feat: code review updates

priley86 · priley86 · commit 33f16fe7fd3d · 2025-09-30T18:46:34.000-04:00
diff --git a/asynchronous-authorization/langchain-next-js/.env.example b/asynchronous-authorization/langchain-next-js/.env.example
@@ -11,6 +11,14 @@ AUTH0_CLIENT_SECRET="{yourClientSecret}"
 # Database configuration
 DATABASE_URL="postgresql://postgres:postgres@localhost:5432/ai_documents_db"   
 
+# Auth0 FGA
+FGA_STORE_ID=<your-fga-store-id>
+FGA_CLIENT_ID=<your-fga-store-client-id>
+FGA_CLIENT_SECRET=<your-fga-store-client-secret>
+FGA_API_URL=https://api.xxx.fga.dev
+FGA_API_AUDIENCE=https://api.xxx.fga.dev/
+FGA_API_TOKEN_ISSUER=auth.fga.dev
+
 # LANGGRAPH
 LANGGRAPH_API_URL=http://localhost:54367
 # Optional: For Tracing with LangSmith
diff --git a/asynchronous-authorization/langchain-next-js/bun.lock b/asynchronous-authorization/langchain-next-js/bun.lock
diff --git a/asynchronous-authorization/langchain-next-js/package.json b/asynchronous-authorization/langchain-next-js/package.json
@@ -49,7 +49,7 @@
     "lucide-react": "^0.543.0",
     "marked": "^16.2.1",
     "nanoid": "^5.1.5",
-    "next": "^15.5.2",
+    "next": "^15.5.4",
     "next-themes": "^0.4.6",
     "nuqs": "^2.6.0",
     "pdf-parse": "^1.1.1",
@@ -74,6 +74,8 @@
     "@types/pdf-parse": "^1.1.5",
     "@types/react": "^19.1.12",
     "@types/react-dom": "^19.1.9",
+    "@typescript-eslint/eslint-plugin": "^8.45.0",
+    "@typescript-eslint/parser": "^8.45.0",
     "autoprefixer": "^10.4.21",
     "dotenv": "^16.4.5",
     "drizzle-kit": "^0.31.4",
@@ -82,7 +84,7 @@
     "npm-run-all": "^4.1.5",
     "postcss": "^8.5.6",
     "prettier": "^3.6.2",
-    "@tailwindcss/postcss": "^4.1.13",
+    "tailwindcss": "^3.4.17",
     "tsx": "^4.20.5",
     "typescript": "^5.9.2"
   }
diff --git a/asynchronous-authorization/langchain-next-js/postcss.config.mjs b/asynchronous-authorization/langchain-next-js/postcss.config.mjs
@@ -1,6 +1,7 @@
 const config = {
   plugins: {
-    "@tailwindcss/postcss": {},
+    tailwindcss: {},
+    autoprefixer: {},
   },
 };
 export default config;
diff --git a/asynchronous-authorization/langchain-next-js/src/app/globals.css b/asynchronous-authorization/langchain-next-js/src/app/globals.css
@@ -1,4 +1,6 @@
-@import "tailwindcss";
+@tailwind base;
+@tailwind components;
+@tailwind utilities;
 
 @layer base {
   :root {
diff --git a/asynchronous-authorization/langchain-next-js/src/lib/agent.ts b/asynchronous-authorization/langchain-next-js/src/lib/agent.ts
@@ -8,7 +8,14 @@ import { shopOnlineTool } from './tools/shop-online';
 
 const date = new Date().toISOString();
 
-const AGENT_SYSTEM_TEMPLATE = `You are a personal assistant named Assistant0. You are a helpful assistant that can answer questions and help with tasks. You have access to a set of tools, use the tools as needed to answer the user's question. Render the email body as a markdown block, do not wrap it in code blocks. Today is ${date}.`;
+const AGENT_SYSTEM_TEMPLATE = `You are a personal assistant named Assistant0. You are a helpful assistant that can answer questions and help with tasks. 
+
+You have access to a set of tools. When using tools, you MUST provide valid JSON arguments. Always format tool call arguments as proper JSON objects.
+
+For example, when calling shop_online tool, format like this:
+{"product": "iPhone", "qty": 1, "priceLimit": 1000}
+
+Use the tools as needed to answer the user's question. Render the email body as a markdown block, do not wrap it in code blocks. Today is ${date}.`;
 
 const llm = new ChatOpenAI({
   model: 'gpt-4o',
diff --git a/asynchronous-authorization/langchain-next-js/src/lib/auth0-ai.ts b/asynchronous-authorization/langchain-next-js/src/lib/auth0-ai.ts
@@ -12,6 +12,11 @@ export const withAsyncAuthorization = auth0AI.withAsyncUserConfirmation({
   scopes: ['openid', 'product:buy'], // add any scopes you want to use with your API
   audience: process.env['SHOP_API_AUDIENCE']!,
 
