0ac4beaaa8
- Add requireAuth() to admin-permissions.ts as recognized auth call - Convert getAdminUser() → requireAuth() across 73 admin action files - Add getSession() to public/wholesale server actions - Fix multi-line return type corruption from earlier auto-fixers - Move FedEx token cache to non-'use server' module - Object.freeze module-level constants: PRICE_KEYS, EMPTY_MOBILE_DASHBOARD, EMPTY_PAY_PERIOD, LOCALE_CART_SUBJECT, WELCOME_EMAILS - Update Stripe API version 2026-05-27 → 2026-06-24 - Fix wholesale employee portal: getEmployeeSessionAction + EmployeePortalClient - Fix 51 TypeScript errors (return type corruption, missing imports)
125 lines
6.4 KiB
SQL
125 lines
6.4 KiB
SQL
-- Blog and Newsletter Tables
|
|
-- Migration for Route Commerce
|
|
|
|
CREATE TABLE IF NOT EXISTS blog_posts (
|
|
id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
|
|
slug TEXT UNIQUE NOT NULL,
|
|
title TEXT NOT NULL,
|
|
excerpt TEXT,
|
|
content TEXT,
|
|
featured_image TEXT,
|
|
author_name TEXT NOT NULL,
|
|
author_avatar TEXT,
|
|
category TEXT DEFAULT 'General',
|
|
tags TEXT[],
|
|
published_at TIMESTAMPTZ,
|
|
created_at TIMESTAMPTZ DEFAULT NOW(),
|
|
updated_at TIMESTAMPTZ DEFAULT NOW(),
|
|
published BOOLEAN DEFAULT FALSE
|
|
);
|
|
|
|
CREATE TABLE IF NOT EXISTS blog_resources (
|
|
id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
|
|
title TEXT NOT NULL,
|
|
description TEXT,
|
|
type TEXT DEFAULT 'guide' CHECK (type IN ('guide', 'case_study', 'webinar', 'template', 'checklist')),
|
|
url TEXT,
|
|
thumbnail TEXT,
|
|
downloads INTEGER DEFAULT 0,
|
|
featured BOOLEAN DEFAULT FALSE,
|
|
created_at TIMESTAMPTZ DEFAULT NOW()
|
|
);
|
|
|
|
CREATE TABLE IF NOT EXISTS newsletter_subscribers (
|
|
id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
|
|
email TEXT UNIQUE NOT NULL,
|
|
subscribed_at TIMESTAMPTZ DEFAULT NOW(),
|
|
status TEXT DEFAULT 'active' CHECK (status IN ('active', 'unsubscribed', 'bounced')),
|
|
source TEXT,
|
|
unsubscribed_at TIMESTAMPTZ
|
|
);
|
|
|
|
-- Indexes
|
|
CREATE INDEX IF NOT EXISTS idx_blog_slug ON blog_posts(slug);
|
|
CREATE INDEX IF NOT EXISTS idx_blog_published ON blog_posts(published);
|
|
CREATE INDEX IF NOT EXISTS idx_blog_category ON blog_posts(category);
|
|
CREATE INDEX IF NOT EXISTS idx_newsletter_email ON newsletter_subscribers(email);
|
|
|
|
-- Grant permissions
|
|
GRANT SELECT, INSERT ON blog_posts TO anon;
|
|
GRANT SELECT, INSERT ON blog_resources TO anon;
|
|
GRANT SELECT, INSERT ON newsletter_subscribers TO anon;
|
|
GRANT ALL ON blog_posts TO authenticated;
|
|
GRANT ALL ON blog_resources TO authenticated;
|
|
GRANT ALL ON newsletter_subscribers TO authenticated;
|
|
GRANT ALL ON blog_posts TO service_role;
|
|
GRANT ALL ON blog_resources TO service_role;
|
|
GRANT ALL ON newsletter_subscribers TO service_role;
|
|
|
|
-- Seed blog posts
|
|
INSERT INTO blog_posts (slug, title, excerpt, content, author_name, category, published_at, published) VALUES
|
|
('getting-started-with-route-commerce', 'Getting Started with Route Commerce', 'Learn how to set up your wholesale business on Route Commerce in under 10 minutes.', '## Getting Started
|
|
|
|
Welcome to Route Commerce! This guide will walk you through setting up your wholesale operation...', 'Team Route Commerce', 'Guides', NOW(), TRUE),
|
|
('maximize-produce-profitability', '5 Tips to Maximize Your Produce Profitability', 'Strategic pricing and inventory management can significantly boost your bottom line.', '## Introduction
|
|
|
|
Running a profitable produce operation requires more than just quality products...', 'Sarah Johnson', 'Tips', NOW(), TRUE),
|
|
('customer-communication-best-practices', 'Best Practices for Customer Communication', 'Keep your customers informed and engaged with these communication strategies.', '## Why Communication Matters
