events/transport_rpcs.py

"""
Nostr-transport RPC handlers for the aiolabs/events extension.

Each handler is registered with `lnbits.core.services.nostr_transport.
dispatcher.register_rpc` in `events_start()`. The dispatcher resolves
the caller's Nostr pubkey to an LNbits Account → wallet (`AUTH_WALLET`)
and passes a `WalletTypeInfo` as the first argument; handlers verify
event-level ownership on top.

Errors raise `PermissionError` / `ValueError` so the dispatcher maps
them into `{status: "ERROR", error: <msg>}` responses; any other
exception falls through to a generic "Internal error" reply.
"""

from __future__ import annotations

from datetime import datetime, timezone

from lnbits.core.crud import get_user
from lnbits.core.models import WalletTypeInfo
from lnbits.core.services.nostr_transport.models import NostrRpcRequest

from .crud import get_event, get_ticket, get_tickets_by_event, update_ticket


async def handle_events_ticket_register(
    auth: WalletTypeInfo,
    request: NostrRpcRequest,
) -> dict:
    """Mark a ticket as registered at the door (organizer flow).

    The Nostr-transport dispatcher already verified the caller signed
    the kind-21000 RPC event and bound them to `auth.wallet`. This
    handler adds the event-level check: the ticket's event must be
    owned by one of the caller's wallets.

    Idempotence mirrors the HTTP endpoint: scanning the same ticket
    twice fails with "Ticket already registered". The buyer-side flow
    (notifications etc.) reuses whatever the legacy register endpoint
    does — we just flip the flag + timestamp.
    """
    body = request.body or {}
    event_id = body.get("event_id")
    ticket_id = body.get("ticket_id")
    if not event_id or not ticket_id:
        raise ValueError("event_id and ticket_id are required")

    ticket = await get_ticket(ticket_id)
    if not ticket or ticket.event != event_id:
        raise ValueError("Ticket does not exist on this event")
    if not ticket.paid:
        raise PermissionError("Ticket not paid for")
    if ticket.registered:
        raise PermissionError("Ticket already registered")

    event = await get_event(event_id)
    if not event:
        raise ValueError("Event does not exist")

    user = await get_user(auth.wallet.user)
    owned_wallet_ids = user.wallet_ids if user else [auth.wallet.id]
    if event.wallet not in owned_wallet_ids:
        raise PermissionError("You do not own this event")

    ticket.registered = True
    ticket.reg_timestamp = datetime.now(timezone.utc)
    await update_ticket(ticket)
    return ticket.dict()


async def handle_events_list_event_tickets(
    auth: WalletTypeInfo,
    request: NostrRpcRequest,
) -> dict:
    """Return paid + registered counts plus the per-ticket roster for
    one calendar event, organizer-only.

    Backs the door scanner's counts strip and "All scanned" tab so the
    UI reads authoritative state from the backend instead of relying
    on per-device localStorage (which diverges the moment a second
    organizer scans, or the operator switches devices).

    The roster only includes paid tickets — proposed/unpaid rows are
    irrelevant at the door.
    """
    body = request.body or {}
    event_id = body.get("event_id")
    if not event_id:
        raise ValueError("event_id is required")

    event = await get_event(event_id)
    if not event:
        raise ValueError("Event does not exist")

    user = await get_user(auth.wallet.user)
    owned_wallet_ids = user.wallet_ids if user else [auth.wallet.id]
    if event.wallet not in owned_wallet_ids:
        raise PermissionError("You do not own this event")

    tickets = await get_tickets_by_event(event_id)
    paid_tickets = [t for t in tickets if t.paid]
    registered_count = sum(1 for t in paid_tickets if t.registered)

    return {
        "event_id": event_id,
        "sold": len(paid_tickets),
        "registered": registered_count,
        "remaining": len(paid_tickets) - registered_count,
        "tickets": [
            {
                "id": t.id,
                "name": t.name,
                "registered": t.registered,
                "registered_at": (
                    t.reg_timestamp.isoformat() if t.reg_timestamp else None
                ),
            }
            for t in paid_tickets
        ],
    }