init: lab project bootstrapped from isletmem-kovakcrm

- CRM domain modules removed (customers, services, software, calendar, tasks, invoices, leads, finance, etc.) - DLS branding: package name=lab, logo wordmark, sidebar nav, header CTA - Tenant layer extended with kind dimension (lab|clinic) + requireTenantKind helper - Schema rewritten for DLS domain: jobs, job_files, job_status_history, prosthetics, connections, finance_entries, notifications - Onboarding form: clinic/lab account-type selection + auto-generated memberNumber - Placeholder routes for jobs/{inbound,outbound,new}, products, finance, connections - PDF spec + spec.md under belgeler/ - db: lab database + 13 collections + indexes + storage bucket (job-files) provisioned via Appwrite MCP Ref: belgeler/dls-ui-tasarim.pdf
2026-05-21 18:28:38 +03:00
commit cb150f7a24
215 changed files with 54262 additions and 0 deletions
@@ -0,0 +1,112 @@
+"use server";
+
+import { cookies } from "next/headers";
+import { redirect } from "next/navigation";
+import { AppwriteException, ID } from "node-appwrite";
+
+import { APPWRITE_SESSION_COOKIE, createAdminClient, createSessionClient } from "./server";
+import type { AuthState } from "./auth-types";
+
+function appwriteError(e: unknown): string {
+  if (e instanceof AppwriteException) {
+    switch (e.type) {
+      case "user_invalid_credentials":
+        return "Email veya şifre hatalı.";
+      case "user_blocked":
+        return "Hesabınız engellenmiş.";
+      case "user_already_exists":
+      case "user_email_already_exists":
+        return "Bu email ile zaten bir hesap var.";
+      case "user_password_mismatch":
+        return "Şifreler eşleşmiyor.";
+      case "general_rate_limit_exceeded":
+        return "Çok fazla deneme. Birkaç dakika sonra tekrar deneyin.";
+      default:
+        return e.message || "Beklenmeyen bir hata oluştu.";
+    }
+  }
+  return "Bağlantı hatası. Tekrar deneyin.";
+}
+
+async function setSessionCookie(secret: string, expire: string) {
+  (await cookies()).set(APPWRITE_SESSION_COOKIE, secret, {
+    path: "/",
+    httpOnly: true,
+    sameSite: "strict",
+    secure: process.env.NODE_ENV === "production",
+    expires: new Date(expire),
+  });
+}
+
+export async function signInAction(_prev: AuthState, formData: FormData): Promise<AuthState> {
+  const email = String(formData.get("email") ?? "").trim();
+  const password = String(formData.get("password") ?? "");
+  const inviteCode = String(formData.get("inviteCode") ?? "").trim();
+
+  if (!email || !password) {
+    return { ok: false, error: "Email ve şifre zorunlu." };
+  }
+
+  try {
+    const { account } = createAdminClient();
+    const session = await account.createEmailPasswordSession(email, password);
+    await setSessionCookie(session.secret, session.expire);
+  } catch (e) {
+    return { ok: false, error: appwriteError(e) };
+  }
+
+  redirect(inviteCode ? `/d/${inviteCode}` : "/dashboard");
+}
+
+export async function signUpAction(_prev: AuthState, formData: FormData): Promise<AuthState> {
+  const name = String(formData.get("name") ?? "").trim();
+  const email = String(formData.get("email") ?? "").trim();
+  const password = String(formData.get("password") ?? "");
+  const inviteCode = String(formData.get("inviteCode") ?? "").trim();
+
+  if (!name || !email || !password) {
+    return { ok: false, error: "Tüm alanlar zorunlu." };
+  }
+  if (password.length < 8) {
+    return { ok: false, error: "Şifre en az 8 karakter olmalı." };
+  }
+
+  try {
+    const { account } = createAdminClient();
+    await account.create(ID.unique(), email, password, name);
+    const session = await account.createEmailPasswordSession(email, password);
+    await setSessionCookie(session.secret, session.expire);
+  } catch (e) {
+    return { ok: false, error: appwriteError(e) };
+  }
+
+  redirect(inviteCode ? `/d/${inviteCode}` : "/onboarding");
+}
+
+export async function forgotPasswordAction(
+  _prev: AuthState,
+  formData: FormData,
+): Promise<AuthState> {
+  const email = String(formData.get("email") ?? "").trim();
+  if (!email) return { ok: false, error: "Email zorunlu." };
+
+  try {
+    const { account } = createAdminClient();
+    const recoveryUrl = `${process.env.APP_URL ?? "http://localhost:3000"}/reset-password`;
+    await account.createRecovery(email, recoveryUrl);
+    return { ok: true };
+  } catch (e) {
+    return { ok: false, error: appwriteError(e) };
+  }
+}
+
+export async function signOutAction() {
+  try {
+    const { account } = await createSessionClient();
+    await account.deleteSession("current");
+  } catch {
+    // ignore — cookie will be cleared anyway
+  }
+  (await cookies()).delete(APPWRITE_SESSION_COOKIE);
+  redirect("/sign-in");
+}