improvement(stripe) (#308): added orgs, teams

* added organizations, stripe team plan, team management page

* added db hook to set active organization

* simplified data access patterns, added back environments

---------

Co-authored-by: Waleed Latif <walif6@gmail.com>

Author: emir-karabeg

sim/app/api/user/subscription/route.ts

@@ -1,5 +1,5 @@
 import { NextRequest, NextResponse } from 'next/server'
-import { isProPlan } from '@/lib/subscription'
+import { isProPlan, isTeamPlan } from '@/lib/subscription'
 import { getSession } from '@/lib/auth'
 import { createLogger } from '@/lib/logs/console-logger'
 
@@ -21,7 +21,10 @@ export async function GET(request: NextRequest) {
     // Check if the user is on the Pro plan
     const isPro = await isProPlan(session.user.id)
 
-    return NextResponse.json({ isPro })
+    // Check if the user is on the Team plan
+    const isTeam = await isTeamPlan(session.user.id)
+    
+    return NextResponse.json({ isPro, isTeam })
   } catch (error) {
     logger.error('Error checking subscription status:', error)
     return NextResponse.json(

sim/app/api/user/transfer-subscription/route.ts

@@ -0,0 +1,124 @@
+import { NextRequest, NextResponse } from 'next/server'
+import { getSession } from '@/lib/auth'
+import { createLogger } from '@/lib/logs/console-logger'
+import { db } from '@/db'
+import * as schema from '@/db/schema'
+import { eq } from 'drizzle-orm'
+
+const logger = createLogger('TransferSubscriptionAPI')
+
+export async function POST(request: NextRequest) {
+  try {
+    // Get the authenticated user
+    const session = await getSession()
+    
+    if (!session?.user?.id) {
+      logger.warn('Unauthorized subscription transfer attempt')
+      return NextResponse.json(
+        { error: 'Unauthorized' },
+        { status: 401 }
+      )
+    }
+    
+    // Parse the request body
+    const body = await request.json()
+    const { subscriptionId, organizationId } = body
+    
+    if (!subscriptionId || !organizationId) {
+      return NextResponse.json(
+        { error: 'Missing required fields: subscriptionId and organizationId' },
+        { status: 400 }
+      )
+    }
+    
+    logger.info('Transferring subscription to organization', { 
+      userId: session.user.id, 
+      subscriptionId, 
+      organizationId 
+    })
+    
+    // Verify the user has access to both the subscription and organization
+    const subscription = await db.select()
+      .from(schema.subscription)
+      .where(eq(schema.subscription.id, subscriptionId))
+      .then(rows => rows[0])
+    
+    if (!subscription) {
+      logger.warn('Subscription not found', { subscriptionId })
+      return NextResponse.json(
+        { error: 'Subscription not found' },
+        { status: 404 }
+      )
+    }
+    
+    // Verify the subscription belongs to the user
+    if (subscription.referenceId !== session.user.id) {
+      logger.warn('Unauthorized subscription transfer - subscription does not belong to user', {
+        userId: session.user.id,
+        subscriptionReferenceId: subscription.referenceId
+      })
+      return NextResponse.json(
+        { error: 'Unauthorized - subscription does not belong to user' },
+        { status: 403 }
+      )
+    }
+    
+    // Verify the organization exists
+    const organization = await db.select()
+      .from(schema.organization)
+      .where(eq(schema.organization.id, organizationId))
+      .then(rows => rows[0])
+    
+    if (!organization) {
+      logger.warn('Organization not found', { organizationId })
+      return NextResponse.json(
+        { error: 'Organization not found' },
+        { status: 404 }
+      )
+    }
+    
+    // Verify the user has admin access to the organization (is owner or admin)
+    const member = await db.select()
+      .from(schema.member)
+      .where(
+        eq(schema.member.userId, session.user.id) && 
+        eq(schema.member.organizationId, organizationId)
+      )
+      .then(rows => rows[0])
+    
+    if (!member || (member.role !== 'owner' && member.role !== 'admin')) {
+      logger.warn('Unauthorized subscription transfer - user is not admin of organization', {
+        userId: session.user.id,
+        organizationId,
+        memberRole: member?.role
+      })
+      return NextResponse.json(
+        { error: 'Unauthorized - user is not admin of organization' },
+        { status: 403 }
+      )
+    }
+    
+    // Update the subscription to point to the organization instead of the user
+    await db.update(schema.subscription)
+      .set({ referenceId: organizationId })
+      .where(eq(schema.subscription.id, subscriptionId))
+    
+    logger.info('Successfully transferred subscription to organization', {
+      subscriptionId,
+      organizationId,
+      userId: session.user.id
+    })
+    
+    return NextResponse.json({
+      success: true,
+      message: 'Subscription transferred successfully'
+    })
+    
+  } catch (error) {
+    logger.error('Error transferring subscription', { error })
+    return NextResponse.json(
+      { error: 'Failed to transfer subscription' },
+      { status: 500 }
+    )
+  }
+} 

