Fix/party invitation ci test mutation

apps/backend/src/migrations/1780262000000-ImplementFourFeatures.ts

@@ -1,18 +1,30 @@
-import { MigrationInterface, QueryRunner } from "typeorm";
+import { MigrationInterface, QueryRunner } from 'typeorm';
 
 export class ImplementFourFeatures1780262000000 implements MigrationInterface {
-    public async up(queryRunner: QueryRunner): Promise<void> {
-        // Add new fields to User entity
-        await queryRunner.query(`ALTER TABLE "users" ADD COLUMN "displayName" varchar(100)`);
-        await queryRunner.query(`ALTER TABLE "users" ADD COLUMN "email" varchar(255)`);
-        await queryRunner.query(`ALTER TABLE "users" ADD COLUMN "emailVerified" boolean NOT NULL DEFAULT false`);
-        await queryRunner.query(`ALTER TABLE "users" ADD COLUMN "avatarUrl" varchar(500)`);
-        await queryRunner.query(`ALTER TABLE "users" ADD COLUMN "bio" text`);
-        await queryRunner.query(`ALTER TABLE "users" ADD COLUMN "preferredAsset" varchar(20) NOT NULL DEFAULT 'XLM'`);
-        await queryRunner.query(`CREATE UNIQUE INDEX IF NOT EXISTS "IDX_users_email" ON "users" ("email") WHERE "email" IS NOT NULL`);
-
-        // Create EmailVerification table
-        await queryRunner.query(`
+  public async up(queryRunner: QueryRunner): Promise<void> {
+    // Add new fields to User entity
+    await queryRunner.query(
+      `ALTER TABLE "users" ADD COLUMN "displayName" varchar(100)`,
+    );
+    await queryRunner.query(
+      `ALTER TABLE "users" ADD COLUMN "email" varchar(255)`,
+    );
+    await queryRunner.query(
+      `ALTER TABLE "users" ADD COLUMN "emailVerified" boolean NOT NULL DEFAULT false`,
+    );
+    await queryRunner.query(
+      `ALTER TABLE "users" ADD COLUMN "avatarUrl" varchar(500)`,
+    );
+    await queryRunner.query(`ALTER TABLE "users" ADD COLUMN "bio" text`);
+    await queryRunner.query(
+      `ALTER TABLE "users" ADD COLUMN "preferredAsset" varchar(20) NOT NULL DEFAULT 'XLM'`,
+    );
+    await queryRunner.query(
+      `CREATE UNIQUE INDEX IF NOT EXISTS "IDX_users_email" ON "users" ("email") WHERE "email" IS NOT NULL`,
+    );
+
+    // Create EmailVerification table
+    await queryRunner.query(`
             CREATE TABLE "email_verifications" (
                 "id" uuid NOT NULL DEFAULT uuid_generate_v4(),
                 "userId" uuid NOT NULL,
@@ -24,34 +36,48 @@ export class ImplementFourFeatures1780262000000 implements MigrationInterface {
                 CONSTRAINT "UQ_email_verifications_token" UNIQUE ("token")
             )
         `);
-        await queryRunner.query(`ALTER TABLE "email_verifications" ADD CONSTRAINT "FK_email_verifications_userId" FOREIGN KEY ("userId") REFERENCES "users"("id") ON DELETE CASCADE`);
-
-        // Add new fields to Escrow entity
-        await queryRunner.query(`ALTER TABLE "escrows" ADD COLUMN "releasedAmount" numeric(18,7) NOT NULL DEFAULT 0`);
-
-        // Add new fields to Condition entity
-        await queryRunner.query(`ALTER TABLE "escrow_conditions" ADD COLUMN "isReleased" boolean NOT NULL DEFAULT false`);
