diff --git a/src/api/admin.ts b/src/api/admin.ts index 484e09c..7dc4204 100644 --- a/src/api/admin.ts +++ b/src/api/admin.ts @@ -1,6 +1,6 @@ /* * server component for the TimeLimit App - * Copyright (C) 2019 Jonas Lochmann + * Copyright (C) 2019 - 2020 Jonas Lochmann * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU Affero General Public License as @@ -18,9 +18,11 @@ import { urlencoded } from 'body-parser' import * as escape from 'escape-html' import { Router } from 'express' -import { BadRequest } from 'http-errors' +import { BadRequest, Conflict } from 'http-errors' import { Database } from '../database' +import { addPurchase } from '../function/purchase' import { getStatusMessage, setStatusMessage } from '../function/statusmessage' +import { generatePurchaseId } from '../util/token' import { WebsocketApi } from '../websocket' export const createAdminRouter = ({ database, websocket }: { @@ -63,5 +65,51 @@ export const createAdminRouter = ({ database, websocket }: { } }) + router.get('/unlock-premium', (_, res) => ( + res.send('
mail:
Month
Year
') + )) + + router.post('/unlock-premium', urlencoded({ extended: false }), async (req, res, next) => { + try { + if (typeof req.body !== 'object' || typeof req.body.mail !== 'string' || typeof req.body.duration !== 'string') { + throw new BadRequest() + } + + const mail: string = req.body.mail + const type: string = req.body.duration + + if (type !== 'month' && type !== 'year') { + throw new BadRequest() + } + + const userEntryUnsafe = await database.user.findOne({ + where: { + mail + }, + attributes: ['familyId'] + }) + + if (!userEntryUnsafe) { + throw new Conflict('no user with specified mail address') + } + + const userEntry = { + familyId: userEntryUnsafe.familyId + } + + await addPurchase({ + database, + familyId: userEntry.familyId, + type, + transactionId: 'manual-' + type + '-' + generatePurchaseId(), + websocket + }) + + res.json({ ok: true }) + } catch (ex) { + next(ex) + } + }) + return router } diff --git a/src/function/parent/sign-in-into-family.ts b/src/function/parent/sign-in-into-family.ts index 6e18b94..41bcad8 100644 --- a/src/function/parent/sign-in-into-family.ts +++ b/src/function/parent/sign-in-into-family.ts @@ -1,6 +1,6 @@ /* * server component for the TimeLimit App - * Copyright (C) 2019 Jonas Lochmann + * Copyright (C) 2019 - 2020 Jonas Lochmann * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU Affero General Public License as @@ -48,8 +48,7 @@ export const signInIntoFamily = async ({ database, mailAuthToken, newDeviceInfo, const userEntry = { familyId: userEntryUnsafe.familyId, - userId: userEntryUnsafe.userId, - transaction + userId: userEntryUnsafe.userId } const deviceAuthToken = generateAuthToken() diff --git a/src/util/token.ts b/src/util/token.ts index e4d58d4..7f901f5 100644 --- a/src/util/token.ts +++ b/src/util/token.ts @@ -1,6 +1,6 @@ /* * server component for the TimeLimit App - * Copyright (C) 2019 Jonas Lochmann + * Copyright (C) 2019 - 2020 Jonas Lochmann * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU Affero General Public License as @@ -50,3 +50,10 @@ const familyIdGenerator = new TokenGenerator({ }) export const generateFamilyId = () => familyIdGenerator.generate() + +const purchaseIdGenerator = new TokenGenerator({ + length: 10, + chars: 'a-zA-Z0-9' +}) + +export const generatePurchaseId = () => purchaseIdGenerator.generate()