Files
route-commerce/supabase/migrations/.archived/142_integration_credentials.sql
T
openclaw 916ad39176
Deploy to route.crispygoat.com / deploy (push) Failing after 3m1s
feat(storage): MinIO object storage, Neon Auth, Supabase removal
- Add MinIO/S3-compatible storage client (src/lib/storage.ts) with uploadObject,
  deleteObject, presigned URL helpers, and BUCKETS constant
- Wire product images, brand logos, and water log photos to MinIO via the
  new storage client
- Migrate forgot-password to Neon Auth (remove Supabase /auth/v1/recover call)
- Migrate send-scheduled cron to direct Postgres + Resend (remove Supabase Edge
  Function proxy)
- Add logoUrl to email types (OrderReceipt, Welcome, PasswordReset) and pass
  brand_settings.logo_url from all call sites
- Update email templates to use dynamic logoUrl instead of hardcoded Supabase
  bucket URLs
- Remove hardcoded Supabase URLs from TuxedoVideoHero, TuxedoAboutPage,
  TimeTrackingFieldClient; use brand_settings props + local public/ fallback
- Download brand logos (3) and tuxedo-hero.mp4 (36MB) from Supabase bucket to
  public/ for local development
- Add MinIO env vars to .env.example (endpoint, access key, secret, buckets)
- Fix TimeTrackingFieldClient to destructure logoUrl and brandAccent props
- Fix admin/users.ts logoUrl type (null → undefined for optional string)
- Remove stale sb- cookie from wholesale-auth
- Migrate tuxedo/about page to remove supabase import and use pool query for
  wholesale_settings lookup
2026-06-09 12:23:37 -06:00

86 lines
2.1 KiB
PL/PgSQL

-- Migration 142: Add integration credentials storage (Resend, Twilio)
-- Store per-brand Resend and Twilio API credentials securely
ALTER TABLE brand_settings
ADD COLUMN IF NOT EXISTS resend_credentials JSONB DEFAULT '{
"api_key": null,
"from_email": null,
"from_name": null
}'::jsonb;
ALTER TABLE brand_settings
ADD COLUMN IF NOT EXISTS twilio_credentials JSONB DEFAULT '{
"account_sid": null,
"auth_token": null,
"phone_number": null
}'::jsonb;
-- RPC to get Resend credentials
CREATE OR REPLACE FUNCTION get_resend_credentials(p_brand_id UUID)
RETURNS JSONB
LANGUAGE plpgsql
SECURITY DEFINER
AS $$
BEGIN
RETURN COALESCE(
(SELECT resend_credentials FROM brand_settings WHERE brand_id = p_brand_id),
'{"api_key": null, "from_email": null, "from_name": null}'::jsonb
);
END;
$$;
-- RPC to save Resend credentials
CREATE OR REPLACE FUNCTION set_resend_credentials(
p_brand_id UUID,
p_credentials JSONB
)
RETURNS BOOLEAN
LANGUAGE plpgsql
SECURITY DEFINER
AS $$
BEGIN
UPDATE brand_settings
SET resend_credentials = p_credentials,
updated_at = now()
WHERE brand_id = p_brand_id;
RETURN true;
END;
$$;
-- RPC to get Twilio credentials
CREATE OR REPLACE FUNCTION get_twilio_credentials(p_brand_id UUID)
RETURNS JSONB
LANGUAGE plpgsql
SECURITY DEFINER
AS $$
BEGIN
RETURN COALESCE(
(SELECT twilio_credentials FROM brand_settings WHERE brand_id = p_brand_id),
'{"account_sid": null, "auth_token": null, "phone_number": null}'::jsonb
);
END;
$$;
-- RPC to save Twilio credentials
CREATE OR REPLACE FUNCTION set_twilio_credentials(
p_brand_id UUID,
p_credentials JSONB
)
RETURNS BOOLEAN
LANGUAGE plpgsql
SECURITY DEFINER
AS $$
BEGIN
UPDATE brand_settings
SET twilio_credentials = p_credentials,
updated_at = now()
WHERE brand_id = p_brand_id;
RETURN true;
END;
$$;
GRANT EXECUTE ON FUNCTION get_resend_credentials(UUID) TO authenticated;
GRANT EXECUTE ON FUNCTION set_resend_credentials(UUID, JSONB) TO authenticated;
GRANT EXECUTE ON FUNCTION get_twilio_credentials(UUID) TO authenticated;
GRANT EXECUTE ON FUNCTION set_twilio_credentials(UUID, JSONB) TO authenticated;