cal.pub0.org/pages/api/bookings/[id].ts

import type { NextApiRequest, NextApiResponse } from "next";

import prisma from "@calcom/prisma";

import { withMiddleware } from "@lib/helpers/withMiddleware";
import type { BookingResponse } from "@lib/types";
import { schemaBookingEditBodyParams, schemaBookingReadPublic } from "@lib/validations/booking";
import {
  schemaQueryIdParseInt,
  withValidQueryIdTransformParseInt,
} from "@lib/validations/shared/queryIdTransformParseInt";

export async function bookingById(
  { method, query, body, userId }: NextApiRequest,
  res: NextApiResponse<BookingResponse>
) {
  const safeQuery = schemaQueryIdParseInt.safeParse(query);
  if (!safeQuery.success) {
    res.status(400).json({ message: "Your query was invalid" });
    return;
  }
  const userWithBookings = await prisma.user.findUnique({
    where: { id: userId },
    include: { bookings: true },
  });
  if (!userWithBookings) throw new Error("User not found");
  const userBookingIds = userWithBookings.bookings.map((booking: { id: number }) => booking.id).flat();
  if (!userBookingIds.includes(safeQuery.data.id)) res.status(401).json({ message: "Unauthorized" });
  else {
    switch (method) {
      /**
       * @swagger
       * /bookings/{id}:
       *   get:
       *     summary: Find a booking
       *     operationId: getBookingById
       *     parameters:
       *       - in: path
       *         name: id
       *         schema:
       *           type: integer
       *         required: true
       *         description: ID of the booking to get
       *     tags:
       *     - bookings
       *     responses:
       *       200:
       *         description: OK
       *       401:
       *        description: Authorization information is missing or invalid.
       *       404:
       *         description: Booking was not found
       */
      case "GET":
        await prisma.booking
          .findUnique({ where: { id: safeQuery.data.id } })
          .then((data) => schemaBookingReadPublic.parse(data))
          .then((booking) => res.status(200).json({ booking }))
          .catch((error: Error) =>
            res.status(404).json({
              message: `Booking with id: ${safeQuery.data.id} not found`,
              error,
            })
          );
        break;
      /**
       * @swagger
       * /bookings/{id}:
       *   patch:
       *     summary: Edit an existing booking
       *     operationId: editBookingById
       *     requestBody:
       *       description: Edit an existing booking related to one of your event-types
       *       required: true
       *       content:
       *         application/json:
       *           schema:
       *             type: object
       *             properties:
       *               title:
       *                 type: string
       *                 example: 15min
       *               startTime:
       *                 type: string
       *                 example: 1970-01-01T17:00:00.000Z
       *               endTime:
       *                 type: string
       *                 example: 1970-01-01T17:00:00.000Z
       *     parameters:
       *      - in: path
       *        name: id
       *        schema:
       *          type: integer
       *        required: true
       *        description: ID of the booking to edit
       *     tags:
       *     - bookings
       *     responses:
       *       201:
       *         description: OK, booking edited successfuly
       *       400:
       *        description: Bad request. Booking body is invalid.
       *       401:
       *        description: Authorization information is missing or invalid.
       */
      case "PATCH":
        const safeBody = schemaBookingEditBodyParams.safeParse(body);
        if (!safeBody.success) {
          console.log(safeBody.error);
          res.status(400).json({ message: "Bad request", error: safeBody.error });
          return;
        }
        await prisma.booking
          .update({
            where: { id: safeQuery.data.id },
            data: safeBody.data,
          })
          // .then((data) => schemaBookingReadPublic.parse(data))
          .then((booking) => res.status(200).json({ booking }))
          .catch((error: Error) =>
            res.status(404).json({
              message: `Booking with id: ${safeQuery.data.id} not found`,
              error,
            })
          );
        break;
      /**
       * @swagger
       * /bookings/{id}:
       *   delete:
       *     summary: Remove an existing booking
       *     operationId: removeBookingById
       *     parameters:
       *      - in: path
       *        name: id
       *        schema:
       *          type: integer
       *        required: true
       *        description: ID of the booking to delete
       *     tags:
       *     - bookings
       *     responses:
       *       201:
       *         description: OK, booking removed successfuly
       *       400:
       *        description: Bad request. Booking id is invalid.
       *       401:
       *        description: Authorization information is missing or invalid.
       */
      case "DELETE":
        await prisma.booking
          .delete({ where: { id: safeQuery.data.id } })
          .then(() =>
            res.status(200).json({
              message: `Booking with id: ${safeQuery.data.id} deleted successfully`,
            })
          )
          .catch((error: Error) =>
            res.status(404).json({
              message: `Booking with id: ${safeQuery.data.id} not found`,
              error,
            })
          );
        break;

      default:
        res.status(405).json({ message: "Method not allowed" });
        break;
    }
  }
}

export default withMiddleware("HTTP_GET_DELETE_PATCH")(withValidQueryIdTransformParseInt(bookingById));
mvoe to less files 2022-04-04 00:02:11 +00:00			`import type { NextApiRequest, NextApiResponse } from "next";`

