.firebaserc

@@ -1,6 +1,7 @@
 {
   "projects": {
     "debug": "fitlien-dev",
+    "qa": "fitlien-qa",
     "release": "fitlien"
   }
-}
+}

fitlien-services-qa-pipeline.yaml

@@ -0,0 +1,30 @@
+trigger:
+  - qa
+
+pool:
+  vmImage: "ubuntu-latest"
+
+variables:
+  major: $(VERSION_MAJOR)
+  minor: $(VERSION_MINOR)
+  prefix: $[format('{0}.{1}', variables['major'], variables['minor'])]
+  patch: $[counter(variables['prefix'], 100)]
+  buildNumber: $(major).$(minor).$(patch)
+
+resources:
+  repositories:
+    - repository: templateRepo
+      endpoint: cosq-network
+      type: github
+      name: cosq-network/azure-build-pipeline-templates
+
+extends:
+  template: firebase-functions-deploy.yaml@templateRepo
+  parameters:
+    nodeVersion: "20"
+    firebaseTokenSecret: $(FIREBASE_TOKEN)
+    functionsWorkingDirectory: "$(Build.SourcesDirectory)/functions"
+    envExamplePath: "$(Build.SourcesDirectory)/functions/.env.example"
+    envPath: "$(Build.SourcesDirectory)/functions/.env"
+    buildNumber: $(buildNumber)
+    buildType: qa

functions/.env.example

@@ -7,4 +7,5 @@ TWILIO_PHONE_NUMBER=#{TWILIO_PHONE_NUMBER}#
 SERVICES_RGN=#{SERVICES_RGN}#
 CASHFREE_CLIENT_ID=#{CASHFREE_CLIENT_ID}#
 CASHFREE_CLIENT_SECRET=#{CASHFREE_CLIENT_SECRET}#
+GOOGLE_PLACES_API_KEY=#{GOOGLE_PLACES_API_KEY}#
 

functions/package-lock.json

@@ -10,6 +10,7 @@
       "dependencies": {
         "@types/node-fetch": "^2.6.12",
         "axios": "^1.8.4",
+        "cors": "^2.8.5",
         "firebase-admin": "^12.6.0",
         "firebase-functions": "^6.0.1",
         "form-data": "^4.0.1",

functions/package.json

@@ -17,6 +17,7 @@
   "dependencies": {
     "@types/node-fetch": "^2.6.12",
     "axios": "^1.8.4",
+    "cors": "^2.8.5",
     "firebase-admin": "^12.6.0",
     "firebase-functions": "^6.0.1",
     "form-data": "^4.0.1",

functions/src/index.ts

@@ -7,9 +7,10 @@ import * as os from 'os';
 import * as path from 'path';
 import * as fs from 'fs';
 import * as https from 'https';
+import cors from 'cors';
 import axios from "axios";
+import { getStorage } from 'firebase-admin/storage';
 import { onDocumentCreated } from "firebase-functions/firestore";
-
 const formData = require('form-data');
 const Mailgun = require('mailgun.js');
 const { convert } = require('html-to-text');
@@ -19,261 +20,164 @@ const twilio = require('twilio');
 if (!admin.apps.length) {
   admin.initializeApp();
 }
+
+const corsHandler = cors({ origin: true });
+
 export const sendEmailWithAttachment = onRequest({
   region: process.env.SERVICES_RGN
 }, async (request: Request, response: express.Response) => {
-  try {
-    const { toAddress, subject, message, fileUrl, fileName } = request.body;
+  return corsHandler(request, response, async () => {
+    try {
+      const { toAddress, subject, message, fileUrl, fileName } = request.body;
 
