fix: add auth-aware navbar and fix usage page auth check

- Wrap entire app in AuthProvider in root layout so SiteHeader
  can show logged-in state (username dropdown with Account, Usage,
  Sign Out) instead of always showing Log In / Sign Up
- Convert usage page from server-side cookie auth to client-side
  AuthContext check (matching the app's localStorage token pattern)
- Remove redundant AuthProvider wrappers from account page

Co-authored-by: Qwen-Coder <qwen-coder@alibabacloud.com>

Author: ralyodio

src/app/account/page.tsx

@@ -1,12 +1,7 @@
 "use client";
 
-import { AuthProvider } from "@/lib/auth-context";
 import AccountContent from "./account-content";
 
 export default function AccountPage() {
-  return (
-    <AuthProvider>
-      <AccountContent />
-    </AuthProvider>
-  );
+  return <AccountContent />;
 }

src/app/layout.tsx

@@ -2,6 +2,7 @@ import type { Metadata } from "next";
 import "./globals.css";
 import SiteHeader from "@/components/SiteHeader";
 import SiteFooter from "@/components/SiteFooter";
+import { AuthProvider } from "@/lib/auth-context";
 
 export const metadata: Metadata = {
   title: "ThreatCrush — Real-Time Threat Intelligence Platform",
@@ -79,9 +80,11 @@ export default function RootLayout({
         />
       </head>
       <body className="antialiased">
-        <SiteHeader />
-        {children}
-        <SiteFooter />
+        <AuthProvider>
+          <SiteHeader />
+          {children}
+          <SiteFooter />
+        </AuthProvider>
       </body>
     </html>
   );

src/app/usage/page.tsx

@@ -1,37 +1,16 @@
 import type { Metadata } from "next";
-import { redirect } from "next/navigation";
-import { getSupabaseAdmin } from "@/lib/supabase";
+import { AuthProvider } from "@/lib/auth-context";
 import UsageContent from "./usage-content";
 
 export const metadata: Metadata = {
   title: "Usage & Billing — ThreatCrush",
   description: "Monitor your AI usage credits, spending, and billing for ThreatCrush modules.",
 };
 
-async function requireUsageAccess() {
-  const supabase = getSupabaseAdmin();
-
-  // Read the Supabase auth token cookie directly.
-  // This is intentionally simple for now and mirrors the app's current auth shape.
-  const { cookies } = await import("next/headers");
-  const cookieStore = await cookies();
-
-  const possibleCookies = [
-    cookieStore.get("sb-access-token")?.value,
-    cookieStore.get("supabase-auth-token")?.value,
-  ].filter(Boolean) as string[];
-
-  for (const token of possibleCookies) {
-    const { data } = await supabase.auth.getUser(token);
-    if (data?.user) {
-      return data.user;
-    }
-  }
-
-  redirect("/auth/login?next=/usage");
-}
-
-export default async function UsagePage() {
-  await requireUsageAccess();
-  return <UsageContent />;
+export default function UsagePage() {
+  return (
+    <AuthProvider>
+      <UsageContent />
+    </AuthProvider>
+  );
 }

src/app/usage/usage-content.tsx

@@ -2,6 +2,8 @@
 
 import { useState, useEffect } from "react";
 import Link from "next/link";
+import { useRouter } from "next/navigation";
+import { useAuth } from "@/lib/auth-context";
 import ScrollReveal from "@/components/ScrollReveal";
 
 interface UsageData {
@@ -56,20 +58,28 @@ function formatTime(iso: string): string {
 }
 
 export default function UsageContent() {
+  const { signedIn, loading: authLoading } = useAuth();
+  const router = useRouter();
   const [data, setData] = useState<UsageData | null>(null);
   const [loading, setLoading] = useState(true);
   const [topupAmount, setTopupAmount] = useState<number>(10);
   const [showTopup, setShowTopup] = useState(false);
 
