[Agent] Issue #397: add checkoutsessioncompleted event handl #404

Open

pook wants to merge 49 commits from agent-task/397 into main

pull from: agent-task/397

merge into: pook:main

pook:main

pook:feat/ux-remediation

pook:master

pook:agent-task/681

pook:agent-task/mount-billing-api-prefix

pook:agent-task/772

pook:agent-task/769

pook:agent-task/760

pook:agent-task/756

pook:agent-task/757

pook:agent-task/703

pook:agent-task/702

pook:agent-task/688

pook:agent-task/684

pook:agent-task/683

pook:agent-task/674

pook:agent-task/668

pook:feat/simple-health-endpoint

pook:agent-task/663

pook:agent-task/658

pook:agent-task/653

pook:agent-task/651

pook:feat/api-billing-checkout

pook:agent-task/650

pook:agent-task/641

pook:agent-task/639

pook:agent-task/638

pook:feat/login-brute-force-protection

pook:agent-task/634

pook:feat/generate-retry-tests

pook:agent-task/625

pook:agent-task/622-validate-openai-responses

pook:agent-task/615-csrf-token-validation

pook:agent-task/614

pook:agent-task/612

pook:agent-task/611

pook:agent-task/606

pook:agent-task/597

pook:agent-task/596

pook:agent-task/588

pook:agent-task/583

pook:agent-task/575

pook:agent-task/574

pook:agent-task/571

pook:agent-task/570

pook:agent-task/562

pook:agent-task/561

pook:agent-task/556-npm-audit-fix

pook:agent-task/537

pook:agent-task/533

pook:agent-task/524

pook:agent-task/518

pook:agent-task/517

pook:agent-task/516

pook:agent-task/513

pook:agent-task/512

pook:agent-task/508

pook:feat/llm-error-handling-tests

pook:agent-task/483

pook:feat/openai-retry-502

pook:agent-task/478

pook:agent-task/477

pook:feat/csrf-double-submit

pook:agent-task/468

pook:feat/error-handler-middleware

pook:feat/global-request-timeout

pook:agent-task/454

pook:agent-task/453

pook:agent-task/449

pook:feat/llm-timeout-504

pook:feat/sanitize-generate-inputs

pook:fix/body-limit-1mb-test

pook:feat/openai-error-handling

pook:agent-task/426

pook:agent-task/425

pook:agent-task/421

pook:agent-task/420

pook:agent-task/419

pook:agent-task/408

pook:agent-task/406

pook:agent-task/407

pook:feat/zod-generate-validation

pook:agent-task/401

pook:agent-task/391

pook:agent-task/390

pook:feat/https-redirect-middleware

pook:agent-task/388

pook:agent-task/360

pook:feat/generate-1mb-body-limit

pook:feat/request-timeout

pook:feat/checkout-rate-limit

pook:feat/webhook-rate-limit

pook:feat/centralized-error-handler

pook:agent-task/345

pook:agent-task/342

pook:agent-task/341

pook:agent-task/337

pook:feat/generate-rate-limit

pook:agent-task/332

pook:agent-task/331

pook:agent-task/329

pook:agent-task/325

pook:agent-task/324

pook:feat/single-stage-dockerfile

pook:feat/jest-typecheck-ci-gate

pook:feat/rebase-open-prs-script

pook:fix/unblock-pr-pipeline

pook:agent-task/251

pook:feat/deploy-migrations-on-startup

pook:agent-task/247

pook:agent-task/242

pook:agent-task/241

pook:agent-task/236

pook:fix/close-duplicate-issues

pook:agent-task/237

pook:agent-task/235

pook:agent-task/232

pook:agent-task/231

pook:agent-task/228

pook:agent-task/227

pook:agent-task/222

pook:agent-task/221

pook:feat/stripe-checkout-endpoint

pook:fix/134-sanitize-ai-output

pook:agent-task/212

pook:agent-task/211

pook:test/export-render-unit-tests

pook:agent-task/206

pook:agent-task/205

pook:feat/download-token-utility

pook:feat/security-headers-v2

pook:agent-task/196

pook:fix/env-var-validation

pook:feat/health-endpoint-tests

pook:feat/cors-middleware

pook:agent-task/185

pook:agent-task/184

pook:agent-task/180

pook:feat/pr-triage-workflow

pook:agent-task/177

pook:feat/dockerfile-deploy

pook:feature/131-api-key-auth

pook:feat/graceful-shutdown

pook:agent-task/170

pook:feat/pr-triage-script

pook:agent-task/166

pook:feat/ccpa-privacy-policy

pook:feat/auto-migrate-on-startup

pook:feat/auto-rebase-workflow

pook:feat/openai-timeout-guard

pook:agent-task/154

pook:agent-task/155

pook:feat/body-size-limit-generate

pook:feat/health-endpoint

pook:ci/pr-checks

pook:agent-task/145

pook:feat/startup-env-validation

pook:agent-task/141

pook:feat/stripe-document-checkout

pook:fix/116-sanitize-ai-generated-content

pook:feat/document-validation-41

pook:feat/api-key-auth-middleware

pook:feature/document-generator-unit-tests

pook:feature/openai-retry-logic

pook:feature/auto-merge-script

pook:feature/ci-auto-labeling

pook:fix/llm-response-null-checks

pook:feat/generate-smoke-tests

pook:feature/request-logging-middleware

pook:feature/csrf-protection

pook:feature/request-id-middleware

pook:feature/cors-allowlist

pook:feature/rate-limit-generate

