HackIllinois · aletya · Nov 2, 2023 · Oct 8, 2023 · Oct 8, 2023 · Oct 8, 2023
diff --git a/.gitignore b/.gitignore
@@ -135,3 +135,5 @@ dist
 docs/
 apidocs/
 devdocs/
+
+.vercel
diff --git a/src/app.ts b/src/app.ts
@@ -9,6 +9,7 @@ import userRouter from "./services/user/user-router.js";
 import eventRouter from "./services/event/event-router.js";
 import profileRouter from "./services/profile/profile-router.js";
 import newsletterRouter from "./services/newsletter/newsletter-router.js";
+import rsvpRouter from "./services/rsvp/rsvp-router.js";
 import versionRouter from "./services/version/version-router.js";
 
 import { InitializeConfigReader } from "./middleware/config-reader.js";
@@ -35,6 +36,7 @@ app.use("/user/", userRouter);
 app.use("/newsletter/", newsletterRouter);
 app.use("/event/", eventRouter);
 app.use("/profile/", profileRouter);
+app.use("/rsvp/", rsvpRouter);
 app.use("/version/", versionRouter);
 
 // Ensure that API is running

diff --git a/src/database/decision-db.ts b/src/database/decision-db.ts
@@ -1,13 +1,13 @@
 import { prop } from "@typegoose/typegoose";
 
-enum DecisionStatus {
+export enum DecisionStatus {
     TBD = "TBD",
     ACCEPTED = "ACCEPTED",
     REJECTED = "REJECTED",
     WAITLISTED = "WAITLISTED",
 }
 
-enum DecisionResponse {
+export enum DecisionResponse {
     PENDING = "PENDING",
     ACCEPTED = "ACCEPTED",
     DECLINED = "DECLINED",

