Merge pull request #7 from cuappdev/skye/notifications-infra

Add notifications infra and auth

Author: skyeslattery

package-lock.json

@@ -14,7 +14,8 @@
     "format": "prettier --write '{src,test}/**/*.ts'",
     "scrape": "tsx prisma/scraper.ts",
     "scrape:scheduled": "SCHEDULED_MODE=true node dist/prisma/scraper.js",
-    "studio": "prisma studio"
+    "studio": "prisma studio",
+    "send-notifications": "tsx prisma/notificationService.ts"
   },
   "repository": {
     "type": "git",
@@ -29,10 +30,12 @@
   "homepage": "https://github.com/cuappdev/eatery-blue-backend#readme",
   "dependencies": {
     "@prisma/client": "^6.16.2",
+    "date-fns": "^4.1.0",
+    "date-fns-tz": "^3.2.0",
     "dotenv": "^17.2.3",
     "express": "^5.1.0",
     "express-rate-limit": "^8.1.0",
-    "firebase-admin": "^13.5.0",
+    "firebase-admin": "^13.6.0",
     "helmet": "^8.1.0",
     "jsonwebtoken": "^9.0.2",
     "node-cache": "^5.1.2",

package.json

@@ -8,7 +8,7 @@ CREATE TYPE "PaymentMethod" AS ENUM ('MEAL_SWIPE', 'CASH', 'CARD', 'BRB', 'FREE'
 CREATE TYPE "EateryType" AS ENUM ('DINING_ROOM', 'CAFE', 'COFFEE_SHOP', 'FOOD_COURT', 'CONVENIENCE_STORE', 'CART', 'GENERAL');
 
 -- CreateEnum
-CREATE TYPE "EventType" AS ENUM ('AVAILABLE_ALL_DAY', 'BREAKFAST', 'BRUNCH', 'DINNER', 'EMPTY', 'LATE_LUNCH', 'LUNCH', 'OPEN', 'GENERAL', 'PANTS');
+CREATE TYPE "EventType" AS ENUM ('AVAILABLE_ALL_DAY', 'BREAKFAST', 'BRUNCH', 'DINNER', 'LATE_NIGHT', 'EMPTY', 'LATE_LUNCH', 'LUNCH', 'OPEN', 'GENERAL', 'PANTS');
 
