Refactor authentication handling in Supabase integration

- Introduced `getAuthenticatedUser` function to streamline user authentication retrieval for both cookie-based and Bearer token auth.
- Updated various API routes to utilize the new `getAuthenticatedUser` function, simplifying the authentication logic.
- Modified test files to mock the new authentication method, ensuring consistent behavior across tests.
- Added new commands to local settings for building and testing with pnpm. release:patch

Author: ralyodio

.claude/settings.local.json

@@ -206,7 +206,9 @@
       "Bash(./.husky/pre-commit)",
       "Bash(gh release edit:*)",
       "Bash(base64:*)",
-      "Bash(jq -r '.version' echo -e \"\\\\n=== Gentoo ===\")"
+      "Bash(jq -r '.version' echo -e \"\\\\n=== Gentoo ===\")",
+      "Bash(pnpm turbo build:*)",
+      "Bash(pnpm turbo test:*)"
     ],
     "deny": [
       "Bash(npm *)",

apps/web/src/app/api/auth/session/route.test.ts

@@ -2,8 +2,11 @@ import { describe, it, expect, vi, beforeEach } from 'vitest';
 import { GET } from './route';
 import { createMockSupabaseClient, mockUser, mockProfile } from '@/test/mocks/supabase';
 
+const mockGetAuthenticatedUser = vi.fn();
+
 vi.mock('@/lib/supabase/server', () => ({
   createClient: vi.fn(),
+  getAuthenticatedUser: (...args: unknown[]) => mockGetAuthenticatedUser(...args),
 }));
 
 import { createClient } from '@/lib/supabase/server';
@@ -22,15 +25,10 @@ describe('GET /api/auth/session', () => {
     });
 
     const mockSupabase = createMockSupabaseClient({
-      auth: {
-        getUser: vi.fn().mockResolvedValue({
-          data: { user: mockUser },
-          error: null,
-        }),
-      },
       from: mockFrom,
     });
     vi.mocked(createClient).mockResolvedValue(mockSupabase as never);
+    mockGetAuthenticatedUser.mockResolvedValue({ user: mockUser, error: null });
 
     const response = await GET();
     const body = await response.json();
@@ -42,15 +40,9 @@ describe('GET /api/auth/session', () => {
   });
 
   it('returns null user and profile for unauthenticated request', async () => {
-    const mockSupabase = createMockSupabaseClient({
-      auth: {
-        getUser: vi.fn().mockResolvedValue({
-          data: { user: null },
-          error: null,
-        }),
-      },
-    });
+    const mockSupabase = createMockSupabaseClient({});
     vi.mocked(createClient).mockResolvedValue(mockSupabase as never);
+    mockGetAuthenticatedUser.mockResolvedValue({ user: null, error: null });
 
     const response = await GET();
     const body = await response.json();
@@ -61,15 +53,12 @@ describe('GET /api/auth/session', () => {
   });
 
   it('returns null when auth error occurs', async () => {
-    const mockSupabase = createMockSupabaseClient({
-      auth: {
-        getUser: vi.fn().mockResolvedValue({
-          data: { user: null },
-          error: { message: 'Session expired' },
-        }),
-      },
-    });
+    const mockSupabase = createMockSupabaseClient({});
     vi.mocked(createClient).mockResolvedValue(mockSupabase as never);
+    mockGetAuthenticatedUser.mockResolvedValue({
+      user: null,
+      error: { message: 'Session expired' },
+    });
 
     const response = await GET();
     const body = await response.json();
@@ -90,15 +79,10 @@ describe('GET /api/auth/session', () => {
     });
 
     const mockSupabase = createMockSupabaseClient({
-      auth: {
-        getUser: vi.fn().mockResolvedValue({
-          data: { user: mockUser },
-          error: null,
-        }),
-      },
       from: mockFrom,
     });
     vi.mocked(createClient).mockResolvedValue(mockSupabase as never);
+    mockGetAuthenticatedUser.mockResolvedValue({ user: mockUser, error: null });
 
     const response = await GET();
     const body = await response.json();
@@ -119,15 +103,10 @@ describe('GET /api/auth/session', () => {
     });
 