-    if (!toAddress || !subject || !message || !fileUrl) {
-      response.status(400).json({
-        error: 'Missing required fields (toAddress, subject, message, fileUrl)'
-      });
-      return;
-    }
-    const tempFilePath = path.join(os.tmpdir(), fileName || 'attachment.pdf');
-    await new Promise<void>((resolve, reject) => {
-      const file = fs.createWriteStream(tempFilePath);
-      https.get(fileUrl, (res) => {
-        res.pipe(file);
-        file.on('finish', () => {
-          file.close();
-          resolve();
+      if (!toAddress || !subject || !message || !fileUrl) {
+        response.status(400).json({
+          error: 'Missing required fields (toAddress, subject, message, fileUrl)'
+        });
+        return;
+      }
+      const tempFilePath = path.join(os.tmpdir(), fileName || 'attachment.pdf');
+      await new Promise<void>((resolve, reject) => {
+        const file = fs.createWriteStream(tempFilePath);
+        https.get(fileUrl, (res) => {
+          res.pipe(file);
+          file.on('finish', () => {
+            file.close();
+            resolve();
+          });
+        }).on('error', (err) => {
+          fs.unlink(tempFilePath, () => { });
+          reject(err);
         });
-      }).on('error', (err) => {
-        fs.unlink(tempFilePath, () => { });
-        reject(err);
       });
-    });
+
+      const mailgun = new Mailgun(formData);
+      const client = mailgun.client({ username: 'api', key: process.env.MAILGUN_API_KEY });
+
+      const options = {
+        wordwrap: 130,
+      };
+      const textMessage = convert(message, options);
+      const fileBuffer = fs.readFileSync(tempFilePath);
+      const attachmentFilename = fileName || path.basename(fileUrl.split('?')[0]);
+
+      const data = {
+        from: process.env.MAILGUN_FROM_ADDRESS,
+        to: toAddress,
+        subject: subject,
+        text: textMessage,
+        html: message,
+        attachment: {
+          data: fileBuffer,
+          filename: attachmentFilename,
+          contentType: 'application/pdf',
+        }
+      };
+
+      const result = await client.messages.create(process.env.MAILGUN_SERVER, data);
+      fs.unlinkSync(tempFilePath);
+
+      logger.info('Email with attachment from URL sent successfully');
+      response.json({ success: true, result });
+    } catch (error) {
+      logger.error('Error sending email with attachment from URL:', error);
+      response.status(500).json({ success: false, error: error instanceof Error ? error.message : String(error) });
+    }
+  });
+});
+
+export const accessFile = onRequest({
+  region: '#{SERVICES_RGN}#'
+}, async (request: Request, response: express.Response) => {
+  return corsHandler(request, response, async () => {
+
+    try {
+      const filePath = request.query.path as string;
+      if (!filePath) {
+        response.status(400).send('File path is required');
+        return;
+      }
+
+      const expirationMs = 60 * 60 * 1000;
+
+      const bucket = getStorage().bucket();
+      const file = bucket.file(filePath);
+
+      const [exists] = await file.exists();
+      if (!exists) {
+        response.status(404).send('File not found');
+        return;
+      }
+
+      const [signedUrl] = await file.getSignedUrl({
+        action: 'read',
+        expires: Date.now() + expirationMs,
+        responseDisposition: `attachment; filename="${path.basename(filePath)}"`,
+      });
+
+      response.redirect(signedUrl);
+      logger.info(`File access redirect for ${filePath}`);
+    } catch (error) {
+      logger.error('Error accessing file:', error);
+      response.status(500).send('Error accessing file');
+    }
+  });
+});
+
+export const sendEmailMessage = onRequest({
+  region: '#{SERVICES_RGN}#'
+}, (request: Request, response: express.Response) => {
+  return corsHandler(request, response, async () => {
 
     const mailgun = new Mailgun(formData);
-    const client = mailgun.client({ username: 'api', key: process.env.MAILGUN_API_KEY });
+    const mailGunClient = mailgun.client({ username: 'api', key: process.env.MAILGUN_API_KEY });
 
+    const toAddress = request.body.toAddress;
+    const subject = request.body.subject;
+    const message = request.body.message;
     const options = {
       wordwrap: 130,
     };
-    const textMessage = convert(message, options);
-    const fileBuffer = fs.readFileSync(tempFilePath);
-    const attachmentFilename = fileName || path.basename(fileUrl.split('?')[0]);
 
-    const data = {
+    const textMessage = convert(message, options);
+    mailGunClient.messages.create(process.env.MAILGUN_SERVER, {
       from: process.env.MAILGUN_FROM_ADDRESS,
       to: toAddress,
       subject: subject,
       text: textMessage,
-      html: message,
-      attachment: {
-        data: fileBuffer,
-        filename: attachmentFilename,
-        contentType: 'application/pdf',
-      }
-    };
-
-    const result = await client.messages.create(process.env.MAILGUN_SERVER, data);
-    fs.unlinkSync(tempFilePath);
-
-    logger.info('Email with attachment from URL sent successfully');
-    response.json({ success: true, result });
-  } catch (error) {
-    logger.error('Error sending email with attachment from URL:', error);
-    response.status(500).json({ success: false, error: error instanceof Error ? error.message : String(error) });
-  }
-});
-export const sendEmailMessage = onRequest({
-  region: process.env.SERVICES_RGN
-}, (request: Request, response: express.Response) => {
-  const mailgun = new Mailgun(formData);
-  const mailGunClient = mailgun.client({ username: 'api', key: process.env.MAILGUN_API_KEY });
-
-  const toAddress = request.body.toAddress;
-  const subject = request.body.subject;
-  const message = request.body.message;
-  const options = {
-    wordwrap: 130,
-  };
-
-  const textMessage = convert(message, options);
-  mailGunClient.messages.create(process.env.MAILGUN_SERVER, {
-    from: process.env.MAILGUN_FROM_ADDRESS,
-    to: toAddress,
-    subject: subject,
-    text: textMessage,
-    html: message
-  }).then((res: any) => {
-    logger.info(res);
-    response.send(res);
-  }).catch((err: any) => {
-    logger.error(err);
-    response.send(err);
+      html: message
+    }).then((res: any) => {
+      logger.info(res);
+      response.send(res);
+    }).catch((err: any) => {
+      logger.error(err);
+      response.send(err);
+    });
   });
 });
 
