mark/vibn-frontend
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
340 Commits 2 Branches 0 Tags
8c5fbad7820b7e36a1b514dded95a209dd4033db
Commit Graph

11 Commits

Author SHA1 Message Date
Mark Henderson
95793d061b fix(auth): make signup path obvious for first-time users 
The /auth page was titled 'Welcome back' which made first-time
visitors think they needed an existing account. Google OAuth
already creates accounts on first sign-in, so this was a copy
problem, not a missing flow.

- Default copy is now neutral ('Sign in or sign up'); explicitly
  notes that an account is auto-created on first sign-in.
- All marketing 'Get started' / 'Start free' CTAs now link to
  /auth?new=1 which switches the page to 'Create your account'
  copy. Plain 'Log in' links keep the neutral default.

Co-authored-by: Cursor <cursoragent@cursor.com>
 2026-05-01 13:12:41 -07:00
Mark Henderson
651ddf1e11 Rip out Theia, ship P5.1 attach E2E + Justine UI work-in-progress 
Theia rip-out:
- Delete app/api/theia-auth/route.ts (Traefik ForwardAuth shim)
- Delete app/api/projects/[projectId]/workspace/route.ts and
  app/api/projects/prewarm/route.ts (Cloud Run Theia provisioning)
- Delete lib/cloud-run-workspace.ts and lib/coolify-workspace.ts
- Strip provisionTheiaWorkspace + theiaWorkspaceUrl/theiaAppUuid/
  theiaError from app/api/projects/create/route.ts response
- Remove Theia callbackUrl branch in app/auth/page.tsx
- Drop "Open in Theia" button + xterm/Theia PTY copy in build/page.tsx
- Drop theiaWorkspaceUrl from deployment/page.tsx Project type
- Strip Theia IDE line + theia-code-os from advisor + agent-chat
  context strings
- Scrub Theia mention from lib/auth/workspace-auth.ts comment

P5.1 (custom apex domains + DNS):
- lib/coolify.ts + lib/opensrs.ts: nameserver normalization, OpenSRS
  XML auth, Cloud DNS plumbing
- scripts/smoke-attach-e2e.ts: full prod GCP + sandbox OpenSRS +
  prod Coolify smoke covering register/zone/A/NS/PATCH/cleanup

In-progress (Justine onboarding/build, MVP setup, agent telemetry):
- New (justine)/stories, project (home) layouts, mvp-setup, run, tasks
  routes + supporting components
- Project shell + sidebar + nav refactor for the Stackless palette
- Agent session API hardening (sessions, events, stream, approve,
  retry, stop) + atlas-chat, advisor, design-surfaces refresh
- New scripts/sync-db-url-from-coolify.mjs +
  scripts/prisma-db-push.mjs + docker-compose.local-db.yml for
  local Prisma workflows
- lib/dev-bypass.ts, lib/chat-context-refs.ts, lib/prd-sections.ts
- Misc: stories CSS, debug/prisma route, modal-theme, BuildLivePlanPanel

Made-with: Cursor
 2026-04-22 18:05:01 -07:00
Mark Henderson
14835e2e0a Revert "fix(gitea-bot): add write:organization scope so bot can create repos" 
This reverts commit 6f79a88abd.

Made-with: Cursor
 2026-04-21 11:12:20 -07:00
Mark Henderson
6f79a88abd fix(gitea-bot): add write:organization scope so bot can create repos 
Without this the bot PAT 403s on POST /orgs/{org}/repos, which is
the single most important operation — creating new project repos
inside the workspace's Gitea org.

Made-with: Cursor
 2026-04-21 11:05:55 -07:00
Mark Henderson
317abf047b Fix auth redirect to use session email instead of hardcoded workspace 
New users were being sent to /marks-account/projects. Now derives
workspace from the signed-in user's email so everyone lands on
their own workspace after Google OAuth.

Made-with: Cursor
 2026-03-16 21:39:19 -07:00
mark
b2e7c70d17 Add client-side Providers wrapper for SessionProvider 2026-02-18 00:07:23 +00:00
Mark Henderson
bbb22f1c37 Switch from SuperTokens to NextAuth.js 
BREAKING CHANGE: Replace SuperTokens with NextAuth.js

Why:
- SuperTokens had persistent Traefik routing issues
- SSL certificate not issuing correctly
- Complex infrastructure (separate container)
- NextAuth runs in Next.js app (simpler, no separate service)

Changes:
- Install next-auth, @auth/prisma-adapter, prisma
- Create NextAuth API route: app/api/auth/[...nextauth]/route.ts
- Add Prisma schema for NextAuth tables (users, sessions, accounts)
- Update auth page to use NextAuth signIn()
- Remove all SuperTokens code and dependencies
- Keep same Google OAuth (just simpler integration)

Benefits:
- No separate auth service needed
- No Traefik routing issues
- Sessions stored in Montreal PostgreSQL
- Simpler configuration
- Battle-tested, widely used

All authentication data stays in Montreal!

Co-authored-by: Cursor <cursoragent@cursor.com>
 2026-02-17 15:12:21 -08:00
Mark Henderson
8cd95607a4 Fix Google OAuth: add redirectURIOnProviderDashboard parameter 
- SuperTokens requires redirectURIOnProviderDashboard param
- Construct it from NEXT_PUBLIC_APP_URL or window.location.origin
- Properly encode the redirect URI in the query string
- Fixes 400 error: 'Please provide the redirectURIOnProviderDashboard'

Co-authored-by: Cursor <cursoragent@cursor.com>
 2026-02-17 12:47:00 -08:00
Mark Henderson
0f8dbf8888 Fix SuperTokens to use separate ThirdParty and EmailPassword recipes 
Co-authored-by: Cursor <cursoragent@cursor.com>
 2026-02-16 16:07:27 -08:00
Mark Henderson
abddadce94 Fix SuperTokens auth component for Google OAuth 
Co-authored-by: Cursor <cursoragent@cursor.com>
 2026-02-16 16:02:18 -08:00
Mark Henderson
6764c1feb0 Add SuperTokens authentication integration 
- Install supertokens-auth-react, supertokens-node, supertokens-web-js
- Create frontend and backend SuperTokens configuration
- Add API route handler for auth endpoints
- Add SuperTokensProvider wrapper in root layout
- Create new auth component with SuperTokens UI
- Configure Google and GitHub OAuth providers
- Ready for SuperTokens core deployment

Co-authored-by: Cursor <cursoragent@cursor.com>
 2026-02-16 15:27:40 -08:00