chore: import upstream snapshot with attribution
CI / Migrate Dev DB (push) Has been skipped
CI / Detect Version (push) Has been cancelled
CI / Migrate DB (push) Has been cancelled
CI / Build Dev ECR (./docker/app.Dockerfile, ECR_APP) (push) Has been cancelled
CI / Build Dev ECR (./docker/db.Dockerfile, ECR_MIGRATIONS) (push) Has been cancelled
CI / Build Dev ECR (./docker/pii.Dockerfile, ECR_PII) (push) Has been cancelled
CI / Build Dev ECR (./docker/realtime.Dockerfile, ECR_REALTIME) (push) Has been cancelled
CI / Deploy Trigger.dev (Dev) (push) Has been cancelled
CI / Build AMD64 (./docker/app.Dockerfile, ECR_APP, ghcr.io/simstudioai/simstudio) (push) Has been cancelled
CI / Build AMD64 (./docker/db.Dockerfile, ECR_MIGRATIONS, ghcr.io/simstudioai/migrations) (push) Has been cancelled
CI / Build AMD64 (./docker/pii.Dockerfile, ECR_PII, ghcr.io/simstudioai/pii) (push) Has been cancelled
CI / Build AMD64 (./docker/realtime.Dockerfile, ECR_REALTIME, ghcr.io/simstudioai/realtime) (push) Has been cancelled
CI / Build ARM64 (GHCR Only) (./docker/app.Dockerfile, ghcr.io/simstudioai/simstudio) (push) Has been cancelled
CI / Build ARM64 (GHCR Only) (./docker/db.Dockerfile, ghcr.io/simstudioai/migrations) (push) Has been cancelled
CI / Build ARM64 (GHCR Only) (./docker/pii.Dockerfile, ghcr.io/simstudioai/pii) (push) Has been cancelled
CI / Build ARM64 (GHCR Only) (./docker/realtime.Dockerfile, ghcr.io/simstudioai/realtime) (push) Has been cancelled
CI / Create GHCR Manifests (ghcr.io/simstudioai/migrations) (push) Has been cancelled
CI / Create GHCR Manifests (ghcr.io/simstudioai/pii) (push) Has been cancelled
CI / Create GHCR Manifests (ghcr.io/simstudioai/realtime) (push) Has been cancelled
CI / Create GHCR Manifests (ghcr.io/simstudioai/simstudio) (push) Has been cancelled
CI / Check Docs Changes (push) Has been cancelled
CI / Process Docs (push) Has been cancelled
CI / Create GitHub Release (push) Has been cancelled
CI / Test and Build (push) Has been cancelled
Publish CLI Package / publish-npm (push) Has been cancelled
Publish Python SDK / publish-pypi (push) Has been cancelled
Publish TypeScript SDK / publish-npm (push) Has been cancelled
CI / Migrate Dev DB (push) Has been skipped
CI / Detect Version (push) Has been cancelled
CI / Migrate DB (push) Has been cancelled
CI / Build Dev ECR (./docker/app.Dockerfile, ECR_APP) (push) Has been cancelled
CI / Build Dev ECR (./docker/db.Dockerfile, ECR_MIGRATIONS) (push) Has been cancelled
CI / Build Dev ECR (./docker/pii.Dockerfile, ECR_PII) (push) Has been cancelled
CI / Build Dev ECR (./docker/realtime.Dockerfile, ECR_REALTIME) (push) Has been cancelled
CI / Deploy Trigger.dev (Dev) (push) Has been cancelled
CI / Build AMD64 (./docker/app.Dockerfile, ECR_APP, ghcr.io/simstudioai/simstudio) (push) Has been cancelled
CI / Build AMD64 (./docker/db.Dockerfile, ECR_MIGRATIONS, ghcr.io/simstudioai/migrations) (push) Has been cancelled
CI / Build AMD64 (./docker/pii.Dockerfile, ECR_PII, ghcr.io/simstudioai/pii) (push) Has been cancelled
CI / Build AMD64 (./docker/realtime.Dockerfile, ECR_REALTIME, ghcr.io/simstudioai/realtime) (push) Has been cancelled
CI / Build ARM64 (GHCR Only) (./docker/app.Dockerfile, ghcr.io/simstudioai/simstudio) (push) Has been cancelled
CI / Build ARM64 (GHCR Only) (./docker/db.Dockerfile, ghcr.io/simstudioai/migrations) (push) Has been cancelled
CI / Build ARM64 (GHCR Only) (./docker/pii.Dockerfile, ghcr.io/simstudioai/pii) (push) Has been cancelled
CI / Build ARM64 (GHCR Only) (./docker/realtime.Dockerfile, ghcr.io/simstudioai/realtime) (push) Has been cancelled
CI / Create GHCR Manifests (ghcr.io/simstudioai/migrations) (push) Has been cancelled
CI / Create GHCR Manifests (ghcr.io/simstudioai/pii) (push) Has been cancelled
CI / Create GHCR Manifests (ghcr.io/simstudioai/realtime) (push) Has been cancelled
