firefrost-services/services/arbiter-3.0/src/webhooks/paymenter.js

const express = require('express');
const router = express.Router();
const db = require('../database');
const { triggerImmediateSync } = require('../sync/immediate');

const TIERS = {
  1: { name: 'Awakened', roleId: 'DISCORD_ROLE_ID_1', price: 1 },
  5: { name: 'Elemental', roleId: 'DISCORD_ROLE_ID_5', price: 5 },
  10: { name: 'Knight', roleId: 'DISCORD_ROLE_ID_10', price: 10 },
  15: { name: 'Master', roleId: 'DISCORD_ROLE_ID_15', price: 15 },
  20: { name: 'Legend', roleId: 'DISCORD_ROLE_ID_20', price: 20 },
  499: { name: 'Sovereign', roleId: 'DISCORD_ROLE_ID_499', price: 499 }
};

router.post('/paymenter', async (req, res) => {
  const payload = req.body;
  
  if (req.headers['authorization'] !== process.env.PAYMENTER_WEBHOOK_SECRET) {
    return res.status(401).send('Unauthorized');
  }

  const discordId = payload.discord_id;
  const tierLevel = payload.tier_level;
  const eventType = payload.event; 

  try {
    if (eventType === 'subscription_created' || eventType === 'payment_success') {
      await db.query(
        `INSERT INTO subscriptions (discord_id, tier_level, status) 
         VALUES ($1, $2, 'active') 
         ON CONFLICT (discord_id) DO UPDATE SET tier_level = $2, status = 'active'`,
        [discordId, tierLevel]
      );
      // NOTE: In production, you would fetch the GuildMember and assign TIERS[tierLevel].roleId here
    } 
    else if (eventType === 'subscription_cancelled') {
      await db.query(
        `UPDATE subscriptions SET status = 'grace_period' WHERE discord_id = $1`,
        [discordId]
      );
    }
    
    // Sync after DB updates
    triggerImmediateSync();
    res.status(200).send('Webhook processed');

  } catch (error) {
    console.error('Webhook processing error:', error);
    res.status(500).send('Internal Server Error');
  }
});

module.exports = router;