jhodi.avizara/Grapevine_Disease_Detection

Fork 0

Commit graph

Author	SHA1	Message	Date
Yanis	792e969c00	feat(api/mobile): auth sync/me/sign-out + scans + bearer plugin Connect the React Native app to the admin backend so users and scans flow into the panel and bans take effect on the device. - Activate the bearer() plugin in lib/auth.ts so mobile clients can pass the better-auth session token via Authorization: Bearer header - Add requireMobileAuth() helper in lib/auth-guard.ts that resolves the session, re-fetches the user from DB (banned flag is on User, not in the Session payload) and returns 403 with banned/bannedReason for banned accounts - Extend CORS in middleware.ts to allow POST + Authorization header on /api/mobile/* (preflight was failing before) - New routes: POST /api/mobile/auth/sync — passwordless mobile auth via deterministic password derived from sha256(email + deviceId + pepper). Tries signIn first, falls back to signUp on USER_NOT_FOUND. Returns 409 when the email exists with a different deviceId. GET /api/mobile/auth/me — current user enriched with banned/bannedReason/role/xp/level POST /api/mobile/auth/sign-out — best-effort session revocation POST /api/mobile/scans — create a scan, resolves diseaseSlug to diseaseId, never accepts an imageUrl from the device (V1 keeps photos local-only) GET /api/mobile/scans — own scans, 50 most recent Validated end-to-end via curl: signUp → me → repeat sync (idempotent) → post scan → ban via DB → me reflects banned: true → POST scans returns 403 + banned/bannedReason. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-05-01 12:02:45 +02:00
Yanis	720dd34fdd	add MyPlantsScreen + ScanDetailScreen + enriched admin + API mobile + project summary Mobile: - Replace LibraryScreen with MyPlantsScreen (date-grouped scan list, swipe actions, search, pull-to-refresh) - Add ScanDetailScreen (immersive hero, confidence bar, cepage card, share/delete) - Add DiseaseDetailScreen + GuideDetailScreen (hero pattern, animated entry) - Add useScanDetail, useHistory (useCallback fix), dateGrouping utility - Connect diseases/guides to admin API with cache + offline fallback - Add NetworkContext, ToastContext, Skeleton loading components - Extend ScanRecord type (isFavorite, location) - Full i18n FR/EN for all new screens Admin (vineye-admin): - Enrich Disease/Guide Prisma schema (timeline, conditions, actions, sections) - Enriched disease-form (7 sections) + guide-form (structured sections editor) - Add mobile public API endpoints (diseases, guides by slug) - Add Prisma migration + enriched seed data - UI polish: sidebar, login, layout updates Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-04-09 03:19:39 +02:00

Author

SHA1

Message

Date

Yanis

792e969c00

feat(api/mobile): auth sync/me/sign-out + scans + bearer plugin

Connect the React Native app to the admin backend so users and scans flow
into the panel and bans take effect on the device.

- Activate the bearer() plugin in lib/auth.ts so mobile clients can pass
  the better-auth session token via Authorization: Bearer header
- Add requireMobileAuth() helper in lib/auth-guard.ts that resolves the
  session, re-fetches the user from DB (banned flag is on User, not in
  the Session payload) and returns 403 with banned/bannedReason for
  banned accounts
- Extend CORS in middleware.ts to allow POST + Authorization header on
  /api/mobile/* (preflight was failing before)
- New routes:
  POST /api/mobile/auth/sync       — passwordless mobile auth via
    deterministic password derived from sha256(email + deviceId + pepper).
    Tries signIn first, falls back to signUp on USER_NOT_FOUND. Returns
    409 when the email exists with a different deviceId.
  GET  /api/mobile/auth/me         — current user enriched with
    banned/bannedReason/role/xp/level
  POST /api/mobile/auth/sign-out   — best-effort session revocation
  POST /api/mobile/scans           — create a scan, resolves diseaseSlug
    to diseaseId, never accepts an imageUrl from the device (V1 keeps
    photos local-only)
  GET  /api/mobile/scans           — own scans, 50 most recent

Validated end-to-end via curl: signUp → me → repeat sync (idempotent) →
post scan → ban via DB → me reflects banned: true → POST scans returns
403 + banned/bannedReason.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-05-01 12:02:45 +02:00

Yanis

720dd34fdd

add MyPlantsScreen + ScanDetailScreen + enriched admin + API mobile + project summary

Mobile:
- Replace LibraryScreen with MyPlantsScreen (date-grouped scan list, swipe actions, search, pull-to-refresh)
- Add ScanDetailScreen (immersive hero, confidence bar, cepage card, share/delete)
- Add DiseaseDetailScreen + GuideDetailScreen (hero pattern, animated entry)
- Add useScanDetail, useHistory (useCallback fix), dateGrouping utility
- Connect diseases/guides to admin API with cache + offline fallback
- Add NetworkContext, ToastContext, Skeleton loading components
- Extend ScanRecord type (isFavorite, location)
- Full i18n FR/EN for all new screens

Admin (vineye-admin):
- Enrich Disease/Guide Prisma schema (timeline, conditions, actions, sections)
- Enriched disease-form (7 sections) + guide-form (structured sections editor)
- Add mobile public API endpoints (diseases, guides by slug)
- Add Prisma migration + enriched seed data
- UI polish: sidebar, login, layout updates

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-04-09 03:19:39 +02:00

2 commits