fix: flags route

izadoesdev · izadoesdev · commit 717ee130b2e7 · 2025-11-14T21:12:45.000+02:00
diff --git a/apps/api/src/index.ts b/apps/api/src/index.ts
@@ -17,10 +17,9 @@ import { query } from "./routes/query";
 const rpcHandler = new RPCHandler(appRouter, {
 	interceptors: [
 		onError((error) => {
-			logger.error({
-				message: error instanceof Error ? error.message : String(error),
-				error,
-			});
+			logger.error(
+				error
+			);
 		}),
 	],
 });
@@ -42,17 +41,28 @@ const app = new Elysia()
 	.use(
 		autumnHandler({
 			identify: async ({ request }) => {
-				const session = await auth.api.getSession({
-					headers: request.headers,
-				});
+				try {
+					const session = await auth.api.getSession({
+						headers: request.headers,
+					});
 
-				return {
-					customerId: session?.user.id,
-					customerData: {
-						name: session?.user.name,
-						email: session?.user.email,
-					},
-				};
+					return {
+						customerId: session?.user.id,
+						customerData: {
+							name: session?.user.name,
+							email: session?.user.email,
+						},
+					};
+				} catch (error) {
+					logger.error({ error }, "Failed to get session for autumn handler");
+					return {
+						customerId: null,
+						customerData: {
+							name: null,
+							email: null,
+						},
+					};
+				}
 			},
 		})
 	)
@@ -62,20 +72,25 @@ const app = new Elysia()
 	.all(
 		"/rpc/*",
 		async ({ request }: { request: Request }) => {
-			const context = await createRPCContext({ headers: request.headers });
-			const { response } = await rpcHandler.handle(request, {
-				prefix: "/rpc",
-				context,
-			});
-			return response ?? new Response("Not Found", { status: 404 });
+			try {
+				const context = await createRPCContext({ headers: request.headers });
+				const { response } = await rpcHandler.handle(request, {
+					prefix: "/rpc",
+					context,
+				});
+				return response ?? new Response("Not Found", { status: 404 });
+			} catch (error) {
+				logger.error({ error }, "RPC handler failed");
+				return new Response("Internal Server Error", { status: 500 });
+			}
 		},
 		{
 			parse: "none",
 		}
 	)
 	.onError(({ error, code }) => {
 		const errorMessage = error instanceof Error ? error.message : String(error);
-		logger.error({ message: errorMessage, code, error });
+		logger.error({ error, code }, errorMessage);
 
 		return new Response(
 			JSON.stringify({
diff --git a/apps/api/src/routes/export.ts b/apps/api/src/routes/export.ts
@@ -21,7 +21,7 @@ const getWebsiteById = cacheable(
 				where: eq(websites.id, id),
 			});
 		} catch (error) {
-			console.error("Error fetching website by ID:", error, { id });
+			logger.error({ error, websiteId: id }, "Error fetching website by ID");
 			return null;
 		}
 	},
@@ -41,42 +41,47 @@ async function authorizeWebsiteAccess(
 	websiteId: string,
 	permission: "read" | "update" | "delete" | "transfer"
 ) {
-	const website = await getWebsiteById(websiteId);
+	try {
+		const website = await getWebsiteById(websiteId);
 
-	if (!website) {
-		throw new Error("Website not found");
-	}
+		if (!website) {
+			throw new Error("Website not found");
+		}
 
-	// Public websites allow read access
-	if (permission === "read" && website.isPublic) {
-		return website;
-	}
+		// Public websites allow read access
+		if (permission === "read" && website.isPublic) {
+			return website;
+		}
 
-	const session = await auth.api.getSession({ headers });
-	const user = session?.user;
+		const session = await auth.api.getSession({ headers });
+		const user = session?.user;
 
-	if (!user) {
-		throw new Error("Authentication is required for this action");
-	}
+		if (!user) {
+			throw new Error("Authentication is required for this action");
+		}
 
-	if (user.role === "ADMIN") {
-		return website;
-	}
+		if (user.role === "ADMIN") {
+			return website;
+		}
 
-	if (website.organizationId) {
-		const { success } = await websitesApi.hasPermission({
-			headers,
-			body: { permissions: { website: [permission] } },
-		});
-		if (!success) {
-			throw new Error("You do not have permission to perform this action");
+		if (website.organizationId) {
+			const { success } = await websitesApi.hasPermission({
+				headers,
+				body: { permissions: { website: [permission] } },
+			});
+			if (!success) {
+				throw new Error("You do not have permission to perform this action");
+			}
+		} else if (website.userId !== user.id) {
+			// Check direct ownership
+			throw new Error("You are not the owner of this website");
 		}
-	} else if (website.userId !== user.id) {
-		// Check direct ownership
-		throw new Error("You are not the owner of this website");
-	}
 
