opencode-supabase 0.0.7-alpha.0 → 0.0.8

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "opencode-supabase",
-  "version": "0.0.7-alpha.0",
+  "version": "0.0.8",
   "type": "module",
   "description": "OpenCode plugin for Supabase integration with server and TUI components",
   "license": "Apache-2.0",

package/src/server/auth-html.ts

@@ -68,6 +68,18 @@ const SHARED_STYLES = `
   .icon-error { background: #ef4444; color: #fff; }
   h1 { font-size: 20px; font-weight: 600; letter-spacing: -0.01em; text-align: center; }
   p { font-size: 16px; color: #EDEDED; text-align: center; line-height: 1.5; max-width: 280px; }
+  .prompt-label { font-size: 13px; color: #8b8b8b; text-align: center; }
+  .prompt-box {
+    width: 100%;
+    background: #1b1b1b;
+    border: 1px solid #2e2e2e;
+    border-radius: 10px;
+    padding: 12px 14px;
+    font-family: ui-monospace, SFMono-Regular, Menlo, Monaco, Consolas, monospace;
+    font-size: 13px;
+    color: #EDEDED;
+    text-align: center;
+  }
   .footer { margin-top: 8px; line-height: 1.5; text-align: center; color: #666; font-size: 12px; }
   .footer a { color: #8b8b8b; text-decoration: underline; text-underline-offset: 2px; }
   .footer a:hover { color: #EDEDED; }
@@ -89,6 +101,8 @@ export const HTML_SUCCESS = `<!doctype html>
         <h1>Authorization Successful</h1>
       </div>
       <p>You can <strong>close this window</strong> and return to OpenCode.</p>
+      <div class="prompt-label">Try this next:</div>
+      <div class="prompt-box">list my Supabase projects</div>
       <div class="footer">Having troubles or found a bug?<br><a href="${REPO_URL}" target="_blank" rel="noopener">Report it on GitHub</a></div>
     </div>
     <script>setTimeout(function(){window.close()},2000)</script>
@@ -116,4 +130,4 @@ export function htmlError(message: string): string {
     </div>
   </body>
 </html>`;
-}
+}

package/src/server/auth.ts

@@ -1,6 +1,7 @@
 import { createConnection } from "node:net";
 import type { PluginInput, PluginOptions } from "@opencode-ai/plugin";
 
+import { formatAuthError } from "../shared/auth-errors.ts";
 import {
   BrokerClientError,
   type BrokerConfig,
@@ -181,19 +182,17 @@ async function ensureServer(
                 headers: { "Content-Type": "text/html" },
               });
             } catch (cause) {
-              const errorMessage = cause instanceof BrokerClientError
-                ? `Authorization failed: ${cause.message}`
-                : "Authorization failed";
+              const message = formatAuthError("exchange", cause);
 
               await deps.logger?.error("supabase auth failed", {
                 status: cause instanceof BrokerClientError ? cause.status : 400,
                 broker_error: cause instanceof BrokerClientError,
               });
 
-              pending.reject(cause instanceof Error ? cause : new Error(String(cause)));
+              pending.reject(cause instanceof Error ? cause : new Error(message));
               await stopServerIfIdle(deps.logger, "broker_exchange_failed");
 
-              return new Response(htmlError(errorMessage), {
+              return new Response(htmlError(message), {
                 status: cause instanceof BrokerClientError && cause.status >= 500 ? 502 : 400,
                 headers: { "Content-Type": "text/html" },
               });

package/src/server/tools.ts

@@ -256,6 +256,23 @@ export function createSupabaseTools(
         );
       },
     }),
+    supabase_list_regions: tool({
+      description: "List all available database regions for creating a Supabase project in a specific organization.",
+      args: {
+        organization_slug: tool.schema.string().describe("Organization slug to list regions for"),
+      },
+      async execute(args, _context: SupabaseToolContext) {
+        return executeSupabaseGet(
+          input,
+          options,
+          deps,
+          "supabase_list_regions",
+          _context,
+          `/projects/available-regions?organization_slug=${encodeURIComponent(args.organization_slug)}`,
+          "list regions",
+        );
+      },
+    }),
     supabase_get_project_api_keys: tool({
       description: "Get the API keys for a Supabase project.",
       args: {