CI / Create GHCR Manifests (ghcr.io/simstudioai/simstudio) (push) Has been cancelled
CI / Check Docs Changes (push) Has been cancelled
CI / Process Docs (push) Has been cancelled
CI / Create GitHub Release (push) Has been cancelled
CI / Test and Build (push) Has been cancelled
Publish CLI Package / publish-npm (push) Has been cancelled
Publish Python SDK / publish-pypi (push) Has been cancelled
Publish TypeScript SDK / publish-npm (push) Has been cancelled
This commit is contained in:
@@ -0,0 +1,119 @@
|
||||
import { createLogger } from '@sim/logger'
|
||||
import { normalizeEmail } from '@sim/utils/string'
|
||||
import { type NextRequest, NextResponse } from 'next/server'
|
||||
import { batchWorkspaceInvitationsContract } from '@/lib/api/contracts/invitations'
|
||||
import { parseRequest } from '@/lib/api/server'
|
||||
import { getSession } from '@/lib/auth'
|
||||
import { withRouteHandler } from '@/lib/core/utils/with-route-handler'
|
||||
import {
|
||||
createWorkspaceInvitation,
|
||||
prepareWorkspaceInvitationContext,
|
||||
WorkspaceInvitationError,
|
||||
type WorkspaceInvitationResult,
|
||||
} from '@/lib/invitations/workspace-invitations'
|
||||
import { InvitationsNotAllowedError } from '@/ee/access-control/utils/permission-check'
|
||||
|
||||
export const dynamic = 'force-dynamic'
|
||||
|
||||
const logger = createLogger('WorkspaceInvitationBatchAPI')
|
||||
|
||||
interface BatchInvitationFailure {
|
||||
email: string
|
||||
error: string
|
||||
}
|
||||
|
||||
function batchErrorResponse(error: unknown) {
|
||||
if (error instanceof WorkspaceInvitationError) {
|
||||
return NextResponse.json(
|
||||
{
|
||||
error: error.message,
|
||||
...(error.email ? { email: error.email } : {}),
|
||||
...(error.upgradeRequired !== undefined ? { upgradeRequired: error.upgradeRequired } : {}),
|
||||
},
|
||||
{ status: error.status }
|
||||
)
|
||||
}
|
||||
|
||||
if (error instanceof InvitationsNotAllowedError) {
|
||||
return NextResponse.json({ error: error.message }, { status: 403 })
|
||||
}
|
||||
|
||||
logger.error('Error creating workspace invitation batch:', error)
|
||||
return NextResponse.json({ error: 'Failed to create invitation batch' }, { status: 500 })
|
||||
}
|
||||
|
||||
export const POST = withRouteHandler(async (req: NextRequest) => {
|
||||
const session = await getSession()
|
||||
if (!session?.user?.id) {
|
||||
return NextResponse.json({ error: 'Unauthorized' }, { status: 401 })
|
||||
}
|
||||
|
||||
try {
|
||||
const parsed = await parseRequest(batchWorkspaceInvitationsContract, req, {})
|
||||
if (!parsed.success) return parsed.response
|
||||
const { body } = parsed.data
|
||||
|
||||
const context = await prepareWorkspaceInvitationContext({
|
||||
workspaceId: body.workspaceId,
|
||||
inviterId: session.user.id,
|
||||
inviterName: session.user.name || session.user.email || 'A user',
|
||||
inviterEmail: session.user.email,
|
||||
})
|
||||
|
||||
const successful: string[] = []
|
||||
const added: string[] = []
|
||||
const failed: BatchInvitationFailure[] = []
|
||||
const invitations: WorkspaceInvitationResult[] = []
|
||||
const seenEmails = new Set<string>()
|
||||
|
||||
for (const item of body.invitations) {
|
||||
const normalizedEmail = normalizeEmail(item.email)
|
||||
if (seenEmails.has(normalizedEmail)) {
|
||||
failed.push({
|
||||
email: normalizedEmail,
|
||||
error: `${normalizedEmail} appears more than once in this invitation batch`,
|
||||
})
|
||||
continue
|
||||
}
|
||||
seenEmails.add(normalizedEmail)
|
||||
|
||||
try {
|
||||
const invitation = await createWorkspaceInvitation({
|
||||
context,
|
||||
email: item.email,
|
||||
permission: item.permission,
|
||||
request: req,
|
||||
})
|
||||
if (invitation.instantAdd) {
|
||||
// Only report an actual insertion; an `unchanged` outcome means the
|
||||
// user already had access (rare race) and is a silent no-op.
