Skip to Content
Living documentation — last reviewed 2026-05-28
FeaturesPaymentsPayments — Code Map

Payments — Code Map

API — apps/api/src/payments/

Module + DI

  • payments.module.ts — wires all services, adapters, controllers. onModuleInit registers each provider into PaymentProviderRegistry.

Providers (providers/)

  • payment-provider.registry.tsMap<PaymentProviderType, PaymentProviderAdapter> with register/get/getOrThrow/list.
  • cardcom.provider.ts — LowProfile/Create + GetLpResult + ChargeWithToken. No webhook signature. getRefundCapability() → 'manual'.
  • icredit.provider.ts — Rivhit hosted page. GroupPrivateToken body signature.
  • meshulam.provider.ts — Light-API iframe + JSON IPN. webhookKey === credentials.apiKey signature.
  • morning.provider.ts — Single-URL Morning webhook (?org=…). Signature TBD (:941). Issues חשבונית/קבלה automatically.
  • tranzila.provider.ts — Stub-grade adapter; signature returns true.

Services (services/)

  • payment.service.ts — orchestrator. createHostedPayment, createCourseHostedPayment, charge, createRecurring, refund (capability switch), completeManualRefundTask, verifyAndActivateReturn, sendPaymentReceipt.
  • payment-transaction.service.ts — CRUD on payment_transactions. upsertPending, completePendingBySubscriptionId, findByProviderTransactionId.
  • payment-provider-config.service.ts — encrypted credential CRUD on payment_provider_configs; redacted reads.
  • payment-provider-clients.service.tspayment_provider_clients upserts (Morning client linkage).
  • credential-encryption.service.ts — AES-256-GCM round trip. Key from PAYMENT_CREDENTIALS_ENCRYPTION_KEY (32-byte hex).
  • webhook-processing.service.ts — dispatches payment.completed | payment.failed | subscription.renewed | subscription.cancelled | refund.completed | client.created. Cross-org guard on course entitlements (:215, :362).
  • recurring-charge.service.ts — daily 02:00 UTC cron. FOR UPDATE SKIP LOCKED sweep, charge-then-update, debt promotion at 3 fails.
  • payment-method.service.tsreplacePaymentMethod (deactivate old, insert new), getActivePaymentMethod.
  • debt.service.tsclearDebt(subscriptionId) charges the accumulated debtAmountInCents and zeroes it.
  • payment-analytics.service.ts — KPIs (collected this month, MRR snapshot).
  • payment-monitoring.service.ts — drains the observability event bus into Sentry breadcrumbs.
  • payment-observability.service.ts — typed emit(eventName, payload) interface; the central spine for all payment telemetry.

Controllers (controllers/)

  • payment.controller.tsGET/POST /organizations/:orgId/payments[…]. Member-facing list, refund, refund-task complete, verify-return, transaction detail.
  • payment-webhook.controller.ts@Public path-style and query-style webhook entry points.
  • payment-provider-config.controller.tsGET/POST/PATCH/DELETE /organizations/:orgId/payment-config.
  • card-registration.controller.ts — admin-initiates-card-on-file for a member, plus member-side equivalents.
  • payment-analytics.controller.tsGET /organizations/:orgId/payment-analytics/*.
  • invoicing.controller.ts/organizations/:orgId/invoicing/* proxy onto the provider’s listDocuments / getDocument adapter methods.

DTOs (dto/)

  • refund.dto.ts{ amountInCents?, reason? }.
  • configure-provider.dto.ts{ provider, credentials, config? } + update variant.

Shared — libs/shared/src/lib/

  • schemas/payment.schema.ts — Zod schemas for PaymentTransactionResponse, refund DTOs, transaction filters.
  • interfaces/payment-provider.ts (canonical PaymentProviderAdapter contract, ChargeRequest, RefundRequest, WebhookEvent, RefundCapability, ClientInfo, etc.).
  • constants/platform-tiers.tstierHasFeature consumed by RequiresFeature.

DB — libs/db/src/lib/schema/

  • payments.tsplans, subscriptions, member_payment_methods, payment_provider_configs, payment_transactions, invoicing_configs, payment_provider_clients, cancellation_requests.
  • enums.tspaymentProvider, planType, planInterval, subscriptionStatus, transactionStatus, transactionType, cancellationRequestStatus, taskType (includes manual_refund, cancellation_review).

Web — apps/web/src/

  • components/payments/ — owner dashboard widgets: transactions-table.tsx, kpi-cards.tsx, payment-tabs.tsx, refund-task-complete-dialog.tsx, cancellation-requests-list.tsx, cancellations-widget.tsx, recurring-charges-table.tsx, documents-table.tsx, payments-data-table.tsx, summary-detail-toggle.tsx, date-range-filter.tsx.
  • components/subscriptions/cancel-subscription-dialog.tsx — member self-cancel flow.
  • components/member/plan-card.tsx — member-facing plan/subscription summary.
  • app/[lang]/(protected)/dashboard/payments/ — owner payment console.
  • app/[lang]/(protected)/dashboard/settings/checkout-return/page.tsx — Cardcom return page; calls verify-checkout for platform-billing.
  • app/[lang]/buy/courses/[id]/page.tsx — public course buy page (handles Clerk email-code flow). See courses/code-map.md.

Tests

  • apps/api/src/payments/services/refund-flow.int.spec.ts — end-to-end refund integration test.
  • apps/api/src/payments/services/payment-transaction.service.unit.spec.ts
  • apps/api/src/payments/services/credential-encryption.service.unit.spec.ts
  • apps/api/src/payments/providers/*.unit.spec.ts — per-provider adapter contract tests.
  • apps/api/src/subscriptions/cancellation-flow.int.spec.ts — cancellation-request + refund handshake.

Env

  • PAYMENT_CREDENTIALS_ENCRYPTION_KEY — 64-char hex (32 bytes) AES-256-GCM key.
  • API_BASE_URL — used to construct webhook URLs (payment.service.ts:128).
  • FRONTEND_URL — used for cancellation-request review links.
  • Cardcom platform terminal: PLATFORM_BILLING_TERMINAL_NUMBER, PLATFORM_BILLING_API_NAME, PLATFORM_BILLING_API_PASSWORD (see platform-billing/).
Payments — BehaviorPayments — Data Model