     const mockSupabase = createMockSupabaseClient({
-      auth: {
-        getUser: vi.fn().mockResolvedValue({
-          data: { user: mockUser },
-          error: null,
-        }),
-      },
       from: mockFrom,
     });
     vi.mocked(createClient).mockResolvedValue(mockSupabase as never);
+    mockGetAuthenticatedUser.mockResolvedValue({ user: mockUser, error: null });
 
     const response = await GET();
 

apps/web/src/app/api/auth/session/route.ts

@@ -1,14 +1,11 @@
-import { createClient } from '@/lib/supabase/server';
+import { createClient, getAuthenticatedUser } from '@/lib/supabase/server';
 import { successResponse, handleApiError } from '@/lib/api';
 
 export async function GET() {
   try {
     const supabase = await createClient();
 
-    const {
-      data: { user },
-      error: authError,
-    } = await supabase.auth.getUser();
+    const { user, error: authError } = await getAuthenticatedUser(supabase);
 
     if (authError || !user) {
       return successResponse({ user: null, profile: null });

apps/web/src/app/api/chat/history/route.test.ts

@@ -2,8 +2,11 @@ import { describe, it, expect, vi, beforeEach } from 'vitest';
 import { GET } from './route';
 import { createMockSupabaseClient, mockUser } from '@/test/mocks/supabase';
 
+const mockGetAuthenticatedUser = vi.fn();
+
 vi.mock('@/lib/supabase/server', () => ({
   createClient: vi.fn(),
+  getAuthenticatedUser: (...args: unknown[]) => mockGetAuthenticatedUser(...args),
 }));
 
 import { createClient } from '@/lib/supabase/server';
@@ -57,15 +60,10 @@ describe('GET /api/chat/history', () => {
     });
 
     const mockSupabase = createMockSupabaseClient({
-      auth: {
-        getUser: vi.fn().mockResolvedValue({
-          data: { user: mockUser },
-          error: null,
-        }),
-      },
       from: mockFrom,
     });
     vi.mocked(createClient).mockResolvedValue(mockSupabase as never);
+    mockGetAuthenticatedUser.mockResolvedValue({ user: mockUser, error: null });
 
     const sessionId = 'a1b2c3d4-e5f6-7890-abcd-ef1234567890';
     const request = new Request(`http://localhost/api/chat/history?sessionId=${sessionId}`);
@@ -98,15 +96,10 @@ describe('GET /api/chat/history', () => {
     });
 
     const mockSupabase = createMockSupabaseClient({
-      auth: {
-        getUser: vi.fn().mockResolvedValue({
-          data: { user: mockUser },
-          error: null,
-        }),
-      },
       from: mockFrom,
     });
     vi.mocked(createClient).mockResolvedValue(mockSupabase as never);
+    mockGetAuthenticatedUser.mockResolvedValue({ user: mockUser, error: null });
 
     const sessionId = 'a1b2c3d4-e5f6-7890-abcd-ef1234567890';
     const request = new Request(`http://localhost/api/chat/history?sessionId=${sessionId}`);
@@ -132,15 +125,10 @@ describe('GET /api/chat/history', () => {
     });
 
     const mockSupabase = createMockSupabaseClient({
-      auth: {
-        getUser: vi.fn().mockResolvedValue({
-          data: { user: mockUser },
-          error: null,
-        }),
-      },
       from: mockFrom,
     });
     vi.mocked(createClient).mockResolvedValue(mockSupabase as never);
+    mockGetAuthenticatedUser.mockResolvedValue({ user: mockUser, error: null });
 
     const sessionId = 'a1b2c3d4-e5f6-7890-abcd-ef1234567890';
     const before = '2024-01-01T00:00:30Z';
@@ -165,15 +153,10 @@ describe('GET /api/chat/history', () => {
     });
 
     const mockSupabase = createMockSupabaseClient({
-      auth: {
-        getUser: vi.fn().mockResolvedValue({
-          data: { user: mockUser },
-          error: null,
-        }),
-      },
       from: mockFrom,
     });
     vi.mocked(createClient).mockResolvedValue(mockSupabase as never);
+    mockGetAuthenticatedUser.mockResolvedValue({ user: mockUser, error: null });
 
