berrypod/lib/berrypod_web/controllers/checkout_controller.ex

defmodule BerrypodWeb.CheckoutController do
  use BerrypodWeb, :controller

  alias Berrypod.{Analytics, Cart}
  alias Berrypod.Orders
  alias Berrypod.Shipping

  require Logger

  def create(conn, _params) do
    cart_items = Cart.get_from_session(get_session(conn))
    hydrated = Cart.hydrate(cart_items)

    if hydrated == [] do
      conn
      |> put_flash(:error, "Your basket is empty")
      |> redirect(to: ~p"/cart")
    else
      track_checkout_start(conn)
      create_checkout(conn, hydrated)
    end
  end

  defp create_checkout(conn, hydrated_items) do
    # Create a pending order with price snapshots
    case Orders.create_order(%{items: hydrated_items}) do
      {:ok, order} ->
        create_stripe_session(conn, order, hydrated_items)

      {:error, _changeset} ->
        Logger.error("Failed to create order")

        conn
        |> put_flash(:error, "Something went wrong. Please try again.")
        |> redirect(to: ~p"/cart")
    end
  end

  defp create_stripe_session(conn, order, hydrated_items) do
    line_items =
      Enum.map(hydrated_items, fn item ->
        product_name =
          if item.variant,
            do: "#{item.name} — #{item.variant}",
            else: item.name

        %{
          price_data: %{
            currency: "gbp",
            unit_amount: item.price,
            product_data: %{name: product_name}
          },
          quantity: item.quantity
        }
      end)

    base_url = BerrypodWeb.Endpoint.url()

    params =
      %{
        mode: "payment",
        line_items: line_items,
        success_url: "#{base_url}/checkout/success?session_id={CHECKOUT_SESSION_ID}",
        cancel_url: "#{base_url}/cart",
        metadata: %{"order_id" => order.id},
        shipping_address_collection: %{
          allowed_countries: ["GB", "US", "CA", "AU", "DE", "FR", "NL", "IE", "AT", "BE"]
        }
      }
      |> maybe_add_shipping_options(hydrated_items)
      |> maybe_add_cart_recovery_notice()

    case Stripe.Checkout.Session.create(params) do
      {:ok, session} ->
        {:ok, _order} = Orders.set_stripe_session(order, session.id)

        conn
        |> redirect(external: session.url)

      {:error, %Stripe.Error{message: message}} ->
        Logger.error("Stripe session creation failed: #{message}")
        Orders.mark_failed(order)

        conn
        |> put_flash(:error, "Payment setup failed. Please try again.")
        |> redirect(to: ~p"/cart")

      {:error, reason} ->
        Logger.error("Stripe session creation failed: #{inspect(reason)}")
        Orders.mark_failed(order)

        conn
        |> put_flash(:error, "Payment setup failed. Please try again.")
        |> redirect(to: ~p"/cart")
    end
  end

  defp maybe_add_cart_recovery_notice(params) do
    if Berrypod.Settings.abandoned_cart_recovery_enabled?() do
      Map.put(params, :custom_text, %{
        after_submit: %{
          message:
            "If your payment doesn't complete, we may send you one follow-up email. You can unsubscribe at any time."
        }
      })
    else
      params
    end
  end

  defp maybe_add_shipping_options(params, hydrated_items) do
    gb_result = Shipping.calculate_for_cart(hydrated_items, "GB")
    us_result = Shipping.calculate_for_cart(hydrated_items, "US")

    options =
      []
      |> maybe_add_option(gb_result, "UK delivery", 5, 10)
      |> maybe_add_option(us_result, "International delivery", 10, 20)

    if options == [] do
      params
    else
      Map.put(params, :shipping_options, options)
    end
  end

  defp maybe_add_option(options, {:ok, cost}, name, min_days, max_days) when cost > 0 do
    option = %{
      shipping_rate_data: %{
        type: "fixed_amount",
        display_name: name,
        fixed_amount: %{amount: cost, currency: "gbp"},
        delivery_estimate: %{
          minimum: %{unit: "business_day", value: min_days},
          maximum: %{unit: "business_day", value: max_days}
        }
      }
    }

    options ++ [option]
  end

  defp maybe_add_option(options, _result, _name, _min, _max), do: options

  defp track_checkout_start(conn) do
    visitor_hash = get_session(conn, "analytics_visitor_hash")

