@lastbrain/module-auth 0.1.3 → 0.1.5

package/dist/web/auth/profile.js

@@ -9,7 +9,8 @@ export function ProfilePage() {
     const [profile, setProfile] = useState({});
     const [isLoading, setIsLoading] = useState(true);
     const [isSaving, setIsSaving] = useState(false);
-    const [error, setError] = useState(null);
+    const [_error, setError] = useState(null);
+    // eslint-disable-next-line @typescript-eslint/no-explicit-any
     const [currentUser, setCurrentUser] = useState(null);
     useEffect(() => {
         fetchProfile();
@@ -108,8 +109,29 @@ export function ProfilePage() {
                 },
             },
         });
-        // Update profile avatar_url
-        setProfile((prev) => ({ ...prev, avatar_url: urls.large }));
+        // Update profile avatar_url in database
+        try {
+            const response = await fetch("/api/auth/profile", {
+                method: "PATCH",
+                headers: {
+                    "Content-Type": "application/json",
+                },
+                body: JSON.stringify({
+                    avatar_url: `/avatar/${currentUser.id}_128_${version}.webp`,
+                }),
+            });
+            if (!response.ok) {
+                console.error("Failed to update avatar_url in profile");
+            }
+        }
+        catch (error) {
+            console.error("Error updating profile avatar_url:", error);
+        }
+        // Update profile avatar_url locally
+        setProfile((prev) => ({
+            ...prev,
+            avatar_url: `/avatar/${currentUser.id}_128_${version}.webp`,
+        }));
         return urls;
     };
     const handleAvatarDelete = async () => {
@@ -128,7 +150,25 @@ export function ProfilePage() {
                 },
             },
         });
-        // Update profile
+        // Update profile avatar_url in database
+        try {
+            const response = await fetch("/api/auth/profile", {
+                method: "PATCH",
+                headers: {
+                    "Content-Type": "application/json",
+                },
+                body: JSON.stringify({
+                    avatar_url: null,
+                }),
+            });
+            if (!response.ok) {
+                console.error("Failed to update avatar_url in profile");
+            }
+        }
+        catch (error) {
+            console.error("Error updating profile avatar_url:", error);
+        }
+        // Update profile locally
         setProfile((prev) => ({ ...prev, avatar_url: "" }));
     };
     if (isLoading) {

package/dist/web/auth/reglage.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"reglage.d.ts","sourceRoot":"","sources":["../../../src/web/auth/reglage.tsx"],"names":[],"mappings":"AAgCA,wBAAgB,WAAW,4CA+Q1B"}
+{"version":3,"file":"reglage.d.ts","sourceRoot":"","sources":["../../../src/web/auth/reglage.tsx"],"names":[],"mappings":"AAgCA,wBAAgB,WAAW,4CA6P1B"}

package/dist/web/public/SignInPage.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"SignInPage.d.ts","sourceRoot":"","sources":["../../../src/web/public/SignInPage.tsx"],"names":[],"mappings":"AAwPA,wBAAgB,UAAU,4CAMzB"}
+{"version":3,"file":"SignInPage.d.ts","sourceRoot":"","sources":["../../../src/web/public/SignInPage.tsx"],"names":[],"mappings":"AAuPA,wBAAgB,UAAU,4CAMzB"}

package/dist/web/public/SignInPage.js

@@ -10,7 +10,7 @@ function SignInForm() {
     const [email, setEmail] = useState("");
     const [password, setPassword] = useState("");
     const [isLoading, setIsLoading] = useState(false);
-    const [error, setError] = useState(null);
+    const [error, _setError] = useState(null);
     const redirectUrl = searchParams.get("redirect");
     const router = useRouter();
     const handleSubmit = async (event) => {

package/dist/web/public/SignUpPage.js

@@ -70,7 +70,7 @@ function SignUpForm() {
                 }
             }, 2000);
         }
-        catch (err) {
+        catch {
             addToast({
                 title: "Erreur",
                 description: "Une erreur inattendue est survenue.",

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@lastbrain/module-auth",
-  "version": "0.1.3",
+  "version": "0.1.5",
   "description": "Module d'authentification complet pour LastBrain avec Supabase",
   "private": false,
   "type": "module",
@@ -63,6 +63,7 @@
   "sideEffects": false,
   "scripts": {
     "build": "tsc -p tsconfig.json",
-    "dev": "tsc -p tsconfig.json --watch"
+    "dev": "tsc -p tsconfig.json --watch",
+    "lint": "eslint ."
   }
 }

package/src/api/admin/users.ts

@@ -11,106 +11,38 @@ export async function GET(request: NextRequest) {
   try {
     const supabase = await getSupabaseServerClient();
 
