jennie/ghostguild-org
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
ghostguild-org/server/api/events/[id]/tickets/reserve.post.js
Jennie Robinson Faber 025c1a180f Add Zod validation to all API endpoints and remove debug test route 
Adds schema-based input validation across helcim, events, members,
series, admin, and updates API endpoints. Removes the peer-support
debug test endpoint. Adds validation test coverage.
2026-03-01 17:04:26 +00:00

87 lines
2.2 KiB
JavaScript
Raw Blame History

import Event from "../../../../models/event.js";
import Member from "../../../../models/member.js";
import { connectDB } from "../../../../utils/mongoose.js";
import {
calculateTicketPrice,
reserveTicket,
} from "../../../../utils/tickets.js";
import mongoose from "mongoose";
/**
* POST /api/events/[id]/tickets/reserve
* Temporarily reserve a ticket during checkout process
* Body: { email }
*/
export default defineEventHandler(async (event) => {
try {
await connectDB();
const identifier = getRouterParam(event, "id");
const body = await validateBody(event, ticketReserveSchema);
if (!identifier) {
throw createError({
statusCode: 400,
statusMessage: "Event identifier is required",
});
}
// Fetch the event
let eventData;
if (mongoose.Types.ObjectId.isValid(identifier)) {
eventData = await Event.findById(identifier);
}
if (!eventData) {
eventData = await Event.findOne({ slug: identifier });
}
if (!eventData) {
throw createError({
statusCode: 404,
statusMessage: "Event not found",
});
}
// Check if user is a member
const member = await Member.findOne({ email: body.email.toLowerCase() });
// Calculate ticket type
const ticketInfo = calculateTicketPrice(eventData, member);
if (!ticketInfo) {
throw createError({
statusCode: 400,
statusMessage: "No tickets available for your membership status",
});
}
// Reserve the ticket
const reservation = await reserveTicket(eventData, ticketInfo.ticketType);
if (!reservation.success) {
throw createError({
statusCode: 400,
statusMessage: reservation.reason || "Failed to reserve ticket",
});
}
return {
success: true,
reservation: {
id: reservation.reservationId,
expiresAt: reservation.expiresAt,
ticketType: ticketInfo.ticketType,
},
};
} catch (error) {
console.error("Error reserving ticket:", error);
if (error.statusCode) {
throw error;
}
throw createError({
statusCode: 500,
statusMessage: "Failed to reserve ticket",
});
}
});
Reference in a new issue View git blame Copy permalink