packages/lib/server-only/document/complete-document-with-token.ts

'use server';

import { DOCUMENT_AUDIT_LOG_TYPE } from '@documenso/lib/types/document-audit-logs';
import type { RequestMetadata } from '@documenso/lib/universal/extract-request-metadata';
import { createDocumentAuditLogData } from '@documenso/lib/utils/document-audit-logs';
import { prisma } from '@documenso/prisma';
import { DocumentStatus, SigningStatus } from '@documenso/prisma/client';
import { WebhookTriggerEvents } from '@documenso/prisma/client';

import type { TRecipientActionAuth } from '../../types/document-auth';
import { triggerWebhook } from '../webhooks/trigger/trigger-webhook';
import { sealDocument } from './seal-document';
import { sendPendingEmail } from './send-pending-email';

export type CompleteDocumentWithTokenOptions = {
  token: string;
  documentId: number;
  userId?: number;
  authOptions?: TRecipientActionAuth;
  requestMetadata?: RequestMetadata;
};

const getDocument = async ({ token, documentId }: CompleteDocumentWithTokenOptions) => {
  return await prisma.document.findFirstOrThrow({
    where: {
      id: documentId,
      Recipient: {
        some: {
          token,
        },
      },
    },
    include: {
      Recipient: {
        where: {
          token,
        },
      },
    },
  });
};

export const completeDocumentWithToken = async ({
  token,
  documentId,
  requestMetadata,
}: CompleteDocumentWithTokenOptions) => {
  'use server';

  const document = await getDocument({ token, documentId });

  if (document.status === DocumentStatus.COMPLETED) {
    throw new Error(`Document ${document.id} has already been completed`);
  }

  if (document.Recipient.length === 0) {
    throw new Error(`Document ${document.id} has no recipient with token ${token}`);
  }

  const [recipient] = document.Recipient;

  if (recipient.signingStatus === SigningStatus.SIGNED) {
    throw new Error(`Recipient ${recipient.id} has already signed`);
  }

  const fields = await prisma.field.findMany({
    where: {
      documentId: document.id,
      recipientId: recipient.id,
    },
  });

  if (fields.some((field) => !field.inserted)) {
    throw new Error(`Recipient ${recipient.id} has unsigned fields`);
  }

  // Document reauth for completing documents is currently not required.

  // const { derivedRecipientActionAuth } = extractDocumentAuthMethods({
  //   documentAuth: document.authOptions,
  //   recipientAuth: recipient.authOptions,
  // });

  // const isValid = await isRecipientAuthorized({
  //   type: 'ACTION',
  //   document: document,
  //   recipient: recipient,
  //   userId,
  //   authOptions,
  // });

  // if (!isValid) {
  //   throw new AppError(AppErrorCode.UNAUTHORIZED, 'Invalid authentication values');
  // }

  await prisma.$transaction(async (tx) => {
    await tx.recipient.update({
      where: {
        id: recipient.id,
      },
      data: {
        signingStatus: SigningStatus.SIGNED,
        signedAt: new Date(),
      },
    });

    await tx.documentAuditLog.create({
      data: createDocumentAuditLogData({
        type: DOCUMENT_AUDIT_LOG_TYPE.DOCUMENT_RECIPIENT_COMPLETED,
        documentId: document.id,
        user: {
          name: recipient.name,
          email: recipient.email,
        },
        requestMetadata,
        data: {
          recipientEmail: recipient.email,
          recipientName: recipient.name,
          recipientId: recipient.id,
          recipientRole: recipient.role,
          // actionAuth: derivedRecipientActionAuth || undefined,
        },
      }),
    });
  });

  const pendingRecipients = await prisma.recipient.count({
    where: {
      documentId: document.id,
      signingStatus: {
        not: SigningStatus.SIGNED,
      },
    },
  });

  if (pendingRecipients > 0) {
    await sendPendingEmail({ documentId, recipientId: recipient.id });
  }

  const documents = await prisma.document.updateMany({
    where: {
      id: document.id,
      Recipient: {
        every: {
          signingStatus: SigningStatus.SIGNED,
        },
      },
    },
    data: {
      status: DocumentStatus.COMPLETED,
      completedAt: new Date(),
    },
  });

  if (documents.count > 0) {
    await sealDocument({ documentId: document.id, requestMetadata });
  }

  const updatedDocument = await getDocument({ token, documentId });