package/src/shared/auth-errors.ts

@@ -0,0 +1,47 @@
+export type AuthErrorStage = "start" | "callback" | "exchange" | "unknown";
+
+const FALLBACKS: Record<AuthErrorStage, string> = {
+  start: "Failed to start OAuth authorization",
+  callback: "OAuth callback failed",
+  exchange: "Authorization failed",
+  unknown: "Authorization failed",
+};
+
+function getObjectMessage(value: unknown): string | undefined {
+  if (!value || typeof value !== "object") return undefined;
+
+  if ("message" in value) {
+    const message = (value as { message: unknown }).message;
+    if (typeof message === "string") return message || undefined;
+  }
+
+  return undefined;
+}
+
+function extractErrorMessage(error: unknown): string | undefined {
+  if (error instanceof Error) return error.message || undefined;
+  if (typeof error === "string") return error || undefined;
+  const message = getObjectMessage(error);
+  if (message) return message;
+
+  if (error && typeof error === "object") {
+    const dataMessage = getObjectMessage((error as { data?: unknown }).data);
+    if (dataMessage) return dataMessage;
+
+    const nestedData = (error as { data?: { data?: unknown } }).data?.data;
+    const nestedDataMessage = getObjectMessage(nestedData);
+    if (nestedDataMessage) return nestedDataMessage;
+
+    const firstError = Array.isArray((error as { errors?: unknown }).errors)
+      ? (error as { errors: unknown[] }).errors[0]
+      : undefined;
+    const firstErrorMessage = getObjectMessage(firstError);
+    if (firstErrorMessage) return firstErrorMessage;
+  }
+
+  return undefined;
+}
+
+export function formatAuthError(stage: AuthErrorStage, error: unknown): string {
+  return extractErrorMessage(error) || FALLBACKS[stage];
+}

package/src/tui/dialog.tsx

@@ -1,12 +1,18 @@
 import type { TuiPluginApi } from "@opencode-ai/plugin/tui";
 import { createSignal } from "solid-js";
 
+import { formatAuthError } from "../shared/auth-errors.ts";
 import type { SupabaseLogger } from "../shared/log.ts";
 
 type SupabaseDialogProps = {
   api: TuiPluginApi;
   onClose: () => void;
   logger: SupabaseLogger;
+  initialState?: OAuthState;
+  lifecycle?: {
+    closed: boolean;
+    dismissed?: boolean;
+  };
 };
 
 type OAuthState =
@@ -14,11 +20,9 @@ type OAuthState =
   | { type: "authorizing"; url: string }
   | { type: "waiting_callback"; url: string }
   | { type: "success" }
-  | { type: "error"; message: string };
+  | { type: "error"; message: string; url?: string };
 
-// API response types
-type ApiError = { message?: string; [key: string]: unknown };
-type ApiResponse<T> = { data?: T; error?: ApiError };
+type ApiResponse<T> = { data?: T; error?: unknown };
 
 type AuthData = {
   url: string;
@@ -26,102 +30,161 @@ type AuthData = {
   method: string;
 };
 
-export function SupabaseDialog(props: SupabaseDialogProps) {
-  const [state, setState] = createSignal<OAuthState>({ type: "idle" });
+type AuthFlowContext = {
+  api: TuiPluginApi;
+  logger: SupabaseLogger;
+  setState: (state: OAuthState) => void;
+  onSuccess: () => void;
+};
 
-  const startOAuth = async () => {
-    try {
-      await props.logger.info("supabase auth started", {
-        phase: "authorize",
-      });
-      setState({ type: "authorizing", url: "" });
-
-      // Start OAuth authorization
-      const authResponse = (await props.api.client.provider.oauth.authorize({
-        providerID: "supabase",
-        method: 0,
-      })) as unknown as ApiResponse<AuthData>;
-
-      // Handle the response shape from the plugin API
-      if (authResponse.error) {
-        throw new Error(
-          authResponse.error.message || "Failed to start OAuth authorization",
-        );
-      }
+function getErrorMessage(error: unknown) {
+  return error instanceof Error ? error.message : String(error);
+}
 
-      const authData = authResponse.data;
+async function openBrowser(url: string, logger: SupabaseLogger) {
+  try {
+    const open = await import("open");
+    await open.default(url);
+  } catch (error) {
+    await logger.warn("supabase browser open failed", {
+      message: getErrorMessage(error),
+    });
+  }
+}
 
