From 048e296fe6ca932109edca2a19ba11fc96772b13 Mon Sep 17 00:00:00 2001
From: McPizza0 <gh@l1.io>
Date: Tue, 18 Feb 2025 22:11:10 +0100
Subject: [PATCH 01/17] update cloud db with SH config and functions WIP

---
 apps/web/app/superadmin/layout.tsx     |  41 ++++
 apps/web/app/superadmin/page.tsx       |   0
 apps/web/utils/instance/api.ts         | 195 +++++++++++++++++
 apps/web/utils/instance/constants.ts   |   4 +
 apps/web/utils/instance/functions.ts   | 278 +++++++++++++++++++++++++
 apps/web/utils/instance/helpers.ts     |  79 +++++++
 packages/database/auth/auth-options.ts |   3 +-
 packages/database/emails/config.ts     |  33 ++-
 packages/database/index.ts             |   4 +-
 packages/database/schema.ts            |  16 ++
 10 files changed, 645 insertions(+), 8 deletions(-)
 create mode 100644 apps/web/app/superadmin/layout.tsx
 create mode 100644 apps/web/app/superadmin/page.tsx
 create mode 100644 apps/web/utils/instance/api.ts
 create mode 100644 apps/web/utils/instance/constants.ts
 create mode 100644 apps/web/utils/instance/functions.ts
 create mode 100644 apps/web/utils/instance/helpers.ts

diff --git a/apps/web/app/superadmin/layout.tsx b/apps/web/app/superadmin/layout.tsx
new file mode 100644
index 000000000..ba0e7db11
--- /dev/null
+++ b/apps/web/app/superadmin/layout.tsx
@@ -0,0 +1,41 @@
+import DynamicSharedLayout from "@/app/dashboard/_components/DynamicSharedLayout";
+import { getCurrentUser } from "@cap/database/auth/session";
+import { redirect } from "next/navigation";
+import { DashboardTemplate } from "@/components/templates/DashboardTemplate";
+import { db } from "@cap/database";
+import {
+  spaceMembers,
+  spaces,
+  spaceInvites,
+  users,
+} from "@cap/database/schema";
+import { eq, inArray, or, and, count, sql } from "drizzle-orm";
+
+export default async function SuperAdminLayout({
+  children,
+}: {
+  children: React.ReactNode;
+}) {
+  const user = await getCurrentUser();
+
+  if (!user || !user.id) {
+    redirect("/login");
+  }
+
+  if (!user.name || user.name.length <= 1) {
+    redirect("/onboarding");
+  }
+
+  return (
+    <DynamicSharedLayout
+      spaceData={spaceSelect}
+      activeSpace={findActiveSpace || null}
+      user={user}
+      isSubscribed={isSubscribed}
+    >
+      <div className="full-layout">
+        <DashboardTemplate>{children}</DashboardTemplate>
+      </div>
+    </DynamicSharedLayout>
+  );
+}
diff --git a/apps/web/app/superadmin/page.tsx b/apps/web/app/superadmin/page.tsx
new file mode 100644
index 000000000..e69de29bb
diff --git a/apps/web/utils/instance/api.ts b/apps/web/utils/instance/api.ts
new file mode 100644
index 000000000..ff1a0e959
--- /dev/null
+++ b/apps/web/utils/instance/api.ts
@@ -0,0 +1,195 @@
+import { serverConfigTable } from "@cap/database/schema";
+import { INSTANCE_SITE_URL, LICENSE_SERVER_URL } from "./constants";
+
+type LicenseApiTypes = {
+  validate: {
+    params: {
+      usedSeats: number;
+    };
+    response: {
+      refresh: string;
+      isCapCloudLicense: boolean;
+      isValid: boolean;
+    };
+    codes: {
+      200: { refresh: string; isCapCloudLicense: boolean; isValid: boolean };
+      402: { error: "License expired" };
+      403: { error: "Too many seats" };
+      404: { error: "License not found" };
+      409: { error: "License already activated on another site" };
+    };
+  };
+  addUserCheck: {
+    params: {
+      usedSeats: number;
+    };
+    response: void;
+    codes: {
+      200: { success: true };
+      403: { error: "Too many seats" };
+      404: { error: "License not found" };
+    };
+  };
+  addUserPost: {
+    params: {
+      usedSeats: number;
+    };
+    response: void;
+    codes: {
+      200: { success: true };
+      403: { error: "Too many seats" };
+      404: { error: "License not found" };
+    };
+  };
+  getUser: {
+    params: {
+      email: string;
+    };
+    response: {
+      exists: boolean;
+    };
+    codes: {
+      200: { exists: boolean };
+      404: { error: "License not found" };
+    };
+  };
+  workspace: {
+    params: {
+      workspaceId: string;
+      name: string;
+    };
+    response: void;
+    codes: {
+      200: { success: true };
+      404: { error: "License not found" };
+    };
+  };
+  workspaceAddUser: {
+    params: {
+      workspaceId: string;
+      email: string;
+    };
+    response: void;
+    codes: {
+      200: { success: true };
+      403: { error: "Too many seats" };
+      404: { error: "License or workspace not found" };
+    };
+  };
+  workspaceCheckout: {
+    params: {
+      workspaceId: string;
+      successUrl: string;
+      cancelUrl: string;
+    };
+    response: {
+      url: string;
+    };
+    codes: {
+      200: { url: string };
+      404: { error: "License or workspace not found" };
+    };
+  };
+  workspacePortal: {
+    params: {
+      workspaceId: string;
+    };
+    response: {
+      url: string;
+    };
+    codes: {
+      200: { url: string };
+      404: { error: "License or workspace not found" };
+    };
+  };
+};
+
+export function licenseApi(config: {
+  serverConfig: typeof serverConfigTable.$inferSelect;
+}) {
+  if (!config.serverConfig.licenseKey || !config.serverConfig.licenseValid) {
+    throw new Error("Server does not have a valid license");
+  }
+
+  const makeRequest = async <T>(
+    endpoint: string,
+    method: string,
+    body: object
+  ): Promise<T> => {
+    const response = await fetch(`${LICENSE_SERVER_URL}/api/${endpoint}`, {
+      method,
+      headers: {
+        licenseKey: config.serverConfig.licenseKey!,
+        siteUrl: INSTANCE_SITE_URL,
+        "Content-Type": "application/json",
+      },
+      body: JSON.stringify(body),
+    });
+
+    if (!response.ok) {
+      throw new Error(`License API error: ${response.status}`);
+    }
+
+    return response.json();
+  };
+
+  return {
+    validate: (params: LicenseApiTypes["validate"]["params"]) =>
+      makeRequest<LicenseApiTypes["validate"]["response"]>(
+        "instances/validate",
+        "POST",
+        params
+      ),
+
+    addUserCheck: (params: LicenseApiTypes["addUserCheck"]["params"]) =>
+      makeRequest<LicenseApiTypes["addUserCheck"]["response"]>(
+        "instances/add-user/check",
+        "POST",
+        params
+      ),
+
+    addUserPost: (params: LicenseApiTypes["addUserPost"]["params"]) =>
+      makeRequest<LicenseApiTypes["addUserPost"]["response"]>(
+        "instances/add-user/post",
+        "POST",
+        params
+      ),
+
+    getUser: (params: LicenseApiTypes["getUser"]["params"]) =>
+      makeRequest<LicenseApiTypes["getUser"]["response"]>(
+        "instances/user",
+        "GET",
+        params
+      ),
+
+    workspace: (params: LicenseApiTypes["workspace"]["params"]) =>
+      makeRequest<LicenseApiTypes["workspace"]["response"]>(
+        "instances/workspace",
+        "POST",
+        params
+      ),
+
+    workspaceAddUser: (params: LicenseApiTypes["workspaceAddUser"]["params"]) =>
+      makeRequest<LicenseApiTypes["workspaceAddUser"]["response"]>(
+        "instances/workspace/add-user",
+        "POST",
+        params
+      ),
+
+    workspaceCheckout: (
+      params: LicenseApiTypes["workspaceCheckout"]["params"]
+    ) =>
+      makeRequest<LicenseApiTypes["workspaceCheckout"]["response"]>(
+        "instances/workspace/checkout",
+        "POST",
+        params
+      ),
+
+    workspacePortal: (params: LicenseApiTypes["workspacePortal"]["params"]) =>
+      makeRequest<LicenseApiTypes["workspacePortal"]["response"]>(
+        "instances/workspace/portal",
+        "POST",
+        params
+      ),
+  };
+}
diff --git a/apps/web/utils/instance/constants.ts b/apps/web/utils/instance/constants.ts
new file mode 100644
index 000000000..63524da34
--- /dev/null
+++ b/apps/web/utils/instance/constants.ts
@@ -0,0 +1,4 @@
+import { clientEnv } from "@cap/env";
+
+export const LICENSE_SERVER_URL = "https://l.cap.so";
+export const INSTANCE_SITE_URL = clientEnv.NEXT_PUBLIC_WEB_URL;
diff --git a/apps/web/utils/instance/functions.ts b/apps/web/utils/instance/functions.ts
new file mode 100644
index 000000000..30c7c7394
--- /dev/null
+++ b/apps/web/utils/instance/functions.ts
@@ -0,0 +1,278 @@
+import { db } from "@cap/database";
+import { getCurrentUser } from "@cap/database/auth/session";
+import { serverConfigTable, spaces, users } from "@cap/database/schema";
+import { eq } from "drizzle-orm";
+import { INSTANCE_SITE_URL, LICENSE_SERVER_URL } from "./constants";
+import {
+  getServerUserCount,
+  getUserWorkspaceMembershipWorkspaceIds,
+} from "./helpers";
+
+export const getServerConfig = async (): Promise<
+  typeof serverConfigTable.$inferSelect
+> => {
+  const serverConfig = await db.query.serverConfigTable.findFirst({
+    where: eq(serverConfigTable.id, 1),
+  });
+
+  // create server config object if it doesn't exist
+  if (!serverConfig) {
+    const newServerConfig = {
+      id: 1,
+      licenseKey: null,
+      licenseValid: false,
+      isCapCloud: false,
+      licenseValidityCache: null,
+      superAdminIds: [],
+      signupsEnabled: false,
+      emailSendFromName: null,
+      emailSendFromEmail: null,
+    };
+    await db.insert(serverConfigTable).values(newServerConfig);
+
+    return newServerConfig;
+  }
+
+  if (
+    serverConfig.licenseKey &&
+    (serverConfig.licenseValidityCache === null ||
+      serverConfig.licenseValidityCache.getTime() < Date.now())
+  ) {
+    const validationResult = await validateServerLicense({
+      serverConfig,
+    });
+    return validationResult;
+  }
+
+  return serverConfig;
+};
+
+// check if the server is a Cap Cloud server
+export const isCapCloud = async (): Promise<boolean> => {
+  const serverConfig = await getServerConfig();
+  return serverConfig.isCapCloud;
+};
+
+export const addServerSuperAdmin = async ({ userId }: { userId: string }) => {
+  const currentUser = await getCurrentUser();
+  if (!currentUser) {
+    throw new Error("Not authorized");
+  }
+
+  const serverConfig = await getServerConfig();
+
+  const existingSuperAdminIds = serverConfig.superAdminIds;
+
+  if (
+    existingSuperAdminIds.length > 0 &&
+    !existingSuperAdminIds.includes(currentUser.id)
+  ) {
+    throw new Error("Not authorized");
+  }
+
+  // update server config superAdminIds array
+  await db
+    .update(serverConfigTable)
+    .set({
+      superAdminIds: [...existingSuperAdminIds, userId],
+    })
+    .where(eq(serverConfigTable.id, 1));
+  return;
+};
+
+export async function validateServerLicense({
+  serverConfig,
+}: {
+  serverConfig: typeof serverConfigTable.$inferSelect;
+}): Promise<typeof serverConfigTable.$inferSelect> {
+  if (!serverConfig?.licenseKey) {
+    return serverConfig;
+  }
+
+  const licenseServerResponse = await fetch(
+    `${LICENSE_SERVER_URL}/api/instances/validate`,
+    {
+      method: "POST",
+      headers: {
+        licenseKey: serverConfig.licenseKey,
+        siteUrl: INSTANCE_SITE_URL,
+        "Content-Type": "application/json",
+      },
+      body: JSON.stringify({
+        usedSeats: await getServerUserCount(),
+      }),
+    }
+  );
+
+  const licenseServerResponseCode = await licenseServerResponse.status;
+  const licenseServerResponseJson = await licenseServerResponse.json();
+
+  let newPartialServerConfig: Partial<
+    typeof serverConfigTable.$inferInsert
+  > | null = null;
+
+  // handle 404, 403, 402, 409 : License not found, Too many seats, expired, already activated on another siteURL
+  if (
+    licenseServerResponseCode === 404 ||
+    licenseServerResponseCode === 403 ||
+    licenseServerResponseCode === 402 ||
+    licenseServerResponseCode === 409
+  ) {
+    newPartialServerConfig = {
+      licenseValid: false,
+      licenseValidityCache: null,
+      isCapCloud: false,
+    };
+  }
+  // handle 200: license is valid
+  if (licenseServerResponseCode === 200) {
+    newPartialServerConfig = {
+      licenseValid: true,
+      licenseValidityCache: licenseServerResponseJson.refresh,
+      isCapCloud: licenseServerResponseJson.isCapCloudLicense,
+    };
+  }
+  newPartialServerConfig &&
+    (await db
+      .update(serverConfigTable)
+      .set(newPartialServerConfig)
+      .where(eq(serverConfigTable.id, 1)));
+
+  return {
+    ...serverConfig,
+    ...newPartialServerConfig,
+  };
+}
+
+// check if a single user is a member of a pro workspace
+export async function isUserPro({ userId }: { userId: string }) {
+  const serverConfig = await getServerConfig();
+  if (!serverConfig.licenseKey) {
+    return false;
+  }
+  const isCapCloud = serverConfig.isCapCloud;
+
+  // if self hosting, all users on the server have the same pro status as the server itself
+  if (!isCapCloud) {
+    return serverConfig.licenseValid;
+  }
+
+  // check user pro cache status
+  const userResponse = await db.query.users.findFirst({
+    where: eq(users.id, userId),
+  });
+
+  if (!userResponse) {
+    return false;
+  }
+
+  // if user is pro and pro expires at is in the future, return true
+  if (
+    userResponse.pro &&
+    userResponse.proExpiresAt &&
+    userResponse.proExpiresAt > new Date()
+  ) {
+    return true;
+  }
+
+  // refresh user pro cache
+  const userWorkspaceMembershipWorkspaceIds =
+    await getUserWorkspaceMembershipWorkspaceIds();
+
+  const licenseServerResponse = (await fetch(
+    `${LICENSE_SERVER_URL}/api/instances/cloudPro/user`,
+    {
+      method: "POST",
+      headers: {
+        licenseKey: serverConfig.licenseKey,
+        siteUrl: INSTANCE_SITE_URL,
+        "Content-Type": "application/json",
+      },
+      body: JSON.stringify({
+        workspaceIds: userWorkspaceMembershipWorkspaceIds,
+      }),
+    }
+  ).then((res) => res.json())) as {
+    isPro: boolean;
+    viaWorkspaceId: string | null;
+    cacheRefresh: number | null;
+  };
+
+  await db
+    .update(users)
+    .set({
+      pro: licenseServerResponse.isPro,
+      proExpiresAt: licenseServerResponse.cacheRefresh
+        ? new Date(licenseServerResponse.cacheRefresh)
+        : null,
+      proWorkspaceId: licenseServerResponse.viaWorkspaceId,
+    })
+    .where(eq(users.id, userId));
+
+  return licenseServerResponse.isPro;
+}
+
+// check if a single workspace is a pro workspace
+export async function isWorkspacePro({ workspaceId }: { workspaceId: string }) {
+  const serverConfig = await getServerConfig();
+  if (!serverConfig.licenseKey) {
+    return false;
+  }
+  const isCapCloud = serverConfig.isCapCloud;
+
+  // if self hosting, all workspaces on the server have the same pro status as the server itself
+  if (!isCapCloud) {
+    return serverConfig.licenseValid;
+  }
+
+  // check workspace pro cache status
+  const workspaceResponse = await db.query.spaces.findFirst({
+    where: eq(spaces.id, workspaceId),
+  });
+
+  if (!workspaceResponse) {
+    return false;
+  }
+
+  // if workspace is pro and pro expires at is in the future, return true
+  if (
+    workspaceResponse.pro &&
+    workspaceResponse.proExpiresAt &&
+    workspaceResponse.proExpiresAt > new Date()
+  ) {
+    return true;
+  }
+
+  // refresh workspace pro cache
+  const licenseServerResponse = (await fetch(
+    `${LICENSE_SERVER_URL}/api/instances/cloudPro/workspace`,
+    {
+      method: "POST",
+      headers: {
+        licenseKey: serverConfig.licenseKey,
+        siteUrl: INSTANCE_SITE_URL,
+        "Content-Type": "application/json",
+      },
+      body: JSON.stringify({
+        workspaceId: workspaceId,
+      }),
+    }
+  ).then((res) => res.json())) as {
+    isPro: boolean;
+    workspaceId: string;
+    cacheRefresh: number | null;
+  };
+
+  await db
+    .update(spaces)
+    .set({
+      pro: licenseServerResponse.isPro,
+      proExpiresAt: licenseServerResponse.cacheRefresh
+        ? new Date(licenseServerResponse.cacheRefresh)
+        : null,
+      proWorkspaceId: licenseServerResponse.workspaceId,
+    })
+    .where(eq(spaces.id, workspaceId));
+
+  return licenseServerResponse.isPro;
+}
diff --git a/apps/web/utils/instance/helpers.ts b/apps/web/utils/instance/helpers.ts
new file mode 100644
index 000000000..8d68ec830
--- /dev/null
+++ b/apps/web/utils/instance/helpers.ts
@@ -0,0 +1,79 @@
+import { db } from "@cap/database";
+import { getCurrentUser } from "@cap/database/auth/session";
+import { serverConfigTable, spaceMembers, users } from "@cap/database/schema";
+import { count, eq } from "drizzle-orm";
+import { getServerConfig } from "./functions";
+import { INSTANCE_SITE_URL, LICENSE_SERVER_URL } from "./constants";
+
+// get the total number of users on the server
+export const getServerUserCount = async () => {
+  const userCount = await db.select({ count: count() }).from(users);
+  return userCount[0]?.count || 0;
+};
+
+// get all workspace IDs the user is a member of
+export const getUserWorkspaceMembershipWorkspaceIds = async () => {
+  const currentUser = await getCurrentUser();
+  if (!currentUser) {
+    throw new Error("Not authorized");
+  }
+
+  const userWorkspaceMemberships = await db.query.spaceMembers.findMany({
+    where: eq(spaceMembers.userId, currentUser.id),
+    columns: {
+      id: true,
+      spaceId: true,
+    },
+    with: {
+      space: {
+        columns: {
+          id: true,
+        },
+      },
+    },
+  });
+
+  const workspaceMembershipsWorkspaceIds = userWorkspaceMemberships.map(
+    (membership) => membership.space.id
+  );
+
+  return workspaceMembershipsWorkspaceIds;
+};
+
+export async function licenseApi({
+  method,
+  endpoint,
+  body,
+  serverConfig,
+}: {
+  method: "POST" | "GET";
+  endpoint:
+    | "instances/validate"
+    | "instances/add-user"
+    | "instances/user"
+    | "instances/workspace"
+    | "instances/workspace/add-user"
+    | "instances/workspace/checkout"
+    | "instances/workspace/portal";
+  body: object;
+  serverConfig: typeof serverConfigTable.$inferSelect;
+}) {
+  if (!serverConfig.licenseKey || !serverConfig.licenseValid) {
+    throw new Error("Server does not have a valid license");
+  }
+
+  const licenseServerResponse = await fetch(
+    `${LICENSE_SERVER_URL}/api/${endpoint}`,
+    {
+      method,
+      headers: {
+        licenseKey: serverConfig.licenseKey,
+        siteUrl: INSTANCE_SITE_URL,
+        "Content-Type": "application/json",
+      },
+      body: JSON.stringify(body),
+    }
+  );
+
+  return licenseServerResponse;
+}
diff --git a/packages/database/auth/auth-options.ts b/packages/database/auth/auth-options.ts
index ed9134ef0..a80b52016 100644
--- a/packages/database/auth/auth-options.ts
+++ b/packages/database/auth/auth-options.ts
@@ -10,6 +10,7 @@ import { LoginLink } from "../emails/login-link";
 import { nanoId } from "../helpers";
 import WorkOSProvider from "next-auth/providers/workos";
 import { NODE_ENV, serverEnv } from "@cap/env";
+import { PlanetScaleDatabase } from "drizzle-orm/planetscale-serverless";
 
 export const config = {
   maxDuration: 120,
@@ -18,7 +19,7 @@ export const config = {
 const secret = serverEnv.NEXTAUTH_SECRET;
 
 export const authOptions: NextAuthOptions = {
-  adapter: DrizzleAdapter(db),
+  adapter: DrizzleAdapter(db as PlanetScaleDatabase),
   debug: true,
   session: {
     strategy: "jwt",
diff --git a/packages/database/emails/config.ts b/packages/database/emails/config.ts
index 96ab4090a..bef71c7da 100644
--- a/packages/database/emails/config.ts
+++ b/packages/database/emails/config.ts
@@ -1,6 +1,9 @@
 import { clientEnv, serverEnv } from "@cap/env";
+import { eq } from "drizzle-orm";
+import { db } from "index";
 import { JSXElementConstructor, ReactElement } from "react";
 import { Resend } from "resend";
+import { serverConfig } from "schema";
 
 export const resend = serverEnv.RESEND_API_KEY
   ? new Resend(serverEnv.RESEND_API_KEY)
@@ -24,12 +27,32 @@ export const sendEmail = async ({
     return Promise.resolve();
   }
 
