Hugging Face's logo

Spaces:
kamau1
/
swiftops-backend
Sleeping

App Files Community
swiftops-backend / docs /dev /deploy /DEPLOYMENT_CHECKLIST.md
kamau1's picture
kamau1
chore: migrate to useast organize the docs, delete redundant migrations
c4f7e3e
preview code
|
raw
history blame contribute delete
2.28 kB

Deployment Checklist - Supabase Auth Integration

βœ… Completed

  1. Supabase Auth Integration

    • Created src/app/core/supabase_auth.py - Supabase Auth client
    • Updated src/app/api/v1/auth.py - Auth endpoints use Supabase
    • Updated src/app/api/deps.py - Token verification via Supabase
    • Updated src/app/models/user.py - Removed password_hash field

  2. Database Migrations

    • βœ… 001_rename_metadata_to_additional_metadata_safe.sql - Renamed metadata columns
    • βœ… 002_fix_contractor_invoices_metadata.sql - Fixed contractor_invoices table

  3. Documentation

    • Created docs/dev/SUPABASE_AUTH_SETUP.md - Setup guide
    • Updated docs/dev/AUTH_API_GUIDE.md - API documentation
    • Created tests/integration/test_auth_api.js - Automated tests

⏳ Pending Actions

1. Database Setup (REQUIRED)

Your users table needs to reference auth.users:

-- Ensure users table has foreign key to auth.users
ALTER TABLE users 
ADD CONSTRAINT users_id_fkey 
FOREIGN KEY (id) REFERENCES auth.users(id) ON DELETE CASCADE;

2. Test the Integration 

# Run automated tests
node tests/integration/test_auth_api.js

3. Verify Environment Variables

Ensure .env has:

SUPABASE_URL=https://exatfwiwyhiftwvatlpm.supabase.co
SUPABASE_KEY=your-service-role-key
SUPABASE_JWT_SECRET=your-jwt-secret

4. Deploy to Hugging Face 

git add .
git commit -m "Integrate Supabase Auth for managed authentication"
git push

πŸ” Testing Checklist

  • Register new user
  • Login with credentials
  • Get user profile (with token)
  • Update user profile
  • Invalid login rejected
  • Unauthorized access blocked

πŸ“ Notes

  • Users table now syncs with auth.users via foreign key
  • Passwords managed by Supabase (not stored in users table)
  • JWT tokens issued by Supabase Auth
  • All existing endpoints work the same way

🚨 Breaking Changes

  • Old users with password_hash will need to re-register or reset password
  • Tokens from old JWT system won't work (users need to login again)

🎯 Next Steps

  1. Run tests to verify everything works
  2. Deploy to production
  3. Monitor logs for any auth errors
  4. Enable email verification in Supabase dashboard (optional)