npm - @knotpad/app - Versions diffs - 0.1.0 - Mend

@knotpad/app 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (342) hide show

package/README.md +167 -0
package/app/(app)/calendar/page.tsx +57 -0
package/app/(app)/error.tsx +35 -0
package/app/(app)/graph/page.tsx +32 -0
package/app/(app)/guide/page.tsx +21 -0
package/app/(app)/kanban/loading.tsx +24 -0
package/app/(app)/kanban/page.tsx +59 -0
package/app/(app)/layout.tsx +122 -0
package/app/(app)/list/loading.tsx +21 -0
package/app/(app)/list/page.tsx +137 -0
package/app/(app)/loading.tsx +18 -0
package/app/(app)/notes/[noteId]/page.tsx +84 -0
package/app/(app)/notes/layout.tsx +30 -0
package/app/(app)/notes/page.tsx +39 -0
package/app/(app)/page.tsx +5 -0
package/app/(app)/settings/agent-token/page.tsx +59 -0
package/app/(app)/settings/backup/page.tsx +49 -0
package/app/(app)/settings/billing/page.tsx +53 -0
package/app/(app)/settings/calendar/page.tsx +41 -0
package/app/(app)/settings/layout.test.tsx +39 -0
package/app/(app)/settings/layout.tsx +71 -0
package/app/(app)/settings/page.tsx +4 -0
package/app/(app)/settings/security/page.tsx +43 -0
package/app/(app)/settings/team/page.tsx +74 -0
package/app/(app)/settings/workspace/page.tsx +27 -0
package/app/(app)/tasks/[taskId]/page.tsx +79 -0
package/app/(auth)/forgot-password/page.tsx +106 -0
package/app/(auth)/guest/page.tsx +56 -0
package/app/(auth)/layout.tsx +13 -0
package/app/(auth)/login/page.tsx +14 -0
package/app/(auth)/register/page.tsx +193 -0
package/app/(auth)/reset-password/page.tsx +138 -0
package/app/api/account/claim/route.tsx +135 -0
package/app/api/admin/backfill-encryption/route.tsx +43 -0
package/app/api/admin/license/route.tsx +42 -0
package/app/api/auth/2fa/route.tsx +148 -0
package/app/api/auth/[...nextauth]/route.tsx +3 -0
package/app/api/auth/change-password/route.tsx +61 -0
package/app/api/auth/check-2fa/route.tsx +19 -0
package/app/api/auth/forgot-password/route.tsx +65 -0
package/app/api/auth/reset-password/route.tsx +52 -0
package/app/api/auth/verify-2fa/route.tsx +88 -0
package/app/api/backup/download/db/route.ts +29 -0
package/app/api/backup/download/notes/route.ts +25 -0
package/app/api/backup/settings/route.ts +92 -0
package/app/api/billing/checkout/route.tsx +81 -0
package/app/api/billing/migrate/route.tsx +163 -0
package/app/api/billing/portal/route.tsx +24 -0
package/app/api/billing/setup-intent/route.tsx +55 -0
package/app/api/billing/status/route.tsx +36 -0
package/app/api/billing/subscribe/route.tsx +85 -0
package/app/api/billing/webhook/route.tsx +199 -0
package/app/api/calendar-feeds/[feedId]/route.tsx +67 -0
package/app/api/calendar-feeds/[feedId]/sync/route.tsx +37 -0
package/app/api/calendar-feeds/events/route.tsx +82 -0
package/app/api/calendar-feeds/route.tsx +52 -0
package/app/api/calendar-feeds/sync-all/route.tsx +34 -0
package/app/api/cron/calendar-feeds/route.tsx +31 -0
package/app/api/cron/stale-tasks/route.tsx +51 -0
package/app/api/cron/sync/route.tsx +34 -0
package/app/api/devices/[deviceId]/route.tsx +25 -0
package/app/api/devices/route.tsx +41 -0
package/app/api/export/route.tsx +40 -0
package/app/api/feedback/route.tsx +54 -0
package/app/api/folders/[folderId]/route.tsx +51 -0
package/app/api/folders/route.tsx +37 -0
package/app/api/graph/route.tsx +242 -0
package/app/api/guest/route.tsx +58 -0
package/app/api/health/route.tsx +10 -0
package/app/api/holidays/countries/route.tsx +14 -0
package/app/api/holidays/route.tsx +49 -0
package/app/api/holidays/states/route.tsx +21 -0
package/app/api/invites/[token]/route.tsx +131 -0
package/app/api/invites/route.tsx +74 -0
package/app/api/mcp/generate-token/route.tsx +55 -0
package/app/api/mcp/revoke-token/[tokenId]/route.tsx +30 -0
package/app/api/mcp/update-alias/[tokenId]/route.tsx +22 -0
package/app/api/notes/[noteId]/export/route.tsx +45 -0
package/app/api/notes/[noteId]/route.tsx +360 -0
package/app/api/notes/route.tsx +112 -0
package/app/api/notifications/route.tsx +44 -0
package/app/api/register/route.tsx +67 -0
package/app/api/restore/route.tsx +148 -0
package/app/api/sync/conflicts/[conflictId]/route.tsx +134 -0
package/app/api/sync/conflicts/route.tsx +48 -0
package/app/api/sync/status/route.tsx +49 -0
package/app/api/sync/trigger/route.tsx +15 -0
package/app/api/tasks/[taskId]/detail/route.tsx +68 -0
package/app/api/tasks/[taskId]/route.tsx +259 -0
package/app/api/tasks/bulk/route.tsx +133 -0
package/app/api/tasks/route.tsx +36 -0
package/app/api/workspace/active/route.tsx +39 -0
package/app/api/workspace/create-team/route.tsx +42 -0
package/app/api/workspace/kanban-statuses/route.tsx +71 -0
package/app/api/workspace/members/[memberId]/route.tsx +69 -0
package/app/api/workspace/route.tsx +24 -0