+  const sendFrom = async () => {
+    if (marketing) {
+      return "Richie from Cap.so <richie@cap.so>";
+    }
+
+    if (clientEnv.NEXT_PUBLIC_IS_CAP) {
+      return "Cap Auth <no-reply@auth.cap.so>";
+    }
+
+    const serverConfigResponse = await db.query.serverConfig.findFirst({
+      where: eq(serverConfig.id, 1),
+    });
+
+    if (
+      serverConfigResponse &&
+      serverConfigResponse.emailSendFromName &&
+      serverConfigResponse.emailSendFromEmail
+    ) {
+      return `${serverConfigResponse.emailSendFromName} <${serverConfigResponse.emailSendFromEmail}>`;
+    }
+
+    return `auth@${clientEnv.NEXT_PUBLIC_WEB_URL}`;
+  };
+
   return resend.emails.send({
-    from: marketing
-      ? "Richie from Cap.so <richie@cap.so>"
-      : clientEnv.NEXT_PUBLIC_IS_CAP
-      ? "Cap Auth <no-reply@auth.cap.so>"
-      : `auth@${clientEnv.NEXT_PUBLIC_WEB_URL}`,
+    from: await sendFrom(),
     to: test ? "delivered@resend.dev" : email,
     subject,
     react,
diff --git a/packages/database/index.ts b/packages/database/index.ts
index f633f34f9..63ef6130e 100644
--- a/packages/database/index.ts
+++ b/packages/database/index.ts
@@ -1,7 +1,7 @@
 import { drizzle } from "drizzle-orm/planetscale-serverless";
 import { Client, Config } from "@planetscale/database";
 import { NODE_ENV, serverEnv } from "@cap/env";
-
+import * as schema from "./schema";
 const URL = serverEnv.DATABASE_URL;
 
 let fetchHandler: Promise<Config["fetch"]> | undefined = undefined;
@@ -19,4 +19,4 @@ export const connection = new Client({
   },
 });
 
-export const db = drizzle(connection);
+export const db = drizzle(connection, { schema });
diff --git a/packages/database/schema.ts b/packages/database/schema.ts
index 5bff02c02..e0643228d 100644
--- a/packages/database/schema.ts
+++ b/packages/database/schema.ts
@@ -11,6 +11,7 @@ import {
   uniqueIndex,
   varchar,
   float,
+  serial,
 } from "drizzle-orm/mysql-core";
 import { relations } from "drizzle-orm/relations";
 import { nanoIdLength } from "./helpers";
@@ -40,6 +41,18 @@ const encryptedTextNullable = customType<{ data: string; notNull: false }>({
   },
 });
 
+export const serverConfigTable = mysqlTable("server_config", {
+  id: serial("id").notNull().primaryKey().unique(),
+  licenseKey: varchar("licenseKey", { length: 255 }),
+  licenseValid: boolean("licenseValid").notNull().default(false),
+  isCapCloud: boolean("isCapCloud").notNull().default(false),
+  licenseValidityCache: timestamp("licenseValidityCache"),
+  superAdminIds: json("superAdminIds").$type<string[]>().notNull().default([]),
+  signupsEnabled: boolean("signupsEnabled").notNull().default(false),
+  emailSendFromName: varchar("emailSendFromName", { length: 255 }),
+  emailSendFromEmail: varchar("emailSendFromEmail", { length: 255 }),
+});
+
 export const users = mysqlTable(
   "users",
   {
@@ -68,6 +81,9 @@ export const users = mysqlTable(
     onboarding_completed_at: timestamp("onboarding_completed_at"),
     customBucket: nanoIdNullable("customBucket"),
     inviteQuota: int("inviteQuota").notNull().default(1),
+    pro: boolean("pro").notNull().default(false),
+    proExpiresAt: timestamp("proExpiresAt"),
+    proWorkspaceId: nanoIdNullable("proWorkspaceId"),
   },
   (table) => ({
     emailIndex: uniqueIndex("email_idx").on(table.email),

From 65375014b71c64c0f37d5728d24f767dd91862b4 Mon Sep 17 00:00:00 2001
From: McPizza0 <gh@l1.io>
Date: Wed, 19 Feb 2025 21:23:27 +0100
Subject: [PATCH 02/17] switch billing to licenseServer

---
 apps/web/app/api/desktop/plan/route.ts        |  45 +---
 apps/web/app/api/desktop/subscribe/route.ts   |  80 ++++---
 .../web/app/api/desktop/video/create/route.ts |   3 +-
 apps/web/app/api/invite/accept/route.ts       |  27 +--
 apps/web/app/api/invite/decline/route.ts      |  17 ++
 .../app/api/settings/billing/manage/route.ts  |  40 ++--
 .../api/settings/billing/subscribe/route.ts   |  76 +++----
 .../app/api/settings/billing/usage/route.ts   |  10 +-
 .../settings/workspace/invite/remove/route.ts |   6 +
 .../settings/workspace/invite/send/route.ts   |   2 +
 .../app/api/video/transcribe/status/route.ts  |   3 +-
 apps/web/app/dashboard/layout.tsx             |   9 +-
 apps/web/app/superadmin/layout.tsx            |  13 +-
 apps/web/utils/instance/api.ts                | 195 ------------------
 apps/web/utils/instance/functions.ts          | 151 +++++++++++++-
 apps/web/utils/instance/helpers.ts            |  62 ++----
 packages/database/auth/drizzle-adapter.ts     |  30 ++-
 packages/utils/src/constants/plans.ts         |  17 +-
 18 files changed, 326 insertions(+), 460 deletions(-)

diff --git a/apps/web/app/api/desktop/plan/route.ts b/apps/web/app/api/desktop/plan/route.ts
index 942eb14c7..96f3ab130 100644
--- a/apps/web/app/api/desktop/plan/route.ts
+++ b/apps/web/app/api/desktop/plan/route.ts
@@ -1,13 +1,9 @@
 import { type NextRequest } from "next/server";
-import { db } from "@cap/database";
-import { users } from "@cap/database/schema";
 import { getCurrentUser } from "@cap/database/auth/session";
 import { cookies } from "next/headers";
-import { isUserOnProPlan } from "@cap/utils";
-import { stripe } from "@cap/utils";
-import { eq } from "drizzle-orm";
 import { clientEnv } from "@cap/env";
 import crypto from "crypto";
+import { getIsUserPro } from "@/utils/instance/functions";
 
 const allowedOrigins = [
   clientEnv.NEXT_PUBLIC_WEB_URL,
@@ -59,37 +55,7 @@ export async function GET(req: NextRequest) {
     return Response.json({ error: true }, { status: 401 });
   }
 
-  let isSubscribed = isUserOnProPlan({
-    subscriptionStatus: user.stripeSubscriptionStatus as string,
-  });
-
-  // Check for third-party Stripe subscription
-  if (user.thirdPartyStripeSubscriptionId) {
-    isSubscribed = true;
-  }
-
-  if (!isSubscribed && !user.stripeSubscriptionId && user.stripeCustomerId) {
-    try {
-      const subscriptions = await stripe.subscriptions.list({
-        customer: user.stripeCustomerId,
-      });
-      const activeSubscription = subscriptions.data.find(
-        (sub) => sub.status === "active"
-      );
-      if (activeSubscription) {
-        isSubscribed = true;
-        await db
-          .update(users)
-          .set({
-            stripeSubscriptionStatus: activeSubscription.status,
-            stripeSubscriptionId: activeSubscription.id,
-          })
-          .where(eq(users.id, user.id));
-      }
-    } catch (error) {
-      console.error("[GET] Error fetching subscription from Stripe:", error);
-    }
-  }
+  const isPro = await getIsUserPro({ userId: user.id });
 
   let intercomHash = "";
   if (process.env.INTERCOM_SECRET) {
@@ -101,9 +67,10 @@ export async function GET(req: NextRequest) {
 
   return new Response(
     JSON.stringify({
-      upgraded: isSubscribed,
-      stripeSubscriptionStatus: user.stripeSubscriptionStatus,
-      intercomHash: intercomHash
+      upgraded: isPro,
+      stripeSubscriptionStatus: "active",
+      // TODO: Legacy: stripeSubscriptionStatus: user.stripeSubscriptionStatus,
+      intercomHash: intercomHash,
     }),
     {
       status: 200,
diff --git a/apps/web/app/api/desktop/subscribe/route.ts b/apps/web/app/api/desktop/subscribe/route.ts
index d96fe2ac5..1095972d1 100644
--- a/apps/web/app/api/desktop/subscribe/route.ts
+++ b/apps/web/app/api/desktop/subscribe/route.ts
@@ -1,11 +1,15 @@
 import { type NextRequest } from "next/server";
 import { db } from "@cap/database";
-import { users } from "@cap/database/schema";
+import { spaces, users } from "@cap/database/schema";
 import { getCurrentUser } from "@cap/database/auth/session";
 import { cookies } from "next/headers";
-import { isUserOnProPlan, stripe } from "@cap/utils";
-import { eq } from "drizzle-orm";
+import { getProPlanBillingCycle, stripe } from "@cap/utils";
+import { asc, desc, eq } from "drizzle-orm";
 import { clientEnv } from "@cap/env";
+import {
+  generateCloudProStripeCheckoutSession,
+  getIsUserPro,
+} from "@/utils/instance/functions";
 
 const allowedOrigins = [
   clientEnv.NEXT_PUBLIC_WEB_URL,
@@ -56,7 +60,6 @@ export async function POST(request: NextRequest) {
   }
 
   const user = await getCurrentUser();
-  let customerId = user?.stripeCustomerId;
   const { priceId } = await request.json();
   const params = request.nextUrl.searchParams;
   const origin = params.get("origin") || null;
@@ -103,12 +106,23 @@ export async function POST(request: NextRequest) {
     );
   }
 
-  if (
-    isUserOnProPlan({
-      subscriptionStatus: user.stripeSubscriptionStatus as string,
-    })
-  ) {
-    console.log("[POST] Error: User already on Pro plan");
+  // get workspaces owned by the user, and assume that the oldest one is the personal workspace
+  const personalWorkspace = await db.query.spaces.findFirst({
+    where: eq(spaces.ownerId, user.id),
+    orderBy: [asc(spaces.createdAt)],
+    columns: {
+      id: true,
+      pro: true,
+    },
+  });
+
+  if (!personalWorkspace) {
+    console.log("[POST] Error: User has no personal workspace");
+    return Response.json({ error: true }, { status: 400 });
+  }
+
+  if (personalWorkspace.pro) {
+    console.log("[POST] Error: Workspace already on Pro plan");
     return Response.json(
       { error: true, subscription: true },
       {
@@ -126,45 +140,25 @@ export async function POST(request: NextRequest) {
     );
   }
 
-  if (!user.stripeCustomerId) {
-    console.log("[POST] Creating new Stripe customer");
-    const customer = await stripe.customers.create({
-      email: user.email,
-      metadata: {
-        userId: user.id,
-      },
-    });
+  // get the price type based on the priceId
+  const priceType = getProPlanBillingCycle(priceId);
 
-    await db
-      .update(users)
-      .set({
-        stripeCustomerId: customer.id,
-      })
-      .where(eq(users.id, user.id));
+  const checkoutSession = await generateCloudProStripeCheckoutSession({
+    cloudWorkspaceId: personalWorkspace.id,
+    cloudUserId: user.id,
+    email: user.email,
+    type: priceType,
+  });
 
-    customerId = customer.id;
-    console.log("[POST] Created Stripe customer:", customerId);
+  if (!checkoutSession) {
+    console.log("[POST] Error: Failed to create checkout session");
+    return Response.json({ error: true }, { status: 400 });
   }
 
-  console.log("[POST] Creating checkout session");
-  const checkoutSession = await stripe.checkout.sessions.create({
-    customer: customerId as string,
-    line_items: [
-      {
-        price: priceId,
-        quantity: 1,
-      },
-    ],
-    mode: "subscription",
-    success_url: `${clientEnv.NEXT_PUBLIC_WEB_URL}/dashboard/caps?upgrade=true`,
-    cancel_url: `${clientEnv.NEXT_PUBLIC_WEB_URL}/pricing`,
-    allow_promotion_codes: true,
-  });
-
-  if (checkoutSession.url) {
+  if (checkoutSession.checkoutLink) {
     console.log("[POST] Checkout session created successfully");
     return Response.json(
-      { url: checkoutSession.url },
+      { url: checkoutSession.checkoutLink },
       {
         status: 200,
         headers: {
diff --git a/apps/web/app/api/desktop/video/create/route.ts b/apps/web/app/api/desktop/video/create/route.ts
index 3c7ce3f04..3305967b0 100644
--- a/apps/web/app/api/desktop/video/create/route.ts
+++ b/apps/web/app/api/desktop/video/create/route.ts
@@ -8,6 +8,7 @@ import { dub } from "@/utils/dub";
 import { eq } from "drizzle-orm";
 import { getS3Bucket, getS3Config } from "@/utils/s3";
 import { clientEnv, NODE_ENV } from "@cap/env";
+import { getIsUserPro } from "@/utils/instance/functions";
 
 const allowedOrigins = [
   clientEnv.NEXT_PUBLIC_WEB_URL,
@@ -81,7 +82,7 @@ export async function GET(req: NextRequest) {
   }
 
   // Check if user is on free plan and video is over 5 minutes
-  const isUpgraded = user.stripeSubscriptionStatus === "active";
+  const isUpgraded = await getIsUserPro({ userId: user.id });
 
   if (!isUpgraded && duration && duration > 300) {
     return new Response(JSON.stringify({ error: "upgrade_required" }), {
diff --git a/apps/web/app/api/invite/accept/route.ts b/apps/web/app/api/invite/accept/route.ts
index 404f32dce..e15913e6b 100644
--- a/apps/web/app/api/invite/accept/route.ts
+++ b/apps/web/app/api/invite/accept/route.ts
@@ -4,6 +4,7 @@ import { getCurrentUser } from "@cap/database/auth/session";
 import { spaceInvites, spaceMembers, users } from "@cap/database/schema";
 import { eq } from "drizzle-orm";
 import { nanoId } from "@cap/database/helpers";
+import { getIsUserPro } from "@/utils/instance/functions";
 
 export async function POST(request: NextRequest) {
   const user = await getCurrentUser();
@@ -29,21 +30,6 @@ export async function POST(request: NextRequest) {
       return NextResponse.json({ error: "Email mismatch" }, { status: 403 });
     }
 
-    // Get the space owner's subscription ID
-    const [spaceOwner] = await db
-      .select({
-        stripeSubscriptionId: users.stripeSubscriptionId,
-      })
-      .from(users)
-      .where(eq(users.id, invite.invitedByUserId));
-
-    if (!spaceOwner || !spaceOwner.stripeSubscriptionId) {
-      return NextResponse.json(
-        { error: "Space owner not found or has no subscription" },
-        { status: 404 }
-      );
-    }
-
     // Create a new space member
     await db.insert(spaceMembers).values({
       id: nanoId(),
@@ -52,17 +38,12 @@ export async function POST(request: NextRequest) {
       role: invite.role,
     });
 
-    // Update the user's thirdPartyStripeSubscriptionId
-    await db
-      .update(users)
-      .set({
-        thirdPartyStripeSubscriptionId: spaceOwner.stripeSubscriptionId,
-      })
-      .where(eq(users.id, user.id));
-
     // Delete the invite
     await db.delete(spaceInvites).where(eq(spaceInvites.id, inviteId));
 
+    // Refresh user pro status
+    await getIsUserPro({ userId: user.id });
+
     return NextResponse.json({ success: true });
   } catch (error) {
     console.error("Error accepting invite:", error);
diff --git a/apps/web/app/api/invite/decline/route.ts b/apps/web/app/api/invite/decline/route.ts
index b0b995b64..d3b2f0678 100644
--- a/apps/web/app/api/invite/decline/route.ts
+++ b/apps/web/app/api/invite/decline/route.ts
@@ -2,14 +2,31 @@ import { NextRequest, NextResponse } from "next/server";
 import { db } from "@cap/database";
 import { spaceInvites } from "@cap/database/schema";
 import { eq } from "drizzle-orm";
+import { updateCloudWorkspaceUserCount } from "@/utils/instance/functions";
 
 export async function POST(request: NextRequest) {
   const { inviteId } = await request.json();
 
   try {
+    const inviteData = await db.query.spaceInvites.findFirst({
+      where: eq(spaceInvites.id, inviteId),
+      columns: {
+        spaceId: true,
+      },
+    });
+
+    if (!inviteData) {
+      return NextResponse.json({ error: "Invite not found" }, { status: 404 });
+    }
+
     // Delete the invite
     await db.delete(spaceInvites).where(eq(spaceInvites.id, inviteId));
 
