sos-nextjs/api/orders.js

const router = module.exports = require('express-promise-router')()
const parseJSON = require('body-parser').json()
const db = require('../db')
const stripe = require('stripe')(process.env.STRIPE_PRIVATE_KEY);
const ensureAdmin = require('./middleware/ensureAdmin')
const ensureCart = require('./middleware/ensureCart')

const validate = require('./middleware/validators')

router.get('/', async (req, res) => {
  if(req.user)
    // TODO: Write this function
    return res.json(await db.order.findAllforUser(req.user.uuid))
  else
    return res.json(await db.order.findAllForSession(req.session.uuid))
})

router.get('/all', ensureAdmin, async (req, res) => {
  const orders = await db.order.findAllComplete()
  res.json(orders)
})

router.put('/', ensureCart, async (req, res) => {
  const order = await db.order.create(req.cart.uuid, req.sessionObj.uuid);
  res.json(order)
})

router.get('/current', ensureCart, async (req, res) => {
  const order = await db.order.findForCart(req.cart.uuid);
  res.json(order)
})

router.get('/:uuid', ensureAdmin, async (req, res) => {
  const order = await db.order.findByUUID(req.params.uuid)
  res.json(order)
})

router.post('/current/address', ensureCart, parseJSON, validate.address, validate.handleApiError, async (req, res) => {
  const origOrder = await db.order.findForCart(req.cart.uuid);
  if(!origOrder) throw new Error("Unable to find current order");

  const currentTransaction = origOrder
    .transactions.find(transaction => (
      transaction.payment_state === 'started'
    ))

  const {name, street1, street2, city, state, zip, country} = req.body;

  // Create address, update order
  const address = await db.address.create(name, street1, street2, city, state, zip, country)
  const order = await db.order.addAddress(currentTransaction, address)

  res.json(order)
})

router.post('/current/coupon', ensureCart, parseJSON, validate.coupon, validate.handleApiError, async (req, res) => {
  const origOrder = await db.order.findForCart(req.cart.uuid);
  if(!origOrder) throw new Error("Unable to find current order");

  const coupon = await db.coupon.find(req.body.code)

  const currentTransaction = origOrder
    .transactions.find(transaction => (
      transaction.payment_state === 'started'
    ))

  const order = await db.order.addCoupon(currentTransaction, coupon)
  res.json(order)
})

router.post('/current/checkout/stripe', ensureCart, async (req, res) => {
  const order = await db.order.findForCart(req.cart.uuid);
  if(!order) throw new Error("Unable to find current order");

  const currentTransaction = order
    .transactions.find(transaction => (
      transaction.payment_state === 'started'
    ))

  const {item_total_price, shipping_price, tax_price, coupon_effective_discount} = currentTransaction
  const {free_shipping} = currentTransaction.coupon || {}

  const numberOfItems = currentTransaction.cart.items.map(i => i.count).reduce((a,b) => a+b)
  const itemPriceWithDiscount = item_total_price - (coupon_effective_discount || 0)
  const shippingPrice = (free_shipping ? 0 : shipping_price)

  const line_items = []

  if(itemPriceWithDiscount > 0)
    line_items.push({
      name: `Cart Total (${numberOfItems} item${numberOfItems > 1 ? 's' : ''})`,
      amount: itemPriceWithDiscount,
      currency: 'usd',
      quantity: 1
    })

  if(shippingPrice > 0)
    line_items.push({
      name: 'Shipping',
      amount: shippingPrice,
      currency: 'usd',
      quantity: 1
    })

  if(tax_price > 0)
    line_items.push({
      name: 'Sales Tax (Utah)',
      amount: tax_price,
      currency: 'usd',
      quantity: 1
    })

  // TODO: We need to handle this case, mark it paid or something?
  if(line_items.length < 1)
    res.json(null)

  const session = await stripe.checkout.sessions.create({
    client_reference_id: currentTransaction.uuid,
    customer_email: req.user ? req.user.email : undefined,
    payment_method_types: ['card'],
    line_items,
    success_url: `${process.env.EXTERNAL_URL}/store/checkout/verify?session_id={CHECKOUT_SESSION_ID}`,
    cancel_url: `${process.env.EXTERNAL_URL}/cancel`,
  });

  res.json(session.id)
})

router.post('/current/checkout/verify', ensureCart, parseJSON, async (req, res) => {
  const {session_id} = req.body
  if(!session_id) throw new Error("No session id given")

  let order = await db.order.findForCart(req.cart.uuid);
  if(!order) throw new Error("Unable to find current order");

  const currentTransaction = order
    .transactions.find(transaction => (
      transaction.payment_state === 'started'
    ))

  const {payment_intent} = await stripe.checkout.sessions.retrieve(session_id);
  const payment = await stripe.paymentIntents.retrieve(payment_intent)