    if visitor_hash do
      Analytics.track_event("checkout_start", %{
        pathname: "/checkout",
        visitor_hash: visitor_hash,
        browser: get_session(conn, "analytics_browser"),
        os: get_session(conn, "analytics_os"),
        screen_size: get_session(conn, "analytics_screen_size"),
        country_code: get_session(conn, "country_code")
      })
    end
  end
end
rename project from SimpleshopTheme to Berrypod All modules, configs, paths, and references updated. 836 tests pass, zero warnings. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-18 21:23:15 +00:00			`defmodule BerrypodWeb.CheckoutController do`
			`use BerrypodWeb, :controller`
feat: add Stripe checkout, order persistence, and webhook handling Stripe-hosted Checkout integration with full order lifecycle: - stripity_stripe ~> 3.2 with sandbox/prod config via env vars - Order and OrderItem schemas with price snapshots at purchase time - CheckoutController creates pending order then redirects to Stripe - StripeWebhookController verifies signatures and confirms payment - Success page with real-time PubSub updates from webhook - Shop flash messages for checkout error feedback - Cart cleared after successful payment Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-07 08:30:17 +00:00
add privacy-first analytics with progressive event collection Three-layer pipeline: Plug for all HTTP requests (no JS needed), LiveView hook for SPA navigations, JS hook for screen width. ETS-backed buffer batches writes to SQLite every 10s. Daily-rotating salt for visitor hashing. Includes admin dashboard with date ranges, visitor trends, top pages, sources, devices, and e-commerce conversion funnel. Oban cron for 12-month data retention. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-22 12:50:55 +00:00			`alias Berrypod.{Analytics, Cart}`
rename project from SimpleshopTheme to Berrypod All modules, configs, paths, and references updated. 836 tests pass, zero warnings. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-18 21:23:15 +00:00			`alias Berrypod.Orders`
			`alias Berrypod.Shipping`
feat: add Stripe checkout, order persistence, and webhook handling Stripe-hosted Checkout integration with full order lifecycle: - stripity_stripe ~> 3.2 with sandbox/prod config via env vars - Order and OrderItem schemas with price snapshots at purchase time - CheckoutController creates pending order then redirects to Stripe - StripeWebhookController verifies signatures and confirms payment - Success page with real-time PubSub updates from webhook - Shop flash messages for checkout error feedback - Cart cleared after successful payment Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-07 08:30:17 +00:00
			`require Logger`

			`def create(conn, _params) do`
			`cart_items = Cart.get_from_session(get_session(conn))`
			`hydrated = Cart.hydrate(cart_items)`

add CI pipeline with credo and dialyzer mix ci alias: compile --warning-as-errors, format --check-formatted, credo, dialyzer, test. Credo configured with sensible defaults. Dialyzer ignore file for false positives (Stripe types, Mix tasks, ExUnit internals). Credo fixes: map_join, filter consolidation, nesting extraction, cond→if simplification. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-08 15:19:42 +00:00			`if hydrated == [] do`
			`conn`
			`\|> put_flash(:error, "Your basket is empty")`
			`\|> redirect(to: ~p"/cart")`
			`else`
add privacy-first analytics with progressive event collection Three-layer pipeline: Plug for all HTTP requests (no JS needed), LiveView hook for SPA navigations, JS hook for screen width. ETS-backed buffer batches writes to SQLite every 10s. Daily-rotating salt for visitor hashing. Includes admin dashboard with date ranges, visitor trends, top pages, sources, devices, and e-commerce conversion funnel. Oban cron for 12-month data retention. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-22 12:50:55 +00:00			`track_checkout_start(conn)`
add CI pipeline with credo and dialyzer mix ci alias: compile --warning-as-errors, format --check-formatted, credo, dialyzer, test. Credo configured with sensible defaults. Dialyzer ignore file for false positives (Stripe types, Mix tasks, ExUnit internals). Credo fixes: map_join, filter consolidation, nesting extraction, cond→if simplification. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-08 15:19:42 +00:00			`create_checkout(conn, hydrated)`
feat: add Stripe checkout, order persistence, and webhook handling Stripe-hosted Checkout integration with full order lifecycle: - stripity_stripe ~> 3.2 with sandbox/prod config via env vars - Order and OrderItem schemas with price snapshots at purchase time - CheckoutController creates pending order then redirects to Stripe - StripeWebhookController verifies signatures and confirms payment - Success page with real-time PubSub updates from webhook - Shop flash messages for checkout error feedback - Cart cleared after successful payment Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-07 08:30:17 +00:00			`end`
			`end`

