npm - @striae-org/striae - Versions diffs - 3.3.0 → 4.0.0 - Mend

@striae-org/striae 3.3.0 → 4.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (53) hide show

package/.env.example +1 -1
package/app/components/actions/case-export/core-export.ts +5 -2
package/app/components/actions/case-import/confirmation-import.ts +24 -23
package/app/components/actions/case-import/image-operations.ts +20 -49
package/app/components/actions/case-import/orchestrator.ts +1 -1
package/app/components/actions/case-import/storage-operations.ts +54 -89
package/app/components/actions/case-import/validation.ts +2 -13
package/app/components/actions/case-manage.ts +15 -27
package/app/components/actions/generate-pdf.ts +3 -7
package/app/components/actions/image-manage.ts +63 -129
package/app/components/button/button.module.css +12 -8
package/app/components/sidebar/case-export/case-export.tsx +11 -6
package/app/components/sidebar/cases/case-sidebar.tsx +21 -6
package/app/components/sidebar/sidebar.module.css +0 -2
package/app/components/user/delete-account.tsx +7 -7
package/app/config-example/config.json +2 -8
package/app/hooks/useInactivityTimeout.ts +2 -5
package/app/root.tsx +94 -63
package/app/routes/auth/login.tsx +3 -5
package/app/routes/auth/route.ts +4 -3
package/app/routes/striae/striae.tsx +4 -8
package/app/services/audit/audit-api-client.ts +40 -0
package/app/services/audit/audit-worker-client.ts +14 -17
package/app/styles/root.module.css +13 -101
package/app/tailwind.css +9 -2
package/app/utils/auth.ts +5 -32
package/app/utils/data-api-client.ts +43 -0
package/app/utils/data-operations.ts +59 -75
package/app/utils/image-api-client.ts +130 -0
package/app/utils/pdf-api-client.ts +43 -0
package/app/utils/permissions.ts +10 -23
package/app/utils/user-api-client.ts +90 -0
package/functions/api/_shared/firebase-auth.ts +255 -0
package/functions/api/audit/[[path]].ts +150 -0
package/functions/api/data/[[path]].ts +141 -0
package/functions/api/image/[[path]].ts +127 -0
package/functions/api/pdf/[[path]].ts +110 -0
package/functions/api/user/[[path]].ts +196 -0
package/package.json +2 -1
package/scripts/deploy-all.sh +22 -8
package/scripts/deploy-config.sh +143 -148
package/scripts/deploy-pages-secrets.sh +231 -0
package/scripts/deploy-worker-secrets.sh +1 -1
package/workers/audit-worker/wrangler.jsonc.example +1 -8
package/workers/data-worker/wrangler.jsonc.example +1 -8
package/workers/image-worker/wrangler.jsonc.example +1 -8
package/workers/keys-worker/wrangler.jsonc.example +2 -9
package/workers/pdf-worker/src/assets/icon-256.png +0 -0
package/workers/pdf-worker/wrangler.jsonc.example +1 -8
package/workers/user-worker/src/user-worker.example.ts +121 -41
package/workers/user-worker/wrangler.jsonc.example +1 -8
package/wrangler.toml.example +1 -1
package/app/styles/legal-pages.module.css +0 -113

