mirror of
https://github.com/simstudioai/sim.git
synced 2026-01-09 15:07:55 -05:00
99e0b81233
* improvement(org): remove dead seats get endpoint * remove more dead code * remove fallback limit
227 lines
7.0 KiB
TypeScript
227 lines
7.0 KiB
TypeScript
import { db } from '@sim/db'
|
|
import { member, subscription } from '@sim/db/schema'
|
|
import { and, eq } from 'drizzle-orm'
|
|
import { type NextRequest, NextResponse } from 'next/server'
|
|
import { z } from 'zod'
|
|
import { getSession } from '@/lib/auth'
|
|
import { requireStripeClient } from '@/lib/billing/stripe-client'
|
|
import { isBillingEnabled } from '@/lib/core/config/environment'
|
|
import { createLogger } from '@/lib/logs/console/logger'
|
|
|
|
const logger = createLogger('OrganizationSeatsAPI')
|
|
|
|
const updateSeatsSchema = z.object({
|
|
seats: z.number().int().min(1, 'Minimum 1 seat required').max(50, 'Maximum 50 seats allowed'),
|
|
})
|
|
|
|
/**
|
|
* PUT /api/organizations/[id]/seats
|
|
* Update organization seat count using Stripe's subscription.update API.
|
|
* This is the recommended approach for per-seat billing changes.
|
|
*/
|
|
export async function PUT(request: NextRequest, { params }: { params: Promise<{ id: string }> }) {
|
|
try {
|
|
const session = await getSession()
|
|
|
|
if (!session?.user?.id) {
|
|
return NextResponse.json({ error: 'Unauthorized' }, { status: 401 })
|
|
}
|
|
|
|
if (!isBillingEnabled) {
|
|
return NextResponse.json({ error: 'Billing is not enabled' }, { status: 400 })
|
|
}
|
|
|
|
const { id: organizationId } = await params
|
|
const body = await request.json()
|
|
|
|
const validation = updateSeatsSchema.safeParse(body)
|
|
if (!validation.success) {
|
|
const firstError = validation.error.errors[0]
|
|
return NextResponse.json({ error: firstError.message }, { status: 400 })
|
|
}
|
|
|
|
const { seats: newSeatCount } = validation.data
|
|
|
|
// Verify user has admin access to this organization
|
|
const memberEntry = await db
|
|
.select()
|
|
.from(member)
|
|
.where(and(eq(member.organizationId, organizationId), eq(member.userId, session.user.id)))
|
|
.limit(1)
|
|
|
|
if (memberEntry.length === 0) {
|
|
return NextResponse.json(
|
|
{ error: 'Forbidden - Not a member of this organization' },
|
|
{ status: 403 }
|
|
)
|
|
}
|
|
|
|
if (!['owner', 'admin'].includes(memberEntry[0].role)) {
|
|
return NextResponse.json({ error: 'Forbidden - Admin access required' }, { status: 403 })
|
|
}
|
|
|
|
// Get the organization's subscription
|
|
const subscriptionRecord = await db
|
|
.select()
|
|
.from(subscription)
|
|
.where(and(eq(subscription.referenceId, organizationId), eq(subscription.status, 'active')))
|
|
.limit(1)
|
|
|
|
if (subscriptionRecord.length === 0) {
|
|
return NextResponse.json({ error: 'No active subscription found' }, { status: 404 })
|
|
}
|
|
|
|
const orgSubscription = subscriptionRecord[0]
|
|
|
|
// Only team plans support seat changes (not enterprise - those are handled manually)
|
|
if (orgSubscription.plan !== 'team') {
|
|
return NextResponse.json(
|
|
{ error: 'Seat changes are only available for Team plans' },
|
|
{ status: 400 }
|
|
)
|
|
}
|
|
|
|
if (!orgSubscription.stripeSubscriptionId) {
|
|
return NextResponse.json(
|
|
{ error: 'No Stripe subscription found for this organization' },
|
|
{ status: 400 }
|
|
)
|
|
}
|
|
|
|
// Validate that we're not reducing below current member count
|
|
const memberCount = await db
|
|
.select({ userId: member.userId })
|
|
.from(member)
|
|
.where(eq(member.organizationId, organizationId))
|
|
|
|
if (newSeatCount < memberCount.length) {
|
|
return NextResponse.json(
|
|
{
|
|