     const sessionId = 'a1b2c3d4-e5f6-7890-abcd-ef1234567890';
     const request = new Request(`http://localhost/api/chat/history?sessionId=${sessionId}&limit=2`);
@@ -186,15 +169,9 @@ describe('GET /api/chat/history', () => {
   });
 
   it('returns 400 for invalid session ID', async () => {
-    const mockSupabase = createMockSupabaseClient({
-      auth: {
-        getUser: vi.fn().mockResolvedValue({
-          data: { user: mockUser },
-          error: null,
-        }),
-      },
-    });
+    const mockSupabase = createMockSupabaseClient({});
     vi.mocked(createClient).mockResolvedValue(mockSupabase as never);
+    mockGetAuthenticatedUser.mockResolvedValue({ user: mockUser, error: null });
 
     const request = new Request('http://localhost/api/chat/history?sessionId=invalid');
 
@@ -203,15 +180,9 @@ describe('GET /api/chat/history', () => {
   });
 
   it('returns 400 for missing session ID', async () => {
-    const mockSupabase = createMockSupabaseClient({
-      auth: {
-        getUser: vi.fn().mockResolvedValue({
-          data: { user: mockUser },
-          error: null,
-        }),
-      },
-    });
+    const mockSupabase = createMockSupabaseClient({});
     vi.mocked(createClient).mockResolvedValue(mockSupabase as never);
+    mockGetAuthenticatedUser.mockResolvedValue({ user: mockUser, error: null });
 
     const request = new Request('http://localhost/api/chat/history');
 
@@ -220,15 +191,9 @@ describe('GET /api/chat/history', () => {
   });
 
   it('returns 400 for limit out of range', async () => {
-    const mockSupabase = createMockSupabaseClient({
-      auth: {
-        getUser: vi.fn().mockResolvedValue({
-          data: { user: mockUser },
-          error: null,
-        }),
-      },
-    });
+    const mockSupabase = createMockSupabaseClient({});
     vi.mocked(createClient).mockResolvedValue(mockSupabase as never);
+    mockGetAuthenticatedUser.mockResolvedValue({ user: mockUser, error: null });
 
     const sessionId = 'a1b2c3d4-e5f6-7890-abcd-ef1234567890';
     const request = new Request(
@@ -249,15 +214,10 @@ describe('GET /api/chat/history', () => {
     });
 
     const mockSupabase = createMockSupabaseClient({
-      auth: {
-        getUser: vi.fn().mockResolvedValue({
-          data: { user: mockUser },
-          error: null,
-        }),
-      },
       from: mockFrom,
     });
     vi.mocked(createClient).mockResolvedValue(mockSupabase as never);
+    mockGetAuthenticatedUser.mockResolvedValue({ user: mockUser, error: null });
 
     const sessionId = 'a1b2c3d4-e5f6-7890-abcd-ef1234567890';
     const request = new Request(`http://localhost/api/chat/history?sessionId=${sessionId}`);
@@ -283,15 +243,10 @@ describe('GET /api/chat/history', () => {
     });
 
     const mockSupabase = createMockSupabaseClient({
-      auth: {
-        getUser: vi.fn().mockResolvedValue({
-          data: { user: mockUser },
-          error: null,
-        }),
-      },
       from: mockFrom,
     });
     vi.mocked(createClient).mockResolvedValue(mockSupabase as never);
+    mockGetAuthenticatedUser.mockResolvedValue({ user: mockUser, error: null });
 
     const sessionId = 'a1b2c3d4-e5f6-7890-abcd-ef1234567890';
     const request = new Request(`http://localhost/api/chat/history?sessionId=${sessionId}`);

apps/web/src/app/api/chat/history/route.ts

@@ -1,4 +1,4 @@
-import { createClient } from '@/lib/supabase/server';
+import { createClient, getAuthenticatedUser } from '@/lib/supabase/server';
 import { successResponse, errorResponse, handleApiError } from '@/lib/api';
 import { z } from 'zod';
 
@@ -24,9 +24,7 @@ export async function GET(request: Request) {
     const supabase = await createClient();
 
     // Check authentication (for RLS policies)
-    const {
-      data: { user },
-    } = await supabase.auth.getUser();
+    const { user } = await getAuthenticatedUser(supabase);
 
     // Build query
     let query = supabase