
|
||||
userId,
|
||||
userEmail,
|
||||
paymentPlan,
|
||||
prismaUserDelegate: context.entities.User
|
||||
prismaUserDelegate: context.entities.User,
|
||||
});
|
||||
|
||||
return {
|
||||
|
||||
13
template/app/src/server/schema.ts
Normal file
13
template/app/src/server/schema.ts
Normal file
@ -0,0 +1,13 @@
|
||||
import * as z from 'zod';
|
||||
import { HttpError } from 'wasp/server';
|
||||
|
||||
export function ensureValidArgsOrThrowHttpError<Schema extends z.ZodType<any, any, any>>(
|
||||
args: unknown,
|
||||
schema: Schema
|
||||
): z.infer<Schema> {
|
||||
const argsParsingResult = schema.safeParse(args);
|
||||
if (!argsParsingResult.success) {
|
||||
throw new HttpError(400, argsParsingResult.error.errors[0].message);
|
||||
}
|
||||
return argsParsingResult.data;
|
||||
}
|
||||
Loading…
x
Reference in New Issue
Block a user