@lastbrain/module-auth 0.1.3 → 0.1.5

package/src/web/auth/profile.tsx

@@ -43,7 +43,8 @@ export function ProfilePage() {
   const [profile, setProfile] = useState<ProfileData>({});
   const [isLoading, setIsLoading] = useState(true);
   const [isSaving, setIsSaving] = useState(false);
-  const [error, setError] = useState<string | null>(null);
+  const [_error, setError] = useState<string | null>(null);
+  // eslint-disable-next-line @typescript-eslint/no-explicit-any
   const [currentUser, setCurrentUser] = useState<any>(null);
 
   useEffect(() => {
@@ -145,19 +146,19 @@ export function ProfilePage() {
       "avatar",
       `${currentUser.id}_32_${version}.webp`,
       files.small,
-      "image/webp"
+      "image/webp",
     );
     urls.medium = await uploadFile(
       "avatar",
       `${currentUser.id}_64_${version}.webp`,
       files.medium,
-      "image/webp"
+      "image/webp",
     );
     urls.large = await uploadFile(
       "avatar",
       `${currentUser.id}_128_${version}.webp`,
       files.large,
-      "image/webp"
+      "image/webp",
     );
 
     // Update user metadata
@@ -172,8 +173,30 @@ export function ProfilePage() {
       },
     });
 
-    // Update profile avatar_url
-    setProfile((prev) => ({ ...prev, avatar_url: urls.large }));
+    // Update profile avatar_url in database
+    try {
+      const response = await fetch("/api/auth/profile", {
+        method: "PATCH",
+        headers: {
+          "Content-Type": "application/json",
+        },
+        body: JSON.stringify({
+          avatar_url: `/avatar/${currentUser.id}_128_${version}.webp`,
+        }),
+      });
+
+      if (!response.ok) {
+        console.error("Failed to update avatar_url in profile");
+      }
+    } catch (error) {
+      console.error("Error updating profile avatar_url:", error);
+    }
+
+    // Update profile avatar_url locally
+    setProfile((prev) => ({
+      ...prev,
+      avatar_url: `/avatar/${currentUser.id}_128_${version}.webp`,
+    }));
 
     return urls;
   };
@@ -196,7 +219,26 @@ export function ProfilePage() {
       },
     });
 
-    // Update profile
+    // Update profile avatar_url in database
+    try {
+      const response = await fetch("/api/auth/profile", {
+        method: "PATCH",
+        headers: {
+          "Content-Type": "application/json",
+        },
+        body: JSON.stringify({
+          avatar_url: null,
+        }),
+      });
+
+      if (!response.ok) {
+        console.error("Failed to update avatar_url in profile");
+      }
+    } catch (error) {
+      console.error("Error updating profile avatar_url:", error);
+    }
+
+    // Update profile locally
     setProfile((prev) => ({ ...prev, avatar_url: "" }));
   };
 

