app/controllers/solidus_subscriptions/api/v1/subscriptions_controller.rb


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100

# frozen_string_literal: true

module SolidusSubscriptions
  module Api
    module V1
      class SubscriptionsController < BaseController
        protect_from_forgery unless: -> { request.format.json? }

        def create
          store = params[:store_id].nil? ? ::Spree::Store.default : ::Spree::Store.find(id: params[:store_id])
          attributes = create_subscription_params.merge(user: current_api_user, store: store)
          acceptable_payment_details = update_payment_attributes(attributes)

          if acceptable_payment_details
            subscription = SolidusSubscriptions::Subscription.new(attributes)

            if subscription.save
              render json: subscription.to_json(include: [:line_items, :shipping_address, :billing_address])
            else
              render json: subscription.errors.to_json, status: :unprocessable_entity
            end
          else
            error_message = I18n.t('solidus_subscriptions.subscription.invalid_payment_details')

            render json: { payment_source_type: [error_message] }.to_json, status: :unprocessable_entity
          end
        end

        def update
          load_subscription

          if @subscription.update(subscription_params)
            render json: @subscription.to_json(include: [:line_items, :shipping_address, :billing_address])
          else
            render json: @subscription.errors.to_json, status: :unprocessable_entity
          end
        end

        def skip
          load_subscription

          if @subscription.skip
            render json: @subscription.to_json
          else
            render json: @subscription.errors.to_json, status: :unprocessable_entity
          end
        end

        def cancel
          load_subscription

          if @subscription.cancel
            render json: @subscription.to_json
          else
            render json: @subscription.errors.to_json, status: :unprocessable_entity
          end
        end

        private

        def load_subscription
          @subscription = SolidusSubscriptions::Subscription.find(params[:id])
          authorize! action_name.to_sym, @subscription, subscription_guest_token
        end

        def create_subscription_params
          params.require(:subscription).permit(
            %i[payment_method_id payment_source_id shipping_address_id billing_address_id] |
              SolidusSubscriptions.configuration.subscription_attributes |
              [line_items_attributes: line_item_attributes]
          )
        end

        def subscription_params
          params.require(:subscription).permit(SolidusSubscriptions.configuration.subscription_attributes | [
            line_items_attributes: line_item_attributes,
          ])
        end

        def line_item_attributes
          SolidusSubscriptions.configuration.subscription_line_item_attributes - [:subscribable_id] + [:id]
        end

        def update_payment_attributes(attributes)
          return true if attributes[:payment_method_id].blank? && attributes[:payment_source_id].blank?

          payment_method = ::Spree::PaymentMethod.find_by(id: attributes[:payment_method_id])
          payment_source = payment_method&.payment_source_class&.find_by(id: attributes[:payment_source_id])
          if payment_method && payment_source
            attributes[:payment_method] = payment_method
            attributes[:payment_source] = payment_source
            true
          else
            false
          end
        end
      end
    end
  end
end