route.ts

Go to the documentation of this file.

import { NextRequest, NextResponse } from 'next/server';
import { fieldpineServerApi } from '@/lib/server/fieldpineApi';
import { getRequestContext, validateApiAccess } from '@/lib/server/sessionUtils';
 
/**
 * Loyalty Campaigns Endpoint (ELINK API)
 * GET /api/v1/buck/loyalty/campaigns
 * 
 * Uses ELINK API (retailmax.elink.loyalty.list)
 * Security: Retail stores can access this (ELINK only)
 */
export async function GET(request: NextRequest) {
  try {
    const context = await getRequestContext(request);
    if (!context || !context.isAuthenticated) {
      return NextResponse.json(
        { error: 'Authentication required' },
        { status: 401 }
      );
    }
 
    const apiAccessValidation = validateApiAccess(context, 'elink');
    if (!apiAccessValidation.valid) {
      return NextResponse.json(
        { error: apiAccessValidation.error, code: apiAccessValidation.errorCode },
        { status: 403 }
      );
    }
 
    const buckParams: Record<string, string> = {
      '3': 'retailmax.elink.loyalty.list',
      '99': Math.random().toString()
    };
 
    // Use store-specific URL for API calls
    const result = await fieldpineServerApi.buckApiCall(buckParams, context.session.apiKey, context.store.url);
 
    return NextResponse.json({
      success: true,
      data: result,
      source: 'elink'
    });
 
  } catch (error: any) {
    console.error('[Loyalty Campaigns API] Error:', error);
    return NextResponse.json(
      { error: error.message || 'Failed to fetch loyalty campaigns' },
      { status: 500 }
    );
  }
}
 
/**
 * POST: Create new loyalty campaign
 * Uses DATI packet with retailmax.elink.loyalty.edit
 */
export async function POST(request: NextRequest) {
  try {
    const context = await getRequestContext(request);
    if (!context || !context.isAuthenticated) {
      return NextResponse.json(
        { error: 'Authentication required' },
        { status: 401 }
      );
    }
 
    const apiAccessValidation = validateApiAccess(context, 'elink');
    if (!apiAccessValidation.valid) {
      return NextResponse.json(
        { error: apiAccessValidation.error, code: apiAccessValidation.errorCode },
        { status: 403 }
      );
    }
 
    const body = await request.json();
 
    // Build DATI XML for new loyalty campaign
    const datiXml = [
      "<DATI>",
      "<f8_s>retailmax.elink.loyalty.edit</f8_s>",
      "<f11_B>I</f11_B>", // Insert
      body.name ? `<f101_s>${body.name}</f101_s>` : "",
      body.startDate ? `<f102_s>${body.startDate}</f102_s>` : "",
      body.earnEndDate ? `<f103_s>${body.earnEndDate}</f103_s>` : "",
      body.redeemEndDate ? `<f114_s>${body.redeemEndDate}</f114_s>` : "",
      body.rewardLevel ? `<f104_E>${body.rewardLevel}</f104_E>` : "",
      body.moneyRewardLevel ? `<f105_E>${body.moneyRewardLevel}</f105_E>` : "",
      body.gain ? `<f106_E>${body.gain}</f106_E>` : "",
      body.inputPid ? `<f107_E>${body.inputPid}</f107_E>` : "",
      body.outputPid ? `<f108_E>${body.outputPid}</f108_E>` : "",
      body.membershipType !== undefined ? `<f109_E>${body.membershipType}</f109_E>` : "",
      body.activeDays ? `<f113_E>${body.activeDays}</f113_E>` : "",
      "</DATI>"
    ].filter(line => line !== "").join("");
 
    const result = await fieldpineServerApi.apiCall(
      "/",
      {
        method: "POST",
        body: datiXml,
        cookie: context.session.apiKey,
        useOpenApi: false
      }
    );
 
    return NextResponse.json({
      success: true,
      data: result,
      source: 'elink'
    });
 
  } catch (error) {
    console.error('Create loyalty campaign error:', error);
    return NextResponse.json(
      { error: 'Failed to create loyalty campaign' },
      { status: 500 }
    );
  }
}