@vibescope/mcp-server 0.0.1 → 0.2.0

package/src/handlers/organizations.ts

@@ -19,7 +19,7 @@
 
 import type { Handler, HandlerRegistry } from './types.js';
 import { validateRequired, validateUUID } from '../validators.js';
-import { randomBytes } from 'crypto';
+import { getApiClient } from '../api-client.js';
 
 // Valid roles in order of permission level
 const ROLE_ORDER = ['viewer', 'member', 'admin', 'owner'] as const;
@@ -29,62 +29,23 @@ type Role = (typeof ROLE_ORDER)[number];
 const PERMISSION_ORDER = ['read', 'write', 'admin'] as const;
 type Permission = (typeof PERMISSION_ORDER)[number];
 
-/**
- * Generate a URL-friendly slug from a name
- */
-function generateSlug(name: string): string {
-	return name
-		.toLowerCase()
-		.replace(/[^a-z0-9]+/g, '-')
-		.replace(/^-|-$/g, '')
-		.slice(0, 50);
-}
-
-/**
- * Generate a secure invite token
- */
-function generateInviteToken(): string {
-	return randomBytes(32).toString('base64url');
-}
-
 // ============================================================================
 // Organization Management
 // ============================================================================
 
 export const listOrganizations: Handler = async (_args, ctx) => {
-	const { supabase, auth } = ctx;
-
-	const { data, error } = await supabase
-		.from('organization_members')
-		.select(`
-			role,
-			joined_at,
-			organizations (
-				id,
-				name,
-				slug,
-				description,
-				logo_url,
-				owner_id,
-				created_at
-			)
-		`)
-		.eq('user_id', auth.userId)
-		.order('joined_at', { ascending: false });
-
-	if (error) throw new Error(`Failed to list organizations: ${error.message}`);
-
-	const organizations = (data || []).map((m) => ({
-		...(m.organizations as unknown as Record<string, unknown>),
-		role: m.role,
-		joined_at: m.joined_at,
-	}));
-
-	return { result: { organizations, count: organizations.length } };
+	const apiClient = getApiClient();
+	const response = await apiClient.listOrganizations();
+
+	if (!response.ok) {
+		throw new Error(response.error || 'Failed to list organizations');
+	}
+
+	return { result: response.data };
 };
 
 export const createOrganization: Handler = async (args, ctx) => {
-	const { name, description, slug: customSlug } = args as {
+	const { name, description, slug } = args as {
 		name: string;
 		description?: string;
 		slug?: string;
@@ -92,40 +53,18 @@ export const createOrganization: Handler = async (args, ctx) => {
 
 	validateRequired(name, 'name');
 
-	const { supabase, auth } = ctx;
-	const slug = customSlug || generateSlug(name);
+	const apiClient = getApiClient();
+	const response = await apiClient.createOrganization({
+		name,
+		description,
+		slug
+	});
 
-	// Check if slug is available
-	const { data: existing } = await supabase
-		.from('organizations')
-		.select('id')
-		.eq('slug', slug)
-		.maybeSingle();
-
-	if (existing) {
-		throw new Error(`Organization slug "${slug}" is already taken`);
+	if (!response.ok) {
+		throw new Error(response.error || 'Failed to create organization');
 	}
 
-	const { data, error } = await supabase
-		.from('organizations')
-		.insert({
-			name,
-			slug,
-			description: description || null,
-			owner_id: auth.userId,
-		})
-		.select()
-		.single();
-
-	if (error) throw new Error(`Failed to create organization: ${error.message}`);
-
-	return {
-		result: {
-			success: true,
-			organization: data,
-			message: `Organization "${name}" created. You are the owner.`,
-		},
-	};
+	return { result: response.data };
 };
 
 export const updateOrganization: Handler = async (args, ctx) => {
@@ -139,8 +78,6 @@ export const updateOrganization: Handler = async (args, ctx) => {
 	validateRequired(organization_id, 'organization_id');
 	validateUUID(organization_id, 'organization_id');
 
