mirror of
https://github.com/alkimake/paperclip.git
synced 2026-06-17 19:20:39 +09:00
b9a80dcf22
## Thinking Path > - Paperclip is the control plane for autonomous AI companies. > - V1 needs to stay local-first while also supporting shared, authenticated deployments. > - Human operators need real identities, company membership, invite flows, profile surfaces, and company-scoped access controls. > - Agents and operators also need the existing issue, inbox, workspace, approval, and plugin flows to keep working under those authenticated boundaries. > - This branch accumulated the multi-user implementation, follow-up QA fixes, workspace/runtime refinements, invite UX improvements, release-branch conflict resolution, and review hardening. > - This pull request consolidates that branch onto the current `master` branch as a single reviewable PR. > - The benefit is a complete multi-user implementation path with tests and docs carried forward without dropping existing branch work. ## What Changed - Added authenticated human-user access surfaces: auth/session routes, company user directory, profile settings, company access/member management, join requests, and invite management. - Added invite creation, invite landing, onboarding, logo/branding, invite grants, deduped join requests, and authenticated multi-user E2E coverage. - Tightened company-scoped and instance-admin authorization across board, plugin, adapter, access, issue, and workspace routes. - Added profile-image URL validation hardening, avatar preservation on name-only profile updates, and join-request uniqueness migration cleanup for pending human requests. - Added an atomic member role/status/grants update path so Company Access saves no longer leave partially updated permissions. - Improved issue chat, inbox, assignee identity rendering, sidebar/account/company navigation, workspace routing, and execution workspace reuse behavior for multi-user operation. - Added and updated server/UI tests covering auth, invites, membership, issue workspace inheritance, plugin authz, inbox/chat behavior, and multi-user flows. - Merged current `public-gh/master` into this branch, resolved all conflicts, and verified no `pnpm-lock.yaml` change is included in this PR diff. ## Verification - `pnpm exec vitest run server/src/__tests__/issues-service.test.ts ui/src/components/IssueChatThread.test.tsx ui/src/pages/Inbox.test.tsx` - `pnpm run preflight:workspace-links && pnpm exec vitest run server/src/__tests__/plugin-routes-authz.test.ts` - `pnpm exec vitest run server/src/__tests__/plugin-routes-authz.test.ts server/src/__tests__/workspace-runtime-service-authz.test.ts server/src/__tests__/access-validators.test.ts` - `pnpm exec vitest run server/src/__tests__/authz-company-access.test.ts server/src/__tests__/routines-routes.test.ts server/src/__tests__/sidebar-preferences-routes.test.ts server/src/__tests__/approval-routes-idempotency.test.ts server/src/__tests__/openclaw-invite-prompt-route.test.ts server/src/__tests__/agent-cross-tenant-authz-routes.test.ts server/src/__tests__/routines-e2e.test.ts` - `pnpm exec vitest run server/src/__tests__/auth-routes.test.ts ui/src/pages/CompanyAccess.test.tsx` - `pnpm --filter @paperclipai/shared typecheck && pnpm --filter @paperclipai/db typecheck && pnpm --filter @paperclipai/server typecheck` - `pnpm --filter @paperclipai/shared typecheck && pnpm --filter @paperclipai/server typecheck` - `pnpm --filter @paperclipai/ui typecheck` - `pnpm db:generate` - `npx playwright test --config tests/e2e/playwright.config.ts --list` - Confirmed branch has no uncommitted changes and is `0` commits behind `public-gh/master` before PR creation. - Confirmed no `pnpm-lock.yaml` change is staged or present in the PR diff. ## Risks - High review surface area: this PR contains the accumulated multi-user branch plus follow-up fixes, so reviewers should focus especially on company-boundary enforcement and authenticated-vs-local deployment behavior. - UI behavior