payouts tab (#1065)

<img width="1299" height="967" alt="Screenshot 2025-12-12 at 5 26 23 PM"
src="https://github.com/user-attachments/assets/5a33482a-510c-464c-a770-e71222ffc336"
/>
<!--

Make sure you've read the CONTRIBUTING.md guidelines:
https://github.com/stack-auth/stack-auth/blob/dev/CONTRIBUTING.md

-->




<!-- This is an auto-generated comment: release notes by coderabbit.ai
-->
## Summary by CodeRabbit

* **New Features**
* Added a "Payouts" section to the Payments dashboard with a dedicated
page and navigation link.
* Integrated a Stripe Connect payouts UI, allowing users to manage and
configure payout options (instant payouts, standard payouts, edit payout
schedule, external account collection).

* **Chores**
  * Internal module path updates (no user-facing behavior changes).

<sub>✏️ Tip: You can customize this high-level summary in your review
settings.</sub>
<!-- end of auto-generated comment: release notes by coderabbit.ai -->

Author: BilalG1

apps/backend/src/app/api/latest/internal/payments/stripe-widgets/account-session/route.ts

@@ -48,6 +48,15 @@ export const POST = createSmartRouteHandler({
         notification_banner: {
           enabled: true,
         },
+        payouts: {
+          enabled: true,
+          features: {
+            instant_payouts: true,
+            standard_payouts: true,
+            edit_payout_schedule: true,
+            external_account_collection: true,
+          },
+        },
       },
     });
 

apps/backend/src/app/api/latest/payments/products/[customer_type]/[customer_id]/[product_id]/route.ts

@@ -0,0 +1,138 @@
+import { ensureProductIdOrInlineProduct, getOwnedProductsForCustomer } from "@/lib/payments";
+import { getPrismaClientForTenancy } from "@/prisma-client";
+import { createSmartRouteHandler } from "@/route-handlers/smart-route-handler";
+import { adaptSchema, clientOrHigherAuthTypeSchema, yupBoolean, yupNumber, yupObject, yupString } from "@stackframe/stack-shared/dist/schema-fields";
+import { KnownErrors } from "@stackframe/stack-shared";
+import { StackAssertionError, StatusError, captureError, throwErr } from "@stackframe/stack-shared/dist/utils/errors";
+import { SubscriptionStatus } from "@/generated/prisma/client";
+import { getStripeForAccount } from "@/lib/stripe";
+import { typedToUppercase } from "@stackframe/stack-shared/dist/utils/strings";
+import { ensureUserTeamPermissionExists } from "@/lib/request-checks";
+
+export const DELETE = createSmartRouteHandler({
+  metadata: {
+    summary: "Cancel a customer's subscription product",
+    hidden: true,
+  },
+  request: yupObject({
+    auth: yupObject({
+      type: clientOrHigherAuthTypeSchema.defined(),
+      project: adaptSchema.defined(),
+      tenancy: adaptSchema.defined(),
+    }).defined(),
+    params: yupObject({
+      customer_type: yupString().oneOf(["user", "team", "custom"]).defined(),
+      customer_id: yupString().defined(),
+      product_id: yupString().defined(),
+    }).defined(),
+  }),
+  response: yupObject({
+    statusCode: yupNumber().oneOf([200]).defined(),
+    bodyType: yupString().oneOf(["json"]).defined(),
+    body: yupObject({
+      success: yupBoolean().oneOf([true]).defined(),
+    }).defined(),
+  }),
+  handler: async ({ auth, params }, fullReq) => {
+    if (auth.type === "client") {
+      const currentUser = fullReq.auth?.user;
+      if (!currentUser) {
+        throw new KnownErrors.UserAuthenticationRequired();
+      }
+      if (params.customer_type === "user") {
+        if (params.customer_id !== currentUser.id) {
+          throw new StatusError(StatusError.Forbidden, "Clients can only cancel their own subscriptions.");
+        }
+      } else if (params.customer_type === "team") {
+        const prisma = await getPrismaClientForTenancy(auth.tenancy);
+        await ensureUserTeamPermissionExists(prisma, {
+          tenancy: auth.tenancy,
+          teamId: params.customer_id,
+          userId: currentUser.id,
+          permissionId: "team_admin",
+          errorType: "required",
+          recursive: true,
+        });
+      } else {
+        throw new StatusError(StatusError.Forbidden, "Clients can only cancel user or team subscriptions they control.");
+      }
+    }
+
+    const prisma = await getPrismaClientForTenancy(auth.tenancy);
+    const product = await ensureProductIdOrInlineProduct(auth.tenancy, auth.type, params.product_id, undefined);
+    if (params.customer_type !== product.customerType) {
+      throw new KnownErrors.ProductCustomerTypeDoesNotMatch(
+        params.product_id,
+        params.customer_id,
+        product.customerType,
+        params.customer_type,
+      );
+    }
+
+    const ownedProducts = await getOwnedProductsForCustomer({
+      prisma,
+      tenancy: auth.tenancy,
+      customerType: params.customer_type,
+      customerId: params.customer_id,
+    });
+    const ownedProductsForProduct = ownedProducts.filter((p) => p.id === params.product_id);
+    if (ownedProductsForProduct.length === 0) {
+      throw new StatusError(400, "Customer does not have this product.");
+    }
+    if (ownedProductsForProduct.some((product) => product.type === "one_time")) {
+      throw new StatusError(400, "This product is a one time purchase and cannot be canceled.");
+    }
+
+    const subscriptions = await prisma.subscription.findMany({
+      where: {
+        tenancyId: auth.tenancy.id,
+        customerType: typedToUppercase(params.customer_type),
+        customerId: params.customer_id,
+        productId: params.product_id,
+        status: { in: [SubscriptionStatus.active, SubscriptionStatus.trialing] },
+      },
+    });
+    if (subscriptions.length === 0) {
+      captureError("cancel-subscription-missing", new StackAssertionError(
+        "Owned subscription product missing active/trialing subscription record.",
+        {
+          customerType: params.customer_type,
+          customerId: params.customer_id,
+          productId: params.product_id,
+        },
+      ));
+      throw new StatusError(400, "This subscription cannot be canceled.");
+    }
+
+    const hasStripeSubscription = subscriptions.some((subscription) => subscription.stripeSubscriptionId);
+    const stripe = hasStripeSubscription ? await getStripeForAccount({ tenancy: auth.tenancy }) : undefined;
+    for (const subscription of subscriptions) {
+      if (subscription.stripeSubscriptionId) {
+        const stripeClient = stripe ?? throwErr(500, "Stripe client missing for subscription cancellation.");
+        await stripeClient.subscriptions.cancel(subscription.stripeSubscriptionId);
+        continue;
+      }
+      await prisma.subscription.update({
+        where: {
+          tenancyId_id: {
+            tenancyId: auth.tenancy.id,
+            id: subscription.id,
+          },
+        },
+        data: {
+          status: SubscriptionStatus.canceled,
+          currentPeriodEnd: new Date(),
+          cancelAtPeriodEnd: true,
+        },
+      });
+    }
+
+    return {
+      statusCode: 200,
+      bodyType: "json",
+      body: {
+        success: true,
+      },
+    };
+  },
+});