-	return website;
+		return website;
+	} catch (error) {
+		logger.error({ error, websiteId, permission }, "Failed to authorize website access");
+		throw error;
+	}
 }
 
 export const exportRoute = new Elysia({ prefix: "/v1/export" })
@@ -117,45 +122,46 @@ export const exportRoute = new Elysia({ prefix: "/v1/export" })
 				);
 
 				if (dateError) {
-					logger.warn({
-						message: "Export request with invalid dates",
-						requestId,
-						websiteId,
-						startDate: body.start_date,
-						endDate: body.end_date,
-						error: dateError,
-					});
+					logger.warn(
+						{
+							requestId,
+							websiteId,
+							startDate: body.start_date,
+							endDate: body.end_date,
+							error: dateError,
+						},
+						"Export request with invalid dates"
+					);
 					return createErrorResponse(400, "INVALID_DATE_RANGE", dateError);
 				}
 
 				const format = body.format || "json";
 				if (!["csv", "json", "txt", "proto"].includes(format)) {
-					logger.warn({
-						message: "Export request with invalid format",
-						requestId,
-						websiteId,
-						format,
-					});
+					logger.warn(
+						{ requestId, websiteId, format },
+						"Export request with invalid format"
+					);
 					return createErrorResponse(
 						400,
 						"INVALID_FORMAT",
 						"Invalid export format. Supported formats: csv, json, txt, proto"
 					);
 				}
 
-				logger.info({
-					message: "Data export initiated",
-					requestId,
-					websiteId,
-					startDate: validatedDates.startDate,
-					endDate: validatedDates.endDate,
-					format,
-					userAgent: request.headers.get("user-agent"),
-					ip:
-						request.headers.get("x-forwarded-for") ||
-						request.headers.get("x-real-ip"),
-					timestamp: new Date().toISOString(),
-				});
+				logger.info(
+					{
+						requestId,
+						websiteId,
+						startDate: validatedDates.startDate,
+						endDate: validatedDates.endDate,
+						format,
+						userAgent: request.headers.get("user-agent"),
+						ip:
+							request.headers.get("x-forwarded-for") ||
+							request.headers.get("x-real-ip"),
+					},
+					"Data export initiated"
+				);
 
 				const exportRequest: ExportRequest = {
 					website_id: websiteId,
@@ -166,16 +172,17 @@ export const exportRoute = new Elysia({ prefix: "/v1/export" })
 
 				const result = await processExport(exportRequest);
 
-				logger.info({
-					message: "Data export completed successfully",
-					requestId,
-					websiteId,
-					filename: result.filename,
-					fileSize: result.buffer.length,
-					totalRecords: result.metadata.totalRecords,
-					processingTime: Date.now() - startTime,
-					timestamp: new Date().toISOString(),
-				});
+				logger.info(
+					{
+						requestId,
+						websiteId,
+						filename: result.filename,
+						fileSize: result.buffer.length,
+						totalRecords: result.metadata.totalRecords,
+						processingTime: Date.now() - startTime,
+					},
+					"Data export completed successfully"
+				);
 
 				return new Response(result.buffer, {
 					headers: {
@@ -185,19 +192,19 @@ export const exportRoute = new Elysia({ prefix: "/v1/export" })
 					},
 				});
 			} catch (error) {
-				logger.error({
-					message: "Data export failed",
-					requestId,
-					websiteId: body.website_id,
-					error: error instanceof Error ? error.message : String(error),
-					stack: error instanceof Error ? error.stack : undefined,
-					processingTime: Date.now() - startTime,
-					userAgent: request.headers.get("user-agent"),
-					ip:
-						request.headers.get("x-forwarded-for") ||
-						request.headers.get("x-real-ip"),
-					timestamp: new Date().toISOString(),
-				});
+				logger.error(
+					{
+						error,
+						requestId,
+						websiteId: body.website_id,
+						processingTime: Date.now() - startTime,
+						userAgent: request.headers.get("user-agent"),
+						ip:
+							request.headers.get("x-forwarded-for") ||
+							request.headers.get("x-real-ip"),
+					},
+					"Data export failed"
+				);
 
 				if (error instanceof Error) {
 					if (error.message.includes("not found")) {
diff --git a/apps/api/src/routes/health.ts b/apps/api/src/routes/health.ts
@@ -8,7 +8,7 @@ const checkClickhouse = async () => {
 		const result = await chQuery("SELECT 1 FROM analytics.events LIMIT 1");
 		return result.length > 0;
 	} catch (error) {
-		logger.error("ClickHouse health check failed:", { error });
+		logger.error({ error }, "ClickHouse health check failed");
 		return false;
 	}
 };
@@ -20,7 +20,7 @@ const checkDatabase = async () => {
 		});
 		return result.length > 0;
 	} catch (error) {
-		logger.error("Database health check failed:", { error });
+		logger.error({ error }, "Database health check failed");
 		return false;
 	}
 };
@@ -30,7 +30,7 @@ const checkRedis = async () => {
 		const result = await redisClient.ping();
 		return result === "PONG";
 	} catch (error) {
-		logger.error("Redis health check failed:", { error });
+		logger.error({ error }, "Redis health check failed");
 		return false;
 	}
 };
diff --git a/apps/api/src/routes/public/flags.ts b/apps/api/src/routes/public/flags.ts
