compsoc-edinburgh
diff --git a/‎.github/workflows/api.yml‎
Lines changed: 1 addition & 4 deletions b/‎.github/workflows/api.yml‎
Lines changed: 1 addition & 4 deletions
diff --git a/‎apps/api/.env.example‎
Lines changed: 2 additions & 0 deletions b/‎apps/api/.env.example‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎apps/api/package.json‎
Lines changed: 1 addition & 0 deletions b/‎apps/api/package.json‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎apps/api/src/db/schema.ts‎
Lines changed: 2 additions & 2 deletions b/‎apps/api/src/db/schema.ts‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎apps/api/src/lib/auth-guard.ts‎
Lines changed: 23 additions & 0 deletions b/‎apps/api/src/lib/auth-guard.ts‎
Lines changed: 23 additions & 0 deletions
diff --git a/‎apps/api/src/lib/errorHandler.ts‎ ‎apps/api/src/lib/error-handler.ts‎apps/api/src/lib/errorHandler.ts renamed to apps/api/src/lib/error-handler.ts b/‎apps/api/src/lib/errorHandler.ts‎ ‎apps/api/src/lib/error-handler.ts‎apps/api/src/lib/errorHandler.ts renamed to apps/api/src/lib/error-handler.ts
diff --git a/‎apps/api/src/modules/core/schema.ts‎
Lines changed: 6 additions & 0 deletions b/‎apps/api/src/modules/core/schema.ts‎
Lines changed: 6 additions & 0 deletions
@@ -100,7 +100,7 @@ jobs:
         env:
           DATABASE_URL: postgres://postgres:postgres@localhost:5432/test_db
         run: pnpm test
-  
+
   push:
     name: Pushes container to docker container hub
     runs-on: ubuntu-latest
@@ -121,6 +121,3 @@ jobs:
           docker tag events-api $IMAGE_ID:${{ github.sha }}
           docker push $IMAGE_ID:${{ github.sha }}
           docker push $IMAGE_ID:latest
-
-
-
@@ -5,3 +5,5 @@ DATABASE_URL="postgresql://user:[email protected]/neondb?sslmode
 # Get these from https://dashboard.clerk.com
 CLERK_PUBLISHABLE_KEY=pk_test_your_publishable_key
 CLERK_SECRET_KEY=sk_test_your_secret_key
+
+CLERK_WEBHOOK_SECRET=whsec_your_webhook_secret
@@ -29,6 +29,7 @@
     "nanoid": "^5.1.6",
     "nodemon": "^3.1.11",
     "pg": "^8.16.3",
+    "svix": "^1.84.1",
     "zod": "^4.2.1"
   },
   "devDependencies": {
 
@@ -73,9 +73,9 @@ export const registrationsTable = pgTable(
     eventId: text("event_id")
       .notNull()
       .references(() => eventsTable.id, { onDelete: "cascade" }),
-    status: registrationStatus("status").default("pending"),
+    status: registrationStatus("status").notNull().default("pending"),
     answers: json("form_data").$type<RegistrationFormAnswer>(),
-    createdAt: timestamp("created_at").defaultNow(),
+    createdAt: timestamp("created_at").notNull().defaultNow(),
     updatedAt: timestamp("updated_at")
       .defaultNow()
       .$onUpdate(() => new Date()),
 
@@ -0,0 +1,23 @@
+import { getAuth } from "@clerk/fastify";
+import { FastifyReply, FastifyRequest } from "fastify";
+
+const requireAuth = async (request: FastifyRequest, reply: FastifyReply) => {
+  const { userId, sessionClaims } = getAuth(request);
+  const role = sessionClaims?.metadata?.role;
+
+  if (!userId || !role) {
+    return reply.status(401).send({ message: "Unauthorised" });
+  }
+
+  request.user = { userId, role };
+};
+
+const requireCommittee = async (request: FastifyRequest, reply: FastifyReply) => {
+  await requireAuth(request, reply);
+
+  if (request.user.role !== "committee") {
+    return reply.status(401).send({ message: "Unauthorised" });
+  }
+};
+
+export { requireAuth, requireCommittee };
@@ -0,0 +1,6 @@
+import { z } from "zod";
+
+export const QueryFilterSchema = z.object({
+  page: z.coerce.number().min(1).default(1),
+  limit: z.coerce.number().min(1).max(100).default(20),
+});