package/app/root.tsx CHANGED Viewed

@@ -7,8 +7,6 @@ import {
   ScrollRestoration,
   isRouteErrorResponse,
   useRouteError,
-  Link,
-  useLocation,
   useMatches,
 } from 'react-router';
 import {
@@ -16,6 +14,7 @@ import {
   themeStyles
 } from '~/components/theme-provider/theme-provider';
 import { AuthProvider } from '~/components/auth/auth-provider';
+import { auth } from '~/services/firebase';
 import styles from '~/styles/root.module.css';
 import './tailwind.css';
@@ -88,80 +87,112 @@ export function Layout({ children }: { children: React.ReactNode }) {
 }
 export default function App() {
-  const matches = useMatches();
-  const location = useLocation();
-  const isAuthRoute = matches.some(match =>
-    match.id.includes('auth') ||
-    match.pathname?.includes('/auth')
-  ) || location.pathname === '/';
+  return (
+    <AuthProvider>
+      <Outlet />
+    </AuthProvider>
+  );
+}
-  if (isAuthRoute) {
-    return (
-      <AuthProvider>
-        <Outlet />
-      </AuthProvider>
-    );
+interface ErrorBoundaryShellProps {
+  title: string;
+  children: React.ReactNode;
+}
+const LOGIN_REDIRECT_PATH = '/';
+const errorActionStyle = {
+  alignItems: 'center',
+  appearance: 'none',
+  backgroundColor: '#0d6efd',
+  border: '1px solid #0b5ed7',
+  borderRadius: '8px',
+  color: '#ffffff',
+  cursor: 'pointer',
+  display: 'inline-flex',
+  fontSize: '1rem',
+  fontWeight: 600,
+  justifyContent: 'center',
+  lineHeight: 1,
+  marginTop: '1rem',
+  minWidth: '220px',
+  padding: '0.9rem 1.6rem',
+  textDecoration: 'none',
+} as const;
+async function returnToLogin() {
+  try {
+    await auth.signOut();
+  } catch (error) {
+    console.error('Error boundary sign out failed:', error);
+  } finally {
+    if (typeof window !== 'undefined') {
+      localStorage.clear();
+      window.location.href = LOGIN_REDIRECT_PATH;
+    }
   }
+}
-  return <Outlet />;
+function ErrorBoundaryShell({ title, children }: ErrorBoundaryShellProps) {
+  return (
+    <html lang="en" data-theme="light">
+      <head>
+        <meta charSet="utf-8" />
+        <meta name="viewport" content="width=device-width, initial-scale=1" />
+        <meta name="theme-color" content="#377087" />
+        <meta name="color-scheme" content="light" />
+        <style dangerouslySetInnerHTML={{ __html: themeStyles }} />
+        <title>{title}</title>
+        <Meta />
+        <Links />
+      </head>
+      <body className="flex flex-col h-screen w-full overflow-x-hidden">
+        <ThemeProvider theme="light" className="">
+          <main>{children}</main>
+        </ThemeProvider>
+        <ScrollRestoration />
+        <Scripts />
+      </body>
+    </html>
+  );
 }
 export function ErrorBoundary() {
   const error = useRouteError();
   if (isRouteErrorResponse(error)) {
+    const statusText = error.statusText || 'Unexpected error';
     return (
-      <html lang="en">
-        <head>
-          <title>{`${error.status} ${error.statusText}`}</title>
-        </head>
-        <body className="flex flex-col h-screen">
-          <ThemeProvider theme="light" className="">
-          <main>
-            <div className={styles.errorContainer}>
-              <div className={styles.errorTitle}>{error.status}</div>
-              <p className={styles.errorMessage}>{error.statusText}</p>
-              <Link
-                viewTransition
-                prefetch="intent"
-                to="https://striae.org"
-                className={styles.errorLink}>
-                Return Home
-              </Link>
-            </div>
-          </main>
-          </ThemeProvider>
-          <ScrollRestoration />
-          <Scripts />
-        </body>
-      </html>
+      <ErrorBoundaryShell title={`${error.status} ${statusText}`}>
+        <div className={styles.errorContainer}>
+          <div className={styles.errorTitle}>{error.status}</div>
+          <p className={styles.errorMessage}>{statusText}</p>
+          <button
+            type="button"
+            onClick={() => void returnToLogin()}
+            style={errorActionStyle}
+            className={styles.errorLink}>
+            Return to Login
+          </button>
+        </div>
+      </ErrorBoundaryShell>
     );
   }
   return (
-    <html lang="en">
-      <head>
-        <title>Oops! Something went wrong</title>
-      </head>
-      <body className="flex flex-col h-screen">
-        <ThemeProvider theme="light" className="">
-        <main>
-          <div className={styles.errorContainer}>
-            <div className={styles.errorTitle}>500</div>
-            <p className={styles.errorMessage}>Something went wrong. Please try again later.</p>
-            <Link
-              viewTransition
-              prefetch="intent"
-              to="https://striae.org"
-              className={styles.errorLink}>
-              Return Home
-            </Link>
-          </div>
-        </main>
-        </ThemeProvider>
-        <ScrollRestoration />
-        <Scripts />
-      </body>
-    </html>
+    <ErrorBoundaryShell title="Oops! Something went wrong">
+      <div className={styles.errorContainer}>
+        <div className={styles.errorTitle}>500</div>
+        <p className={styles.errorMessage}>Something went wrong. Please try again later.</p>
+        <button
+          type="button"
+          onClick={() => void returnToLogin()}
+          style={errorActionStyle}
+          className={styles.errorLink}>
+          Return to Login
+        </button>
+      </div>
+    </ErrorBoundaryShell>
   );
 }

