Initial commit: Port Nimara CRM (Layers 0-4)
Full CRM rebuild with Next.js 15, TypeScript, Tailwind, Drizzle ORM,
PostgreSQL, Redis, BullMQ, MinIO, and Socket.io. Includes 461 source
files covering clients, berths, interests/pipeline, documents/EOI,
expenses/invoices, email, notifications, dashboard, admin, and
client portal. CI/CD via Gitea Actions with Docker builds.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-26 11:52:51 +01:00
|
|
|
import { db } from '@/lib/db';
|
|
|
|
|
import { currencyRates } from '@/lib/db/schema/system';
|
|
|
|
|
import { eq, and } from 'drizzle-orm';
|
|
|
|
|
import { logger } from '@/lib/logger';
|
fix(audit-tier-1): timeouts, lifecycle, per-port Documenso, FK constraints
Closes the second wave of HIGH-priority audit findings:
* fetchWithTimeout helper (new src/lib/fetch-with-timeout.ts) wraps
Documenso, OCR, currency, Umami, IMAP, etc. — a hung upstream can
no longer pin a worker concurrency slot indefinitely. OpenAI client
passes timeout: 30_000. ImapFlow gets socket / greeting / connection
timeouts.
* SIGTERM / SIGINT handler in src/server.ts drains in-flight HTTP,
closes Socket.io, and disconnects Redis before exit; compose
stop_grace_period bumped to 30s. Adds closeSocketServer() helper.
* env.ts gains zod-validated PORT and MULTI_NODE_DEPLOYMENT, and
filesystem.ts now reads from env (a typo can no longer silently
disable the multi-node guard).
* Per-port Documenso template + recipient IDs land in system_settings
with env fallback (PortDocumensoConfig now exposes eoiTemplateId,
clientRecipientId, developerRecipientId, approvalRecipientId).
document-templates.ts uses the per-port config and threads portId
into documensoGenerateFromTemplate().
* Migration 0042 wires the eleven HIGH-tier missing FK constraints
(documents/files/interests/reminders/berth_waiting_list/
form_submissions) plus polymorphic CHECK round 2
(yacht_ownership_history.owner_type, document_sends.document_kind),
invoices.billing_entity_id NOT EMPTY, and clients.merged_into self-FK.
Drizzle schema columns updated to .references(...) where possible
so the misleading "FK wired in relations.ts" comments are gone.
Test status: 1168/1168 vitest, tsc clean.
Refs: docs/audit-comprehensive-2026-05-05.md HIGH §§5,6,7,8,9,10 +
MED §§14,15,16,18.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-05 19:52:58 +02:00
|
|
|
import { fetchWithTimeout } from '@/lib/fetch-with-timeout';
|
Initial commit: Port Nimara CRM (Layers 0-4)
Full CRM rebuild with Next.js 15, TypeScript, Tailwind, Drizzle ORM,
PostgreSQL, Redis, BullMQ, MinIO, and Socket.io. Includes 461 source
files covering clients, berths, interests/pipeline, documents/EOI,
expenses/invoices, email, notifications, dashboard, admin, and
client portal. CI/CD via Gitea Actions with Docker builds.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-26 11:52:51 +01:00
|
|
|
|
|
|
|
|
export async function getRate(from: string, to: string): Promise<number | null> {
|
|
|
|
|
if (from === to) return 1;
|
|
|
|
|
const rate = await db.query.currencyRates.findFirst({
|
|
|
|
|
where: and(eq(currencyRates.baseCurrency, from), eq(currencyRates.targetCurrency, to)),
|
|
|
|
|
});
|
|
|
|
|
return rate ? Number(rate.rate) : null;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
export async function convert(
|
|
|
|
|
amount: number,
|
|
|
|
|
from: string,
|
|
|
|
|
to: string,
|
|
|
|
|
): Promise<{ result: number; rate: number } | null> {
|
|
|
|
|
const rate = await getRate(from, to);
|
|
|
|
|
if (!rate) return null;
|
|
|
|
|
return { result: Number((amount * rate).toFixed(2)), rate };
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
export async function refreshRates(): Promise<void> {
|
|
|
|
|
try {
|
fix(audit-tier-1): timeouts, lifecycle, per-port Documenso, FK constraints
Closes the second wave of HIGH-priority audit findings:
* fetchWithTimeout helper (new src/lib/fetch-with-timeout.ts) wraps
Documenso, OCR, currency, Umami, IMAP, etc. — a hung upstream can
no longer pin a worker concurrency slot indefinitely. OpenAI client
passes timeout: 30_000. ImapFlow gets socket / greeting / connection
timeouts.