 export const sendSMSMessage = onRequest({
   region: process.env.SERVICES_RGN
 }, (request: Request, response: express.Response) => {
-  const client = twilio(process.env.TWILIO_ACCOUNT_SID, process.env.TWILIO_AUTH_TOKEN);
-  const { to, body } = request.body;
-  client.messages
-    .create({
-      body: body,
-      from: process.env.TWILIO_PHONE_NUMBER,
-      to: to
-    })
-    .then((message: any) => {
-      logger.info('SMS sent successfully:', message.sid);
-      response.json({ success: true, messageId: message.sid });
-    })
-    .catch((error: any) => {
-      logger.error('Error sending SMS:', error);
-      response.status(500).json({ success: false, error: error.message });
-    });
-});
+  return corsHandler(request, response, async () => {
 
-export const createCashfreeOrder = onRequest({
-  region: process.env.SERVICES_RGN
-}, async (request: Request, response: express.Response) => {
-  try {
-    const authHeader = request.headers.authorization;
-    if (!authHeader || !authHeader.startsWith('Bearer ')) {
-      response.status(401).json({ error: 'Unauthorized' });
-      return;
-    }
-
-    const idToken = authHeader.split('Bearer ')[1];
-    const decodedToken = await admin.auth().verifyIdToken(idToken);
-    const uid = decodedToken.uid;
-
-    const { 
-      amount, 
-      customerName, 
-      customerEmail, 
-      customerPhone, 
-      productInfo 
-    } = request.body;
-
-    if (!amount || !customerEmail || !customerPhone) {
-      response.status(400).json({ error: 'Missing required fields' });
-      return;
-    }
-
-    const clientId = process.env.CASHFREE_CLIENT_ID;
-    const clientSecret = process.env.CASHFREE_CLIENT_SECRET;
-    const isTest = true;
-    
-    const apiUrl = isTest 
-      ? 'https://sandbox.cashfree.com/pg/orders'
-      : 'https://api.cashfree.com/pg/orders';
-    
-    const orderId = `order_${Date.now()}_${uid.substring(0, 6)}`;
-    
-    const cashfreeResponse = await axios.post(
-      apiUrl,
-      {
-        order_id: orderId,
-        order_amount: amount,
-        order_currency: 'INR',
-        customer_details: {
-          customer_id: uid,
-          customer_name: customerName || 'Fitlien User',
-          customer_email: customerEmail,
-          customer_phone: customerPhone
-        },
-        order_meta: {
-          return_url: `https://fitlien.com/payment/status?order_id={order_id}`,
-          notify_url: `https://filien.web.app/verifyCashfreePayment`
-        },
-        order_note: productInfo || 'Fitlien Membership'
-      },
-      {
-        headers: {
-          'x-api-version': '2022-09-01',
-          'x-client-id': clientId,
-          'x-client-secret': clientSecret,
-          'Content-Type': 'application/json'
-        }
-      }
-    );
-    
-    await admin.firestore().collection('payment_orders').doc(orderId).set({
-      userId: uid,
-      amount: amount,
-      customerEmail: customerEmail,
-      customerPhone: customerPhone,
-      orderStatus: 'CREATED',
-      paymentGateway: 'Cashfree',
-      createdAt: new Date(),
-      ...cashfreeResponse.data
-    });
-    
-    response.json({
-      order_id: cashfreeResponse.data.order_id,
-      payment_session_id: cashfreeResponse.data.payment_session_id
-    });
-    
-    logger.info(`Cashfree order created: ${orderId}`);
-  } catch (error: any) {
-    logger.error('Cashfree order creation error:', error);
-    response.status(500).json({ 
-      error: 'Failed to create payment order',
-      details: error.response?.data || error.message
-    });
-  }
-});
-
-export const verifyCashfreePayment = onRequest({
-  region: process.env.SERVICES_RGN
-}, async (request: Request, response: express.Response) => {
-  try {
-    const orderId = request.body.order_id || request.query.order_id;
-    
-    if (!orderId) {
-      response.status(400).json({ error: 'Order ID is required' });
-      return;
-    }
-    
-    const clientId = process.env.CASHFREE_CLIENT_ID;
-    const clientSecret = process.env.CASHFREE_CLIENT_SECRET;
-    const isTest = process.env.CASHFREE_ENVIRONMENT !== 'production';
-    
-    const apiUrl = isTest 
-      ? `https://sandbox.cashfree.com/pg/orders/${orderId}`
-      : `https://api.cashfree.com/pg/orders/${orderId}`;
-    
-    const cashfreeResponse = await axios.get(
-      apiUrl,
-      {
-        headers: {
-          'x-api-version': '2022-09-01',
-          'x-client-id': clientId,
-          'x-client-secret': clientSecret
-        }
-      }
-    );
-    
-    await admin.firestore().collection('payment_orders').doc(orderId).update({
-      orderStatus: cashfreeResponse.data.order_status,
-      paymentDetails: cashfreeResponse.data,
-      updatedAt: new Date()
-    });
-    
-    if (request.headers['x-webhook-source'] === 'cashfree') {
-      response.status(200).send('OK');
-      return;
-    }
-    
-    response.json({
-      status: cashfreeResponse.data.order_status,
-      paymentDetails: cashfreeResponse.data
-    });
-    
-    logger.info(`Cashfree payment verified: ${orderId}`);
-  } catch (error: any) {
-    logger.error('Cashfree payment verification error:', error);
-    response.status(500).json({ 
-      error: 'Failed to verify payment status',
-      details: error.response?.data || error.message
-    });
-  }
+    const client = twilio(process.env.TWILIO_ACCOUNT_SID, process.env.TWILIO_AUTH_TOKEN);
+    const { to, body } = request.body;
+    client.messages
+      .create({
+        body: body,
+        from: process.env.TWILIO_PHONE_NUMBER,
+        to: to
+      })
+      .then((message: any) => {
+        logger.info('SMS sent successfully:', message.sid);
+        response.json({ success: true, messageId: message.sid });
+      })
+      .catch((error: any) => {
+        logger.error('Error sending SMS:', error);
+        response.status(500).json({ success: false, error: error.message });
+      });
+  });
 });
 
