Wallet/pkg/internal/server/api/transaction_api.go

package api

import (
	"fmt"

	"git.solsynth.dev/hypernet/nexus/pkg/nex/sec"
	"git.solsynth.dev/hypernet/passport/pkg/authkit"
	"git.solsynth.dev/hypernet/wallet/pkg/internal/database"
	"git.solsynth.dev/hypernet/wallet/pkg/internal/gap"
	"git.solsynth.dev/hypernet/wallet/pkg/internal/models"
	"git.solsynth.dev/hypernet/wallet/pkg/internal/server/exts"
	"git.solsynth.dev/hypernet/wallet/pkg/internal/services"
	"github.com/gofiber/fiber/v2"
)

func listTransaction(c *fiber.Ctx) error {
	take := c.QueryInt("take", 0)
	offset := c.QueryInt("offset", 0)

	if err := sec.EnsureAuthenticated(c); err != nil {
		return err
	}
	user := c.Locals("nex_user").(*sec.UserInfo)

	var wallet models.Wallet
	if err := database.C.Where("account_id = ?", user.ID).First(&wallet).Error; err != nil {
		return fiber.NewError(fiber.StatusNotFound, err.Error())
	}

	var count int64
	if err := database.C.Model(&models.Transaction{}).Where("payer_id = ? OR payee_id = ?", wallet.ID, wallet.ID).
		Count(&count).Error; err != nil {
		return fiber.NewError(fiber.StatusInternalServerError, err.Error())
	}

	var transactions []models.Transaction
	if err := database.C.Where("payer_id = ? OR payee_id = ?", wallet.ID, wallet.ID).
		Limit(take).Offset(offset).
		Order("created_at DESC").
		Find(&transactions).Error; err != nil {
		return fiber.NewError(fiber.StatusInternalServerError, err.Error())
	}

	return c.JSON(fiber.Map{
		"count": count,
		"data":  transactions,
	})
}

func getTransactionByID(c *fiber.Ctx) error {
	id, _ := c.ParamsInt("id", 0)

	if err := sec.EnsureAuthenticated(c); err != nil {
		return err
	}
	user := c.Locals("nex_user").(*sec.UserInfo)

	var transaction models.Transaction
	if err := database.C.Where("id = ?", id).
		Preload("Payer").Preload("Payee").
		First(&transaction).Error; err != nil {
		return fiber.NewError(fiber.StatusNotFound, err.Error())
	}

	if transaction.Payer.AccountID != user.ID && transaction.Payee.AccountID != user.ID {
		return fiber.NewError(fiber.StatusForbidden, "you are not related to this transaction")
	}

	return c.JSON(transaction)
}

func makeTransaction(c *fiber.Ctx) error {
	var data struct {
		ClientID     string  `json:"client_id" validate:"required"`
		ClientSecret string  `json:"client_secret" validate:"required"`
		Remark       string  `json:"remark" validate:"required"`
		Amount       float64 `json:"amount" validate:"required"`
		PayeeID      *uint   `json:"payee_id"`
		PayerID      *uint   `json:"payer_id"`
	}

	if err := exts.BindAndValidate(c, &data); err != nil {
		return err
	}

	// Validating client
	client, err := authkit.GetThirdClientByAlias(gap.Nx, data.ClientID, &data.ClientSecret)
	if err != nil {
		return fiber.NewError(fiber.StatusForbidden, fmt.Sprintf("could not get client info: %v", err))
	}

	// System client, spec payer was not allowed
	var payee, payer *models.Wallet
	if client.AccountID != nil && data.PayeeID != nil {
		if err := database.C.Where("id = ? AND account_id = ?", data.PayerID, client.AccountID).First(&payer).Error; err != nil {
			return fiber.NewError(fiber.StatusBadRequest, fmt.Sprintf("payer id %d not found", data.PayerID))
		}
	}
	if client.AccountID != nil && payer == nil {
		return fiber.NewError(fiber.StatusBadRequest, "payer is required if issuer is individual")
	}