-        await queryRunner.query(`ALTER TABLE "escrow_conditions" ADD COLUMN "releasedAt" TIMESTAMP`);
-    }
-
-    public async down(queryRunner: QueryRunner): Promise<void> {
-        // Drop new columns from Condition entity
-        await queryRunner.query(`ALTER TABLE "escrow_conditions" DROP COLUMN "releasedAt"`);
-        await queryRunner.query(`ALTER TABLE "escrow_conditions" DROP COLUMN "isReleased"`);
-
-        // Drop new columns from Escrow entity
-        await queryRunner.query(`ALTER TABLE "escrows" DROP COLUMN "releasedAmount"`);
-
-        // Drop EmailVerification table
-        await queryRunner.query(`DROP TABLE "email_verifications"`);
-
-        // Drop new columns from User entity
-        await queryRunner.query(`DROP INDEX IF EXISTS "IDX_users_email"`);
-        await queryRunner.query(`ALTER TABLE "users" DROP COLUMN "preferredAsset"`);
-        await queryRunner.query(`ALTER TABLE "users" DROP COLUMN "bio"`);
-        await queryRunner.query(`ALTER TABLE "users" DROP COLUMN "avatarUrl"`);
-        await queryRunner.query(`ALTER TABLE "users" DROP COLUMN "emailVerified"`);
-        await queryRunner.query(`ALTER TABLE "users" DROP COLUMN "email"`);
-        await queryRunner.query(`ALTER TABLE "users" DROP COLUMN "displayName"`);
-    }
+    await queryRunner.query(
+      `ALTER TABLE "email_verifications" ADD CONSTRAINT "FK_email_verifications_userId" FOREIGN KEY ("userId") REFERENCES "users"("id") ON DELETE CASCADE`,
+    );
+
+    // Add new fields to Escrow entity
+    await queryRunner.query(
+      `ALTER TABLE "escrows" ADD COLUMN "releasedAmount" numeric(18,7) NOT NULL DEFAULT 0`,
+    );
+
+    // Add new fields to Condition entity
+    await queryRunner.query(
+      `ALTER TABLE "escrow_conditions" ADD COLUMN "isReleased" boolean NOT NULL DEFAULT false`,
+    );
+    await queryRunner.query(
+      `ALTER TABLE "escrow_conditions" ADD COLUMN "releasedAt" TIMESTAMP`,
+    );
+  }
+
+  public async down(queryRunner: QueryRunner): Promise<void> {
+    // Drop new columns from Condition entity
+    await queryRunner.query(
+      `ALTER TABLE "escrow_conditions" DROP COLUMN "releasedAt"`,
+    );
+    await queryRunner.query(
+      `ALTER TABLE "escrow_conditions" DROP COLUMN "isReleased"`,
+    );
+
+    // Drop new columns from Escrow entity
+    await queryRunner.query(
+      `ALTER TABLE "escrows" DROP COLUMN "releasedAmount"`,
+    );
+
+    // Drop EmailVerification table
+    await queryRunner.query(`DROP TABLE "email_verifications"`);
+
+    // Drop new columns from User entity
+    await queryRunner.query(`DROP INDEX IF EXISTS "IDX_users_email"`);
+    await queryRunner.query(`ALTER TABLE "users" DROP COLUMN "preferredAsset"`);
+    await queryRunner.query(`ALTER TABLE "users" DROP COLUMN "bio"`);
+    await queryRunner.query(`ALTER TABLE "users" DROP COLUMN "avatarUrl"`);
+    await queryRunner.query(`ALTER TABLE "users" DROP COLUMN "emailVerified"`);
+    await queryRunner.query(`ALTER TABLE "users" DROP COLUMN "email"`);
+    await queryRunner.query(`ALTER TABLE "users" DROP COLUMN "displayName"`);
+  }
 }