  // Handle this better?
  if(payment.status !== "succeeded")
    return res.json({status: payment.status})

  try {
    order = await db.order.addPayment(currentTransaction, payment)

    await db.session.clearCart(req.sessionObj.uuid)
  } catch (err) {
    console.error(err)
    throw new Error("Unable to complete order")
  }


  res.json({status: payment.status, order})
})
Cart page can create order 5 years ago			`const router = module.exports = require('express-promise-router')()`
			`const parseJSON = require('body-parser').json()`
			`const db = require('../db')`
Stripe can complete checkout - need to sort out order complete page 5 years ago			`const stripe = require('stripe')(process.env.STRIPE_PRIVATE_KEY);`
Admin order list 5 years ago			`const ensureAdmin = require('./middleware/ensureAdmin')`
Better error pages and fix checkout admin issue 5 years ago			`const ensureCart = require('./middleware/ensureCart')`
Cart page can create order 5 years ago
			`const validate = require('./middleware/validators')`

Solves the issue of not being able to look up an order after clearing the session cart 5 years ago			`router.get('/', async (req, res) => {`
Confirmation page 5 years ago			`if(req.user)`
			`// TODO: Write this function`
			`return res.json(await db.order.findAllforUser(req.user.uuid))`
			`else`
			`return res.json(await db.order.findAllForSession(req.session.uuid))`
Solves the issue of not being able to look up an order after clearing the session cart 5 years ago			`})`

Admin order list 5 years ago			`router.get('/all', ensureAdmin, async (req, res) => {`
			`const orders = await db.order.findAllComplete()`
			`res.json(orders)`
			`})`

Better error pages and fix checkout admin issue 5 years ago			`router.put('/', ensureCart, async (req, res) => {`
			`const order = await db.order.create(req.cart.uuid, req.sessionObj.uuid);`
Admin order list 5 years ago			`res.json(order)`
			`})`

Better error pages and fix checkout admin issue 5 years ago			`router.get('/current', ensureCart, async (req, res) => {`
			`const order = await db.order.findForCart(req.cart.uuid);`
Cart page can create order 5 years ago			`res.json(order)`
			`})`
Frontend can retrieve current order 5 years ago
Better error pages and fix checkout admin issue 5 years ago			`router.get('/:uuid', ensureAdmin, async (req, res) => {`
			`const order = await db.order.findByUUID(req.params.uuid)`
Frontend can retrieve current order 5 years ago			`res.json(order)`
			`})`
Can set order address (need shipping + tax) 5 years ago
Better error pages and fix checkout admin issue 5 years ago			`router.post('/current/address', ensureCart, parseJSON, validate.address, validate.handleApiError, async (req, res) => {`
Address shipping cost estimates 5 years ago			`const origOrder = await db.order.findForCart(req.cart.uuid);`
			`if(!origOrder) throw new Error("Unable to find current order");`

			`const currentTransaction = origOrder`
			`.transactions.find(transaction => (`
			`transaction.payment_state === 'started'`
			`))`

			`const {name, street1, street2, city, state, zip, country} = req.body;`

			`// Create address, update order`
			`const address = await db.address.create(name, street1, street2, city, state, zip, country)`
			`const order = await db.order.addAddress(currentTransaction, address)`

			`res.json(order)`
Can set order address (need shipping + tax) 5 years ago			`})`
Coupon can be added to order 5 years ago
Better error pages and fix checkout admin issue 5 years ago			`router.post('/current/coupon', ensureCart, parseJSON, validate.coupon, validate.handleApiError, async (req, res) => {`
Coupon can be added to order 5 years ago			`const origOrder = await db.order.findForCart(req.cart.uuid);`
			`if(!origOrder) throw new Error("Unable to find current order");`

			`const coupon = await db.coupon.find(req.body.code)`

			`const currentTransaction = origOrder`
			`.transactions.find(transaction => (`
			`transaction.payment_state === 'started'`
			`))`

