perf: improve booking confirm authorization (#8304)

* perf: improve booking confirm authorization

* removes unreachable code

---------

Co-authored-by: Efraín Rochín <roae.85@gmail.com>

packages/trpc/server/routers/viewer/bookings.tsx

@@ -781,30 +781,22 @@ export const bookingsRouter = router({
     });
 
     const authorized = async () => {
-      // if the organizer
+      const eventType = await prisma.eventType.findFirst({
-      if (booking.userId === user.id) {
-        return true;
-      }
-      const eventType = await prisma.eventType.findUnique({
         where: {
           id: booking.eventTypeId || undefined,
+          schedulingType: SchedulingType.COLLECTIVE,
         },
         select: {
-          id: true,
-          schedulingType: true,
           users: true,
         },
       });
-      if (
+
-        eventType?.schedulingType === SchedulingType.COLLECTIVE &&
+      return eventType && eventType.users.find((user) => booking.userId === user.id);
-        eventType.users.find((user) => user.id === user.id)
-      ) {
-        return true;
-      }
-      return false;
     };
 
-    if (!(await authorized())) throw new TRPCError({ code: "UNAUTHORIZED", message: "UNAUTHORIZED" });
+    if (booking.userId !== user.id && !(await authorized())) {
+      throw new TRPCError({ code: "UNAUTHORIZED", message: "UNAUTHORIZED" });
+    }
 
     const isConfirmed = booking.status === BookingStatus.ACCEPTED;
     if (isConfirmed) throw new TRPCError({ code: "BAD_REQUEST", message: "Booking already confirmed" });