|
||||
if (invitation.outcome === 'added') added.push(invitation.email)
|
||||
} else {
|
||||
successful.push(invitation.email)
|
||||
}
|
||||
invitations.push(invitation)
|
||||
} catch (error) {
|
||||
if (error instanceof WorkspaceInvitationError) {
|
||||
failed.push({ email: error.email ?? normalizedEmail, error: error.message })
|
||||
continue
|
||||
}
|
||||
|
||||
logger.error('Unexpected workspace invitation batch item failure:', {
|
||||
email: normalizedEmail,
|
||||
error,
|
||||
})
|
||||
throw error
|
||||
}
|
||||
}
|
||||
|
||||
return NextResponse.json({
|
||||
success: failed.length === 0,
|
||||
successful,
|
||||
added,
|
||||
failed,
|
||||
invitations,
|
||||
})
|
||||
} catch (error) {
|
||||
return batchErrorResponse(error)
|
||||
}
|
||||
})
|
||||
@@ -0,0 +1,403 @@
|
||||
/**
|
||||
* @vitest-environment node
|
||||
*/
|
||||
import {
|
||||
auditMock,
|
||||
authMock,
|
||||
authMockFns,
|
||||
createMockRequest,
|
||||
permissionsMock,
|
||||
permissionsMockFns,
|
||||
posthogServerMock,
|
||||
schemaMock,
|
||||
} from '@sim/testing'
|
||||
import { beforeEach, describe, expect, it, vi } from 'vitest'
|
||||
|
||||
const {
|
||||
mockGetWorkspaceInvitePolicy,
|
||||
mockValidateInvitationsAllowed,
|
||||
mockValidateSeatAvailability,
|
||||
mockGetUserOrganization,
|
||||
mockCreatePendingInvitation,
|
||||
mockSendInvitationEmail,
|
||||
mockCancelPendingInvitation,
|
||||
mockFindPendingGrantForWorkspaceEmail,
|
||||
mockDbResults,
|
||||
} = vi.hoisted(() => ({
|
||||
mockGetWorkspaceInvitePolicy: vi.fn(),
|
||||
mockValidateInvitationsAllowed: vi.fn().mockResolvedValue(undefined),
|
||||
mockValidateSeatAvailability: vi.fn(),
|
||||
mockGetUserOrganization: vi.fn(),
|
||||
mockCreatePendingInvitation: vi.fn(),
|
||||
mockSendInvitationEmail: vi.fn(),
|
||||
mockCancelPendingInvitation: vi.fn(),
|
||||
mockFindPendingGrantForWorkspaceEmail: vi.fn(),
|
||||
mockDbResults: { value: [] as any[] },
|
||||
}))
|
||||
|
||||
vi.mock('@sim/db', () => ({
|
||||
db: {
|
||||
select: vi.fn().mockImplementation(() => {
|
||||
const chain: any = {}
|
||||
chain.from = vi.fn().mockReturnValue(chain)
|
||||
chain.innerJoin = vi.fn().mockReturnValue(chain)
|
||||
chain.where = vi.fn().mockReturnValue(chain)
|
||||
chain.limit = vi
|
||||
.fn()
|
||||
.mockImplementation(() => Promise.resolve(mockDbResults.value.shift() || []))
|
||||
chain.then = vi.fn().mockImplementation((callback: (rows: any[]) => unknown) => {
|
||||
const result = mockDbResults.value.shift() || []
|
||||
return Promise.resolve(callback ? callback(result) : result)
|
||||
})
|
||||
return chain
|
||||
}),
|
||||
},
|
||||
}))
|
||||
|
||||
vi.mock('@sim/db/schema', () => schemaMock)
|
||||
|
||||
vi.mock('@/lib/auth', () => authMock)
|
||||
|
||||
vi.mock('@/lib/workspaces/permissions/utils', () => permissionsMock)
|
||||
|
||||
vi.mock('@/lib/workspaces/policy', () => ({
|
||||
getWorkspaceInvitePolicy: mockGetWorkspaceInvitePolicy,
|
||||
isOrganizationWorkspace: (ws: {
|
||||
workspaceMode?: string | null
|
||||
organizationId?: string | null
|
||||
}) => ws.workspaceMode === 'organization' && !!ws.organizationId,
|
||||
}))
|
||||
|
||||
vi.mock('@/lib/billing/validation/seat-management', () => ({
|
||||