apps/backend/src/migrations/1780300000000-AddRespondedAtToParty.ts

@@ -0,0 +1,15 @@
+import { MigrationInterface, QueryRunner } from 'typeorm';
+
+export class AddRespondedAtToParty1780300000000 implements MigrationInterface {
+  public async up(queryRunner: QueryRunner): Promise<void> {
+    await queryRunner.query(
+      `ALTER TABLE "escrow_parties" ADD COLUMN "respondedAt" datetime`,
+    );
+  }
+
+  public async down(queryRunner: QueryRunner): Promise<void> {
+    await queryRunner.query(
+      `ALTER TABLE "escrow_parties" DROP COLUMN "respondedAt"`,
+    );
+  }
+}

apps/backend/src/modules/auth/controllers/auth.controller.ts

@@ -79,7 +79,10 @@ export class AuthController {
     @Req() req: Request & { user: { userId: string } },
     @Body() updateProfileDto: UpdateProfileDto,
   ) {
-    const user = await this.authService.updateProfile(req.user.userId, updateProfileDto);
+    const user = await this.authService.updateProfile(
+      req.user.userId,
+      updateProfileDto,
+    );
     return {
       id: user.id,
       walletAddress: user.walletAddress,
@@ -109,7 +112,9 @@ export class AuthController {
   @Post('profile/verify-email')
   @UseGuards(AuthGuard)
   @HttpCode(HttpStatus.OK)
-  async sendEmailVerification(@Req() req: Request & { user: { userId: string } }) {
+  async sendEmailVerification(
+    @Req() req: Request & { user: { userId: string } },
+  ) {
     await this.authService.sendEmailVerification(req.user.userId);
     return { message: 'Verification email sent' };
   }

apps/backend/src/modules/auth/dto/profile.dto.ts

@@ -1,4 +1,10 @@
-import { IsBoolean, IsEmail, IsOptional, IsString, MaxLength } from 'class-validator';
+import {
+  IsBoolean,
+  IsEmail,
+  IsOptional,
+  IsString,
+  MaxLength,
+} from 'class-validator';
 
 export class UpdateProfileDto {
   @IsOptional()

apps/backend/src/modules/auth/services/auth.service.spec.ts

@@ -88,7 +88,9 @@ describe('AuthService', () => {
     userService = module.get(UserService);
     jwtService = module.get(JwtService);
     configService = module.get(ConfigService);
-    emailVerificationRepository = module.get(getRepositoryToken(EmailVerification));
+    emailVerificationRepository = module.get(
+      getRepositoryToken(EmailVerification),
+    );
     ipfsService = module.get(IpfsService);
   });
 
@@ -128,20 +130,17 @@ describe('AuthService', () => {
     it('should throw UnauthorizedException if user not found', async () => {
       userService.findByWalletAddress.mockResolvedValue(null);
 
-      await expect(
-        service.verifySignature('sig', 'GD...123'),
-      ).rejects.toThrow(UnauthorizedException);
+      await expect(service.verifySignature('sig', 'GD...123')).rejects.toThrow(
+        UnauthorizedException,
+      );
     });
 
     it('should return tokens on valid signature', async () => {
       userService.findByWalletAddress.mockResolvedValue(mockUser as any);
       userService.update.mockResolvedValue(mockUser as any);
       userService.createRefreshToken.mockResolvedValue({} as any);
 
-      const result = await service.verifySignature(
-        'sig',
-        'GD...123',
-      );
+      const result = await service.verifySignature('sig', 'GD...123');
 
       expect(result).toHaveProperty('accessToken');
       expect(result).toHaveProperty('refreshToken');

apps/backend/src/modules/auth/services/auth.service.ts

@@ -1,4 +1,8 @@
-import { Injectable, UnauthorizedException, BadRequestException } from '@nestjs/common';
+import {
+  Injectable,
+  UnauthorizedException,
+  BadRequestException,
+} from '@nestjs/common';
 import { ConfigService } from '@nestjs/config';
 import { JwtService } from '@nestjs/jwt';
 import * as crypto from 'crypto';
@@ -127,7 +131,10 @@ export class AuthService {
     return user;
   }
 
-  async updateProfile(userId: string, updateProfileDto: UpdateProfileDto): Promise<User> {
+  async updateProfile(
+    userId: string,
+    updateProfileDto: UpdateProfileDto,
+  ): Promise<User> {
     const user = await this.userService.findById(userId);
     if (!user) {
       throw new UnauthorizedException('User not found');
@@ -141,13 +148,19 @@ export class AuthService {
     return this.userService.update(userId, updateProfileDto);
   }
 