+    // Update workspace user count
+    await updateCloudWorkspaceUserCount({
+      workspaceId: inviteData.spaceId,
+    });
+
     return NextResponse.json({ success: true });
   } catch (error) {
     console.error("Error declining invite:", error);
diff --git a/apps/web/app/api/settings/billing/manage/route.ts b/apps/web/app/api/settings/billing/manage/route.ts
index fdee85d6c..dcd5d5cfa 100644
--- a/apps/web/app/api/settings/billing/manage/route.ts
+++ b/apps/web/app/api/settings/billing/manage/route.ts
@@ -1,42 +1,30 @@
-import { stripe } from "@cap/utils";
 import { getCurrentUser } from "@cap/database/auth/session";
 import { NextRequest, NextResponse } from "next/server";
-import { eq } from "drizzle-orm";
-import { db } from "@cap/database";
-import { users } from "@cap/database/schema";
-import { clientEnv } from "@cap/env";
+import { generateCloudProStripePortalLink } from "@/utils/instance/functions";
 
 export async function POST(request: NextRequest) {
   const user = await getCurrentUser();
-  let customerId = user?.stripeCustomerId;
 
   if (!user) {
     console.error("User not found");
-
     return Response.json({ error: true }, { status: 401 });
   }
 
-  if (!user.stripeCustomerId) {
-    const customer = await stripe.customers.create({
-      email: user.email,
-      metadata: {
-        userId: user.id,
-      },
-    });
-
-    await db
-      .update(users)
-      .set({
-        stripeCustomerId: customer.id,
-      })
-      .where(eq(users.id, user.id));
+  const userActiveWorkspaceId = user.activeSpaceId;
 
-    customerId = customer.id;
+  if (!userActiveWorkspaceId) {
+    console.error("User has no active workspace");
+    return Response.json({ error: true }, { status: 400 });
   }
 
-  const { url } = await stripe.billingPortal.sessions.create({
-    customer: customerId as string,
-    return_url: `${clientEnv.NEXT_PUBLIC_WEB_URL}/dashboard/settings/workspace`,
+  const portalLink = await generateCloudProStripePortalLink({
+    cloudWorkspaceId: userActiveWorkspaceId,
   });
-  return NextResponse.json(url);
+
+  if (!portalLink) {
+    console.error("Failed to generate checkout link");
+    return Response.json({ error: true }, { status: 400 });
+  }
+
+  return NextResponse.json(portalLink.portalLink);
 }
diff --git a/apps/web/app/api/settings/billing/subscribe/route.ts b/apps/web/app/api/settings/billing/subscribe/route.ts
index eb48f93e9..a643a834c 100644
--- a/apps/web/app/api/settings/billing/subscribe/route.ts
+++ b/apps/web/app/api/settings/billing/subscribe/route.ts
@@ -1,16 +1,15 @@
-import { isUserOnProPlan, stripe } from "@cap/utils";
+import { getProPlanBillingCycle } from "@cap/utils";
 import { getCurrentUser } from "@cap/database/auth/session";
 import { NextRequest } from "next/server";
-import { eq } from "drizzle-orm";
-import { db } from "@cap/database";
-import { users } from "@cap/database/schema";
-import { clientEnv } from "@cap/env";
+import {
+  generateCloudProStripeCheckoutSession,
+  isWorkspacePro,
+} from "@/utils/instance/functions";
 
 export async function POST(request: NextRequest) {
   console.log("Starting subscription process");
   const user = await getCurrentUser();
-  let customerId = user?.stripeCustomerId;
-  const { priceId, quantity } = await request.json();
+  const { priceId } = await request.json();
 
   console.log("Received request with priceId:", priceId);
   console.log("Current user:", user?.id);
@@ -25,51 +24,40 @@ export async function POST(request: NextRequest) {
     return Response.json({ error: true, auth: false }, { status: 401 });
   }
 
-  if (
-    isUserOnProPlan({
-      subscriptionStatus: user.stripeSubscriptionStatus as string,
-    })
-  ) {
-    console.error("User already has pro plan");
-    return Response.json({ error: true, subscription: true }, { status: 400 });
+  const userActiveWorkspaceId = user.activeSpaceId;
+
+  if (!userActiveWorkspaceId) {
+    console.error("User has no active workspace");
+    return Response.json({ error: true }, { status: 400 });
   }
 
-  try {
-    if (!user.stripeCustomerId) {
-      console.log("Creating new Stripe customer for user:", user.id);
-      const customer = await stripe.customers.create({
-        email: user.email,
-        metadata: {
-          userId: user.id,
-        },
-      });
+  // get the current workspace pro status and return if it is already on pro
+  const workspaceProStatus = await isWorkspacePro({
+    workspaceId: userActiveWorkspaceId,
+  });
+  if (workspaceProStatus) {
+    console.error("Workspace already has pro plan");
+    return Response.json({ error: true, subscription: true }, { status: 400 });
+  }
 
-      console.log("Created Stripe customer:", customer.id);
+  const priceType = getProPlanBillingCycle(priceId);
 
-      await db
-        .update(users)
-        .set({
-          stripeCustomerId: customer.id,
-        })
-        .where(eq(users.id, user.id));
+  try {
+    const checkoutLink = await generateCloudProStripeCheckoutSession({
+      cloudWorkspaceId: userActiveWorkspaceId,
+      cloudUserId: user.id,
+      email: user.email,
+      type: priceType,
+    });
 
-      console.log("Updated user with Stripe customer ID");
-      customerId = customer.id;
+    if (!checkoutLink) {
+      console.error("Failed to create checkout session");
+      return Response.json({ error: true }, { status: 400 });
     }
 
-    console.log("Creating checkout session for customer:", customerId);
-    const checkoutSession = await stripe.checkout.sessions.create({
-      customer: customerId as string,
-      line_items: [{ price: priceId, quantity: quantity }],
-      mode: "subscription",
-      success_url: `${clientEnv.NEXT_PUBLIC_WEB_URL}/dashboard/caps?upgrade=true`,
-      cancel_url: `${clientEnv.NEXT_PUBLIC_WEB_URL}/pricing`,
-      allow_promotion_codes: true,
-    });
-
-    if (checkoutSession.url) {
+    if (checkoutLink.checkoutLink) {
       console.log("Successfully created checkout session");
-      return Response.json({ url: checkoutSession.url }, { status: 200 });
+      return Response.json({ url: checkoutLink.checkoutLink }, { status: 200 });
     }
 
     console.error("Checkout session created but no URL returned");
diff --git a/apps/web/app/api/settings/billing/usage/route.ts b/apps/web/app/api/settings/billing/usage/route.ts
index 2a0bb87e8..e6d885f71 100644
--- a/apps/web/app/api/settings/billing/usage/route.ts
+++ b/apps/web/app/api/settings/billing/usage/route.ts
@@ -1,9 +1,9 @@
-import { isUserOnProPlan } from "@cap/utils";
 import { getCurrentUser } from "@cap/database/auth/session";
 import { NextRequest } from "next/server";
 import { count, eq } from "drizzle-orm";
 import { db } from "@cap/database";
 import { videos } from "@cap/database/schema";
+import { getIsUserPro } from "@/utils/instance/functions";
 
 export async function GET(request: NextRequest) {
   const user = await getCurrentUser();
@@ -24,11 +24,9 @@ export async function GET(request: NextRequest) {
     );
   }
 
-  if (
-    isUserOnProPlan({
-      subscriptionStatus: user.stripeSubscriptionStatus as string,
-    })
-  ) {
+  const isPro = await getIsUserPro({ userId: user.id });
+
+  if (isPro) {
     return Response.json(
       {
         subscription: true,
diff --git a/apps/web/app/api/settings/workspace/invite/remove/route.ts b/apps/web/app/api/settings/workspace/invite/remove/route.ts
index f1cb355e4..136fb025e 100644
--- a/apps/web/app/api/settings/workspace/invite/remove/route.ts
+++ b/apps/web/app/api/settings/workspace/invite/remove/route.ts
@@ -3,6 +3,7 @@ import { getCurrentUser } from "@cap/database/auth/session";
 import { spaces, spaceInvites } from "@cap/database/schema";
 import { db } from "@cap/database";
 import { eq, and } from "drizzle-orm";
+import { updateCloudWorkspaceUserCount } from "@/utils/instance/functions";
 
 export async function POST(request: NextRequest) {
   console.log("POST request received for removing workspace invite");
@@ -45,6 +46,11 @@ export async function POST(request: NextRequest) {
     return Response.json({ error: true }, { status: 404 });
   }
 
+  // Update workspace user count
+  await updateCloudWorkspaceUserCount({
+    workspaceId: spaceId,
+  });
+
   console.log("Workspace invite removed successfully");
   return Response.json({ success: true }, { status: 200 });
 }
diff --git a/apps/web/app/api/settings/workspace/invite/send/route.ts b/apps/web/app/api/settings/workspace/invite/send/route.ts
index ad41a97a4..ce857a9e3 100644
--- a/apps/web/app/api/settings/workspace/invite/send/route.ts
+++ b/apps/web/app/api/settings/workspace/invite/send/route.ts
@@ -7,6 +7,7 @@ import { nanoId } from "@cap/database/helpers";
 import { sendEmail } from "@cap/database/emails/config";
 import { WorkspaceInvite } from "@cap/database/emails/workspace-invite";
 import { clientEnv } from "@cap/env";
+import { updateCloudWorkspaceUserCount } from "@/utils/instance/functions";
 
 export async function POST(request: NextRequest) {
   console.log("POST request received for workspace invite");
@@ -61,6 +62,7 @@ export async function POST(request: NextRequest) {
       }),
     });
   }
+  await updateCloudWorkspaceUserCount({ workspaceId: spaceId });
 
   console.log("Workspace invites created and emails sent successfully");
   return Response.json(true, { status: 200 });
diff --git a/apps/web/app/api/video/transcribe/status/route.ts b/apps/web/app/api/video/transcribe/status/route.ts
index 8cb2877a6..6591941d4 100644
--- a/apps/web/app/api/video/transcribe/status/route.ts
+++ b/apps/web/app/api/video/transcribe/status/route.ts
@@ -1,7 +1,6 @@
-import { isUserOnProPlan } from "@cap/utils";
 import { getCurrentUser } from "@cap/database/auth/session";
 import { NextRequest } from "next/server";
-import { count, eq } from "drizzle-orm";
+import { eq } from "drizzle-orm";
 import { db } from "@cap/database";
 import { videos } from "@cap/database/schema";
 
diff --git a/apps/web/app/dashboard/layout.tsx b/apps/web/app/dashboard/layout.tsx
index ccd898d19..e531cbf8b 100644
--- a/apps/web/app/dashboard/layout.tsx
+++ b/apps/web/app/dashboard/layout.tsx
@@ -10,6 +10,7 @@ import {
   users,
 } from "@cap/database/schema";
 import { eq, inArray, or, and, count, sql } from "drizzle-orm";
+import { getIsUserPro } from "@/utils/instance/functions";
 
 export type Space = {
   space: typeof spaces.$inferSelect;
@@ -128,10 +129,10 @@ export default async function DashboardLayout({
     findActiveSpace = spaceSelect[0];
   }
 
-  const isSubscribed =
-    (user.stripeSubscriptionId &&
-      user.stripeSubscriptionStatus !== "cancelled") ||
-    !!user.thirdPartyStripeSubscriptionId;
+  const isSubscribed = await getIsUserPro({ userId: user.id });
+  // (user.stripeSubscriptionId &&
+  //   user.stripeSubscriptionStatus !== "cancelled") ||
+  // !!user.thirdPartyStripeSubscriptionId;
 
   return (
     <DynamicSharedLayout
diff --git a/apps/web/app/superadmin/layout.tsx b/apps/web/app/superadmin/layout.tsx
index ba0e7db11..873231f33 100644
--- a/apps/web/app/superadmin/layout.tsx
+++ b/apps/web/app/superadmin/layout.tsx
@@ -10,6 +10,7 @@ import {
   users,
 } from "@cap/database/schema";
 import { eq, inArray, or, and, count, sql } from "drizzle-orm";
+import { addServerSuperAdmin, getServerConfig } from "@/utils/instance";
 
 export default async function SuperAdminLayout({
   children,
@@ -22,8 +23,16 @@ export default async function SuperAdminLayout({
     redirect("/login");
   }
 
-  if (!user.name || user.name.length <= 1) {
-    redirect("/onboarding");
+  const serverConfig = await getServerConfig();
+
+  const serverSuperAdminIds = serverConfig?.superAdminIds;
+
+  if (serverSuperAdminIds && !serverSuperAdminIds.includes(user.id)) {
+    redirect("/dashboard");
+  }
+
+  if (!serverSuperAdminIds) {
+    await addServerSuperAdmin({ userId: user.id });
   }
 
   return (
diff --git a/apps/web/utils/instance/api.ts b/apps/web/utils/instance/api.ts
index ff1a0e959..e69de29bb 100644
--- a/apps/web/utils/instance/api.ts
+++ b/apps/web/utils/instance/api.ts
@@ -1,195 +0,0 @@
-import { serverConfigTable } from "@cap/database/schema";
-import { INSTANCE_SITE_URL, LICENSE_SERVER_URL } from "./constants";
-
-type LicenseApiTypes = {
-  validate: {
-    params: {
-      usedSeats: number;
-    };
-    response: {
-      refresh: string;
-      isCapCloudLicense: boolean;
-      isValid: boolean;
-    };
-    codes: {
-      200: { refresh: string; isCapCloudLicense: boolean; isValid: boolean };
-      402: { error: "License expired" };
-      403: { error: "Too many seats" };
-      404: { error: "License not found" };
-      409: { error: "License already activated on another site" };
-    };
-  };
-  addUserCheck: {
-    params: {
-      usedSeats: number;
-    };
-    response: void;
-    codes: {
-      200: { success: true };
-      403: { error: "Too many seats" };
-      404: { error: "License not found" };
-    };
-  };
-  addUserPost: {
-    params: {
-      usedSeats: number;
-    };
-    response: void;
-    codes: {
-      200: { success: true };
-      403: { error: "Too many seats" };
-      404: { error: "License not found" };
-    };
-  };
-  getUser: {
-    params: {
-      email: string;
-    };
-    response: {
-      exists: boolean;
-    };
-    codes: {
-      200: { exists: boolean };
-      404: { error: "License not found" };
-    };
-  };
-  workspace: {
-    params: {
-      workspaceId: string;
-      name: string;
-    };
-    response: void;
-    codes: {
-      200: { success: true };
-      404: { error: "License not found" };
-    };
-  };
-  workspaceAddUser: {
-    params: {
-      workspaceId: string;
-      email: string;
-    };
-    response: void;
-    codes: {
-      200: { success: true };
-      403: { error: "Too many seats" };
-      404: { error: "License or workspace not found" };
-    };
-  };
-  workspaceCheckout: {
-    params: {
-      workspaceId: string;
-      successUrl: string;
-      cancelUrl: string;
-    };
-    response: {
-      url: string;
-    };
-    codes: {
-      200: { url: string };
-      404: { error: "License or workspace not found" };
-    };
-  };
-  workspacePortal: {
-    params: {
-      workspaceId: string;
-    };
-    response: {
-      url: string;
-    };
-    codes: {
-      200: { url: string };
-      404: { error: "License or workspace not found" };
-    };
-  };
-};
-
-export function licenseApi(config: {
-  serverConfig: typeof serverConfigTable.$inferSelect;
-}) {
-  if (!config.serverConfig.licenseKey || !config.serverConfig.licenseValid) {
-    throw new Error("Server does not have a valid license");
-  }
-
-  const makeRequest = async <T>(
-    endpoint: string,
-    method: string,
-    body: object
-  ): Promise<T> => {
-    const response = await fetch(`${LICENSE_SERVER_URL}/api/${endpoint}`, {
-      method,
-      headers: {
-        licenseKey: config.serverConfig.licenseKey!,
-        siteUrl: INSTANCE_SITE_URL,
-        "Content-Type": "application/json",
-      },
-      body: JSON.stringify(body),
-    });
-
-    if (!response.ok) {
-      throw new Error(`License API error: ${response.status}`);
-    }
-
-    return response.json();
-  };
-
-  return {
-    validate: (params: LicenseApiTypes["validate"]["params"]) =>
-      makeRequest<LicenseApiTypes["validate"]["response"]>(
-        "instances/validate",
-        "POST",
-        params
-      ),
-
-    addUserCheck: (params: LicenseApiTypes["addUserCheck"]["params"]) =>
-      makeRequest<LicenseApiTypes["addUserCheck"]["response"]>(
-        "instances/add-user/check",
-        "POST",
-        params
-      ),
-
-    addUserPost: (params: LicenseApiTypes["addUserPost"]["params"]) =>
-      makeRequest<LicenseApiTypes["addUserPost"]["response"]>(
-        "instances/add-user/post",
-        "POST",
-        params
-      ),
-
-    getUser: (params: LicenseApiTypes["getUser"]["params"]) =>
-      makeRequest<LicenseApiTypes["getUser"]["response"]>(
-        "instances/user",
-        "GET",
-        params
-      ),
-
-    workspace: (params: LicenseApiTypes["workspace"]["params"]) =>
-      makeRequest<LicenseApiTypes["workspace"]["response"]>(
-        "instances/workspace",
-        "POST",
-        params
-      ),
-
-    workspaceAddUser: (params: LicenseApiTypes["workspaceAddUser"]["params"]) =>
-      makeRequest<LicenseApiTypes["workspaceAddUser"]["response"]>(
-        "instances/workspace/add-user",
-        "POST",
-        params
-      ),
-
-    workspaceCheckout: (
-      params: LicenseApiTypes["workspaceCheckout"]["params"]
-    ) =>
-      makeRequest<LicenseApiTypes["workspaceCheckout"]["response"]>(
-        "instances/workspace/checkout",
-        "POST",
-        params
-      ),
-
-    workspacePortal: (params: LicenseApiTypes["workspacePortal"]["params"]) =>
-      makeRequest<LicenseApiTypes["workspacePortal"]["response"]>(
-        "instances/workspace/portal",
-        "POST",
-        params
-      ),
-  };
-}
diff --git a/apps/web/utils/instance/functions.ts b/apps/web/utils/instance/functions.ts
index 30c7c7394..926f2f2cc 100644
--- a/apps/web/utils/instance/functions.ts
+++ b/apps/web/utils/instance/functions.ts
@@ -4,6 +4,7 @@ import { serverConfigTable, spaces, users } from "@cap/database/schema";
 import { eq } from "drizzle-orm";
 import { INSTANCE_SITE_URL, LICENSE_SERVER_URL } from "./constants";
 import {
+  getCloudWorkspaceUserCount,
   getServerUserCount,
   getUserWorkspaceMembershipWorkspaceIds,
 } from "./helpers";
@@ -53,6 +54,7 @@ export const isCapCloud = async (): Promise<boolean> => {
   return serverConfig.isCapCloud;
 };
 
+// Used in self hosted instances to add a user to the server superAdminIds array
 export const addServerSuperAdmin = async ({ userId }: { userId: string }) => {
   const currentUser = await getCurrentUser();
   if (!currentUser) {
@@ -80,6 +82,7 @@ export const addServerSuperAdmin = async ({ userId }: { userId: string }) => {
   return;
 };
 