-    // Check authentication
-    const {
-      data: { user },
-      error: authError,
-    } = await supabase.auth.getUser();
-
-    if (authError || !user) {
-      return NextResponse.json(
-        { error: "Unauthorized", message: "User not authenticated" },
-        { status: 401 }
-      );
-    }
-
-    // Check if user is superadmin
-    const { data: isSuperAdmin } = await supabase.rpc("is_superadmin", {
-      user_id: user.id,
-    });
-
-    if (!isSuperAdmin) {
-      return NextResponse.json(
-        { error: "Forbidden", message: "Superadmin access required" },
-        { status: 403 }
-      );
-    }
-
+    // L'authentification et les droits superadmin sont déjà vérifiés par le middleware
     // Get query parameters
     const searchParams = request.nextUrl.searchParams;
     const page = parseInt(searchParams.get("page") || "1");
     const perPage = parseInt(searchParams.get("per_page") || "20");
     const search = searchParams.get("search") || "";
 
-    // Note: We can only get public user data from auth.users via RPC or service role
-    // For now, we'll query user_profil which has owner_id references
-    let query = supabase
-      .from("user_profil")
-      .select("*, owner_id", { count: "exact" })
-      .order("created_at", { ascending: false });
-
-    // Add search filter if provided - using Supabase's built-in parameterized query
-    if (search) {
-      // Using .ilike with % wildcards - Supabase handles escaping
-      query = query.or(
-        `first_name.ilike.%${search}%,last_name.ilike.%${search}%`
-      );
-    }
-
-    // Apply pagination
-    const start = (page - 1) * perPage;
-    query = query.range(start, start + perPage - 1);
-
-    const { data: profiles, error: profileError, count } = await query;
+    // Use RPC function to get users with emails
+    const { data: result, error: usersError } = await supabase.rpc(
+      "get_admin_users",
+      {
+        page_number: page,
+        page_size: perPage,
+        search_term: search,
+      },
+    );
 
-    if (profileError) {
-      console.error("Error fetching users:", profileError);
+    if (usersError) {
+      console.error("Error fetching users:", usersError);
       return NextResponse.json(
-        { error: "Database Error", message: profileError.message },
-        { status: 500 }
+        { error: "Database Error", message: usersError.message },
+        { status: 500 },
       );
     }
 
-    // Get auth users data in batch - more efficient than individual calls
-    // Note: auth.admin methods require service role, so results may be limited
-    // In production, consider creating a database view or RPC function to join
-    // user_profil with auth.users for better performance
-    const users = await Promise.all(
-      (profiles || []).map(async (profile) => {
-        // Get basic auth info - this is limited to what's available
-        const { data: authData } = await supabase.auth.admin.getUserById(
-          profile.owner_id
-        );
-
-        return {
-          id: profile.owner_id,
-          email: authData?.user?.email || "N/A",
-          created_at: authData?.user?.created_at || profile.created_at,
-          profile: {
-            first_name: profile.first_name,
-            last_name: profile.last_name,
-            avatar_url: profile.avatar_url,
-            bio: profile.bio,
-            phone: profile.phone,
-            company: profile.company,
-            website: profile.website,
-            location: profile.location,
-            language: profile.language,
-            timezone: profile.timezone,
-          },
-        };
-      })
-    );
-
-    return NextResponse.json({
-      data: users,
-      pagination: {
-        page,
-        per_page: perPage,
-        total: count || 0,
-        total_pages: Math.ceil((count || 0) / perPage),
+    // The RPC function returns the complete response with data and pagination
+    return NextResponse.json(
+      result || {
+        data: [],
+        pagination: { page, per_page: perPage, total: 0, total_pages: 0 },
       },
-    });
+    );
   } catch (error) {
     console.error("Error in admin users endpoint:", error);
     return NextResponse.json(
@@ -118,7 +50,7 @@ export async function GET(request: NextRequest) {
         error: "Internal Server Error",
         message: "Failed to fetch users",
       },
-      { status: 500 }
+      { status: 500 },
     );
   }
 }

package/src/api/auth/me.ts

@@ -12,28 +12,21 @@ export async function GET() {
     // Get the authenticated user
     const {
       data: { user },
-      error: authError,
     } = await supabase.auth.getUser();
 