			`import prisma from "@calcom/prisma";`

			`import { withMiddleware } from "@lib/helpers/withMiddleware";`
			`import type { BookingResponse } from "@lib/types";`
fix: post / patch attendees docs w examples 2022-04-27 17:25:36 +00:00			`import { schemaBookingEditBodyParams, schemaBookingReadPublic } from "@lib/validations/booking";`
mvoe to less files 2022-04-04 00:02:11 +00:00			`import {`
			`schemaQueryIdParseInt,`
			`withValidQueryIdTransformParseInt,`
			`} from "@lib/validations/shared/queryIdTransformParseInt";`

fix: improve comments, no anys 2022-04-29 15:29:57 +00:00			`export async function bookingById(`
			`{ method, query, body, userId }: NextApiRequest,`
			`res: NextApiResponse<BookingResponse>`
			`) {`
payments safe, unify endpoints for remindermails schedules 2022-04-10 00:10:34 +00:00			`const safeQuery = schemaQueryIdParseInt.safeParse(query);`
fix: dont throw err on bad query 2022-05-18 12:27:30 +00:00			`if (!safeQuery.success) {`
			`res.status(400).json({ message: "Your query was invalid" });`
			`return;`
			`}`
feat hardened attendees, availabilites, booking-references, and bookings 2022-04-11 14:47:01 +00:00			`const userWithBookings = await prisma.user.findUnique({`
			`where: { id: userId },`
			`include: { bookings: true },`
			`});`
			`if (!userWithBookings) throw new Error("User not found");`
fix: improve comments, no anys 2022-04-29 15:29:57 +00:00			`const userBookingIds = userWithBookings.bookings.map((booking: { id: number }) => booking.id).flat();`
fix: move 401 to throw early in all endpoints 2022-04-23 00:17:06 +00:00			`if (!userBookingIds.includes(safeQuery.data.id)) res.status(401).json({ message: "Unauthorized" });`
			`else {`
feat hardened attendees, availabilites, booking-references, and bookings 2022-04-11 14:47:01 +00:00			`switch (method) {`
fix: rename endpoints to be only 2 words max 2022-04-29 00:49:38 +00:00			`/**`
			`* @swagger`
			`* /bookings/{id}:`
			`* get:`
fix: improve comments, no anys 2022-04-29 15:29:57 +00:00			`* summary: Find a booking`
feat: adds auth/signup for ee customers 2022-05-10 17:52:59 +00:00			`* operationId: getBookingById`
fix: rename endpoints to be only 2 words max 2022-04-29 00:49:38 +00:00			`* parameters:`
			`* - in: path`
			`* name: id`
			`* schema:`
			`* type: integer`
			`* required: true`
feat: add operationId for autogenerated sdk 2022-05-05 16:18:00 +00:00			`* description: ID of the booking to get`
fix: rename endpoints to be only 2 words max 2022-04-29 00:49:38 +00:00			`* tags:`
			`* - bookings`
			`* responses:`
			`* 200:`
			`* description: OK`
			`* 401:`
			`* description: Authorization information is missing or invalid.`
			`* 404:`
			`* description: Booking was not found`
			`*/`
feat hardened attendees, availabilites, booking-references, and bookings 2022-04-11 14:47:01 +00:00			`case "GET":`
			`await prisma.booking`
			`.findUnique({ where: { id: safeQuery.data.id } })`
fix: post / patch attendees docs w examples 2022-04-27 17:25:36 +00:00			`.then((data) => schemaBookingReadPublic.parse(data))`
feat hardened attendees, availabilites, booking-references, and bookings 2022-04-11 14:47:01 +00:00			`.then((booking) => res.status(200).json({ booking }))`
			`.catch((error: Error) =>`
			`res.status(404).json({`
			message: `Booking with id: ${safeQuery.data.id} not found`,
			`error,`
			`})`
			`);`
			`break;`
fix: rename endpoints to be only 2 words max 2022-04-29 00:49:38 +00:00			`/**`
			`* @swagger`
			`* /bookings/{id}:`
			`* patch:`
			`* summary: Edit an existing booking`
feat: adds auth/signup for ee customers 2022-05-10 17:52:59 +00:00			`* operationId: editBookingById`
			`* requestBody:`
			`* description: Edit an existing booking related to one of your event-types`
			`* required: true`
			`* content:`
			`* application/json:`
			`* schema:`
			`* type: object`
			`* properties:`
			`* title:`
			`* type: string`
			`* example: 15min`