+// used in all instances to validate the self hosted server license
 export async function validateServerLicense({
   serverConfig,
 }: {
@@ -145,15 +148,14 @@ export async function validateServerLicense({
 }
 
 // check if a single user is a member of a pro workspace
-export async function isUserPro({ userId }: { userId: string }) {
+export async function getIsUserPro({ userId }: { userId: string }) {
   const serverConfig = await getServerConfig();
   if (!serverConfig.licenseKey) {
     return false;
   }
-  const isCapCloud = serverConfig.isCapCloud;
 
   // if self hosting, all users on the server have the same pro status as the server itself
-  if (!isCapCloud) {
+  if (!serverConfig.isCapCloud) {
     return serverConfig.licenseValid;
   }
 
@@ -218,10 +220,9 @@ export async function isWorkspacePro({ workspaceId }: { workspaceId: string }) {
   if (!serverConfig.licenseKey) {
     return false;
   }
-  const isCapCloud = serverConfig.isCapCloud;
 
   // if self hosting, all workspaces on the server have the same pro status as the server itself
-  if (!isCapCloud) {
+  if (!serverConfig.isCapCloud) {
     return serverConfig.licenseValid;
   }
 
@@ -276,3 +277,143 @@ export async function isWorkspacePro({ workspaceId }: { workspaceId: string }) {
 
   return licenseServerResponse.isPro;
 }
+
+// Update workspace user counts - This includes both users and invites
+export async function updateCloudWorkspaceUserCount({
+  workspaceId,
+}: {
+  workspaceId: string;
+}) {
+  const serverConfig = await getServerConfig();
+  if (!serverConfig.licenseKey) {
+    return false;
+  }
+
+  // if selfhosting, seats will be updated on next server license check automatically
+  if (!serverConfig.isCapCloud) {
+    return true;
+  }
+
+  const workspaceUserCount = await getCloudWorkspaceUserCount({ workspaceId });
+
+  try {
+    await fetch(
+      `${LICENSE_SERVER_URL}/api/instances/cloudPro/workspace/addUser`,
+      {
+        method: "POST",
+        headers: {
+          licenseKey: serverConfig.licenseKey,
+          siteUrl: INSTANCE_SITE_URL,
+          "Content-Type": "application/json",
+        },
+        body: JSON.stringify({
+          workspaceId: workspaceId,
+          seatCount: workspaceUserCount,
+        }),
+      }
+    );
+    return true;
+  } catch (error) {
+    console.error(error);
+    return false;
+  }
+}
+
+export async function generateCloudProStripeCheckoutSession({
+  cloudWorkspaceId,
+  cloudUserId,
+  email,
+  type,
+}: {
+  cloudWorkspaceId: string;
+  cloudUserId: string;
+  email: string;
+  type: "yearly" | "monthly";
+}) {
+  const serverConfig = await getServerConfig();
+  if (!serverConfig.licenseKey) {
+    return false;
+  }
+
+  if (!serverConfig.isCapCloud) {
+    return false;
+  }
+
+  const seatCount = await getCloudWorkspaceUserCount({
+    workspaceId: cloudWorkspaceId,
+  });
+
+  // refresh workspace pro cache
+  const licenseServerResponse = (await fetch(
+    `${LICENSE_SERVER_URL}/api/instances/cloudPro/workspace/checkout`,
+    {
+      method: "POST",
+      headers: {
+        licenseKey: serverConfig.licenseKey,
+        siteUrl: INSTANCE_SITE_URL,
+        "Content-Type": "application/json",
+      },
+      body: JSON.stringify({
+        cloudWorkspaceId: cloudWorkspaceId,
+        cloudUserId: cloudUserId,
+        email: email,
+        seatCount: seatCount,
+        type: type,
+      }),
+    }
+  ).then((res) => res.json())) as {
+    workspaceId: string;
+    newSeatCount: number;
+    checkoutLink: string;
+  };
+
+  return licenseServerResponse;
+}
+
+export async function generateCloudProStripePortalLink({
+  cloudWorkspaceId,
+}: {
+  cloudWorkspaceId: string;
+}) {
+  const serverConfig = await getServerConfig();
+  if (!serverConfig.licenseKey) {
+    return false;
+  }
+
+  if (!serverConfig.isCapCloud) {
+    return false;
+  }
+
+  const seatCount = await getCloudWorkspaceUserCount({
+    workspaceId: cloudWorkspaceId,
+  });
+
+  // refresh workspace pro cache
+  try {
+    const licenseServerResponse = (await fetch(
+      `${LICENSE_SERVER_URL}/api/instances/cloudPro/workspace/portal`,
+      {
+        method: "POST",
+        headers: {
+          licenseKey: serverConfig.licenseKey,
+          siteUrl: INSTANCE_SITE_URL,
+          "Content-Type": "application/json",
+        },
+        body: JSON.stringify({
+          cloudWorkspaceId: cloudWorkspaceId,
+          seatCount: seatCount,
+        }),
+      }
+    ).then((res) => res.json())) as {
+      workspaceId: string;
+      newSeatCount: number;
+      portalLink: string;
+    };
+
+    return licenseServerResponse;
+  } catch (error) {
+    console.error(error);
+
+    return null;
+  }
+}
diff --git a/apps/web/utils/instance/helpers.ts b/apps/web/utils/instance/helpers.ts
index 8d68ec830..49e3cced2 100644
--- a/apps/web/utils/instance/helpers.ts
+++ b/apps/web/utils/instance/helpers.ts
@@ -1,14 +1,30 @@
 import { db } from "@cap/database";
 import { getCurrentUser } from "@cap/database/auth/session";
-import { serverConfigTable, spaceMembers, users } from "@cap/database/schema";
+import { spaceInvites, spaceMembers, users } from "@cap/database/schema";
 import { count, eq } from "drizzle-orm";
-import { getServerConfig } from "./functions";
-import { INSTANCE_SITE_URL, LICENSE_SERVER_URL } from "./constants";
 
 // get the total number of users on the server
 export const getServerUserCount = async () => {
   const userCount = await db.select({ count: count() }).from(users);
-  return userCount[0]?.count || 0;
+  const inviteCount = await db.select({ count: count() }).from(spaceInvites);
+  return (userCount[0]?.count || 0) + (inviteCount[0]?.count || 0);
+};
+
+// get the number of users on a workspace (including invites)
+export const getCloudWorkspaceUserCount = async ({
+  workspaceId,
+}: {
+  workspaceId: string;
+}) => {
+  const userCount = await db
+    .select({ count: count() })
+    .from(spaceMembers)
+    .where(eq(spaceMembers.spaceId, workspaceId));
+  const inviteCount = await db
+    .select({ count: count() })
+    .from(spaceInvites)
+    .where(eq(spaceInvites.spaceId, workspaceId));
+  return (userCount[0]?.count || 0) + (inviteCount[0]?.count || 0);
 };
 
 // get all workspace IDs the user is a member of
@@ -39,41 +55,3 @@ export const getUserWorkspaceMembershipWorkspaceIds = async () => {
 
   return workspaceMembershipsWorkspaceIds;
 };
-
-export async function licenseApi({
-  method,
-  endpoint,
-  body,
-  serverConfig,
-}: {
-  method: "POST" | "GET";
-  endpoint:
-    | "instances/validate"
-    | "instances/add-user"
-    | "instances/user"
-    | "instances/workspace"
-    | "instances/workspace/add-user"
-    | "instances/workspace/checkout"
-    | "instances/workspace/portal";
-  body: object;
-  serverConfig: typeof serverConfigTable.$inferSelect;
-}) {
-  if (!serverConfig.licenseKey || !serverConfig.licenseValid) {
-    throw new Error("Server does not have a valid license");
-  }
-
-  const licenseServerResponse = await fetch(
-    `${LICENSE_SERVER_URL}/api/${endpoint}`,
-    {
-      method,
-      headers: {
-        licenseKey: serverConfig.licenseKey,
-        siteUrl: INSTANCE_SITE_URL,
-        "Content-Type": "application/json",
-      },
-      body: JSON.stringify(body),
-    }
-  );
-
-  return licenseServerResponse;
-}
diff --git a/packages/database/auth/drizzle-adapter.ts b/packages/database/auth/drizzle-adapter.ts
index 3538997e1..0d7364d95 100644
--- a/packages/database/auth/drizzle-adapter.ts
+++ b/packages/database/auth/drizzle-adapter.ts
@@ -3,8 +3,6 @@ import { and, eq } from "drizzle-orm";
 import { accounts, sessions, users, verificationTokens } from "../schema";
 import type { Adapter } from "next-auth/adapters";
 import type { PlanetScaleDatabase } from "drizzle-orm/planetscale-serverless";
-import { stripe, STRIPE_AVAILABLE } from "@cap/utils";
-import { serverEnv } from "@cap/env";
 
 export function DrizzleAdapter(db: PlanetScaleDatabase): Adapter {
   return {
@@ -25,21 +23,21 @@ export function DrizzleAdapter(db: PlanetScaleDatabase): Adapter {
       const row = rows[0];
       if (!row) throw new Error("User not found");
 
-      if (STRIPE_AVAILABLE) {
-        const customer = await stripe.customers.create({
-          email: userData.email,
-          metadata: {
-            userId: nanoId(),
-          },
-        });
+      // if (STRIPE_AVAILABLE) {
+      //   const customer = await stripe.customers.create({
+      //     email: userData.email,
+      //     metadata: {
+      //       userId: nanoId(),
+      //     },
+      //   });
 
-        await db
-          .update(users)
-          .set({
-            stripeCustomerId: customer.id,
-          })
-          .where(eq(users.id, row.id));
-      }
+      //   await db
+      //     .update(users)
+      //     .set({
+      //       stripeCustomerId: customer.id,
+      //     })
+      //     .where(eq(users.id, row.id));
+      // }
 
       return row;
     },
diff --git a/packages/utils/src/constants/plans.ts b/packages/utils/src/constants/plans.ts
index c74f5724d..13d99f401 100644
--- a/packages/utils/src/constants/plans.ts
+++ b/packages/utils/src/constants/plans.ts
@@ -18,19 +18,12 @@ export const getProPlanId = (billingCycle: "yearly" | "monthly") => {
   return planIds[environment]?.[billingCycle] || "";
 };
 
-export const isUserOnProPlan = ({
-  subscriptionStatus,
-}: {
-  subscriptionStatus: string;
-}) => {
+export const getProPlanBillingCycle = (priceId: string) => {
   if (
-    subscriptionStatus === "active" ||
-    subscriptionStatus === "trialing" ||
-    subscriptionStatus === "complete" ||
-    subscriptionStatus === "paid"
+    priceId === planIds.development.yearly ||
+    priceId === planIds.production.yearly
   ) {
-    return true;
+    return "yearly";
   }
-
-  return false;
+  return "monthly";
 };

From dcf0df2359c6004b9ef6292270df1b6dca5c6a4b Mon Sep 17 00:00:00 2001
From: ameer2468 <33054370+ameer2468@users.noreply.github.com>
Date: Tue, 18 Feb 2025 18:29:51 +0300
Subject: [PATCH 03/17] new header

---
 apps/web/components/Navbar.tsx            | 29 ++++++++++++++++++++++-
 apps/web/components/pages/PricingPage.tsx |  3 +--
 pnpm-lock.yaml                            |  4 ++--
 3 files changed, 31 insertions(+), 5 deletions(-)

diff --git a/apps/web/components/Navbar.tsx b/apps/web/components/Navbar.tsx
index 1867f0d5d..eddc651cc 100644
--- a/apps/web/components/Navbar.tsx
+++ b/apps/web/components/Navbar.tsx
@@ -178,8 +178,35 @@ export const Navbar = ({ auth }: { auth: boolean }) => {
               <Menu className={`w-[28px] h-[28px] text-black/70`} />
             </button>
           </div>
+          </div>
+          <div className="hidden items-center space-x-2 sm:flex">
+          <Button
+                    variant="white"
+                    href="https://github.com/CapSoftware/Cap"
+                    size="md"
+                    className="w-full font-medium sm:w-auto"
+                    icon={<FontAwesomeIcon icon={faGithub} />}
+                  >
+                    Github
+             </Button>
+             <Button
+                    variant="dark"
+                    href={auth === false ? "/login" : "/dashboard"}
+                    size="md"
+                    className="w-full font-medium sm:w-auto"
+                  >
+                  {auth === false ? "Login" : "Dashboard"}
+             </Button>
+          </div>
+          <div className="block md:hidden">
+            <button onClick={() => setShowMobileMenu(!showMobileMenu)}>
+              <Menu
+                className={`w-[28px] h-[28px] text-black/70`}
+              />
+            </button>
+          </div>
+        </div>
         </div>
-      </div>
       {showMobileMenu && (
         <div className="fixed top-0 left-0 w-full h-full px-4 bg-white z-[100000] overflow-auto">
           <div
diff --git a/apps/web/components/pages/PricingPage.tsx b/apps/web/components/pages/PricingPage.tsx
index 63f7889dd..52a8290dd 100644
--- a/apps/web/components/pages/PricingPage.tsx
+++ b/apps/web/components/pages/PricingPage.tsx
@@ -326,8 +326,7 @@ export const PricingPage = () => {
             </h1>
             <p
               className={`max-w-[800px] mx-auto ${
-                initialRender ? "fade-in-down animate-delay-1" : ""
-              }`}
+                initialRender ? "fade-in-down animate-delay-1" : ""}`}
             >
               Cap is currently in public beta, and we're offering special early
               adopter pricing to our first users. This pricing will be locked in
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index 07123d8af..356f06f02 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -723,7 +723,7 @@ importers:
         version: 14.2.9(@opentelemetry/api@1.9.0)(react-dom@18.3.1(react@18.3.1))(react@18.3.1)
       next-auth:
         specifier: ^4.24.5
-        version: 4.24.8(next@14.2.9(@opentelemetry/api@1.9.0)(react-dom@18.3.1(react@18.3.1))(react@18.3.1))(nodemailer@6.9.15)(react-dom@18.3.1(react@18.3.1))(react@18.3.1)
+        version: 4.24.8(next@14.2.9(@babel/core@7.25.2)(@opentelemetry/api@1.9.0)(react-dom@18.3.1(react@18.3.1))(react@18.3.1))(nodemailer@6.9.15)(react-dom@18.3.1(react@18.3.1))(react@18.3.1)
       react-email:
         specifier: ^1.10.1
         version: 1.10.1
@@ -22099,7 +22099,7 @@ snapshots:
     optionalDependencies:
       nodemailer: 6.9.15
 
-  next-auth@4.24.8(next@14.2.9(@opentelemetry/api@1.9.0)(react-dom@18.3.1(react@18.3.1))(react@18.3.1))(nodemailer@6.9.15)(react-dom@18.3.1(react@18.3.1))(react@18.3.1):
+  next-auth@4.24.8(next@14.2.9(@babel/core@7.25.2)(@opentelemetry/api@1.9.0)(react-dom@18.3.1(react@18.3.1))(react@18.3.1))(nodemailer@6.9.15)(react-dom@18.3.1(react@18.3.1))(react@18.3.1):
     dependencies:
       '@babel/runtime': 7.25.6
       '@panva/hkdf': 1.2.1

From 2fbbfe9508aa22de8a37bf04f92b9dab2b766446 Mon Sep 17 00:00:00 2001
From: Brendan Allan <brendonovich@outlook.com>
Date: Thu, 27 Feb 2025 05:14:22 +1100
Subject: [PATCH 04/17] fail injection (#344)

* fail injectino

* remove live_state

* remove get_store

* more correctness

* fmt
---
 apps/desktop/src-tauri/src/lib.rs             | 12 ++++++++++
 apps/desktop/src-tauri/src/recording.rs       | 22 +++++++++++++++++++
 .../src/routes/(window-chrome)/(main).tsx     | 13 +++++++++++
 apps/desktop/src/routes/debug.tsx             |  3 +++
 4 files changed, 50 insertions(+)

diff --git a/apps/desktop/src-tauri/src/lib.rs b/apps/desktop/src-tauri/src/lib.rs
index 5a32870d3..148f7bb4b 100644
--- a/apps/desktop/src-tauri/src/lib.rs
+++ b/apps/desktop/src-tauri/src/lib.rs
@@ -226,7 +226,11 @@ impl App {
             }
         }
         .inspect(|_| {
+<<<<<<< HEAD
             self.recording_options.camera_label = new_options.camera_label.clone();
+=======
+            self.start_recording_options.camera_label = new_options.camera_label.clone();
+>>>>>>> aee39a6c (fail injection (#344))
         });
 
         // try update microphone
@@ -252,11 +256,19 @@ impl App {
             }
         }
         .inspect(|_| {
+<<<<<<< HEAD
             self.recording_options.audio_input_name = new_options.audio_input_name.clone();
         });
 
         if camera.is_ok() || microphone.is_ok() {
             self.recording_options.capture_target = new_options.capture_target;
+=======
+            self.start_recording_options.audio_input_name = new_options.audio_input_name.clone();
+        });
+
+        if camera.is_ok() || microphone.is_ok() {
+            self.start_recording_options.capture_target = new_options.capture_target;
+>>>>>>> aee39a6c (fail injection (#344))
 
             RecordingOptionsChanged.emit(&self.handle).ok();
         }
diff --git a/apps/desktop/src-tauri/src/recording.rs b/apps/desktop/src-tauri/src/recording.rs
index 6f74fc5d5..c9e4a4232 100644
--- a/apps/desktop/src-tauri/src/recording.rs
+++ b/apps/desktop/src-tauri/src/recording.rs
@@ -15,6 +15,11 @@ use crate::{
     RecordingStarted, RecordingStopped, UploadMode,
 };
 use cap_fail::fail;
+<<<<<<< HEAD
+=======
+use cap_flags::FLAGS;
+use cap_media::sources::{CaptureScreen, CaptureWindow};
+>>>>>>> aee39a6c (fail injection (#344))
 use cap_media::{feeds::CameraFeed, sources::ScreenCaptureTarget};
 use cap_media::{
     platform::Bounds,
@@ -154,6 +159,7 @@ pub async fn start_recording(
                     if let Ok(s3_config) = get_s3_config(&app, false, None).await {
                         let link = web_api::make_url(format!("/s/{}", s3_config.id()));
 
+<<<<<<< HEAD
                         state.pre_created_video = Some(PreCreatedVideo {
                             id: s3_config.id().to_string(),
                             link: link.clone(),
@@ -178,6 +184,22 @@ pub async fn start_recording(
             if let Some(window) = camera_window {
                 let _ = window.set_content_protected(true);
             }
+=======
+    if let Ok(Some(auth)) = AuthStore::get(&app) {
+        if auto_create_shareable_link && auth.is_upgraded() {
+            // Pre-create the video and get the shareable link
+            if let Ok(s3_config) = get_s3_config(&app, false, None).await {
+                let link = web_api::make_url(format!("/s/{}", s3_config.id()));
+
+                state.pre_created_video = Some(PreCreatedVideo {
+                    id: s3_config.id().to_string(),
+                    link: link.clone(),
+                    config: s3_config,
+                });
+
+                println!("Pre-created shareable link: {}", link);
+            };
+>>>>>>> aee39a6c (fail injection (#344))
         }
     }
 
diff --git a/apps/desktop/src/routes/(window-chrome)/(main).tsx b/apps/desktop/src/routes/(window-chrome)/(main).tsx
index 655429b86..83c1dc64c 100644
--- a/apps/desktop/src/routes/(window-chrome)/(main).tsx
+++ b/apps/desktop/src/routes/(window-chrome)/(main).tsx
@@ -202,16 +202,24 @@ export default function () {
             />
           </button>
         </Show>
+<<<<<<< HEAD
 