package/app/download/page.tsx +170 -0
package/app/favicon.ico +0 -0
package/app/generated/prisma/client.d.ts +1 -0
package/app/generated/prisma/client.js +5 -0
package/app/generated/prisma/default.d.ts +1 -0
package/app/generated/prisma/default.js +5 -0
package/app/generated/prisma/edge.d.ts +1 -0
package/app/generated/prisma/edge.js +497 -0
package/app/generated/prisma/index-browser.js +523 -0
package/app/generated/prisma/index.d.ts +46376 -0
package/app/generated/prisma/index.js +497 -0
package/app/generated/prisma/package.json +144 -0
package/app/generated/prisma/query_compiler_fast_bg.js +2 -0
package/app/generated/prisma/query_compiler_fast_bg.wasm +0 -0
package/app/generated/prisma/query_compiler_fast_bg.wasm-base64.js +2 -0
package/app/generated/prisma/runtime/client.d.ts +3386 -0
package/app/generated/prisma/runtime/client.js +86 -0
package/app/generated/prisma/runtime/index-browser.d.ts +90 -0
package/app/generated/prisma/runtime/index-browser.js +6 -0
package/app/generated/prisma/runtime/wasm-compiler-edge.js +76 -0
package/app/generated/prisma/schema.prisma +456 -0
package/app/generated/prisma/wasm-edge-light-loader.mjs +5 -0
package/app/generated/prisma/wasm-worker-loader.mjs +5 -0
package/app/globals.css +54 -0
package/app/invite/[token]/page.tsx +52 -0
package/app/layout.tsx +90 -0
package/app/mcp/route.tsx +430 -0
package/app/opengraph-image.tsx +120 -0
package/app/page.tsx +398 -0
package/app/privacy/page.tsx +69 -0
package/app/robots.tsx +25 -0
package/app/sitemap.tsx +36 -0
package/app/terms/page.tsx +69 -0
package/app/upgrade/page.tsx +75 -0
package/auth.config.ts +33 -0
package/auth.ts +79 -0
package/bin/brief.js +224 -0
package/components/auth/login-form.tsx +302 -0
package/components/auth/password-checklist.tsx +31 -0
package/components/auth/password-input.tsx +36 -0
package/components/auth/switch-account-button.test.tsx +22 -0
package/components/auth/switch-account-button.tsx +19 -0
package/components/auth/two-factor-input.tsx +116 -0
package/components/billing/billing-dashboard.tsx +265 -0
package/components/billing/card-form.tsx +210 -0
package/components/billing/claim-account-form.tsx +99 -0
package/components/branding/app-logo.test.tsx +20 -0
package/components/branding/app-logo.tsx +25 -0
package/components/calendar/calendar-agenda.tsx +150 -0
package/components/calendar/calendar-drag.test.tsx +177 -0
package/components/calendar/calendar-grid.tsx +357 -0
package/components/calendar/calendar-hooks.test.tsx +27 -0
package/components/calendar/calendar-hooks.ts +351 -0
package/components/calendar/calendar-toolbar.test.tsx +68 -0
package/components/calendar/calendar-toolbar.tsx +291 -0
package/components/calendar/calendar-types.ts +148 -0
package/components/calendar/calendar-view.test.tsx +295 -0
package/components/calendar/calendar-view.tsx +307 -0
package/components/calendar/day-detail-popover.tsx +174 -0
package/components/calendar/task-chip.tsx +86 -0
package/components/command/command-palette.test.tsx +33 -0
package/components/command/command-palette.tsx +310 -0
package/components/download-cta.tsx +87 -0
package/components/feedback/feedback-popup.tsx +207 -0
package/components/graph/graph-draw.ts +337 -0
package/components/graph/graph-overlays.tsx +160 -0
package/components/graph/graph-page.test.tsx +131 -0
package/components/graph/graph-page.tsx +263 -0
package/components/graph/graph-types.ts +47 -0
package/components/graph/graph-view.tsx +322 -0
package/components/guide/guide-view.tsx +522 -0
package/components/kanban/kanban-board.test.tsx +128 -0
package/components/kanban/kanban-board.tsx +361 -0
package/components/kanban/kanban-card-menu.tsx +102 -0
package/components/kanban/kanban-card.tsx +227 -0
package/components/kanban/kanban-column.tsx +49 -0
package/components/kanban/kanban-status-context.tsx +28 -0
package/components/landing/calendar-sandbox.test.tsx +15 -0
package/components/landing/calendar-sandbox.tsx +107 -0
package/components/landing/graph-sandbox.test.tsx +27 -0
package/components/landing/graph-sandbox.tsx +80 -0
package/components/landing/kanban-sandbox.test.tsx +24 -0
package/components/landing/kanban-sandbox.tsx +101 -0
package/components/landing/landing-showcase.test.tsx +21 -0
package/components/landing/landing-showcase.tsx +54 -0
package/components/landing/list-sandbox.tsx +86 -0
package/components/landing/mock-workspace.ts +168 -0
package/components/landing/notes-sandbox.test.tsx +14 -0
package/components/landing/notes-sandbox.tsx +88 -0
package/components/layout/app-shell.tsx +83 -0
package/components/layout/backup-scheduler.tsx +122 -0
package/components/layout/bottom-nav.tsx +43 -0
package/components/layout/icon-bar.test.tsx +29 -0
