feat: add subscription plan and payment

Author: ZigBalthazar

package-lock.json

@@ -38,7 +38,7 @@
     "@nestjs/mongoose": "^10.1.0",
     "@nestjs/passport": "^10.0.3",
     "@nestjs/platform-express": "^10.3.0",
-    "@nestjs/schedule": "^4.1.1",
+    "@nestjs/schedule": "^4.1.2",
     "@nestjs/serve-static": "^4.0.2",
     "@nestjs/swagger": "^7.1.17",
     "@nestjs/terminus": "^10.2.3",
@@ -66,6 +66,7 @@
     "passport": "^0.6.0",
     "passport-jwt": "^4.0.1",
     "passport-local": "^1.0.0",
+    "passport-strategy": "^1.0.0",
     "reflect-metadata": "^0.2.1",
     "rxjs": "^7.8.1",
     "source-map-support": "^0.5.21",

package.json

@@ -14,6 +14,7 @@ import ServiceRegistryModule from './modules/service-registry/service-registry.m
 import { SubscriptionsModule } from './modules/subscriptions/subscriptions.module';
 import { UserModule } from './modules/users/user.module';
 import { SharedModule } from './shared/shared.module';
+import { InvoiceModule } from './modules/invoices/invoice.module';
 
 @Module({
   imports: [
@@ -28,6 +29,7 @@ import { SharedModule } from './shared/shared.module';
     ServicesConfigModule,
     SubscriptionsModule,
     LogModule,
+    InvoiceModule,
   ],
   controllers: [],
   providers: [],

src/app.module.ts

@@ -8,6 +8,8 @@ import AuthController from './auth.controller';
 import AuthService from './auth.service';
 import JwtStrategy from './strategies/jwt.strategy';
 import LocalStrategy from './strategies/local.strategy';
+import { Nip98Strategy } from './strategies/nip-98.strategy';
+import { Nip98AuthGuard } from './guards/nip98-auth.guard';
 
 @Module({
   imports: [
@@ -20,7 +22,8 @@ import LocalStrategy from './strategies/local.strategy';
       }),
     }),
   ],
-  providers: [AuthService, LocalStrategy, JwtStrategy],
+  providers: [AuthService, LocalStrategy, JwtStrategy, Nip98Strategy, Nip98AuthGuard],
   controllers: [AuthController],
+  exports: [Nip98AuthGuard,Nip98Strategy],
 })
 export default class AuthModule {}

src/modules/auth/auth.module.ts

@@ -0,0 +1,12 @@
+import { Injectable, UnauthorizedException } from '@nestjs/common';
+import { AuthGuard } from '@nestjs/passport';
+
+@Injectable()
+export class Nip98AuthGuard extends AuthGuard('nip98') {
+  handleRequest(err: any, user: any) {
+    if (err || !user) {
+      throw err || new UnauthorizedException();
+    }
+    return user;
+  }
+}

src/modules/auth/guards/nip98-auth.guard.ts

@@ -0,0 +1,67 @@
+import { Injectable, UnauthorizedException } from '@nestjs/common';
+import { PassportStrategy } from '@nestjs/passport';
+import { Event, verifyEvent } from 'nostr-tools';
+import { Request } from 'express';
+import { Strategy } from 'passport-strategy';
+
+@Injectable()
+export class Nip98Strategy extends PassportStrategy(Strategy, 'nip98') {
+  public Scheme = 'Nostr';
+
+  constructor() {
+    super();
+  }
+
+  authenticate(req: unknown) {
+    const request = req as Request
+    const authHeader = request.headers['authorization'];
+
+    if (!authHeader) {
+      return this.fail(new UnauthorizedException('Missing Authorization header'), 401);
+    }
+
+    if (authHeader.slice(0, 5) !== this.Scheme) {
+      return this.fail(new UnauthorizedException('Invalid auth scheme'), 401);
+    }
+
+    const token = authHeader.slice(6);
+
+    const bToken = Buffer.from(token, 'base64').toString('utf-8');
+
+    if (!bToken || bToken.length === 0 || bToken[0] != '{') {
+      return this.fail(new UnauthorizedException('Invalid token'), 401);
+    }
+
+    const ev = JSON.parse(bToken) as Event;
+
+    const isValidEvent = verifyEvent(ev);
+    if (!isValidEvent) {
+      return this.fail(new UnauthorizedException('Invalid event'), 401);
+    }
+
+    if (ev.kind != 27_235) {
+      return this.fail(new UnauthorizedException('Invalid nostr event, wrong kind'), 401);
+    }
+
+    const now = Date.now();
+    const diffTime = Math.abs(ev.created_at * 1000 - now);
+
+    // if (diffTime < 1 * 60 * 1000) { // 1 min
+    //   return this.fail(new UnauthorizedException('Invalid nostr event, timestamp out of range'), 401);
+    // }
+
+    const urlTag = ev.tags[0]?.[1];
+    const methodTag = ev.tags[1]?.[1];
+    const a = new URL(urlTag!).pathname;
+    console.log(new URL(urlTag!).pathname == request.path);
+    if (!urlTag || new URL(urlTag).pathname !== request.path) {
+      return this.fail(new UnauthorizedException('Invalid nostr event, URL tag invalid'), 401);
+    }
+
+    if (!methodTag || methodTag.toLowerCase() !== request.method.toLowerCase()) {
+      return { success: false, message: 'Invalid nostr event, method tag invalid' };
+    }
+
+    this.success({ pubkey: ev.pubkey });
+  }
+}

