Documentation Index Fetch the complete documentation index at: https://mintlify.com/Jesus-Puertos/h-ayuntamiento/llms.txt
Use this file to discover all available pages before exploring further.
Overview The platform uses Supabase Auth for user authentication, supporting:
OAuth Providers : Google, FacebookEmail/Password : Traditional authenticationSession Management : Automatic cookie handlingProtected Routes : Server-side auth checks
Authentication UI is handled by the AuthButtons.tsx React component.
Authentication Flow OAuth Flow (Google) The AuthButtons.tsx component provides a complete authentication UI:
// src/components/AuthButtons.tsx import { useState , useEffect } from 'react' ; import { supabase , signInWithEmail , signUpWithEmail , getCurrentUser , signOut } from '../lib/supabase' ; interface AuthButtonsProps { onAuthSuccess ?: () => void ; } export default function AuthButtons ({ onAuthSuccess } : AuthButtonsProps ) { const [ user , setUser ] = useState < any >( null ); const [ loading , setLoading ] = useState ( true ); const [ isSignUp , setIsSignUp ] = useState ( false ); // ... }
Features
Toggle Mode : Switch between sign in and sign upForm Validation : Email format, password requirementsLoading States : Visual feedback during async operationsError Handling : User-friendly error messagesSession Persistence : Listens to auth state changesUser Profile Display : Shows avatar and name when logged in
Usage in Pages --- // pages/turismo.astro import AuthButtons from '@/components/AuthButtons.tsx' ; import { getCurrentUser } from '@/lib/supabase' ; const user = await getCurrentUser (); --- { ! user ? ( < div class = "max-w-md mx-auto p-6" > < h2 class = "text-2xl font-bold mb-4" > Inicia sesión </ h2 > < AuthButtons client : load /> </ div > ) : ( < p > Bienvenido, { user . user_metadata . name } ! </ p > ) }
Supabase Auth Functions Get Current User import { getCurrentUser } from '@/lib/supabase' ; const user = await getCurrentUser (); if ( ! user ) { // User not logged in return Astro . redirect ( '/login' ); }
Returns : User | nullEmail/Password Sign In import { signInWithEmail } from '@/lib/supabase' ; const handleSignIn = async ( e : React . FormEvent ) => { e . preventDefault (); setError ( '' ); setLoading ( true ); try { const { error } = await signInWithEmail ( email , password ); if ( error ) throw error ; // Success - auth state listener will update UI } catch ( err : any ) { setError ( err . message || 'Error al iniciar sesión' ); } finally { setLoading ( false ); } };
Error Codes :
invalid_credentials - Wrong email/passwordemail_not_confirmed - Email verification pending
Email/Password Sign Up import { signUpWithEmail } from '@/lib/supabase' ; const handleSignUp = async ( e : React . FormEvent ) => { e . preventDefault (); setError ( '' ); setLoading ( true ); try { const { error } = await signUpWithEmail ( email , password , name ); if ( error ) throw error ; alert ( '¡Cuenta creada! Revisa tu email para confirmar tu cuenta.' ); } catch ( err : any ) { setError ( err . message || 'Error al crear cuenta' ); } finally { setLoading ( false ); } };
Function Signature :export async function signUpWithEmail ( email : string , password : string , name ?: string ) { const { data , error } = await supabase . auth . signUp ({ email , password , options: { data: { name: name || email . split ( '@' )[ 0 ] // Fallback to email username } } }); return { data , error }; }
OAuth with Google import { signInWithGoogle } from '@/lib/supabase' ; const handleGoogleSignIn = async () => { const { error } = await signInWithGoogle ( '/turismo?onboarding=1' ); if ( error ) { console . error ( 'OAuth error:' , error ); } // User will be redirected to Google };