package/components/layout/icon-bar.tsx +118 -0
package/components/layout/mobile-top-bar.tsx +68 -0
package/components/layout/notes-panel-folder.tsx +127 -0
package/components/layout/notes-panel-note-item.tsx +140 -0
package/components/layout/notes-panel-task-tab.tsx +63 -0
package/components/layout/notes-panel-types.ts +44 -0
package/components/layout/notes-panel.tsx +476 -0
package/components/layout/notification-bell.tsx +251 -0
package/components/layout/paywall-screen.tsx +41 -0
package/components/layout/pro-banner.tsx +76 -0
package/components/layout/sw-register.tsx +27 -0
package/components/layout/workspace-switcher.tsx +90 -0
package/components/notes/mobile-bottom-sheet.tsx +99 -0
package/components/notes/note-editor-context-menu.tsx +47 -0
package/components/notes/note-editor-dom.ts +33 -0
package/components/notes/note-editor-dropdowns.tsx +484 -0
package/components/notes/note-editor-hooks.ts +692 -0
package/components/notes/note-editor-keyboard.ts +305 -0
package/components/notes/note-editor-overlay.tsx +90 -0
package/components/notes/note-editor.test.tsx +372 -0
package/components/notes/note-editor.tsx +662 -0
package/components/notes/note-preview-pane.tsx +156 -0
package/components/notes/note-tabs.tsx +120 -0
package/components/notes/note-types.tsx +157 -0
package/components/settings/accept-invite.tsx +108 -0
package/components/settings/agent-token-settings.tsx +369 -0
package/components/settings/backup-restore-settings.test.tsx +25 -0
package/components/settings/backup-restore-settings.tsx +327 -0
package/components/settings/calendar-feeds-settings.tsx +489 -0
package/components/settings/calendar-general-settings.tsx +174 -0
package/components/settings/confirm-danger-action.test.tsx +215 -0
package/components/settings/confirm-danger-action.tsx +65 -0
package/components/settings/security-settings.tsx +252 -0
package/components/settings/settings-guidance.test.tsx +98 -0
package/components/settings/team-settings.tsx +319 -0
package/components/settings/two-factor-auth.tsx +296 -0
package/components/settings/workspace-settings-client.tsx +363 -0
package/components/settings/workspace-settings-form.tsx +73 -0
package/components/sync/conflict-viewer.tsx +247 -0
package/components/sync/sync-indicator.tsx +171 -0
package/components/tasks/snippet-thread.tsx +119 -0
package/components/tasks/status-dot.tsx +47 -0
package/components/tasks/task-badge.tsx +43 -0
package/components/tasks/task-detail.test.tsx +187 -0
package/components/tasks/task-detail.tsx +458 -0
package/components/tasks/task-list-filters.test.tsx +75 -0
package/components/tasks/task-list-filters.tsx +163 -0
package/components/tasks/task-list-types.ts +20 -0
package/components/tasks/task-list.test.tsx +175 -0
package/components/tasks/task-list.tsx +481 -0
package/components/tasks/task-row.tsx +85 -0
package/components/tasks/task-table-row.tsx +259 -0
package/components/ui/skeleton.tsx +3 -0
package/components/ui/toast.test.tsx +42 -0
package/components/ui/toast.tsx +70 -0
package/electron/main.ts +251 -0
package/electron/preload.ts +56 -0
package/instrumentation.tsx +23 -0
package/lib/api-error.ts +50 -0
package/lib/backup/backup-runner.test.ts +32 -0
package/lib/backup/backup-runner.ts +19 -0
package/lib/backup/backup-schedule.test.ts +23 -0
package/lib/backup/backup-schedule.ts +55 -0
package/lib/backup/backup-settings.test.ts +30 -0
package/lib/backup/backup-settings.ts +27 -0
package/lib/backup/export-notes-zip.test.ts +26 -0
package/lib/backup/export-notes-zip.ts +82 -0
package/lib/backup/export-workspace-backup.test.ts +17 -0
package/lib/backup/export-workspace-backup.ts +77 -0
package/lib/backup/restore-workspace-from-export.test.ts +18 -0
package/lib/backup/restore-workspace-from-export.ts +183 -0
package/lib/backup/types.ts +14 -0
package/lib/brand-icons.ts +1 -0
package/lib/calendar-feed-crypto.ts +38 -0
package/lib/calendar-feed.ts +239 -0
package/lib/client/online-status.ts +47 -0
package/lib/conflict-resolver.test.ts +57 -0
package/lib/conflict-resolver.ts +240 -0
package/lib/db-init.ts +79 -0
package/lib/email.ts +159 -0
package/lib/encryption.test.ts +41 -0
package/lib/encryption.ts +98 -0
package/lib/extract-snippet.test.ts +123 -0
package/lib/extract-snippet.ts +69 -0
package/lib/kanban-status.ts +55 -0
package/lib/license.ts +21 -0
package/lib/limits.ts +31 -0
package/lib/mcp-auth.test.ts +58 -0
package/lib/mcp-auth.ts +65 -0
package/lib/mcp-contract.test.ts +25 -0
package/lib/mcp-contract.ts +210 -0
package/lib/mcp-handler.ts +31 -0
package/lib/mcp-url.test.ts +12 -0
package/lib/mcp-url.ts +7 -0
package/lib/mentions.test.ts +45 -0
package/lib/mentions.ts +73 -0
package/lib/note-crypto.ts +108 -0
