mirror of
https://github.com/yu-i-i/overleaf-cep.git
synced 2026-05-31 04:41:32 +02:00
c4e0294d36
[web] Activate plans page new-design variant for all users GitOrigin-RevId: 7da3c973cded8597cadd691f5d6e928d31e8d26f
187 lines
6.3 KiB
JavaScript
187 lines
6.3 KiB
JavaScript
import AuthenticationController from '../Authentication/AuthenticationController.js'
|
|
import PermissionsController from '../Authorization/PermissionsController.js'
|
|
import SubscriptionController from './SubscriptionController.js'
|
|
import SubscriptionGroupController from './SubscriptionGroupController.mjs'
|
|
import TeamInvitesController from './TeamInvitesController.mjs'
|
|
import { RateLimiter } from '../../infrastructure/RateLimiter.js'
|
|
import RateLimiterMiddleware from '../Security/RateLimiterMiddleware.js'
|
|
import Settings from '@overleaf/settings'
|
|
import { Joi, validate } from '../../infrastructure/Validation.js'
|
|
|
|
const teamInviteRateLimiter = new RateLimiter('team-invite', {
|
|
points: 10,
|
|
duration: 60,
|
|
})
|
|
|
|
const subscriptionRateLimiter = new RateLimiter('subscription', {
|
|
points: 30,
|
|
duration: 60,
|
|
})
|
|
|
|
export default {
|
|
apply(webRouter, privateApiRouter, publicApiRouter) {
|
|
if (!Settings.enableSubscriptions) {
|
|
return
|
|
}
|
|
|
|
webRouter.get(
|
|
'/user/subscription',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
PermissionsController.useCapabilities(),
|
|
SubscriptionController.userSubscriptionPage
|
|
)
|
|
|
|
webRouter.get(
|
|
'/user/subscription/thank-you',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
SubscriptionController.successfulSubscription
|
|
)
|
|
|
|
webRouter.get(
|
|
'/user/subscription/canceled',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
SubscriptionController.canceledSubscription
|
|
)
|
|
|
|
webRouter.get(
|
|
'/user/subscription/recurly/:pageType',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
SubscriptionController.redirectToHostedPage
|
|
)
|
|
|
|
webRouter.delete(
|
|
'/subscription/group/user',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
PermissionsController.requirePermission('leave-group-subscription'),
|
|
SubscriptionGroupController.removeSelfFromGroup
|
|
)
|
|
|
|
webRouter.get(
|
|
'/user/subscription/group/request-confirmation',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
SubscriptionGroupController.requestConfirmation
|
|
)
|
|
|
|
// Team invites
|
|
webRouter.get(
|
|
'/subscription/invites/:token/',
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
PermissionsController.useCapabilities(),
|
|
TeamInvitesController.viewInvite
|
|
)
|
|
webRouter.get(
|
|
'/subscription/invites/',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
PermissionsController.useCapabilities(),
|
|
TeamInvitesController.viewInvites
|
|
)
|
|
webRouter.put(
|
|
'/subscription/invites/:token/',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddleware.rateLimit(teamInviteRateLimiter),
|
|
PermissionsController.requirePermission('join-subscription'),
|
|
TeamInvitesController.acceptInvite
|
|
)
|
|
|
|
// recurly callback
|
|
publicApiRouter.post(
|
|
'/user/subscription/callback',
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
AuthenticationController.requireBasicAuth({
|
|
[Settings.apis.recurly.webhookUser]: Settings.apis.recurly.webhookPass,
|
|
}),
|
|
SubscriptionController.recurlyNotificationParser,
|
|
SubscriptionController.recurlyCallback
|
|
)
|
|
|
|
// user changes their account state
|
|
webRouter.get(
|
|
'/user/subscription/preview',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
SubscriptionController.previewSubscription
|
|
)
|
|
webRouter.post(
|
|
'/user/subscription/update',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
SubscriptionController.updateSubscription
|
|
)
|
|
webRouter.get(
|
|
'/user/subscription/addon/:addOnCode/add',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
SubscriptionController.previewAddonPurchase
|
|
)
|
|
webRouter.post(
|
|
'/user/subscription/addon/:addOnCode/add',
|
|
AuthenticationController.requireLogin(),
|
|
validate({
|
|
params: Joi.object({
|
|
addOnCode: Joi.string(),
|
|
}),
|
|
}),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
SubscriptionController.purchaseAddon
|
|
)
|
|
webRouter.post(
|
|
'/user/subscription/addon/:addOnCode/remove',
|
|
AuthenticationController.requireLogin(),
|
|
validate({
|
|
params: Joi.object({
|
|
addOnCode: Joi.string(),
|
|
}),
|
|
}),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
SubscriptionController.removeAddon
|
|
)
|
|
webRouter.post(
|
|
'/user/subscription/cancel-pending',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
SubscriptionController.cancelPendingSubscriptionChange
|
|
)
|
|
webRouter.post(
|
|
'/user/subscription/cancel',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
SubscriptionController.cancelSubscription
|
|
)
|
|
webRouter.post(
|
|
'/user/subscription/reactivate',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
PermissionsController.useCapabilities(),
|
|
SubscriptionController.reactivateSubscription
|
|
)
|
|
|
|
webRouter.post(
|
|
'/user/subscription/v1/cancel',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
SubscriptionController.cancelV1Subscription
|
|
)
|
|
|
|
webRouter.put(
|
|
'/user/subscription/extend',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
SubscriptionController.extendTrial
|
|
)
|
|
|
|
webRouter.post(
|
|
'/user/subscription/account/email',
|
|
AuthenticationController.requireLogin(),
|
|
RateLimiterMiddleware.rateLimit(subscriptionRateLimiter),
|
|
SubscriptionController.updateAccountEmailAddress
|
|
)
|
|
},
|
|
}
|