+=======
+>>>>>>> aee39a6c (fail injection (#344))
         {import.meta.env.DEV && (
           <button
             type="button"
             onClick={() => {
               new WebviewWindow("debug", { url: "/debug" });
             }}
+<<<<<<< HEAD
             class="flex items-center justify-center w-5 h-5"
           >
             <IconLucideBug class="size-5 text-gray-400 hover:text-gray-500" />
+=======
+          >
+            <IconLucideBug class="text-gray-400 hover:text-gray-500" />
+>>>>>>> aee39a6c (fail injection (#344))
           </button>
         )}
       </div>
@@ -956,11 +964,16 @@ function TargetSelect<T extends { id: number; name: string }>(props: {
     const v = props.value;
     if (!v) return null;
 
+<<<<<<< HEAD
     const o = props.options.find((o) => o.id === v.id);
     if (o) return props.value;
 
     props.onChange(props.options[0]);
     return props.options[0];
+=======
+    if (props.options.some((o) => o.id === v.id)) return props.value;
+    else return props.options[0];
+>>>>>>> aee39a6c (fail injection (#344))
   };
 
   return (
diff --git a/apps/desktop/src/routes/debug.tsx b/apps/desktop/src/routes/debug.tsx
index 55a16b59c..6670212bb 100644
--- a/apps/desktop/src/routes/debug.tsx
+++ b/apps/desktop/src/routes/debug.tsx
@@ -12,6 +12,7 @@ export default function Debug() {
 
   return (
     <main class="w-full h-full bg-gray-100 text-[--text-primary] p-4">
+<<<<<<< HEAD
       <h2 class="text-2xl font-bold">Debug Windows</h2>
       <div class="p-2 mb-4">
         <button
@@ -22,6 +23,8 @@ export default function Debug() {
         </button>
       </div>
 
+=======
+>>>>>>> aee39a6c (fail injection (#344))
       <h2 class="text-2xl font-bold">Fail Points</h2>
       <ul class="p-2">
         <For each={orderedFails()}>

From 4e71c81cdf3b8157240f8c98a689898e0a6e63eb Mon Sep 17 00:00:00 2001
From: McPizza0 <gh@l1.io>
Date: Wed, 26 Feb 2025 17:31:22 +0100
Subject: [PATCH 05/17] add server admin checks

---
 .../_components/AdminNavbar/AdminNavItems.tsx |   8 +-
 .../_components/DynamicSharedLayout.tsx       |   7 +-
 apps/web/app/dashboard/layout.tsx             |  18 +-
 apps/web/app/superadmin/layout.tsx            |   5 +-
 apps/web/utils/instance/functions.ts          | 230 ++++++++++++++++--
 packages/database/emails/config.ts            |   8 +-
 packages/database/schema.ts                   |   3 +
 7 files changed, 250 insertions(+), 29 deletions(-)

diff --git a/apps/web/app/dashboard/_components/AdminNavbar/AdminNavItems.tsx b/apps/web/app/dashboard/_components/AdminNavbar/AdminNavItems.tsx
index 5d866f318..701f061d6 100644
--- a/apps/web/app/dashboard/_components/AdminNavbar/AdminNavItems.tsx
+++ b/apps/web/app/dashboard/_components/AdminNavbar/AdminNavItems.tsx
@@ -11,6 +11,7 @@ import {
   Share2,
   Check,
   Building,
+  Star,
 } from "lucide-react";
 import Link from "next/link";
 import { classNames } from "@cap/utils";
@@ -76,7 +77,8 @@ const Download = ({ className }: { className: string }) => (
 export const AdminNavItems = () => {
   const pathname = usePathname();
   const [open, setOpen] = useState(false);
-  const { spaceData, activeSpace, user, isSubscribed } = useSharedContext();
+  const { spaceData, activeSpace, user, isSubscribed, isSuperAdmin } =
+    useSharedContext();
   const [menuOpen, setMenuOpen] = useState(false);
   const router = useRouter();
 
@@ -105,10 +107,10 @@ export const AdminNavItems = () => {
       icon: Building,
       subNav: [],
     },
-    user.email.endsWith("@cap.so") && {
+    isSuperAdmin && {
       name: "Admin",
       href: "/dashboard/admin",
-      icon: () => {},
+      icon: Star,
       subNav: [],
     },
   ].filter(Boolean);
diff --git a/apps/web/app/dashboard/_components/DynamicSharedLayout.tsx b/apps/web/app/dashboard/_components/DynamicSharedLayout.tsx
index 785af4d6b..bee0364a6 100644
--- a/apps/web/app/dashboard/_components/DynamicSharedLayout.tsx
+++ b/apps/web/app/dashboard/_components/DynamicSharedLayout.tsx
@@ -10,6 +10,7 @@ type SharedContext = {
   activeSpace: Space | null;
   user: typeof users.$inferSelect;
   isSubscribed: boolean;
+  isSuperAdmin: boolean;
 };
 
 const Context = createContext<SharedContext>({} as SharedContext);
@@ -20,15 +21,19 @@ export default function DynamicSharedLayout({
   activeSpace,
   user,
   isSubscribed,
+  isSuperAdmin,
 }: {
   children: React.ReactNode;
   spaceData: SharedContext["spaceData"];
   activeSpace: SharedContext["activeSpace"];
   user: SharedContext["user"];
   isSubscribed: SharedContext["isSubscribed"];
+  isSuperAdmin: SharedContext["isSuperAdmin"];
 }) {
   return (
-    <Context.Provider value={{ spaceData, activeSpace, user, isSubscribed }}>
+    <Context.Provider
+      value={{ spaceData, activeSpace, user, isSubscribed, isSuperAdmin }}
+    >
       <div className="dashboard-layout h-screen min-h-full flex">
         <AdminDesktopNav />
         <div className="flex-1 overflow-auto focus:outline-none">
diff --git a/apps/web/app/dashboard/layout.tsx b/apps/web/app/dashboard/layout.tsx
index e531cbf8b..f3e602802 100644
--- a/apps/web/app/dashboard/layout.tsx
+++ b/apps/web/app/dashboard/layout.tsx
@@ -10,7 +10,11 @@ import {
   users,
 } from "@cap/database/schema";
 import { eq, inArray, or, and, count, sql } from "drizzle-orm";
-import { getIsUserPro } from "@/utils/instance/functions";
+import {
+  addServerSuperAdmin,
+  getIsUserPro,
+  getServerConfig,
+} from "@/utils/instance/functions";
 
 export type Space = {
   space: typeof spaces.$inferSelect;
@@ -130,9 +134,14 @@ export default async function DashboardLayout({
   }
 
   const isSubscribed = await getIsUserPro({ userId: user.id });
-  // (user.stripeSubscriptionId &&
-  //   user.stripeSubscriptionStatus !== "cancelled") ||
-  // !!user.thirdPartyStripeSubscriptionId;
+
+  const serverConfig = await getServerConfig();
+  let serverSuperAdminIds = serverConfig?.superAdminIds;
+  if (!serverSuperAdminIds || serverSuperAdminIds.length === 0) {
+    await addServerSuperAdmin({ userId: user.id });
+    serverSuperAdminIds = [user.id];
+  }
+  const isSuperAdmin = serverSuperAdminIds.includes(user.id);
 
   return (
     <DynamicSharedLayout
@@ -140,6 +149,7 @@ export default async function DashboardLayout({
       activeSpace={findActiveSpace || null}
       user={user}
       isSubscribed={isSubscribed}
+      isSuperAdmin={isSuperAdmin}
     >
       <div className="full-layout">
         <DashboardTemplate>{children}</DashboardTemplate>
diff --git a/apps/web/app/superadmin/layout.tsx b/apps/web/app/superadmin/layout.tsx
index 873231f33..02356cd54 100644
--- a/apps/web/app/superadmin/layout.tsx
+++ b/apps/web/app/superadmin/layout.tsx
@@ -10,7 +10,10 @@ import {
   users,
 } from "@cap/database/schema";
 import { eq, inArray, or, and, count, sql } from "drizzle-orm";
-import { addServerSuperAdmin, getServerConfig } from "@/utils/instance";
+import {
+  addServerSuperAdmin,
+  getServerConfig,
+} from "@/utils/instance/functions";
 
 export default async function SuperAdminLayout({
   children,
diff --git a/apps/web/utils/instance/functions.ts b/apps/web/utils/instance/functions.ts
index 926f2f2cc..7a35c33f7 100644
--- a/apps/web/utils/instance/functions.ts
+++ b/apps/web/utils/instance/functions.ts
@@ -12,12 +12,17 @@ import {
 export const getServerConfig = async (): Promise<
   typeof serverConfigTable.$inferSelect
 > => {
+  console.log("[function call: getServerConfig");
   const serverConfig = await db.query.serverConfigTable.findFirst({
     where: eq(serverConfigTable.id, 1),
   });
 
+  console.log("[function call: getServerConfig: serverConfig", {
+    serverConfig,
+  });
   // create server config object if it doesn't exist
   if (!serverConfig) {
+    console.log("[function call: getServerConfig: serverConfig not found");
     const newServerConfig = {
       id: 1,
       licenseKey: null,
@@ -29,8 +34,11 @@ export const getServerConfig = async (): Promise<
       emailSendFromName: null,
       emailSendFromEmail: null,
     };
+    console.log("[function call: getServerConfig: newServerConfig", {
+      newServerConfig,
+    });
     await db.insert(serverConfigTable).values(newServerConfig);
-
+    console.log("[function call: getServerConfig returning newServerConfig");
     return newServerConfig;
   }
 
@@ -39,9 +47,17 @@ export const getServerConfig = async (): Promise<
     (serverConfig.licenseValidityCache === null ||
       serverConfig.licenseValidityCache.getTime() < Date.now())
   ) {
+    console.log("[function call: getServerConfig: ifStatement", {
+      licenseKey: serverConfig.licenseKey,
+      licenseValidityCache: serverConfig.licenseValidityCache,
+      dateNow: Date.now(),
+    });
     const validationResult = await validateServerLicense({
       serverConfig,
     });
+    console.log("[function call: getServerConfig: validationResult", {
+      validationResult,
+    });
     return validationResult;
   }
 
@@ -50,25 +66,39 @@ export const getServerConfig = async (): Promise<
 
 // check if the server is a Cap Cloud server
 export const isCapCloud = async (): Promise<boolean> => {
+  console.log("[function call: isCapCloud");
   const serverConfig = await getServerConfig();
+  console.log("[function call: isCapCloud: serverConfig", { serverConfig });
   return serverConfig.isCapCloud;
 };
 
 // Used in self hosted instances to add a user to the server superAdminIds array
 export const addServerSuperAdmin = async ({ userId }: { userId: string }) => {
+  console.log("[function call: addServerSuperAdmin input", { userId });
   const currentUser = await getCurrentUser();
+  console.log("[function call: addServerSuperAdmin: currentUser", {
+    currentUser,
+  });
   if (!currentUser) {
+    console.log("[function call: addServerSuperAdmin: currentUser not found");
     throw new Error("Not authorized");
   }
 
   const serverConfig = await getServerConfig();
-
+  console.log("[function call: addServerSuperAdmin: serverConfig", {
+    serverConfig,
+  });
   const existingSuperAdminIds = serverConfig.superAdminIds;
-
+  console.log("[function call: addServerSuperAdmin: existingSuperAdminIds", {
+    existingSuperAdminIds,
+  });
   if (
     existingSuperAdminIds.length > 0 &&
     !existingSuperAdminIds.includes(currentUser.id)
   ) {
+    console.log(
+      "[function call: addServerSuperAdmin if not in admin array: not authorized"
+    );
     throw new Error("Not authorized");
   }
 
@@ -79,6 +109,7 @@ export const addServerSuperAdmin = async ({ userId }: { userId: string }) => {
       superAdminIds: [...existingSuperAdminIds, userId],
     })
     .where(eq(serverConfigTable.id, 1));
+  console.log("[function call: addServerSuperAdmin: updated server config");
   return;
 };
 
@@ -88,10 +119,14 @@ export async function validateServerLicense({
 }: {
   serverConfig: typeof serverConfigTable.$inferSelect;
 }): Promise<typeof serverConfigTable.$inferSelect> {
+  console.log("[function call: validateServerLicense input", { serverConfig });
   if (!serverConfig?.licenseKey) {
+    console.log("[function call: validateServerLicense: licenseKey not found");
     return serverConfig;
   }
-
+  console.log("[function call: validateServerLicense: licenseKey", {
+    licenseKey: serverConfig.licenseKey,
+  });
   const licenseServerResponse = await fetch(
     `${LICENSE_SERVER_URL}/api/instances/validate`,
     {
@@ -106,9 +141,18 @@ export async function validateServerLicense({
       }),
     }
   );
+  console.log("[function call: validateServerLicense: licenseServerResponse", {
+    licenseServerResponse,
+  });
 
   const licenseServerResponseCode = await licenseServerResponse.status;
   const licenseServerResponseJson = await licenseServerResponse.json();
+  console.log(
+    "[function call: validateServerLicense: licenseServerResponseJson",
+    {
+      licenseServerResponseJson,
+    }
+  );
 
   let newPartialServerConfig: Partial<
     typeof serverConfigTable.$inferInsert
@@ -121,26 +165,52 @@ export async function validateServerLicense({
     licenseServerResponseCode === 402 ||
     licenseServerResponseCode === 409
   ) {
+    console.log(
+      "[function call: validateServerLicense: licenseServerResponseCode",
+      {
+        licenseServerResponseCode,
+      }
+    );
     newPartialServerConfig = {
       licenseValid: false,
       licenseValidityCache: null,
       isCapCloud: false,
     };
+    console.log(
+      "[function call: validateServerLicense: newPartialServerConfig",
+      {
+        newPartialServerConfig,
+      }
+    );
   }
   // handle 200: license is valid
   if (licenseServerResponseCode === 200) {
+    console.log("[function call: validateServerLicense: 200: license is valid");
     newPartialServerConfig = {
       licenseValid: true,
       licenseValidityCache: licenseServerResponseJson.refresh,
       isCapCloud: licenseServerResponseJson.isCapCloudLicense,
     };
+    console.log(
+      "[function call: validateServerLicense: newPartialServerConfig",
+      {
+        newPartialServerConfig,
+      }
+    );
   }
+  console.log("[function call: validateServerLicense: updating server config");
   newPartialServerConfig &&
     (await db
       .update(serverConfigTable)
       .set(newPartialServerConfig)
       .where(eq(serverConfigTable.id, 1)));
-
+  console.log(
+    "[function call: validateServerLicense: returning server config",
+    {
+      ...serverConfig,
+      ...newPartialServerConfig,
+    }
+  );
   return {
     ...serverConfig,
     ...newPartialServerConfig,
@@ -149,13 +219,22 @@ export async function validateServerLicense({
 
 // check if a single user is a member of a pro workspace
 export async function getIsUserPro({ userId }: { userId: string }) {
+  console.log("[function call: getIsUserPro input", { userId });
   const serverConfig = await getServerConfig();
+  console.log("[function call: getIsUserPro: serverConfig", { serverConfig });
   if (!serverConfig.licenseKey) {
+    console.log("[function call: getIsUserPro: licenseKey not found");
     return false;
   }
-
+  console.log("[function call: getIsUserPro: ifStatement", {
+    licenseKey: serverConfig.licenseKey,
+    isCapCloud: serverConfig.isCapCloud,
+  });
   // if self hosting, all users on the server have the same pro status as the server itself
   if (!serverConfig.isCapCloud) {
+    console.log(
+      "[function call: getIsUserPro: ifStatement: self hosting: returning licenseValid"
+    );
     return serverConfig.licenseValid;
   }
 
@@ -163,8 +242,9 @@ export async function getIsUserPro({ userId }: { userId: string }) {
   const userResponse = await db.query.users.findFirst({
     where: eq(users.id, userId),
   });
-
+  console.log("[function call: getIsUserPro: userResponse", { userResponse });
   if (!userResponse) {
+    console.log("[function call: getIsUserPro: userResponse not found");
     return false;
   }
 
@@ -174,13 +254,19 @@ export async function getIsUserPro({ userId }: { userId: string }) {
     userResponse.proExpiresAt &&
     userResponse.proExpiresAt > new Date()
   ) {
+    console.log("[function call: getIsUserPro: user is pro: returning true");
     return true;
   }
 
   // refresh user pro cache
   const userWorkspaceMembershipWorkspaceIds =
     await getUserWorkspaceMembershipWorkspaceIds();
-
+  console.log(
+    "[function call: getIsUserPro: userWorkspaceMembershipWorkspaceIds",
+    {
+      userWorkspaceMembershipWorkspaceIds,
+    }
+  );
   const licenseServerResponse = (await fetch(
     `${LICENSE_SERVER_URL}/api/instances/cloudPro/user`,
     {
@@ -199,6 +285,9 @@ export async function getIsUserPro({ userId }: { userId: string }) {
     viaWorkspaceId: string | null;
     cacheRefresh: number | null;
   };
+  console.log("[function call: getIsUserPro: licenseServerResponse", {
+    licenseServerResponse,
+  });
 
   await db
     .update(users)
@@ -210,19 +299,31 @@ export async function getIsUserPro({ userId }: { userId: string }) {
       proWorkspaceId: licenseServerResponse.viaWorkspaceId,
     })
     .where(eq(users.id, userId));
-
+  console.log("[function call: getIsUserPro: updated user");
+  console.log(
+    "[function call: getIsUserPro: returning licenseServerResponse.isPro",
+    {
+      licenseServerResponse,
+    }
+  );
   return licenseServerResponse.isPro;
 }
 
 // check if a single workspace is a pro workspace
 export async function isWorkspacePro({ workspaceId }: { workspaceId: string }) {
+  console.log("[function call: isWorkspacePro input", { workspaceId });
   const serverConfig = await getServerConfig();
+  console.log("[function call: isWorkspacePro: serverConfig", { serverConfig });
   if (!serverConfig.licenseKey) {
+    console.log("[function call: isWorkspacePro: licenseKey not found");
     return false;
   }
 
   // if self hosting, all workspaces on the server have the same pro status as the server itself
   if (!serverConfig.isCapCloud) {
+    console.log(
+      "[function call: isWorkspacePro: ifStatement: self hosting: returning licenseValid"
+    );
     return serverConfig.licenseValid;
   }
 
@@ -230,8 +331,11 @@ export async function isWorkspacePro({ workspaceId }: { workspaceId: string }) {
   const workspaceResponse = await db.query.spaces.findFirst({
     where: eq(spaces.id, workspaceId),
   });
-
+  console.log("[function call: isWorkspacePro: workspaceResponse", {
+    workspaceResponse,
+  });
   if (!workspaceResponse) {
+    console.log("[function call: isWorkspacePro: workspaceResponse not found");
     return false;
   }
 