package/lib/note-sync.ts +201 -0
package/lib/note-title.ts +93 -0
package/lib/prisma.ts +193 -0
package/lib/pro-flush.ts +292 -0
package/lib/rate-limit.ts +57 -0
package/lib/stripe.ts +38 -0
package/lib/sync-worker.ts +388 -0
package/lib/task-parser.test.ts +91 -0
package/lib/task-parser.ts +81 -0
package/lib/task-utils.ts +52 -0
package/lib/use-is-electron.ts +19 -0
package/lib/use-is-mobile.ts +22 -0
package/lib/validation/calendar-feed.ts +31 -0
package/lib/validation/note.ts +27 -0
package/lib/validation/task.ts +26 -0
package/lib/view-preferences.test.ts +54 -0
package/lib/view-preferences.ts +28 -0
package/lib/workspace.ts +66 -0
package/next.config.ts +21 -0
package/package.json +99 -0
package/postcss.config.mjs +7 -0
package/prisma/migrations/20260519021916_init/migration.sql +388 -0
package/prisma/migrations/20260519061113_drop_sync_password/migration.sql +8 -0
package/prisma/migrations/20260520065016_add_task_start_date/migration.sql +2 -0
package/prisma/migrations/20260529010600_remove_encryption_fields/migration.sql +12 -0
package/prisma/migrations/20260529020000_restore_encryption_salt/migration.sql +3 -0
package/prisma/migrations/20260529030000_add_folders/migration.sql +17 -0
package/prisma/migrations/20260605000000_deferred_fixes/migration.sql +31 -0
package/prisma/migrations/20260605020806_add_pending_sync_to_note_and_task/migration.sql +5 -0
package/prisma/migrations/20260605063634_add_stripe_webhook_event_sync_lock/migration.sql +14 -0
package/prisma/migrations/20260605100000_add_prod_indexes/migration.sql +26 -0
package/prisma/migrations/20260608081404_add_kanban_statuses/migration.sql +23 -0
package/prisma/migrations/20260611032723_add_calendar_feeds/migration.sql +43 -0
package/prisma/migrations/20260611040000_add_calendar_feed_color/migration.sql +2 -0
package/prisma/migrations/20260611050000_add_task_priority/migration.sql +14 -0
package/prisma/migrations/20260612060000_add_critical_priority/migration.sql +2 -0
package/prisma/migrations/20260613090000_add_backup_settings/migration.sql +25 -0
package/prisma/migrations/20260614160000_add_feedback/migration.sql +20 -0
package/prisma/migrations/20260614210000_add_2fa/migration.sql +4 -0
package/prisma/migrations/migration_lock.toml +3 -0
package/prisma/schema.prisma +457 -0
package/public/Logo_icon.svg +1 -0
package/public/file.svg +1 -0
package/public/globe.svg +1 -0
package/public/icon-192.png +0 -0
package/public/icon-512.png +0 -0
package/public/icon.svg +4 -0
package/public/icon_dark.svg +1 -0
package/public/knotpad_icon.svg +1 -0
package/public/knotpad_logo_full.svg +1 -0
package/public/manifest.json +14 -0
package/public/next.svg +1 -0
package/public/sw.js +137 -0
package/public/vercel.svg +1 -0
package/public/window.svg +1 -0
package/tsconfig.json +35 -0

package/components/settings/team-settings.tsx ADDED Viewed

@@ -0,0 +1,319 @@
+"use client";
+import { useState } from "react";
+import { useRouter } from "next/navigation";
+import { Copy, Check, Trash2, UserPlus } from "lucide-react";
+import { ConfirmDangerAction } from "@/components/settings/confirm-danger-action";
+type Member = {
+  id: string;
+  userId: string;
+  name: string;
+  email: string;
+  role: "OWNER" | "ADMIN" | "MEMBER";
+  joinedAt: string;
+  isCurrentUser: boolean;
+};
+type PendingInvite = {
+  id: string;
+  email: string;
+  role: "OWNER" | "ADMIN" | "MEMBER";
+  token: string;
+  expiresAt: string;
+};
+type McpToken = {
+  id: string;
+  alias: string | null;
+  userName: string;
+  userId: string;
+  lastUsed: string | null;
+};
+const ROLE_LABELS = { OWNER: "Owner", ADMIN: "Admin", MEMBER: "Member" };
+export function TeamSettings({
+  members,
+  pendingInvites,
+  canManage,
+  workspaceId,
+  mcpTokens = [],
+}: {
+  members: Member[];
+  pendingInvites: PendingInvite[];
+  canManage: boolean;
+  currentUserId: string;
+  workspaceId: string;
+  mcpTokens?: McpToken[];
+}) {
+  const router = useRouter();
+  const [inviteEmail, setInviteEmail] = useState("");
+  const [inviteRole, setInviteRole] = useState<"ADMIN" | "MEMBER">("MEMBER");
+  const [inviting, setInviting] = useState(false);
+  const [inviteLink, setInviteLink] = useState("");
+  const [copied, setCopied] = useState(false);
+  const [error, setError] = useState("");
+  const [actionError, setActionError] = useState("");
+  const [removeConfirm, setRemoveConfirm] = useState<{ open: boolean; memberId: string }>({ open: false, memberId: "" });
+  async function handleInvite(e: React.FormEvent) {
+    e.preventDefault();
+    setInviting(true);
+    setError("");
+    setInviteLink("");
+    try {