* SIGTERM / SIGINT handler in src/server.ts drains in-flight HTTP,
closes Socket.io, and disconnects Redis before exit; compose
stop_grace_period bumped to 30s. Adds closeSocketServer() helper.
* env.ts gains zod-validated PORT and MULTI_NODE_DEPLOYMENT, and
filesystem.ts now reads from env (a typo can no longer silently
disable the multi-node guard).
* Per-port Documenso template + recipient IDs land in system_settings
with env fallback (PortDocumensoConfig now exposes eoiTemplateId,
clientRecipientId, developerRecipientId, approvalRecipientId).
document-templates.ts uses the per-port config and threads portId
into documensoGenerateFromTemplate().
* Migration 0042 wires the eleven HIGH-tier missing FK constraints
(documents/files/interests/reminders/berth_waiting_list/
form_submissions) plus polymorphic CHECK round 2
(yacht_ownership_history.owner_type, document_sends.document_kind),
invoices.billing_entity_id NOT EMPTY, and clients.merged_into self-FK.
Drizzle schema columns updated to .references(...) where possible
so the misleading "FK wired in relations.ts" comments are gone.
Test status: 1168/1168 vitest, tsc clean.
Refs: docs/audit-comprehensive-2026-05-05.md HIGH §§5,6,7,8,9,10 +
MED §§14,15,16,18.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-05 19:52:58 +02:00
|
|
|
const res = await fetchWithTimeout('https://api.frankfurter.dev/v1/latest?base=USD');
|
Initial commit: Port Nimara CRM (Layers 0-4)
Full CRM rebuild with Next.js 15, TypeScript, Tailwind, Drizzle ORM,
PostgreSQL, Redis, BullMQ, MinIO, and Socket.io. Includes 461 source
files covering clients, berths, interests/pipeline, documents/EOI,
expenses/invoices, email, notifications, dashboard, admin, and
client portal. CI/CD via Gitea Actions with Docker builds.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-26 11:52:51 +01:00
|
|
|
if (!res.ok) throw new Error(`Frankfurter API error: ${res.status}`);
|
|
|
|
|
const data = await res.json();
|
|
|
|
|
const rates = data.rates as Record<string, number>;
|
|
|
|
|
|
|
|
|
|
for (const [currency, rate] of Object.entries(rates)) {
|
|
|
|
|
await db
|
|
|
|
|
.insert(currencyRates)
|
|
|
|
|
.values({
|
|
|
|
|
baseCurrency: 'USD',
|
|
|
|
|
targetCurrency: currency,
|
|
|
|
|
rate: String(rate),
|
|
|
|
|
source: 'frankfurter',
|
|
|
|
|
fetchedAt: new Date(),
|
|
|
|
|
})
|
|
|
|
|
.onConflictDoUpdate({
|
|
|
|
|
target: [currencyRates.baseCurrency, currencyRates.targetCurrency],
|
|
|
|
|
set: { rate: String(rate), fetchedAt: new Date(), source: 'frankfurter' },
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Store inverse rates for common conversions
|
|
|
|
|
for (const [currency, rate] of Object.entries(rates)) {
|
|
|
|
|
const inverse = 1 / rate;
|
|
|
|
|
await db
|
|
|
|
|
.insert(currencyRates)
|
|
|
|
|
.values({
|
|
|
|
|
baseCurrency: currency,
|
|
|
|
|
targetCurrency: 'USD',
|
|
|
|
|
rate: String(inverse.toFixed(6)),
|
|
|
|
|
source: 'frankfurter',
|
|
|
|
|
fetchedAt: new Date(),
|
|
|
|
|
})
|
|
|
|
|
.onConflictDoUpdate({
|
|
|
|
|
target: [currencyRates.baseCurrency, currencyRates.targetCurrency],
|
|
|
|
|
set: { rate: String(inverse.toFixed(6)), fetchedAt: new Date(), source: 'frankfurter' },
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
logger.info({ rateCount: Object.keys(rates).length }, 'Currency rates refreshed');
|
|
|
|
|
} catch (err) {
|
|
|
|
|
logger.error({ err }, 'Failed to refresh currency rates');
|
|
|
|
|
}
|
|
|
|
|
}
|