-      if (!authData?.url) {
-        throw new Error("Invalid OAuth authorization response");
-      }
+export async function runAuthFlow(context: AuthFlowContext) {
+  let authURL: string | undefined;
+  let completed = false;
 
-      const { url, method } = authData;
-      const safeUrl = new URL(url);
-      setState({ type: "authorizing", url });
+  try {
+    await context.logger.info("supabase auth started", {
+      phase: "authorize",
+    });
+    context.setState({ type: "authorizing", url: "" });
 
-      await props.logger.debug("supabase auth authorize response received", {
-        method,
-        url_origin: safeUrl.origin,
-        url_path: safeUrl.pathname,
-      });
+    const authResponse = (await context.api.client.provider.oauth.authorize({
+      providerID: "supabase",
+      method: 0,
+    })) as ApiResponse<AuthData>;
 
-      // Attempt to open browser automatically
-      if (method === "auto") {
-        try {
-          const open = await import("open");
-          await open.default(url);
-        } catch {
-          await props.logger.warn("supabase browser open failed");
-          // Browser auto-open failed, user can click the URL manually
-        }
-      }
+    if (authResponse.error) {
+      throw new Error(formatAuthError("start", authResponse.error));
+    }
 
-      setState({ type: "waiting_callback", url });
-      await props.logger.debug("supabase auth waiting for callback");
+    const authData = authResponse.data;
+    if (!authData?.url) {
+      throw new Error("Invalid OAuth authorization response");
+    }
 
-      // Wait for callback
-      const callbackResponse = (await props.api.client.provider.oauth.callback({
-        providerID: "supabase",
-        method: 0,
-      })) as unknown as ApiResponse<boolean>;
+    const { url, method } = authData;
+    authURL = url;
+    const safeUrl = new URL(url);
+    context.setState({ type: "authorizing", url });
 
-      if (callbackResponse.error) {
-        throw new Error(
-          callbackResponse.error.message || "OAuth callback failed",
-        );
-      }
+    await context.logger.debug("supabase auth authorize response received", {
+      method,
+      url_origin: safeUrl.origin,
+      url_path: safeUrl.pathname,
+    });
 
-      const callbackSucceeded = callbackResponse.data === true;
+    if (method === "auto") {
+      await openBrowser(url, context.logger);
+    }
 
-      if (callbackSucceeded) {
-        await props.logger.info("supabase auth completed", {
-          status: "success",
-        });
-        setState({ type: "success" });
-        props.api.ui.toast({
-          variant: "success",
-          message:
-            "Connected to Supabase! Tools are ready to use. Ask your agent about supabase.",
-        });
-        props.onClose();
-      } else {
-        throw new Error("OAuth authorization was denied");
-      }
+    context.setState({ type: "waiting_callback", url });
+    await context.logger.debug("supabase auth waiting for callback");
+
+    const callbackResponse = (await context.api.client.provider.oauth.callback({
+      providerID: "supabase",
+      method: 0,
+    })) as ApiResponse<boolean>;
+
+    if (callbackResponse.error) {
+      throw new Error(formatAuthError("callback", callbackResponse.error));
+    }
+
+    if (callbackResponse.data !== true) {
+      throw new Error("OAuth authorization was denied");
+    }
+
+    await context.logger.info("supabase auth completed", {
+      status: "success",
+    });
+    context.setState({ type: "success" });
+    completed = true;
+  } catch (error) {
+    const message = formatAuthError("unknown", error);
+    await context.logger.error("supabase auth failed", {
+      message,
+    });
+    context.setState({ type: "error", message, url: authURL });
+    return;
+  }
+
+  if (completed) {
+    try {
+      context.onSuccess();
     } catch (error) {
-      const message =
-        error instanceof Error ? error.message : "Authorization failed";
-      await props.logger.error("supabase auth failed", {
-        message,
-      });
-      setState({ type: "error", message });
-      props.api.ui.toast({
-        variant: "error",
-        message: `Supabase authorization failed: ${message}`,
+      await context.logger.error("supabase auth success handler failed", {
+        message: getErrorMessage(error),
       });
-      props.onClose();
     }
+  }
+}
+
+export function SupabaseDialog(props: SupabaseDialogProps) {
+  const lifecycle = props.lifecycle ?? { closed: false };
+  const [state, setStateSignal] = createSignal<OAuthState>(props.initialState ?? { type: "idle" });
+
+  const closeDialog = (dismissed = false) => {
+    lifecycle.closed = true;
+    if (dismissed) {
+      lifecycle.dismissed = true;
+    }
+    props.onClose();
+  };
+
+  const setState = (nextState: OAuthState) => {
+    if (lifecycle.closed) {
+      return;
+    }
+
+    setStateSignal(nextState);
+
+    if (nextState.type === "success") {
+      if (lifecycle.dismissed) {
+        // User dismissed waiting dialog; stay silent
+        return;
+      }
+      props.api.ui.dialog.replace(() =>
+        SupabaseDialog({
+          ...props,
+          initialState: nextState,
+          lifecycle,
+        }),
+      );
+      return;
+    }
+
+    props.api.ui.dialog.replace(() =>
+      SupabaseDialog({
+        ...props,
+        initialState: nextState,
+        lifecycle,
+      }),
+    );
   };
 
