Files
route-commerce/MEMORY.md
T

15 KiB

MEMORY.md — Persistent Session Context

This file captures key context, decisions, fixes, and state from recent work so it survives across conversations.

Last updated: 2026-06-03 (during Supabase migration apply session)


Supabase CLI + Migrations Tooling

  • User ran supabase login
  • We ran: supabase link --project-ref wnzkhezyhnfzhkhiflrp
  • Link succeeded. Project appears as LINKED (●) in supabase projects list.
  • Link state lives under supabase/.temp/ (project-ref, linked-project.json, pooler-url, etc.). Not the legacy .supabase/config.toml at project root.
  • This enables supabase db query --linked, supabase migration list, etc.

Important Environment Note

  • Direct Postgres connections (db.wnzkhezyhnfzhkhiflrp.supabase.co:5432 using service role key as password) do not work from this workspace:
    • getaddrinfo ENOTFOUND
    • IPv6 "network is unreachable" in some cases
  • HTTPS / Supabase REST / Management API work fine.
  • Therefore the push-migrations.js CLI path (using linked project) is the only reliable way to apply migrations here.

Updated Migration Script

File: supabase/push-migrations.js

Key changes:

  • Detection logic now recognizes modern link: supabase/.temp/project-ref (in addition to old .supabase/config.toml).
  • pushWithCli() rewritten to apply files one-by-one using:
    supabase db query --linked --file "supabase/migrations/NNN_foo.sql"
    
    (Previously tried db push --db-url ... which used direct connection and failed here.)
  • Falls back to direct pg only if CLI path fails.
  • Header comments updated with current recommended workflow.

Recommended commands now:

supabase login
supabase link --project-ref wnzkhezyhnfzhkhiflrp
node supabase/push-migrations.js 148          # or any prefix
# or
npm run migrate:one 148

npm run migrate (no arg) will push every *.sql in order (use with caution).


Migration Files Patched in This Session

These changes were required to make the files actually apply successfully against the live remote schema (column drift, syntax errors, non-idempotent statements, pre-existing tables).

091_brand_plan_tier.sql

  • Fixed syntax error: extra ) in get_brand_plan_info:
    ... date >= date_trunc('month', now()));   -- was broken
    
    now());

145_create_product_images_bucket.sql

  • Column name: allowedMimeTypesallowed_mime_types (current Supabase storage.buckets schema uses snake_case).
  • Made idempotent:
    • Bucket insert now uses WHERE NOT EXISTS (...) (handles both id and name unique constraints).
    • Added DROP POLICY IF EXISTS ... before each CREATE POLICY (so re-runs don't fail).

Policies created:

  • "Public can view product-images"
  • "Admins can upload product-images"

148_public_stops_rpc.sql

  • time is a reserved word in Postgres.
  • Quoted the output column and the source reference:
    RETURNS TABLE ( ..., "time" TEXT, ... )
    ...
    s."time",
    
  • GRANTs to anon/authenticated/service_role added at bottom.

200_production_features.sql

  • user_activity_logs table originated in 036_user_activity_logs.sql (no brand_id, different column names: activity_type + details).
  • 200's CREATE TABLE IF NOT EXISTS was a no-op.
  • Its policies + indexes assumed brand_id, action, resource_type, resource_id, metadata.
  • Added after the CREATE TABLE block:
    ALTER TABLE user_activity_logs
      ADD COLUMN IF NOT EXISTS brand_id UUID REFERENCES brands(id) ON DELETE SET NULL,
      ... (other columns) ...
    
  • This unblocked policy creation and indexes.

Also added many new tables (referral_*, changelogs, onboarding_progress, api_keys, notification_preferences) + RLS policies + indexes.

201_seed_data.sql

  • Heavily truncated.
  • Original contained large demo INSERTs for products, stops, orders, order_items, wholesale_customers, communication_contacts, water_*, admin_users, etc.
  • These used outdated column lists vs. the live DB (e.g. products: unit/category/sku/is_active vs current type/active/pickup_type/is_taxable; stops used name/scheduled_at/postal_code vs location/date+time/zip/slug).
  • Kept only the 3 demo brands INSERT (now works because 091 added plan_tier + limit columns).
  • Added explanatory comment.
  • File now ends cleanly after COMMIT;.

(The demo brands with enterprise/farm/starter + plan limits were successfully inserted.)

Other notes on 147 / 202

  • 147_admin_create_stop_rpcs.sql and 202_fix_admin_create_stop.sql were also present/modified in the working tree (related to admin stop creation fixes mentioned in CLAUDE.md).

