Skip to content

Update project configuration and enhance GitHub OAuth integration#89

Closed
prathamesh-patil-5090 wants to merge 6 commits into
patchid:devfrom
prathamesh-patil-5090:auth-fix
Closed

Update project configuration and enhance GitHub OAuth integration#89
prathamesh-patil-5090 wants to merge 6 commits into
patchid:devfrom
prathamesh-patil-5090:auth-fix

Conversation

@prathamesh-patil-5090

Copy link
Copy Markdown
Collaborator
  • Removed unnecessary .env.example from .gitignore.
  • Updated package name in package-lock.json from "func-kode" to "site".
  • Upgraded several Supabase-related packages to version 2.106.2 and ensured compatibility with Node.js 20+.
  • Enhanced README with detailed instructions for enabling GitHub OAuth in Supabase.
  • Refactored authentication logic in various components to improve error handling and user session management.
  • Updated database schema to include core Supabase schemas and user management functions.
  • Improved onboarding and profile management processes, including error handling and API integration.

This commit aims to streamline the development process and improve user authentication flows.

basanth-p and others added 2 commits May 27, 2026 16:43
- Removed unnecessary `.env.example` from `.gitignore`.
- Updated package name in `package-lock.json` from "func-kode" to "site".
- Upgraded several Supabase-related packages to version 2.106.2 and ensured compatibility with Node.js 20+.
- Enhanced README with detailed instructions for enabling GitHub OAuth in Supabase.
- Refactored authentication logic in various components to improve error handling and user session management.
- Updated database schema to include core Supabase schemas and user management functions.
- Improved onboarding and profile management processes, including error handling and API integration.

This commit aims to streamline the development process and improve user authentication flows.
@basanth-p

Copy link
Copy Markdown
Collaborator

@prathamesh-patil-5090
Please rebase this to the dev branch.

@prathamesh-patil-5090 prathamesh-patil-5090 changed the base branch from main to dev June 3, 2026 09:44
@basanth-p basanth-p closed this Jun 7, 2026
@basanth-p basanth-p reopened this Jun 8, 2026
prathamesh-patil-5090 and others added 3 commits June 8, 2026 13:23
Bring auth-fix up to date with dev while preserving OAuth callback normalization, profile API routes, and @supabase/ssr client migration.

Co-authored-by: Cursor <cursoragent@cursor.com>
- Changed TypeScript configuration to use "react-jsx" for JSX transformation.
- Updated API routes to replace `createRouteHandlerClient` with `createServerSupabaseClient` for improved server-side Supabase client handling.
- Refactored the Auth Debug page to utilize the new Supabase client method.
- Adjusted PostHog provider to use the new Supabase client import.
basanth-p added a commit that referenced this pull request Jun 9, 2026
Blockers fixed:
- Replace hand-rolled JWT signing (createServiceRoleJwt/crypto) with official
  Supabase service-role SDK client in app/api/profile/route.ts
- Sanitize .env.example — all real secrets replaced with placeholder strings;
  add SUPABASE_SERVICE_ROLE_KEY placeholder (replaces AUTH_JWT_SECRET for admin use)
- Restore .env*.example to .gitignore to prevent future secret leaks
- Add .cursor and .vscode to .gitignore (IDE configs should not be committed)

Critical fixes:
- Remove internal HTTP loopback in app/dashboard/layout.tsx;
  use direct Supabase admin client call to profiles table instead
- Remove dependency on NEXT_PUBLIC_SUPABASE_URL for server admin ops;
  server-side admin access now uses SUPABASE_SERVICE_ROLE_KEY exclusively

Both app/api/profile/route.ts and app/dashboard/layout.tsx now share the
same getAdminClient() pattern using createClient() from @supabase/supabase-js.
@basanth-p basanth-p closed this Jun 9, 2026
basanth-p added a commit that referenced this pull request Jun 9, 2026
fix: address all security and architecture issues from PR #89 review
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants