test: add unit tests for billing-portal endpoint using dependency injection

brandonkachen · brandonkachen · commit 71c264178aee · 2026-02-04T20:34:36.000-08:00
diff --git a/web/src/app/api/user/billing-portal/__tests__/billing-portal.test.ts b/web/src/app/api/user/billing-portal/__tests__/billing-portal.test.ts
@@ -0,0 +1,177 @@
+import { describe, expect, mock, test } from 'bun:test'
+
+import type { Logger } from '@codebuff/common/types/contracts/logger'
+
+import { postBillingPortal } from '../_post'
+
+import type { CreateBillingPortalSessionFn, GetSessionFn, Session } from '../_post'
+
+const createMockLogger = (errorFn = mock(() => {})): Logger => ({
+  error: errorFn,
+  warn: mock(() => {}),
+  info: mock(() => {}),
+  debug: mock(() => {}),
+})
+
+const createMockGetSession = (session: Session): GetSessionFn => mock(() => Promise.resolve(session))
+
+const createMockCreateBillingPortalSession = (
+  result: { url: string } | Error = { url: 'https://billing.stripe.com/session/test_123' }
+): CreateBillingPortalSessionFn => {
+  if (result instanceof Error) {
+    return mock(() => Promise.reject(result))
+  }
+  return mock(() => Promise.resolve(result))
+}
+
+describe('/api/user/billing-portal POST endpoint', () => {
+  const returnUrl = 'https://codebuff.com/profile'
+
+  describe('Authentication', () => {
+    test('returns 401 when session is null', async () => {
+      const response = await postBillingPortal({
+        getSession: createMockGetSession(null),
+        createBillingPortalSession: createMockCreateBillingPortalSession(),
+        logger: createMockLogger(),
+        returnUrl,
+      })
+
+      expect(response.status).toBe(401)
+      const body = await response.json()
+      expect(body).toEqual({ error: 'Unauthorized' })
+    })
+
+    test('returns 401 when session.user is null', async () => {
+      const response = await postBillingPortal({
+        getSession: createMockGetSession({ user: null }),
+        createBillingPortalSession: createMockCreateBillingPortalSession(),
+        logger: createMockLogger(),
+        returnUrl,
+      })
+
+      expect(response.status).toBe(401)
+      const body = await response.json()
+      expect(body).toEqual({ error: 'Unauthorized' })
+    })
+
+    test('returns 401 when session.user.id is missing', async () => {
+      const response = await postBillingPortal({
+        getSession: createMockGetSession({ user: { stripe_customer_id: 'cus_123' } as any }),
+        createBillingPortalSession: createMockCreateBillingPortalSession(),
+        logger: createMockLogger(),
+        returnUrl,
+      })
+
+      expect(response.status).toBe(401)
+      const body = await response.json()
+      expect(body).toEqual({ error: 'Unauthorized' })
+    })
+  })
+
+  describe('Stripe customer validation', () => {
+    test('returns 400 when stripe_customer_id is null', async () => {
+      const response = await postBillingPortal({
+        getSession: createMockGetSession({
+          user: { id: 'user-123', stripe_customer_id: null },
+        }),
+        createBillingPortalSession: createMockCreateBillingPortalSession(),
+        logger: createMockLogger(),
+        returnUrl,
+      })
+
+      expect(response.status).toBe(400)
+      const body = await response.json()
+      expect(body).toEqual({ error: 'No Stripe customer ID found' })
+    })
+
+    test('returns 400 when stripe_customer_id is undefined', async () => {
+      const response = await postBillingPortal({
+        getSession: createMockGetSession({
+          user: { id: 'user-123' },
+        }),
+        createBillingPortalSession: createMockCreateBillingPortalSession(),
+        logger: createMockLogger(),
+        returnUrl,
+      })
+
+      expect(response.status).toBe(400)
+      const body = await response.json()
+      expect(body).toEqual({ error: 'No Stripe customer ID found' })
+    })
+  })
+
+  describe('Successful portal session creation', () => {
+    test('returns 200 with portal URL on success', async () => {
+      const expectedUrl = 'https://billing.stripe.com/session/abc123'
+      const response = await postBillingPortal({
+        getSession: createMockGetSession({
+          user: { id: 'user-123', stripe_customer_id: 'cus_test_123' },
+        }),
+        createBillingPortalSession: createMockCreateBillingPortalSession({ url: expectedUrl }),
+        logger: createMockLogger(),
+        returnUrl,
+      })
+
+      expect(response.status).toBe(200)
+      const body = await response.json()
+      expect(body).toEqual({ url: expectedUrl })
+    })
+
+    test('calls createBillingPortalSession with correct parameters', async () => {
+      const mockCreateSession = createMockCreateBillingPortalSession()
+      await postBillingPortal({
+        getSession: createMockGetSession({
+          user: { id: 'user-123', stripe_customer_id: 'cus_test_456' },
+        }),
+        createBillingPortalSession: mockCreateSession,
+        logger: createMockLogger(),
+        returnUrl: 'https://example.com/return',
+      })
+
+      expect(mockCreateSession).toHaveBeenCalledTimes(1)
+      expect(mockCreateSession).toHaveBeenCalledWith({
+        customer: 'cus_test_456',
+        return_url: 'https://example.com/return',
+      })
+    })
+  })
+
+  describe('Error handling', () => {
+    test('returns 500 when Stripe API throws an error', async () => {
+      const response = await postBillingPortal({
+        getSession: createMockGetSession({
+          user: { id: 'user-123', stripe_customer_id: 'cus_test_123' },
+        }),
+        createBillingPortalSession: createMockCreateBillingPortalSession(
+          new Error('Stripe API error')
+        ),
+        logger: createMockLogger(),
+        returnUrl,
+      })
+
+      expect(response.status).toBe(500)
+      const body = await response.json()
+      expect(body).toEqual({ error: 'Failed to create billing portal session' })
+    })
+
+    test('logs error when Stripe API fails', async () => {
+      const mockLoggerError = mock(() => {})
+      const testError = new Error('Stripe connection failed')
+
+      await postBillingPortal({
+        getSession: createMockGetSession({
+          user: { id: 'user-123', stripe_customer_id: 'cus_test_123' },
+        }),
+        createBillingPortalSession: createMockCreateBillingPortalSession(testError),
+        logger: createMockLogger(mockLoggerError),
+        returnUrl,
+      })
+
+      expect(mockLoggerError).toHaveBeenCalledTimes(1)
+      expect(mockLoggerError).toHaveBeenCalledWith(
+        { userId: 'user-123', error: testError },
+        'Failed to create billing portal session'
+      )
+    })
+  })
+})
diff --git a/web/src/app/api/user/billing-portal/_post.ts b/web/src/app/api/user/billing-portal/_post.ts
@@ -0,0 +1,61 @@
+import { NextResponse } from 'next/server'
+
+import type { Logger } from '@codebuff/common/types/contracts/logger'
+
+export type SessionUser = {
+  id: string
+  stripe_customer_id?: string | null
+}
+
+export type Session = {
+  user?: SessionUser | null
+} | null
+
+export type GetSessionFn = () => Promise<Session>
+
+export type CreateBillingPortalSessionFn = (params: {
+  customer: string
+  return_url: string
+}) => Promise<{ url: string }>
+
+export type PostBillingPortalParams = {
+  getSession: GetSessionFn
+  createBillingPortalSession: CreateBillingPortalSessionFn
+  logger: Logger
+  returnUrl: string
+}
+
+export async function postBillingPortal(params: PostBillingPortalParams) {
+  const { getSession, createBillingPortalSession, logger, returnUrl } = params
+
+  const session = await getSession()
+  if (!session?.user?.id) {
+    return NextResponse.json({ error: 'Unauthorized' }, { status: 401 })
+  }
+
+  const stripeCustomerId = session.user.stripe_customer_id
+  if (!stripeCustomerId) {
+    return NextResponse.json(
+      { error: 'No Stripe customer ID found' },
+      { status: 400 }
+    )
+  }
+
+  try {
+    const portalSession = await createBillingPortalSession({
+      customer: stripeCustomerId,
+      return_url: returnUrl,
+    })
+
+    return NextResponse.json({ url: portalSession.url })
+  } catch (error) {
+    logger.error(
+      { userId: session.user.id, error },
+      'Failed to create billing portal session'
+    )
+    return NextResponse.json(
+      { error: 'Failed to create billing portal session' },
+      { status: 500 }
+    )
+  }
+}
diff --git a/web/src/app/api/user/billing-portal/route.ts b/web/src/app/api/user/billing-portal/route.ts
@@ -1,40 +1,18 @@
 import { env } from '@codebuff/internal/env'
 import { stripeServer } from '@codebuff/internal/util/stripe'
-import { NextResponse } from 'next/server'
 import { getServerSession } from 'next-auth'
 
