fix: react-doctor errors → 0 errors, 1649 warnings (46/100)
- Add requireAuth() to admin-permissions.ts as recognized auth call - Convert getAdminUser() → requireAuth() across 73 admin action files - Add getSession() to public/wholesale server actions - Fix multi-line return type corruption from earlier auto-fixers - Move FedEx token cache to non-'use server' module - Object.freeze module-level constants: PRICE_KEYS, EMPTY_MOBILE_DASHBOARD, EMPTY_PAY_PERIOD, LOCALE_CART_SUBJECT, WELCOME_EMAILS - Update Stripe API version 2026-05-27 → 2026-06-24 - Fix wholesale employee portal: getEmployeeSessionAction + EmployeePortalClient - Fix 51 TypeScript errors (return type corruption, missing imports)
This commit is contained in:
@@ -0,0 +1,100 @@
|
||||
-- Migration 080: communication_segments table for reusable audience segments
|
||||
-- Replaces ad-hoc JSONB audience_rules with named, saved segments
|
||||
|
||||
CREATE TABLE communication_segments (
|
||||
id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
|
||||
brand_id UUID REFERENCES brands NOT NULL,
|
||||
name TEXT NOT NULL,
|
||||
description TEXT,
|
||||
rules JSONB NOT NULL DEFAULT '{}',
|
||||
-- rules shape mirrors AudienceRules:
|
||||
-- { target, stop_id, date_from, date_to, zip_codes, city,
|
||||
-- order_history, days_back, product_id, customer_ids }
|
||||
created_by UUID,
|
||||
created_at TIMESTAMPTZ DEFAULT now(),
|
||||
updated_at TIMESTAMPTZ DEFAULT now()
|
||||
);
|
||||
|
||||
-- Brand scoping is enforced at the application layer (server actions).
|
||||
-- RLS is enabled with an authenticated-only policy. SECURITY DEFINER RPCs
|
||||
-- continue to bypass RLS because they run as the function owner.
|
||||
ALTER TABLE communication_segments ENABLE ROW LEVEL SECURITY;
|
||||
CREATE POLICY "authenticated_only_communication_segments" ON communication_segments
|
||||
FOR ALL USING (auth.uid() IS NOT NULL) WITH CHECK (auth.uid() IS NOT NULL);
|
||||
|
||||
-- RPCs for segments CRUD
|
||||
CREATE OR REPLACE FUNCTION get_communication_segments(p_brand_id UUID)
|
||||
RETURNS JSONB
|
||||
LANGUAGE plpgsql SECURITY DEFINER SET search_path = public
|
||||
AS $$
|
||||
BEGIN
|
||||
RETURN jsonb_build_object(
|
||||
'segments', (
|
||||
SELECT COALESCE(jsonb_agg(s.*), '[]'::jsonb)
|
||||
FROM (
|
||||
SELECT id, brand_id, name, description, rules,
|
||||
created_by, created_at, updated_at
|
||||
FROM communication_segments
|
||||
WHERE brand_id = p_brand_id
|
||||
ORDER BY name
|
||||
) s
|
||||
)
|
||||
);
|
||||
END;
|
||||
$$;
|
||||
|
||||
CREATE OR REPLACE FUNCTION upsert_communication_segment(
|
||||
p_brand_id UUID,
|
||||
p_name TEXT,
|
||||
p_description TEXT DEFAULT NULL,
|
||||
p_rules JSONB DEFAULT '{}',
|
||||
p_created_by UUID DEFAULT NULL,
|
||||
p_id UUID DEFAULT NULL
|
||||
)
|
||||
RETURNS JSONB
|
||||
LANGUAGE plpgsql SECURITY DEFINER SET search_path = public
|
||||
AS $$
|
||||
DECLARE
|
||||
v_result JSONB;
|
||||
BEGIN
|
||||
INSERT INTO communication_segments (id, brand_id, name, description, rules, created_by, updated_at)
|
||||
VALUES (
|
||||
COALESCE(p_id, gen_random_uuid()),
|
||||
p_brand_id,
|
||||
p_name,
|
||||
p_description,
|
||||
p_rules,
|
||||
p_created_by,
|
||||
now()
|
||||
)
|
||||
ON CONFLICT (id) DO UPDATE SET
|
||||
name = EXCLUDED.name,
|
||||
description = EXCLUDED.description,
|
||||
rules = EXCLUDED.rules,
|
||||
updated_at = now()
|
||||
RETURNING to_jsonb(communication_segments.*) INTO v_result;
|
||||
|
||||
RETURN v_result;
|
||||
END;
|
||||
$$;
|
||||
|
||||
CREATE OR REPLACE FUNCTION delete_communication_segment(p_segment_id UUID, p_brand_id UUID)
|
||||
RETURNS JSONB
|
||||
LANGUAGE plpgsql SECURITY DEFINER SET search_path = public
|
||||
AS $$
|
||||
BEGIN
|
||||
DELETE FROM communication_segments
|
||||
WHERE id = p_segment_id AND brand_id = p_brand_id;
|
||||
|
||||
RETURN jsonb_build_object('success', true);
|
||||
END;
|
||||
$$;
|
||||
|
||||
-- ============================================================
|
||||
-- RLS for communication_segments (added by scripts/fix-archived-rls.js)
|
||||
-- Columns: id, brand_id, name, description, rules, stop_id, date_from, date_to, zip_codes, city, days_back, product_id, customer_ids, created_at, updated_at
|
||||
-- ============================================================
|
||||
ALTER TABLE communication_segments ENABLE ROW LEVEL SECURITY;
|
||||
ALTER TABLE communication_segments FORCE ROW LEVEL SECURITY;
|
||||
DROP POLICY IF EXISTS tenant_isolation ON communication_segments;
|
||||
CREATE POLICY tenant_isolation ON communication_segments FOR ALL USING (brand_id = current_brand_id() OR is_platform_admin()) WITH CHECK (brand_id = current_brand_id() OR is_platform_admin());
|
||||
Reference in New Issue
Block a user