validateSeatAvailability: mockValidateSeatAvailability,
|
||||
}))
|
||||
|
||||
vi.mock('@/lib/billing/organizations/membership', () => ({
|
||||
getUserOrganization: mockGetUserOrganization,
|
||||
}))
|
||||
|
||||
vi.mock('@/lib/invitations/send', () => ({
|
||||
createPendingInvitation: mockCreatePendingInvitation,
|
||||
sendInvitationEmail: mockSendInvitationEmail,
|
||||
cancelPendingInvitation: mockCancelPendingInvitation,
|
||||
findPendingGrantForWorkspaceEmail: mockFindPendingGrantForWorkspaceEmail,
|
||||
}))
|
||||
|
||||
vi.mock('@/lib/invitations/core', () => ({
|
||||
normalizeEmail: (email: string) => email.trim().toLowerCase(),
|
||||
listInvitationsForWorkspaces: vi.fn().mockResolvedValue([]),
|
||||
}))
|
||||
|
||||
vi.mock('@/ee/access-control/utils/permission-check', () => ({
|
||||
validateInvitationsAllowed: mockValidateInvitationsAllowed,
|
||||
InvitationsNotAllowedError: class InvitationsNotAllowedError extends Error {},
|
||||
}))
|
||||
|
||||
vi.mock('@sim/audit', () => auditMock)
|
||||
|
||||
vi.mock('@/lib/posthog/server', () => posthogServerMock)
|
||||
|
||||
vi.mock('@/lib/core/telemetry', () => ({
|
||||
PlatformEvents: {
|
||||
workspaceMemberInvited: vi.fn(),
|
||||
},
|
||||
}))
|
||||
|
||||
const mockGetSession = authMockFns.mockGetSession
|
||||
const mockGetWorkspaceWithOwner = permissionsMockFns.mockGetWorkspaceWithOwner
|
||||
|
||||
import { UPGRADE_TO_INVITE_REASON } from '@/lib/workspaces/policy-constants'
|
||||
import { POST } from '@/app/api/workspaces/invitations/batch/route'
|
||||
|
||||
describe('POST /api/workspaces/invitations/batch', () => {
|
||||
beforeEach(() => {
|
||||
vi.clearAllMocks()
|
||||
mockDbResults.value = []
|
||||
mockGetSession.mockResolvedValue({
|
||||
user: { id: 'user-1', email: 'owner@test.com', name: 'Owner User' },
|
||||
})
|
||||
mockGetWorkspaceWithOwner.mockResolvedValue({
|
||||
id: 'workspace-1',
|
||||
name: 'Workspace',
|
||||
ownerId: 'user-1',
|
||||
organizationId: null,
|
||||
workspaceMode: 'grandfathered_shared',
|
||||
billedAccountUserId: 'user-1',
|
||||
})
|
||||
permissionsMockFns.mockHasWorkspaceAdminAccess.mockResolvedValue(true)
|
||||
mockValidateInvitationsAllowed.mockResolvedValue(undefined)
|
||||
mockGetWorkspaceInvitePolicy.mockResolvedValue({
|
||||
allowed: true,
|
||||
reason: null,
|
||||
requiresSeat: false,
|
||||
organizationId: null,
|
||||
upgradeRequired: false,
|
||||
})
|
||||
mockValidateSeatAvailability.mockResolvedValue({
|
||||
canInvite: true,
|
||||
currentSeats: 1,
|
||||
maxSeats: 5,
|
||||
availableSeats: 4,
|
||||
})
|
||||
mockGetUserOrganization.mockResolvedValue(null)
|
||||
mockCreatePendingInvitation.mockResolvedValue({
|
||||
invitationId: 'inv-1',
|
||||
token: 'tok-1',
|
||||
expiresAt: new Date(Date.now() + 7 * 24 * 60 * 60 * 1000),
|
||||
})
|
||||
mockSendInvitationEmail.mockResolvedValue({ success: true })
|
||||
mockFindPendingGrantForWorkspaceEmail.mockResolvedValue(null)
|
||||
})
|
||||
|
||||
it('blocks invites for personal workspaces with an upgrade prompt', async () => {
|
||||
mockGetWorkspaceWithOwner.mockResolvedValueOnce({
|
||||
id: 'workspace-1',
|
||||
name: 'Personal Workspace',
|
||||
ownerId: 'user-1',
|
||||
organizationId: null,
|
||||
workspaceMode: 'personal',
|
||||