-    if (authError || !user) {
-      return NextResponse.json(
-        { error: "Unauthorized", message: "User not authenticated" },
-        { status: 401 }
-      );
-    }
-
+    // L'utilisateur est déjà authentifié grâce au middleware
     // Get user profile
-    const { data: profile, error: profileError } = await supabase
+    const { data: profile } = await supabase
       .from("user_profil")
       .select("*")
-      .eq("owner_id", user.id)
+      .eq("owner_id", user!.id)
       .single();
 
     // Profile might not exist yet, that's OK
     const userData = {
-      id: user.id,
-      email: user.email,
-      created_at: user.created_at,
+      id: user!.id,
+      email: user!.email,
+      created_at: user!.created_at,
       profile: profile || null,
     };
 
@@ -42,7 +35,7 @@ export async function GET() {
     console.error("Error fetching user:", error);
     return NextResponse.json(
       { error: "Internal Server Error", message: "Failed to fetch user data" },
-      { status: 500 }
+      { status: 500 },
     );
   }
 }

package/src/api/auth/profile.ts

@@ -11,27 +11,20 @@ export async function GET() {
 
     const {
       data: { user },
-      error: authError,
     } = await supabase.auth.getUser();
 
-    if (authError || !user) {
-      return NextResponse.json(
-        { error: "Unauthorized", message: "User not authenticated" },
-        { status: 401 }
-      );
-    }
-
+    // L'utilisateur est déjà authentifié grâce au middleware
     const { data: profile, error: profileError } = await supabase
       .from("user_profil")
       .select("*")
-      .eq("owner_id", user.id)
+      .eq("owner_id", user!.id)
       .single();
 
     if (profileError && profileError.code !== "PGRST116") {
       // PGRST116 = no rows returned, which is OK
       return NextResponse.json(
         { error: "Database Error", message: profileError.message },
-        { status: 500 }
+        { status: 500 },
       );
     }
 
@@ -40,7 +33,7 @@ export async function GET() {
     console.error("Error fetching profile:", error);
     return NextResponse.json(
       { error: "Internal Server Error", message: "Failed to fetch profile" },
-      { status: 500 }
+      { status: 500 },
     );
   }
 }
@@ -55,16 +48,9 @@ export async function PUT(request: NextRequest) {
 
     const {
       data: { user },
-      error: authError,
     } = await supabase.auth.getUser();
 
-    if (authError || !user) {
-      return NextResponse.json(
-        { error: "Unauthorized", message: "User not authenticated" },
-        { status: 401 }
-      );
-    }
-
+    // L'utilisateur est déjà authentifié grâce au middleware
     const body = await request.json();
     const {
       first_name,
@@ -84,7 +70,7 @@ export async function PUT(request: NextRequest) {
     const { data: existingProfile } = await supabase
       .from("user_profil")
       .select("id")
-      .eq("owner_id", user.id)
+      .eq("owner_id", user!.id)
       .single();
 
     let result;
@@ -105,7 +91,7 @@ export async function PUT(request: NextRequest) {
           timezone,
           preferences,
         })
-        .eq("owner_id", user.id)
+        .eq("owner_id", user!.id)
         .select()
         .single();
     } else {
@@ -113,7 +99,7 @@ export async function PUT(request: NextRequest) {
       result = await supabase
         .from("user_profil")
         .insert({
-          owner_id: user.id,
+          owner_id: user!.id,
           first_name,
           last_name,
           avatar_url,
@@ -133,7 +119,7 @@ export async function PUT(request: NextRequest) {
     if (result.error) {
       return NextResponse.json(
         { error: "Database Error", message: result.error.message },
-        { status: 500 }
+        { status: 500 },
       );
     }
 
@@ -142,7 +128,7 @@ export async function PUT(request: NextRequest) {
     console.error("Error updating profile:", error);
     return NextResponse.json(
       { error: "Internal Server Error", message: "Failed to update profile" },
-      { status: 500 }
+      { status: 500 },
     );
   }
 }

package/src/api/public/signin.ts

@@ -3,9 +3,9 @@ import { getSupabaseServerClient } from "@lastbrain/core/server";
 const jsonResponse = (payload: unknown, status = 200) => {
   return new Response(JSON.stringify(payload), {
     headers: {
-      "content-type": "application/json"
+      "content-type": "application/json",
     },
-    status
+    status,
   });
 };
 