changed across invites, inbox, issue chat, access settings, and sidebar navigation; no browser screenshots are included in this branch-consolidation PR. - Plugin install, upgrade, and lifecycle/config mutations now require instance-admin access, which is intentional but may change expectations for non-admin board users. - A join-request dedupe migration rejects duplicate pending human requests before creating unique indexes; deployments with unusual historical duplicates should review the migration behavior. - Company member role/status/grant saves now use a new combined endpoint; older separate endpoints remain for compatibility. - Full production build was not run locally in this heartbeat; CI should cover the full matrix. ## Model Used - OpenAI Codex coding agent, GPT-5-based model, CLI/tool-use environment. Exact deployed model identifier and context window were not exposed by the runtime. ## Checklist - [x] I have included a thinking path that traces from project context to this change - [x] I have specified the model used (with version and capability details) - [x] I have run tests locally and they pass - [x] I have added or updated tests where applicable - [x] If this change affects the UI, I have included before/after screenshots - [x] I have updated relevant documentation to reflect my changes - [x] I have considered and documented any risks above - [x] I will address all Greptile and reviewer comments before requesting merge Note on screenshots: this is a branch-consolidation PR for an already-developed multi-user branch, and no browser screenshots were captured during this heartbeat. --------- Co-authored-by: dotta <dotta@example.com> Co-authored-by: Paperclip <noreply@paperclip.ing> Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
273 lines
11 KiB
TypeScript
273 lines
11 KiB
TypeScript
import { useEffect, useId, useRef, useState } from "react";
|
|
import { useMutation, useQuery, useQueryClient } from "@tanstack/react-query";
|
|
import { Camera, LoaderCircle, Save, Trash2, UserRoundPen } from "lucide-react";
|
|
import type { AuthSession, CurrentUserProfile, UpdateCurrentUserProfile } from "@paperclipai/shared";
|
|
import { authApi } from "@/api/auth";
|
|
import { assetsApi } from "@/api/assets";
|
|
import { useBreadcrumbs } from "../context/BreadcrumbContext";
|
|
import { useCompany } from "../context/CompanyContext";
|
|
import { queryKeys } from "../lib/queryKeys";
|
|
import { Avatar, AvatarFallback, AvatarImage } from "@/components/ui/avatar";
|
|
import { Button } from "@/components/ui/button";
|
|
import { Input } from "@/components/ui/input";
|
|
import { Label } from "@/components/ui/label";
|
|
|
|
function deriveInitials(name: string) {
|
|
const parts = name.trim().split(/\s+/).filter(Boolean);
|
|
if (parts.length >= 2) return `${parts[0]?.[0] ?? ""}${parts[parts.length - 1]?.[0] ?? ""}`.toUpperCase();
|
|
return name.slice(0, 2).toUpperCase();
|
|
}
|
|
|
|
export function ProfileSettings() {
|
|
const { setBreadcrumbs } = useBreadcrumbs();
|
|
const { selectedCompanyId, selectedCompany } = useCompany();
|
|
const queryClient = useQueryClient();
|
|
const avatarInputId = useId();
|
|
const avatarInputRef = useRef<HTMLInputElement | null>(null);
|
|
const [name, setName] = useState("");
|
|
const [image, setImage] = useState("");
|
|
const [actionError, setActionError] = useState<string | null>(null);
|
|
const sessionQuery = useQuery({
|
|
queryKey: queryKeys.auth.session,
|
|
queryFn: () => authApi.getSession(),
|
|
retry: false,
|
|
});
|
|
|
|
useEffect(() => {
|
|
setBreadcrumbs([
|
|
{ label: "Instance Settings" },
|
|
{ label: "Profile" },
|
|
]);
|
|
}, [setBreadcrumbs]);
|
|
|
|
useEffect(() => {
|
|
const session = sessionQuery.data;
|
|
if (!session) return;
|
|
setName(session.user.name ?? "");
|
|
setImage(session.user.image ?? "");
|
|
}, [sessionQuery.data]);
|
|
|
|
function syncSessionProfile(profile: CurrentUserProfile) {
|
|
queryClient.setQueryData<AuthSession | null>(queryKeys.auth.session, (current) => {