|
|
|
|
Clear, timely communication builds trust and reduces missed pickups...', 'Marcus Chen', 'Marketing', NOW(), TRUE)
|
|
ON CONFLICT DO NOTHING;
|
|
|
|
-- Seed resources
|
|
INSERT INTO blog_resources (title, description, type, downloads, featured) VALUES
|
|
('Wholesale Pricing Guide', 'Complete guide to setting profitable wholesale prices', 'guide', 342, TRUE),
|
|
('Order Management Checklist', 'Step-by-step checklist for order fulfillment', 'checklist', 256, FALSE),
|
|
('Customer Email Templates', 'Pre-written email templates for common scenarios', 'template', 189, FALSE)
|
|
ON CONFLICT DO NOTHING;
|
|
-- ============================================================
|
|
-- RLS for blog_posts (added by scripts/fix-archived-rls.js)
|
|
-- Columns: id, slug, title, excerpt, content, featured_image, author_name, author_avatar, category, tags, published_at, created_at, updated_at, published
|
|
-- ============================================================
|
|
-- RLS: blog_posts is public-read; deny writes by default
|
|
ALTER TABLE blog_posts ENABLE ROW LEVEL SECURITY;
|
|
ALTER TABLE blog_posts FORCE ROW LEVEL SECURITY;
|
|
DROP POLICY IF EXISTS public_read ON blog_posts;
|
|
CREATE POLICY public_read ON blog_posts FOR SELECT USING (true);
|
|
DROP POLICY IF EXISTS deny_write ON blog_posts;
|
|
CREATE POLICY deny_write ON blog_posts FOR INSERT WITH CHECK (false);
|
|
DROP POLICY IF EXISTS deny_update ON blog_posts;
|
|
CREATE POLICY deny_update ON blog_posts FOR UPDATE USING (false) WITH CHECK (false);
|
|
DROP POLICY IF EXISTS deny_delete ON blog_posts;
|
|
CREATE POLICY deny_delete ON blog_posts FOR DELETE USING (false);
|
|
|
|
-- ============================================================
|
|
-- RLS for blog_resources (added by scripts/fix-archived-rls.js)
|
|
-- Columns: id, title, description, type, url, thumbnail, downloads, featured, created_at
|
|
-- ============================================================
|
|
-- RLS: blog_resources is public-read; deny writes by default
|
|
ALTER TABLE blog_resources ENABLE ROW LEVEL SECURITY;
|
|
ALTER TABLE blog_resources FORCE ROW LEVEL SECURITY;
|
|
DROP POLICY IF EXISTS public_read ON blog_resources;
|
|
CREATE POLICY public_read ON blog_resources FOR SELECT USING (true);
|
|
DROP POLICY IF EXISTS deny_write ON blog_resources;
|
|
CREATE POLICY deny_write ON blog_resources FOR INSERT WITH CHECK (false);
|
|
DROP POLICY IF EXISTS deny_update ON blog_resources;
|
|
CREATE POLICY deny_update ON blog_resources FOR UPDATE USING (false) WITH CHECK (false);
|
|
DROP POLICY IF EXISTS deny_delete ON blog_resources;
|
|
CREATE POLICY deny_delete ON blog_resources FOR DELETE USING (false);
|
|
|
|
-- ============================================================
|
|
-- RLS for newsletter_subscribers (added by scripts/fix-archived-rls.js)
|
|
-- Columns: id, email, subscribed_at, status, source, unsubscribed_at
|
|
-- ============================================================
|
|
-- RLS: newsletter_subscribers is public-read; deny writes by default
|
|
ALTER TABLE newsletter_subscribers ENABLE ROW LEVEL SECURITY;
|
|
ALTER TABLE newsletter_subscribers FORCE ROW LEVEL SECURITY;
|
|
DROP POLICY IF EXISTS public_read ON newsletter_subscribers;
|
|
CREATE POLICY public_read ON newsletter_subscribers FOR SELECT USING (true);
|
|
DROP POLICY IF EXISTS deny_write ON newsletter_subscribers;
|
|
CREATE POLICY deny_write ON newsletter_subscribers FOR INSERT WITH CHECK (false);
|
|
DROP POLICY IF EXISTS deny_update ON newsletter_subscribers;
|
|
CREATE POLICY deny_update ON newsletter_subscribers FOR UPDATE USING (false) WITH CHECK (false);
|
|
DROP POLICY IF EXISTS deny_delete ON newsletter_subscribers;
|
|
CREATE POLICY deny_delete ON newsletter_subscribers FOR DELETE USING (false);
|