			`defp create_checkout(conn, hydrated_items) do`
			`# Create a pending order with price snapshots`
			`case Orders.create_order(%{items: hydrated_items}) do`
			`{:ok, order} ->`
			`create_stripe_session(conn, order, hydrated_items)`

			`{:error, _changeset} ->`
			`Logger.error("Failed to create order")`

			`conn`
			`\|> put_flash(:error, "Something went wrong. Please try again.")`
			`\|> redirect(to: ~p"/cart")`
			`end`
			`end`

			`defp create_stripe_session(conn, order, hydrated_items) do`
			`line_items =`
			`Enum.map(hydrated_items, fn item ->`
			`product_name =`
			`if item.variant,`
			`do: "#{item.name} — #{item.variant}",`
			`else: item.name`

			`%{`
			`price_data: %{`
			`currency: "gbp",`
			`unit_amount: item.price,`
			`product_data: %{name: product_name}`
			`},`
			`quantity: item.quantity`
			`}`
			`end)`

rename project from SimpleshopTheme to Berrypod All modules, configs, paths, and references updated. 836 tests pass, zero warnings. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-18 21:23:15 +00:00			`base_url = BerrypodWeb.Endpoint.url()`
feat: add Stripe checkout, order persistence, and webhook handling Stripe-hosted Checkout integration with full order lifecycle: - stripity_stripe ~> 3.2 with sandbox/prod config via env vars - Order and OrderItem schemas with price snapshots at purchase time - CheckoutController creates pending order then redirects to Stripe - StripeWebhookController verifies signatures and confirms payment - Success page with real-time PubSub updates from webhook - Shop flash messages for checkout error feedback - Cart cleared after successful payment Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-07 08:30:17 +00:00
add shipping costs with live exchange rates and country detection Shipping rates fetched from Printify during product sync, converted to GBP at sync time using frankfurter.app ECB exchange rates with 5% buffer. Cached in shipping_rates table per blueprint/provider/country. Cart page shows shipping estimate with country selector (detected from Accept-Language header, persisted in cookie). Stripe Checkout includes shipping_options for UK domestic and international delivery. Order shipping_cost extracted from Stripe on payment. ScheduledSyncWorker runs every 6 hours via Oban cron to keep rates and exchange rates fresh. REST_OF_THE_WORLD fallback covers unlisted countries. 780 tests, 0 failures. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-14 10:48:00 +00:00			`params =`
			`%{`
			`mode: "payment",`
			`line_items: line_items,`
			`success_url: "#{base_url}/checkout/success?session_id={CHECKOUT_SESSION_ID}",`
			`cancel_url: "#{base_url}/cart",`
			`metadata: %{"order_id" => order.id},`
			`shipping_address_collection: %{`
			`allowed_countries: ["GB", "US", "CA", "AU", "DE", "FR", "NL", "IE", "AT", "BE"]`
			`}`
feat: add Stripe checkout, order persistence, and webhook handling Stripe-hosted Checkout integration with full order lifecycle: - stripity_stripe ~> 3.2 with sandbox/prod config via env vars - Order and OrderItem schemas with price snapshots at purchase time - CheckoutController creates pending order then redirects to Stripe - StripeWebhookController verifies signatures and confirms payment - Success page with real-time PubSub updates from webhook - Shop flash messages for checkout error feedback - Cart cleared after successful payment Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-07 08:30:17 +00:00			`}`
add shipping costs with live exchange rates and country detection Shipping rates fetched from Printify during product sync, converted to GBP at sync time using frankfurter.app ECB exchange rates with 5% buffer. Cached in shipping_rates table per blueprint/provider/country. Cart page shows shipping estimate with country selector (detected from Accept-Language header, persisted in cookie). Stripe Checkout includes shipping_options for UK domestic and international delivery. Order shipping_cost extracted from Stripe on payment. ScheduledSyncWorker runs every 6 hours via Oban cron to keep rates and exchange rates fresh. REST_OF_THE_WORLD fallback covers unlisted countries. 780 tests, 0 failures. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-14 10:48:00 +00:00			`\|> maybe_add_shipping_options(hydrated_items)`
add abandoned cart recovery When a Stripe checkout session expires without payment, if the customer entered their email, we record an AbandonedCart and schedule a single plain-text recovery email (1h delay via Oban). Privacy design: - feature is off by default; shop owner opts in via admin settings - only contacts customers who entered their email at Stripe checkout - single email, never more (emailed_at timestamp gate) - suppression list blocks repeat contact; one-click unsubscribe via signed token (/unsubscribe/:token) - records pruned after 30 days (nightly Oban cron) - no tracking pixels, no redirected links, no HTML Legal notes: - custom_text added to Stripe session footer when recovery is on - UK PECR soft opt-in; EU legitimate interests both satisfied by this design Files: - migration: abandoned_carts + email_suppressions tables - schemas: AbandonedCart, EmailSuppression - context: Orders.create_abandoned_cart, check_suppression, add_suppression, has_recent_paid_order?, get_abandoned_cart_by_session, mark_abandoned_cart_emailed - workers: AbandonedCartEmailWorker (checkout queue), AbandonedCartPruneWorker (cron) - notifier: OrderNotifier.deliver_cart_recovery/3 - webhook: extended checkout.session.expired handler - controller: UnsubscribeController, admin settings toggle - tests: 28 new tests across context, workers, and controller Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> 2026-02-24 10:02:37 +00:00			`\|> maybe_add_cart_recovery_notice()`
feat: add Stripe checkout, order persistence, and webhook handling Stripe-hosted Checkout integration with full order lifecycle: - stripity_stripe ~> 3.2 with sandbox/prod config via env vars - Order and OrderItem schemas with price snapshots at purchase time - CheckoutController creates pending order then redirects to Stripe - StripeWebhookController verifies signatures and confirms payment - Success page with real-time PubSub updates from webhook - Shop flash messages for checkout error feedback - Cart cleared after successful payment Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-07 08:30:17 +00:00
			`case Stripe.Checkout.Session.create(params) do`
			`{:ok, session} ->`
			`{:ok, _order} = Orders.set_stripe_session(order, session.id)`