	if data.PayeeID != nil {
		if err := database.C.Where("id = ?", data.PayeeID).First(&payee).Error; err != nil {
			return fiber.NewError(fiber.StatusBadRequest, fmt.Sprintf("payer id %d not found", data.PayeeID))
		}
	}

	if payee == nil && payer == nil {
		return fiber.NewError(fiber.StatusBadRequest, "payee and payer cannot be both blank")
	}

	tran, err := services.MakeTransaction(data.Amount, data.Remark, payer, payee)
	if err != nil {
		return fiber.NewError(fiber.StatusBadRequest, err.Error())
	}

	return c.JSON(tran)
}
:tada: Initial Commit 2025-01-25 18:33:11 +08:00			`package api`

			`import (`
:sparkles: 3rd client able to create transaction 2025-02-03 12:09:43 +08:00			`"fmt"`

:tada: Initial Commit 2025-01-25 18:33:11 +08:00			`"git.solsynth.dev/hypernet/nexus/pkg/nex/sec"`
:sparkles: 3rd client able to create transaction 2025-02-03 12:09:43 +08:00			`"git.solsynth.dev/hypernet/passport/pkg/authkit"`
:tada: Initial Commit 2025-01-25 18:33:11 +08:00			`"git.solsynth.dev/hypernet/wallet/pkg/internal/database"`
:sparkles: 3rd client able to create transaction 2025-02-03 12:09:43 +08:00			`"git.solsynth.dev/hypernet/wallet/pkg/internal/gap"`
:tada: Initial Commit 2025-01-25 18:33:11 +08:00			`"git.solsynth.dev/hypernet/wallet/pkg/internal/models"`
:sparkles: 3rd client able to create transaction 2025-02-03 12:09:43 +08:00			`"git.solsynth.dev/hypernet/wallet/pkg/internal/server/exts"`
			`"git.solsynth.dev/hypernet/wallet/pkg/internal/services"`
:tada: Initial Commit 2025-01-25 18:33:11 +08:00			`"github.com/gofiber/fiber/v2"`
			`)`

:bug: Fix user cannot list transactions 2025-02-15 13:28:30 +08:00			`func listTransaction(c *fiber.Ctx) error {`
:tada: Initial Commit 2025-01-25 18:33:11 +08:00			`take := c.QueryInt("take", 0)`
			`offset := c.QueryInt("offset", 0)`

			`if err := sec.EnsureAuthenticated(c); err != nil {`
			`return err`
			`}`
:bug: Fix panics 2025-01-29 14:01:34 +08:00			`user := c.Locals("nex_user").(*sec.UserInfo)`
:tada: Initial Commit 2025-01-25 18:33:11 +08:00
			`var wallet models.Wallet`
			`if err := database.C.Where("account_id = ?", user.ID).First(&wallet).Error; err != nil {`
			`return fiber.NewError(fiber.StatusNotFound, err.Error())`
			`}`

			`var count int64`
:bug: Fix user cannot list transactions 2025-02-15 13:28:30 +08:00			`if err := database.C.Model(&models.Transaction{}).Where("payer_id = ? OR payee_id = ?", wallet.ID, wallet.ID).`
:tada: Initial Commit 2025-01-25 18:33:11 +08:00			`Count(&count).Error; err != nil {`
			`return fiber.NewError(fiber.StatusInternalServerError, err.Error())`
			`}`

			`var transactions []models.Transaction`
:bug: Fix user cannot list transactions 2025-02-15 13:28:30 +08:00			`if err := database.C.Where("payer_id = ? OR payee_id = ?", wallet.ID, wallet.ID).`
:tada: Initial Commit 2025-01-25 18:33:11 +08:00			`Limit(take).Offset(offset).`
:necktie: Make transactions order by created at decreasing 2025-01-29 23:00:34 +08:00			`Order("created_at DESC").`
:tada: Initial Commit 2025-01-25 18:33:11 +08:00			`Find(&transactions).Error; err != nil {`
			`return fiber.NewError(fiber.StatusInternalServerError, err.Error())`
			`}`