package/src/web/auth/reglage.tsx

@@ -212,15 +212,9 @@ export function ReglagePage() {
               selectedKeys={preferences.theme ? [preferences.theme] : []}
               onChange={(e) => handleSelect("theme", e.target.value)}
             >
-              <SelectItem key="light">
-                Light
-              </SelectItem>
-              <SelectItem key="dark">
-                Dark
-              </SelectItem>
-              <SelectItem key="system">
-                System
-              </SelectItem>
+              <SelectItem key="light">Light</SelectItem>
+              <SelectItem key="dark">Dark</SelectItem>
+              <SelectItem key="system">System</SelectItem>
             </Select>
           </CardBody>
         </Card>
@@ -236,43 +230,31 @@ export function ReglagePage() {
               <Select
                 label="Language"
                 placeholder="Select a language"
-                selectedKeys={preferences.language ? [preferences.language] : []}
+                selectedKeys={
+                  preferences.language ? [preferences.language] : []
+                }
                 onChange={(e) => handleSelect("language", e.target.value)}
               >
-                <SelectItem key="en">
-                  English
-                </SelectItem>
-                <SelectItem key="fr">
-                  Français
-                </SelectItem>
-                <SelectItem key="es">
-                  Español
-                </SelectItem>
-                <SelectItem key="de">
-                  Deutsch
-                </SelectItem>
+                <SelectItem key="en">English</SelectItem>
+                <SelectItem key="fr">Français</SelectItem>
+                <SelectItem key="es">Español</SelectItem>
+                <SelectItem key="de">Deutsch</SelectItem>
               </Select>
               <Select
                 label="Timezone"
                 placeholder="Select a timezone"
-                selectedKeys={preferences.timezone ? [preferences.timezone] : []}
+                selectedKeys={
+                  preferences.timezone ? [preferences.timezone] : []
+                }
                 onChange={(e) => handleSelect("timezone", e.target.value)}
               >
-                <SelectItem key="UTC">
-                  UTC
-                </SelectItem>
-                <SelectItem key="Europe/Paris">
-                  Europe/Paris
-                </SelectItem>
-                <SelectItem key="America/New_York">
-                  America/New_York
-                </SelectItem>
+                <SelectItem key="UTC">UTC</SelectItem>
+                <SelectItem key="Europe/Paris">Europe/Paris</SelectItem>
+                <SelectItem key="America/New_York">America/New_York</SelectItem>
                 <SelectItem key="America/Los_Angeles">
                   America/Los_Angeles
                 </SelectItem>
-                <SelectItem key="Asia/Tokyo">
-                  Asia/Tokyo
-                </SelectItem>
+                <SelectItem key="Asia/Tokyo">Asia/Tokyo</SelectItem>
               </Select>
             </div>
           </CardBody>

package/src/web/public/SignInPage.tsx

@@ -8,7 +8,6 @@ import {
   Button,
   Card,
   CardBody,
-  CardHeader,
   Chip,
   Input,
   Link,
@@ -22,7 +21,7 @@ function SignInForm() {
   const [email, setEmail] = useState("");
   const [password, setPassword] = useState("");
   const [isLoading, setIsLoading] = useState(false);
-  const [error, setError] = useState<string | null>(null);
+  const [error, _setError] = useState<string | null>(null);
   const redirectUrl = searchParams.get("redirect");
   const router = useRouter();
   const handleSubmit = async (event: FormEvent<HTMLFormElement>) => {

package/src/web/public/SignUpPage.tsx

@@ -75,7 +75,7 @@ function SignUpForm() {
       // Si la confirmation par email est requise
       if (data.user && !data.session) {
         setSuccess(
-          "Compte créé avec succès ! Veuillez vérifier votre email pour confirmer votre compte."
+          "Compte créé avec succès ! Veuillez vérifier votre email pour confirmer votre compte.",
         );
         return;
       }
@@ -98,7 +98,7 @@ function SignUpForm() {
           router.push("/signin");
         }
       }, 2000);
-    } catch (err) {
+    } catch {
       addToast({
         title: "Erreur",
         description: "Une erreur inattendue est survenue.",

package/supabase/.temp/cli-latest

@@ -0,0 +1 @@
+v2.58.5

package/supabase/migrations/20251112000000_user_init.sql

@@ -172,4 +172,4 @@ DROP TRIGGER IF EXISTS set_user_notifications_updated_at ON public.user_notifica
 CREATE TRIGGER set_user_notifications_updated_at
   BEFORE UPDATE ON public.user_notifications
   FOR EACH ROW
-  EXECUTE FUNCTION public.set_user_notifications_updated_at();
+  EXECUTE FUNCTION public.set_user_notifications_updated_at();