   useEffect(() => {
-    fetch("/api/usage")
-      .then((r) => r.json())
-      .then((d) => {
-        setData(d);
-        setLoading(false);
-      })
-      .catch(() => setLoading(false));
-  }, []);
+    if (!authLoading && !signedIn) {
+      window.location.href = "/auth/login?next=/usage";
+      return;
+    }
+    if (!authLoading && signedIn) {
+      fetch("/api/usage")
+        .then((r) => r.json())
+        .then((d) => {
+          setData(d);
+          setLoading(false);
+        })
+        .catch(() => setLoading(false));
+    }
+  }, [signedIn, authLoading]);
 
   const handleTopup = async () => {
     if (!topupAmount || topupAmount < 5) return;

src/components/SiteHeader.tsx

@@ -1,13 +1,29 @@
 "use client";
 
-import { useState } from "react";
+import { useState, useEffect } from "react";
+import { useAuth } from "@/lib/auth-context";
 import WaitlistModal from "@/components/WaitlistModal";
 
 export default function SiteHeader() {
+  const { signedIn, profile, signOut, loading } = useAuth();
   const [modalOpen, setModalOpen] = useState(false);
   const [mobileNavOpen, setMobileNavOpen] = useState(false);
+  const [userDropdownOpen, setUserDropdownOpen] = useState(false);
   const openModal = () => setModalOpen(true);
 