+      const res = await fetch("/api/invites", {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        // workspaceId scopes the invite to the correct workspace for multi-workspace users
+        body: JSON.stringify({ email: inviteEmail, role: inviteRole, workspaceId }),
+      });
+      if (res.ok) {
+        const { link } = await res.json();
+        setInviteLink(link);
+        setInviteEmail("");
+        router.refresh();
+      } else {
+        const d = await res.json();
+        // upgrade_required has a human-readable message separate from the error code
+        setError(d.message ?? d.error ?? "Failed to create invite");
+      }
+    } catch {
+      setError("Something went wrong. Please try again.");
+    } finally {
+      setInviting(false);
+    }
+  }
+  async function copyLink(link: string) {
+    await navigator.clipboard.writeText(link);
+    setCopied(true);
+    setTimeout(() => setCopied(false), 2000);
+  }
+  async function removeMember(memberId: string) {
+    setRemoveConfirm({ open: true, memberId });
+  }
+  async function confirmRemoveMember() {
+    const { memberId } = removeConfirm;
+    setActionError("");
+    const res = await fetch(`/api/workspace/members/${memberId}`, { method: "DELETE" });
+    if (res.ok) {
+      router.refresh();
+    } else {
+      const d = await res.json().catch(() => ({}));
+      setActionError(d.error ?? "Failed to remove member");
+    }
+    setRemoveConfirm({ open: false, memberId: "" });
+  }
+  async function revokeInvite(inviteToken: string) {
+    setActionError("");
+    // Route uses the token field (JWT slug), not the database id
+    const res = await fetch(`/api/invites/${inviteToken}`, { method: "DELETE" });
+    if (res.ok) {
+      router.refresh();
+    } else {
+      const d = await res.json().catch(() => ({}));
+      setActionError(d.error ?? "Failed to revoke invite");
+    }
+  }
+  async function revokeToken(tokenId: string) {
+    setActionError("");
+    const res = await fetch(`/api/mcp/revoke-token/${tokenId}`, { method: "DELETE" });
+    if (res.ok) {
+      router.refresh();
+    } else {
+      const d = await res.json().catch(() => ({}));
+      setActionError(d.error ?? "Failed to revoke token");
+    }
+  }
+  return (
+    <div className="space-y-8">
+      {actionError && (
+        <div className="rounded-md border border-red-800/40 bg-red-950/40 px-4 py-3 flex items-start justify-between gap-3">
+          <p className="text-sm text-red-300">{actionError}</p>
+          <button onClick={() => setActionError("")} className="text-red-500 hover:text-red-300 shrink-0 text-lg leading-none">×</button>
+        </div>
+      )}
+      {/* Members list */}
+      <div>
+        <h3 className="text-sm font-semibold text-zinc-300 mb-3">
+          Members ({members.length})
+        </h3>
+        <p className="mb-3 text-xs text-zinc-500">
+          Removing a member or revoking an active token updates workspace access
+          immediately.
+        </p>
+        <div className="space-y-1 rounded-lg border border-zinc-800 overflow-hidden">
+          {members.map((m) => (
+            <div
+              key={m.id}
+              className="flex items-center justify-between px-4 py-3 bg-zinc-900 border-b border-zinc-800 last:border-0"
+            >
+              <div className="min-w-0">
+                <p className="text-sm font-medium text-zinc-200 truncate">
+                  {m.name} {m.isCurrentUser && <span className="text-zinc-500 font-normal">(you)</span>}
+                </p>
+                <p className="text-xs text-zinc-500 truncate">{m.email}</p>
+              </div>
+              <div className="flex items-center gap-3 shrink-0 ml-4">
+                <span className="text-xs text-zinc-500 bg-zinc-800 px-2 py-0.5 rounded">
+                  {ROLE_LABELS[m.role]}
+                </span>
+                {canManage && !m.isCurrentUser && m.role !== "OWNER" && (
+                  <button
+                    onClick={() => removeMember(m.id)}
+                    className="text-zinc-600 hover:text-red-400 transition-colors"
+                    title="Remove member"
+                  >
+                    <Trash2 size={14} />
+                  </button>
+                )}
+              </div>
+            </div>
+          ))}
+        </div>
+      </div>
+      {/* Invite form */}
+      {canManage && (
+        <div>
+          <h3 className="text-sm font-semibold text-zinc-300 mb-3 flex items-center gap-2">
+            <UserPlus size={14} /> Invite member
+          </h3>
+          <p className="mb-3 text-xs text-zinc-500">
+            Invites stay pending until accepted. Revoking an invite immediately
+            invalidates the link.
