feat: add email provider for magic links

2026-05-10 04:18:08 +05:30 · 2026-05-10 04:18:08 +05:30 · 507487c7d9
commit 507487c7d9
parent 68b571d321
4 changed files with 120 additions and 17 deletions
--- a/CLAUDE.md
+++ b/CLAUDE.md
@ -9,23 +9,71 @@ This file provides guidance to Claude Code (claude.ai/code) when working with co
 ## Common Commands

 ```bash
+# Development
 pnpm dev              # Start local dev server
-pnpm build           # Production build
-pnpm start          # Start production server
+pnpm build             # Production build
+npm ci                # Clean install for Docker
+
+# Database (Drizzle)
+npx drizzle-kit generate  # Generate migration from schema
+npx drizzle-kit push    # Push schema to DB
 ```

 ## Environment Variables

-See `.env.example` for required variables including DATABASE_URL, AUTH_SECRET, R2 credentials, LiteLLM config.
+Required in `.env.local`:
+
+```env
+DATABASE_URL=postgresql://tia:tia_local_dev@localhost:5433/tia_dev
+AUTH_SECRET=
+AUTH_URL=http://localhost:3000
+RESEND_API_KEY=
+```
+
+## Hits & Learned Lessons
+
+### Build Issues Fixed
+1. **pnpm 11 + Node 20 incompatibility**: pnpm 11 requires Node 22+. Fixed by using Node 22 in Dockerfile.
+2. **pnpm ignored builds in Docker**: Had to switch from pnpm to npm in Dockerfile (`npm ci` instead of `pnpm install`).
+3. **Drizzle adapter type errors**: Using simplified DrizzleAdapter without passing table configs directly fixes type errors.
+4. **nodemailer missing**: NextAuth email provider requires nodemailer as a dependency.
+5. **Middleware warning**: Next.js 16 shows deprecation warning for middleware file convention.
+
+### Database Setup
+- Local: Docker Compose with pgvector on port 5433, Redis on 6380
+- Schema: 8 tables (users, accounts, sessions, verification_tokens, families, family_members, children, family_invites)
+- Migrations: Run via `npx drizzle-kit push` or docker exec with SQL files
+
+### Docker Build
+- Use `npm ci` instead of pnpm in Docker for reliability
+- Node 22 alpine image
+- Multi-stage build (deps → builder → runner)
+- Need to install nodemailer separately for email auth
+
+## Architecture
+
+- **Framework**: Next.js 16 (App Router) with TypeScript
+- **Database**: PostgreSQL 16 with pgvector (Drizzle ORM)
+- **Auth**: NextAuth v5 beta
+- **Deployment**: Dokploy (Docker)

 ## Sprint Plan

-Current: Sprint 0 (Foundation Infrastructure)
- Sprint 0: Dev environment, Docker, Dokploy deploy
- Sprint 1: Auth + Database with RLS
+Current: Sprint 1 (Database + Auth)
+
+- Sprint 0: Dev environment, Docker, Dokploy deploy ✅
+- Sprint 1: Auth + Database with RLS (in progress)
 - Sprint 2: Fast-log engine
 - Sprint 3: Medical vault
 - Sprint 4: Media pipeline
 - Sprint 5: AI Brain
 - Sprint 6: UI/UX polish
- Sprint 7: Telegram alerts + launch
+- Sprint 7: Telegram alerts + launch
+
+## Key Files
+
+- `src/auth.ts` - NextAuth configuration
+- `src/db/schema/auth.ts` - Auth tables (users, sessions, accounts)
+- `src/db/schema/family.ts` - Family, members, children tables
+- `src/app/login/page.tsx` - Login page
+- `Dockerfile` - Production build (uses npm, not pnpm)
--- a/src/app/login/page.tsx
+++ b/src/app/login/page.tsx
@ -5,15 +5,36 @@ import { useState } from "react";

 export default function LoginPage() {
  const [email, setEmail] = useState("");
-  const [loading, setLoading] = useState(false);
+  const [status, setStatus] = useState<"idle" | "loading" | "success" | "error">("idle");

  const handleSubmit = async (e: React.FormEvent) => {
    e.preventDefault();
-    setLoading(true);
-    await signIn("email", { email });
-    setLoading(false);
+    setStatus("loading");
+
+    const result = await signIn("email", { email, redirect: false });
+
+    if (result?.ok) {
+      setStatus("success");
+    } else {
+      setStatus("error");
+      setTimeout(() => setStatus("idle"), 3000);
+    }
  };

