admin/acmcc
1
0
Fork 0
mirror of https://github.com/renee-png/acmcc.git synced 2026-06-21 09:50:01 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add ACMCC app source, Supabase backend, and project config

Browse Source 
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
This commit is contained in:
renee-png
2026-06-01 20:19:26 -04:00
parent 313b51b412
commit 183fe0a93c
1422 changed files with 259271 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
supabase/migrations/20260423145856_d719312f-ffaa-4458-911d-3bd8ee877035.sql
+86
View File
@@ -0,0 +1,86 @@
DROP POLICY IF EXISTS "Authenticated users can submit client requests" ON public.client_requests;
DROP POLICY IF EXISTS "Users can view their own submitted requests" ON public.client_requests;
DROP POLICY IF EXISTS "Staff full access on client_requests" ON public.client_requests;
CREATE POLICY "Association users can submit client requests"
ON public.client_requests
FOR INSERT
TO authenticated
WITH CHECK (
public.user_belongs_to_association(auth.uid(), association_id)
OR public.has_role(auth.uid(), 'admin'::public.app_role)
OR public.has_role(auth.uid(), 'manager'::public.app_role)
OR public.has_role(auth.uid(), 'employee'::public.app_role)
);
CREATE POLICY "Board members can view association client requests"
ON public.client_requests
FOR SELECT
TO authenticated
USING (
association_id IN (
SELECT bm.association_id
FROM public.board_members bm
WHERE bm.user_id = auth.uid()
)
);
CREATE POLICY "Users can view their own submitted client requests"
ON public.client_requests
FOR SELECT
TO authenticated
USING (
requester_email = (
SELECT au.email::text
FROM auth.users au
WHERE au.id = auth.uid()
)
AND public.user_belongs_to_association(auth.uid(), association_id)
);
CREATE POLICY "Staff full access on client_requests"
ON public.client_requests
FOR ALL
TO authenticated
USING (
public.has_role(auth.uid(), 'admin'::public.app_role)
OR public.has_role(auth.uid(), 'manager'::public.app_role)
OR public.has_role(auth.uid(), 'employee'::public.app_role)
)
WITH CHECK (
public.has_role(auth.uid(), 'admin'::public.app_role)
OR public.has_role(auth.uid(), 'manager'::public.app_role)
OR public.has_role(auth.uid(), 'employee'::public.app_role)
);
DROP POLICY IF EXISTS "Staff full access on calendar_events" ON public.calendar_events;
CREATE POLICY "Staff full access on calendar_events"
ON public.calendar_events
FOR ALL
TO authenticated
USING (
public.has_role(auth.uid(), 'admin'::public.app_role)
OR public.has_role(auth.uid(), 'manager'::public.app_role)
OR public.has_role(auth.uid(), 'employee'::public.app_role)
)
WITH CHECK (
public.has_role(auth.uid(), 'admin'::public.app_role)
OR public.has_role(auth.uid(), 'manager'::public.app_role)
OR public.has_role(auth.uid(), 'employee'::public.app_role)
);
DROP POLICY IF EXISTS "Staff full access on blocked_dates" ON public.blocked_dates;
CREATE POLICY "Staff full access on blocked_dates"
ON public.blocked_dates
FOR ALL
TO authenticated
USING (
public.has_role(auth.uid(), 'admin'::public.app_role)
OR public.has_role(auth.uid(), 'manager'::public.app_role)
OR public.has_role(auth.uid(), 'employee'::public.app_role)
)
WITH CHECK (
public.has_role(auth.uid(), 'admin'::public.app_role)
OR public.has_role(auth.uid(), 'manager'::public.app_role)
OR public.has_role(auth.uid(), 'employee'::public.app_role)
);