+          </p>
+          <form onSubmit={handleInvite} className="flex gap-2">
+            <input
+              type="email"
+              value={inviteEmail}
+              onChange={(e) => setInviteEmail(e.target.value)}
+              required
+              placeholder="colleague@example.com"
+              className="flex-1 rounded-md border border-zinc-700 bg-zinc-900 px-3 py-2 text-sm text-zinc-100 focus:border-zinc-500 focus:outline-none ring-focus"
+            />
+            <select
+              value={inviteRole}
+              onChange={(e) => setInviteRole(e.target.value as "ADMIN" | "MEMBER")}
+              className="rounded-md border border-zinc-700 bg-zinc-900 px-2 py-2 text-sm text-zinc-300 focus:outline-none ring-focus"
+            >
+              <option value="MEMBER">Member</option>
+              <option value="ADMIN">Admin</option>
+            </select>
+            <button
+              type="submit"
+              disabled={inviting}
+              className="rounded-md bg-zinc-100 px-4 py-2 text-sm font-medium text-zinc-900 hover:bg-zinc-200 disabled:opacity-50 shrink-0"
+            >
+              {inviting ? "…" : "Generate link"}
+            </button>
+          </form>
+          {error && <p className="mt-2 text-sm text-red-400">{error}</p>}
+          {inviteLink && (
+            <div className="mt-3 flex items-center gap-2 rounded-md border border-zinc-700 bg-zinc-900/50 px-3 py-2">
+              <p className="flex-1 text-xs text-zinc-400 font-mono truncate">{inviteLink}</p>
+              <button
+                onClick={() => copyLink(inviteLink)}
+                className="shrink-0 text-zinc-500 hover:text-zinc-300 transition-colors"
+                title="Copy invite link"
+              >
+                {copied ? <Check size={14} className="text-emerald-400" /> : <Copy size={14} />}
+              </button>
+            </div>
+          )}
+        </div>
+      )}
+      {/* MCP Tokens */}
+      {canManage && mcpTokens.length > 0 && (
+        <div>
+          <h3 className="text-sm font-semibold text-zinc-300 mb-3">Active agent tokens</h3>
+          <div className="space-y-1 rounded-lg border border-zinc-800 overflow-hidden">
+            {mcpTokens.map((t) => (
+              <div key={t.id} className="flex items-center justify-between px-4 py-3 bg-zinc-900 border-b border-zinc-800 last:border-0">
+                <div className="min-w-0">
+                  <p className="text-sm text-zinc-300 truncate">{t.alias ?? "Unnamed token"}</p>
+                  <p className="text-xs text-zinc-600">
+                    {t.userName}
+                    {t.lastUsed ? ` · last used ${new Date(t.lastUsed).toLocaleDateString()}` : " · never used"}
+                  </p>
+                </div>
+                <button
+                  onClick={() => revokeToken(t.id)}
+                  className="shrink-0 text-zinc-600 hover:text-red-400 transition-colors"
+                  title="Revoke token"
+                >
+                  <Trash2 size={14} />
+                </button>
+              </div>
+            ))}
+          </div>
+        </div>
+      )}
+      {/* Pending invites */}
+      {pendingInvites.length > 0 && (
+        <div>
+          <h3 className="text-sm font-semibold text-zinc-300 mb-3">
+            Pending invites ({pendingInvites.length})
+          </h3>
+          <div className="space-y-1 rounded-lg border border-zinc-800 overflow-hidden">
+            {pendingInvites.map((inv) => (
+              <div
+                key={inv.id}
+                className="flex items-center justify-between px-4 py-3 bg-zinc-900 border-b border-zinc-800 last:border-0"
+              >
+                <div className="min-w-0">
+                  <p className="text-sm text-zinc-300 truncate">{inv.email}</p>
+                  <p className="text-xs text-zinc-600">
+                    {ROLE_LABELS[inv.role]} · Expires{" "}
+                    {new Date(inv.expiresAt).toLocaleDateString()}
+                  </p>
+                </div>
+                <div className="flex items-center gap-2 shrink-0 ml-4">
+                  <button
+                    onClick={() => copyLink(`${process.env.NEXT_PUBLIC_APP_URL ?? window.location.origin}/invite/${inv.token}`)}
+                    className="text-zinc-500 hover:text-zinc-300 transition-colors"
+                    title="Copy link"
+                  >
+                    <Copy size={14} />
+                  </button>
+                  {canManage && (
+                    <button
+                      onClick={() => revokeInvite(inv.token)}
+                      className="text-zinc-600 hover:text-red-400 transition-colors"
+                      title="Revoke invite"
+                    >
+                      <Trash2 size={14} />
+                    </button>
+                  )}
+                </div>
+              </div>
+            ))}
+          </div>
+        </div>
+      )}
+      {/* Confirmation dialog */}
+      <ConfirmDangerAction
+        open={removeConfirm.open}
+        title="Remove Member"
+        body="Remove this member from the workspace?"