			`* startTime:`
			`* type: string`
			`* example: 1970-01-01T17:00:00.000Z`
			`* endTime:`
			`* type: string`
			`* example: 1970-01-01T17:00:00.000Z`
fix: rename endpoints to be only 2 words max 2022-04-29 00:49:38 +00:00			`* parameters:`
			`* - in: path`
			`* name: id`
			`* schema:`
			`* type: integer`
			`* required: true`
feat: add operationId for autogenerated sdk 2022-05-05 16:18:00 +00:00			`* description: ID of the booking to edit`
fix: rename endpoints to be only 2 words max 2022-04-29 00:49:38 +00:00			`* tags:`
			`* - bookings`
			`* responses:`
			`* 201:`
			`* description: OK, booking edited successfuly`
			`* 400:`
			`* description: Bad request. Booking body is invalid.`
			`* 401:`
			`* description: Authorization information is missing or invalid.`
			`*/`
feat hardened attendees, availabilites, booking-references, and bookings 2022-04-11 14:47:01 +00:00			`case "PATCH":`
fix: post / patch attendees docs w examples 2022-04-27 17:25:36 +00:00			`const safeBody = schemaBookingEditBodyParams.safeParse(body);`
feat hardened attendees, availabilites, booking-references, and bookings 2022-04-11 14:47:01 +00:00			`if (!safeBody.success) {`
feat: adds auth/signup for ee customers 2022-05-10 17:52:59 +00:00			`console.log(safeBody.error);`
			`res.status(400).json({ message: "Bad request", error: safeBody.error });`
			`return;`
feat hardened attendees, availabilites, booking-references, and bookings 2022-04-11 14:47:01 +00:00			`}`
			`await prisma.booking`
			`.update({`
			`where: { id: safeQuery.data.id },`
			`data: safeBody.data,`
			`})`
feat: adds auth/signup for ee customers 2022-05-10 17:52:59 +00:00			`// .then((data) => schemaBookingReadPublic.parse(data))`
feat hardened attendees, availabilites, booking-references, and bookings 2022-04-11 14:47:01 +00:00			`.then((booking) => res.status(200).json({ booking }))`
			`.catch((error: Error) =>`
			`res.status(404).json({`
			message: `Booking with id: ${safeQuery.data.id} not found`,
			`error,`
			`})`
			`);`
			`break;`
fix: rename endpoints to be only 2 words max 2022-04-29 00:49:38 +00:00			`/**`
			`* @swagger`
			`* /bookings/{id}:`
			`* delete:`
			`* summary: Remove an existing booking`
feat: adds auth/signup for ee customers 2022-05-10 17:52:59 +00:00			`* operationId: removeBookingById`
fix: rename endpoints to be only 2 words max 2022-04-29 00:49:38 +00:00			`* parameters:`
			`* - in: path`
			`* name: id`
			`* schema:`
			`* type: integer`
			`* required: true`
feat: add operationId for autogenerated sdk 2022-05-05 16:18:00 +00:00			`* description: ID of the booking to delete`
fix: rename endpoints to be only 2 words max 2022-04-29 00:49:38 +00:00			`* tags:`
			`* - bookings`
			`* responses:`
			`* 201:`
			`* description: OK, booking removed successfuly`
			`* 400:`
			`* description: Bad request. Booking id is invalid.`
			`* 401:`
			`* description: Authorization information is missing or invalid.`
			`*/`
feat hardened attendees, availabilites, booking-references, and bookings 2022-04-11 14:47:01 +00:00			`case "DELETE":`
			`await prisma.booking`
			`.delete({ where: { id: safeQuery.data.id } })`
			`.then(() =>`
			`res.status(200).json({`
			message: `Booking with id: ${safeQuery.data.id} deleted successfully`,
			`})`
			`)`
			`.catch((error: Error) =>`
			`res.status(404).json({`
			message: `Booking with id: ${safeQuery.data.id} not found`,
			`error,`
			`})`
			`);`
			`break;`
mvoe to less files 2022-04-04 00:02:11 +00:00
feat hardened attendees, availabilites, booking-references, and bookings 2022-04-11 14:47:01 +00:00			`default:`
			`res.status(405).json({ message: "Method not allowed" });`
			`break;`
			`}`
fix: move 401 to throw early in all endpoints 2022-04-23 00:17:06 +00:00			`}`
mvoe to less files 2022-04-04 00:02:11 +00:00			`}`

			`export default withMiddleware("HTTP_GET_DELETE_PATCH")(withValidQueryIdTransformParseInt(bookingById));`