managarten/services/mana-credits/src/index.ts

/**
 * mana-credits — Standalone credit management service
 *
 * Hono + Bun runtime. Extracted from mana-auth.
 * Handles: personal credits, gift codes, sync billing, Stripe payments.
 */

import { Hono } from 'hono';
import { cors } from 'hono/cors';
import { loadConfig } from './config';
import { getDb } from './db/connection';
import { serviceErrorHandler as errorHandler } from '@mana/shared-hono';
import { jwtAuth } from './middleware/jwt-auth';
import { serviceAuth } from './middleware/service-auth';
import { StripeService } from './services/stripe';
import { CreditsService } from './services/credits';
import { GiftCodeService } from './services/gift-code';
import { SyncBillingService } from './services/sync-billing';
import { healthRoutes } from './routes/health';
import { createCreditsRoutes } from './routes/credits';
import { createGiftRoutes } from './routes/gifts';
import { createSyncRoutes } from './routes/sync';
import { createAdminRoutes } from './routes/admin';
import { createInternalRoutes } from './routes/internal';
import { createWebhookRoutes } from './routes/stripe-webhook';

// ─── Bootstrap ──────────────────────────────────────────────

const config = loadConfig();
const db = getDb(config.databaseUrl);

// Instantiate services (manual DI — no NestJS)
const stripeService = new StripeService(db, config.stripe.secretKey);
const creditsService = new CreditsService(db, stripeService);
const giftCodeService = new GiftCodeService(db, config.baseUrl);
const syncBillingService = new SyncBillingService(db, creditsService);

// ─── App ────────────────────────────────────────────────────

const app = new Hono();

// Global middleware
app.onError(errorHandler);
app.use(
	'*',
	cors({
		origin: config.cors.origins,
		credentials: true,
	})
);

// Health check (no auth)
app.route('/health', healthRoutes);

// User-facing routes (JWT auth)
app.use('/api/v1/credits/*', jwtAuth(config.manaAuthUrl));
app.route('/api/v1/credits', createCreditsRoutes(creditsService));

app.use('/api/v1/sync/*', jwtAuth(config.manaAuthUrl));
app.route('/api/v1/sync', createSyncRoutes(syncBillingService));

// Admin routes (JWT auth + admin role check inside)
app.use('/api/v1/admin/*', jwtAuth(config.manaAuthUrl));
app.route('/api/v1/admin', createAdminRoutes(syncBillingService));

// Gift routes (mixed: public GET /:code, JWT for rest)
app.route('/api/v1/gifts', createGiftRoutes(giftCodeService, config.manaAuthUrl));

// Service-to-service routes (X-Service-Key auth)
app.use('/api/v1/internal/*', serviceAuth(config.serviceKey));
app.route(
	'/api/v1/internal',
	createInternalRoutes(creditsService, giftCodeService, syncBillingService)
);

// Stripe webhooks (verified by signature, no auth middleware)
app.route(
	'/api/v1/webhooks',
	createWebhookRoutes(stripeService, creditsService, config.stripe.webhookSecret)
);

// ─── Cron: Daily sync billing charge ────────────────────────

const CHARGE_INTERVAL_MS = 60 * 60 * 1000; // Check every hour
setInterval(async () => {
	try {
		const result = await syncBillingService.chargeRecurring();
		if (result.total > 0) {
			console.log(
				`[sync-billing] Recurring charge: ${result.charged} charged, ${result.paused} paused, ${result.errors} errors`
			);
		}
	} catch (err) {
		console.error('[sync-billing] Recurring charge failed:', err);
	}
}, CHARGE_INTERVAL_MS);

// ─── Start ──────────────────────────────────────────────────

console.log(`mana-credits starting on port ${config.port}...`);

export default {
	port: config.port,
	fetch: app.fetch,
};