@@ -241,6 +345,9 @@ export async function isWorkspacePro({ workspaceId }: { workspaceId: string }) {
     workspaceResponse.proExpiresAt &&
     workspaceResponse.proExpiresAt > new Date()
   ) {
+    console.log(
+      "[function call: isWorkspacePro: workspace is pro: returning true"
+    );
     return true;
   }
 
@@ -263,6 +370,9 @@ export async function isWorkspacePro({ workspaceId }: { workspaceId: string }) {
     workspaceId: string;
     cacheRefresh: number | null;
   };
+  console.log("[function call: isWorkspacePro: licenseServerResponse", {
+    licenseServerResponse,
+  });
 
   await db
     .update(spaces)
@@ -274,7 +384,13 @@ export async function isWorkspacePro({ workspaceId }: { workspaceId: string }) {
       proWorkspaceId: licenseServerResponse.workspaceId,
     })
     .where(eq(spaces.id, workspaceId));
-
+  console.log("[function call: isWorkspacePro: updated workspace");
+  console.log(
+    "[function call: isWorkspacePro: returning licenseServerResponse.isPro",
+    {
+      licenseServerResponse,
+    }
+  );
   return licenseServerResponse.isPro;
 }
 
@@ -284,18 +400,35 @@ export async function updateCloudWorkspaceUserCount({
 }: {
   workspaceId: string;
 }) {
+  console.log("[function call: updateCloudWorkspaceUserCount input", {
+    workspaceId,
+  });
   const serverConfig = await getServerConfig();
+  console.log("[function call: updateCloudWorkspaceUserCount: serverConfig", {
+    serverConfig,
+  });
   if (!serverConfig.licenseKey) {
+    console.log(
+      "[function call: updateCloudWorkspaceUserCount: licenseKey not found"
+    );
     return false;
   }
 
   // if selfhosting, seats will be updated on next server license check automatically
   if (!serverConfig.isCapCloud) {
+    console.log(
+      "[function call: updateCloudWorkspaceUserCount: ifStatement: self hosting: returning true"
+    );
     return true;
   }
 
   const workspaceUserCount = await getCloudWorkspaceUserCount({ workspaceId });
-
+  console.log(
+    "[function call: updateCloudWorkspaceUserCount: workspaceUserCount",
+    {
+      workspaceUserCount,
+    }
+  );
   try {
     await fetch(
       `${LICENSE_SERVER_URL}/api/instances/cloudPro/workspace/addUser`,
@@ -312,8 +445,14 @@ export async function updateCloudWorkspaceUserCount({
         }),
       }
     );
+    console.log(
+      "[function call: updateCloudWorkspaceUserCount: updated workspace"
+    );
     return true;
   } catch (error) {
+    console.log("[function call: updateCloudWorkspaceUserCount: error", {
+      error,
+    });
     console.error(error);
     return false;
   }
@@ -330,19 +469,42 @@ export async function generateCloudProStripeCheckoutSession({
   email: string;
   type: "yearly" | "monthly";
 }) {
+  console.log("[function call: generateCloudProStripeCheckoutSession input", {
+    cloudWorkspaceId,
+    cloudUserId,
+    email,
+    type,
+  });
   const serverConfig = await getServerConfig();
+  console.log(
+    "[function call: generateCloudProStripeCheckoutSession: serverConfig",
+    {
+      serverConfig,
+    }
+  );
   if (!serverConfig.licenseKey) {
+    console.log(
+      "[function call: generateCloudProStripeCheckoutSession: licenseKey not found"
+    );
     return false;
   }
 
   if (!serverConfig.isCapCloud) {
+    console.log(
+      "[function call: generateCloudProStripeCheckoutSession: ifStatement: self hosting: returning false"
+    );
     return false;
   }
 
   const seatCount = await getCloudWorkspaceUserCount({
     workspaceId: cloudWorkspaceId,
   });
-
+  console.log(
+    "[function call: generateCloudProStripeCheckoutSession: seatCount",
+    {
+      seatCount,
+    }
+  );
   // refresh workspace pro cache
   const licenseServerResponse = (await fetch(
     `${LICENSE_SERVER_URL}/api/instances/cloudPro/workspace/checkout`,
@@ -366,7 +528,12 @@ export async function generateCloudProStripeCheckoutSession({
     newSeatCount: number;
     checkoutLink: string;
   };
-
+  console.log(
+    "[function call: generateCloudProStripeCheckoutSession: licenseServerResponse",
+    {
+      licenseServerResponse,
+    }
+  );
   return licenseServerResponse;
 }
 
@@ -375,21 +542,41 @@ export async function generateCloudProStripePortalLink({
 }: {
   cloudWorkspaceId: string;
 }) {
+  console.log("[function call: generateCloudProStripePortalLink input", {
+    cloudWorkspaceId,
+  });
   const serverConfig = await getServerConfig();
+  console.log(
+    "[function call: generateCloudProStripePortalLink: serverConfig",
+    {
+      serverConfig,
+    }
+  );
   if (!serverConfig.licenseKey) {
+    console.log(
+      "[function call: generateCloudProStripePortalLink: licenseKey not found"
+    );
     return false;
   }
 
   if (!serverConfig.isCapCloud) {
+    console.log(
+      "[function call: generateCloudProStripePortalLink: ifStatement: self hosting: returning false"
+    );
     return false;
   }
 
   const seatCount = await getCloudWorkspaceUserCount({
     workspaceId: cloudWorkspaceId,
   });
-
+  console.log("[function call: generateCloudProStripePortalLink: seatCount", {
+    seatCount,
+  });
   // refresh workspace pro cache
   try {
+    console.log(
+      "[function call: generateCloudProStripePortalLink: trying to fetch licenseServerResponse"
+    );
     const licenseServerResponse = (await fetch(
       `${LICENSE_SERVER_URL}/api/instances/cloudPro/workspace/portal`,
       {
@@ -410,10 +597,21 @@ export async function generateCloudProStripePortalLink({
       portalLink: string;
     };
 
+    console.log(
+      "[function call: generateCloudProStripePortalLink: licenseServerResponse",
+      {
+        licenseServerResponse,
+      }
+    );
+    console.log(
+      "[function call: generateCloudProStripePortalLink: returning licenseServerResponse"
+    );
     return licenseServerResponse;
   } catch (error) {
     console.error(error);
-
+    console.log("[function call: generateCloudProStripePortalLink: error", {
+      error,
+    });
     return null;
   }
 }
diff --git a/packages/database/emails/config.ts b/packages/database/emails/config.ts
index bef71c7da..6c733cf3c 100644
--- a/packages/database/emails/config.ts
+++ b/packages/database/emails/config.ts
@@ -1,9 +1,9 @@
 import { clientEnv, serverEnv } from "@cap/env";
 import { eq } from "drizzle-orm";
-import { db } from "index";
+import { db } from "../index";
 import { JSXElementConstructor, ReactElement } from "react";
 import { Resend } from "resend";
-import { serverConfig } from "schema";
+import { serverConfigTable } from "../schema";
 
 export const resend = serverEnv.RESEND_API_KEY
   ? new Resend(serverEnv.RESEND_API_KEY)
@@ -36,8 +36,8 @@ export const sendEmail = async ({
       return "Cap Auth <no-reply@auth.cap.so>";
     }
 
-    const serverConfigResponse = await db.query.serverConfig.findFirst({
-      where: eq(serverConfig.id, 1),
+    const serverConfigResponse = await db.query.serverConfigTable.findFirst({
+      where: eq(serverConfigTable.id, 1),
     });
 
     if (
diff --git a/packages/database/schema.ts b/packages/database/schema.ts
index e0643228d..f9afd49db 100644
--- a/packages/database/schema.ts
+++ b/packages/database/schema.ts
@@ -155,6 +155,9 @@ export const spaces = mysqlTable(
     updatedAt: timestamp("updatedAt").notNull().defaultNow().onUpdateNow(),
     workosOrganizationId: varchar("workosOrganizationId", { length: 255 }),
     workosConnectionId: varchar("workosConnectionId", { length: 255 }),
+    pro: boolean("pro").notNull().default(false),
+    proExpiresAt: timestamp("proExpiresAt"),
+    proWorkspaceId: nanoIdNullable("proWorkspaceId"),
   },
   (table) => ({
     ownerIdIndex: index("owner_id_idx").on(table.ownerId),

From 898046b6602bf5180469206a1f054cf979692268 Mon Sep 17 00:00:00 2001
From: McPizza0 <gh@l1.io>
Date: Thu, 27 Feb 2025 16:05:45 +0100
Subject: [PATCH 06/17] conditionally use providers

---
 Cargo.lock                          |  61 +++-------------
 apps/web/app/layout.tsx             |  34 ++++-----
 apps/web/app/providers.tsx          | 107 +++++++++++++++++-----------
 apps/web/app/superadmin/layout.tsx  |  53 --------------
 apps/web/app/superadmin/page.tsx    |   0
 apps/web/components/BentoScript.tsx |  13 ++--
 6 files changed, 93 insertions(+), 175 deletions(-)
 delete mode 100644 apps/web/app/superadmin/layout.tsx
 delete mode 100644 apps/web/app/superadmin/page.tsx

diff --git a/Cargo.lock b/Cargo.lock
index 289427699..da4d8eff6 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -918,14 +918,13 @@ dependencies = [
 
 [[package]]
 name = "cap-desktop"
-version = "0.3.29"
+version = "0.3.23"
 dependencies = [
  "anyhow",
  "axum",
  "base64 0.22.1",
  "cap-editor",
  "cap-export",
- "cap-fail",
  "cap-flags",
  "cap-media",
  "cap-project",
@@ -986,7 +985,6 @@ dependencies = [
  "tauri-specta",
  "tempfile",
  "tokio",
- "tokio-stream",
  "tracing",
  "tracing-appender",
  "tracing-subscriber",
@@ -1033,13 +1031,6 @@ dependencies = [
  "tokio",
 ]
 
-[[package]]
-name = "cap-fail"
-version = "0.1.0"
-dependencies = [
- "inventory",
-]
-
 [[package]]
 name = "cap-flags"
 version = "0.1.0"
@@ -1060,7 +1051,6 @@ name = "cap-media"
 version = "0.1.0"
 dependencies = [
  "axum",
- "cap-fail",
  "cap-flags",
  "cap-gpu-converters",
  "cap-project",
@@ -1117,11 +1107,9 @@ dependencies = [
  "device_query",
  "either",
  "flume 0.11.0",
- "futures",
  "image 0.25.5",
  "objc",
  "relative-path",
- "screencapturekit",
  "serde",
  "serde_json",
  "specta",
@@ -1142,6 +1130,7 @@ dependencies = [
  "bytemuck",
  "cap-flags",
  "cap-project",
+ "cap-recording",
  "cidre",
  "ffmpeg-hw-device",
  "ffmpeg-next",
@@ -1175,14 +1164,6 @@ dependencies = [
  "windows-sys 0.52.0",
 ]
 
-[[package]]
-name = "cap-video-decode"
-version = "0.1.0"
-dependencies = [
- "ffmpeg-next",
- "ffmpeg-sys-next",
-]
-
 [[package]]
 name = "cargo-platform"
 version = "0.1.8"
@@ -1313,8 +1294,8 @@ dependencies = [
 
 [[package]]
 name = "cidre"
-version = "0.6.0"
-source = "git+https://github.com/yury/cidre?rev=ef04aaabe14ffbbce4a330973a74b6d797d073ff#ef04aaabe14ffbbce4a330973a74b6d797d073ff"
+version = "0.5.0"
+source = "git+https://github.com/yury/cidre?rev=3479c18b9ac81dbb15d0acb3a75edd6b42d044b1#3479c18b9ac81dbb15d0acb3a75edd6b42d044b1"
 dependencies = [
  "cidre-macros",
  "parking_lot",
@@ -1324,7 +1305,7 @@ dependencies = [
 [[package]]
 name = "cidre-macros"
 version = "0.1.0"
-source = "git+https://github.com/yury/cidre?rev=ef04aaabe14ffbbce4a330973a74b6d797d073ff#ef04aaabe14ffbbce4a330973a74b6d797d073ff"
+source = "git+https://github.com/yury/cidre?rev=3479c18b9ac81dbb15d0acb3a75edd6b42d044b1#3479c18b9ac81dbb15d0acb3a75edd6b42d044b1"
 
 [[package]]
 name = "clang-sys"
@@ -3626,15 +3607,6 @@ dependencies = [
  "syn 2.0.90",
 ]
 
-[[package]]
-name = "inventory"
-version = "0.3.19"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "54b12ebb6799019b044deaf431eadfe23245b259bba5a2c0796acec3943a3cdb"
-dependencies = [
- "rustversion",
-]
-
 [[package]]
 name = "ipnet"
 version = "2.9.0"
@@ -4420,7 +4392,7 @@ checksum = "72ef4a56884ca558e5ddb05a1d1e7e1bfd9a68d9ed024c21704cc98872dae1bb"
 [[package]]
 name = "nokhwa"
 version = "0.10.3"
-source = "git+https://github.com/CapSoftware/nokhwa?rev=e309b938ccd6#e309b938ccd6d17afac4017b11e7bda9f6cd9f35"
+source = "git+https://github.com/CapSoftware/nokhwa?rev=d37141b1883d#d37141b1883d7250f7d2ccc9bc199ecaee48d51b"
 dependencies = [
  "flume 0.10.14",
  "image 0.24.9",
@@ -4436,7 +4408,7 @@ dependencies = [
 [[package]]
 name = "nokhwa-bindings-linux"
 version = "0.1.0"
-source = "git+https://github.com/CapSoftware/nokhwa?rev=e309b938ccd6#e309b938ccd6d17afac4017b11e7bda9f6cd9f35"
+source = "git+https://github.com/CapSoftware/nokhwa?rev=d37141b1883d#d37141b1883d7250f7d2ccc9bc199ecaee48d51b"
 dependencies = [
  "nokhwa-core",
  "v4l",
@@ -4446,7 +4418,7 @@ dependencies = [
 [[package]]
 name = "nokhwa-bindings-macos"
 version = "0.2.0"
-source = "git+https://github.com/CapSoftware/nokhwa?rev=e309b938ccd6#e309b938ccd6d17afac4017b11e7bda9f6cd9f35"
+source = "git+https://github.com/CapSoftware/nokhwa?rev=d37141b1883d#d37141b1883d7250f7d2ccc9bc199ecaee48d51b"
 dependencies = [
  "block",
  "cocoa-foundation 0.1.2",
@@ -4461,7 +4433,7 @@ dependencies = [
 [[package]]
 name = "nokhwa-bindings-windows"
 version = "0.4.0"
-source = "git+https://github.com/CapSoftware/nokhwa?rev=e309b938ccd6#e309b938ccd6d17afac4017b11e7bda9f6cd9f35"
+source = "git+https://github.com/CapSoftware/nokhwa?rev=d37141b1883d#d37141b1883d7250f7d2ccc9bc199ecaee48d51b"
 dependencies = [
  "nokhwa-core",
  "once_cell",
@@ -4471,7 +4443,7 @@ dependencies = [
 [[package]]
 name = "nokhwa-core"
 version = "0.1.0"
-source = "git+https://github.com/CapSoftware/nokhwa?rev=e309b938ccd6#e309b938ccd6d17afac4017b11e7bda9f6cd9f35"
+source = "git+https://github.com/CapSoftware/nokhwa?rev=d37141b1883d#d37141b1883d7250f7d2ccc9bc199ecaee48d51b"
 dependencies = [
  "bytes",
  "image 0.24.9",
@@ -6824,7 +6796,6 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "4ccbb212565d2dc177bc15ecb7b039d66c4490da892436a4eee5b394d620c9bc"
 dependencies = [
  "paste",
- "serde_json",
  "specta-macros",
  "thiserror 1.0.63",
  "uuid",
@@ -7953,18 +7924,6 @@ dependencies = [
  "tokio",
 ]
 
-[[package]]
-name = "tokio-stream"
-version = "0.1.17"
-source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "eca58d7bba4a75707817a2c44174253f9236b2d5fbd055602e9d5c07c139a047"
-dependencies = [
- "futures-core",
- "pin-project-lite",
- "tokio",
- "tokio-util",
-]
-
 [[package]]
 name = "tokio-tungstenite"
 version = "0.24.0"
diff --git a/apps/web/app/layout.tsx b/apps/web/app/layout.tsx
index 724ac87ac..52284c6e5 100644
--- a/apps/web/app/layout.tsx
+++ b/apps/web/app/layout.tsx
@@ -7,8 +7,7 @@ import crypto from "crypto";
 import { GeistSans } from "geist/font/sans";
 import type { Metadata } from "next";
 import { Toaster } from "react-hot-toast";
-import { AuthProvider } from "./AuthProvider";
-import { PostHogProvider, Providers } from "./providers";
+import { Providers } from "./providers";
 
 export const metadata: Metadata = {
   title: "Cap — Beautiful screen recordings, owned by you.",
@@ -65,24 +64,19 @@ export default async function RootLayout({
         <meta name="theme-color" content="#ffffff" />
       </head>
       <body>
-        <PostHogProvider>
-          <AuthProvider>
-            <Providers
-              userId={user?.id}
-              intercomHash={intercomHash}
-              name={`${user?.name ?? ""} ${user?.lastName ?? ""}`}
-              email={user?.email ?? ""}
-            >
-              <Toaster />
-              <main className="overflow-hidden w-full">
-                <Navbar auth={user ? true : false} />
-                {children}
-                <Footer />
-              </main>
-              <BentoScript user={user} />
-            </Providers>
-          </AuthProvider>
-        </PostHogProvider>
+        <Providers
+          userId={user?.id}
+          intercomHash={intercomHash}
+          name={`${user?.name ?? ""} ${user?.lastName ?? ""}`}
+          email={user?.email ?? ""}
+        >
+          <Toaster />
+          <main className="w-full overflow-hidden">
+            <Navbar auth={user ? true : false} />
+            {children}
+            <Footer />
+          </main>
+        </Providers>
       </body>
     </html>
   );
diff --git a/apps/web/app/providers.tsx b/apps/web/app/providers.tsx
index dd02cbba7..7377cfec6 100644
--- a/apps/web/app/providers.tsx
+++ b/apps/web/app/providers.tsx
@@ -1,14 +1,18 @@
 "use client";
 
-import { useEffect } from "react";
+import { useEffect, useState } from "react";
 import { identifyUser, initAnonymousUser } from "./utils/analytics";
 import posthog from "posthog-js";
 import { PostHogProvider as PHProvider } from "posthog-js/react";
 import { clientEnv } from "@cap/env";
 import PostHogPageView from "./PosthogPageView";
 import Intercom from "@intercom/messenger-js-sdk";
+import { getServerConfig } from "@/utils/instance/functions";
+import { AuthProvider } from "./AuthProvider";
+import { BentoScript } from "@/components/BentoScript";
 
-export function PostHogProvider({ children }: { children: React.ReactNode }) {
+// Internal PostHog provider component
+function PostHogWrapper({ children }: { children: React.ReactNode }) {
   useEffect(() => {
     posthog.init(clientEnv.NEXT_PUBLIC_POSTHOG_KEY as string, {
       api_host: clientEnv.NEXT_PUBLIC_POSTHOG_HOST as string,
@@ -24,7 +28,8 @@ export function PostHogProvider({ children }: { children: React.ReactNode }) {
   );
 }
 