@@ -20,7 +20,7 @@ export async function POST(request: Request) {
 
   const { error, data } = await supabase.auth.signInWithPassword({
     email,
-    password 
+    password,
   });
 
   if (error) {

package/src/api/storage.ts

@@ -7,7 +7,7 @@ export async function uploadFile(
   bucket: string,
   path: string,
   file: Blob,
-  contentType: string
+  contentType: string,
 ): Promise<string> {
   const { data, error } = await supabaseBrowserClient.storage
     .from(bucket)
@@ -27,7 +27,10 @@ export async function uploadFile(
 /**
  * Delete files from Supabase Storage
  */
-export async function deleteFiles(bucket: string, paths: string[]): Promise<void> {
+export async function deleteFiles(
+  bucket: string,
+  paths: string[],
+): Promise<void> {
   const { error } = await supabaseBrowserClient.storage
     .from(bucket)
     .remove(paths);
@@ -42,7 +45,7 @@ export async function deleteFiles(bucket: string, paths: string[]): Promise<void
  */
 export async function deleteFilesWithPrefix(
   bucket: string,
-  prefix: string
+  prefix: string,
 ): Promise<void> {
   // List files with the prefix
   const { data: files, error: listError } = await supabaseBrowserClient.storage
@@ -57,7 +60,7 @@ export async function deleteFilesWithPrefix(
   }
 
   if (files && files.length > 0) {
-    const filePaths = files.map(file => file.name);
+    const filePaths = files.map((file) => file.name);
     await deleteFiles(bucket, filePaths);
   }
-}
+}

package/src/auth.build.config.ts

@@ -68,12 +68,31 @@ const authBuildConfig: ModuleBuildConfig = {
       entryPoint: "api/auth/profile",
       authRequired: true,
     },
+    {
+      method: "GET",
+      path: "/api/auth/me",
+      handlerExport: "GET",
+      entryPoint: "api/auth/me",
+      authRequired: true,
+    },
+    {
+      method: "GET",
+      path: "/api/admin/users",
+      handlerExport: "GET",
+      entryPoint: "api/admin/users",
+      authRequired: true,
+    },
   ],
   migrations: {
     enabled: true,
     priority: 20,
     path: "supabase/migrations",
-    files: ["001_auth_base.sql"],
+    files: [
+      "20251112000000_user_init.sql",
+      "20251112000001_auto_profile_and_admin_view.sql",
+      "20251112000002_sync_avatars.sql",
+    ],
+    migrationsDownPath: "supabase/migrations-down",
   },
   menu: {
     public: [
@@ -97,7 +116,7 @@ const authBuildConfig: ModuleBuildConfig = {
         title: "Gestion des utilisateurs",
         description: "Gérez les utilisateurs de la plateforme",
         icon: "Users2",
-        path: "/admin/users",
+        path: "/admin/auth/users",
         order: 1,
       },
     ],

package/src/web/admin/users.tsx

@@ -1,6 +1,6 @@
 "use client";
 
-import { useEffect, useState } from "react";
+import { useCallback, useEffect, useState } from "react";
 import {
   Card,
   CardBody,
@@ -25,12 +25,23 @@ interface User {
   id: string;
   email: string;
   created_at: string;
+  email_confirmed_at?: string;
+  last_sign_in_at?: string;
+  role?: string;
+  full_name?: string;
+  avatar_path?: string;
+  metadata?: Record<string, unknown>;
   profile: {
     first_name?: string;
     last_name?: string;
     avatar_url?: string;
     company?: string;
     location?: string;
+    bio?: string;
+    phone?: string;
+    website?: string;
+    language?: string;
+    timezone?: string;
   };
 }
 
@@ -53,11 +64,7 @@ export function AdminUsersPage() {
     total_pages: 0,
   });
 
-  useEffect(() => {
-    fetchUsers();
-  }, [pagination.page]);
-
-  const fetchUsers = async () => {
+  const fetchUsers = useCallback(async () => {
     try {
       setIsLoading(true);
       const params = new URLSearchParams({
@@ -101,7 +108,11 @@ export function AdminUsersPage() {
     } finally {
       setIsLoading(false);
     }
-  };
+  }, [pagination.page, pagination.per_page, searchQuery]);
+
+  useEffect(() => {
+    fetchUsers();
+  }, [fetchUsers]);
 