			`const order = await db.order.addCoupon(currentTransaction, coupon)`
			`res.json(order)`
			`})`
Stripe can complete checkout - need to sort out order complete page 5 years ago
Better error pages and fix checkout admin issue 5 years ago			`router.post('/current/checkout/stripe', ensureCart, async (req, res) => {`
Stripe can complete checkout - need to sort out order complete page 5 years ago			`const order = await db.order.findForCart(req.cart.uuid);`
			`if(!order) throw new Error("Unable to find current order");`

			`const currentTransaction = order`
			`.transactions.find(transaction => (`
			`transaction.payment_state === 'started'`
			`))`

			`const {item_total_price, shipping_price, tax_price, coupon_effective_discount} = currentTransaction`
			`const {free_shipping} = currentTransaction.coupon \|\| {}`

			`const numberOfItems = currentTransaction.cart.items.map(i => i.count).reduce((a,b) => a+b)`
			`const itemPriceWithDiscount = item_total_price - (coupon_effective_discount \|\| 0)`
			`const shippingPrice = (free_shipping ? 0 : shipping_price)`

Solves the issue of not being able to look up an order after clearing the session cart 5 years ago			`const line_items = []`

			`if(itemPriceWithDiscount > 0)`
			`line_items.push({`
			name: `Cart Total (${numberOfItems} item${numberOfItems > 1 ? 's' : ''})`,
			`amount: itemPriceWithDiscount,`
			`currency: 'usd',`
			`quantity: 1`
			`})`

			`if(shippingPrice > 0)`
			`line_items.push({`
			`name: 'Shipping',`
			`amount: shippingPrice,`
			`currency: 'usd',`
			`quantity: 1`
			`})`
Stripe can complete checkout - need to sort out order complete page 5 years ago
			`if(tax_price > 0)`
			`line_items.push({`
			`name: 'Sales Tax (Utah)',`
			`amount: tax_price,`
			`currency: 'usd',`
			`quantity: 1`
			`})`

Solves the issue of not being able to look up an order after clearing the session cart 5 years ago			`// TODO: We need to handle this case, mark it paid or something?`
			`if(line_items.length < 1)`
			`res.json(null)`

Stripe can complete checkout - need to sort out order complete page 5 years ago			`const session = await stripe.checkout.sessions.create({`
			`client_reference_id: currentTransaction.uuid,`
			`customer_email: req.user ? req.user.email : undefined,`
			`payment_method_types: ['card'],`
			`line_items,`
Solves the issue of not being able to look up an order after clearing the session cart 5 years ago			success_url: `${process.env.EXTERNAL_URL}/store/checkout/verify?session_id={CHECKOUT_SESSION_ID}`,
Stripe can complete checkout - need to sort out order complete page 5 years ago			cancel_url: `${process.env.EXTERNAL_URL}/cancel`,
			`});`

			`res.json(session.id)`
			`})`

Better error pages and fix checkout admin issue 5 years ago			`router.post('/current/checkout/verify', ensureCart, parseJSON, async (req, res) => {`
Stripe can complete checkout - need to sort out order complete page 5 years ago			`const {session_id} = req.body`
			`if(!session_id) throw new Error("No session id given")`

			`let order = await db.order.findForCart(req.cart.uuid);`
			`if(!order) throw new Error("Unable to find current order");`

			`const currentTransaction = order`
			`.transactions.find(transaction => (`
			`transaction.payment_state === 'started'`
			`))`

			`const {payment_intent} = await stripe.checkout.sessions.retrieve(session_id);`
			`const payment = await stripe.paymentIntents.retrieve(payment_intent)`

Update in-stock after purchase 5 years ago			`// Handle this better?`
			`if(payment.status !== "succeeded")`
			`return res.json({status: payment.status})`

			`try {`
Stripe can complete checkout - need to sort out order complete page 5 years ago			`order = await db.order.addPayment(currentTransaction, payment)`
Update in-stock after purchase 5 years ago
Stripe can complete checkout - need to sort out order complete page 5 years ago			`await db.session.clearCart(req.sessionObj.uuid)`
Update in-stock after purchase 5 years ago			`} catch (err) {`
			`console.error(err)`
			`throw new Error("Unable to complete order")`
Stripe can complete checkout - need to sort out order complete page 5 years ago			`}`

Solves the issue of not being able to look up an order after clearing the session cart 5 years ago
Stripe can complete checkout - need to sort out order complete page 5 years ago			`res.json({status: payment.status, order})`
			`})`