sim/app/invite/[id]/page.tsx

@@ -0,0 +1,248 @@
+'use client'
+
+import { useState, useEffect } from 'react'
+import { useRouter, useSearchParams, useParams } from 'next/navigation'
+import { client, useSession } from '@/lib/auth-client'
+import { Button } from '@/components/ui/button'
+import { Card, CardContent, CardDescription, CardFooter, CardHeader, CardTitle } from '@/components/ui/card'
+import { LoadingAgent } from '@/components/ui/loading-agent'
+import { Alert, AlertDescription, AlertTitle } from '@/components/ui/alert'
+import { XCircle, CheckCircle } from 'lucide-react'
+
+export default function InvitePage() {
+  const router = useRouter()
+  const params = useParams()
+  const invitationId = params.id as string
+  const searchParams = useSearchParams()
+  const { data: session, isPending, error: sessionError } = useSession()
+  const [invitation, setInvitation] = useState<any>(null)
+  const [organization, setOrganization] = useState<any>(null)
+  const [isLoading, setIsLoading] = useState(true)
+  const [error, setError] = useState<string | null>(null)
+  const [isAccepting, setIsAccepting] = useState(false)
+  const [accepted, setAccepted] = useState(false)
+  const [isNewUser, setIsNewUser] = useState(false)
+
+  // Check if this is a new user vs. existing user
+  useEffect(() => {
+    const isNew = searchParams.get('new') === 'true'
+    setIsNewUser(isNew)
+  }, [searchParams])
+
+  // Fetch invitation details
+  useEffect(() => {
+    async function fetchInvitation() {
+      try {
+        setIsLoading(true)
+        const { data } = await client.organization.getInvitation({
+          query: { id: invitationId }
+        })
+        
+        if (data) {
+          setInvitation(data)
+          
+          // Get organization details if we have the invitation
+          if (data.organizationId) {
+            const orgResponse = await client.organization.getFullOrganization({
+              query: { organizationId: data.organizationId }
+            })
+            setOrganization(orgResponse.data)
+          }
+        } else {
+          setError('Invitation not found or has expired')
+        }
+      } catch (err: any) {
+        setError(err.message || 'Failed to load invitation')
+      } finally {
+        setIsLoading(false)
+      }
+    }
+    
+    // Only fetch if the user is logged in
+    if (session?.user && invitationId) {
+      fetchInvitation()
+    }
+  }, [invitationId, session?.user])
+
+  // Handle invitation acceptance
+  const handleAcceptInvitation = async () => {
+    if (!session?.user) return
+    
+    try {
+      setIsAccepting(true)
+      console.log("Accepting invitation:", invitationId, "for user:", session.user.id);
+      
+      const response = await client.organization.acceptInvitation({
+        invitationId
+      })
+      
+      console.log("Invitation acceptance response:", response);
+      
+      // Explicitly verify membership was created
+      try {
+        const orgResponse = await client.organization.getFullOrganization({
+          query: { organizationId: invitation.organizationId }
+        });
+        
+        console.log("Organization members after acceptance:", orgResponse.data?.members);
+        
+        const isMember = orgResponse.data?.members?.some(
+          (member: any) => member.userId === session.user.id
+        );
+        
+        if (!isMember) {
+          console.error("User was not added as a member after invitation acceptance");
+          throw new Error("Failed to add you as a member. Please contact support.");
+        }
+        
+        // Set the active organization to the one the user just joined
+        await client.organization.setActive({
+          organizationId: invitation.organizationId
+        });
+        
+        console.log("Successfully set active organization:", invitation.organizationId);
+      } catch (memberCheckErr: any) {
+        console.error("Error verifying membership:", memberCheckErr);
+        throw memberCheckErr;
+      }
+      
+      setAccepted(true)
+      
+      // Redirect to the workspace after a short delay
+      setTimeout(() => {
+        router.push('/w')
+      }, 2000)
+      
+    } catch (err: any) {
+      console.error("Error accepting invitation:", err);
+      setError(err.message || 'Failed to accept invitation')
+    } finally {