  await triggerWebhook({
    event: WebhookTriggerEvents.DOCUMENT_SIGNED,
    data: updatedDocument,
    userId: updatedDocument.userId,
    teamId: updatedDocument.teamId ?? undefined,
  });
};
feat: document authoring 2023-08-17 19:56:18 +10:00			`'use server';`

feat: initial document audit logs implementation (#922) Added initial implementation of document audit logs. 2024-02-12 12:04:53 +11:00			`import { DOCUMENT_AUDIT_LOG_TYPE } from '@documenso/lib/types/document-audit-logs';`
			`import type { RequestMetadata } from '@documenso/lib/universal/extract-request-metadata';`
			`import { createDocumentAuditLogData } from '@documenso/lib/utils/document-audit-logs';`
feat: document authoring 2023-08-17 19:56:18 +10:00			`import { prisma } from '@documenso/prisma';`
			`import { DocumentStatus, SigningStatus } from '@documenso/prisma/client';`
feat: trigger webhook functionality 2024-02-16 11:04:11 +02:00			`import { WebhookTriggerEvents } from '@documenso/prisma/client';`
feat: document authoring 2023-08-17 19:56:18 +10:00
feat: add document auth (#1029) 2024-03-28 13:13:29 +08:00			`import type { TRecipientActionAuth } from '../../types/document-auth';`
feat: update webhook handling and triggering 2024-02-27 15:16:14 +11:00			`import { triggerWebhook } from '../webhooks/trigger/trigger-webhook';`
feat: document authoring 2023-08-17 19:56:18 +10:00			`import { sealDocument } from './seal-document';`
chore: match file name and method name 2023-09-17 14:31:44 +00:00			`import { sendPendingEmail } from './send-pending-email';`
feat: document authoring 2023-08-17 19:56:18 +10:00
			`export type CompleteDocumentWithTokenOptions = {`
			`token: string;`
			`documentId: number;`
feat: add document auth (#1029) 2024-03-28 13:13:29 +08:00			`userId?: number;`
			`authOptions?: TRecipientActionAuth;`
feat: initial document audit logs implementation (#922) Added initial implementation of document audit logs. 2024-02-12 12:04:53 +11:00			`requestMetadata?: RequestMetadata;`
feat: document authoring 2023-08-17 19:56:18 +10:00			`};`

feat: trigger webhook functionality 2024-02-16 11:04:11 +02:00			`const getDocument = async ({ token, documentId }: CompleteDocumentWithTokenOptions) => {`
			`return await prisma.document.findFirstOrThrow({`
feat: document authoring 2023-08-17 19:56:18 +10:00			`where: {`
			`id: documentId,`
			`Recipient: {`
			`some: {`
			`token,`
			`},`
			`},`
			`},`
			`include: {`
			`Recipient: {`
			`where: {`
			`token,`
			`},`
			`},`
			`},`
			`});`
feat: trigger webhook functionality 2024-02-16 11:04:11 +02:00			`};`

			`export const completeDocumentWithToken = async ({`
			`token,`
			`documentId,`
chore: merge main 2024-02-16 12:12:54 +02:00			`requestMetadata,`
feat: trigger webhook functionality 2024-02-16 11:04:11 +02:00			`}: CompleteDocumentWithTokenOptions) => {`
			`'use server';`

			`const document = await getDocument({ token, documentId });`
feat: document authoring 2023-08-17 19:56:18 +10:00
			`if (document.status === DocumentStatus.COMPLETED) {`
			throw new Error(`Document ${document.id} has already been completed`);
			`}`

			`if (document.Recipient.length === 0) {`
			throw new Error(`Document ${document.id} has no recipient with token ${token}`);
			`}`

			`const [recipient] = document.Recipient;`

			`if (recipient.signingStatus === SigningStatus.SIGNED) {`
			throw new Error(`Recipient ${recipient.id} has already signed`);
			`}`

			`const fields = await prisma.field.findMany({`
			`where: {`
			`documentId: document.id,`
			`recipientId: recipient.id,`
			`},`
			`});`

			`if (fields.some((field) => !field.inserted)) {`
			throw new Error(`Recipient ${recipient.id} has unsigned fields`);
			`}`

feat: add document auth (#1029) 2024-03-28 13:13:29 +08:00			`// Document reauth for completing documents is currently not required.`