-export function AnalyticsProvider({
+// Single exported Providers component
+export function Providers({
   children,
   userId,
   intercomHash,
@@ -37,54 +42,72 @@ export function AnalyticsProvider({
   name?: string;
   email?: string;
 }) {
-  if (intercomHash === "") {
-    Intercom({
-      app_id: "efxq71cv",
-      utm_source: "web",
-    });
-  } else {
-    Intercom({
-      app_id: "efxq71cv",
-      user_id: userId ?? "",
-      user_hash: intercomHash ?? "",
-      name: name,
-      email: email,
-      utm_source: "web",
-    });
-  }
+  const [isCapCloud, setIsCapCloud] = useState<boolean | null>(null);
+  const [isLoading, setIsLoading] = useState(true);
+
+  useEffect(() => {
+    const checkIsCapCloud = async () => {
+      try {
+        const serverConfig = await getServerConfig();
+        setIsCapCloud(serverConfig.isCapCloud);
+      } catch (error) {
+        console.error("Failed to get server config:", error);
+        setIsCapCloud(false); // Default to false on error
+      } finally {
+        setIsLoading(false);
+      }
+    };
+
+    checkIsCapCloud();
+  }, []);
 
+  // Initialize Intercom and analytics if isCapCloud is true
   useEffect(() => {
+    if (!isCapCloud) return;
+
+    // Initialize Intercom
+    if (intercomHash === "") {
+      Intercom({
+        app_id: "efxq71cv",
+        utm_source: "web",
+      });
+    } else {
+      Intercom({
+        app_id: "efxq71cv",
+        user_id: userId ?? "",
+        user_hash: intercomHash ?? "",
+        name: name,
+        email: email,
+        utm_source: "web",
+      });
+    }
+
+    // Initialize analytics identification
     if (!userId) {
       initAnonymousUser();
     } else {
       identifyUser(userId);
     }
-  }, [userId]);
+  }, [userId, intercomHash, name, email, isCapCloud]);
 
-  return <>{children}</>;
-}
+  // Show nothing during initial load to prevent flash of content
+  if (isLoading) {
+    return null;
+  }
 
-export function Providers({
-  children,
-  userId,
-  intercomHash,
-  name,
-  email,
-}: {
-  children: React.ReactNode;
-  userId?: string;
-  intercomHash?: string;
-  name?: string;
-  email?: string;
-}) {
+  // Always wrap with AuthProvider, but conditionally wrap with PostHog if isCapCloud
   return (
-    <AnalyticsProvider
-      userId={userId}
-      intercomHash={intercomHash}
-      name={name}
-      email={email}
-    >
-      {children}
-    </AnalyticsProvider>
+    <AuthProvider>
+      {isCapCloud ? (
+        <>
+          <PostHogWrapper>
+            {children}
+            {email && <BentoScript userEmail={email} />}
+          </PostHogWrapper>
+        </>
+      ) : (
+        children
+      )}
+    </AuthProvider>
   );
 }
diff --git a/apps/web/app/superadmin/layout.tsx b/apps/web/app/superadmin/layout.tsx
deleted file mode 100644
index 02356cd54..000000000
--- a/apps/web/app/superadmin/layout.tsx
+++ /dev/null
@@ -1,53 +0,0 @@
-import DynamicSharedLayout from "@/app/dashboard/_components/DynamicSharedLayout";
-import { getCurrentUser } from "@cap/database/auth/session";
-import { redirect } from "next/navigation";
-import { DashboardTemplate } from "@/components/templates/DashboardTemplate";
-import { db } from "@cap/database";
-import {
-  spaceMembers,
-  spaces,
-  spaceInvites,
-  users,
-} from "@cap/database/schema";
-import { eq, inArray, or, and, count, sql } from "drizzle-orm";
-import {
-  addServerSuperAdmin,
-  getServerConfig,
-} from "@/utils/instance/functions";
-
-export default async function SuperAdminLayout({
-  children,
-}: {
-  children: React.ReactNode;
-}) {
-  const user = await getCurrentUser();
-
-  if (!user || !user.id) {
-    redirect("/login");
-  }
-
-  const serverConfig = await getServerConfig();
-
-  const serverSuperAdminIds = serverConfig?.superAdminIds;
-
-  if (serverSuperAdminIds && !serverSuperAdminIds.includes(user.id)) {
-    redirect("/dashboard");
-  }
-
-  if (!serverSuperAdminIds) {
-    await addServerSuperAdmin({ userId: user.id });
-  }
-
-  return (
-    <DynamicSharedLayout
-      spaceData={spaceSelect}
-      activeSpace={findActiveSpace || null}
-      user={user}
-      isSubscribed={isSubscribed}
-    >
-      <div className="full-layout">
-        <DashboardTemplate>{children}</DashboardTemplate>
-      </div>
-    </DynamicSharedLayout>
-  );
-}
diff --git a/apps/web/app/superadmin/page.tsx b/apps/web/app/superadmin/page.tsx
deleted file mode 100644
index e69de29bb..000000000
diff --git a/apps/web/components/BentoScript.tsx b/apps/web/components/BentoScript.tsx
index a044c641e..a62cebb14 100644
--- a/apps/web/components/BentoScript.tsx
+++ b/apps/web/components/BentoScript.tsx
@@ -2,7 +2,6 @@
 
 import { useEffect } from "react";
 import Script from "next/script";
-import { users } from "@cap/database/schema";
 import { usePathname, useSearchParams } from "next/navigation";
 
 declare global {
@@ -11,22 +10,18 @@ declare global {
   }
 }
 
-export function BentoScript({
-  user,
-}: {
-  user?: typeof users.$inferSelect | null;
-}) {
+export function BentoScript({ userEmail }: { userEmail: string }) {
   const pathname = usePathname();
   const searchParams = useSearchParams();
 
   useEffect(() => {
     if (window.bento !== undefined) {
-      if (user) {
-        window.bento.identify(user.email);
+      if (userEmail) {
+        window.bento.identify(userEmail);
       }
       window.bento.view();
     }
-  }, [pathname, searchParams]);
+  }, [pathname, searchParams, userEmail]);
 
   return (
     <Script

From 9f9ac22492948bb9139977bbe0a389de98e137fd Mon Sep 17 00:00:00 2001
From: McPizza0 <gh@l1.io>
Date: Thu, 27 Feb 2025 16:14:07 +0100
Subject: [PATCH 07/17] fix: conditionally use providers

---
 apps/web/app/actions.ts    | 10 ++++++++++
 apps/web/app/layout.tsx    |  4 ++++
 apps/web/app/providers.tsx | 26 +++++++++++++++++---------
 3 files changed, 31 insertions(+), 9 deletions(-)
 create mode 100644 apps/web/app/actions.ts

diff --git a/apps/web/app/actions.ts b/apps/web/app/actions.ts
new file mode 100644
index 000000000..ac6eaf8a0
--- /dev/null
+++ b/apps/web/app/actions.ts
@@ -0,0 +1,10 @@
+"use server";
+
+import { getServerConfig as getServerConfigInternal } from "@/utils/instance/functions";
+
+export async function getServerConfigAction() {
+  const serverConfig = await getServerConfigInternal();
+  return {
+    isCapCloud: serverConfig.isCapCloud,
+  };
+}
diff --git a/apps/web/app/layout.tsx b/apps/web/app/layout.tsx
index 52284c6e5..257015fe8 100644
--- a/apps/web/app/layout.tsx
+++ b/apps/web/app/layout.tsx
@@ -8,6 +8,7 @@ import { GeistSans } from "geist/font/sans";
 import type { Metadata } from "next";
 import { Toaster } from "react-hot-toast";
 import { Providers } from "./providers";
+import { getServerConfig } from "@/utils/instance/functions";
 
 export const metadata: Metadata = {
   title: "Cap — Beautiful screen recordings, owned by you.",
@@ -29,6 +30,8 @@ export default async function RootLayout({
   children: React.ReactNode;
 }) {
   const user = await getCurrentUser();
+  const serverConfig = await getServerConfig();
+
   let intercomHash = "";
   if (process.env.INTERCOM_SECRET) {
     intercomHash = crypto
@@ -69,6 +72,7 @@ export default async function RootLayout({
           intercomHash={intercomHash}
           name={`${user?.name ?? ""} ${user?.lastName ?? ""}`}
           email={user?.email ?? ""}
+          initialIsCapCloud={serverConfig.isCapCloud}
         >
           <Toaster />
           <main className="w-full overflow-hidden">
diff --git a/apps/web/app/providers.tsx b/apps/web/app/providers.tsx
index 7377cfec6..c343398b1 100644
--- a/apps/web/app/providers.tsx
+++ b/apps/web/app/providers.tsx
@@ -7,9 +7,9 @@ import { PostHogProvider as PHProvider } from "posthog-js/react";
 import { clientEnv } from "@cap/env";
 import PostHogPageView from "./PosthogPageView";
 import Intercom from "@intercom/messenger-js-sdk";
-import { getServerConfig } from "@/utils/instance/functions";
 import { AuthProvider } from "./AuthProvider";
 import { BentoScript } from "@/components/BentoScript";
+import { getServerConfigAction } from "./actions";
 
 // Internal PostHog provider component
 function PostHogWrapper({ children }: { children: React.ReactNode }) {
@@ -35,20 +35,30 @@ export function Providers({
   intercomHash,
   name,
   email,
+  initialIsCapCloud,
 }: {
   children: React.ReactNode;
   userId?: string;
   intercomHash?: string;
   name?: string;
   email?: string;
+  initialIsCapCloud?: boolean;
 }) {
-  const [isCapCloud, setIsCapCloud] = useState<boolean | null>(null);
-  const [isLoading, setIsLoading] = useState(true);
+  const [isCapCloud, setIsCapCloud] = useState<boolean | null>(
+    initialIsCapCloud ?? null
+  );
+  const [isLoading, setIsLoading] = useState(
+    initialIsCapCloud !== undefined ? false : true
+  );
 
   useEffect(() => {
     const checkIsCapCloud = async () => {
+      if (initialIsCapCloud !== undefined) {
+        return; // Skip fetching if we already have the value
+      }
+
       try {
-        const serverConfig = await getServerConfig();
+        const serverConfig = await getServerConfigAction();
         setIsCapCloud(serverConfig.isCapCloud);
       } catch (error) {
         console.error("Failed to get server config:", error);
@@ -59,7 +69,7 @@ export function Providers({
     };
 
     checkIsCapCloud();
-  }, []);
+  }, [initialIsCapCloud]);
 
   // Initialize Intercom and analytics if isCapCloud is true
   useEffect(() => {
@@ -100,10 +110,8 @@ export function Providers({
     <AuthProvider>
       {isCapCloud ? (
         <>
-          <PostHogWrapper>
-            {children}
-            {email && <BentoScript userEmail={email} />}
-          </PostHogWrapper>
+          <PostHogWrapper>{children}</PostHogWrapper>
+          {email && <BentoScript userEmail={email} />}
         </>
       ) : (
         children

From 1fee6f06f5d6d5f87eaa26ebdc1f41d126462c1e Mon Sep 17 00:00:00 2001
From: McPizza0 <gh@l1.io>
Date: Thu, 27 Feb 2025 18:30:06 +0100
Subject: [PATCH 08/17] add: disable signups

---
 apps/web/app/actions.ts                      |   9 +
 apps/web/app/api/auth/[...nextauth]/route.ts |  51 +-
 apps/web/app/login/form.tsx                  | 516 +++++++++++--------
 apps/web/app/login/page.tsx                  |  22 +-
 4 files changed, 388 insertions(+), 210 deletions(-)

diff --git a/apps/web/app/actions.ts b/apps/web/app/actions.ts
index ac6eaf8a0..8a7c1e690 100644
--- a/apps/web/app/actions.ts
+++ b/apps/web/app/actions.ts
@@ -1,10 +1,19 @@
 "use server";
 
 import { getServerConfig as getServerConfigInternal } from "@/utils/instance/functions";
+import { serverEnv } from "@cap/env";
 
 export async function getServerConfigAction() {
   const serverConfig = await getServerConfigInternal();
+
+  const googleSigninEnabled = serverEnv.GOOGLE_CLIENT_ID !== undefined;
+  const workosSigninEnabled = serverEnv.WORKOS_CLIENT_ID !== undefined;
   return {
     isCapCloud: serverConfig.isCapCloud,
+    signupsEnabled: serverConfig.signupsEnabled,
+    auth: {
+      google: googleSigninEnabled,
+      workos: workosSigninEnabled,
+    },
   };
 }
diff --git a/apps/web/app/api/auth/[...nextauth]/route.ts b/apps/web/app/api/auth/[...nextauth]/route.ts
index 565ccb6cb..14b686ad5 100644
--- a/apps/web/app/api/auth/[...nextauth]/route.ts
+++ b/apps/web/app/api/auth/[...nextauth]/route.ts
@@ -1,6 +1,55 @@
 import NextAuth from "next-auth";
 import { authOptions } from "@cap/database/auth/auth-options";
+import type { NextAuthOptions } from "next-auth";
+import type { User, Account, Profile } from "next-auth";
+import { getServerConfig } from "@/utils/instance/functions";
+import { db } from "@cap/database";
+import { eq } from "drizzle-orm";
+import { users } from "@cap/database/schema";
 
-const handler = NextAuth(authOptions);
+// Create a modified version of authOptions with additional signIn callback to disable signups if the server is not CapCloud or signups are disabled
+const extendedAuthOptions: NextAuthOptions = {
+  ...authOptions,
+  callbacks: {
+    ...authOptions.callbacks,
+    async signIn(params: {
+      user: User;
+      account: Account | null;
+      profile?: Profile;
+      email?: { verificationRequest?: boolean };
+      credentials?: Record<string, any>;
+    }) {
+      console.log("🔥", { params, user: params.user });
+
+      const serverConfig = await getServerConfig();
+
+      // If CapCloud or signups are enabled, allow all sign-ins
+      if (serverConfig.isCapCloud || serverConfig.signupsEnabled) {
+        return true;
+      }
+
+      // If no email, reject sign-in
+      if (!params.user.email) {
+        return false;
+      }
+
+      // If signups are disabled, only allow users who already exist to sign in
+      const existingUser = await db.query.users.findFirst({
+        where: eq(users.email, params.user.email),
+      });
+
+      // If user exists, allow sign-in
+      if (existingUser) {
+        return true;
+      }
+
+      console.log("🔥 redirecting");
+      // If user doesn't exist and signups are disabled, redirect to login page with error
+      return `/login?error=signupDisabled`;
+    },
+  },
+};
+
+const handler = NextAuth(extendedAuthOptions);
 
 export { handler as GET, handler as POST };
diff --git a/apps/web/app/login/form.tsx b/apps/web/app/login/form.tsx
index 30b4eddeb..156fbe0c1 100644
--- a/apps/web/app/login/form.tsx
+++ b/apps/web/app/login/form.tsx
@@ -2,13 +2,287 @@
 
 import { Button } from "@cap/ui";
 import { signIn } from "next-auth/react";
-import { useSearchParams } from "next/navigation";
+import { useRouter, useSearchParams } from "next/navigation";
 import { useEffect, useState } from "react";
 import { toast } from "react-hot-toast";
 import { Input, Label } from "@cap/ui";
 import { NODE_ENV } from "@cap/env";
 
