feat: add endpoint to retrieve RSVPs for an event by host/co-host

Author: akshit1003

src/routes/inviteRoutes.ts

@@ -10,7 +10,8 @@ import {
   getEventRsvpSummary,
   getEventGuestList,
   bulkCreateInvites,
-  sendWhatsappInvite
+  sendWhatsappInvite,
+  getEventRsvps
 } from '../services/inviteService';
 import { verifyIdToken } from '../middleware/verifyIdToken';
 import { isEventHostOrCoHost } from '../services/guestService';
@@ -94,6 +95,31 @@ router.post('/bulk/:eventId', verifyIdToken, async (req: Request, res: Response)
   }
 });
 
+// Get all RSVPs for an event (host/co-host only)
+router.get('/rsvps/:eventId', verifyIdToken, async (req: Request, res: Response) => {
+  try {
+    const { eventId } = req.params;
+    const userId = req.userId;
+    if (!userId) {
+      return res.status(401).json({ message: 'Unauthorized' });
+    }
+
+    const result = await getEventRsvps(eventId, userId);
+
+    if (!result.success) {
+      if (result.error?.includes('Access denied')) {
+        return res.status(403).json({ message: result.error });
+      }
+      return res.status(400).json({ message: result.error });
+    }
+
+    res.status(200).json({ rsvps: result.rsvps });
+  } catch (error) {
+    console.error(error);
+    res.status(500).json({ message: 'Internal Server Error' });
+  }
+});
+
 // Get authenticated user's RSVP for a specific event
 router.get('/rsvp/event/:eventId', verifyIdToken, async (req: Request, res: Response) => {
   try {

src/services/inviteService.ts

@@ -965,6 +965,53 @@ export const bulkCreateInvites = async (eventId: string, invitesData: Array<{
 
 // ===== HOST/CO-HOST ENDPOINTS =====
 
+export const getEventRsvps = async (eventId: string, userId: string) => {
+  try {
+    // Verify user is host or co-host
+    const isAuthorized = await isEventHostOrCoHost(userId, eventId);
+    if (!isAuthorized) {
+      return {
+        success: false,
+        error: 'Access denied. Only hosts and co-hosts can view RSVPs.'
+      };
+    }
+
+    const guests = await prisma.guest.findMany({
+      where: { event_id: eventId },
+      include: {
+        user: {
+          select: {
+            id: true,
+            name: true,
+            mobile_number: true,
+            email: true,
+            profile_pic: true
+          }
+        },
+        group: {
+          select: {
+            id: true,
+            name: true
+          }
+        }
+      },
+      orderBy: {
+        name: 'asc'
+      }
+    });
+
+    return {
+      success: true,
+      rsvps: guests
+    };
+  } catch (error: unknown) {
+    return {
+      success: false,
+      error: error instanceof Error ? error.message : 'Failed to get event RSVPs'
+    };
+  }
+};
+
 // Get all RSVPs for a user across events (protected)
 export const getUserRsvps = async (userId: string) => {
   try {