fix(rbac): add migration to fix seeded users roles and patch notifications store

2025-12-24 18:14:35 -03:00 · 2025-12-24 18:14:35 -03:00 · 617bb5ab39
commit 617bb5ab39
parent 9b389e1c9f
4 changed files with 37 additions and 6 deletions
--- a/backend/cmd/manual_migrate/main.go
+++ b/backend/cmd/manual_migrate/main.go
@ -46,10 +46,10 @@ func main() {

 	// Try multiple paths
 	paths := []string{
-		"migrations/017_create_tickets_table.sql",
-		"backend/migrations/017_create_tickets_table.sql",
-		"../migrations/017_create_tickets_table.sql",
-		"/home/yamamoto/lab/gohorsejobs/backend/migrations/017_create_tickets_table.sql",
+		"migrations/023_ensure_seeded_admins_roles.sql",
+		"backend/migrations/023_ensure_seeded_admins_roles.sql",
+		"../migrations/023_ensure_seeded_admins_roles.sql",
+		"/home/yamamoto/lab/gohorsejobs/backend/migrations/023_ensure_seeded_admins_roles.sql",
 	}

 	var content []byte
--- a/backend/migrations/023_ensure_seeded_admins_roles.sql
+++ b/backend/migrations/023_ensure_seeded_admins_roles.sql
@ -0,0 +1,20 @@
+-- Migration: Ensure Seeded Users Have Roles
+-- Description: Fixes missing roles for seeded users (admins, recruiters, candidates) due to previous seeder/migration race conditions.
+
+-- 1. Fix Admins
+INSERT INTO user_roles (user_id, role)
+SELECT id, 'admin' FROM users WHERE identifier IN ('takeshi_yamamoto', 'kenji', 'wile_e_coyote')
+ON CONFLICT (user_id, role) DO NOTHING;
+
+-- 2. Fix Recruiters
+INSERT INTO user_roles (user_id, role)
+SELECT id, 'recruiter' FROM users WHERE identifier = 'maria_santos'
+ON CONFLICT (user_id, role) DO NOTHING;
+
+-- 3. Fix Candidates (including legacy ones)
+INSERT INTO user_roles (user_id, role)
+SELECT id, 'candidate' FROM users WHERE identifier IN (
+    'paulo_santos', 'maria_email',
+    'ana_silva', 'carlos_santos', 'maria_oliveira', 'pedro_costa', 'juliana_ferreira'
+)
+ON CONFLICT (user_id, role) DO NOTHING;
--- a/frontend/src/lib/store/notifications-store.ts
+++ b/frontend/src/lib/store/notifications-store.ts
@ -21,8 +21,8 @@ export const useNotificationsStore = create<NotificationsState>((set, get) => ({
        try {
            const data = await notificationsApi.list();
            set({
-                notifications: data,
-                unreadCount: data.filter((n) => !n.readAt).length,
+                notifications: data || [],
+                unreadCount: (data || []).filter((n) => !n.readAt).length,
            });
        } catch (error) {
            console.error("Failed to fetch notifications", error);
--- a/seeder-api/src/seeders/users.js
+++ b/seeder-api/src/seeders/users.js
@ -190,6 +190,17 @@ export async function seedUsers() {
                cand.bio
            ]);
            console.log(`   ✓ Legacy candidate created: ${cand.email}`);
+
+            // Fix: Insert role into user_roles
+            const result = await pool.query('SELECT id FROM users WHERE identifier = $1', [cand.identifier]);
+            if (result.rows[0]) {
+                const userId = result.rows[0].id;
+                await pool.query(`
+                    INSERT INTO user_roles (user_id, role)
+                    VALUES ($1, 'candidate')
+                    ON CONFLICT (user_id, role) DO NOTHING
+                `, [userId]);
+            }
        }

    } catch (error) {