pook/compliancebot

Add subscription status check middleware on POST /api/generate #1125

New issue

Open

opened 2026-04-12 15:57:51 -04:00 by pook · 0 comments

pook commented

2026-04-12 15:57:51 -04:00

Owner

Create a requireActiveSubscription middleware: (1) Runs after requireAuth, (2) Queries subscriptions table for user_id where status='active' and current_period_end > NOW(), (3) No active subscription returns 403 with { error: 'Active subscription required' }, (4) Attaches subscription to request object. Apply to POST /api/generate and premium endpoints. Revenue-critical — without it free users can generate documents indefinitely. Tests: active subscription passes, expired gets 403, none gets 403, canceled gets 403. Acceptance: middleware file created, applied to /api/generate, all 4 test cases pass.

Generated by CEO Planner (priority: 2)

Create a requireActiveSubscription middleware: (1) Runs after requireAuth, (2) Queries subscriptions table for user_id where status='active' and current_period_end > NOW(), (3) No active subscription returns 403 with { error: 'Active subscription required' }, (4) Attaches subscription to request object. Apply to POST /api/generate and premium endpoints. Revenue-critical — without it free users can generate documents indefinitely. Tests: active subscription passes, expired gets 403, none gets 403, canceled gets 403. Acceptance: middleware file created, applied to /api/generate, all 4 test cases pass. --- *Generated by CEO Planner (priority: 2)*

pook added the

label

2026-04-12 15:57:51 -04:00

pook referenced this issue

2026-04-12 16:33:02 -04:00

Review and merge PR #776: customer.subscription handler #1143

Sign in to join this conversation.

No labels

No milestone

No project

No assignees

1 participant

Notifications

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

pook/compliancebot#1125

No description provided.