+  /**
+   * Note: Setting a requested expiry greater than 300 (seconds) will force email verification
+   * instead of using the push notification flow.
+   */
+  // requestedExpiry: 301,
   /**
    * When this flag is set to `block`, the execution of the tool awaits
    * until the user approves or rejects the request.
diff --git a/asynchronous-authorization/langchain-next-js/src/lib/fga/fga.ts b/asynchronous-authorization/langchain-next-js/src/lib/fga/fga.ts
@@ -1,13 +1,37 @@
 import { buildOpenFgaClient } from '@auth0/ai';
 
-export const fgaClient = buildOpenFgaClient();
+// Initialize FGA client only if credentials are provided
+let fgaClient: ReturnType<typeof buildOpenFgaClient> | null = null;
 
-export const addRelation = async (userEmail: string, documentId: string, relation = 'owner') =>
-  fgaClient.write({
+try {
+  // Check if FGA credentials are available
+  if (process.env.FGA_CLIENT_ID && process.env.FGA_STORE_ID) {
+    fgaClient = buildOpenFgaClient();
+  }
+} catch (error) {
+  console.warn('FGA client initialization failed. FGA features will be disabled.', error);
+}
+
+export { fgaClient };
+
+export const addRelation = async (userEmail: string, documentId: string, relation = 'owner') => {
+  if (!fgaClient) {
+    console.warn('FGA client not available. Skipping relation addition.');
+    return;
+  }
+  
+  return fgaClient.write({
     writes: [{ user: `user:${userEmail}`, relation, object: `doc:${documentId}` }],
   });
+};
 
-export const deleteRelation = async (userEmail: string, documentId: string, relation = 'owner') =>
-  fgaClient.write({
+export const deleteRelation = async (userEmail: string, documentId: string, relation = 'owner') => {
+  if (!fgaClient) {
+    console.warn('FGA client not available. Skipping relation deletion.');
+    return;
+  }
+  
+  return fgaClient.write({
     deletes: [{ user: `user:${userEmail}`, relation, object: `doc:${documentId}` }],
   });
+};
diff --git a/asynchronous-authorization/langchain-next-js/src/middleware.ts b/asynchronous-authorization/langchain-next-js/src/middleware.ts
@@ -1,34 +1,19 @@
-import { NextRequest, NextResponse } from "next/server";
-import { auth0 } from "./lib/auth0";
+import type { NextRequest } from "next/server"
 
-const APP_SESSION_COOKIE = "appSession";
+import { auth0 } from "./lib/auth0"
 
 export async function middleware(request: NextRequest) {
-  const { pathname } = request.nextUrl;
-
-  if (pathname.startsWith("/auth")) {
-    return auth0.middleware(request);
-  }
-
-  try {
-    const session = await auth0.getSession(request);
-    if (!session) {
-      return NextResponse.redirect(new URL("/auth/login", request.url));
-    }
-    return NextResponse.next();
-  } catch {
-    const redirect = NextResponse.redirect(new URL("/auth/login", request.url));
-    redirect.cookies.set(APP_SESSION_COOKIE, "", {
-      path: "/",
-      httpOnly: true,
-      maxAge: 0,
-    });
-    return redirect;
-  }
+  return await auth0.middleware(request);
 }
 
 export const config = {
   matcher: [
-    "/((?!_next/static|_next/image|images|favicon\\.(?:ico|png)|sitemap\\.xml|robots\\.txt|$).*)",
+    /*
+     * Match all request paths except for the ones starting with:
+     * - _next/static (static files)
+     * - _next/image (image optimization files)
+     * - favicon.ico, sitemap.xml, robots.txt (metadata files)
+     */
+    "/((?!_next/static|_next/image|favicon.ico|sitemap.xml|robots.txt).*)",
   ],
-};
+}
diff --git a/asynchronous-authorization/langchain-next-js/tailwind.config.js b/asynchronous-authorization/langchain-next-js/tailwind.config.js
