fix: use auth cookie for member pricing in series available endpoint

2026-04-04 12:28:55 +01:00 · 2026-04-04 12:28:55 +01:00 · cee67dc005
commit cee67dc005
parent db04b270f4
1 changed files with 13 additions and 1 deletions
--- a/server/api/series/[id]/tickets/available.get.js
+++ b/server/api/series/[id]/tickets/available.get.js
@ -39,7 +39,19 @@ export default defineEventHandler(async (event) => {
    // Check membership if email provided
    let member = null;

-    if (email) {
+    // Try auth cookie first for accurate member pricing
+    const token = getCookie(event, 'auth-token')
+    if (token) {
+      try {
+        const jwt = await import('jsonwebtoken')
+        const decoded = jwt.default.verify(token, useRuntimeConfig(event).jwtSecret)
+        member = await Member.findById(decoded.memberId)
+      } catch {
+        // Token invalid, fall through to email lookup
+      }
+    }
+
+    if (!member && email) {
      member = await Member.findOne({ email: email.toLowerCase() });
    }