mirror/wakapi
1
0
Fork 0
mirror of https://github.com/muety/wakapi.git synced 2023-08-10 21:12:56 +03:00
Code Issues Projects Releases Wiki Activity

refactor(subscriptions): store stripe customer id with user

Browse Source
This commit is contained in:
Ferdinand Mütsch 2022-12-30 13:14:24 +01:00
parent 3aac5e9062
commit 8e521741f8
9 changed files with 100 additions and 78 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
config.default.yml
View File

@ -65,6 +65,7 @@ sentry:
# only relevant for running wakapi as a hosted service with paid subscriptions and stripe payments # only relevant for running wakapi as a hosted service with paid subscriptions and stripe payments
subscriptions: subscriptions:
enabled: false enabled: false
expiry_notifications: true
stripe_api_key: stripe_api_key:
stripe_secret_key: stripe_secret_key:
stripe_endpoint_secret: stripe_endpoint_secret:

1
models/user.go
View File

@ -36,6 +36,7 @@ type User struct {
ReportsWeekly bool `json:"-" gorm:"default:false; type:bool"` ReportsWeekly bool `json:"-" gorm:"default:false; type:bool"`
PublicLeaderboard bool `json:"-" gorm:"default:false; type:bool"` PublicLeaderboard bool `json:"-" gorm:"default:false; type:bool"`
SubscribedUntil *CustomTime `json:"-" gorm:"type:timestamp" swaggertype:"string" format:"date" example:"2006-01-02 15:04:05.000"` SubscribedUntil *CustomTime `json:"-" gorm:"type:timestamp" swaggertype:"string" format:"date" example:"2006-01-02 15:04:05.000"`
StripeCustomerId string `json:"-"`
} }
type Login struct { type Login struct {

5
repositories/repositories.go
View File

@ -72,11 +72,8 @@ type ISummaryRepository interface {
} }
type IUserRepository interface { type IUserRepository interface {
GetById(string) (*models.User, error) FindOne(user models.User) (*models.User, error)
GetByIds([]string) ([]*models.User, error) GetByIds([]string) ([]*models.User, error)
GetByApiKey(string) (*models.User, error)
GetByEmail(string) (*models.User, error)
GetByResetToken(string) (*models.User, error)
GetAll() ([]*models.User, error) GetAll() ([]*models.User, error)
GetMany([]string) ([]*models.User, error) GetMany([]string) ([]*models.User, error)
GetAllByReports(bool) ([]*models.User, error) GetAllByReports(bool) ([]*models.User, error)

40
repositories/user.go
View File

@ -15,9 +15,9 @@ func NewUserRepository(db *gorm.DB) *UserRepository {
return &UserRepository{db: db} return &UserRepository{db: db}
} }
func (r *UserRepository) GetById(userId string) (*models.User, error) { func (r *UserRepository) FindOne(attributes models.User) (*models.User, error) {
u := &models.User{} u := &models.User{}
if err := r.db.Where(&models.User{ID: userId}).First(u).Error; err != nil { if err := r.db.Where(&attributes).First(u).Error; err != nil {
return u, err return u, err
} }
return u, nil return u, nil
@ -34,39 +34,6 @@ func (r *UserRepository) GetByIds(userIds []string) ([]*models.User, error) {
return users, nil return users, nil
} }
func (r *UserRepository) GetByApiKey(key string) (*models.User, error) {
if key == "" {
return nil, errors.New("invalid input")
}
u := &models.User{}
if err := r.db.Where(&models.User{ApiKey: key}).First(u).Error; err != nil {
return u, err
}
return u, nil
}
func (r *UserRepository) GetByResetToken(resetToken string) (*models.User, error) {
if resetToken == "" {
return nil, errors.New("invalid input")
}
u := &models.User{}
if err := r.db.Where(&models.User{ResetToken: resetToken}).First(u).Error; err != nil {
return u, err
}
return u, nil
}
func (r *UserRepository) GetByEmail(email string) (*models.User, error) {
if email == "" {
return nil, errors.New("invalid input")
}
u := &models.User{}
if err := r.db.Where(&models.User{Email: email}).First(u).Error; err != nil {
return u, err
}
return u, nil
}
func (r *UserRepository) GetAll() ([]*models.User, error) { func (r *UserRepository) GetAll() ([]*models.User, error) {
var users []*models.User var users []*models.User
if err := r.db. if err := r.db.
@ -144,7 +111,7 @@ func (r *UserRepository) Count() (int64, error) {
} }
func (r *UserRepository) InsertOrGet(user *models.User) (*models.User, bool, error) { func (r *UserRepository) InsertOrGet(user *models.User) (*models.User, bool, error) {
if u, err := r.GetById(user.ID); err == nil && u != nil && u.ID != "" { if u, err := r.FindOne(models.User{ID: user.ID}); err == nil && u != nil && u.ID != "" {
return u, false, nil return u, false, nil
} }
@ -177,6 +144,7 @@ func (r *UserRepository) Update(user *models.User) (*models.User, error) {
"reports_weekly": user.ReportsWeekly, "reports_weekly": user.ReportsWeekly,
"public_leaderboard": user.PublicLeaderboard, "public_leaderboard": user.PublicLeaderboard,
"subscribed_until": user.SubscribedUntil, "subscribed_until": user.SubscribedUntil,
"stripe_customer_id": user.StripeCustomerId,
} }
result := r.db.Model(user).Updates(updateMap) result := r.db.Model(user).Updates(updateMap)

