feat(storage): MinIO object storage, Neon Auth, Supabase removal
Deploy to route.crispygoat.com / deploy (push) Failing after 7s
Deploy to route.crispygoat.com / deploy (push) Failing after 7s
- Add MinIO/S3-compatible storage client (src/lib/storage.ts) with uploadObject, deleteObject, presigned URL helpers, and BUCKETS constant - Wire product images, brand logos, and water log photos to MinIO via the new storage client - Migrate forgot-password to Neon Auth (remove Supabase /auth/v1/recover call) - Migrate send-scheduled cron to direct Postgres + Resend (remove Supabase Edge Function proxy) - Add logoUrl to email types (OrderReceipt, Welcome, PasswordReset) and pass brand_settings.logo_url from all call sites - Update email templates to use dynamic logoUrl instead of hardcoded Supabase bucket URLs - Remove hardcoded Supabase URLs from TuxedoVideoHero, TuxedoAboutPage, TimeTrackingFieldClient; use brand_settings props + local public/ fallback - Download brand logos (3) and tuxedo-hero.mp4 (36MB) from Supabase bucket to public/ for local development - Add MinIO env vars to .env.example (endpoint, access key, secret, buckets) - Fix TimeTrackingFieldClient to destructure logoUrl and brandAccent props - Fix admin/users.ts logoUrl type (null → undefined for optional string) - Remove stale sb- cookie from wholesale-auth - Migrate tuxedo/about page to remove supabase import and use pool query for wholesale_settings lookup
This commit is contained in:
@@ -0,0 +1,85 @@
|
||||
-- Migration 142: Add integration credentials storage (Resend, Twilio)
|
||||
-- Store per-brand Resend and Twilio API credentials securely
|
||||
|
||||
ALTER TABLE brand_settings
|
||||
ADD COLUMN IF NOT EXISTS resend_credentials JSONB DEFAULT '{
|
||||
"api_key": null,
|
||||
"from_email": null,
|
||||
"from_name": null
|
||||
}'::jsonb;
|
||||
|
||||
ALTER TABLE brand_settings
|
||||
ADD COLUMN IF NOT EXISTS twilio_credentials JSONB DEFAULT '{
|
||||
"account_sid": null,
|
||||
"auth_token": null,
|
||||
"phone_number": null
|
||||
}'::jsonb;
|
||||
|
||||
-- RPC to get Resend credentials
|
||||
CREATE OR REPLACE FUNCTION get_resend_credentials(p_brand_id UUID)
|
||||
RETURNS JSONB
|
||||
LANGUAGE plpgsql
|
||||
SECURITY DEFINER
|
||||
AS $$
|
||||
BEGIN
|
||||
RETURN COALESCE(
|
||||
(SELECT resend_credentials FROM brand_settings WHERE brand_id = p_brand_id),
|
||||
'{"api_key": null, "from_email": null, "from_name": null}'::jsonb
|
||||
);
|
||||
END;
|
||||
$$;
|
||||
|
||||
-- RPC to save Resend credentials
|
||||
CREATE OR REPLACE FUNCTION set_resend_credentials(
|
||||
p_brand_id UUID,
|
||||
p_credentials JSONB
|
||||
)
|
||||
RETURNS BOOLEAN
|
||||
LANGUAGE plpgsql
|
||||
SECURITY DEFINER
|
||||
AS $$
|
||||
BEGIN
|
||||
UPDATE brand_settings
|
||||
SET resend_credentials = p_credentials,
|
||||
updated_at = now()
|
||||
WHERE brand_id = p_brand_id;
|
||||
RETURN true;
|
||||
END;
|
||||
$$;
|
||||
|
||||
-- RPC to get Twilio credentials
|
||||
CREATE OR REPLACE FUNCTION get_twilio_credentials(p_brand_id UUID)
|
||||
RETURNS JSONB
|
||||
LANGUAGE plpgsql
|
||||
SECURITY DEFINER
|
||||
AS $$
|
||||
BEGIN
|
||||
RETURN COALESCE(
|
||||
(SELECT twilio_credentials FROM brand_settings WHERE brand_id = p_brand_id),
|
||||
'{"account_sid": null, "auth_token": null, "phone_number": null}'::jsonb
|
||||
);
|
||||
END;
|
||||
$$;
|
||||
|
||||
-- RPC to save Twilio credentials
|
||||
CREATE OR REPLACE FUNCTION set_twilio_credentials(
|
||||
p_brand_id UUID,
|
||||
p_credentials JSONB
|
||||
)
|
||||
RETURNS BOOLEAN
|
||||
LANGUAGE plpgsql
|
||||
SECURITY DEFINER
|
||||
AS $$
|
||||
BEGIN
|
||||
UPDATE brand_settings
|
||||
SET twilio_credentials = p_credentials,
|
||||
updated_at = now()
|
||||
WHERE brand_id = p_brand_id;
|
||||
RETURN true;
|
||||
END;
|
||||
$$;
|
||||
|
||||
GRANT EXECUTE ON FUNCTION get_resend_credentials(UUID) TO authenticated;
|
||||
GRANT EXECUTE ON FUNCTION set_resend_credentials(UUID, JSONB) TO authenticated;
|
||||
GRANT EXECUTE ON FUNCTION get_twilio_credentials(UUID) TO authenticated;
|
||||
GRANT EXECUTE ON FUNCTION set_twilio_credentials(UUID, JSONB) TO authenticated;
|
||||
Reference in New Issue
Block a user