+        confirmLabel="Remove"
+        cancelLabel="Cancel"
+        onConfirm={confirmRemoveMember}
+        onClose={() => setRemoveConfirm({ open: false, memberId: "" })}
+      />
+    </div>
+  );
+}

package/components/settings/two-factor-auth.tsx ADDED Viewed

@@ -0,0 +1,296 @@
+"use client";
+import { useState } from "react";
+import { Shield, ShieldCheck, Loader2, Copy, Check, Smartphone, Lock } from "lucide-react";
+import { PasswordInput } from "@/components/auth/password-input";
+import { TwoFactorInput } from "@/components/auth/two-factor-input";
+export function TwoFactorAuth({ initialEnabled = false }: { initialEnabled?: boolean }) {
+  const [enabled, setEnabled] = useState(initialEnabled);
+  const [settingUp, setSettingUp] = useState(false);
+  const [qrCode, setQrCode] = useState<string | null>(null);
+  const [secret, setSecret] = useState<string | null>(null);
+  const [manualKey, setManualKey] = useState<string | null>(null);
+  const [verifyCode, setVerifyCode] = useState("");
+  const [disabling, setDisabling] = useState(false);
+  const [disablePassword, setDisablePassword] = useState("");
+  const [disableCode, setDisableCode] = useState("");
+  const [loading, setLoading] = useState(false);
+  const [error, setError] = useState<string | null>(null);
+  const [success, setSuccess] = useState<string | null>(null);
+  const [copied, setCopied] = useState(false);
+  async function startSetup() {
+    setLoading(true);
+    setError(null);
+    try {
+      const res = await fetch("/api/auth/2fa", {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({ action: "setup" }),
+      });
+      const data = await res.json();
+      if (!res.ok) throw new Error(data.error || "Failed to setup 2FA");
+      setQrCode(data.qrCodeURL);
+      setSecret(data.secret);
+      setManualKey(data.manualEntryKey);
+      setSettingUp(true);
+    } catch (err) {
+      setError(err instanceof Error ? err.message : "Failed to setup 2FA");
+    } finally {
+      setLoading(false);
+    }
+  }
+  async function verifyAndEnable() {
+    if (!verifyCode.match(/^\d{6}$/)) {
+      setError("Please enter a valid 6-digit code");
+      return;
+    }
+    setLoading(true);
+    setError(null);
+    try {
+      const res = await fetch("/api/auth/2fa", {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({ action: "verify", code: verifyCode }),
+      });
+      const data = await res.json();
+      if (!res.ok) throw new Error(data.error || "Invalid code");
+      setEnabled(true);
+      setSettingUp(false);
+      setSuccess("Two-factor authentication enabled successfully");
+      setQrCode(null);
+      setSecret(null);
+      setManualKey(null);
+      setVerifyCode("");
+    } catch (err) {
+      setError(err instanceof Error ? err.message : "Failed to verify code");
+    } finally {
+      setLoading(false);
+    }
+  }
+  async function disable2FA() {
+    if (!disablePassword) {
+      setError("Please enter your password");
+      return;
+    }
+    setLoading(true);
+    setError(null);
+    try {
+      const res = await fetch("/api/auth/2fa", {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({
+          action: "disable",
+          password: disablePassword,
+          code: disableCode || undefined,
+        }),
+      });
+      const data = await res.json();
+      if (!res.ok) throw new Error(data.error || "Failed to disable 2FA");
+      setEnabled(false);
+      setDisabling(false);
+      setSuccess("Two-factor authentication disabled");
+      setDisablePassword("");
+      setDisableCode("");
+    } catch (err) {
+      setError(err instanceof Error ? err.message : "Failed to disable 2FA");
+    } finally {
+      setLoading(false);
+    }
+  }
+  function copyManualKey() {
+    if (manualKey) {
+      navigator.clipboard.writeText(manualKey.replace(/\s/g, ""));
+      setCopied(true);
+      setTimeout(() => setCopied(false), 2000);
+    }
+  }
+  // Generate QR code URL using Google Charts API
+  const qrCodeImageUrl = qrCode
+    ? `https://chart.googleapis.com/chart?cht=qr&chs=200x200&chld=M|0&chl=${encodeURIComponent(qrCode)}`
+    : null;
+  return (
+    <div className="space-y-4">
+      <div className="flex items-center gap-3">
+        {enabled ? (
+          <ShieldCheck size={20} className="text-emerald-400" />
+        ) : (
+          <Shield size={20} className="text-zinc-500" />
+        )}
+        <div>
+          <h3 className="text-sm font-semibold text-zinc-300">Two-Factor Authentication</h3>
+          <p className="text-xs text-zinc-500">
+            {enabled
+              ? "Your account is protected with an authenticator app"
+              : "Add an extra layer of security to your account"}
+          </p>
+        </div>
+      </div>
+      {success && (
+        <div className="rounded-md border border-emerald-800/40 bg-emerald-950/30 px-3 py-2">
+          <p className="text-xs text-emerald-400">{success}</p>
+        </div>
+      )}
+      {error && (
+        <div className="rounded-md border border-red-800/40 bg-red-950/30 px-3 py-2">
+          <p className="text-xs text-red-400">{error}</p>
+        </div>
+      )}
+      {!enabled && !settingUp && (
+        <button
+          onClick={startSetup}
+          disabled={loading}
+          className="flex items-center gap-1.5 rounded-md bg-zinc-800 px-3 py-1.5 text-xs font-medium text-zinc-300 hover:bg-zinc-700 disabled:opacity-50 transition-colors"
+        >
+          {loading ? <Loader2 size={13} className="animate-spin" /> : <Smartphone size={13} />}
+          Set up 2FA
+        </button>
+      )}
+      {settingUp && (
+        <div className="space-y-4 rounded-lg border border-zinc-800 bg-zinc-900/50 p-4">
+          <div className="flex items-center gap-2">
+            <Smartphone size={16} className="text-zinc-400" />
+            <h4 className="text-xs font-medium text-zinc-300">Scan QR Code</h4>
+          </div>
+          <p className="text-xs text-zinc-400">
+            Scan this QR code with your authenticator app (Google Authenticator, Authy, 1Password, etc.)