billedAccountUserId: 'user-1',
|
||||
})
|
||||
mockGetWorkspaceInvitePolicy.mockResolvedValueOnce({
|
||||
allowed: false,
|
||||
reason: UPGRADE_TO_INVITE_REASON,
|
||||
requiresSeat: false,
|
||||
organizationId: null,
|
||||
upgradeRequired: true,
|
||||
})
|
||||
mockDbResults.value = []
|
||||
|
||||
const request = createMockRequest('POST', {
|
||||
workspaceId: 'workspace-1',
|
||||
invitations: [{ email: 'new@example.com', permission: 'read' }],
|
||||
})
|
||||
|
||||
const response = await POST(request)
|
||||
const data = await response.json()
|
||||
|
||||
expect(response.status).toBe(403)
|
||||
expect(data.error).toBe(UPGRADE_TO_INVITE_REASON)
|
||||
expect(data.upgradeRequired).toBe(true)
|
||||
})
|
||||
|
||||
it('blocks invites for grandfathered workspaces without a team plan', async () => {
|
||||
mockGetWorkspaceWithOwner.mockResolvedValueOnce({
|
||||
id: 'workspace-1',
|
||||
name: 'Grandfathered Workspace',
|
||||
ownerId: 'user-1',
|
||||
organizationId: null,
|
||||
workspaceMode: 'grandfathered_shared',
|
||||
billedAccountUserId: 'user-1',
|
||||
})
|
||||
mockGetWorkspaceInvitePolicy.mockResolvedValueOnce({
|
||||
allowed: false,
|
||||
reason: UPGRADE_TO_INVITE_REASON,
|
||||
requiresSeat: false,
|
||||
organizationId: null,
|
||||
upgradeRequired: true,
|
||||
})
|
||||
mockDbResults.value = []
|
||||
|
||||
const request = createMockRequest('POST', {
|
||||
workspaceId: 'workspace-1',
|
||||
invitations: [{ email: 'new@example.com', permission: 'read' }],
|
||||
})
|
||||
|
||||
const response = await POST(request)
|
||||
const data = await response.json()
|
||||
|
||||
expect(response.status).toBe(403)
|
||||
expect(data.upgradeRequired).toBe(true)
|
||||
expect(mockCreatePendingInvitation).not.toHaveBeenCalled()
|
||||
})
|
||||
|
||||
it('reports org-owned invites as failed when the organization has no available seats', async () => {
|
||||
mockGetWorkspaceWithOwner.mockResolvedValueOnce({
|
||||
id: 'workspace-1',
|
||||
name: 'Org Workspace',
|
||||
ownerId: 'user-1',
|
||||
organizationId: 'org-1',
|
||||
workspaceMode: 'organization',
|
||||
billedAccountUserId: 'owner-1',
|
||||
})
|
||||
mockGetWorkspaceInvitePolicy.mockResolvedValueOnce({
|
||||
allowed: true,
|
||||
reason: null,
|
||||
requiresSeat: true,
|
||||
organizationId: 'org-1',
|
||||
upgradeRequired: false,
|
||||
})
|
||||
mockValidateSeatAvailability.mockResolvedValueOnce({
|
||||
canInvite: false,
|
||||
reason: 'No available seats. Currently using 5 of 5 seats.',
|
||||
currentSeats: 5,
|
||||
maxSeats: 5,
|
||||
availableSeats: 0,
|
||||
})
|
||||
mockDbResults.value = [[]]
|
||||
|
||||
const request = createMockRequest('POST', {
|
||||
workspaceId: 'workspace-1',
|
||||
invitations: [{ email: 'new@example.com', permission: 'read' }],
|
||||
})
|
||||
|
||||
const response = await POST(request)
|
||||
const data = await response.json()
|
||||
|
||||
expect(response.status).toBe(200)
|
||||
expect(data.success).toBe(false)
|
||||
expect(data.failed).toEqual([
|
||||
{
|
||||
email: 'new@example.com',
|
||||
error: 'No available seats. Currently using 5 of 5 seats.',
|
||||
},
|
||||
])
|
||||
expect(mockValidateSeatAvailability).toHaveBeenCalledWith('org-1', 1)
|
||||
expect(mockCreatePendingInvitation).not.toHaveBeenCalled()