-	const { supabase } = ctx;
-
 	const updates: Record<string, unknown> = {};
 	if (name !== undefined) updates.name = name;
 	if (description !== undefined) updates.description = description;
@@ -150,16 +87,14 @@ export const updateOrganization: Handler = async (args, ctx) => {
 		throw new Error('No updates provided');
 	}
 
-	const { data, error } = await supabase
-		.from('organizations')
-		.update(updates)
-		.eq('id', organization_id)
-		.select()
-		.single();
+	const apiClient = getApiClient();
+	const response = await apiClient.updateOrganization(organization_id, updates);
 
-	if (error) throw new Error(`Failed to update organization: ${error.message}`);
+	if (!response.ok) {
+		throw new Error(response.error || 'Failed to update organization');
+	}
 
-	return { result: { success: true, organization: data } };
+	return { result: response.data };
 };
 
 export const deleteOrganization: Handler = async (args, ctx) => {
@@ -168,21 +103,14 @@ export const deleteOrganization: Handler = async (args, ctx) => {
 	validateRequired(organization_id, 'organization_id');
 	validateUUID(organization_id, 'organization_id');
 
-	const { supabase } = ctx;
-
-	const { error } = await supabase
-		.from('organizations')
-		.delete()
-		.eq('id', organization_id);
+	const apiClient = getApiClient();
+	const response = await apiClient.deleteOrganization(organization_id);
 
-	if (error) throw new Error(`Failed to delete organization: ${error.message}`);
+	if (!response.ok) {
+		throw new Error(response.error || 'Failed to delete organization');
+	}
 
-	return {
-		result: {
-			success: true,
-			message: 'Organization deleted. All shares have been removed.',
-		},
-	};
+	return { result: response.data };
 };
 
 // ============================================================================
@@ -195,18 +123,14 @@ export const listOrgMembers: Handler = async (args, ctx) => {
 	validateRequired(organization_id, 'organization_id');
 	validateUUID(organization_id, 'organization_id');
 
-	const { supabase } = ctx;
+	const apiClient = getApiClient();
+	const response = await apiClient.listOrgMembers(organization_id);
 
-	const { data, error } = await supabase
-		.from('organization_members')
-		.select('id, user_id, role, joined_at, invited_by')
-		.eq('organization_id', organization_id)
-		.order('role', { ascending: true })
-		.order('joined_at', { ascending: true });
-
-	if (error) throw new Error(`Failed to list members: ${error.message}`);
+	if (!response.ok) {
+		throw new Error(response.error || 'Failed to list members');
+	}
 
-	return { result: { members: data || [], count: data?.length || 0 } };
+	return { result: response.data };
 };
 
 export const inviteMember: Handler = async (args, ctx) => {
@@ -224,44 +148,14 @@ export const inviteMember: Handler = async (args, ctx) => {
 		throw new Error('Invalid role. Must be admin, member, or viewer.');
 	}
 
-	const { supabase, auth } = ctx;
-	const token = generateInviteToken();
-
-	// Check for existing pending invite
-	const { data: existing } = await supabase
-		.from('organization_invites')
-		.select('id')
-		.eq('organization_id', organization_id)
-		.eq('email', email)
-		.is('accepted_at', null)
-		.gt('expires_at', new Date().toISOString())
-		.maybeSingle();
-
-	if (existing) {
-		throw new Error(`A pending invite already exists for ${email}`);
+	const apiClient = getApiClient();
+	const response = await apiClient.inviteMember(organization_id, email, role);
+
+	if (!response.ok) {
+		throw new Error(response.error || 'Failed to create invite');
 	}
 