			`conn`
			`\|> redirect(external: session.url)`

			`{:error, %Stripe.Error{message: message}} ->`
			`Logger.error("Stripe session creation failed: #{message}")`
			`Orders.mark_failed(order)`

			`conn`
			`\|> put_flash(:error, "Payment setup failed. Please try again.")`
			`\|> redirect(to: ~p"/cart")`

			`{:error, reason} ->`
			`Logger.error("Stripe session creation failed: #{inspect(reason)}")`
			`Orders.mark_failed(order)`

			`conn`
			`\|> put_flash(:error, "Payment setup failed. Please try again.")`
			`\|> redirect(to: ~p"/cart")`
			`end`
			`end`
add shipping costs with live exchange rates and country detection Shipping rates fetched from Printify during product sync, converted to GBP at sync time using frankfurter.app ECB exchange rates with 5% buffer. Cached in shipping_rates table per blueprint/provider/country. Cart page shows shipping estimate with country selector (detected from Accept-Language header, persisted in cookie). Stripe Checkout includes shipping_options for UK domestic and international delivery. Order shipping_cost extracted from Stripe on payment. ScheduledSyncWorker runs every 6 hours via Oban cron to keep rates and exchange rates fresh. REST_OF_THE_WORLD fallback covers unlisted countries. 780 tests, 0 failures. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-14 10:48:00 +00:00
add abandoned cart recovery When a Stripe checkout session expires without payment, if the customer entered their email, we record an AbandonedCart and schedule a single plain-text recovery email (1h delay via Oban). Privacy design: - feature is off by default; shop owner opts in via admin settings - only contacts customers who entered their email at Stripe checkout - single email, never more (emailed_at timestamp gate) - suppression list blocks repeat contact; one-click unsubscribe via signed token (/unsubscribe/:token) - records pruned after 30 days (nightly Oban cron) - no tracking pixels, no redirected links, no HTML Legal notes: - custom_text added to Stripe session footer when recovery is on - UK PECR soft opt-in; EU legitimate interests both satisfied by this design Files: - migration: abandoned_carts + email_suppressions tables - schemas: AbandonedCart, EmailSuppression - context: Orders.create_abandoned_cart, check_suppression, add_suppression, has_recent_paid_order?, get_abandoned_cart_by_session, mark_abandoned_cart_emailed - workers: AbandonedCartEmailWorker (checkout queue), AbandonedCartPruneWorker (cron) - notifier: OrderNotifier.deliver_cart_recovery/3 - webhook: extended checkout.session.expired handler - controller: UnsubscribeController, admin settings toggle - tests: 28 new tests across context, workers, and controller Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> 2026-02-24 10:02:37 +00:00			`defp maybe_add_cart_recovery_notice(params) do`
			`if Berrypod.Settings.abandoned_cart_recovery_enabled?() do`
			`Map.put(params, :custom_text, %{`
			`after_submit: %{`
			`message:`
			`"If your payment doesn't complete, we may send you one follow-up email. You can unsubscribe at any time."`
			`}`
			`})`
			`else`
			`params`
			`end`
			`end`