Implementation :export async function signInWithGoogle ( redirectPath = '/turismo?onboarding=1' ) { const { data , error } = await supabase . auth . signInWithOAuth ({ provider: 'google' , options: { redirectTo: ` ${ window . location . origin } /auth/callback?return_url= ${ encodeURIComponent ( redirectPath ) } ` } }); return { data , error }; }
Flow :
User clicks “Sign in with Google”
signInWithGoogle() called with optional redirect pathRedirects to Google OAuth consent screen
User authorizes
Google redirects to /auth/callback?return_url=/turismo?onboarding=1
Callback page sets session cookie
Redirects to return_url
OAuth Callback Handler --- // pages/auth/callback.astro import { supabase } from '@/lib/supabase' ; // Exchange code for session const { searchParams } = Astro . url ; const code = searchParams . get ( 'code' ); const returnUrl = searchParams . get ( 'return_url' ) || '/turismo' ; if ( code ) { const { error } = await supabase . auth . exchangeCodeForSession ( code ); if ( error ) { console . error ( 'Session exchange error:' , error ); return Astro . redirect ( '/error' ); } } return Astro . redirect ( returnUrl ); ---
Sign Out import { signOut } from '@/lib/supabase' ; const handleSignOut = async () => { setLoading ( true ); await signOut (); setUser ( null ); setLoading ( false ); };
Implementation :export async function signOut () { const { error } = await supabase . auth . signOut (); return { error }; }
Session Management Listen to Auth State Changes useEffect (() => { // Get initial session getCurrentUser (). then ( currentUser => { setUser ( currentUser ); setLoading ( false ); }); // Subscribe to auth changes const { data : { subscription } } = supabase . auth . onAuthStateChange ( ( _event , session ) => { setUser ( session ?. user ?? null ); if ( session ?. user && onAuthSuccess ) { onAuthSuccess (); // Optional callback } } ); return () => subscription . unsubscribe (); }, []);
Events :
SIGNED_IN - User logged inSIGNED_OUT - User logged outTOKEN_REFRESHED - Session token refreshedUSER_UPDATED - User metadata changed
Server-Side Auth Check --- // pages/turismo/perfil.astro import { getCurrentUser } from '@/lib/supabase' ; const user = await getCurrentUser (); if ( ! user ) { return Astro . redirect ( '/turismo?login=1' ); } const { data : profile } = await getUserProfile ( user . id ); --- < h1 > Bienvenido, { profile ?. full_name } </ h1 >
Protected Routes Pattern Middleware Approach // src/middleware.ts import { defineMiddleware } from 'astro:middleware' ; import { getCurrentUser } from '@/lib/supabase' ; export const onRequest = defineMiddleware ( async ( context , next ) => { const { pathname } = context . url ; // Protected routes const protectedRoutes = [ '/turismo/perfil' , '/turismo/mis-rutas' ]; if ( protectedRoutes . some ( route => pathname . startsWith ( route ))) { const user = await getCurrentUser (); if ( ! user ) { return context . redirect ( '/turismo?login=1' ); } } return next (); });
Component-Level Check // components/turismo/MiRutaView.tsx import { useEffect , useState } from 'react' ; import { getCurrentUser } from '@/lib/supabase' ; export default function MiRutaView () { const [ user , setUser ] = useState ( null ); const [ loading , setLoading ] = useState ( true ); useEffect (() => { getCurrentUser (). then ( currentUser => { if ( ! currentUser ) { window . location . href = '/turismo?login=1' ; } setUser ( currentUser ); setLoading ( false ); }); }, []); if ( loading ) return < div > Cargando ...</ div > ; if ( ! user ) return null ; return < div > Mi ruta privada </ div > ; }
Access user information from OAuth providers:
const user = await getCurrentUser (); // User object structure user . id // UUID from Supabase user . email // Email address user . user_metadata . name // Full name from OAuth user . user_metadata . avatar_url // Profile picture URL user . app_metadata . provider // 'google', 'facebook', 'email'