-	const { data, error } = await supabase
-		.from('organization_invites')
-		.insert({
-			organization_id,
-			email,
-			role,
-			token,
-			invited_by: auth.userId,
-		})
-		.select()
-		.single();
-
-	if (error) throw new Error(`Failed to create invite: ${error.message}`);
-
-	return {
-		result: {
-			success: true,
-			invite: data,
-			message: `Invite sent to ${email} with role "${role}"`,
-		},
-	};
+	return { result: response.data };
 };
 
 export const updateMemberRole: Handler = async (args, ctx) => {
@@ -285,25 +179,14 @@ export const updateMemberRole: Handler = async (args, ctx) => {
 		throw new Error('Cannot assign owner role. Use transfer ownership instead.');
 	}
 
-	const { supabase, auth } = ctx;
+	const apiClient = getApiClient();
+	const response = await apiClient.updateMemberRole(organization_id, user_id, role);
 
-	// Prevent demoting yourself
-	if (user_id === auth.userId) {
-		throw new Error('Cannot change your own role');
+	if (!response.ok) {
+		throw new Error(response.error || 'Failed to update member role');
 	}
 
-	const { data, error } = await supabase
-		.from('organization_members')
-		.update({ role })
-		.eq('organization_id', organization_id)
-		.eq('user_id', user_id)
-		.neq('role', 'owner') // Cannot change owner's role
-		.select()
-		.single();
-
-	if (error) throw new Error(`Failed to update member role: ${error.message}`);
-
-	return { result: { success: true, member: data } };
+	return { result: response.data };
 };
 
 export const removeMember: Handler = async (args, ctx) => {
@@ -317,23 +200,14 @@ export const removeMember: Handler = async (args, ctx) => {
 	validateUUID(organization_id, 'organization_id');
 	validateUUID(user_id, 'user_id');
 
-	const { supabase } = ctx;
-
-	const { error } = await supabase
-		.from('organization_members')
-		.delete()
-		.eq('organization_id', organization_id)
-		.eq('user_id', user_id)
-		.neq('role', 'owner'); // Cannot remove owner
+	const apiClient = getApiClient();
+	const response = await apiClient.removeMember(organization_id, user_id);
 
-	if (error) throw new Error(`Failed to remove member: ${error.message}`);
+	if (!response.ok) {
+		throw new Error(response.error || 'Failed to remove member');
+	}
 
-	return {
-		result: {
-			success: true,
-			message: 'Member removed. Their org-scoped API keys have been invalidated.',
-		},
-	};
+	return { result: response.data };
 };
 
 export const leaveOrganization: Handler = async (args, ctx) => {
@@ -342,34 +216,14 @@ export const leaveOrganization: Handler = async (args, ctx) => {
 	validateRequired(organization_id, 'organization_id');
 	validateUUID(organization_id, 'organization_id');
 
-	const { supabase, auth } = ctx;
-
-	// Check if user is owner
-	const { data: membership } = await supabase
-		.from('organization_members')
-		.select('role')
-		.eq('organization_id', organization_id)
-		.eq('user_id', auth.userId)
-		.single();
+	const apiClient = getApiClient();
+	const response = await apiClient.leaveOrganization(organization_id);
 
-	if (membership?.role === 'owner') {
-		throw new Error('Owner cannot leave. Transfer ownership first or delete the organization.');
+	if (!response.ok) {
+		throw new Error(response.error || 'Failed to leave organization');
 	}
 
-	const { error } = await supabase
-		.from('organization_members')
-		.delete()
-		.eq('organization_id', organization_id)
-		.eq('user_id', auth.userId);
-
-	if (error) throw new Error(`Failed to leave organization: ${error.message}`);
-
-	return {
-		result: {
-			success: true,
-			message: 'You have left the organization.',
-		},
-	};
+	return { result: response.data };
 };
 
 // ============================================================================
@@ -392,52 +246,14 @@ export const shareProjectWithOrg: Handler = async (args, ctx) => {
 		throw new Error(`Invalid permission. Must be one of: ${PERMISSION_ORDER.join(', ')}`);
 	}
 
-	const { supabase, auth } = ctx;
-
-	// Verify user owns the project
-	const { data: project } = await supabase
-		.from('projects')
-		.select('id, name')
-		.eq('id', project_id)
-		.eq('user_id', auth.userId)
-		.single();
+	const apiClient = getApiClient();
+	const response = await apiClient.shareProjectWithOrg(project_id, organization_id, permission);
 
