feat(finance): add provider preference, disbursements, and build/test hardening

drizzle/migrations/0012_add_provider_preference_to_organizations.sql

@@ -0,0 +1,8 @@
+DO $$ BEGIN
+ CREATE TYPE "public"."fiat_provider" AS ENUM('monnify', 'flutterwave');
+EXCEPTION
+ WHEN duplicate_object THEN null;
+END $$;
+
+ALTER TABLE "organizations"
+ADD COLUMN IF NOT EXISTS "provider_preference" "fiat_provider" DEFAULT 'monnify' NOT NULL;

next.config.ts

@@ -3,6 +3,7 @@ import { join } from "path";
 
 const nextConfig: NextConfig = {
   compress: true,
+  serverExternalPackages: ["ioredis"],
   turbopack: {
     root: join(__dirname), // Set the root to the current directory dynamically
     rules: {

package.json

@@ -58,6 +58,7 @@
     "google-auth-library": "^10.5.0",
     "html2canvas": "^1.4.1",
     "i18n-iso-countries": "^7.14.0",
+    "ioredis": "^5.10.1",
     "jose": "^6.1.3",
     "jsonwebtoken": "^9.0.3",
     "jspdf": "^3.0.3",

src/app/api/v1/auth/register/route.test.ts

@@ -30,6 +30,8 @@ describe("POST /api/v1/auth/register", () => {
       firstName: "Test",
       lastName: "User",
       businessEmail: "test@example.com",
+      password: "Password123",
+      agreement: true,
     });
 
     const response = await POST(req);
@@ -46,6 +48,8 @@ describe("POST /api/v1/auth/register", () => {
       firstName: "Test",
       lastName: "User",
       businessEmail: "invalid-email",
+      password: "Password123",
+      agreement: true,
     });
 
     const response = await POST(req);
@@ -60,6 +64,8 @@ describe("POST /api/v1/auth/register", () => {
     const req = createMockRequest({
       firstName: "T",
       businessEmail: "test@example.com",
+      password: "Password123",
+      agreement: true,
     });
 
     const response = await POST(req);
@@ -79,6 +85,8 @@ describe("POST /api/v1/auth/register", () => {
       firstName: "Test",
       lastName: "User",
       businessEmail: "existing@example.com",
+      password: "Password123",
+      agreement: true,
     });
 
     const response = await POST(req);
@@ -96,6 +104,8 @@ describe("POST /api/v1/auth/register", () => {
       firstName: "Test",
       lastName: "User",
       businessEmail: "test@example.com",
+      password: "Password123",
+      agreement: true,
     });
 
     const response = await POST(req);

src/app/api/v1/company/profile/route.ts

@@ -3,6 +3,7 @@ import { ApiResponse } from "@/server/utils/api-response";
 import { AppError } from "@/server/utils/errors";
 import { AuthUtils } from "@/server/utils/auth";
 import { CompanyService } from "@/server/services/company.service";
+import { updateCompanyProfileSchema } from "@/server/validations/company.schema";
 
 /**
  * @swagger
@@ -29,6 +30,9 @@ import { CompanyService } from "@/server/services/company.service";
  *                 registrationNumber:
  *                   type: string
  *                   nullable: true
+ *                 providerPreference:
+ *                   type: string
+ *                   enum: [monnify, flutterwave]
  *                 registered:
  *                   type: object
  *                   properties:
@@ -90,3 +94,71 @@ export async function GET(req: NextRequest) {
     return ApiResponse.error("Internal server error", 500);
   }
 }
+
+/**
+ * @swagger
+ * /company/profile:
+ *   put:
+ *     summary: Update company profile
+ *     description: Update the authenticated user's organization profile and fiat provider preference
+ *     tags: [General]
+ *     security:
+ *       - bearerAuth: []
+ *     requestBody:
+ *       required: true
+ *       content:
+ *         application/json:
+ *           schema:
+ *             type: object
+ *             properties:
+ *               name:
+ *                 type: string
+ *               industry:
+ *                 type: string
+ *                 nullable: true
+ *               registrationNumber:
+ *                 type: string
+ *                 nullable: true
+ *               providerPreference:
+ *                 type: string
+ *                 enum: [monnify, flutterwave]
+ *               registered:
+ *                 type: object
+ *               billing:
+ *                 type: object
+ *     responses:
+ *       200:
+ *         description: Company profile updated successfully
+ *       400:
+ *         description: Invalid request body
+ *       401:
+ *         description: Unauthorized
+ *       404:
+ *         description: User not associated with an organization
+ */
+export async function PUT(req: NextRequest) {
+  try {
+    const { userId } = await AuthUtils.authenticateRequest(req);
+    const payload = await req.json();
+
+    const parsed = updateCompanyProfileSchema.safeParse(payload);
+    if (!parsed.success) {
+      return ApiResponse.error(
+        "Invalid request body",
+        400,
+        parsed.error.flatten().fieldErrors,
+      );
+    }
+
+    const profile = await CompanyService.updateCompanyProfile(userId, parsed.data);
+
+    return ApiResponse.success(profile, "Company profile updated successfully");
+  } catch (error) {
+    if (error instanceof AppError) {
+      return ApiResponse.error(error.message, error.statusCode, error.errors);
+    }
+
+    console.error("[Update Company Profile Error]", error);
+    return ApiResponse.error("Internal server error", 500);
+  }
+}