   const handleSearch = () => {
     setPagination((prev) => ({ ...prev, page: 1 }));
@@ -188,8 +199,9 @@ export function AdminUsersPage() {
                 <TableHeader>
                   <TableColumn>USER</TableColumn>
                   <TableColumn>EMAIL</TableColumn>
+                  <TableColumn>ROLE</TableColumn>
                   <TableColumn>COMPANY</TableColumn>
-                  <TableColumn>LOCATION</TableColumn>
+                  <TableColumn>LAST SIGN IN</TableColumn>
                   <TableColumn>CREATED</TableColumn>
                   <TableColumn>STATUS</TableColumn>
                 </TableHeader>
@@ -198,14 +210,21 @@ export function AdminUsersPage() {
                     const fullName =
                       user.profile?.first_name && user.profile?.last_name
                         ? `${user.profile.first_name} ${user.profile.last_name}`
-                        : "N/A";
+                        : user.full_name || "N/A";
+
+                    const roleColor =
+                      user.role === "admin" || user.role === "superadmin"
+                        ? "danger"
+                        : user.role === "moderator"
+                          ? "secondary"
+                          : "default";
 
                     return (
                       <TableRow key={user.id}>
                         <TableCell>
                           <div className="flex items-center gap-2">
                             <Avatar
-                              src={user.profile?.avatar_url}
+                              src={`/api/storage/${user.profile?.avatar_url}`}
                               name={fullName}
                               size="sm"
                             />
@@ -217,6 +236,11 @@ export function AdminUsersPage() {
                         <TableCell>
                           <span className="text-small">{user.email}</span>
                         </TableCell>
+                        <TableCell>
+                          <Chip color={roleColor} size="sm" variant="flat">
+                            {user.role || "user"}
+                          </Chip>
+                        </TableCell>
                         <TableCell>
                           <span className="text-small">
                             {user.profile?.company || "-"}
@@ -224,7 +248,9 @@ export function AdminUsersPage() {
                         </TableCell>
                         <TableCell>
                           <span className="text-small">
-                            {user.profile?.location || "-"}
+                            {user.last_sign_in_at
+                              ? formatDate(user.last_sign_in_at)
+                              : "Never"}
                           </span>
                         </TableCell>
                         <TableCell>

package/src/web/auth/dashboard.tsx

@@ -39,7 +39,7 @@ export function DashboardPage() {
     try {
       setIsLoading(true);
       const response = await fetch("/api/auth/me");
-      
+
       if (!response.ok) {
         throw new Error("Failed to fetch user data");
       }
@@ -56,7 +56,10 @@ export function DashboardPage() {
   if (isLoading) {
     return (
       <div className="flex justify-center items-center min-h-[400px]">
-        <Spinner size="lg" label="Loading dashboard..." />
+        <Spinner color="primary" size="lg">
+          {" "}
+          <span className="text-xs text-default-700">Loading dashboard...</span>
+        </Spinner>
       </div>
     );
   }
@@ -77,9 +80,10 @@ export function DashboardPage() {
     return null;
   }
 
-  const fullName = userData.profile?.first_name && userData.profile?.last_name
-    ? `${userData.profile.first_name} ${userData.profile.last_name}`
-    : "User";
+  const fullName =
+    userData.profile?.first_name && userData.profile?.last_name
+      ? `${userData.profile.first_name} ${userData.profile.last_name}`
+      : "User";
 
   return (
     <div className="pt-12 pb-12 max-w-6xl mx-auto px-4">
@@ -110,7 +114,8 @@ export function DashboardPage() {
               <div className="flex items-center gap-2">
                 <Calendar className="w-4 h-4 text-default-400" />
                 <span className="text-small">
-                  Member since {new Date(userData.created_at).toLocaleDateString()}
+                  Member since{" "}
+                  {new Date(userData.created_at).toLocaleDateString()}
                 </span>
               </div>
               {userData.profile?.company && (
@@ -159,7 +164,9 @@ export function DashboardPage() {
             </CardHeader>
             <Divider />
             <CardBody>
-              <p className="text-small text-default-600">{userData.profile.bio}</p>
+              <p className="text-small text-default-600">
+                {userData.profile.bio}
+              </p>
             </CardBody>
           </Card>
         )}
@@ -188,7 +195,7 @@ export function DashboardPage() {
                 <p className="text-2xl font-bold text-secondary">
                   {Math.floor(
                     (Date.now() - new Date(userData.created_at).getTime()) /
-                      (1000 * 60 * 60 * 24)
+                      (1000 * 60 * 60 * 24),
                   )}
                 </p>
                 <p className="text-small text-default-500">Days active</p>