Merge branch 'dev'

# Conflicts:
#	app/(main)/(user)/dashboard/bookmarks/bookmarks.tsx
#	app/(main)/(user)/settings/account/subscriptions.tsx
#	app/(main)/(user)/settings/profile/profile.tsx
#	app/(main)/(user)/settings/profile/upload-profile-image.tsx
#	biome.json
#	components.json
#	components/become-sponsor-popup.tsx
#	components/ui/chart.tsx
#	components/ui/resizable.tsx
#	package.json
#	pnpm-lock.yaml
#	sanity.config.ts
#	sanity/extract.json
#	sanity/types.ts
#	vercel.json

Author: Miriad

.env.example

@@ -0,0 +1,68 @@
+# =============================================================================
+# codingcat.dev — Environment Variables
+# =============================================================================
+# Copy this file to .env.local and fill in the values.
+# See: https://nextjs.org/docs/app/building-your-application/configuring/environment-variables
+# Variables prefixed with NEXT_PUBLIC_ are exposed to the browser.
+# All other variables are server-only.
+# =============================================================================
+
+# -----------------------------------------------------------------------------
+# Public (client-side) variables — NEXT_PUBLIC_*
+# -----------------------------------------------------------------------------
+
+# Sanity CMS — project configuration
+NEXT_PUBLIC_SANITY_PROJECT_ID=           # Sanity project ID (from sanity.io/manage)
+NEXT_PUBLIC_SANITY_DATASET=              # Sanity dataset name (e.g. "prod")
+NEXT_PUBLIC_SANITY_API_VERSION=          # Sanity API version date (e.g. "2024-01-01")
+
+# Site URLs
+NEXT_PUBLIC_BASE_URL=                    # Canonical base URL (e.g. "https://codingcat.dev")
+NEXT_PUBLIC_VERCEL_URL=                  # Vercel preview URL (auto-set by Vercel)
+
+# Algolia search — public keys
+NEXT_PUBLIC_ALGOLIA_APP_ID=              # Algolia application ID
+NEXT_PUBLIC_ALGOLIA_INDEX=               # Algolia index name
+
+# Analytics
+NEXT_PUBLIC_FB_PIXEL_ID=                 # Facebook Pixel tracking ID
+
+# Preview mode
+NEXT_PUBLIC_PREVIEW_TOKEN_SECRET=        # Secret token for Sanity preview mode
+
+# -----------------------------------------------------------------------------
+# Server-only variables
+# -----------------------------------------------------------------------------
+
+# Sanity CMS — API tokens
+SANITY_API_READ_TOKEN=                   # Sanity read token (viewer role)
+SANITY_API_WRITE_TOKEN=                  # Sanity write token (editor role)
+
+# Algolia search — admin keys
+PRIVATE_ALGOLIA_ADMIN_API_KEY=           # Algolia admin API key (server-side indexing)
+PRIVATE_ALGOLIA_WEBOOK_SECRET=           # Shared secret for Algolia webhook verification
+
+# Syndication
+PRIVATE_SYNDICATE_WEBOOK_SECRET=         # Shared secret for syndication webhook verification
+PRIVATE_DEVTO=                           # Dev.to API key (cross-posting)
+PRIVATE_HASHNODE=                        # Hashnode API key (cross-posting)
+
+# Cloudflare Turnstile (bot protection)
+CLOUDFLARE_TURNSTILE_SECRET_KEY=         # Turnstile server-side secret key
+
+# Cron / scheduled jobs
+CRON_SECRET=                             # Secret for authenticating cron job requests
+
+# YouTube integration
+YOUTUBE_API_KEY=                         # YouTube Data API v3 key
+YOUTUBE_CHANNEL_ID=                      # YouTube channel ID to fetch videos from
+
+# Vercel
+VERCEL_PROJECT_PRODUCTION_URL=           # Production URL (auto-set by Vercel)
+
+# -----------------------------------------------------------------------------
+# Supabase
+# -----------------------------------------------------------------------------
+NEXT_PUBLIC_SUPABASE_URL=                # Supabase project URL (e.g. "https://xxx.supabase.co")
+NEXT_PUBLIC_SUPABASE_ANON_KEY=           # Supabase anonymous/public key
+SUPABASE_SERVICE_ROLE_KEY=               # Supabase service role key (server-only, bypasses RLS)