|
||||
})
|
||||
|
||||
it('creates an external workspace invitation for users already in another organization', async () => {
|
||||
mockGetWorkspaceWithOwner.mockResolvedValueOnce({
|
||||
id: 'workspace-1',
|
||||
name: 'Org Workspace',
|
||||
ownerId: 'user-1',
|
||||
organizationId: 'org-1',
|
||||
workspaceMode: 'organization',
|
||||
billedAccountUserId: 'owner-1',
|
||||
})
|
||||
mockGetWorkspaceInvitePolicy.mockResolvedValueOnce({
|
||||
allowed: true,
|
||||
reason: null,
|
||||
requiresSeat: true,
|
||||
organizationId: 'org-1',
|
||||
upgradeRequired: false,
|
||||
})
|
||||
mockGetUserOrganization.mockResolvedValueOnce({
|
||||
organizationId: 'org-2',
|
||||
role: 'member',
|
||||
memberId: 'member-1',
|
||||
})
|
||||
mockDbResults.value = [[{ id: 'existing-user', email: 'new@example.com' }]]
|
||||
|
||||
const request = createMockRequest('POST', {
|
||||
workspaceId: 'workspace-1',
|
||||
invitations: [{ email: 'new@example.com', permission: 'read' }],
|
||||
})
|
||||
|
||||
const response = await POST(request)
|
||||
const data = await response.json()
|
||||
|
||||
expect(response.status).toBe(200)
|
||||
expect(data.success).toBe(true)
|
||||
expect(data.invitations[0].membershipIntent).toBe('external')
|
||||
expect(mockValidateSeatAvailability).not.toHaveBeenCalled()
|
||||
expect(mockCreatePendingInvitation).toHaveBeenCalledWith(
|
||||
expect.objectContaining({
|
||||
kind: 'workspace',
|
||||
email: 'new@example.com',
|
||||
organizationId: 'org-1',
|
||||
membershipIntent: 'external',
|
||||
grants: [{ workspaceId: 'workspace-1', permission: 'read' }],
|
||||
})
|
||||
)
|
||||
})
|
||||
|
||||
it('creates a unified workspace invitation for a grandfathered workspace', async () => {
|
||||
mockGetWorkspaceWithOwner.mockResolvedValueOnce({
|
||||
id: 'workspace-1',
|
||||
name: 'Grandfathered Workspace',
|
||||
ownerId: 'user-1',
|
||||
organizationId: null,
|
||||
workspaceMode: 'grandfathered_shared',
|
||||
billedAccountUserId: 'user-1',
|
||||
})
|
||||
mockDbResults.value = [[]]
|
||||
|
||||
const request = createMockRequest('POST', {
|
||||
workspaceId: 'workspace-1',
|
||||
invitations: [{ email: 'new@example.com', permission: 'write' }],
|
||||
})
|
||||
|
||||
const response = await POST(request)
|
||||
const data = await response.json()
|
||||
|
||||
expect(response.status).toBe(200)
|
||||
expect(data.success).toBe(true)
|
||||
expect(mockCreatePendingInvitation).toHaveBeenCalledWith(
|
||||
expect.objectContaining({
|
||||
kind: 'workspace',
|
||||
email: 'new@example.com',
|
||||
organizationId: null,
|
||||
grants: [{ workspaceId: 'workspace-1', permission: 'write' }],
|
||||
})
|
||||
)
|
||||
expect(mockSendInvitationEmail).toHaveBeenCalled()
|
||||
expect(mockValidateSeatAvailability).not.toHaveBeenCalled()
|
||||
})
|
||||
|
||||
it('creates multiple workspace invitations in one batch request', async () => {
|
||||
mockDbResults.value = [[], []]
|
||||
mockCreatePendingInvitation
|
||||
.mockResolvedValueOnce({
|
||||
invitationId: 'inv-1',
|
||||
token: 'tok-1',
|
||||
expiresAt: new Date(Date.now() + 7 * 24 * 60 * 60 * 1000),
|
||||
})
|
||||
.mockResolvedValueOnce({
|
||||
invitationId: 'inv-2',
|
||||
token: 'tok-2',
|
||||
expiresAt: new Date(Date.now() + 7 * 24 * 60 * 60 * 1000),