package/supabase/migrations/20251112000001_auto_profile_and_admin_view.sql

@@ -0,0 +1,206 @@
+-- Auto-create user profile when user signs up and admin RPC
+-- Module: @lastbrain/module-auth
+
+-- Add unique constraint on owner_id if not exists
+DO $$ 
+BEGIN
+    IF NOT EXISTS (
+        SELECT 1 FROM information_schema.table_constraints 
+        WHERE constraint_name = 'user_profil_owner_id_key' 
+        AND table_name = 'user_profil'
+    ) THEN
+        ALTER TABLE public.user_profil ADD CONSTRAINT user_profil_owner_id_key UNIQUE (owner_id);
+    END IF;
+END $$;
+
+-- Auto-create user profile when user signs up
+-- This ensures every user has a profile in user_profil table
+
+-- Function to create user profile automatically
+CREATE OR REPLACE FUNCTION public.handle_new_user()
+RETURNS TRIGGER AS $$
+BEGIN
+  INSERT INTO public.user_profil (owner_id, created_at, updated_at)
+  VALUES (NEW.id, now(), now());
+  RETURN NEW;
+EXCEPTION
+  WHEN unique_violation THEN
+    -- Profile already exists, ignore
+    RETURN NEW;
+END;
+$$ LANGUAGE plpgsql SECURITY DEFINER;
+
+-- Trigger to call the function when a new user is created
+DROP TRIGGER IF EXISTS on_auth_user_created ON auth.users;
+CREATE TRIGGER on_auth_user_created
+  AFTER INSERT ON auth.users
+  FOR EACH ROW EXECUTE FUNCTION public.handle_new_user();
+
+-- =====================================================
+-- Function: get_admin_users
+-- =====================================================
+-- RPC function for admins to get user data with emails
+CREATE OR REPLACE FUNCTION public.get_admin_users(
+  page_number INTEGER DEFAULT 1,
+  page_size INTEGER DEFAULT 20,
+  search_term TEXT DEFAULT ''
+)
+RETURNS JSON
+LANGUAGE plpgsql
+SECURITY DEFINER
+AS $$
+DECLARE
+  offset_val INTEGER;
+  result JSON;
+  total_count INTEGER;
+BEGIN
+  -- Check if user is superadmin
+  IF NOT is_superadmin(auth.uid()) THEN
+    RAISE EXCEPTION 'Access denied. Superadmin required.';
+  END IF;
+
+  offset_val := (page_number - 1) * page_size;
+
+  -- Get total count first
+  SELECT COUNT(*) INTO total_count
+  FROM public.user_profil p
+  LEFT JOIN auth.users au ON p.owner_id = au.id
+  WHERE 
+    CASE 
+      WHEN search_term = '' THEN true
+      ELSE (
+        p.first_name ILIKE '%' || search_term || '%' OR
+        p.last_name ILIKE '%' || search_term || '%' OR
+        au.email ILIKE '%' || search_term || '%' OR
+        (au.raw_user_meta_data->>'full_name') ILIKE '%' || search_term || '%' OR
+        (au.raw_app_meta_data->'roles'->>0) ILIKE '%' || search_term || '%'
+      )
+    END;
+
+  -- Build the result JSON
+  SELECT json_build_object(
+    'data', COALESCE(json_agg(
+      json_build_object(
+        'id', fp.owner_id,
+        'email', COALESCE(au.email, 'N/A'),
+        'created_at', COALESCE(au.created_at, fp.created_at),
+        'email_confirmed_at', au.email_confirmed_at,
+        'last_sign_in_at', au.last_sign_in_at,
+        'role', COALESCE(au.raw_app_meta_data->'roles'->>0, 'user'),
+        'full_name', au.raw_user_meta_data->>'full_name',
+        'avatar_path', au.raw_user_meta_data->>'avatar',
+        'metadata', au.raw_user_meta_data,
+        'profile', json_build_object(
+          'first_name', fp.first_name,
+          'last_name', fp.last_name,
+          'avatar_url', fp.avatar_url,
+          'bio', fp.bio,
+          'phone', fp.phone,
+          'company', fp.company,
+          'website', fp.website,
+          'location', fp.location,