2
routes/settings.go
View File

@ -181,7 +181,7 @@ func (h *SettingsHandler) actionUpdateUser(w http.ResponseWriter, r *http.Reques
return http.StatusBadRequest, "", "invalid parameters" return http.StatusBadRequest, "", "invalid parameters"
} }
if user.Email == "" && user.HasActiveSubscription() { if payload.Email == "" && user.HasActiveSubscription() {
return http.StatusBadRequest, "", "cannot unset email while subscription is active" return http.StatusBadRequest, "", "cannot unset email while subscription is active"
} }

112
routes/subscription.go
View File

@ -22,6 +22,15 @@ import (
"time" "time"
) )
/*
How to integrate with Stripe?
---
1. Create a plan with recurring payment (https://dashboard.stripe.com/test/products?active=true), copy its ID and save it as 'standard_price_id'
2. Create a webhook (https://dashboard.stripe.com/test/webhooks), with target URL '/subscription/webhook' and events ['customer.subscription.created', 'customer.subscription.updated', 'customer.subscription.deleted', 'checkout.session.completed'], copy the endpoint secret and save it to 'stripe_endpoint_secret'
3. Create a secret API key (https://dashboard.stripe.com/test/apikeys), copy it and save it to 'stripe_secret_key'
4. Copy the publishable API key (https://dashboard.stripe.com/test/apikeys) and save it to 'stripe_api_key'
*/
type SubscriptionHandler struct { type SubscriptionHandler struct {
config *conf.Config config *conf.Config
userSrvc services.IUserService userSrvc services.IUserService
@ -102,12 +111,17 @@ func (h *SubscriptionHandler) PostCheckout(w http.ResponseWriter, r *http.Reques
Quantity: stripe.Int64(1), Quantity: stripe.Int64(1),
}, },
}, },
CustomerEmail: &user.Email, ClientReferenceID: &user.ID,
ClientReferenceID: &user.Email,
SuccessURL: stripe.String(fmt.Sprintf("%s%s/subscription/success", h.config.Server.PublicUrl, h.config.Server.BasePath)), SuccessURL: stripe.String(fmt.Sprintf("%s%s/subscription/success", h.config.Server.PublicUrl, h.config.Server.BasePath)),
CancelURL: stripe.String(fmt.Sprintf("%s%s/subscription/cancel", h.config.Server.PublicUrl, h.config.Server.BasePath)), CancelURL: stripe.String(fmt.Sprintf("%s%s/subscription/cancel", h.config.Server.PublicUrl, h.config.Server.BasePath)),
} }
if user.StripeCustomerId != "" {
checkoutParams.Customer = &user.StripeCustomerId
} else {
checkoutParams.CustomerEmail = &user.Email
}
session, err := stripeCheckoutSession.New(checkoutParams) session, err := stripeCheckoutSession.New(checkoutParams)
if err != nil { if err != nil {
conf.Log().Request(r).Error("failed to create stripe checkout session: %v", err) conf.Log().Request(r).Error("failed to create stripe checkout session: %v", err)
@ -124,19 +138,13 @@ func (h *SubscriptionHandler) PostPortal(w http.ResponseWriter, r *http.Request)
} }
user := middlewares.GetPrincipal(r) user := middlewares.GetPrincipal(r)
if user.Email == "" { if user.StripeCustomerId == "" {
http.Redirect(w, r, fmt.Sprintf("%s/settings?error=%s#subscription", h.config.Server.BasePath, "no subscription found with your e-mail address, please contact us!"), http.StatusFound)
return
}
customer, err := h.findStripeCustomerByEmail(user.Email)
if err != nil {
http.Redirect(w, r, fmt.Sprintf("%s/settings?error=%s#subscription", h.config.Server.BasePath, "no subscription found with your e-mail address, please contact us!"), http.StatusFound) http.Redirect(w, r, fmt.Sprintf("%s/settings?error=%s#subscription", h.config.Server.BasePath, "no subscription found with your e-mail address, please contact us!"), http.StatusFound)
return return
} }
portalParams := &stripe.BillingPortalSessionParams{ portalParams := &stripe.BillingPortalSessionParams{
Customer: &customer.ID, Customer: &user.StripeCustomerId,
ReturnURL: &h.config.Server.PublicUrl, ReturnURL: &h.config.Server.PublicUrl,
} }
@ -173,24 +181,68 @@ func (h *SubscriptionHandler) PostWebhook(w http.ResponseWriter, r *http.Request
"customer.subscription.updated", "customer.subscription.updated",
"customer.subscription.created": "customer.subscription.created":