 -- CreateTable
 CREATE TABLE "User" (

prisma/migrations/20251120071422_init/migration.sql

@@ -0,0 +1,189 @@
+import cron from 'node-cron';
+
+import { prisma } from '../src/prisma.js';
+import { sendToTokens } from '../src/utils/notifications.js';
+import { getQueryTimeWindow } from '../src/utils/time.js';
+
+function buildMessage(
+  matchesByEatery: Map<string, string[]>,
+): { title: string; body: string } {
+  const title = 'Some of your favorites are being served today!';
+  const eateryNames = Array.from(matchesByEatery.keys());
+
+  if (eateryNames.length === 1) {
+    const eateryName = eateryNames[0];
+    const items = matchesByEatery.get(eateryName)!;
+    if (items.length === 1) {
+      return { title, body: `${items[0]} is being served at ${eateryName} today.` };
+    } else if (items.length === 2) {
+      return {
+        title,
+        body: `${items[0]} and ${items[1]} are at ${eateryName} today.`,
+      };
+    } else {
+      return { title, body: `Several favorites are at ${eateryName} today.` };
+    }
+  } else {
+    const eateryListStr = eateryNames.join(', ');
+    return {
+      title,
+      body: `Favorites found at ${eateryListStr} today. Check the app for details!`,
+    };
+  }
+}
+
+export async function main() {
+  const { windowStartUnix, windowEndUnix } = getQueryTimeWindow();
+
+  // build a map of { eateryName: Set<itemName> }
+  const eateryMenuMap = new Map<string, Set<string>>();
+  const allItemNamesToday = new Set<string>();
+
+  const eateries = await prisma.eatery.findMany({
+    include: {
+      events: {
+        where: {
+          startTimestamp: { lte: new Date(windowEndUnix * 1000) },
+          endTimestamp: { gte: new Date(windowStartUnix * 1000) },
+        },
+        include: {
+          menu: {
+            include: {
+              items: true,
+            },
+          },
+        },
+      },
+    },
+  });
+
+  for (const eatery of eateries) {
+    if (!eateryMenuMap.has(eatery.name)) {
+      eateryMenuMap.set(eatery.name, new Set<string>());
+    }
+    const itemSet = eateryMenuMap.get(eatery.name)!;
+    for (const event of eatery.events) {
+      for (const category of event.menu) {
+        for (const item of category.items) {
+          itemSet.add(item.name);
+          allItemNamesToday.add(item.name);
+        }
+      }
+    }
+  }
+
+  if (allItemNamesToday.size === 0) {
+    console.log('No items found');
+    return;
+  }
+
+  // Get all users with at least one favorite 
+  // item being served today (using the GIN index).
+  const usersToNotify = await prisma.user.findMany({
+    where: {
+      favoritedItemNames: {
+        hasSome: Array.from(allItemNamesToday),
+      },
+      fcmTokens: {
+        some: {},
+      },
+    },
+    include: {
+      fcmTokens: true,
+    },
+  });
+
+  if (usersToNotify.length === 0) {
+    console.log('No users to notify');
+    return;
+  }
+
+  // Loop through filtered users and build their aggregated notification
+  for (const user of usersToNotify) {
+    const userFavorites = new Set(user.favoritedItemNames);
+    const userMatchesByEatery = new Map<string, string[]>();
+
+    for (const [eateryName, itemSet] of eateryMenuMap.entries()) {
+      const matches = Array.from(itemSet).filter((itemName) =>
+        userFavorites.has(itemName),
+      );
+      if (matches.length > 0) {
+        userMatchesByEatery.set(eateryName, matches.sort());
+      }
+    }
+
+    if (userMatchesByEatery.size > 0) {
+      const { title, body } = buildMessage(userMatchesByEatery);
+      const tokens = user.fcmTokens.map((t) => t.token);
+
+      const dataPayload = {
+        matches: JSON.stringify(Object.fromEntries(userMatchesByEatery)),
+      };
+
+      try {
+        await sendToTokens(tokens, title, body, dataPayload);
+      } catch (e) {
+        console.error(`Failed to send notification for user ${user.id}:`, e);
+      }
+    }
+  }
+}
+
+let isRunning = false;
+
+async function runNotificationsSafely() {
+  if (isRunning) {
+    console.log('[Notifications] Job is already running, skipping.');
+    return;
+  }
+
+  isRunning = true;
+  console.log(`[Notifications] Starting run at ${new Date().toISOString()}`);
+
+  try {
+    await main();
+    console.log('[Notifications] Completed successfully.');
+  } catch (error) {
+    console.error('[Notifications] Failed:', error);
+  } finally {
+    isRunning = false;
+  }
+}
+
+export function startNotificationScheduler() {
+  const cronExpression = process.env.NOTI_CRON_SCHEDULE || '0 8,17 * * *';
+
+  console.log('[Notifications] Initializing scheduler...');
+  console.log(`[Notifications] Schedule: ${cronExpression}`);
+
+  const task = cron.schedule(cronExpression, runNotificationsSafely, {
+    timezone: 'America/New_York',
+  });
+
+  console.log('[Notifications] Scheduler started.');
+
+  return task;
+}
+
+
+if (process.env.SCHEDULED_MODE === 'true') {
+  startNotificationScheduler();
+  console.log('[Notifications] Notification scheduler is running. Press Ctrl+C to stop.');
+  const gracefulShutdown = async () => {
+    console.log('[Notifications] Shutting down gracefully...');
+    await prisma.$disconnect();
+    process.exit(0);
+  };
+  
+  process.on('SIGTERM', gracefulShutdown);
+  process.on('SIGINT', gracefulShutdown);
+} else {
+  main()
+    .catch((e) => {
+      console.error('Error during scraping:', e);
+      process.exit(1);
+    })
+    .finally(async () => {
+      await prisma.$disconnect();
+    });
+}

prisma/notificationService.ts

@@ -101,7 +101,7 @@ model Report {
 model Eatery {
   id             Int             @id @default(autoincrement())
   cornellId      Int?            @unique
-  announcements  String[]
+  announcements  String[]        @default([])
   name           String
   shortName      String
   about          String
@@ -190,4 +190,4 @@ model DietaryPreference {
 model Allergen {
   name  String @id @unique
   items Item[]
-}
+}