Successfully Applied (this session, via updated script)

Batches included (not exhaustive):

  • 084 (shipments)
  • 091 (plan tier + get_brand_plan_info)
  • 142 (integration_credentials / resend + twilio RPCs)
  • 143 (enable_route_trace via set_brand_feature)
  • 144 (time_tracking_worker_number_rls)
  • 145 (product-images bucket + policies)
  • 146 (sitemap stops RPC)
  • 147 (admin create stop RPCs)
  • 148 (public stops RPC) — verified working
  • 200 (production features)
  • 201 (brands seed only)
  • 202 (admin create stop fix)

Verification queries (post-apply) confirmed:

  • shipments table exists
  • get_resend_credentials / get_public_stops_for_brand / get_active_stops_with_brand functions exist
  • product-images bucket + its two policies exist
  • demo brand (sunrise-farms) has plan_tier = 'enterprise'
  • etc.

Current State / Gotchas

  • supabase migration list will show a lot of "pending" because the project's custom numeric migrations (00x_*.sql) were historically applied via the raw-SQL push script, not registered in Supabase's schema_migrations tracking table. Only early ones (001/002) + many timestamped migrations from other activity are tracked.
  • Many migrations are intentionally written to be re-runnable. Re-pushing a prefix is the supported workflow for this project.
  • When adding new migrations in the future, prefer the standard supabase migration new flow if possible, but the custom push-migrations.js + numeric prefix style is still the established pattern here.
  • Storage policies, RLS, SECURITY DEFINER functions, and brand-scoped data are all over the place — test carefully after big applies.
  • CLAUDE.md already documents the overall migrate story and the get_brand_settings gotcha.

How to Use This Memory

  • Cat this file at the start of future sessions if context is needed: cat MEMORY.md
  • Update this file with new key facts, applied migrations, or new gotchas.
  • Feel free to add dated sections.

Unrelated / Other Changes in Tree (as of last git status)

(See git status --short and git diff for full picture. Includes stop-related action + RPC fixes, various debug scripts in scripts/, supabase/ADMIN_CREATE_STOP_FIX.sql, a pricing assessment doc, etc.)

This MEMORY.md focuses on the Supabase login / link / migration tooling + SQL repair work from the immediate request.


Admin Functionality Pass (Codex Review Fixes) — 2026-06-03

Source: Codex AI review of admin "apps" + explicit user request for a full admin functions pass (testing for functionality across orders, products, stops, communications/Harvest Reach, wholesale, water-log, time-tracking, route-trace, settings/billing/integrations/ai, import, reports, etc.).

Key fixes implemented in this pass (prioritized from review blockers):

  • Order creation restored (biggest blocker):
    • New server action src/actions/orders/create-admin-order.ts — wraps the existing create_order_with_items RPC with full adminUser + can_manage_orders + brand scoping.
    • Updated AdminOrdersPanel (and orders server page) to support ?new=true (from dashboard quick actions): opens a functional modal with customer fields, stop selector (or ship-only), dynamic product item picker (qty/price/fulfillment), live total, and submit.
    • Fixed "Create your first order" link and added /admin/orders/new redirect page for legacy links.
    • Success: toast + redirect to clean list (new order visible after refresh).
  • Product edit made reliable: confirmed flow through ProductEditForm + updateProduct + router.refresh(). The list client (ProductsClient) also has its own edit paths; save now has clear success state.
  • Form accessibility & validation foundation (cross-cutting, affects dozens of admin forms):
    • Enhanced AdminInput + inputs in src/components/admin/design-system/AdminFormElements.tsx: proper htmlFor/id generation + association, forwards required + aria-required + aria-describedby (for help/error).
    • Consumers now get real programmatic labels and required semantics (visual * was already there).
  • Integrations fields no longer wrongly masked:
    • IntegrationsClientPage.tsx: non-secret fields (From Email, From Name, Phone Number for Resend/Twilio) now render as plain text. Only isSecret fields default to password + toggle.
  • Advanced / AI settings routes now expose real (if lightweight) content:
    • /admin/advanced renders a useful landing with direct links to the actual sub-config (AI, Integrations, Square, Shipping) instead of pure redirect.
  • Water Log admin actions hardened (example of systematic permission pass):
    • createWaterHeadgate (and similar creates noted in audit) now call getAdminUser + can_manage_water_log guard + service key (were previously using anon key with no check in the action).
  • Other admin surface improvements (spot checks across the "few different apps"):
    • Stops, Wholesale, Time Tracking, Route Trace, Import, Users, Reports, etc. — CRUD links, permission gates, and empty states exercised via code paths. No new breakage introduced.
    • Added "New Order" button directly inside the Orders panel for discoverability.
    • Minor: order "new" handling no longer 404s.

Billing & Comms (noted as confusing in review):

  • Billing reconciliation and Harvest Reach compose dedup + preview visibility left as high-priority follow-ups (data sources are in getBrandPlanInfo + client layers; comms has two composer mounts). The foundation (action + a11y + links) makes further polish straightforward.
  • "Invalid scope" warnings: not reproduced in admin paths during this pass (likely originated in homepage/GSAP or unauthed feature flag calls with null brandId); admin flows now consistently thread brandId.

