letsbe/pn-new-crm
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
Files
221ae5784e36c131db86ff0731914b62ae58a45a
pn-new-crm/src/app/api/v1/tracked-links/route.ts
Matt 221ae5784e chore(autonomous-session): consolidate uncommitted work from prior session 
Bundles the prior autonomous-session output that was sitting unstaged:

- Em-dash sweep across src/ + tests/ (en-dash/em-dash to hyphen, ~2280 instances)
- country-flag-icons rollout (CountryFlag component, replaces emoji glyphs that
  never rendered on Windows; lazy-loads the 3x2 SVG index as a single chunk
  after the per-subpath dynamic-import approach silently failed in webpack)
- Admin IA Phase 1+2: 7-domain regroup, 41 to 38 pages, /admin/berths index,
  redirects (ocr to ai, reports to dashboard, invitations to users),
  docs/admin-ia-proposal.md
- Per-template email tester (registry + endpoint + UI on Email admin page)
- Cancel-document mode picker (delete-from-Documenso vs keep-for-audit)
- Dashboard PDF report: 25 widgets, SVG charts, date-range picker, 11 resolvers
- Customize-widgets per-region sortables at xl+ (charts/rails/feed); single
  flat sortable below xl when the layout stacks; per-viewport saved orders
- Audit doc updates capturing each shipped item
- Lint fixes: react-compiler immutability in DonutChart (reduce instead of
  let-reassign), set-state-in-effect disables in CountryFlag and
  UploadForSigning preview-bytes effect, unused 'confirm' destructures in
  interest contract + reservation tabs, unescaped apostrophe in test-template
  card copy
2026-05-23 00:52:59 +02:00

51 lines
1.6 KiB
TypeScript
Raw Blame History

import { NextResponse } from 'next/server';
import { z } from 'zod';
import { withAuth } from '@/lib/api/helpers';
import { parseBody } from '@/lib/api/route-helpers';
import { buildTrackedUrl, createTrackedLink } from '@/lib/services/tracked-links.service';
import { errorResponse } from '@/lib/errors';
/**
* POST /api/v1/tracked-links
*
* Mints a new tracked redirect-link the rep can drop into an outgoing
* email or chat. Body: { targetUrl, sendId? }. Returns the slug + the
* full public URL (`<APP_URL>/q/<slug>`) - caller pastes the URL into
* the message draft.
*
* Gated on `email.send` since this surface is consumed from compose UIs.
* Tracked links aren't sensitive on their own but reps shouldn't be
* able to mint click-trackers without the underlying send permission.
*/
const createSchema = z.object({
targetUrl: z.string().url(),
sendId: z.string().min(1).optional(),
});
export const POST = withAuth(async (req, ctx) => {
try {
const body = await parseBody(req, createSchema);
const allowed = ctx.isSuperAdmin ? true : !!ctx.permissions?.email?.send;
if (!allowed) {
return NextResponse.json({ error: 'Forbidden' }, { status: 403 });
}
const row = await createTrackedLink({
portId: ctx.portId,
targetUrl: body.targetUrl,
sendId: body.sendId,
createdByUserId: ctx.userId,
});
return NextResponse.json({
data: {
id: row.id,
slug: row.slug,
targetUrl: row.targetUrl,
url: buildTrackedUrl(row.slug),
},
});
} catch (error) {
return errorResponse(error);
}
});
Reference in New Issue View Git Blame Copy Permalink