			`return c.JSON(fiber.Map{`
			`"count": count,`
			`"data": transactions,`
			`})`
			`}`
:sparkles: Create wallet, get transaction by id 2025-01-26 17:48:35 +08:00
			`func getTransactionByID(c *fiber.Ctx) error {`
			`id, _ := c.ParamsInt("id", 0)`

			`if err := sec.EnsureAuthenticated(c); err != nil {`
			`return err`
			`}`
:bug: Fix panics 2025-01-29 14:01:34 +08:00			`user := c.Locals("nex_user").(*sec.UserInfo)`
:sparkles: Create wallet, get transaction by id 2025-01-26 17:48:35 +08:00
			`var transaction models.Transaction`
			`if err := database.C.Where("id = ?", id).`
			`Preload("Payer").Preload("Payee").`
			`First(&transaction).Error; err != nil {`
			`return fiber.NewError(fiber.StatusNotFound, err.Error())`
			`}`

			`if transaction.Payer.AccountID != user.ID && transaction.Payee.AccountID != user.ID {`
			`return fiber.NewError(fiber.StatusForbidden, "you are not related to this transaction")`
			`}`

			`return c.JSON(transaction)`
			`}`
:sparkles: 3rd client able to create transaction 2025-02-03 12:09:43 +08:00
			`func makeTransaction(c *fiber.Ctx) error {`
			`var data struct {`
			ClientID string `json:"client_id" validate:"required"`
			ClientSecret string `json:"client_secret" validate:"required"`
			Remark string `json:"remark" validate:"required"`
			Amount float64 `json:"amount" validate:"required"`
			PayeeID *uint `json:"payee_id"`
			PayerID *uint `json:"payer_id"`
			`}`

			`if err := exts.BindAndValidate(c, &data); err != nil {`
			`return err`
			`}`

			`// Validating client`
			`client, err := authkit.GetThirdClientByAlias(gap.Nx, data.ClientID, &data.ClientSecret)`
			`if err != nil {`
			`return fiber.NewError(fiber.StatusForbidden, fmt.Sprintf("could not get client info: %v", err))`
			`}`

:bug: Bug fixes for transaction create 2025-02-03 12:36:34 +08:00			`// System client, spec payer was not allowed`
:sparkles: 3rd client able to create transaction 2025-02-03 12:09:43 +08:00			`var payee, payer *models.Wallet`
			`if client.AccountID != nil && data.PayeeID != nil {`
:bug: Bug fixes for transaction create 2025-02-03 12:36:34 +08:00			`if err := database.C.Where("id = ? AND account_id = ?", data.PayerID, client.AccountID).First(&payer).Error; err != nil {`
			`return fiber.NewError(fiber.StatusBadRequest, fmt.Sprintf("payer id %d not found", data.PayerID))`
:sparkles: 3rd client able to create transaction 2025-02-03 12:09:43 +08:00			`}`
			`}`
:bug: Bug fixes for transaction create 2025-02-03 12:36:34 +08:00			`if client.AccountID != nil && payer == nil {`
			`return fiber.NewError(fiber.StatusBadRequest, "payer is required if issuer is individual")`
:necktie: Fix some balance issue 2025-02-03 12:11:17 +08:00			`}`

:bug: Bug fixes for transaction create 2025-02-03 12:36:34 +08:00			`if data.PayeeID != nil {`
			`if err := database.C.Where("id = ?", data.PayeeID).First(&payee).Error; err != nil {`
			`return fiber.NewError(fiber.StatusBadRequest, fmt.Sprintf("payer id %d not found", data.PayeeID))`
:sparkles: 3rd client able to create transaction 2025-02-03 12:09:43 +08:00			`}`
			`}`

			`if payee == nil && payer == nil {`
			`return fiber.NewError(fiber.StatusBadRequest, "payee and payer cannot be both blank")`
			`}`

			`tran, err := services.MakeTransaction(data.Amount, data.Remark, payer, payee)`
			`if err != nil {`
			`return fiber.NewError(fiber.StatusBadRequest, err.Error())`
			`}`

			`return c.JSON(tran)`
			`}`