database/postgres: drop upgrades and stripe sync

Author: haraldschilly

src/packages/database/postgres.ts

@@ -143,6 +143,7 @@ import { calc_stats } from "./postgres/stats/stats";
 import { default as registrationTokens } from "./postgres/account/registration-tokens";
 import { default as centralLog } from "./postgres/central-log";
 import { updateUnreadMessageCount } from "./postgres/changefeed/messages";
+import membershipTiers from "./postgres/membership-tiers";
 
 import {
   get_client_error_log,
@@ -1938,6 +1939,10 @@ export class PostgreSQL extends EventEmitter implements PostgreSQLMethods {
     return await registrationTokens(this, options, query);
   }
 
+  async membershipTiers(options, query) {
+    return await membershipTiers(this, options, query);
+  }
+
   async updateUnreadMessageCount(
     opts: FunctionOpts<typeof updateUnreadMessageCount>,
   ) {

src/packages/database/postgres/account/change-email-address.test.ts

@@ -1,5 +1,5 @@
 /*
- *  This file is part of CoCalc: Copyright © 2025 Sagemath, Inc.
+ *  This file is part of CoCalc: Copyright © 2025-2026 Sagemath, Inc.
  *  License: MS-RSL – see LICENSE.md for details
  */
 
@@ -67,64 +67,13 @@ describe("change_email_address", () => {
     return result.rows?.[0]?.email_address;
   }
 
-  /**
-   * Helper to set stripe_customer_id for an account
-   */
-  async function setStripeCustomerId(
-    account_id: string,
-    customer_id: string,
-  ): Promise<void> {
-    await database.async_query({
-      query: "UPDATE accounts",
-      set: { stripe_customer_id: customer_id },
-      where: { "account_id = $::UUID": account_id },
-    });
-  }
-
-  /**
-   * Mock Stripe client
-   */
-  function createMockStripe(options?: {
-    shouldThrow?: boolean;
-    errorMessage?: string;
-  }) {
-    const calls: any[] = [];
-    return {
-      customers: {
-        retrieve: jest.fn(async (customer_id) => {
-          calls.push({ method: "retrieve", customer_id });
-          if (options?.shouldThrow) {
-            throw new Error(options.errorMessage ?? "Stripe API error");
-          }
-          return {
-            id: customer_id,
-            email: "old@example.com",
-            subscriptions: { data: [] },
-          };
-        }),
-        update: jest.fn(async (customer_id, update) => {
-          calls.push({ method: "update", customer_id, update });
-          if (options?.shouldThrow) {
-            throw new Error(options.errorMessage ?? "Stripe API error");
-          }
-          return {
-            id: customer_id,
-            email: update.email,
-            subscriptions: { data: [] },
-          };
-        }),
-      },
-      _calls: calls,
-    };
-  }
-
   describe("successful email change", () => {
     it("should change email address when new email is not taken", async () => {
       const unique_id = uuid().substring(0, 8);
       const account_id = await createTestAccount(
         `original-${unique_id}@example.com`,
       );
-      const stripe = createMockStripe();
+      const stripe = {} as any;
 
       await change_email_address_wrapper({
         account_id,
@@ -135,46 +84,6 @@ describe("change_email_address", () => {
       const email = await getAccountEmail(account_id);
       expect(email).toBe(`new-${unique_id}@example.com`);
     });
-
-    it("should not call Stripe when account has no stripe_customer_id", async () => {
-      const unique_id = uuid().substring(0, 8);
-      const account_id = await createTestAccount(
-        `test1-${unique_id}@example.com`,
-      );
-      const stripe = createMockStripe();
-
-      await change_email_address_wrapper({
-        account_id,
-        email_address: `test1-new-${unique_id}@example.com`,
-        stripe,
-      });
-
-      expect(stripe.customers.retrieve).not.toHaveBeenCalled();
-      expect(stripe.customers.update).not.toHaveBeenCalled();
-    });
-
-    it("should call Stripe sync when account has stripe_customer_id", async () => {
-      const unique_id = uuid().substring(0, 8);
-      const account_id = await createTestAccount(
-        `test2-${unique_id}@example.com`,
-      );
-      const customer_id = "cus_" + uuid().replace(/-/g, "");
-      await setStripeCustomerId(account_id, customer_id);
-
-      const stripe = createMockStripe();
-
-      await change_email_address_wrapper({
-        account_id,
-        email_address: `test2-new-${unique_id}@example.com`,
-        stripe,
-      });
-
-      const email = await getAccountEmail(account_id);
-      expect(email).toBe(`test2-new-${unique_id}@example.com`);
-      expect(stripe.customers.retrieve).toHaveBeenCalledWith(customer_id, {
-        expand: ["sources", "subscriptions"],
-      });
-    });
   });
 
   describe("email_already_taken error", () => {
@@ -184,7 +93,7 @@ describe("change_email_address", () => {
       const email2 = `user2-${unique_id}@example.com`;
       const account_id1 = await createTestAccount(email1);
       await createTestAccount(email2);
-      const stripe = createMockStripe();
+      const stripe = {} as any;
 