+  if (status === "success") {
+    return (
+      <div className="min-h-screen flex items-center justify-center bg-gradient-to-br from-rose-50 to-amber-50">
+        <div className="w-full max-w-md p-8 text-center">
+          <div className="text-4xl mb-4">✓</div>
+          <h1 className="text-2xl font-bold mb-2">Check your email!</h1>
+          <p className="text-gray-600">
+            We sent a magic link to <strong>{email}</strong>
+          </p>
+        </div>
+      </div>
+    );
+  }
+
  return (
    <div className="min-h-screen flex items-center justify-center bg-gradient-to-br from-rose-50 to-amber-50">
      <div className="w-full max-w-md p-8">
@ -23,7 +44,7 @@ export default function LoginPage() {
        <form onSubmit={handleSubmit} className="space-y-4">
          <input
            type="email"
-            placeholder="Your email"
+            placeholder="Enter your email"
            value={email}
            onChange={(e) => setEmail(e.target.value)}
            className="w-full p-4 border rounded-2xl bg-white shadow-sm focus:ring-2 focus:ring-rose-200 outline-none"
@ -31,11 +52,14 @@ export default function LoginPage() {
          />
          <button
            type="submit"
-            disabled={loading}
+            disabled={status === "loading"}
            className="w-full p-4 bg-rose-400 text-white rounded-2xl font-medium shadow-md hover:bg-rose-500 transition disabled:opacity-50"
          >
-            {loading ? "Sending..." : "Send Magic Link"}
+            {status === "loading" ? "Sending..." : "Send Magic Link"}
          </button>
+          {status === "error" && (
+            <p className="text-red-500 text-center text-sm">Something went wrong. Try again.</p>
+          )}
        </form>
      </div>
    </div>
--- a/src/app/verify/page.tsx
+++ b/src/app/verify/page.tsx
@ -0,0 +1,18 @@
+"use client";
+
+export default function VerifyPage() {
+  return (
+    <div className="min-h-screen flex items-center justify-center bg-gradient-to-br from-rose-50 to-amber-50">
+      <div className="w-full max-w-md p-8 text-center">
+        <div className="text-4xl mb-4">✉️</div>
+        <h1 className="text-2xl font-bold mb-2">Check your email</h1>
+        <p className="text-gray-600 mb-4">
+          We sent you a magic link to sign in.
+        </p>
+        <p className="text-sm text-gray-500">
+          Click the link in the email to sign in to Tia.
+        </p>
+      </div>
+    </div>
+  );
+}
--- a/src/auth.ts
+++ b/src/auth.ts
@ -1,16 +1,29 @@
 import NextAuth from "next-auth";
 import { DrizzleAdapter } from "@auth/drizzle-adapter";
+import Email from "next-auth/providers/email";
 import { db } from "@/db";
-import { users } from "@/db/schema/auth";

 export const { handlers, auth, signIn, signOut } = NextAuth({
  adapter: DrizzleAdapter(db),
-  providers: [],
+  providers: [
+    Email({
+      server: {
+        host: process.env.EMAIL_SERVER_HOST || "smtp.resend.com",
+        port: Number(process.env.EMAIL_SERVER_PORT) || 587,
+        auth: {
+          user: process.env.EMAIL_SERVER_USER || "resend",
+          pass: process.env.RESEND_API_KEY || "",
+        },
+      },
+      from: process.env.EMAIL_FROM || "Tia <tia@manohargupta.com>",
+    }),
+  ],
  pages: {
    signIn: "/login",
+    verifyRequest: "/verify",
  },
  session: {
    strategy: "database",
-    maxAge: 30 * 24 * 60 * 60,
+    maxAge: 30 * 24 * 60 * 60, // 30 days
  },
 });