+          </p>
+          {qrCodeImageUrl && (
+            <div className="flex justify-center">
+              <img
+                src={qrCodeImageUrl}
+                alt="2FA QR Code"
+                className="rounded-lg border border-zinc-800"
+                width={200}
+                height={200}
+              />
+            </div>
+          )}
+          {manualKey && (
+            <div className="space-y-2">
+              <p className="text-xs text-zinc-500">Or enter this key manually:</p>
+              <div className="flex items-center gap-2">
+                <code className="flex-1 rounded-md bg-zinc-950 px-3 py-2 text-xs text-zinc-300 font-mono">
+                  {manualKey}
+                </code>
+                <button
+                  onClick={copyManualKey}
+                  className="shrink-0 rounded-md bg-zinc-800 p-2 text-zinc-400 hover:bg-zinc-700 hover:text-zinc-300 transition-colors"
+                  title="Copy to clipboard"
+                >
+                  {copied ? <Check size={14} className="text-emerald-400" /> : <Copy size={14} />}
+                </button>
+              </div>
+            </div>
+          )}
+          <div className="border-t border-zinc-800 pt-4 space-y-3">
+            <p className="text-xs text-zinc-400">Enter the 6-digit code from your authenticator app to verify:</p>
+            <div className="flex items-center gap-2">
+              <TwoFactorInput
+                value={verifyCode}
+                onChange={setVerifyCode}
+                length={6}
+                disabled={loading}
+                autoFocus
+              />
+            </div>
+            <div className="flex items-center gap-2">
+              <button
+                onClick={verifyAndEnable}
+                disabled={loading || verifyCode.length !== 6}
+                className="flex items-center gap-1.5 rounded-md bg-emerald-600 px-3 py-2 text-xs font-medium text-white hover:bg-emerald-500 disabled:opacity-50 transition-colors"
+              >
+                {loading ? <Loader2 size={13} className="animate-spin" /> : <Check size={13} />}
+                Verify & Enable
+              </button>
+              <button
+                onClick={() => setSettingUp(false)}
+                disabled={loading}
+                className="rounded-md border border-zinc-700 px-3 py-2 text-xs text-zinc-400 hover:bg-zinc-800 transition-colors"
+              >
+                Cancel
+              </button>
+            </div>
+          </div>
+        </div>
+      )}
+      {enabled && !disabling && (
+        <button
+          onClick={() => setDisabling(true)}
+          className="flex items-center gap-1.5 rounded-md border border-red-800/40 bg-red-950/20 px-3 py-1.5 text-xs font-medium text-red-400 hover:bg-red-950/40 transition-colors"
+        >
+          <Lock size={13} />
+          Disable 2FA
+        </button>
+      )}
+      {enabled && disabling && (
+        <div className="space-y-3 rounded-lg border border-zinc-800 bg-zinc-900/50 p-4">
+          <p className="text-xs text-zinc-400">Enter your password {enabled && "and 2FA code"} to disable:</p>
+          <div className="space-y-2">
+            <PasswordInput
+              value={disablePassword}
+              onChange={(e) => setDisablePassword(e.target.value)}
+              placeholder="Your password"
+            />
+            {enabled && (
+              <div className="space-y-1">
+                <label className="text-xs text-zinc-400">2FA Code</label>
+                <TwoFactorInput
+                  value={disableCode}
+                  onChange={setDisableCode}
+                  length={6}
+                  disabled={loading}
+                />
+              </div>
+            )}
+          </div>
+          <div className="flex items-center gap-2">
+            <button
+              onClick={disable2FA}
+              disabled={loading || !disablePassword}
+              className="flex items-center gap-1.5 rounded-md bg-red-600 px-3 py-1.5 text-xs font-medium text-white hover:bg-red-500 disabled:opacity-50 transition-colors"
+            >
+              {loading ? <Loader2 size={13} className="animate-spin" /> : "Disable 2FA"}
+            </button>
+            <button
+              onClick={() => {
+                setDisabling(false);
+                setDisablePassword("");
+                setDisableCode("");
+                setError(null);
+              }}
+              disabled={loading}
+              className="rounded-md border border-zinc-700 px-3 py-1.5 text-xs text-zinc-400 hover:bg-zinc-800 transition-colors"
+            >
+              Cancel
+            </button>
+          </div>
+        </div>
+      )}
+    </div>
+  );
+}