       // Try to change account_id1 to user2 email (already taken)
       await expect(
@@ -206,9 +115,7 @@ describe("change_email_address", () => {
       const email2 = `taken2-${unique_id}@example.com`;
       const account_id1 = await createTestAccount(email1);
       await createTestAccount(email2);
-      await setStripeCustomerId(account_id1, "cus_test" + unique_id);
-
-      const stripe = createMockStripe();
+      const stripe = {} as any;
 
       await expect(
         change_email_address_wrapper({
@@ -217,58 +124,6 @@ describe("change_email_address", () => {
           stripe,
         }),
       ).rejects.toMatch(/email_already_taken/);
-
-      expect(stripe.customers.retrieve).not.toHaveBeenCalled();
-    });
-  });
-
-  describe("Stripe synchronization errors", () => {
-    it("should propagate Stripe errors when sync fails", async () => {
-      const unique_id = uuid().substring(0, 8);
-      const account_id = await createTestAccount(
-        `stripe-error-${unique_id}@example.com`,
-      );
-      const customer_id = "cus_" + uuid().replace(/-/g, "");
-      await setStripeCustomerId(account_id, customer_id);
-
-      const stripe = createMockStripe({
-        shouldThrow: true,
-        errorMessage: "Stripe service unavailable",
-      });
-
-      await expect(
-        change_email_address_wrapper({
-          account_id,
-          email_address: `stripe-error-new-${unique_id}@example.com`,
-          stripe,
-        }),
-      ).rejects.toThrow(/Stripe service unavailable/);
-    });
-
-    it("should still update email in database even if Stripe sync fails", async () => {
-      const unique_id = uuid().substring(0, 8);
-      const account_id = await createTestAccount(
-        `stripe-error2-${unique_id}@example.com`,
-      );
-      const customer_id = "cus_" + uuid().replace(/-/g, "");
-      await setStripeCustomerId(account_id, customer_id);
-
-      const stripe = createMockStripe({
-        shouldThrow: true,
-        errorMessage: "Network error",
-      });
-
-      await expect(
-        change_email_address_wrapper({
-          account_id,
-          email_address: `stripe-error2-new-${unique_id}@example.com`,
-          stripe,
-        }),
-      ).rejects.toThrow(/Network error/);
-
-      // Email should be updated despite Stripe error (happens in step 2, before Stripe sync in step 3)
-      const email = await getAccountEmail(account_id);
-      expect(email).toBe(`stripe-error2-new-${unique_id}@example.com`);
     });
   });
 
@@ -277,7 +132,7 @@ describe("change_email_address", () => {
       const unique_id = uuid().substring(0, 8);
       const email = `same-${unique_id}@example.com`;
       const account_id = await createTestAccount(email);
-      const stripe = createMockStripe();
+      const stripe = {} as any;
 
       // CoffeeScript checks account_exists which finds the same account's email
       await expect(
@@ -298,7 +153,7 @@ describe("change_email_address", () => {
       const account_id = await createTestAccount(
         `lower-${unique_id}@example.com`,
       );
-      const stripe = createMockStripe();
+      const stripe = {} as any;
 
       await change_email_address_wrapper({
         account_id,
@@ -316,7 +171,7 @@ describe("change_email_address", () => {
       const email2 = `other-${unique_id}@example.com`;
       await createTestAccount(email1);
       const account_id2 = await createTestAccount(email2);
-      const stripe = createMockStripe();
+      const stripe = {} as any;
 
       // CoffeeScript uses = which is case-sensitive, so lowercase version is allowed
       await change_email_address_wrapper({
@@ -336,7 +191,7 @@ describe("change_email_address", () => {
       const account_id = await createTestAccount(
         `concurrent-${unique_id}@example.com`,
       );
-      const stripe = createMockStripe();
+      const stripe = {} as any;
 
       await change_email_address_wrapper({
         account_id,

src/packages/database/postgres/account/change-email-address.ts

@@ -1,10 +1,9 @@
 /*
- *  This file is part of CoCalc: Copyright © 2025 Sagemath, Inc.
+ *  This file is part of CoCalc: Copyright © 2025-2026 Sagemath, Inc.
  *  License: MS-RSL – see LICENSE.md for details
  */
 
 import { account_exists } from "./basic";
-import syncCustomer from "../stripe/sync-customer";
 import type { PostgreSQL } from "../types";
 