			`// const { derivedRecipientActionAuth } = extractDocumentAuthMethods({`
			`// documentAuth: document.authOptions,`
			`// recipientAuth: recipient.authOptions,`
			`// });`

			`// const isValid = await isRecipientAuthorized({`
			`// type: 'ACTION',`
			`// document: document,`
			`// recipient: recipient,`
			`// userId,`
			`// authOptions,`
			`// });`

			`// if (!isValid) {`
			`// throw new AppError(AppErrorCode.UNAUTHORIZED, 'Invalid authentication values');`
			`// }`

			`await prisma.$transaction(async (tx) => {`
			`await tx.recipient.update({`
			`where: {`
			`id: recipient.id,`
feat: initial document audit logs implementation (#922) Added initial implementation of document audit logs. 2024-02-12 12:04:53 +11:00			`},`
			`data: {`
feat: add document auth (#1029) 2024-03-28 13:13:29 +08:00			`signingStatus: SigningStatus.SIGNED,`
			`signedAt: new Date(),`
feat: initial document audit logs implementation (#922) Added initial implementation of document audit logs. 2024-02-12 12:04:53 +11:00			`},`
feat: add document auth (#1029) 2024-03-28 13:13:29 +08:00			`});`

			`await tx.documentAuditLog.create({`
			`data: createDocumentAuditLogData({`
			`type: DOCUMENT_AUDIT_LOG_TYPE.DOCUMENT_RECIPIENT_COMPLETED,`
			`documentId: document.id,`
			`user: {`
			`name: recipient.name,`
			`email: recipient.email,`
			`},`
			`requestMetadata,`
			`data: {`
			`recipientEmail: recipient.email,`
			`recipientName: recipient.name,`
			`recipientId: recipient.id,`
			`recipientRole: recipient.role,`
			`// actionAuth: derivedRecipientActionAuth \|\| undefined,`
			`},`
			`}),`
			`});`
feat: initial document audit logs implementation (#922) Added initial implementation of document audit logs. 2024-02-12 12:04:53 +11:00			`});`

fix: minor updates 2023-09-22 23:22:48 +10:00			`const pendingRecipients = await prisma.recipient.count({`
feat: avoid sending pending email to document with 1 recipients 2023-09-07 20:52:18 +00:00			`where: {`
			`documentId: document.id,`
fix: fitler only unsigned documents 2023-09-17 14:38:39 +00:00			`signingStatus: {`
			`not: SigningStatus.SIGNED,`
			`},`
feat: avoid sending pending email to document with 1 recipients 2023-09-07 20:52:18 +00:00			`},`
			`});`

fix: minor updates 2023-09-22 23:22:48 +10:00			`if (pendingRecipients > 0) {`
feat: avoid sending pending email to document with 1 recipients 2023-09-07 20:52:18 +00:00			`await sendPendingEmail({ documentId, recipientId: recipient.id });`
			`}`
feat: send email when recipient is done signing 2023-09-07 19:58:48 +00:00
feat: document authoring 2023-08-17 19:56:18 +10:00			`const documents = await prisma.document.updateMany({`
			`where: {`
			`id: document.id,`
			`Recipient: {`
			`every: {`
			`signingStatus: SigningStatus.SIGNED,`
			`},`
			`},`
			`},`
			`data: {`
			`status: DocumentStatus.COMPLETED,`
feat: add completed at timestamp 2023-11-03 15:48:19 +11:00			`completedAt: new Date(),`
feat: document authoring 2023-08-17 19:56:18 +10:00			`},`
			`});`

			`if (documents.count > 0) {`
feat: initial document audit logs implementation (#922) Added initial implementation of document audit logs. 2024-02-12 12:04:53 +11:00			`await sealDocument({ documentId: document.id, requestMetadata });`
feat: document authoring 2023-08-17 19:56:18 +10:00			`}`
feat: trigger webhook functionality 2024-02-16 11:04:11 +02:00
			`const updatedDocument = await getDocument({ token, documentId });`

			`await triggerWebhook({`
feat: update webhook handling and triggering 2024-02-27 15:16:14 +11:00			`event: WebhookTriggerEvents.DOCUMENT_SIGNED,`
			`data: updatedDocument,`
			`userId: updatedDocument.userId,`
			`teamId: updatedDocument.teamId ?? undefined,`
feat: trigger webhook functionality 2024-02-16 11:04:11 +02:00			`});`
feat: document authoring 2023-08-17 19:56:18 +10:00			`};`