prisma/schema.prisma

@@ -243,9 +243,9 @@ function transformStaticEatery(rawStaticEatery: RawStaticEatery) {
       menuSummary: menuSummary,
       imageUrl: imageUrl,
       campusArea: mapCampusArea(rawStaticEatery.campusArea),
-      onlineOrderUrl: rawStaticEatery.onlineOrderUrl,
-      contactPhone: rawStaticEatery.contactPhone,
-      contactEmail: rawStaticEatery.contactEmail,
+      onlineOrderUrl: rawStaticEatery.onlineOrderUrl ?? null,
+      contactPhone: rawStaticEatery.contactPhone ?? null,
+      contactEmail: rawStaticEatery.contactEmail ?? null,
       latitude: rawStaticEatery.latitude,
       longitude: rawStaticEatery.longitude,
       location: rawStaticEatery.location,
@@ -278,9 +278,9 @@ function transformEatery(rawEatery: RawEatery) {
     menuSummary: 'Cornell Eatery',
     imageUrl: imageUrl,
     campusArea: mapCampusArea(rawEatery.campusArea),
-    onlineOrderUrl: rawEatery.onlineOrderUrl,
-    contactPhone: rawEatery.contactPhone,
-    contactEmail: rawEatery.contactEmail,
+    onlineOrderUrl: rawEatery.onlineOrderUrl ?? null,
+    contactPhone: rawEatery.contactPhone ?? null,
+    contactEmail: rawEatery.contactEmail ?? null,
     latitude: rawEatery.latitude,
     longitude: rawEatery.longitude,
     location: rawEatery.location,

prisma/scraper.ts

@@ -11,3 +11,22 @@ export const refreshAccessTokenSchema = z.object({
     refreshToken: z.string().nonempty('Refresh token is required'),
   }),
 });
+
+export const linkCbordAccountSchema = z.object({
+  body: z.object({
+    pin: z
+      .string()
+      .nonempty('PIN is required')
+      .regex(/^\d+$/, 'PIN must contain only numeric characters'),
+    sessionId: z.string().nonempty('Session ID is required'),
+  }),
+});
+
+export const getCbordSessionSchema = z.object({
+  body: z.object({
+    pin: z
+      .string()
+      .nonempty('PIN is required')
+      .regex(/^\d+$/, 'PIN must contain only numeric characters'),
+  }),
+});

src/auth/auth.schema.ts

@@ -1,5 +1,6 @@
 import type { Request, Response } from 'express';
 
+import { cbordService } from '../services/cbord.service.js';
 import * as authService from './authService.js';
 
 export const verifyDeviceUuid = async (req: Request, res: Response) => {
@@ -13,3 +14,30 @@ export const refreshAccessToken = async (req: Request, res: Response) => {
   const tokens = await authService.refreshAccessToken(refreshToken);
   return res.json(tokens);
 };
+
+/**
+ * @desc Links a GET/CBORD account to a deviceId via a PIN.
+ * This is the one-time setup for the finance feature.
+ */
+export const linkCbordAccount = async (req: Request, res: Response) => {
+  const { userId } = req.user!;
+  const { pin, sessionId } = req.body;
+
+  await cbordService.createPin(String(userId), pin, sessionId);
+
+  // This route does NOT create the user, just links the PIN.
+  return res.json({ message: 'GET account linked successfully.' });
+};
+
+/**
+ * @desc Exchanges a deviceId and PIN for a new GET/CBORD session_id.
+ * This is the "persistent login" flow.
+ */
+export const getCbordSession = async (req: Request, res: Response) => {
+  const { userId } = req.user!;
+  const { pin } = req.body;
+
+  const newSessionId = await cbordService.authenticatePin(String(userId), pin);
+
+  return res.json({ sessionId: newSessionId });
+};

src/auth/authController.ts

@@ -1,11 +1,19 @@
 import { Router } from 'express';
 
+import { requireAuth } from '../middleware/authentication.js';
 import { validateRequest } from '../middleware/validateRequest.js';
 import {
+  getCbordSessionSchema,
+  linkCbordAccountSchema,
   refreshAccessTokenSchema,
   verifyDeviceUuidSchema,
 } from './auth.schema.js';
-import { refreshAccessToken, verifyDeviceUuid } from './authController.js';
+import {
+  getCbordSession,
+  linkCbordAccount,
+  refreshAccessToken,
+  verifyDeviceUuid,
+} from './authController.js';
 
 const router = Router();
 
@@ -19,5 +27,17 @@ router.post(
   validateRequest(refreshAccessTokenSchema),
   refreshAccessToken,
 );
+router.post(
+  '/get/authorize',
+  requireAuth,
+  validateRequest(linkCbordAccountSchema),
+  linkCbordAccount,
+);
+router.post(
+  '/get/refresh',
+  requireAuth,
+  validateRequest(getCbordSessionSchema),
+  getCbordSession,
+);
 
 export default router;

src/auth/authRouter.ts

@@ -4,6 +4,8 @@ export const EATERY_IMAGES_BASE_URL =
 export const DEFAULT_IMAGE_URL =
   'https://images-prod.healthline.com/hlcmsresource/images/AN_images/health-benefits-of-apples-1296x728-feature.jpg';
 
+/** How many hours ahead to look for events when sending notifications */
+export const NOTIFICATION_LOOKAHEAD_HOURS = 7;
 export const ITUNES_LOOKUP_URL =
   'https://itunes.apple.com/lookup?bundleId=org.cuappdev.eatery';