forked from stripe/stripe-connect-rocketrides
-
Notifications
You must be signed in to change notification settings - Fork 1
/
pilots.js
296 lines (280 loc) · 8.89 KB
/
pilots.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
'use strict';
const config = require('../../config');
const stripe = require('stripe')(config.stripe.secretKey, {
apiVersion: config.stripe.apiVersion || '2022-08-01'
});
const express = require('express');
const router = express.Router();
const passport = require('passport');
const LocalStrategy = require('passport-local').Strategy;
const Pilot = require('../../models/pilot');
const Ride = require('../../models/ride');
const Passenger = require('../../models/passenger');
// Middleware: require a logged-in pilot
function pilotRequired(req, res, next) {
if (!req.isAuthenticated()) {
return res.redirect('/pilots/login');
}
next();
}
// Helper function: get the currency symbol for the given country ISO code
const getCurrencySymbol = currency => {
const currencySymbol = new Intl.NumberFormat('en', {
currency,
style: 'currency'
}).formatToParts(0).find(part => part.type === 'currency');
return currencySymbol && currencySymbol.value;
}
/**
* GET /pilots/dashboard
*
* Show the Dashboard for the logged-in pilot with the overview,
* their ride history, and the ability to simulate a test ride.
*
* Use the `pilotRequired` middleware to ensure that only logged-in
* pilots can access this route.
*/
router.get('/dashboard', pilotRequired, async (req, res) => {
const pilot = req.user;
// Retrieve the balance from Stripe
const balance = await stripe.balance.retrieve({
stripe_account: pilot.stripeAccountId,
});
// Fetch the pilot's recent rides
const rides = await pilot.listRecentRides();
const ridesTotalAmount = rides.reduce((a, b) => {
return a + b.amountForPilot();
}, 0);
const [showBanner] = req.flash('showBanner');
// There is one balance for each currencies used: as this
// demo app only uses USD we'll just use the first object
res.render('dashboard', {
pilot: pilot,
balanceAvailable: balance.available[0].amount,
balancePending: balance.pending[0].amount,
ridesTotalAmount: ridesTotalAmount,
balanceCurrency: getCurrencySymbol(balance.available[0].currency),
rides: rides,
showBanner: !!showBanner || req.query.showBanner,
});
});
/**
* POST /pilots/rides
*
* Generate a test ride with sample data for the logged-in pilot.
*/
router.post('/rides', pilotRequired, async (req, res, next) => {
const pilot = req.user;
// Find a random passenger
const passenger = await Passenger.getRandom();
// Create a new ride for the pilot and this random passenger
const ride = new Ride({
pilot: pilot.id,
passenger: passenger.id,
// Generate a random amount between $10 and $100 for this ride
amount: getRandomInt(1000, 10000),
});
// Save the ride
await ride.save();
try {
// Get a test source, using the given testing behavior
let source;
if (req.body.immediate_balance) {
source = getTestSource('immediate_balance');
} else if (req.body.payout_limit) {
source = getTestSource('payout_limit');
}
let charge;
// Accounts created in Japan have the `full` service agreement and must create their own card payments
if (pilot.country === 'JP') {
// Create a Destination Charge to the pilot's account
charge = await stripe.charges.create({
source: source,
amount: ride.amount,
currency: ride.currency,
description: config.appName,
statement_descriptor: config.appName,
on_behalf_of: pilot.stripeAccountId,
// The destination parameter directs the transfer of funds from platform to pilot
transfer_data: {
// Send the amount for the pilot after collecting a 20% platform fee:
// the `amountForPilot` method simply computes `ride.amount * 0.8`
amount: ride.amountForPilot(),
// The destination of this charge is the pilot's Stripe account
destination: pilot.stripeAccountId,
},
});
} else {
// Accounts created in any other country use the more limited `recipients` service agreement (with a simpler
// onboarding flow): the platform creates the charge and then separately transfers the funds to the recipient.
charge = await stripe.charges.create({
source: source,
amount: ride.amount,
currency: ride.currency,
description: config.appName,
statement_descriptor: config.appName,
// The `transfer_group` parameter must be a unique id for the ride; it must also match between the charge and transfer
transfer_group: ride.id
});
const transfer = await stripe.transfers.create({
amount: ride.amountForPilot(),
currency: ride.currency,
destination: pilot.stripeAccountId,
transfer_group: ride.id
})
}
// Add the Stripe charge reference to the ride and save it
ride.stripeChargeId = charge.id;
ride.save();
} catch (err) {
console.log(err);
// Return a 402 Payment Required error code
res.sendStatus(402);
next(`Error adding token to customer: ${err.message}`);
}
res.redirect('/pilots/dashboard');
});
/**
* GET /pilots/signup
*
* Display the signup form on the right step depending on the current completion.