.eslintrc

@@ -0,0 +1,87 @@
+name: CI
+
+on:
+  push:
+    branches: [dev]
+  pull_request:
+    branches: [dev]
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
+env:
+  NODE_VERSION: "20"
+
+jobs:
+  ci:
+    name: Lint, Build & Test
+    runs-on: ubuntu-latest
+    timeout-minutes: 15
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Setup pnpm
+        uses: pnpm/action-setup@v4
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: ${{ env.NODE_VERSION }}
+          cache: pnpm
+
+      - name: Install dependencies
+        run: pnpm install --frozen-lockfile
+
+      - name: Type-check
+        run: pnpm exec tsc --noEmit
+
+      - name: Lint (Biome)
+        run: pnpm exec biome check .
+
+      - name: Build
+        run: pnpm build
+        env:
+          # Provide dummy values for build-time env vars so Next.js build succeeds
+          NEXT_PUBLIC_SANITY_PROJECT_ID: ${{ secrets.NEXT_PUBLIC_SANITY_PROJECT_ID }}
+          NEXT_PUBLIC_SANITY_DATASET: ${{ secrets.NEXT_PUBLIC_SANITY_DATASET }}
+          NEXT_PUBLIC_SANITY_API_VERSION: ${{ secrets.NEXT_PUBLIC_SANITY_API_VERSION }}
+          NEXT_PUBLIC_SUPABASE_URL: ${{ secrets.NEXT_PUBLIC_SUPABASE_URL }}
+          NEXT_PUBLIC_SUPABASE_ANON_KEY: ${{ secrets.NEXT_PUBLIC_SUPABASE_ANON_KEY }}
+          SANITY_API_READ_TOKEN: ${{ secrets.SANITY_API_READ_TOKEN }}
+
+      - name: Cache Playwright browsers
+        uses: actions/cache@v4
+        id: playwright-cache
+        with:
+          path: ~/.cache/ms-playwright
+          key: playwright-${{ runner.os }}-${{ hashFiles('pnpm-lock.yaml') }}
+
+      - name: Install Playwright browsers
+        if: steps.playwright-cache.outputs.cache-hit != 'true'
+        run: pnpm exec playwright install --with-deps chromium
+
+      - name: Install Playwright system deps
+        if: steps.playwright-cache.outputs.cache-hit == 'true'
+        run: pnpm exec playwright install-deps chromium
+
+      - name: Run Playwright tests
+        run: pnpm exec playwright test
+        env:
+          CI: true
+          PLAYWRIGHT_BASE_URL: http://localhost:3000
+          NEXT_PUBLIC_SANITY_PROJECT_ID: ${{ secrets.NEXT_PUBLIC_SANITY_PROJECT_ID }}
+          NEXT_PUBLIC_SANITY_DATASET: ${{ secrets.NEXT_PUBLIC_SANITY_DATASET }}
+          NEXT_PUBLIC_SANITY_API_VERSION: ${{ secrets.NEXT_PUBLIC_SANITY_API_VERSION }}
+          NEXT_PUBLIC_SUPABASE_URL: ${{ secrets.NEXT_PUBLIC_SUPABASE_URL }}
+          NEXT_PUBLIC_SUPABASE_ANON_KEY: ${{ secrets.NEXT_PUBLIC_SUPABASE_ANON_KEY }}
+
+      - name: Upload Playwright report
+        uses: actions/upload-artifact@v4
+        if: ${{ !cancelled() }}
+        with:
+          name: playwright-report
+          path: playwright-report/
+          retention-days: 7

.github/workflows/ci.yml

@@ -9,6 +9,10 @@
 
 # testing
 /coverage
+/test-results/
+/playwright-report/
+/blob-report/
+/playwright/.cache/
 
 # next.js
 /.next/
@@ -46,4 +50,4 @@ next-env.d.ts
 .genkit/
 # Firebase debug files
 firebase-debug.log
-firebase-debug.*.log
+firebase-debug.*.logpackage-lock.json

.gitignore

@@ -0,0 +1,10 @@
+"use server";
+
+import { redirect } from "next/navigation";
+import { createClient } from "@/lib/supabase/server";
+
+export async function signOut() {
+	const supabase = await createClient();
+	await supabase.auth.signOut();
+	redirect("/dashboard/login");
+}

app/(dashboard)/dashboard/actions.ts

@@ -0,0 +1,20 @@
+import { createClient } from "@/lib/supabase/server";
+import { NextResponse } from "next/server";
+
+export async function GET(request: Request) {
+	const { searchParams, origin } = new URL(request.url);
+	const code = searchParams.get("code");
+	const next = searchParams.get("next") ?? "/dashboard";
+
+	if (code) {
+		const supabase = await createClient();
+		const { error } = await supabase.auth.exchangeCodeForSession(code);
+		if (!error) {
+			return NextResponse.redirect(`${origin}${next}`);
+		}
+	}
+
+	return NextResponse.redirect(
+		`${origin}/dashboard/login?error=Could+not+authenticate`,
+	);
+}

app/(dashboard)/dashboard/auth/callback/route.ts

@@ -0,0 +1,14 @@
+"use server";
+
+import { revalidatePath } from "next/cache";
+import { dashboardClient } from "@/lib/sanity/dashboard";
+
+export async function approveIdea(id: string) {
+	await dashboardClient.patch(id).set({ status: "approved" }).commit();
+	revalidatePath("/dashboard/content");
+}
+
+export async function rejectIdea(id: string) {
+	await dashboardClient.patch(id).set({ status: "rejected" }).commit();
+	revalidatePath("/dashboard/content");
+}