// example payload: https://pastr.de/p/k7bx3alx38b1iawo6amtx09k // example payload: https://pastr.de/p/k7bx3alx38b1iawo6amtx09k
subscription, customer, err := h.parseSubscriptionEvent(w, r, event) subscription, err := h.parseSubscriptionEvent(w, r, event)
if err != nil { if err != nil {
return
}
logbuch.Info("received stripe subscription event of type '%s' for subscription '%s' (customer '%s' with email '%s').", event.Type, subscription.ID, customer.ID, customer.Email)
user, err := h.userSrvc.GetUserByEmail(customer.Email)
if err != nil {
conf.Log().Request(r).Error("failed to find user with e-mail '%s' to update their subscription (status '%s')", subscription.Status)
w.WriteHeader(http.StatusInternalServerError) w.WriteHeader(http.StatusInternalServerError)
return return
} }
logbuch.Info("received stripe subscription event of type '%s' for subscription '%s' (customer '%s').", event.Type, subscription.ID, subscription.Customer.ID)
// first, try to get user by associated customer id (requires checkout.session.completed event to have been processed before)
user, err := h.userSrvc.GetUserByStripeCustomerId(subscription.Customer.ID)
if err != nil {
conf.Log().Request(r).Warn("failed to find user with stripe customer id '%s' to update their subscription (status '%s')", subscription.Customer.ID, subscription.Status)
// second, resolve customer and try to get user by email
customer, err := stripeCustomer.Get(subscription.Customer.ID, nil)
if err != nil {
conf.Log().Request(r).Error("failed to fetch stripe customer with id '%s', %v", subscription.Customer.ID, err)
w.WriteHeader(http.StatusInternalServerError)
return
}
u, err := h.userSrvc.GetUserByEmail(customer.Email)
if err != nil {
conf.Log().Request(r).Error("failed to get user with email '%s' as stripe customer '%s' for processing event for subscription %s, %v", customer.Email, subscription.Customer.ID, subscription.ID, err)
w.WriteHeader(http.StatusInternalServerError)
return
}
user = u
}
if err := h.handleSubscriptionEvent(subscription, user); err != nil { if err := h.handleSubscriptionEvent(subscription, user); err != nil {
conf.Log().Request(r).Error("failed to handle subscription event %s (%s) for user %s, %v", event.ID, event.Type, user.ID, err) conf.Log().Request(r).Error("failed to handle subscription event %s (%s) for user %s, %v", event.ID, event.Type, user.ID, err)
w.WriteHeader(http.StatusInternalServerError) w.WriteHeader(http.StatusInternalServerError)
return return
} }
case "checkout.session.completed":
// example payload: https://pastr.de/p/d01iniw9naq9hkmvyqtxin2w
checkoutSession, err := h.parseCheckoutSessionEvent(w, r, event)
if err != nil {
w.WriteHeader(http.StatusInternalServerError)
return
}
logbuch.Info("received stripe checkout session event of type '%s' for session '%s' (customer '%s' with email '%s').", event.Type, checkoutSession.ID, checkoutSession.Customer.ID, checkoutSession.CustomerEmail)
user, err := h.userSrvc.GetUserById(checkoutSession.ClientReferenceID)
if err != nil {
conf.Log().Request(r).Error("failed to find user with id '%s' to update associated stripe customer (%s)", user.ID, checkoutSession.Customer.ID)
w.WriteHeader(http.StatusInternalServerError)
return
}
if user.StripeCustomerId == "" {
user.StripeCustomerId = checkoutSession.Customer.ID
if _, err := h.userSrvc.Update(user); err != nil {
conf.Log().Request(r).Error("failed to update stripe customer id (%s) for user '%s', %v", checkoutSession.Customer.ID, user.ID, err)
} else {
logbuch.Info("associated user '%s' with stripe customer '%s'", user.ID, checkoutSession.Customer.ID)
}
} else if user.StripeCustomerId != checkoutSession.Customer.ID {
conf.Log().Request(r).Error("invalid state: tried to associate user '%s' with stripe customer '%s', but '%s' already assigned", user.ID, checkoutSession.Customer.ID, user.StripeCustomerId)
}
default: default:
logbuch.Warn("got stripe event '%s' with no handler defined", event.Type) logbuch.Warn("got stripe event '%s' with no handler defined", event.Type)
} }