+  // Close dropdown on outside click
+  useEffect(() => {
+    if (!userDropdownOpen) return;
+    const handler = () => setUserDropdownOpen(false);
+    document.addEventListener("click", handler);
+    return () => document.removeEventListener("click", handler);
+  }, [userDropdownOpen]);
+
+  const handleSignOut = async () => {
+    await signOut();
+    window.location.href = "/";
+  };
+
   return (
     <>
       <WaitlistModal open={modalOpen} onClose={() => setModalOpen(false)} />
@@ -38,12 +54,73 @@ export default function SiteHeader() {
             </a>
           </div>
           <div className="flex items-center gap-2 sm:gap-3">
-            <a
-              href="/auth/signup"
-              className="rounded-lg bg-tc-green px-3 py-2 text-sm font-bold text-black transition-all hover:bg-tc-green-dim sm:px-4"
-            >
-              Sign Up
-            </a>
+            {!loading && (
+              signedIn ? (
+                <div className="flex items-center gap-2 relative">
+                  <button
+                    type="button"
+                    onClick={(e) => {
+                      e.stopPropagation();
+                      setUserDropdownOpen((v) => !v);
+                    }}
+                    className="rounded-lg bg-tc-green/10 border border-tc-green/30 px-3 py-2 text-sm font-bold text-tc-green transition-all hover:bg-tc-green/20 flex items-center gap-2"
+                  >
+                    <span>{profile?.display_name || profile?.email || "Account"}</span>
+                    <span className="text-xs">{userDropdownOpen ? "▲" : "▼"}</span>
+                  </button>
+                  {userDropdownOpen && (
+                    <div
+                      className="absolute right-0 top-full mt-2 w-56 bg-tc-card border border-tc-border rounded-xl shadow-xl overflow-hidden z-50"
+                      onClick={(e) => e.stopPropagation()}
+                    >
+                      <div className="px-4 py-3 border-b border-tc-border">
+                        <p className="text-sm text-white font-medium truncate">{profile?.display_name || "User"}</p>
+                        <p className="text-xs text-tc-text-dim truncate">{profile?.email}</p>
+                      </div>
+                      <div className="py-1">
+                        <a
+                          href="/account"
+                          className="block px-4 py-2 text-sm text-tc-text-dim hover:text-white hover:bg-tc-darker transition-colors"
+                          onClick={() => setUserDropdownOpen(false)}
+                        >
+                          Account Settings
+                        </a>
+                        <a
+                          href="/usage"
+                          className="block px-4 py-2 text-sm text-tc-text-dim hover:text-white hover:bg-tc-darker transition-colors"
+                          onClick={() => setUserDropdownOpen(false)}
+                        >
+                          Usage & Billing
+                        </a>
+                      </div>
+                      <div className="border-t border-tc-border">
+                        <button
+                          onClick={handleSignOut}
+                          className="w-full text-left px-4 py-2 text-sm text-red-400 hover:bg-red-500/10 transition-colors"
+                        >
+                          Sign Out
+                        </button>
+                      </div>
+                    </div>
+                  )}
+                </div>
+              ) : (
+                <>
+                  <a
+                    href="/auth/login"
+                    className="hidden lg:inline text-sm text-tc-text-dim hover:text-tc-green transition-colors"
+                  >
+                    Log In
+                  </a>
+                  <a
+                    href="/auth/signup"
+                    className="rounded-lg bg-tc-green px-3 py-2 text-sm font-bold text-black transition-all hover:bg-tc-green-dim sm:px-4"
+                  >
+                    Sign Up
+                  </a>
+                </>
+              )
+            )}
             <button
               type="button"
               onClick={() => setMobileNavOpen((open) => !open)}
@@ -54,18 +131,14 @@ export default function SiteHeader() {
               <span className="text-lg">{mobileNavOpen ? "✕" : "☰"}</span>
             </button>
             <div className="hidden lg:flex items-center gap-3">
-              <a
-                href="/auth/login"
-                className="text-sm text-tc-text-dim hover:text-tc-green transition-colors"
-              >
-                Log In
-              </a>
-              <button
-                onClick={openModal}
-                className="rounded-lg border border-tc-green/30 px-4 py-2 text-sm font-bold text-tc-green transition-all hover:bg-tc-green/10"
-              >
-                Join Waitlist
-              </button>
+              {!signedIn && !loading && (
+                <button
+                  onClick={openModal}
+                  className="rounded-lg border border-tc-green/30 px-4 py-2 text-sm font-bold text-tc-green transition-all hover:bg-tc-green/10"
+                >
+                  Join Waitlist
+                </button>
+              )}
             </div>
           </div>
         </div>
@@ -79,16 +152,34 @@ export default function SiteHeader() {
               <a href="/#pricing" className="hover:text-tc-green transition-colors" onClick={() => setMobileNavOpen(false)}>Pricing</a>
               <a href="/investors" className="hover:text-tc-green transition-colors" onClick={() => setMobileNavOpen(false)}>Investors</a>
               <a href="/#faq" className="hover:text-tc-green transition-colors" onClick={() => setMobileNavOpen(false)}>FAQ</a>
-              <a href="/auth/login" className="hover:text-tc-green transition-colors" onClick={() => setMobileNavOpen(false)}>Log In</a>
-              <button
-                onClick={() => {
-                  setMobileNavOpen(false);
-                  openModal();
-                }}
-                className="rounded-lg border border-tc-green/30 px-4 py-2 text-left font-bold text-tc-green transition-all hover:bg-tc-green/10"
-              >
-                Join Waitlist
-              </button>
+              {signedIn ? (
+                <>
+                  <a href="/account" className="text-tc-green transition-colors" onClick={() => setMobileNavOpen(false)}>Account</a>
+                  <button
+                    onClick={async () => {
+                      setMobileNavOpen(false);
+                      await signOut();
+                      window.location.href = "/";
+                    }}
+                    className="text-left text-red-400 hover:text-red-300 transition-colors"
+                  >
+                    Sign Out
+                  </button>
+                </>
+              ) : (
+                <>
+                  <a href="/auth/login" className="hover:text-tc-green transition-colors" onClick={() => setMobileNavOpen(false)}>Log In</a>
+                  <button
+                    onClick={() => {
+                      setMobileNavOpen(false);
+                      openModal();
+                    }}
+                    className="rounded-lg border border-tc-green/30 px-4 py-2 text-left font-bold text-tc-green transition-all hover:bg-tc-green/10"
+                  >
+                    Join Waitlist
+                  </button>
+                </>
+              )}
               <a
                 href="https://github.com/profullstack/threatcrush"
                 target="_blank"