apps/backend/src/app/api/latest/payments/products/[customer_type]/[customer_id]/route.ts

@@ -83,6 +83,7 @@ export const GET = createSmartRouteHandler({
   },
 });
 
+
 export const POST = createSmartRouteHandler({
   metadata: {
     summary: "Grant a product to a customer",
@@ -151,3 +152,4 @@ export const POST = createSmartRouteHandler({
     };
   },
 });
+

…[projectId]/payments/products/layout.tsx …projects/[projectId]/payments/layout.tsxapps/dashboard/src/app/(main)/(protected)/projects/[projectId]/payments/products/layout.tsx renamed to apps/dashboard/src/app/(main)/(protected)/projects/[projectId]/payments/layout.tsx apps/dashboard/src/app/(main)/(protected)/projects/[projectId]/payments/products/layout.tsx renamed to apps/dashboard/src/app/(main)/(protected)/projects/[projectId]/payments/layout.tsx

@@ -12,8 +12,8 @@ import { ConnectNotificationBanner } from "@stripe/react-connect-js";
 import { usePathname } from "next/navigation";
 import { useState } from "react";
 import * as yup from "yup";
-import { AppEnabledGuard } from "../../app-enabled-guard";
-import { useAdminApp } from "../../use-admin-app";
+import { AppEnabledGuard } from "../app-enabled-guard";
+import { useAdminApp } from "../use-admin-app";
 
 export default function PaymentsLayout({ children }: { children: React.ReactNode }) {
   return (

apps/dashboard/src/app/(main)/(protected)/projects/[projectId]/payments/payouts/page-client.tsx

@@ -0,0 +1,16 @@
+"use client";
+
+import { ConnectPayouts } from "@stripe/react-connect-js";
+import { PageLayout } from "../../page-layout";
+import { StripeConnectProvider } from "@/components/payments/stripe-connect-provider";
+
+export default function PageClient() {
+
+  return (
+    <PageLayout title="Payouts">
+      <StripeConnectProvider>
+        <ConnectPayouts />
+      </StripeConnectProvider>
+    </PageLayout>
+  );
+}

apps/dashboard/src/app/(main)/(protected)/projects/[projectId]/payments/payouts/page.tsx

@@ -0,0 +1,9 @@
+"use client";
+
+import PageClient from "./page-client";
+
+export default function Page() {
+  return (
+    <PageClient />
+  );
+}

apps/dashboard/src/lib/apps-frontend.tsx

@@ -140,6 +140,7 @@ export const ALL_APPS_FRONTEND = {
       { displayName: "Products & Items", href: "./products" },
       { displayName: "Customers", href: "./customers" },
       { displayName: "Transactions", href: "./transactions" },
+      { displayName: "Payouts", href: "./payouts" },
     ],
     screenshots: getScreenshots('payments', 7),
     storeDescription: (