 export const processNotificationOnCreate = onDocumentCreated({
@@ -453,4 +357,215 @@ export const processNotificationOnCreate = onDocumentCreated({
   } catch (error) {
     logger.error('Error processing notification:', error);
   }
-});
+});
+
+export const createCashfreeOrder = onRequest({
+  region: '#{SERVICES_RGN}#'
+}, async (request: Request, response: express.Response) => {
+
+  return corsHandler(request, response, async () => {
+    try {
+      const authHeader = request.headers.authorization;
+      if (!authHeader || !authHeader.startsWith('Bearer ')) {
+        response.status(401).json({ error: 'Unauthorized' });
+        return;
+      }
+
+      const idToken = authHeader.split('Bearer ')[1];
+      const decodedToken = await admin.auth().verifyIdToken(idToken);
+      const uid = decodedToken.uid;
+
+      const {
+        amount,
+        customerName,
+        customerEmail,
+        customerPhone,
+        productInfo
+      } = request.body;
+
+      if (!amount || !customerEmail || !customerPhone) {
+        response.status(400).json({ error: 'Missing required fields' });
+        return;
+      }
+
+      const clientId = process.env.CASHFREE_CLIENT_ID;
+      const clientSecret = process.env.CASHFREE_CLIENT_SECRET;
+      const isTest = true;
+
+      const apiUrl = isTest
+        ? 'https://sandbox.cashfree.com/pg/orders'
+        : 'https://api.cashfree.com/pg/orders';
+
+      const orderId = `order_${Date.now()}_${uid.substring(0, 6)}`;
+
+      const cashfreeResponse = await axios.post(
+        apiUrl,
+        {
+          order_id: orderId,
+          order_amount: amount,
+          order_currency: 'INR',
+          customer_details: {
+            customer_id: uid,
+            customer_name: customerName || 'Fitlien User',
+            customer_email: customerEmail,
+            customer_phone: customerPhone
+          },
+          order_meta: {
+            return_url: `https://fitlien.com/payment/status?order_id={order_id}`,
+            // notify_url: `https://$filien.web.app/verifyCashfreePayment`
+          },
+          order_note: productInfo || 'Fitlien Membership'
+        },
+        {
+          headers: {
+            'x-api-version': '2022-09-01',
+            'x-client-id': clientId,
+            'x-client-secret': clientSecret,
+            'Content-Type': 'application/json'
+          }
+        }
+      );
+
+      await admin.firestore().collection('payment_orders').doc(orderId).set({
+        userId: uid,
+        amount: amount,
+        customerEmail: customerEmail,
+        customerPhone: customerPhone,
+        orderStatus: 'CREATED',
+        paymentGateway: 'Cashfree',
+        createdAt: new Date(),
+        ...cashfreeResponse.data
+      });
+
+      response.json({
+        order_id: cashfreeResponse.data.order_id,
+        payment_session_id: cashfreeResponse.data.payment_session_id
+      });
+
+      logger.info(`Cashfree order created: ${orderId}`);
+    } catch (error: any) {
+      logger.error('Cashfree order creation error:', error);
+      response.status(500).json({
+        error: 'Failed to create payment order',
+        details: error.response?.data || error.message
+      });
+    }
+  });
+});
+
+export const verifyCashfreePayment = onRequest({
+  region: '#{SERVICES_RGN}#'
+}, async (request: Request, response: express.Response) => {