pook:feature/citation-scanner-and-disclaimer

pook:feature/input-length-validation

pook:feat/ci-quality-gate

pook:fix/stripe-webhook-raw-body

pook:feat/ci-pr-checks

pook:fix/webhook-raw-body-preservation

pook:feat/ci-workflow

pook:feature/71-raw-body-webhook

pook:feature/template-rendering-tests

pook:feature/stripe-document-webhook

pook:feat/security-headers

pook:feat/stripe-webhook-raw-body

pook:feat/startup-migrations

pook:feature/ai-generation-timeout

pook:feature/dependency-audit-ci

pook:feat/webhook-idempotency

pook:feature/body-size-limit

pook:feature/startup-env-validation

pook:ci/add-pr-pipeline

pook:feature/auth-middleware

pook:feature/ccpa-optout-endpoint

pook:feature/async-document-generation

pook:feature/stripe-checkout-paywall

pook:feature/post-generation-validation

pook:feature/llm-retry-mechanism

pook:feature/document-history

pook:feature/prometheus-metrics

pook:feature/dpa-document-type

pook:feature/input-validation-sanitization

pook:feature/document-email-send

pook:feature/api-health-endpoint

Conversation 1 Commits 49 Files changed 61 +6029 -92

pook commented 2026-04-10 14:35:34 -04:00

Owner

Copy link

Closes #397

Changes

feat: issue #397 add-checkoutsessioncompleted-event-handl (agent task liancebot397)

Acceptance Criteria

Add checkout.session.completed event handling to the existing webhook endpoint. On successful checkout: extract client_reference_id as user ID, Stripe customer ID, and subscription ID from the session. Create subscription record in database with status='active', linked to the user. Map the line item price to a plan tier using the config from #386. Wrap database operations in Prisma $transaction. Add test with mock checkout.session.completed event payload. This is the critical missing piece between the checkout session creation (#307, #343) and the subscription guard (#388) — without it, paying customers never get access.

---

Generated by CEO Planner (priority: 2)

Tokens: 18 in / 10343 out

Closes #397 ## Changes feat: issue #397 add-checkoutsessioncompleted-event-handl (agent task liancebot397) ## Acceptance Criteria Add checkout.session.completed event handling to the existing webhook endpoint. On successful checkout: extract client_reference_id as user ID, Stripe customer ID, and subscription ID from the session. Create subscription record in database with status='active', linked to the user. Map the line item price to a plan tier using the config from #386. Wrap database operations in Prisma $transaction. Add test with mock checkout.session.completed event payload. This is the critical missing piece between the checkout session creation (#307, #343) and the subscription guard (#388) — without it, paying customers never get access. --- *Generated by CEO Planner (priority: 2)* Tokens: 18 in / 10343 out

pook added 1 commit 2026-04-10 14:35:34 -04:00

feat: issue #397 add-checkoutsessioncompleted-event-handl (agent task liancebot397) e901e1a515

pook referenced this pull request 2026-04-10 14:49:03 -04:00

Review PR #404 — verify checkout.session.completed handler activates subscription #407

pook commented 2026-04-10 14:57:18 -04:00

Author

Owner

Copy link

PR #404 Review: Checkout Session Completed Webhook (Issue #397)

Type check

npx tsc --noEmit (via bun run typecheck): PASS — all three workspace packages compile cleanly.

Tests

bun test checkout-completed.test.ts: PASS — 11 tests, 24 assertions, 0 failures.

---

Criteria Assessment

#	Criterion	Verdict	Notes
1	Extracts customer ID and subscription ID from session object	PASS	Customer ID extracted from session.customer (handles both string and expanded object). Subscription ID extracted from session.subscription (same polymorphic handling). User ID resolved via client_reference_id with fallback to metadata.userId.
2	Updates user record in database with active subscription status	PASS	User record updated with resolved plan and stripeCustomerId inside a transaction. Subscription record upserted (insert if new, update if existing) with status, plan, and currentPeriodEnd. Plan resolved from actual Stripe price ID via priceIdToPlan(), not from metadata.
3	Handles missing user gracefully	PASS	Early return when userId is null/undefined (no client_reference_id and no metadata.userId). Early return when subscription is null. Both paths tested.
4	Idempotent (safe to receive same event twice)	PASS	Checks for existing subscription record by stripeSubId before deciding insert vs. update. If subscription already exists, updates in place rather than creating a duplicate. All DB operations wrapped in a single transaction for atomicity.

