Files
route-commerce/supabase/migrations/.archived/205_admin_list_locations.sql
T
openclaw 916ad39176
Deploy to route.crispygoat.com / deploy (push) Failing after 3m1s
feat(storage): MinIO object storage, Neon Auth, Supabase removal
- Add MinIO/S3-compatible storage client (src/lib/storage.ts) with uploadObject,
  deleteObject, presigned URL helpers, and BUCKETS constant
- Wire product images, brand logos, and water log photos to MinIO via the
  new storage client
- Migrate forgot-password to Neon Auth (remove Supabase /auth/v1/recover call)
- Migrate send-scheduled cron to direct Postgres + Resend (remove Supabase Edge
  Function proxy)
- Add logoUrl to email types (OrderReceipt, Welcome, PasswordReset) and pass
  brand_settings.logo_url from all call sites
- Update email templates to use dynamic logoUrl instead of hardcoded Supabase
  bucket URLs
- Remove hardcoded Supabase URLs from TuxedoVideoHero, TuxedoAboutPage,
  TimeTrackingFieldClient; use brand_settings props + local public/ fallback
- Download brand logos (3) and tuxedo-hero.mp4 (36MB) from Supabase bucket to
  public/ for local development
- Add MinIO env vars to .env.example (endpoint, access key, secret, buckets)
- Fix TimeTrackingFieldClient to destructure logoUrl and brandAccent props
- Fix admin/users.ts logoUrl type (null → undefined for optional string)
- Remove stale sb- cookie from wholesale-auth
- Migrate tuxedo/about page to remove supabase import and use pool query for
  wholesale_settings lookup
2026-06-09 12:23:37 -06:00

58 lines
1.7 KiB
PL/PgSQL

-- Migration 205: admin_list_locations RPC
--
-- Returns ALL non-deleted locations for a brand (including inactive) with a
-- stop_count aggregation. Mirrors get_locations_for_brand but is brand_id-
-- keyed and admin-side (no active filter) so the Locations tab in the admin
-- Stops & Routes page can show inactive venues and draft venues.
--
-- brand_id NULL means platform_admin scope (all brands). This is the
-- standard application-layer brand-scoping pattern (SECURITY DEFINER RPCs
-- bypass RLS; caller is responsible for authorization).
CREATE OR REPLACE FUNCTION public.admin_list_locations(
p_brand_id UUID DEFAULT NULL
)
RETURNS TABLE (
id UUID,
brand_id UUID,
name TEXT,
address TEXT,
city TEXT,
state TEXT,
zip TEXT,
phone TEXT,
contact_name TEXT,
contact_email TEXT,
notes TEXT,
active BOOLEAN,
created_at TIMESTAMPTZ,
updated_at TIMESTAMPTZ,
deleted_at TIMESTAMPTZ,
slug TEXT,
stop_count BIGINT
)
LANGUAGE sql
SECURITY DEFINER
STABLE
SET search_path = public
AS $$
SELECT
l.id, l.brand_id, l.name, l.address, l.city, l.state, l.zip,
l.phone, l.contact_name, l.contact_email, l.notes, l.active,
l.created_at, l.updated_at, l.deleted_at, l.slug,
COALESCE(s.cnt, 0) AS stop_count
FROM public.locations l
LEFT JOIN (
SELECT location_id, COUNT(*) AS cnt
FROM public.stops
WHERE deleted_at IS NULL
GROUP BY location_id
) s ON s.location_id = l.id
WHERE l.deleted_at IS NULL
AND (p_brand_id IS NULL OR l.brand_id = p_brand_id)
ORDER BY lower(l.name) ASC;
$$;
GRANT EXECUTE ON FUNCTION public.admin_list_locations(UUID)
TO anon, authenticated, service_role;