+          'language', fp.language,
+          'timezone', fp.timezone
+        )
+      )
+    ), '[]'::json),
+    'pagination', json_build_object(
+      'page', page_number,
+      'per_page', page_size,
+      'total', total_count,
+      'total_pages', CEIL(total_count::DECIMAL / page_size)
+    )
+  ) INTO result
+  FROM (
+    SELECT 
+      p.id,
+      p.owner_id,
+      p.first_name,
+      p.last_name,
+      p.avatar_url,
+      p.bio,
+      p.phone,
+      p.company,
+      p.website,
+      p.location,
+      p.language,
+      p.timezone,
+      p.created_at
+    FROM public.user_profil p
+    LEFT JOIN auth.users au ON p.owner_id = au.id
+    WHERE 
+      CASE 
+        WHEN search_term = '' THEN true
+        ELSE (
+          p.first_name ILIKE '%' || search_term || '%' OR
+          p.last_name ILIKE '%' || search_term || '%' OR
+          au.email ILIKE '%' || search_term || '%' OR
+          (au.raw_user_meta_data->>'full_name') ILIKE '%' || search_term || '%' OR
+          (au.raw_app_meta_data->'roles'->>0) ILIKE '%' || search_term || '%'
+        )
+      END
+    ORDER BY p.created_at DESC
+    LIMIT page_size
+    OFFSET offset_val
+  ) fp
+  LEFT JOIN auth.users au ON fp.owner_id = au.id;
+
+  RETURN result;
+END;
+$$;
+
+-- =====================================================
+-- Function: sync_fullname_to_metadata
+-- =====================================================
+-- Synchronize full_name in auth.users metadata when profile is updated
+CREATE OR REPLACE FUNCTION public.sync_fullname_to_metadata()
+RETURNS TRIGGER AS $$
+DECLARE
+  full_name_value TEXT;
+  current_metadata JSONB;
+BEGIN
+  -- Build full_name from first_name and last_name
+  full_name_value := TRIM(CONCAT(COALESCE(NEW.first_name, ''), ' ', COALESCE(NEW.last_name, '')));
+  
+  -- If full_name is empty or just spaces, set to null
+  IF full_name_value = '' OR full_name_value IS NULL THEN
+    full_name_value := NULL;
+  END IF;
+  
+  -- Get current metadata
+  SELECT COALESCE(raw_user_meta_data, '{}'::jsonb) 
+  INTO current_metadata 
+  FROM auth.users 
+  WHERE id = NEW.owner_id;
+  
+  -- Update metadata with new full_name
+  UPDATE auth.users 
+  SET raw_user_meta_data = current_metadata || jsonb_build_object('full_name', full_name_value)
+  WHERE id = NEW.owner_id;
+  
+  RETURN NEW;
+END;
+$$ LANGUAGE plpgsql SECURITY DEFINER;
+
+-- Trigger to sync full_name when profile is updated
+DROP TRIGGER IF EXISTS sync_fullname_on_profile_update ON public.user_profil;
+CREATE TRIGGER sync_fullname_on_profile_update
+  AFTER UPDATE OF first_name, last_name ON public.user_profil
+  FOR EACH ROW 
+  WHEN (OLD.first_name IS DISTINCT FROM NEW.first_name OR OLD.last_name IS DISTINCT FROM NEW.last_name)
+  EXECUTE FUNCTION public.sync_fullname_to_metadata();
+
+-- Trigger to sync full_name when profile is inserted
+DROP TRIGGER IF EXISTS sync_fullname_on_profile_insert ON public.user_profil;
+CREATE TRIGGER sync_fullname_on_profile_insert
+  AFTER INSERT ON public.user_profil
+  FOR EACH ROW 
+  WHEN (NEW.first_name IS NOT NULL OR NEW.last_name IS NOT NULL)
+  EXECUTE FUNCTION public.sync_fullname_to_metadata();
+
+-- Create profile for existing users who don't have one (if any)
+INSERT INTO public.user_profil (owner_id, created_at, updated_at)
+SELECT id, created_at, created_at
+FROM auth.users
+WHERE id NOT IN (SELECT owner_id FROM public.user_profil WHERE owner_id IS NOT NULL)
+ON CONFLICT (owner_id) DO NOTHING;