Display User Info :{ user && ( < div className = "flex items-center gap-3" > < div className = "w-10 h-10 rounded-full bg-orange-500 flex items-center justify-center text-white font-bold" > { ( user . user_metadata ?. name || user . email )?.[ 0 ]?. toUpperCase () } </ div > < div > < p className = "text-sm font-semibold text-gray-900" > { user . user_metadata ?. name || user . email ?. split ( '@' )[ 0 ] } </ p > < p className = "text-xs text-gray-500" > { user . email } </ p > </ div > </ div > )}
Props interface AuthButtonsProps { onAuthSuccess ?: () => void ; // Callback after successful login }
States
Unauthenticated : Shows login/signup formLoading : Shows spinner during async operationsAuthenticated : Shows user profile with logout button
< input type = "email" value = { email } onChange = { ( e ) => setEmail ( e . target . value ) } placeholder = "tu@email.com" required className = "w-full px-4 py-3 rounded-xl border-2 border-gray-300 focus:border-orange-500 focus:outline-none transition" /> < input type = "password" value = { password } onChange = { ( e ) => setPassword ( e . target . value ) } placeholder = "••••••••" required minLength = { 6 } className = "w-full px-4 py-3 rounded-xl border-2 border-gray-300 focus:border-orange-500 focus:outline-none transition" />
Error Handling { error && ( < div className = "bg-red-50 border-2 border-red-200 rounded-xl p-3" > < p className = "text-sm text-red-600" > { error } </ p > </ div > )}
< button type = "submit" disabled = { loading } className = "w-full px-6 py-3 bg-gradient-to-r from-orange-600 to-orange-500 text-white rounded-xl font-bold hover:shadow-lg transition transform hover:-translate-y-0.5 disabled:opacity-50 disabled:cursor-not-allowed" > { loading ? ( < span className = "flex items-center justify-center gap-2" > < svg className = "animate-spin h-5 w-5" viewBox = "0 0 24 24" > { /* Spinner SVG */ } </ svg > Procesando... </ span > ) : isSignUp ? ( 'Crear cuenta' ) : ( 'Iniciar sesión' ) } </ button >
Security Considerations Environment Variables Never commit .env files to version control. Use PUBLIC_ prefix only for client-safe keys.
# .env PUBLIC_SUPABASE_URL = https://xxx.supabase.co PUBLIC_SUPABASE_ANON_KEY = eyJxxx... # Safe for client # SUPABASE_SERVICE_ROLE_KEY=xxx # Server-only, never PUBLIC_
Row-Level Security All database operations automatically respect RLS policies:
-- Users can only access their own data CREATE POLICY "Users can view own preferences" ON user_preferences FOR SELECT USING ( auth . uid () = user_id);
CSRF Protection Supabase handles CSRF tokens automatically in session cookies.
Password Requirements
Minimum 6 characters (enforced by input minLength={6})
Can be customized in Supabase dashboard under Authentication > Policies
Example: Complete Auth Flow --- // pages/turismo.astro import AuthButtons from '@/components/AuthButtons.tsx' ; import TurismoOnboarding from '@/components/turismo/TurismoOnboarding.tsx' ; import { getCurrentUser , isOnboardingCompleted } from '@/lib/supabase' ; const user = await getCurrentUser (); let showOnboarding = false ; if ( user ) { showOnboarding = ! ( await isOnboardingCompleted ( user . id )); } --- < ! DOCTYPE html > < html > < body > { ! user ? ( < section class = "max-w-md mx-auto p-6 mt-20" > < h1 class = "text-3xl font-bold mb-6" > Descubre Zongolica </ h1 > < p class = "text-gray-600 mb-8" > Inicia sesión para crear tu ruta personalizada </ p > < AuthButtons client : load onAuthSuccess = { () => window . location . reload () } /> </ section > ) : showOnboarding ? ( < TurismoOnboarding client : load /> ) : ( < section > < h1 > Bienvenido, { user . user_metadata . name } ! </ h1 > { /* Show personalized content */ } </ section > ) } </ body > </ html >
Next Steps
Supabase Integration Database schema and helper functions
Tourism Components TurismoOnboarding and route generation
Architecture How authentication fits in the system
Components Overview Building React + Astro components