-  async uploadAvatar(userId: string, file: { buffer: Buffer; originalname: string }): Promise<User> {
+  async uploadAvatar(
+    userId: string,
+    file: { buffer: Buffer; originalname: string },
+  ): Promise<User> {
     const user = await this.userService.findById(userId);
     if (!user) {
       throw new UnauthorizedException('User not found');
     }
 
-    const cid = await this.ipfsService.uploadFile(file.buffer, file.originalname);
+    const cid = await this.ipfsService.uploadFile(
+      file.buffer,
+      file.originalname,
+    );
     const avatarUrl = this.ipfsService.getGatewayUrl(cid);
 
     return this.userService.update(userId, { avatarUrl });

apps/backend/src/modules/escrow/controllers/escrow.controller.ts

@@ -96,6 +96,17 @@ export class EscrowController {
     return this.escrowService.findOverview(userId, query);
   }
 
+  @Get('pending-invitations')
+  @ApiOperation({
+    summary:
+      'List escrows where the authenticated user has a pending party invitation',
+  })
+  async getPendingInvitations(@Request() req: AuthenticatedRequest) {
+    return this.escrowService.getPendingInvitations(
+      this.getAuthenticatedUserId(req),
+    );
+  }
+
   @Get(':id')
   @UseGuards(EscrowAccessGuard)
   async findOne(@Param('id') id: string) {
@@ -269,6 +280,40 @@ export class EscrowController {
     );
   }
 
+  @Post(':id/parties/:partyId/accept')
+  @UseGuards(EscrowAccessGuard)
+  @ApiOperation({ summary: 'Accept a party invitation for an escrow' })
+  async acceptPartyInvitation(
+    @Param('id') escrowId: string,
+    @Param('partyId') partyId: string,
+    @Request() req: AuthenticatedRequest,
+  ) {
+    const ipAddress = req.ip || req.socket?.remoteAddress;
+    return this.escrowService.acceptPartyInvitation(
+      escrowId,
+      partyId,
+      this.getAuthenticatedUserId(req),
+      ipAddress,
+    );
+  }
+
+  @Post(':id/parties/:partyId/reject')
+  @UseGuards(EscrowAccessGuard)
+  @ApiOperation({ summary: 'Reject a party invitation for an escrow' })
+  async rejectPartyInvitation(
+    @Param('id') escrowId: string,
+    @Param('partyId') partyId: string,
+    @Request() req: AuthenticatedRequest,
+  ) {
+    const ipAddress = req.ip || req.socket?.remoteAddress;
+    return this.escrowService.rejectPartyInvitation(
+      escrowId,
+      partyId,
+      this.getAuthenticatedUserId(req),
+      ipAddress,
+    );
+  }
+
   /**
    * POST /escrows/:id/dispute
    * File a dispute against an active escrow. Only a buyer or seller party may call this.

apps/backend/src/modules/escrow/entities/party.entity.ts

@@ -54,6 +54,9 @@ export class Party {
   })
   status: PartyStatus;
 
+  @Column({ type: 'datetime', nullable: true })
+  respondedAt: Date | null;
+
   @CreateDateColumn()
   createdAt: Date;
 }

apps/backend/src/modules/escrow/escrow.module.ts

@@ -16,6 +16,7 @@ import { AuthModule } from '../auth/auth.module';
 import { EscrowStellarIntegrationService } from './services/escrow-stellar-integration.service';
 import { WebhookModule } from '../webhook/webhook.module';
 import { IpfsModule } from '../ipfs/ipfs.module';
+import { NotificationsModule } from '../../notifications/notifications.module';
 import { User } from '../user/entities/user.entity';
 import { AllowedAsset } from '../assets/entities/allowed-asset.entity';
 import { EscrowLifecycleService } from './escrow-lifecycle.service';
@@ -37,6 +38,7 @@ import { EscrowQueryService } from './escrow-query.service';
     AuthModule,
     WebhookModule,
     IpfsModule,
+    NotificationsModule,
   ],
   controllers: [EscrowController, EscrowSchedulerController, EventsController],
   providers: [