error: `Cannot reduce seats below current member count (${memberCount.length})`,
|
|
currentMembers: memberCount.length,
|
|
},
|
|
{ status: 400 }
|
|
)
|
|
}
|
|
|
|
const currentSeats = orgSubscription.seats || 1
|
|
|
|
// If no change, return early
|
|
if (newSeatCount === currentSeats) {
|
|
return NextResponse.json({
|
|
success: true,
|
|
message: 'No change in seat count',
|
|
data: {
|
|
seats: currentSeats,
|
|
stripeSubscriptionId: orgSubscription.stripeSubscriptionId,
|
|
},
|
|
})
|
|
}
|
|
|
|
const stripe = requireStripeClient()
|
|
|
|
// Get the Stripe subscription to find the subscription item ID
|
|
const stripeSubscription = await stripe.subscriptions.retrieve(
|
|
orgSubscription.stripeSubscriptionId
|
|
)
|
|
|
|
if (stripeSubscription.status !== 'active') {
|
|
return NextResponse.json({ error: 'Stripe subscription is not active' }, { status: 400 })
|
|
}
|
|
|
|
// Find the subscription item (there should be only one for team plans)
|
|
const subscriptionItem = stripeSubscription.items.data[0]
|
|
|
|
if (!subscriptionItem) {
|
|
return NextResponse.json(
|
|
{ error: 'No subscription item found in Stripe subscription' },
|
|
{ status: 500 }
|
|
)
|
|
}
|
|
|
|
logger.info('Updating Stripe subscription quantity', {
|
|
organizationId,
|
|
stripeSubscriptionId: orgSubscription.stripeSubscriptionId,
|
|
subscriptionItemId: subscriptionItem.id,
|
|
currentSeats,
|
|
newSeatCount,
|
|
userId: session.user.id,
|
|
})
|
|
|
|
// Update the subscription item quantity using Stripe's recommended approach
|
|
// This will automatically prorate the billing
|
|
const updatedSubscription = await stripe.subscriptions.update(
|
|
orgSubscription.stripeSubscriptionId,
|
|
{
|
|
items: [
|
|
{
|
|
id: subscriptionItem.id,
|
|
quantity: newSeatCount,
|
|
},
|
|
],
|
|
proration_behavior: 'create_prorations', // Stripe's default - charge/credit immediately
|
|
}
|
|
)
|
|
|
|
// Update our local database to reflect the change
|
|
// Note: This will also be updated via webhook, but we update immediately for UX
|
|
await db
|
|
.update(subscription)
|
|
.set({
|
|
seats: newSeatCount,
|
|
})
|
|
.where(eq(subscription.id, orgSubscription.id))
|
|
|
|
logger.info('Successfully updated seat count', {
|
|
organizationId,
|
|
stripeSubscriptionId: orgSubscription.stripeSubscriptionId,
|
|
oldSeats: currentSeats,
|
|
newSeats: newSeatCount,
|
|
updatedBy: session.user.id,
|
|
prorationBehavior: 'create_prorations',
|
|
})
|
|
|
|
return NextResponse.json({
|
|
success: true,
|
|
message:
|
|
newSeatCount > currentSeats
|
|
? `Added ${newSeatCount - currentSeats} seat(s). Your billing has been adjusted.`
|
|
: `Removed ${currentSeats - newSeatCount} seat(s). You'll receive a prorated credit.`,
|
|
data: {
|
|
seats: newSeatCount,
|
|
previousSeats: currentSeats,
|
|
stripeSubscriptionId: updatedSubscription.id,
|
|
stripeStatus: updatedSubscription.status,
|
|
},
|
|
})
|
|
} catch (error) {
|
|
const { id: organizationId } = await params
|
|
|
|
// Handle Stripe-specific errors
|
|
if (error instanceof Error && 'type' in error) {
|
|
const stripeError = error as any
|
|
logger.error('Stripe error updating seats', {
|
|
organizationId,
|
|
type: stripeError.type,
|
|
code: stripeError.code,
|
|
message: stripeError.message,
|
|
})
|
|
|
|
return NextResponse.json(
|
|
{
|
|
error: stripeError.message || 'Failed to update seats in Stripe',
|
|
code: stripeError.code,
|
|
},
|
|
{ status: 400 }
|
|
)
|
|
}
|
|
|
|
logger.error('Failed to update organization seats', {
|
|
organizationId,
|
|
error,
|
|
})
|
|
|
|
return NextResponse.json({ error: 'Internal server error' }, { status: 500 })
|
|
}
|
|
}
|