admin roadmap trips ops and payment ops

server/services/payment.service.ts

@@ -381,6 +381,49 @@ export const paymentService = {
    * Auth: caller harus pastikan `userId` adalah owner booking; kita verifikasi
    * di sini lewat lookup payment → booking.userId.
    */
+  /**
+   * Admin variant `reconcileFromGateway` — skip ownership check (admin bypass).
+   * Dipakai dari `/admin/bookings/[id]` saat user lapor "sudah bayar tapi
+   * status belum update". Idempotent: aman dipanggil berulang.
+   */
+  async adminReconcile(
+    orderId: string
+  ): Promise<
+    | {
+        ok: true;
+        status:
+          | "updated"
+          | "skipped"
+          | "ignored"
+          | "booking_conflict"
+          | "not_found";
+      }
+    | { ok: false; reason: "amount_mismatch" | "not_found" }
+  > {
+    const payment = await prisma.payment.findUnique({
+      where: { externalOrderId: orderId },
+      select: { id: true },
+    });
+    if (!payment) {
+      return { ok: false, reason: "not_found" };
+    }
+
+    const status = await fetchMidtransTransactionStatus(orderId);
+    if (!status) {
+      return { ok: true, status: "not_found" };
+    }
+
+    return applyGatewayStatus({
+      order_id: status.order_id,
+      gross_amount: status.gross_amount,
+      transaction_status: status.transaction_status,
+      fraud_status: status.fraud_status ?? null,
+      transaction_id: status.transaction_id,
+      payment_type: status.payment_type,
+      rawSource: status as unknown as Prisma.InputJsonValue,
+    });
+  },
+
   async reconcileFromGateway(
     orderId: string,
     userId: string