Additional observations

Improvements over prior implementation:

• Wraps all DB writes in db.transaction() — the old code did not, risking partial writes on failure.
• Uses client_reference_id (set at session creation) as primary user identifier instead of relying solely on metadata, which is more reliable.
• Resolves plan from Stripe price ID rather than trusting metadata, preventing plan mismatch if metadata is stale or tampered.
• Extracted priceIdToPlan() as a reusable exported function, reducing duplication with mapStripePlan().

No issues found. Code is clean, well-tested, and meets all four acceptance criteria.

## PR #404 Review: Checkout Session Completed Webhook (Issue #397) ### Type check `npx tsc --noEmit` (via `bun run typecheck`): **PASS** — all three workspace packages compile cleanly. ### Tests `bun test checkout-completed.test.ts`: **PASS** — 11 tests, 24 assertions, 0 failures. --- ### Criteria Assessment | # | Criterion | Verdict | Notes | |---|-----------|---------|-------| | 1 | Extracts customer ID and subscription ID from session object | **PASS** | Customer ID extracted from `session.customer` (handles both string and expanded object). Subscription ID extracted from `session.subscription` (same polymorphic handling). User ID resolved via `client_reference_id` with fallback to `metadata.userId`. | | 2 | Updates user record in database with active subscription status | **PASS** | User record updated with resolved `plan` and `stripeCustomerId` inside a transaction. Subscription record upserted (insert if new, update if existing) with `status`, `plan`, and `currentPeriodEnd`. Plan resolved from actual Stripe price ID via `priceIdToPlan()`, not from metadata. | | 3 | Handles missing user gracefully | **PASS** | Early return when `userId` is null/undefined (no `client_reference_id` and no `metadata.userId`). Early return when `subscription` is null. Both paths tested. | | 4 | Idempotent (safe to receive same event twice) | **PASS** | Checks for existing subscription record by `stripeSubId` before deciding insert vs. update. If subscription already exists, updates in place rather than creating a duplicate. All DB operations wrapped in a single transaction for atomicity. | ### Additional observations **Improvements over prior implementation:** - Wraps all DB writes in `db.transaction()` — the old code did not, risking partial writes on failure. - Uses `client_reference_id` (set at session creation) as primary user identifier instead of relying solely on metadata, which is more reliable. - Resolves plan from Stripe price ID rather than trusting metadata, preventing plan mismatch if metadata is stale or tampered. - Extracted `priceIdToPlan()` as a reusable exported function, reducing duplication with `mapStripePlan()`. **No issues found.** Code is clean, well-tested, and meets all four acceptance criteria.

pook referenced this pull request 2026-04-10 14:57:27 -04:00

[Agent] Issue #407: pr 404 implements issue 397 checkout ses #410

pook referenced this pull request 2026-04-10 15:47:00 -04:00

Verify all 10 open PRs build cleanly against current main #438

pook referenced this pull request 2026-04-10 21:17:54 -04:00

Add database connection pool monitoring with capacity alerts #505

Some checks failed

Hide all checks

CI Quality Gate / Lint / Typecheck / Test / Build (pull_request) Has been cancelled

Details

This pull request has changes conflicting with the target branch.

• .forgejo/workflows/ci.yml
• bun.lock
• package.json
• packages/api/src/db/schema.ts
• packages/api/src/index.ts
• packages/api/src/middleware/rate-limit.ts
• packages/api/src/middleware/security-headers.ts
• packages/api/src/routes/generate-tos.ts
• packages/api/src/routes/generate.ts
• packages/api/src/routes/health.ts
• packages/api/src/routes/questionnaire.ts
• packages/api/src/services/document-generator.ts
• packages/api/src/services/llm.ts
• packages/api/src/templates/index.ts
• packages/api/tsconfig.json
• packages/shared/src/types.ts
• packages/web/src/app/questionnaire/page.tsx
• packages/web/src/components/documents/DocumentList.tsx
• packages/web/src/components/questionnaire/ReviewStep.tsx

View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.

git fetch -u origin agent-task/397:agent-task/397

git switch agent-task/397

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels   

agent-task

Task for autonomous agent execution

  

agent-task

Paperclip autonomous agent task

No labels

agent-task

agent-task

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

pook/compliancebot!404

No description provided.