|
||||
})
|
||||
|
||||
const request = createMockRequest('POST', {
|
||||
workspaceId: 'workspace-1',
|
||||
invitations: [
|
||||
{ email: 'first@example.com', permission: 'read' },
|
||||
{ email: 'second@example.com', permission: 'write' },
|
||||
],
|
||||
})
|
||||
|
||||
const response = await POST(request)
|
||||
const data = await response.json()
|
||||
|
||||
expect(response.status).toBe(200)
|
||||
expect(data.success).toBe(true)
|
||||
expect(data.successful).toEqual(['first@example.com', 'second@example.com'])
|
||||
expect(data.failed).toEqual([])
|
||||
expect(data.invitations).toHaveLength(2)
|
||||
expect(mockCreatePendingInvitation).toHaveBeenCalledTimes(2)
|
||||
expect(mockSendInvitationEmail).toHaveBeenCalledTimes(2)
|
||||
})
|
||||
|
||||
it('rolls back the unified invitation when email delivery fails', async () => {
|
||||
mockGetWorkspaceWithOwner.mockResolvedValueOnce({
|
||||
id: 'workspace-1',
|
||||
name: 'Org Workspace',
|
||||
ownerId: 'user-1',
|
||||
organizationId: 'org-1',
|
||||
workspaceMode: 'organization',
|
||||
billedAccountUserId: 'owner-1',
|
||||
})
|
||||
mockSendInvitationEmail.mockResolvedValueOnce({
|
||||
success: false,
|
||||
error: 'mailer unavailable',
|
||||
})
|
||||
mockDbResults.value = [[]]
|
||||
|
||||
const request = createMockRequest('POST', {
|
||||
workspaceId: 'workspace-1',
|
||||
invitations: [{ email: 'new@example.com', permission: 'read' }],
|
||||
})
|
||||
|
||||
const response = await POST(request)
|
||||
|
||||
expect(response.status).toBe(200)
|
||||
await expect(response.json()).resolves.toEqual(
|
||||
expect.objectContaining({
|
||||
success: false,
|
||||
failed: [{ email: 'new@example.com', error: 'mailer unavailable' }],
|
||||
})
|
||||
)
|
||||
expect(mockCancelPendingInvitation).toHaveBeenCalledWith('inv-1')
|
||||
})
|
||||
})
|
||||
@@ -0,0 +1,32 @@
|
||||
import { createLogger } from '@sim/logger'
|
||||
import { type NextRequest, NextResponse } from 'next/server'
|
||||
import { getSession } from '@/lib/auth'
|
||||
import { withRouteHandler } from '@/lib/core/utils/with-route-handler'
|
||||
import { listInvitationsForWorkspaces } from '@/lib/invitations/core'
|
||||
import { listAccessibleWorkspaceRowsForUser } from '@/lib/workspaces/utils'
|
||||
|
||||
export const dynamic = 'force-dynamic'
|
||||
|
||||
const logger = createLogger('WorkspaceInvitationsAPI')
|
||||
|
||||
export const GET = withRouteHandler(async (req: NextRequest) => {
|
||||
const session = await getSession()
|
||||
if (!session?.user?.id) {
|
||||
return NextResponse.json({ error: 'Unauthorized' }, { status: 401 })
|
||||
}
|
||||
|
||||
try {
|
||||
const accessibleRows = await listAccessibleWorkspaceRowsForUser(session.user.id)
|
||||
if (accessibleRows.length === 0) {
|
||||
return NextResponse.json({ invitations: [] })
|
||||
}
|
||||
|
||||
const invitations = await listInvitationsForWorkspaces(
|
||||
accessibleRows.map((row) => row.workspace.id)
|
||||
)
|
||||
return NextResponse.json({ invitations })
|
||||
} catch (error) {
|
||||
logger.error('Error fetching workspace invitations:', error)
|
||||
return NextResponse.json({ error: 'Failed to fetch invitations' }, { status: 500 })
|
||||
}
|
||||
})
|
||||
Reference in New Issue
Block a user