package/app/routes/auth/login.tsx CHANGED Viewed

@@ -214,11 +214,9 @@ export const Login = () => {
   };
   // Check if user exists in the USER_DB using centralized function
-  const checkUserExists = async (uid: string): Promise<boolean> => {
+  const checkUserExists = async (currentUser: User): Promise<boolean> => {
     try {
-      // Create a minimal user object for the centralized function
-      const tempUser = { uid } as User;
-      const userData = await getUserData(tempUser);
+      const userData = await getUserData(currentUser);
       return userData !== null;
     } catch (error) {
@@ -257,7 +255,7 @@ export const Login = () => {
       // Check if user exists in the USER_DB
       setIsCheckingUser(true);
       try {
-        const userExists = await checkUserExists(currentUser.uid);
+        const userExists = await checkUserExists(currentUser);
         setIsCheckingUser(false);
         if (!userExists) {

package/app/routes/auth/route.ts CHANGED Viewed

@@ -1,7 +1,8 @@
-import { redirect } from 'react-router';
+import { redirect, type LoaderFunctionArgs } from 'react-router';
-export const loader = async () => {
-	throw redirect('/');
+export const loader = async ({ request }: LoaderFunctionArgs) => {
+	const requestUrl = new URL(request.url);
+	throw redirect(`/${requestUrl.search}`);
 };
 export { Login as default, meta } from './login';

package/app/routes/striae/striae.tsx CHANGED Viewed

@@ -7,11 +7,10 @@ import { Toast } from '~/components/toast/toast';
 import { getImageUrl } from '~/components/actions/image-manage';
 import { getNotes, saveNotes } from '~/components/actions/notes-manage';
 import { generatePDF } from '~/components/actions/generate-pdf';
-import { getUserApiKey } from '~/utils/auth';
+import { fetchUserApi } from '~/utils/user-api-client';
 import { resolveEarliestAnnotationTimestamp } from '~/utils/annotation-timestamp';
 import { type AnnotationData, type FileData } from '~/types';
 import { checkCaseIsReadOnly } from '~/components/actions/case-manage';
-import paths from '~/config/config.json';
 import styles from './striae.module.css';
 interface StriaePage {
@@ -76,11 +75,8 @@ export const Striae = ({ user }: StriaePage) => {
   useEffect(() => {
     const fetchUserCompany = async () => {
       try {
-        const apiKey = await getUserApiKey();
-        const response = await fetch(`${paths.user_worker_url}/${user.uid}`, {
-          headers: {
-            'X-Custom-Auth-Key': apiKey
-          }
+        const response = await fetchUserApi(user, `/${encodeURIComponent(user.uid)}`, {
+          method: 'GET'
         });
         if (response.ok) {
@@ -96,7 +92,7 @@ export const Striae = ({ user }: StriaePage) => {
     if (user?.uid) {
       fetchUserCompany();
     }
-  }, [user?.uid]);
+  }, [user]);
   const handleCaseChange = (caseNumber: string) => {
     setCurrentCase(caseNumber);