src/modules/auth/strategies/nip-98.strategy.ts

@@ -0,0 +1,10 @@
+import { PickType } from '@nestjs/swagger';
+import { InvoiceDto } from './invoice.dto';
+
+export class CreateInvoice extends PickType(InvoiceDto, [
+  'checkoutSessionId',
+  'status',
+  'subscriptionId',
+  'totalAmount',
+  'unit',
+] as const) {}

src/modules/invoices/dto/create-invoice.dto.ts

@@ -0,0 +1,24 @@
+import { ApiProperty } from '@nestjs/swagger';
+import { IsEnum } from 'class-validator';
+
+import { AbstractDto } from '../../../../src/common/dto/abstract.dto';
+import { NumberField, StringField, StringFieldOptional } from '../../../../src/decorators';
+import { InvoiceStatusEnum } from '../enums/invoice-status.enum';
+
+export class InvoiceDto extends AbstractDto {
+  @StringFieldOptional()
+  subscriptionId?: string;
+
+  @StringField()
+  checkoutSessionId: string;
+
+  @ApiProperty()
+  @IsEnum(() => InvoiceStatusEnum)
+  status: InvoiceStatusEnum;
+
+  @NumberField()
+  totalAmount: number;
+
+  @StringField()
+  unit: string;
+}

src/modules/invoices/dto/invoice.dto.ts

@@ -0,0 +1,4 @@
+import { PartialType } from '@nestjs/swagger';
+import { CreateInvoice } from './create-invoice.dto';
+
+export class UpdateInvoice extends PartialType(CreateInvoice) {}

src/modules/invoices/dto/update-invoice.dto.ts

@@ -0,0 +1,43 @@
+import { Column, Entity } from 'typeorm';
+
+import { AbstractEntity } from '../../../../src/common/abstract.entity';
+import { InvoiceStatusEnum } from '../enums/invoice-status.enum';
+import { InvoiceDto } from '../dto/invoice.dto';
+
+@Entity('invoices')
+export class InvoiceEntity extends AbstractEntity<InvoiceDto> {
+  dtoClass = InvoiceDto;
+
+  @Column('string')
+  checkoutSessionId: string;
+
+  @Column('string')
+  subscriptionId: string;
+
+  @Column({ enum: InvoiceStatusEnum, type: 'enum', default: InvoiceStatusEnum.CREATED })
+  status: InvoiceStatusEnum;
+
+  @Column('number')
+  totalAmount: number;
+
+  @Column('string')
+  unit: string;
+
+  constructor(item?: Partial<Omit<InvoiceEntity, 'id'>>) {
+    super();
+
+    if (!item) {
+      return;
+    }
+
+    this.assign(item);
+  }
+
+  assign(item: Partial<Omit<InvoiceEntity, 'id'>>): void {
+    this.checkoutSessionId = item.checkoutSessionId ?? this.checkoutSessionId;
+    this.subscriptionId = item.subscriptionId ?? this.subscriptionId;
+    this.status = item.status ?? this.status;
+    this.totalAmount = item.totalAmount ?? this.totalAmount;
+    this.unit = item.unit ?? this.unit;
+  }
+}