+      setIsAccepting(false)
+    }
+  }
+
+  // Show login/signup prompt if not logged in
+  if (!session?.user && !isPending) {
+    return (
+      <div className="flex min-h-screen flex-col items-center justify-center p-4">
+        <Card className="w-full max-w-md">
+          <CardHeader>
+            <CardTitle>You've been invited to join a team</CardTitle>
+            <CardDescription>
+              {isNewUser ? 
+                "Create an account to join this team on Sim Studio" :
+                "Sign in to your account to accept this invitation"}
+            </CardDescription>
+          </CardHeader>
+          <CardFooter className="flex flex-col space-y-2">
+            {isNewUser ? (
+              <>
+                <Button 
+                  className="w-full" 
+                  onClick={() => router.push(`/signup?redirect=/invite/${invitationId}`)}
+                >
+                  Create an account
+                </Button>
+                <Button 
+                  variant="outline"
+                  className="w-full" 
+                  onClick={() => router.push(`/login?redirect=/invite/${invitationId}`)}
+                >
+                  I already have an account
+                </Button>
+              </>
+            ) : (
+              <>
+                <Button 
+                  className="w-full" 
+                  onClick={() => router.push(`/login?redirect=/invite/${invitationId}`)}
+                >
+                  Sign in
+                </Button>
+                <Button 
+                  variant="outline"
+                  className="w-full" 
+                  onClick={() => router.push(`/signup?redirect=/invite/${invitationId}&new=true`)}
+                >
+                  Create an account
+                </Button>
+              </>
+            )}
+          </CardFooter>
+        </Card>
+      </div>
+    )
+  }
+
+  // Show loading state
+  if (isLoading || isPending) {
+    return (
+      <div className="flex min-h-screen flex-col items-center justify-center p-4">
+        <LoadingAgent size="lg" />
+        <p className="mt-4 text-sm text-muted-foreground">Loading invitation...</p>
+      </div>
+    )
+  }
+
+  // Show error state
+  if (error) {
+    return (
+      <div className="flex min-h-screen flex-col items-center justify-center p-4">
+        <Alert variant="destructive" className="max-w-md">
+          <XCircle className="h-4 w-4" />
+          <AlertTitle>Error</AlertTitle>
+          <AlertDescription>{error}</AlertDescription>
+        </Alert>
+      </div>
+    )
+  }
+
+  // Show success state
+  if (accepted) {
+    return (
+      <div className="flex min-h-screen flex-col items-center justify-center p-4">
+        <Alert className="max-w-md bg-green-50">
+          <CheckCircle className="h-4 w-4 text-green-500" />
+          <AlertTitle>Invitation Accepted</AlertTitle>
+          <AlertDescription>
+            You have successfully joined {organization?.name}. Redirecting to your workspace...
+          </AlertDescription>
+        </Alert>
+      </div>
+    )
+  }
+
+  // Show invitation details
+  return (
+    <div className="flex min-h-screen flex-col items-center justify-center p-4">
+      <Card className="w-full max-w-md">
+        <CardHeader>
+          <CardTitle>Team Invitation</CardTitle>
+          <CardDescription>
+            You've been invited to join{' '}
+            <span className="font-medium">{organization?.name || 'a team'}</span>
+          </CardDescription>
+        </CardHeader>
+        <CardContent>
+          <p className="text-sm text-muted-foreground">
+            {invitation?.inviterId ? 'A team member has' : 'You have'} invited you to collaborate in {organization?.name || 'their workspace'}.
+          </p>
+        </CardContent>
+        <CardFooter className="flex justify-between">
+          <Button variant="outline" onClick={() => router.push('/')}>
+            Decline
+          </Button>
+          <Button 
+            onClick={handleAcceptInvitation} 
+            disabled={isAccepting}
+          >
+            {isAccepting ? <LoadingAgent size="sm" /> : null}
+            <span className={isAccepting ? "ml-2" : ""}>
+              Accept Invitation
+            </span>
+          </Button>
+        </CardFooter>
+      </Card>
+    </div>
+  )
+}