package/app/services/audit/audit-api-client.ts ADDED Viewed

@@ -0,0 +1,40 @@
+import type { User } from 'firebase/auth';
+import { auth } from '~/services/firebase';
+const AUDIT_API_BASE = '/api/audit';
+function normalizePath(path: string): string {
+  if (!path) {
+    return '/';
+  }
+  return path.startsWith('/') ? path : `/${path}`;
+}
+export async function fetchAuditApi(path: string, init: RequestInit = {}): Promise<Response> {
+  const normalizedPath = normalizePath(path);
+  const currentUserWithOptionalToken = auth.currentUser as User & { getIdToken?: () => Promise<string> };
+  if (!currentUserWithOptionalToken || typeof currentUserWithOptionalToken.getIdToken !== 'function') {
+    throw new Error('Unable to authenticate audit request: missing Firebase token provider');
+  }
+  let idToken: string;
+  try {
+    idToken = await currentUserWithOptionalToken.getIdToken();
+  } catch {
+    throw new Error('Unable to authenticate audit request: failed to retrieve Firebase token');
+  }
+  if (!idToken) {
+    throw new Error('Unable to authenticate audit request: empty Firebase token');
+  }
+  const headers = new Headers(init.headers);
+  headers.set('Authorization', `Bearer ${idToken}`);
+  return fetch(`${AUDIT_API_BASE}${normalizedPath}`, {
+    ...init,
+    headers
+  });
+}

package/app/services/audit/audit-worker-client.ts CHANGED Viewed

@@ -1,8 +1,5 @@
-import paths from '~/config/config.json';
 import { type ValidationAuditEntry } from '~/types';
-import { getDataApiKey } from '~/utils/auth';
-const AUDIT_WORKER_URL = paths.audit_worker_url;
+import { fetchAuditApi } from './audit-api-client';
 interface FetchAuditEntriesParams {
   userId: string;
@@ -35,22 +32,23 @@ export type PersistAuditEntryResult =
 export async function fetchAuditEntriesForUser(
   params: FetchAuditEntriesParams
 ): Promise<ValidationAuditEntry[] | null> {
-  const apiKey = await getDataApiKey();
-  const url = new URL(`${AUDIT_WORKER_URL}/audit/`);
-  url.searchParams.set('userId', params.userId);
+  const searchParams = new URLSearchParams();
+  searchParams.set('userId', params.userId);
   if (params.startDate) {
-    url.searchParams.set('startDate', params.startDate);
+    searchParams.set('startDate', params.startDate);
   }
   if (params.endDate) {
-    url.searchParams.set('endDate', params.endDate);
+    searchParams.set('endDate', params.endDate);
   }
-  const response = await fetch(url.toString(), {
+  const requestPath = `/audit/?${searchParams.toString()}`;
+  const response = await fetchAuditApi(requestPath, {
     method: 'GET',
     headers: {
-      'X-Custom-Auth-Key': apiKey
+      'Accept': 'application/json'
     }
   });
@@ -65,15 +63,14 @@ export async function fetchAuditEntriesForUser(
 export async function persistAuditEntryForUser(
   entry: ValidationAuditEntry
 ): Promise<PersistAuditEntryResult> {
-  const apiKey = await getDataApiKey();
-  const url = new URL(`${AUDIT_WORKER_URL}/audit/`);
-  url.searchParams.set('userId', entry.userId);
+  const searchParams = new URLSearchParams();
+  searchParams.set('userId', entry.userId);
+  const requestPath = `/audit/?${searchParams.toString()}`;
-  const response = await fetch(url.toString(), {
+  const response = await fetchAuditApi(requestPath, {
     method: 'POST',
     headers: {
-      'Content-Type': 'application/json',
-      'X-Custom-Auth-Key': apiKey
+      'Content-Type': 'application/json'
     },
     body: JSON.stringify(entry)
   });