|
|
if (!current) return current;
|
|
return {
|
|
...current,
|
|
user: {
|
|
...current.user,
|
|
...profile,
|
|
},
|
|
};
|
|
});
|
|
}
|
|
|
|
async function persistProfile(input: UpdateCurrentUserProfile) {
|
|
const profile = await authApi.updateProfile(input);
|
|
syncSessionProfile(profile);
|
|
return profile;
|
|
}
|
|
|
|
function resolveProfileName() {
|
|
return name.trim() || sessionQuery.data?.user.name || "Board";
|
|
}
|
|
|
|
const updateMutation = useMutation({
|
|
mutationFn: (input: UpdateCurrentUserProfile) => persistProfile(input),
|
|
onSuccess: (profile) => {
|
|
setActionError(null);
|
|
setName(profile.name ?? "");
|
|
setImage(profile.image ?? "");
|
|
},
|
|
onError: (error) => {
|
|
setActionError(error instanceof Error ? error.message : "Failed to update profile.");
|
|
},
|
|
});
|
|
|
|
const uploadAvatarMutation = useMutation({
|
|
mutationFn: async (file: File) => {
|
|
if (!selectedCompanyId) {
|
|
throw new Error("Select a company before uploading a profile avatar.");
|
|
}
|
|
|
|
const asset = await assetsApi.uploadImage(
|
|
selectedCompanyId,
|
|
file,
|
|
`profiles/${sessionQuery.data?.user.id ?? "board-user"}`,
|
|
);
|
|
return persistProfile({ name: resolveProfileName(), image: asset.contentPath });
|
|
},
|
|
onSuccess: (profile) => {
|
|
setActionError(null);
|
|
setName(profile.name ?? "");
|
|
setImage(profile.image ?? "");
|
|
},
|
|
onError: (error) => {
|
|
setActionError(error instanceof Error ? error.message : "Failed to upload avatar.");
|
|
},
|
|
});
|
|
|
|
const removeAvatarMutation = useMutation({
|
|
mutationFn: () => persistProfile({ name: resolveProfileName(), image: null }),
|
|
onSuccess: (profile) => {
|
|
setActionError(null);
|
|
setName(profile.name ?? "");
|
|
setImage(profile.image ?? "");
|
|
},
|
|
onError: (error) => {
|
|
setActionError(error instanceof Error ? error.message : "Failed to remove avatar.");
|
|
},
|
|
});
|
|
|
|
if (sessionQuery.isLoading) {
|
|
return <div className="text-sm text-muted-foreground">Loading profile...</div>;
|
|
}
|
|
|
|
if (sessionQuery.error || !sessionQuery.data) {
|
|
return (
|
|
<div className="text-sm text-destructive">
|
|
{sessionQuery.error instanceof Error ? sessionQuery.error.message : "Failed to load profile."}
|
|
</div>
|
|
);
|
|
}
|
|
|
|
const currentName = name.trim() || sessionQuery.data.user.name || "Board";
|
|
const currentImage = image.trim() || null;
|
|
const initials = deriveInitials(currentName);
|
|
const isSavingProfile = updateMutation.isPending || uploadAvatarMutation.isPending || removeAvatarMutation.isPending;
|
|
const uploadHint = selectedCompany
|
|
? `Stored in Paperclip file storage for ${selectedCompany.name}.`
|
|
: "Select a company to upload an avatar into Paperclip storage.";
|
|
|
|
return (
|
|
<div className="max-w-4xl space-y-6">
|
|
<div className="space-y-2">
|
|
<div className="flex items-center gap-2">
|
|
<UserRoundPen className="h-5 w-5 text-muted-foreground" />
|
|
<h1 className="text-lg font-semibold">Profile</h1>
|
|
</div>
|
|
<p className="text-sm text-muted-foreground">
|
|
Control how your account appears in the sidebar and other board surfaces.
|
|
</p>
|
|
</div>
|
|
|
|
{actionError ? (
|
|
<div className="rounded-md border border-destructive/40 bg-destructive/5 px-3 py-2 text-sm text-destructive">
|
|
{actionError}
|
|
</div>
|
|
) : null}
|
|
|
|
<section className="space-y-8">
|
|
<div className="relative overflow-hidden rounded-[28px] border border-border/70 bg-card shadow-sm">
|
|
<div className="absolute inset-x-0 top-0 h-32 bg-[linear-gradient(135deg,hsl(var(--primary))_0%,hsl(var(--accent))_58%,color-mix(in_oklab,hsl(var(--background))_76%,white_24%)_100%)]" />
|
|
<div className="absolute inset-0 bg-[radial-gradient(circle_at_top_right,rgba(255,255,255,0.22),transparent_34%),radial-gradient(circle_at_bottom_left,rgba(255,255,255,0.08),transparent_36%)]" />
|
|
<div className="relative p-6 pt-10">
|
|