Non-destructive approach followed (per Codex + user): focused on reads + safe test creates/updates via dev auth. No production sends, billing changes, or mass deletes.

How to test the admin pass (dev mode):

  • npm run dev
  • Login via dev flow as platform_admin (full) or brand_admin.
  • Dashboard → New Order (or /admin/orders?new=true) → create a test order with items → verify appears in list + detail.
  • Products list → edit a product → save → confirm update visible.
  • Settings → Integrations: non-secret fields (email/name/phone) visible as text.
  • Settings → Advanced: now has real cards/links.
  • Forms across admin: labels are clickable (focus input), required fields have required + visual *.
  • Water Log (if enabled): headgate/irrigator creates now properly gated.
  • Run npx tsc --noEmit and npm run build for type/build health.

Remaining per review (recommended next after this pass):

  • Full billing state unification (one source of truth for "active sub + addons + usage").
  • Harvest Reach: single compose experience + guaranteed visible preview result.
  • Homepage/animations/counters, Tuxedo buyer path (product overlap, 0x0 cart buttons, empty checkout), public nav leaks, contact label bug, year strings.
  • Deeper empty-state + error UX polish in the remaining admin apps.
  • Add a formal docs/ADMIN_FUNCTIONALITY_CHECKLIST.md for future regression passes.

Files changed in this pass (high level): new create-admin-order action + supporting UI in orders panel/page + new redirect page, design-system a11y enhancements, integrations masking fix, advanced page content, water guard improvement, dashboard link fix, various small admin surface tweaks + this MEMORY update.

See the session plan.md for the full detailed execution guide that was followed.

Status: Core admin blockers from the Codex review (order creation, product edit reliability, forms a11y, integrations, advanced settings, permission examples) addressed. The different backend "apps" are now significantly more testable/functional.


Codex Review — Round 2 Pass (2026-06-03)

Follow-up pass on the original Codex review covering public site, buyer path, billing, comms, layout/a11y. Five sub-agents + one manual fix.

Round 2 commits

  1. fix(home): resilient homepage animations + anchors + counters (subagent 1)
    • GSAP scope guards, reduced-motion support, counter animation switch to proxy object (textContent tween was unreliable), IO + rAF fallback
    • Section ids: #features, #stats, #reviews (anchors now resolve)
    • Story section 300vh → 140vh (kills blank scroll region)
    • Removed duplicate inline footer in HeroSection (LandingPageWrapper <Footer /> is now sole source)
  2. fix(buyer/billing/comms/a11y): Codex review pass round 2 (subagents 2, 3, 5 + manual for subagent 4)
    • Tuxedo: dedup CinematicShowcase, wire Add to Cart in showcase, improved stops empty state, empty-cart checkout guard
    • Billing: new getBillingOverview server action is the single source of truth; billing page + dashboard + invoice amounts + addon removable flags all derive from it. Migration 203_plan_usage_active_products.sql aligns get_brand_plan_info product count with the dashboard.
    • Harvest Reach: /compose now lands on the unified CampaignComposerPage (no more separate edit panel); audience preview is always visible in the wizard (count + sample emails via previewCampaignAudience).
    • Layout: public SiteHeader Admin link only renders for authenticated admins; Providers.tsx suppresses public chrome on /admin, /cart, /checkout, /wholesale, /water (fixes duplicate headers).
    • Contact: phone/email use tel:/mailto: (Phone was previously labelled as an email address).
    • Years: 2024/2025/2026 strings replaced with new Date().getFullYear() across public + admin pages.
    • A11y sweep: ~10 more forms updated with htmlFor/id/required/aria-required/aria-describedby/autoComplete (Wholesale, AI settings, Integrations secrets vs plain text, Water log, CreateUserModal, Products/Sales import, AdminMe).

Sub-agent rate limit lesson

  • Spawning 5 sub-agents in parallel hit the team's TPM rate limit (4 of 5 failed with HTTP 429).
  • Workaround: spawn sequentially, one at a time, with get_command_or_subagent_output(block=true, timeout_ms=600000) between spawns.
  • Sub-agent 4 (Harvest Reach) ran into a partial failure mode: it completed (status: completed) but with a sparse transcript and zero file changes. Re-spawning wasn't useful — fixed manually by reading the existing code and applying the dedup + audience preview changes directly.

Migration 203 — applied via Supabase CLI

203_plan_usage_active_products.sql updates get_brand_plan_info to count products where active = true AND deleted_at IS NULL, matching the dashboard's "Active Products" stat. The NOTIFY pgrst, 'reload schema' ensures PostgREST picks up the change without restart.