 interface ChangeEmailAddressOptions {
@@ -17,7 +16,6 @@ interface ChangeEmailAddressOptions {
  * Change the email address for an account.
  *
  * Throws "email_already_taken" error (string) if the email is already in use.
- * Calls Stripe sync if account has stripe_customer_id.
  *
  * NOTE: Matches CoffeeScript behavior but fixes bug where undefined account
  * would crash when accessing stripe_customer_id.
@@ -48,22 +46,4 @@ export async function changeEmailAddress(
     set: { email_address: opts.email_address },
     where: { "account_id = $::UUID": opts.account_id },
   });
-
-  // Step 3: Sync with Stripe if customer exists
-  const result = await db.async_query({
-    query: "SELECT stripe_customer_id FROM accounts",
-    where: { "account_id = $::UUID": opts.account_id },
-  });
-
-  const row = result.rows?.[0];
-
-  // FIX: Check if row exists before accessing stripe_customer_id
-  // This fixes the CoffeeScript bug where undefined account would crash
-  if (row?.stripe_customer_id) {
-    await syncCustomer({
-      account_id: opts.account_id,
-      stripe: opts.stripe,
-      customer_id: row.stripe_customer_id,
-    });
-  }
 }

src/packages/database/postgres/project/queries.ts

@@ -1,5 +1,5 @@
 /*
- *  This file is part of CoCalc: Copyright © 2020 – 2025 Sagemath, Inc.
+ *  This file is part of CoCalc: Copyright © 2020–2026 Sagemath, Inc.
  *  License: MS-RSL – see LICENSE.md for details
  */
 
@@ -44,17 +44,6 @@ export async function project_has_network_access(
   if (x.settings != null && x.settings.network) {
     return true;
   }
-  if (x.users != null) {
-    for (const account_id in x.users) {
-      if (
-        x.users[account_id] != null &&
-        x.users[account_id].upgrades != null &&
-        x.users[account_id].upgrades.network
-      ) {
-        return true;
-      }
-    }
-  }
   return false;
 }
 

src/packages/database/postgres/project/user-set-query-project-users.ts

@@ -3,7 +3,6 @@
  *  License: MS-RSL – see LICENSE.md for details
  */
 
-import { PROJECT_UPGRADES } from "@cocalc/util/schema";
 import {
   assert_valid_account_id,
   is_object,
@@ -15,15 +14,14 @@ type UserGroup = "owner" | "collaborator";
 type AllowedUserFields = {
   group?: UserGroup;
   hide?: boolean;
-  upgrades?: Record<string, unknown>;
   ssh_keys?: Record<string, Record<string, unknown> | undefined>;
 };
 
 function ensureAllowedKeys(
   user: Record<string, unknown>,
   allowGroupChanges: boolean,
 ): void {
-  const allowed = new Set(["hide", "upgrades", "ssh_keys"]);
+  const allowed = new Set(["hide", "ssh_keys"]);
   for (const key of Object.keys(user)) {
     if (key === "group") {
       if (!allowGroupChanges) {
@@ -39,19 +37,6 @@ function ensureAllowedKeys(
   }
 }
 
-function sanitizeUpgrades(upgrades: unknown): Record<string, unknown> {
-  if (!is_object(upgrades)) {
-    throw Error("invalid type for field 'upgrades'");
-  }
-  const allowedUpgrades = PROJECT_UPGRADES.params;
-  for (const key of Object.keys(upgrades)) {
-    if (!Object.prototype.hasOwnProperty.call(allowedUpgrades, key)) {
-      throw Error(`invalid upgrades field '${key}'`);
-    }
-  }
-  return upgrades as Record<string, unknown>;
-}
-
 function sanitizeSshKeys(
   ssh_keys: unknown,
 ): Record<string, Record<string, unknown> | undefined> {
@@ -83,7 +68,7 @@ function sanitizeSshKeys(
 /**
  * Sanitize and security-check project user mutations submitted via user set query.
  *
- * Only permits modifying the requesting user's own entry (hide/upgrades/ssh_keys).
+ * Only permits modifying the requesting user's own entry (hide/ssh_keys).
  * Collaborator role changes must use dedicated APIs that enforce ownership rules.
  */
 export function sanitizeUserSetQueryProjectUsers(
@@ -136,14 +121,6 @@ export function sanitizeUserSetQueryProjectUsers(
       }
       entry.hide = (user as any).hide;
     }
-    if ("upgrades" in user) {
-      if (!isSelf) {
-        throw Error(
-          "users set queries may only change upgrades for the requesting account",
-        );
-      }
-      entry.upgrades = sanitizeUpgrades((user as any).upgrades);
-    }
     if ("ssh_keys" in user) {
       if (!isSelf) {
         throw Error(