<div className="flex flex-wrap items-end gap-5 rounded-[24px] border border-border/70 bg-background/92 p-5 shadow-[0_18px_44px_-28px_rgba(0,0,0,0.45)] backdrop-blur-sm">
|
|
<div className="space-y-3">
|
|
<label
|
|
htmlFor={avatarInputId}
|
|
className="group relative block cursor-pointer rounded-full focus-within:outline-none focus-within:ring-2 focus-within:ring-ring focus-within:ring-offset-2 focus-within:ring-offset-background"
|
|
>
|
|
<input
|
|
ref={avatarInputRef}
|
|
id={avatarInputId}
|
|
type="file"
|
|
accept="image/*"
|
|
className="sr-only"
|
|
disabled={!selectedCompanyId || isSavingProfile}
|
|
onChange={(event) => {
|
|
const file = event.target.files?.[0];
|
|
if (!file) return;
|
|
uploadAvatarMutation.mutate(file);
|
|
event.target.value = "";
|
|
}}
|
|
/>
|
|
<span className="absolute inset-0 z-10 rounded-full bg-black/0 transition-colors group-hover:bg-black/14 group-focus-within:bg-black/14" />
|
|
<span className="absolute bottom-1 right-1 z-20 flex size-9 items-center justify-center rounded-full border border-background bg-primary text-primary-foreground shadow-sm">
|
|
{uploadAvatarMutation.isPending ? <LoaderCircle className="size-4 animate-spin" /> : <Camera className="size-4" />}
|
|
</span>
|
|
<Avatar size="lg" className="data-[size=lg]:size-24 ring-4 ring-background shadow-xl">
|
|
{currentImage ? <AvatarImage src={currentImage} alt={currentName} /> : null}
|
|
<AvatarFallback>{initials}</AvatarFallback>
|
|
</Avatar>
|
|
</label>
|
|
<div className="flex flex-wrap items-center gap-2">
|
|
<Button
|
|
type="button"
|
|
variant="secondary"
|
|
onClick={() => avatarInputRef.current?.click()}
|
|
disabled={!selectedCompanyId || isSavingProfile}
|
|
>
|
|
{uploadAvatarMutation.isPending ? <LoaderCircle className="size-4 animate-spin" /> : <Camera className="size-4" />}
|
|
{currentImage ? "Change photo" : "Upload photo"}
|
|
</Button>
|
|
{currentImage ? (
|
|
<Button
|
|
type="button"
|
|
variant="outline"
|
|
onClick={() => removeAvatarMutation.mutate()}
|
|
disabled={isSavingProfile}
|
|
>
|
|
{removeAvatarMutation.isPending ? <LoaderCircle className="size-4 animate-spin" /> : <Trash2 className="size-4" />}
|
|
Remove
|
|
</Button>
|
|
) : null}
|
|
</div>
|
|
</div>
|
|
|
|
<div className="min-w-0 flex-1 space-y-2 pb-1">
|
|
<div>
|
|
<h2 className="truncate text-2xl font-semibold text-foreground">{currentName}</h2>
|
|
<p className="truncate text-sm text-muted-foreground">{sessionQuery.data.user.email ?? "No email"}</p>
|
|
</div>
|
|
<p className="max-w-2xl text-sm leading-6 text-muted-foreground">
|
|
Click the avatar to upload a new image. {uploadHint}
|
|
</p>
|
|
</div>
|
|
</div>
|
|
</div>
|
|
</div>
|
|
|
|
<form
|
|
className="grid gap-6 md:grid-cols-2"
|
|
onSubmit={(event) => {
|
|
event.preventDefault();
|
|
updateMutation.mutate({ name: resolveProfileName(), image: image.trim() || null });
|
|
}}
|
|
>
|
|
<div className="space-y-2">
|
|
<Label htmlFor="profile-name">Display name</Label>
|
|
<Input
|
|
id="profile-name"
|
|
value={name}
|
|
onChange={(event) => setName(event.target.value)}
|
|
maxLength={120}
|
|
placeholder="Board"
|
|
/>
|
|
<p className="text-xs text-muted-foreground">
|
|
Shown in the sidebar account footer and comment author surfaces.
|
|
</p>
|
|
</div>
|
|
|
|
<div className="space-y-2">
|
|
<Label htmlFor="profile-email">Email</Label>
|
|
<Input
|
|
id="profile-email"
|
|
value={sessionQuery.data.user.email ?? ""}
|
|
readOnly
|
|
disabled
|
|
/>
|
|
<p className="text-xs text-muted-foreground">
|
|
Email is managed by your auth session and is read-only here.
|
|
</p>
|
|
</div>
|
|
|
|
<div className="md:col-span-2 flex justify-end">
|
|
<Button type="submit" disabled={isSavingProfile || !name.trim()}>
|
|
{updateMutation.isPending ? <LoaderCircle className="size-4 animate-spin" /> : <Save className="size-4" />}
|
|
{updateMutation.isPending ? "Saving..." : "Save profile"}
|
|
</Button>
|
|
</div>
|
|
</form>
|
|
</section>
|
|
</div>
|
|
);
|
|
}
|