*/
router.get('/signup', (req, res) => {
let step = 'account';
// Naive way to identify which step we're on: check for the presence of user profile data
if (req.user) {
if (
req.user.type === 'individual'
? !req.user.firstName || !req.user.lastName
: !req.user.businessName
) {
step = 'profile';
} else if (!req.user.onboardingComplete) {
step = 'payments';
} else {
step = 'done';
}
}
res.render('signup', {step: step});
});
/**
* POST /pilots/signup
*
* Create a user and update profile information during the pilot onboarding process.
*/
router.post('/signup', async (req, res, next) => {
const body = Object.assign({}, req.body, {
// Use `type` instead of `pilot-type` for saving to the DB.
type: req.body['pilot-type'],
'pilot-type': undefined,
});
// Check if we have a logged-in pilot
let pilot = req.user;
if (!pilot) {
try {
// Try to create and save a new pilot
pilot = new Pilot(body);
pilot = await pilot.save()
// Sign in and redirect to continue the signup process
req.logIn(pilot, err => {
if (err) next(err);
return res.redirect('/pilots/signup');
});
} catch (err) {
console.log(err);
// Show an error message to the user
const errors = Object.keys(err.errors).map(field => err.errors[field].message);
res.render('signup', { step: 'account', error: errors[0] });
}
}
else {
try {
// Try to update the logged-in pilot using the newly entered profile data
pilot.set(body);
await pilot.save();
return res.redirect('/pilots/stripe/authorize');
} catch (err) {
next(err);
}
}
});
/**
* GET /pilots/login
*
* Simple pilot login.
*/
router.get('/login', (req, res) => {
res.render('login');
});
/**
* GET /pilots/login
*
* Simple pilot login.
*/
router.post(
'/login',
passport.authenticate('pilot-login', {
successRedirect: '/pilots/dashboard',
failureRedirect: '/pilots/login',
})
);
/**
* GET /pilots/logout
*
* Delete the pilot from the session.
*/
router.get('/logout', (req, res) => {
req.logout();
res.redirect('/');
});
// Serialize the pilot's sessions for Passport
passport.serializeUser((user, done) => {
done(null, user.id);
});
passport.deserializeUser(async (id, done) => {
try {
let user = await Pilot.findById(id);
done(null, user);
} catch (err) {
done(err);
}
});
// Define the login strategy for pilots based on email and password
passport.use('pilot-login', new LocalStrategy({
usernameField: 'email',
passwordField: 'password'
}, async (email, password, done) => {
let user;
try {
user = await Pilot.findOne({email});
if (!user) {
return done(null, false, { message: 'Unknown user' });
}
} catch (err) {
return done(err);
}
if (!user.validatePassword(password)) {
return done(null, false, { message: 'Invalid password' });
}
return done(null, user);
}));
// Function that returns a test card token for Stripe
function getTestSource(behavior) {
// Important: We're using static tokens based on specific test card numbers
// to trigger a special behavior. This is NOT how you would create real payments!
// You should use Stripe Elements or Stripe iOS/Android SDKs to tokenize card numbers.
// Use a static token based on a test card: https://stripe.com/docs/testing#cards
var source = 'tok_visa';
// We can use a different test token if a specific behavior is requested
if (behavior === 'immediate_balance') {
source = 'tok_bypassPending';
} else if (behavior === 'payout_limit') {
source = 'tok_visa_triggerTransferBlock';
}
return source;
}
// Return a random int between two numbers
function getRandomInt(min, max) {
return Math.floor(Math.random() * (max - min + 1)) + min;
}
module.exports = router;