 import { authOptions } from '@/app/api/auth/[...nextauth]/auth-options'
 import { logger } from '@/util/logger'
 
-export async function POST() {
-  const session = await getServerSession(authOptions)
-  if (!session?.user?.id) {
-    return NextResponse.json({ error: 'Unauthorized' }, { status: 401 })
-  }
-
-  const stripeCustomerId = session.user.stripe_customer_id
-  if (!stripeCustomerId) {
-    return NextResponse.json(
-      { error: 'No Stripe customer ID found' },
-      { status: 400 }
-    )
-  }
+import { postBillingPortal } from './_post'
 
-  try {
-    const portalSession = await stripeServer.billingPortal.sessions.create({
-      customer: stripeCustomerId,
-      return_url: `${env.NEXT_PUBLIC_CODEBUFF_APP_URL}/profile`,
-    })
-
-    return NextResponse.json({ url: portalSession.url })
-  } catch (error) {
-    logger.error(
-      { userId: session.user.id, error },
-      'Failed to create billing portal session'
-    )
-    return NextResponse.json(
-      { error: 'Failed to create billing portal session' },
-      { status: 500 }
-    )
-  }
+export async function POST() {
+  return postBillingPortal({
+    getSession: () => getServerSession(authOptions),
+    createBillingPortalSession: (params) =>
+      stripeServer.billingPortal.sessions.create(params),
+    logger,
+    returnUrl: `${env.NEXT_PUBLIC_CODEBUFF_APP_URL}/profile`,
+  })
 }