package/app/styles/root.module.css CHANGED Viewed

@@ -1,47 +1,4 @@
 @layer layout {
-  .container {
-    width: 100%;
-    position: relative;
-    transition: opacity 0.8s var(--bezierFastoutSlowin);
-    &[data-loading='true'] {
-      opacity: 0;
-    }
-  }
-  .skip {
-    isolation: isolate;
-    color: var(--background);
-    z-index: var(--zIndex4);
-    &:focus {
-      padding: var(--spaceS) var(--spaceM);
-      position: fixed;
-      top: var(--spaceM);
-      left: var(--spaceM);
-      text-decoration: none;
-      font-weight: var(--fontWeightMedium);
-      line-height: 1;
-      box-shadow: 0 0 0 4px var(--background), 0 0 0 8px var(--text);
-    }
-    &::before {
-      content: '';
-      position: absolute;
-      inset: 0;
-      background-color: var(--primary);
-      clip-path: polygon(
-        0 0,
-        100% 0,
-        100% calc(100% - 8px),
-        calc(100% - 8px) 100%,
-        0 100%
-      );
-      z-index: -1;
-    }
-  }
   .errorContainer {
     display: flex;
     flex-direction: column;
@@ -69,68 +26,24 @@
   }
   .errorLink {
-    color: var(--primary);
-    text-decoration: none;
-    font-size: var(--fontSizeBodyL);
-    font-weight: var(--fontWeightMedium);
-    padding: var(--spaceM) var(--spaceL);
-    border-radius: var(--radiusS);
-    transition: all var(--durationS) var(--bezierFastoutSlowin);
+    -webkit-appearance: none;
+    -moz-appearance: none;
+    transition:
+      background-color var(--durationS) var(--bezierFastoutSlowin),
+      border-color var(--durationS) var(--bezierFastoutSlowin),
+      color var(--durationS) var(--bezierFastoutSlowin);
   }
   .errorLink:hover {
-    background: color-mix(in lab, var(--primary) 10%, transparent);
-    color: color-mix(in lab, var(--primary) 85%, var(--black));
-  }
-  .returnToTop {
-    position: fixed;
-    right: var(--space2XL);
-    bottom: var(--spaceM);
-    width: 50px;
-    height: 50px;
-    border: none;
-    background: transparent;
-    color: color-mix(in lab, var(--white) 60%, var(--textLight));
-    display: inline-flex;
-    align-items: center;
-    justify-content: center;
-    z-index: var(--zIndex4);
-    cursor: pointer;
-    transition: all var(--durationS) var(--bezierFastoutSlowin);
-  }
-  .returnToTop:hover {
-    color: var(--primary);
-  }
-  .returnToTopIcon {
-    transform: rotate(-90deg);
-    color: color-mix(in lab, var(--white) 60%, var(--textLight));
-    filter: drop-shadow(0 0 1px color-mix(in lab, var(--black) 45%, transparent))
-      drop-shadow(0 0 1px color-mix(in lab, var(--white) 45%, transparent));
-    transition: color var(--durationS) var(--bezierFastoutSlowin);
-  }
-  .returnToTop:hover .returnToTopIcon {
-    color: var(--primary);
-  }
-  /* Global enhanced button hover effects */
-  :global(button:not([data-no-enhance]):hover:not(:disabled)) {
-    transform: translateY(-1px);
-    transition: all var(--durationS) var(--bezierFastoutSlowin);
-  }
-  :global(button[class*="Button"]:hover:not(:disabled)) {
-    transform: translateY(-1px);
-    box-shadow: 0 2px 6px color-mix(in lab, currentColor 20%, transparent);
-    transition: all var(--durationS) var(--bezierFastoutSlowin);
+    background-color: color-mix(in lab, var(--primary) 82%, var(--black));
+    border-color: color-mix(in lab, var(--primary) 58%, var(--black));
+    color: var(--white);
+    text-decoration: none;
   }
-  /* Ensure disabled buttons don't get transforms */
-  :global(button:disabled) {
-    transform: none !important;
+  .errorLink:focus-visible {
+    outline: 3px solid color-mix(in lab, var(--white) 65%, var(--primary));
+    outline-offset: 3px;
   }
   @media (max-width: 768px) {
@@ -142,5 +55,4 @@
       font-size: var(--fontSizeBodyL);
     }
   }
 }