+  return corsHandler(request, response, async () => {
+
+    try {
+      const orderId = request.body.order_id || request.query.order_id;
+
+      if (!orderId) {
+        response.status(400).json({ error: 'Order ID is required' });
+        return;
+      }
+
+      const clientId = process.env.CASHFREE_CLIENT_ID;
+      const clientSecret = process.env.CASHFREE_CLIENT_SECRET;
+      const isTest = process.env.CASHFREE_ENVIRONMENT !== 'production';
+
+      const apiUrl = isTest
+        ? `https://sandbox.cashfree.com/pg/orders/${orderId}`
+        : `https://api.cashfree.com/pg/orders/${orderId}`;
+
+      const cashfreeResponse = await axios.get(
+        apiUrl,
+        {
+          headers: {
+            'x-api-version': '2022-09-01',
+            'x-client-id': clientId,
+            'x-client-secret': clientSecret
+          }
+        }
+      );
+
+      await admin.firestore().collection('payment_orders').doc(orderId).update({
+        orderStatus: cashfreeResponse.data.order_status,
+        paymentDetails: cashfreeResponse.data,
+        updatedAt: new Date()
+      });
+
+      if (request.headers['x-webhook-source'] === 'cashfree') {
+        response.status(200).send('OK');
+        return;
+      }
+
+      response.json({
+        status: cashfreeResponse.data.order_status,
+        paymentDetails: cashfreeResponse.data
+      });
+
+      logger.info(`Cashfree payment verified: ${orderId}`);
+    } catch (error: any) {
+      logger.error('Cashfree payment verification error:', error);
+      response.status(500).json({
+        error: 'Failed to verify payment status',
+        details: error.response?.data || error.message
+      });
+    }
+  });
+});
+
+export const getPlacesAutocomplete = onRequest({
+  region: '#{SERVICES_RGN}#'
+}, async (request: Request, response: express.Response) => {
+  return corsHandler(request, response, async () => {
+    try {
+      const { input, location, radius, types, components, sessiontoken } = request.query;
+
+      if (!input) {
+        response.status(400).json({
+          error: 'Input parameter is required for autocomplete'
+        });
+        return;
+      }
+
+      const apiKey = process.env.GOOGLE_PLACES_API_KEY;
+      if (!apiKey) {
+        logger.error('Google Places API key is not configured');
+        response.status(500).json({ error: 'Server configuration error' });
+        return;
+      }
+
+      const url = 'https://maps.googleapis.com/maps/api/place/autocomplete/json';
+      const params: any = {
+        key: apiKey,
+        input: input
+      };
+
+      if (location && radius) {
+        params.location = location;
+        params.radius = radius;
+      }
+
+      if (types) {
+        params.types = types;
+      }
+
+      if (components) {
+        params.components = components;
+      }
+
+      if (sessiontoken) {
+        params.sessiontoken = sessiontoken;
+      }
+
+      const result = await axios.get(url, { params });
+
+      logger.info('Google Places Autocomplete API request completed successfully');
+      response.json(result.data);
+    } catch (error) {
+      logger.error('Error fetching place autocomplete suggestions:', error);
+      response.status(500).json({
+        success: false,
+        error: error instanceof Error ? error.message : String(error)
+      });
+    }
+  });
+});