Files
NightSpire/web-next/lib/stripe.ts
T
Inna 548fca16e6 Añade gold y transfer: patrón de pago unificado con fulfill + metadata
- lib/stripe.ts: createCheckoutSession acepta metadata; claimPaidCheckout la
  recupera de la sesión Stripe y la devuelve.
- lib/paid-services.ts: config unificado con fulfill(character, meta) + extraFields.
  gold -> UPDATE characters money (BD directa, no SOAP), transfer -> SOAP
  .char changeaccount. Los 5 simples usan soapFulfill.
- checkout [service]: lee extraFields -> metadata, precio depende de metadata (gold),
  valida precio>0. service-success llama cfg.fulfill(name, metadata).
- prices.ts: getTransferPrice, getGoldOptions/goldPriceFor (home_goldprice).
- GoldForm (personaje + cantidad) y TransferForm (personaje + destino); páginas
  /gold y /transfer. Catálogos Paid.gold/transfer.

Verificado: /gold /transfer redirigen a login, checkout 401 sin sesión, home OK.
NOTA: transfer no valida aún el token de seguridad ni reglas AC (nivel>=55, DK).

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
2026-07-12 23:32:12 +00:00

93 lines
3.1 KiB
TypeScript

import Stripe from 'stripe'
import type { RowDataPacket } from 'mysql2'
import { db, DB } from './db'
const stripe = new Stripe(process.env.STRIPE_SECRET_KEY as string)
export async function isSessionPaid(sessionId: string): Promise<boolean> {
if (!sessionId) return false
try {
const s = await stripe.checkout.sessions.retrieve(sessionId)
return s.payment_status === 'paid'
} catch {
return false
}
}
export interface CheckoutParams {
accountId: number
username: string
email: string
acoreIp: string
amount: number
characterName: string
productName: string
successUrl: string
cancelUrl: string
currency?: string
metadata?: Record<string, string>
}
/** Crea una sesión de pago Stripe y registra el StripeLog. Devuelve la URL de checkout. */
export async function createCheckoutSession(
p: CheckoutParams,
): Promise<{ success: boolean; url?: string; error?: string }> {
try {
const sep = p.successUrl.includes('?') ? '&' : '?'
const successUrl = `${p.successUrl}${sep}session_id={CHECKOUT_SESSION_ID}`
const session = await stripe.checkout.sessions.create({
payment_method_types: ['card'],
line_items: [
{
price_data: {
currency: p.currency || 'eur',
product_data: { name: p.productName },
unit_amount: Math.round(p.amount * 100),
},
quantity: 1,
},
],
mode: 'payment',
success_url: successUrl,
cancel_url: p.cancelUrl,
metadata: p.metadata,
})
const mode = (process.env.STRIPE_SECRET_KEY || '').startsWith('sk_live') ? 'live' : 'test'
await db(DB.default).query(
'INSERT INTO home_stripelog (account_id, username, email, acore_ip, stripe_ip, product_name, amount, session_id, mode, character_name, timestamp, fulfilled) ' +
'VALUES (?, ?, ?, ?, NULL, ?, ?, ?, ?, ?, NOW(), 0)',
[p.accountId, p.username, p.email, p.acoreIp, p.productName, p.amount, session.id, mode, p.characterName],
)
return { success: true, url: session.url ?? undefined }
} catch (e) {
return { success: false, error: String(e) }
}
}
/**
* Verifica que la sesión está pagada y aún no entregada; la marca como entregada
* (evita re-entregas). Devuelve el character_name del log o null. (Port de
* require_paid_stripe.)
*/
export async function claimPaidCheckout(
sessionId: string,
): Promise<{ characterName: string; metadata: Record<string, string> } | null> {
if (!sessionId) return null
let metadata: Record<string, string> = {}
try {
const s = await stripe.checkout.sessions.retrieve(sessionId)
if (s.payment_status !== 'paid') return null
metadata = (s.metadata as Record<string, string>) ?? {}
} catch {
return null
}
const [rows] = await db(DB.default).query<RowDataPacket[]>(
'SELECT id, character_name, fulfilled FROM home_stripelog WHERE session_id = ?',
[sessionId],
)
const log = rows[0]
if (!log || log.fulfilled) return null
await db(DB.default).query('UPDATE home_stripelog SET fulfilled = 1 WHERE id = ?', [log.id])
return { characterName: log.character_name, metadata }
}