riseup-squad18/supabase/functions/notifications-confirm/index.ts

import { serve } from "https://deno.land/std@0.168.0/http/server.ts";
import { mydb } from "../../lib/mySupabase.ts";
import { corsHeaders, jsonResponse, errorResponse } from "../../lib/utils.ts";
import { validateAuth } from "../../lib/auth.ts";

/**
 * POST /notifications/confirm
 * Confirmar leitura/recebimento de notificação
 * 
 * Body:
 * {
 *   notification_id: uuid,
 *   read_at?: timestamptz,
 *   clicked?: boolean
 * }
 * 
 * Returns:
 * {
 *   success: boolean,
 *   notification_id: uuid,
 *   confirmed_at: timestamptz
 * }
 */

serve(async (req) => {
  if (req.method === "OPTIONS") {
    return new Response("ok", { headers: corsHeaders() });
  }

  try {
    const auth = await validateAuth(req);
    if (!auth) {
      return errorResponse("Não autorizado", 401);
    }

    if (req.method !== "POST") {
      return errorResponse("Method not allowed", 405);
    }

    const body = await req.json();
    const { notification_id, read_at, clicked } = body;

    // Atualizar notificação
    const res = await mydb
      .from("notifications_queue")
      .update({
        status: "sent",
        sent_at: read_at || new Date().toISOString(),
      })
      .eq("id", notification_id)
      .select();

    if (res.error) {
      return errorResponse(res.error.message);
    }

    // Registrar em telemetria
    if (clicked) {
      await mydb.from("telemetry").insert({
        event_name: "notification_clicked",
        event_category: "engagement",
        user_id: auth.userId,
        properties: { notification_id },
      });
    }

    // Audit log
    await mydb.from("audit_log").insert({
      user_id: auth.userId,
      action: "confirm_notification",
      target_type: "notification",
      target_id: notification_id,
      payload: { clicked },
    });

    return jsonResponse({
      success: true,
      notification_id,
      confirmed_at: new Date().toISOString(),
    });
  } catch (error: unknown) {
    console.error("[confirm]", error);
    const err = error as Error;
    return errorResponse(err.message, 500);
  }
});