-	if (!project) {
-		throw new Error('Project not found or you are not the owner');
+	if (!response.ok) {
+		throw new Error(response.error || 'Failed to share project');
 	}
 
-	// Check if share already exists
-	const { data: existing } = await supabase
-		.from('project_shares')
-		.select('id')
-		.eq('project_id', project_id)
-		.eq('organization_id', organization_id)
-		.maybeSingle();
-
-	if (existing) {
-		throw new Error('Project is already shared with this organization');
-	}
-
-	const { data, error } = await supabase
-		.from('project_shares')
-		.insert({
-			project_id,
-			organization_id,
-			permission,
-			shared_by: auth.userId,
-		})
-		.select()
-		.single();
-
-	if (error) throw new Error(`Failed to share project: ${error.message}`);
-
-	return {
-		result: {
-			success: true,
-			share: data,
-			message: `Project "${project.name}" shared with organization (${permission} access)`,
-		},
-	};
+	return { result: response.data };
 };
 
 export const updateProjectShare: Handler = async (args, ctx) => {
@@ -457,19 +273,14 @@ export const updateProjectShare: Handler = async (args, ctx) => {
 		throw new Error(`Invalid permission. Must be one of: ${PERMISSION_ORDER.join(', ')}`);
 	}
 
-	const { supabase } = ctx;
-
-	const { data, error } = await supabase
-		.from('project_shares')
-		.update({ permission })
-		.eq('project_id', project_id)
-		.eq('organization_id', organization_id)
-		.select()
-		.single();
+	const apiClient = getApiClient();
+	const response = await apiClient.updateProjectShare(project_id, organization_id, permission);
 
-	if (error) throw new Error(`Failed to update share: ${error.message}`);
+	if (!response.ok) {
+		throw new Error(response.error || 'Failed to update share');
+	}
 
-	return { result: { success: true, share: data } };
+	return { result: response.data };
 };
 
 export const unshareProject: Handler = async (args, ctx) => {
@@ -483,22 +294,14 @@ export const unshareProject: Handler = async (args, ctx) => {
 	validateUUID(project_id, 'project_id');
 	validateUUID(organization_id, 'organization_id');
 
-	const { supabase } = ctx;
-
-	const { error } = await supabase
-		.from('project_shares')
-		.delete()
-		.eq('project_id', project_id)
-		.eq('organization_id', organization_id);
+	const apiClient = getApiClient();
+	const response = await apiClient.unshareProject(project_id, organization_id);
 
-	if (error) throw new Error(`Failed to unshare project: ${error.message}`);
+	if (!response.ok) {
+		throw new Error(response.error || 'Failed to unshare project');
+	}
 
-	return {
-		result: {
-			success: true,
-			message: 'Project share removed. Org members can no longer access this project.',
-		},
-	};
+	return { result: response.data };
 };
 
 export const listProjectShares: Handler = async (args, ctx) => {
@@ -507,27 +310,14 @@ export const listProjectShares: Handler = async (args, ctx) => {
 	validateRequired(project_id, 'project_id');
 	validateUUID(project_id, 'project_id');
 
-	const { supabase } = ctx;
-
-	const { data, error } = await supabase
-		.from('project_shares')
-		.select(`
-			id,
-			permission,
-			shared_at,
-			shared_by,
-			organizations (
-				id,
-				name,
-				slug
-			)
-		`)
-		.eq('project_id', project_id)
-		.order('shared_at', { ascending: false });
-
-	if (error) throw new Error(`Failed to list shares: ${error.message}`);
-
-	return { result: { shares: data || [], count: data?.length || 0 } };
+	const apiClient = getApiClient();
+	const response = await apiClient.listProjectShares(project_id);
+
+	if (!response.ok) {
+		throw new Error(response.error || 'Failed to list shares');
+	}
+
+	return { result: response.data };
 };
 
 /**