Update project configuration and enhance GitHub OAuth integration#89
Closed
prathamesh-patil-5090 wants to merge 6 commits into
Closed
Update project configuration and enhance GitHub OAuth integration#89prathamesh-patil-5090 wants to merge 6 commits into
prathamesh-patil-5090 wants to merge 6 commits into
Conversation
- Removed unnecessary `.env.example` from `.gitignore`. - Updated package name in `package-lock.json` from "func-kode" to "site". - Upgraded several Supabase-related packages to version 2.106.2 and ensured compatibility with Node.js 20+. - Enhanced README with detailed instructions for enabling GitHub OAuth in Supabase. - Refactored authentication logic in various components to improve error handling and user session management. - Updated database schema to include core Supabase schemas and user management functions. - Improved onboarding and profile management processes, including error handling and API integration. This commit aims to streamline the development process and improve user authentication flows.
Collaborator
|
@prathamesh-patil-5090 |
…oauth, telemetry, tsconfig)
Bring auth-fix up to date with dev while preserving OAuth callback normalization, profile API routes, and @supabase/ssr client migration. Co-authored-by: Cursor <cursoragent@cursor.com>
- Changed TypeScript configuration to use "react-jsx" for JSX transformation. - Updated API routes to replace `createRouteHandlerClient` with `createServerSupabaseClient` for improved server-side Supabase client handling. - Refactored the Auth Debug page to utilize the new Supabase client method. - Adjusted PostHog provider to use the new Supabase client import.
basanth-p
added a commit
that referenced
this pull request
Jun 9, 2026
Blockers fixed: - Replace hand-rolled JWT signing (createServiceRoleJwt/crypto) with official Supabase service-role SDK client in app/api/profile/route.ts - Sanitize .env.example — all real secrets replaced with placeholder strings; add SUPABASE_SERVICE_ROLE_KEY placeholder (replaces AUTH_JWT_SECRET for admin use) - Restore .env*.example to .gitignore to prevent future secret leaks - Add .cursor and .vscode to .gitignore (IDE configs should not be committed) Critical fixes: - Remove internal HTTP loopback in app/dashboard/layout.tsx; use direct Supabase admin client call to profiles table instead - Remove dependency on NEXT_PUBLIC_SUPABASE_URL for server admin ops; server-side admin access now uses SUPABASE_SERVICE_ROLE_KEY exclusively Both app/api/profile/route.ts and app/dashboard/layout.tsx now share the same getAdminClient() pattern using createClient() from @supabase/supabase-js.
basanth-p
added a commit
that referenced
this pull request
Jun 9, 2026
fix: address all security and architecture issues from PR #89 review
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
.env.examplefrom.gitignore.package-lock.jsonfrom "func-kode" to "site".This commit aims to streamline the development process and improve user authentication flows.