@ -219,7 +271,7 @@ func (h *SubscriptionHandler) handleSubscriptionEvent(subscription *stripe.Subsc
logbuch.Info("user %s got active subscription %s until %v", user.ID, subscription.ID, user.SubscribedUntil) logbuch.Info("user %s got active subscription %s until %v", user.ID, subscription.ID, user.SubscribedUntil)
} }
if cancelAt := time.Unix(subscription.CancelAt, 0); !cancelAt.IsZero() { if cancelAt := time.Unix(subscription.CancelAt, 0); !cancelAt.IsZero() && cancelAt.After(time.Now()) {
logbuch.Info("user %s chose to cancel subscription %s by %v", user.ID, subscription.ID, cancelAt) logbuch.Info("user %s chose to cancel subscription %s by %v", user.ID, subscription.ID, cancelAt)
} }
case "canceled", "unpaid": case "canceled", "unpaid":
@ -227,6 +279,7 @@ func (h *SubscriptionHandler) handleSubscriptionEvent(subscription *stripe.Subsc
logbuch.Info("user %s's subscription %s got canceled, because of status update to '%s'", user.ID, subscription.ID, subscription.Status) logbuch.Info("user %s's subscription %s got canceled, because of status update to '%s'", user.ID, subscription.ID, subscription.Status)
default: default:
logbuch.Info("got subscription (%s) status update to '%s' for user '%s'", subscription.ID, subscription.Status, user.ID) logbuch.Info("got subscription (%s) status update to '%s' for user '%s'", subscription.ID, subscription.Status, user.ID)
return nil
} }
_, err := h.userSrvc.Update(user) _, err := h.userSrvc.Update(user)
@ -236,24 +289,25 @@ func (h *SubscriptionHandler) handleSubscriptionEvent(subscription *stripe.Subsc
return err return err
} }
func (h *SubscriptionHandler) parseSubscriptionEvent(w http.ResponseWriter, r *http.Request, event stripe.Event) (*stripe.Subscription, *stripe.Customer, error) { func (h *SubscriptionHandler) parseSubscriptionEvent(w http.ResponseWriter, r *http.Request, event stripe.Event) (*stripe.Subscription, error) {
var subscription stripe.Subscription var subscription stripe.Subscription
if err := json.Unmarshal(event.Data.Raw, &subscription); err != nil { if err := json.Unmarshal(event.Data.Raw, &subscription); err != nil {
conf.Log().Request(r).Error("failed to parse stripe webhook payload: %v", err) conf.Log().Request(r).Error("failed to parse stripe webhook payload: %v", err)
w.WriteHeader(http.StatusBadRequest) w.WriteHeader(http.StatusBadRequest)
return nil, nil, err return nil, err
} }
return &subscription, nil
}
customer, err := stripeCustomer.Get(subscription.Customer.ID, nil) func (h *SubscriptionHandler) parseCheckoutSessionEvent(w http.ResponseWriter, r *http.Request, event stripe.Event) (*stripe.CheckoutSession, error) {
if err != nil { var checkoutSession stripe.CheckoutSession
conf.Log().Request(r).Error("failed to fetch stripe customer (%s): %v", subscription.Customer.ID, err) if err := json.Unmarshal(event.Data.Raw, &checkoutSession); err != nil {
conf.Log().Request(r).Error("failed to parse stripe webhook payload: %v", err)
w.WriteHeader(http.StatusBadRequest) w.WriteHeader(http.StatusBadRequest)
return nil, nil, err return nil, err
} }
logbuch.Info("associated stripe customer %s with user %s", customer.ID, customer.Email) return &checkoutSession, nil
return &subscription, customer, nil
} }
func (h *SubscriptionHandler) findStripeCustomerByEmail(email string) (*stripe.Customer, error) { func (h *SubscriptionHandler) findStripeCustomerByEmail(email string) (*stripe.Customer, error) {
@ -278,6 +332,6 @@ func (h *SubscriptionHandler) findStripeCustomerByEmail(email string) (*stripe.C
func (h *SubscriptionHandler) clearSubscriptionNotificationStatus(userId string) { func (h *SubscriptionHandler) clearSubscriptionNotificationStatus(userId string) {
key := fmt.Sprintf("%s_%s", conf.KeySubscriptionNotificationSent, userId) key := fmt.Sprintf("%s_%s", conf.KeySubscriptionNotificationSent, userId)
if err := h.keyValueSrvc.DeleteString(key); err != nil { if err := h.keyValueSrvc.DeleteString(key); err != nil {
conf.Log().Error("failed to delete '%s', %v", key, err) logbuch.Warn("failed to delete '%s', %v", key, err)
} }
} }

1
services/services.go
View File

@ -125,6 +125,7 @@ type IUserService interface {
GetUserByKey(string) (*models.User, error) GetUserByKey(string) (*models.User, error)
GetUserByEmail(string) (*models.User, error) GetUserByEmail(string) (*models.User, error)
GetUserByResetToken(string) (*models.User, error) GetUserByResetToken(string) (*models.User, error)
GetUserByStripeCustomerId(string) (*models.User, error)
GetAll() ([]*models.User, error) GetAll() ([]*models.User, error)
GetMany([]string) ([]*models.User, error) GetMany([]string) ([]*models.User, error)
GetManyMapped([]string) (map[string]*models.User, error) GetManyMapped([]string) (map[string]*models.User, error)

12
services/user.go
View File

@ -62,7 +62,7 @@ func (srv *UserService) GetUserById(userId string) (*models.User, error) {
return u.(*models.User), nil return u.(*models.User), nil
} }
u, err := srv.repository.GetById(userId) u, err := srv.repository.FindOne(models.User{ID: userId})
if err != nil { if err != nil {
return nil, err return nil, err
} }
@ -76,7 +76,7 @@ func (srv *UserService) GetUserByKey(key string) (*models.User, error) {
return u.(*models.User), nil return u.(*models.User), nil
} }
u, err := srv.repository.GetByApiKey(key) u, err := srv.repository.FindOne(models.User{ApiKey: key})
if err != nil { if err != nil {
return nil, err return nil, err
} }
@ -86,11 +86,15 @@ func (srv *UserService) GetUserByKey(key string) (*models.User, error) {
} }
func (srv *UserService) GetUserByEmail(email string) (*models.User, error) { func (srv *UserService) GetUserByEmail(email string) (*models.User, error) {
return srv.repository.GetByEmail(email) return srv.repository.FindOne(models.User{Email: email})
} }
func (srv *UserService) GetUserByResetToken(resetToken string) (*models.User, error) { func (srv *UserService) GetUserByResetToken(resetToken string) (*models.User, error) {
return srv.repository.GetByResetToken(resetToken) return srv.repository.FindOne(models.User{ResetToken: resetToken})
}
func (srv *UserService) GetUserByStripeCustomerId(customerId string) (*models.User, error) {
return srv.repository.FindOne(models.User{StripeCustomerId: customerId})
} }
func (srv *UserService) GetAll() ([]*models.User, error) { func (srv *UserService) GetAll() ([]*models.User, error) {

4
views/settings.tpl.html
View File

@ -81,9 +81,6 @@
<label class="font-semibold text-gray-300" for="email">E-Mail Address</label> <label class="font-semibold text-gray-300" for="email">E-Mail Address</label>
<span class="block text-sm text-gray-600"> <span class="block text-sm text-gray-600">
Optional in general, but required for weekly reports and for resetting your password. Optional in general, but required for weekly reports and for resetting your password.
{{ if .User.HasActiveSubscription }}
You cannot unset or change your e-mail address while you have an active subscription.
{{ end }}
</span> </span>
</div> </div>
<div class="w-1/2 ml-4"> <div class="w-1/2 ml-4">
@ -91,7 +88,6 @@
type="email" id="email" type="email" id="email"
name="email" placeholder="Enter your e-mail address" name="email" placeholder="Enter your e-mail address"
value="{{ .User.Email }}" value="{{ .User.Email }}"
{{ if .User.HasActiveSubscription }}disabled{{ end }}
> >
</div> </div>
</div> </div>