+  const startOAuth = () =>
+    runAuthFlow({
+      api: props.api,
+      logger: props.logger,
+      setState,
+      onSuccess: () => {
+        // Success dialog handles user-facing confirmation
+      },
+    });
+
   const currentState = state();
 
   if (currentState.type === "idle") {
@@ -130,40 +193,63 @@ export function SupabaseDialog(props: SupabaseDialogProps) {
       message:
         "This will open a browser window to authorize OpenCode to access your Supabase account. Continue?",
       onConfirm: startOAuth,
-      onCancel: props.onClose,
+      onCancel: closeDialog,
     });
   }
 
   if (currentState.type === "authorizing") {
+    if (!currentState.url) {
     return props.api.ui.DialogAlert({
       title: "Connect Supabase",
-      message: currentState.url
-        ? `Opening browser to authorize Supabase...\n\nIf the browser doesn't open automatically, visit:\n${currentState.url}`
-        : "Starting authorization...",
-      onConfirm: props.onClose,
+      message: "Starting authorization...",
+      onConfirm: () => closeDialog(true),
+    });
+    }
+
+    return props.api.ui.DialogAlert({
+      title: "Connect Supabase",
+      message: `Complete authorization in your browser.\n\nIf the browser did not open, visit:\n${currentState.url}\n\nWaiting for authorization...`,
+      onConfirm: () => closeDialog(true),
     });
   }
 
   if (currentState.type === "waiting_callback") {
     return props.api.ui.DialogAlert({
       title: "Connect Supabase",
-      message: `Waiting for authorization in your browser...\n\nIf you need to complete authorization manually, visit:\n${currentState.url}`,
-      onConfirm: props.onClose,
+      message: `Complete authorization in your browser.\n\nIf the browser did not open, visit:\n${currentState.url}\n\nWaiting for authorization...`,
+      onConfirm: () => closeDialog(true),
     });
   }
 
   if (currentState.type === "error") {
-    return props.api.ui.DialogAlert({
+    return props.api.ui.DialogConfirm({
       title: "Authorization Failed",
-      message: currentState.message,
-      onConfirm: props.onClose,
+      message: currentState.url
+        ? `${currentState.message}\n\nIf you need to retry manually, visit:\n${currentState.url}`
+        : currentState.message,
+      onConfirm: async () => {
+        await startOAuth();
+      },
+      onCancel: closeDialog,
     });
   }
 
-  // Success state (should close immediately via onClose)
-  return props.api.ui.DialogAlert({
-    title: "Connected",
-    message: "Successfully connected to Supabase.",
-    onConfirm: props.onClose,
+  return props.api.ui.DialogConfirm({
+    title: "Connected to Supabase",
+    message:
+      "Your account is ready. Try asking:\n\n  list my Supabase projects\n  list my Supabase organizations\n  for organization <name>, list available regions\n\nRun an example?",
+    onConfirm: async () => {
+      try {
+        await props.api.client.tui.appendPrompt({
+          text: "list my Supabase projects",
+        });
+      } catch (error) {
+        await props.logger.warn("supabase append prompt failed", {
+          message: getErrorMessage(error),
+        });
+      }
+      closeDialog();
+    },
+    onCancel: closeDialog,
   });
 }