package/app/tailwind.css CHANGED Viewed

@@ -39,6 +39,10 @@
     touch-action: manipulation;
   }
+  :where(button:hover:not(:disabled)) {
+    transform: translateY(-1px);
+  }
   :where(svg, img, picture, video, iframe, canvas) {
     display: block;
   }
@@ -73,10 +77,13 @@
     font-family: var(--fontStack);
     font-weight: var(--fontWeightRegular);
     color: var(--textBody);
-    background: linear-gradient(rgba(0, 0, 0, 0.15), rgba(0, 0, 0, 0.95)),
+    background:
+      linear-gradient(rgba(0, 0, 0, 0.15), rgba(0, 0, 0, 0.95)),
       url("/assets/striae.jpg") center/cover no-repeat fixed;
     background-blend-mode: normal;
-    transition: background var(--durationM) ease, opacity var(--durationM) ease;
+    transition:
+      background var(--durationM) ease,
+      opacity var(--durationM) ease;
     opacity: 1;
   }

package/app/utils/auth.ts CHANGED Viewed

@@ -1,38 +1,11 @@
 import paths from '~/config/config.json';
-const KEYS_URL = paths.keys_url;
-const KEYS_AUTH = paths.keys_auth;
-type KeyType = 'USER_DB_AUTH' | 'R2_KEY_SECRET' | 'IMAGES_API_TOKEN' | 'ACCOUNT_HASH' | 'PDF_WORKER_AUTH';
-async function getApiKey(keyType: KeyType): Promise<string> {
-  const keyResponse = await fetch(`${KEYS_URL}/${keyType}`, {
-    headers: {
-      'X-Custom-Auth-Key': KEYS_AUTH
-    }
-  });
-  if (!keyResponse.ok) {
-    throw new Error(`Failed to retrieve ${keyType}`);
-  }
-  return keyResponse.text();
-}
-export async function getUserApiKey(): Promise<string> {
-  return getApiKey('USER_DB_AUTH');
-}
-export async function getDataApiKey(): Promise<string> {
-  return getApiKey('R2_KEY_SECRET');
-}
-export async function getImageApiKey(): Promise<string> {
-  return getApiKey('IMAGES_API_TOKEN');
-}
+const ACCOUNT_HASH = typeof paths.account_hash === 'string' ? paths.account_hash.trim() : '';
 export async function getAccountHash(): Promise<string> {
-  return getApiKey('ACCOUNT_HASH');
-}
+  if (!ACCOUNT_HASH) {
+    throw new Error('ACCOUNT_HASH is not configured in app/config/config.json');
+  }
-export async function getPdfApiKey(): Promise<string> {
-  return getApiKey('PDF_WORKER_AUTH');
+  return ACCOUNT_HASH;
 }

package/app/utils/data-api-client.ts ADDED Viewed

@@ -0,0 +1,43 @@
+import type { User } from 'firebase/auth';
+const DATA_API_BASE = '/api/data';
+function normalizePath(path: string): string {
+  if (!path) {
+    return '/';
+  }
+  return path.startsWith('/') ? path : `/${path}`;
+}
+export async function fetchDataApi(
+  user: User,
+  path: string,
+  init: RequestInit = {}
+): Promise<Response> {
+  const normalizedPath = normalizePath(path);
+  const userWithOptionalToken = user as User & { getIdToken?: () => Promise<string> };
+  if (typeof userWithOptionalToken.getIdToken !== 'function') {
+    throw new Error('Unable to authenticate request: missing Firebase token provider');
+  }
+  let idToken: string;
+  try {
+    idToken = await userWithOptionalToken.getIdToken();
+  } catch {
+    throw new Error('Unable to authenticate request: failed to retrieve Firebase token');
+  }
+  if (!idToken) {
+    throw new Error('Unable to authenticate request: empty Firebase token');
+  }
+  const headers = new Headers(init.headers);
+  headers.set('Authorization', `Bearer ${idToken}`);
+  return fetch(`${DATA_API_BASE}${normalizedPath}`, {
+    ...init,
+    headers
+  });
+}