diff --git a/src/services/rsvp/rsvp-router.ts b/src/services/rsvp/rsvp-router.ts
@@ -0,0 +1,154 @@
+import express, { Request, Response, Router } from "express";
+import Constants from "../../constants.js";
+import { strongJwtVerification } from "../../middleware/verify-jwt.js";
+import { JwtPayload } from "../auth/auth-models.js";
+import { hasElevatedPerms } from "../auth/auth-lib.js";
+import { DecisionStatus, DecisionResponse, DecisionInfo } from "../../database/decision-db.js";
+import Models from "../../database/models.js";
+
+const rsvpRouter: Router = Router();
+rsvpRouter.use(express.urlencoded({ extended: false }));
+
+rsvpRouter.get("/test/", (_: Request, res: Response) => {
+    res.end("RSVP endpoint is working!");
+});
+
+/**
+ * @api {get} /rsvp/:USERID/ GET /rsvp/:USERID/
+ * @apiGroup rsvp
+ * @apiDescription Check RSVP decision for a given userId, provided that the current user has elevated perms
+ *
+ * @apiSuccess (200: Success) { string, boolean } usedId and whether they are/aren't attending
+ * @apiSuccessExample Example Success Response:
+ * 	HTTP/1.1 200 OK
+ *	{
+ *		"userId": "github0000001",
+ *      "isAttending": true
+ * 	}
+ *
+ * @apiUse strongVerifyErrors
+ */
+rsvpRouter.get("/:USERID", strongJwtVerification, async (req: Request, res: Response) => {
+    const userId: string | undefined = req.params.USERID;
+
+    //Returns error if userid parameter is empty
+    if (!userId) {
+        return res.status(Constants.BAD_REQUEST).send({ error: "InvalidParams" });
+    }
+
+    const payload: JwtPayload = res.locals.payload as JwtPayload;
+    //Returns error if caller doesn't have elevated perms
+    if (!hasElevatedPerms(payload)) {
+        return res.redirect("/");
+    }
+
+    const queryResult: DecisionInfo | null = await Models.DecisionInfo.findOne({ userId: userId });
+
+    //Returns error if query is empty
+    if (!queryResult) {
+        return res.status(Constants.BAD_REQUEST).send({ error: "User not found!" });
+    }
+
+    const rsvpDecision: boolean =
+        queryResult.status === DecisionStatus.ACCEPTED && queryResult.response === DecisionResponse.ACCEPTED;
+    return res.status(Constants.SUCCESS).send({ userId: userId, isAttending: rsvpDecision });
+});
+
+/**
+ * @api {get} /rsvp/ GET /rsvp/
+ * @apiGroup rsvp
+ * @apiDescription Check RSVP decision for current user
+ *
+ * @apiSuccess (200: Success) { string, boolean } usedid and whether they are/aren't attending
+ * @apiSuccessExample Example Success Response:
+ * 	HTTP/1.1 200 OK
+ *	{
+ *      "isAttending": true
+ * 	}
+ *
+ * @apiUse strongVerifyErrors
+ */
+rsvpRouter.get("/", strongJwtVerification, async (_: Request, res: Response) => {
+    const payload: JwtPayload = res.locals.payload as JwtPayload;
+
+    const userid: string = payload.id;
+
+    const queryResult: DecisionInfo | null = await Models.DecisionInfo.findOne({ userId: userid });
+
+    //Returns error if query is empty
+    if (!queryResult) {
+        return res.status(Constants.BAD_REQUEST).send({ error: "User not found!" });
+    }
+
+    const rsvpDecision: boolean =
+        queryResult.status === DecisionStatus.ACCEPTED && queryResult.response === DecisionResponse.ACCEPTED;
+    return res.status(Constants.SUCCESS).send({ isAttending: rsvpDecision });
+});
+
+/**
+ * @api {put} /rsvp/ Put /rsvp/
+ * @apiGroup rsvp
+ * @apiDescription Updates an rsvp for the currently authenticated user (determined by the JWT in the Authorization header).
+ *
+ * @apiBody {boolean} isAttending Whether or whether not the currently authenticated user is attending
+ * @apiParamExample {json} Example Request:
+ * {
+ *      "isAttending": true
+ * }
+ *
+ * @apiSuccess (200: Success) { string, string, string, string, string, boolean } Updated decision info for currently authenticated user
+ * @apiSuccessExample Example Success Response:
+ * 	HTTP/1.1 200 OK
+ *	{
+ *      "_id": "652c311b6e283244d2ef4c29",
+ *      "userId": "github0000001",
+ *      "status": "ACCEPTED",
+ *      "response": "ACCEPTED",
+ *      "reviewer": "reviewer1",
+ *      "emailSent": true
+ * 	}
+ *
+ * @apiUse strongVerifyErrors
+ */
+rsvpRouter.put("/", strongJwtVerification, async (req: Request, res: Response) => {
+    const rsvp: boolean | undefined = req.body.isAttending;
+
+    //Returns error if request body has no isAttending parameter
+    if (rsvp === undefined) {
+        return res.status(Constants.BAD_REQUEST).send({ error: "InvalidParams" });
+    }
+
+    const payload: JwtPayload = res.locals.payload as JwtPayload;
+
+    const userid: string = payload.id;
+
+    const queryResult: DecisionInfo | null = await Models.DecisionInfo.findOne({ userId: userid });
+
+    //Returns error if query is empty
+    if (!queryResult) {
+        return res.status(Constants.BAD_REQUEST).send({ error: "Unknown Error" });
+    }
+
+    //If the current user has not been accepted, send an error
+    if (queryResult.status != DecisionStatus.ACCEPTED) {
+        return res.status(Constants.FORBIDDEN).send({ error: "Forbidden" });
+    }
+
+    //If current user has been accepted, update their RSVP decision to "ACCEPTED"/"DECLINED" acoordingly
+    const updatedDecision: DecisionInfo | null = await Models.DecisionInfo.findOneAndUpdate(
+        { userId: queryResult.userId },
+        {
+            status: queryResult.status,
+            response: rsvp ? DecisionResponse.ACCEPTED : DecisionResponse.DECLINED,
+        },
+        { new: true },
+    );
+
+    if (updatedDecision) {
+        return res.status(Constants.SUCCESS).send(updatedDecision);
+    } else {
+        return res.status(Constants.INTERNAL_ERROR).send({ error: "InternalError" });
+    }
+});
+
+export default rsvpRouter;