package/supabase/migrations/20251112000002_sync_avatars.sql

@@ -0,0 +1,54 @@
+-- Sync avatar_url from auth.users metadata to user_profil
+-- Module: @lastbrain/module-auth
+
+-- Function to sync avatars from auth metadata to user_profil
+CREATE OR REPLACE FUNCTION public.sync_avatar_from_auth_metadata()
+RETURNS VOID
+LANGUAGE plpgsql
+SECURITY DEFINER
+AS $$
+BEGIN
+  -- Update user_profil with avatar URLs from auth.users metadata
+  UPDATE public.user_profil 
+  SET avatar_url = CASE 
+    WHEN (au.raw_user_meta_data->>'avatar') IS NOT NULL 
+    THEN concat('/', au.raw_user_meta_data->>'avatar')
+    ELSE avatar_url
+  END
+  FROM auth.users au 
+  WHERE public.user_profil.owner_id = au.id
+    AND (au.raw_user_meta_data->>'avatar') IS NOT NULL
+    AND public.user_profil.avatar_url IS NULL;
+
+  -- Log the number of updated records
+  RAISE NOTICE 'Avatar sync completed';
+END;
+$$;
+
+-- Create a trigger to automatically sync avatar when auth.users is updated
+CREATE OR REPLACE FUNCTION public.handle_auth_user_avatar_update()
+RETURNS TRIGGER AS $$
+BEGIN
+  -- Only update if the avatar metadata changed
+  IF (OLD.raw_user_meta_data->>'avatar') IS DISTINCT FROM (NEW.raw_user_meta_data->>'avatar') THEN
+    UPDATE public.user_profil 
+    SET avatar_url = CASE 
+      WHEN (NEW.raw_user_meta_data->>'avatar') IS NOT NULL 
+      THEN concat('/', NEW.raw_user_meta_data->>'avatar')
+      ELSE NULL
+    END
+    WHERE owner_id = NEW.id;
+  END IF;
+  
+  RETURN NEW;
+END;
+$$ LANGUAGE plpgsql SECURITY DEFINER;
+
+-- Create trigger for avatar sync on auth.users update
+DROP TRIGGER IF EXISTS on_auth_user_avatar_updated ON auth.users;
+CREATE TRIGGER on_auth_user_avatar_updated
+  AFTER UPDATE ON auth.users
+  FOR EACH ROW EXECUTE FUNCTION public.handle_auth_user_avatar_update();
+
+-- Run initial sync for existing users
+SELECT public.sync_avatar_from_auth_metadata();

package/supabase/migrations-down/20251112000000_user_init.down.sql

@@ -40,6 +40,8 @@ DROP TABLE IF EXISTS public.user_address;
 -- =====================================================
 DROP TRIGGER IF EXISTS set_user_profil_updated_at ON public.user_profil;
 DROP FUNCTION IF EXISTS public.set_user_profil_updated_at();
+DROP FUNCTION IF EXISTS public.handle_new_user();
+
 
 DROP POLICY IF EXISTS user_profil_superadmin_all ON public.user_profil;
 DROP POLICY IF EXISTS user_profil_owner_delete ON public.user_profil;

package/supabase/migrations-down/20251112000001_auto_profile_and_admin_view.down.sql

@@ -0,0 +1,23 @@
+-- Rollback auto-create user profile and admin RPC
+-- Module: @lastbrain/module-auth
+
+-- Drop the RPC function
+DROP FUNCTION IF EXISTS public.get_admin_users(INTEGER, INTEGER, TEXT);
+
+-- Drop the trigger first
+DROP TRIGGER IF EXISTS on_auth_user_created ON auth.users;
+
+-- Drop the function
+DROP FUNCTION IF EXISTS public.handle_new_user() CASCADE;
+
+-- Remove unique constraint on owner_id if exists
+DO $$ 
+BEGIN
+    IF EXISTS (
+        SELECT 1 FROM information_schema.table_constraints 
+        WHERE constraint_name = 'user_profil_owner_id_key' 
+        AND table_name = 'user_profil'
+    ) THEN
+        ALTER TABLE public.user_profil DROP CONSTRAINT user_profil_owner_id_key;
+    END IF;
+END $$;

package/supabase/migrations-down/20251112000002_sync_avatars.down.sql

@@ -0,0 +1,9 @@
+-- Rollback avatar sync functionality
+-- Module: @lastbrain/module-auth
+
+-- Drop the trigger
+DROP TRIGGER IF EXISTS on_auth_user_avatar_updated ON auth.users;
+
+-- Drop the functions
+DROP FUNCTION IF EXISTS public.handle_auth_user_avatar_update();
+DROP FUNCTION IF EXISTS public.sync_avatar_from_auth_metadata();