add shipping costs with live exchange rates and country detection Shipping rates fetched from Printify during product sync, converted to GBP at sync time using frankfurter.app ECB exchange rates with 5% buffer. Cached in shipping_rates table per blueprint/provider/country. Cart page shows shipping estimate with country selector (detected from Accept-Language header, persisted in cookie). Stripe Checkout includes shipping_options for UK domestic and international delivery. Order shipping_cost extracted from Stripe on payment. ScheduledSyncWorker runs every 6 hours via Oban cron to keep rates and exchange rates fresh. REST_OF_THE_WORLD fallback covers unlisted countries. 780 tests, 0 failures. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-14 10:48:00 +00:00			`defp maybe_add_shipping_options(params, hydrated_items) do`
			`gb_result = Shipping.calculate_for_cart(hydrated_items, "GB")`
			`us_result = Shipping.calculate_for_cart(hydrated_items, "US")`

			`options =`
			`[]`
			`\|> maybe_add_option(gb_result, "UK delivery", 5, 10)`
			`\|> maybe_add_option(us_result, "International delivery", 10, 20)`

			`if options == [] do`
			`params`
			`else`
			`Map.put(params, :shipping_options, options)`
			`end`
			`end`

			`defp maybe_add_option(options, {:ok, cost}, name, min_days, max_days) when cost > 0 do`
			`option = %{`
			`shipping_rate_data: %{`
			`type: "fixed_amount",`
			`display_name: name,`
			`fixed_amount: %{amount: cost, currency: "gbp"},`
			`delivery_estimate: %{`
			`minimum: %{unit: "business_day", value: min_days},`
			`maximum: %{unit: "business_day", value: max_days}`
			`}`
			`}`
			`}`

			`options ++ [option]`
			`end`

			`defp maybe_add_option(options, _result, _name, _min, _max), do: options`
add privacy-first analytics with progressive event collection Three-layer pipeline: Plug for all HTTP requests (no JS needed), LiveView hook for SPA navigations, JS hook for screen width. ETS-backed buffer batches writes to SQLite every 10s. Daily-rotating salt for visitor hashing. Includes admin dashboard with date ranges, visitor trends, top pages, sources, devices, and e-commerce conversion funnel. Oban cron for 12-month data retention. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-22 12:50:55 +00:00
			`defp track_checkout_start(conn) do`
			`visitor_hash = get_session(conn, "analytics_visitor_hash")`

			`if visitor_hash do`
			`Analytics.track_event("checkout_start", %{`
			`pathname: "/checkout",`
include browser/os/screen_size in e-commerce analytics events Event call sites (product_view, add_to_cart, checkout_start, purchase) were only passing visitor_hash and pathname, leaving browser, OS, screen size and country nil. Add AnalyticsHook.attrs/1 helper to extract common analytics fields from socket assigns, and use it in all LiveView event call sites. Checkout controller reads the same fields from the session. Also fix plug analytics test to clear stale events before assertions. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-22 21:13:47 +00:00			`visitor_hash: visitor_hash,`
			`browser: get_session(conn, "analytics_browser"),`
			`os: get_session(conn, "analytics_os"),`
			`screen_size: get_session(conn, "analytics_screen_size"),`
			`country_code: get_session(conn, "country_code")`
add privacy-first analytics with progressive event collection Three-layer pipeline: Plug for all HTTP requests (no JS needed), LiveView hook for SPA navigations, JS hook for screen width. ETS-backed buffer batches writes to SQLite every 10s. Daily-rotating salt for visitor hashing. Includes admin dashboard with date ranges, visitor trends, top pages, sources, devices, and e-commerce conversion funnel. Oban cron for 12-month data retention. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-22 12:50:55 +00:00			`})`
			`end`
			`end`
feat: add Stripe checkout, order persistence, and webhook handling Stripe-hosted Checkout integration with full order lifecycle: - stripity_stripe ~> 3.2 with sandbox/prod config via env vars - Order and OrderItem schemas with price snapshots at purchase time - CheckoutController creates pending order then redirects to Stripe - StripeWebhookController verifies signatures and confirms payment - Success page with real-time PubSub updates from webhook - Shop flash messages for checkout error feedback - Cart cleared after successful payment Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-07 08:30:17 +00:00			`end`