-export function LoginForm() {
+// Google Login Component
+interface GoogleLoginProps {
+  next: string | null;
+  loading: boolean;
+  oauthError: boolean;
+  showOrgInput: boolean;
+}
+
+function GoogleLoginComponent({
+  next,
+  loading,
+  oauthError,
+  showOrgInput,
+}: GoogleLoginProps) {
+  const handleGoogleSignIn = () => {
+    signIn("google", {
+      ...(next && next.length > 0 ? { callbackUrl: next } : {}),
+    });
+  };
+
+  if (oauthError) {
+    return (
+      <div className="mb-4 p-4 bg-red-600 rounded-lg">
+        <p className="text-sm text-gray-50">
+          It looks like you've previously used this email to sign up via email
+          login. Please enter your email below to receive a sign in link.
+        </p>
+      </div>
+    );
+  }
+
+  if (showOrgInput) {
+    return null;
+  }
+
+  return (
+    <>
+      <Button
+        variant="dark"
+        size="lg"
+        className="h-12 text-lg flex items-center justify-center space-x-2"
+        onClick={handleGoogleSignIn}
+        disabled={loading}
+      >
+        <svg
+          className="w-4 h-4"
+          xmlns="http://www.w3.org/2000/svg"
+          fill="none"
+          viewBox="0 0 12 12"
+        >
+          <g fill="#E1E1E6" clipPath="url(#clip0)">
+            <path d="M11.762 6.138c0-.408-.033-.818-.104-1.22h-5.66V7.23H9.24a2.78 2.78 0 0 1-1.2 1.823v1.5h1.934c1.135-1.046 1.788-2.589 1.788-4.414"></path>
+            <path d="M5.999 12c1.618 0 2.983-.531 3.977-1.448l-1.933-1.5c-.538.367-1.233.574-2.042.574-1.565 0-2.892-1.056-3.369-2.476H.637v1.545A6 6 0 0 0 6 12"></path>
+            <path d="M2.63 7.15a3.6 3.6 0 0 1 0-2.297V3.307H.637a6 6 0 0 0 0 5.388z"></path>
+            <path d="M5.999 2.374a3.26 3.26 0 0 1 2.302.9l1.713-1.713A5.77 5.77 0 0 0 5.999 0 6 6 0 0 0 .637 3.307L2.63 4.852C3.104 3.43 4.434 2.374 6 2.374"></path>
+          </g>
+          <defs>
+            <clipPath id="clip0">
+              <path fill="#fff" d="M0 0h11.762v12H0z"></path>
+            </clipPath>
+          </defs>
+        </svg>
+        <span className="text-gray-50">Continue with Google</span>
+      </Button>
+
+      <div className="relative">
+        <div className="absolute inset-0 flex items-center">
+          <div className="w-full border-t border-blue-100" />
+        </div>
+        <div className="relative flex justify-center">
+          <span className="bg-white px-2 text-gray-500 rounded-xl text-xs">
+            Or
+          </span>
+        </div>
+      </div>
+    </>
+  );
+}
+
+// WorkOS (SSO) Login Component
+interface WorkOSLoginProps {
+  loading: boolean;
+  showOrgInput: boolean;
+  setShowOrgInput: (show: boolean) => void;
+}
+
+function WorkOSLoginComponent({
+  loading,
+  showOrgInput,
+  setShowOrgInput,
+}: WorkOSLoginProps) {
+  const [spaceId, setSpaceId] = useState("");
+  const [spaceName, setSpaceName] = useState<string | null>(null);
+
+  const handleSpaceLookup = async (e: React.FormEvent) => {
+    e.preventDefault();
+    if (!spaceId) {
+      toast.error("Please enter a space ID");
+      return;
+    }
+
+    try {
+      const response = await fetch(
+        `/api/settings/workspace/lookup?spaceId=${encodeURIComponent(spaceId)}`
+      );
+      const data = await response.json();
+
+      if (!response.ok) {
+        throw new Error(data.error || "Failed to look up workspace");
+      }
+
+      signIn("workos", undefined, {
+        organization: data.organizationId,
+        connection: data.connectionId,
+      });
+    } catch (error) {
+      console.error("Lookup Error:", error);
+      toast.error("Space not found or SSO not configured");
+    }
+  };
+
+  if (!showOrgInput) {
+    return (
+      <Button
+        variant="white"
+        size="sm"
+        className="h-9 text-lg flex items-center justify-center space-x-2 border-gray-300"
+        onClick={() => setShowOrgInput(true)}
+        disabled={loading}
+      >
+        <span className="text-gray-500">Continue with SAML SSO</span>
+      </Button>
+    );
+  }
+
+  return (
+    <form onSubmit={handleSpaceLookup} className="space-y-2">
+      <div>
+        <Label htmlFor="spaceId">Space ID</Label>
+        <Input
+          id="spaceId"
+          value={spaceId}
+          onChange={(e) => setSpaceId(e.target.value)}
+          className="w-full max-w-full"
+        />
+      </div>
+      {spaceName && (
+        <p className="text-sm text-gray-500">Signing in to: {spaceName}</p>
+      )}
+      <div>
+        <Button type="submit" variant="dark" className="w-full max-w-full">
+          Continue with SSO
+        </Button>
+      </div>
+    </form>
+  );
+}
+
+// Email Login Component
+interface EmailLoginProps {
+  next: string | null;
+  loading: boolean;
+  setLoading: (loading: boolean) => void;
+  email: string;
+  setEmail: (email: string) => void;
+  emailSent: boolean;
+  setEmailSent: (sent: boolean) => void;
+  showOrgInput: boolean;
+}
+
+function EmailLoginComponent({
+  next,
+  loading,
+  setLoading,
+  email,
+  setEmail,
+  emailSent,
+  setEmailSent,
+  showOrgInput,
+}: EmailLoginProps) {
+  const router = useRouter();
+
+  if (showOrgInput) {
+    return null;
+  }
+
+  const handleEmailSubmit = async (e: React.FormEvent) => {
+    e.preventDefault();
+    if (!email) return;
+
+    setLoading(true);
+    signIn("email", {
+      email,
+      redirect: false,
+      ...(next && next.length > 0 ? { callbackUrl: next } : {}),
+    })
+      .then((res) => {
+        console.log("🔥", { res });
+        setLoading(false);
+        if (res?.ok && !res?.error) {
+          setEmail("");
+          setEmailSent(true);
+          toast.success("Email sent - check your inbox!");
+        } else {
+          console.log("🔥 res", res?.error);
+          toast.error("Error sending email - try again?");
+        }
+      })
+      .catch((err) => {
+        setEmailSent(false);
+        setLoading(false);
+        // This is a workaround for a bug in next-auth where it throws an error when the the callback returns a URL but redirect is false
+        if (err.message === "Failed to construct 'URL': Invalid URL") {
+          router.push("/login?error=signupDisabled");
+        } else {
+          toast.error("Error sending email - try again?");
+        }
+      });
+  };
+
+  return (
+    <form onSubmit={handleEmailSubmit} className="flex flex-col space-y-3">
+      <div>
+        <input
+          id="email"
+          name="email"
+          autoFocus
+          type="email"
+          placeholder={emailSent ? "" : "tim@apple.com"}
+          autoComplete="email"
+          required
+          value={email}
+          disabled={emailSent}
+          onChange={(e) => {
+            setEmail(e.target.value);
+          }}
+          className="block w-full appearance-none rounded-full border border-gray-300 px-3 h-12 placeholder-gray-400 shadow-sm focus:border-black focus:outline-none focus:ring-black text-lg"
+        />
+        {NODE_ENV === "development" && (
+          <div className="py-3 px-6 flex items-center justify-center bg-red-600 rounded-xl mt-3">
+            <p className="text-white text-lg">
+              <span className="font-bold text-white">Development mode:</span>{" "}
+              Auth URL will be logged to your dev console.
+            </p>
+          </div>
+        )}
+      </div>
+      <Button
+        variant="primary"
+        size="lg"
+        className="h-12 text-lg"
+        type="submit"
+        disabled={loading || emailSent}
+      >
+        {emailSent
+          ? NODE_ENV === "development"
+            ? "Email sent to your terminal"
+            : "Email sent to your inbox"
+          : "Continue with Email"}
+      </Button>
+    </form>
+  );
+}
+
+// Main Login Form Component
+interface LoginFormProps {
+  serverConfig: {
+    auth: {
+      google?: boolean;
+      workos?: boolean;
+    };
+  };
+}
+
+function LoginFormClient({ serverConfig }: LoginFormProps) {
   const searchParams = useSearchParams();
   const next = searchParams?.get("next");
   const [email, setEmail] = useState("");
@@ -16,9 +290,6 @@ export function LoginForm() {
   const [emailSent, setEmailSent] = useState(false);
   const [oauthError, setOauthError] = useState(false);
   const [showOrgInput, setShowOrgInput] = useState(false);
-  const [organizationId, setOrganizationId] = useState("");
-  const [spaceId, setSpaceId] = useState("");
-  const [spaceName, setSpaceName] = useState<string | null>(null);
 
   useEffect(() => {
     const error = searchParams?.get("error");
@@ -68,212 +339,40 @@ export function LoginForm() {
     }
   }, [emailSent]);
 
-  const handleGoogleSignIn = () => {
-    signIn("google", {
-      ...(next && next.length > 0 ? { callbackUrl: next } : {}),
-    });
-  };
-
-  const handleSpaceLookup = async (e: React.FormEvent) => {
-    e.preventDefault();
-    if (!spaceId) {
-      toast.error("Please enter a space ID");
-      return;
-    }
-
-    try {
-      const response = await fetch(
-        `/api/settings/workspace/lookup?spaceId=${encodeURIComponent(spaceId)}`
-      );
-      const data = await response.json();
-
-      if (!response.ok) {
-        throw new Error(data.error || "Failed to look up workspace");
-      }
-
-      signIn("workos", undefined, {
-        organization: data.organizationId,
-        connection: data.connectionId,
-      });
-    } catch (error) {
-      console.error("Lookup Error:", error);
-      toast.error("Space not found or SSO not configured");
-    }
-  };
-
   return (
     <>
       <div className="flex flex-col space-y-3 fade-in-down animate-delay-2">
-        {!oauthError && (
-          <>
-            {showOrgInput === false && (
-              <Button
-                variant="dark"
-                size="lg"
-                className="h-12 text-lg flex items-center justify-center space-x-2"
-                onClick={handleGoogleSignIn}
-                disabled={loading}
-              >
-                <svg
-                  className="w-4 h-4"
-                  xmlns="http://www.w3.org/2000/svg"
-                  fill="none"
-                  viewBox="0 0 12 12"
-                >
-                  <g fill="#E1E1E6" clipPath="url(#clip0)">
-                    <path d="M11.762 6.138c0-.408-.033-.818-.104-1.22h-5.66V7.23H9.24a2.78 2.78 0 0 1-1.2 1.823v1.5h1.934c1.135-1.046 1.788-2.589 1.788-4.414"></path>
-                    <path d="M5.999 12c1.618 0 2.983-.531 3.977-1.448l-1.933-1.5c-.538.367-1.233.574-2.042.574-1.565 0-2.892-1.056-3.369-2.476H.637v1.545A6 6 0 0 0 6 12"></path>
-                    <path d="M2.63 7.15a3.6 3.6 0 0 1 0-2.297V3.307H.637a6 6 0 0 0 0 5.388z"></path>
-                    <path d="M5.999 2.374a3.26 3.26 0 0 1 2.302.9l1.713-1.713A5.77 5.77 0 0 0 5.999 0 6 6 0 0 0 .637 3.307L2.63 4.852C3.104 3.43 4.434 2.374 6 2.374"></path>
-                  </g>
-                  <defs>
-                    <clipPath id="clip0">
-                      <path fill="#fff" d="M0 0h11.762v12H0z"></path>
-                    </clipPath>
-                  </defs>
-                </svg>
-                <span className="text-gray-50">Continue with Google</span>
-              </Button>
-            )}
-
-            {showOrgInput === false && (
-              <div className="relative">
-                <div className="absolute inset-0 flex items-center">
-                  <div className="w-full border-t border-blue-100" />
-                </div>
-                <div className="relative flex justify-center">
-                  <span className="bg-white px-2 text-gray-500 rounded-xl text-xs">
-                    Or
-                  </span>
-                </div>
-              </div>
-            )}
-          </>
+        {/* Google Login */}
+        {serverConfig.auth.google && (
+          <GoogleLoginComponent
+            next={next}
+            loading={loading}
+            oauthError={oauthError}
+            showOrgInput={showOrgInput}
+          />
         )}
 
-        {oauthError && (
-          <div className="mb-4 p-4 bg-red-600 rounded-lg">
-            <p className="text-sm text-gray-50">
-              It looks like you've previously used this email to sign up via
-              email login. Please enter your email below to receive a sign in
-              link.
-            </p>
-          </div>
-        )}
+        {/* Email Login */}
+        <EmailLoginComponent
+          next={next}
+          loading={loading}
+          setLoading={setLoading}
+          email={email}
+          setEmail={setEmail}
+          emailSent={emailSent}
+          setEmailSent={setEmailSent}
+          showOrgInput={showOrgInput}
+        />
 
-        <form
-          onSubmit={async (e) => {
-            e.preventDefault();
-            if (!email) return;
-
-            setLoading(true);
-            signIn("email", {
-              email,
-              redirect: false,
-              ...(next && next.length > 0 ? { callbackUrl: next } : {}),
-            })
-              .then((res) => {
-                setLoading(false);
-                if (res?.ok && !res?.error) {
-                  setEmail("");
-                  setEmailSent(true);
-                  toast.success("Email sent - check your inbox!");
-                } else {
-                  toast.error("Error sending email - try again?");
-                }
-              })
-              .catch((err) => {
-                setEmailSent(false);
-                setLoading(false);
-                toast.error("Error sending email - try again?");
-              });
-          }}
-          className="flex flex-col space-y-3"
-        >
-          {showOrgInput === false && (
-            <>
-              <div>
-                <input
-                  id="email"
-                  name="email"
-                  autoFocus
-                  type="email"
-                  placeholder={emailSent ? "" : "tim@apple.com"}
-                  autoComplete="email"
-                  required
-                  value={email}
-                  disabled={emailSent}
-                  onChange={(e) => {
-                    setEmail(e.target.value);
-                  }}
-                  className="block w-full appearance-none rounded-full border border-gray-300 px-3 h-12 placeholder-gray-400 shadow-sm focus:border-black focus:outline-none focus:ring-black text-lg"
-                />
-                {NODE_ENV === "development" && (
-                  <div className="py-3 px-6 flex items-center justify-center bg-red-600 rounded-xl mt-3">
-                    <p className="text-white text-lg">
-                      <span className="font-bold text-white">
-                        Development mode:
-                      </span>{" "}
-                      Auth URL will be logged to your dev console.
-                    </p>
-                  </div>
-                )}
-              </div>
-              <Button
-                variant="primary"
-                size="lg"
-                className="h-12 text-lg"
-                type="submit"
-                disabled={loading || emailSent}
-              >
-                {emailSent
-                  ? NODE_ENV === "development"
-                    ? "Email sent to your terminal"
-                    : "Email sent to your inbox"
-                  : "Continue with Email"}
-              </Button>
-            </>
-          )}
-
-          {showOrgInput === false && (
-            <Button
-              variant="white"
-              size="sm"
-              className="h-9 text-lg flex items-center justify-center space-x-2 border-gray-300"
-              onClick={() => setShowOrgInput(true)}
-              disabled={loading}
-            >
-              <span className="text-gray-500">Continue with SAML SSO</span>
-            </Button>
-          )}
-        </form>
-        {showOrgInput && (
-          <form onSubmit={handleSpaceLookup} className="space-y-2">
-            <div>
-              <Label htmlFor="spaceId">Space ID</Label>
-              <Input
-                id="spaceId"
-                value={spaceId}
-                onChange={(e) => setSpaceId(e.target.value)}
-                className="w-full max-w-full"
-              />
-            </div>
-            {spaceName && (
-              <p className="text-sm text-gray-500">
-                Signing in to: {spaceName}
-              </p>
-            )}
-            <div>
-              <Button
-                type="submit"
-                variant="dark"
-                className="w-full max-w-full"
-              >
-                Continue with SSO
-              </Button>
-            </div>
-          </form>
+        {/* WorkOS Login */}
+        {serverConfig.auth.workos && (
+          <WorkOSLoginComponent
+            loading={loading}
+            showOrgInput={showOrgInput}
+            setShowOrgInput={setShowOrgInput}
+          />
         )}
+
         <p className="text-xs text-gray-500 pt-2">
           By typing your email and clicking continue, you acknowledge that you
           have both read and agree to Cap's{" "}
@@ -312,3 +411,12 @@ export function LoginForm() {
     </>
   );
 }
+
+// Server component to fetch config and render client component
+import { getServerConfigAction } from "../actions";
+
+export async function LoginForm() {
+  const serverConfig = await getServerConfigAction();
+
+  return <LoginFormClient serverConfig={serverConfig} />;
+}
diff --git a/apps/web/app/login/page.tsx b/apps/web/app/login/page.tsx
index 646dfda3e..411fb97a1 100644
--- a/apps/web/app/login/page.tsx
+++ b/apps/web/app/login/page.tsx
@@ -3,14 +3,21 @@ import { Suspense } from "react";
 import { LoginForm } from "./form";
 import { getCurrentUser } from "@cap/database/auth/session";
 import { redirect } from "next/navigation";
+import Loading from "../dashboard/loading";
 
-export default async function LoginPage() {
+export default async function LoginPage({
+  searchParams,
+}: {
+  searchParams: { error?: string };
+}) {
   const session = await getCurrentUser();
 
   if (session) {
     redirect("/dashboard");
   }
 
+  const showSignupDisabledError = searchParams.error === "signupDisabled";
+
   return (
     <div className="muted-custom-bg w-full h-screen flex items-center justify-center">
       <div className="w-full max-w-lg relative overflow-hidden sm:rounded-2xl p-4 space-y-4">
@@ -25,14 +32,19 @@ export default async function LoginPage() {
             Beautiful screen recordings, owned by you.
           </p>
         </div>
+        {showSignupDisabledError && (
+          <div className="mb-4 px-6 py-4 bg-red-600 rounded-lg flex flex-col gap-2">
+            <p className="font-bold text-gray-50">Sign-ups are disabled</p>
+            <p className=" text-gray-50">
+              Only existing users can sign in at this time.
+            </p>
+          </div>
+        )}
         <div className="flex flex-col space-y-3">
           <Suspense
             fallback={
               <>
-                <Button disabled={true} variant="primary" />
-                <Button disabled={true} variant="secondary" />
-                <Button disabled={true} variant="destructive" />
-                <div className="mx-auto h-5 w-3/4 rounded-lg bg-gray-100" />
+                <Loading />
               </>
             }
           >

From 619e0a79a7f664154d055010ff1ba03e35197ec8 Mon Sep 17 00:00:00 2001
From: McPizza0 <gh@l1.io>
Date: Thu, 27 Feb 2025 18:46:09 +0100
Subject: [PATCH 09/17] add: allow signup for invited users when signups
 disabled

---
 apps/web/app/api/auth/[...nextauth]/route.ts | 15 ++++++++++-----
 1 file changed, 10 insertions(+), 5 deletions(-)

diff --git a/apps/web/app/api/auth/[...nextauth]/route.ts b/apps/web/app/api/auth/[...nextauth]/route.ts
index 14b686ad5..d92ef0dc7 100644
--- a/apps/web/app/api/auth/[...nextauth]/route.ts
+++ b/apps/web/app/api/auth/[...nextauth]/route.ts
@@ -5,7 +5,7 @@ import type { User, Account, Profile } from "next-auth";
 import { getServerConfig } from "@/utils/instance/functions";
 import { db } from "@cap/database";
 import { eq } from "drizzle-orm";
-import { users } from "@cap/database/schema";
+import { spaceInvites, users } from "@cap/database/schema";
 
 // Create a modified version of authOptions with additional signIn callback to disable signups if the server is not CapCloud or signups are disabled
 const extendedAuthOptions: NextAuthOptions = {
@@ -33,18 +33,23 @@ const extendedAuthOptions: NextAuthOptions = {
         return false;
       }
 
-      // If signups are disabled, only allow users who already exist to sign in
       const existingUser = await db.query.users.findFirst({
         where: eq(users.email, params.user.email),
       });
 
-      // If user exists, allow sign-in
       if (existingUser) {
         return true;
       }
 
-      console.log("🔥 redirecting");
-      // If user doesn't exist and signups are disabled, redirect to login page with error
+      const matchedInvitedUser = await db.query.spaceInvites.findFirst({
+        where: eq(spaceInvites.invitedEmail, params.user.email),
+      });
+
+      if (matchedInvitedUser) {
+        return true;
+      }
+
+      // If user doesn't exist, isnt invited and signups are disabled, redirect to login page with error
       return `/login?error=signupDisabled`;
     },
   },

From deac7e29da684359f2e947bbc748f3c28270a384 Mon Sep 17 00:00:00 2001
From: McPizza0 <gh@l1.io>
Date: Fri, 28 Feb 2025 15:05:18 +0100
Subject: [PATCH 10/17] add: server admin dash

---
 apps/web/app/api/admin/server-config/route.ts |  93 ++++
 apps/web/app/api/auth/[...nextauth]/route.ts  |   6 +-
 apps/web/app/dashboard/admin/actions.ts       | 192 ++++++-
 apps/web/app/dashboard/admin/page.tsx         |  64 ++-
 .../dashboard/admin/server-config/page.tsx    | 467 ++++++++++++++++++
 .../dashboard/admin/server-config/schema.ts   |  22 +
 .../settings/workspace/Workspace.tsx          | 157 +++---
 apps/web/utils/instance/constants.ts          |   5 +-
 apps/web/utils/instance/functions.ts          |   2 +-
 9 files changed, 921 insertions(+), 87 deletions(-)
 create mode 100644 apps/web/app/api/admin/server-config/route.ts
 create mode 100644 apps/web/app/dashboard/admin/server-config/page.tsx
 create mode 100644 apps/web/app/dashboard/admin/server-config/schema.ts

diff --git a/apps/web/app/api/admin/server-config/route.ts b/apps/web/app/api/admin/server-config/route.ts
new file mode 100644
index 000000000..e27c95731
--- /dev/null
+++ b/apps/web/app/api/admin/server-config/route.ts
@@ -0,0 +1,93 @@
+import { db } from "@cap/database";
+import { getCurrentUser } from "@cap/database/auth/session";
+import { serverConfigTable } from "@cap/database/schema";
+import { eq } from "drizzle-orm";
+import { NextRequest, NextResponse } from "next/server";
+
+// Helper function to check if user is a super admin
+async function isSuperAdmin() {
+  const currentUser = await getCurrentUser();
+  if (!currentUser) return false;
+
+  const serverConfig = await db.query.serverConfigTable.findFirst({
+    where: eq(serverConfigTable.id, 1),
+  });
+
+  if (!serverConfig) return false;
+
+  return (
+    serverConfig.superAdminIds.includes(currentUser.id) ||
+    currentUser.email.endsWith("@cap.so")
+  );
+}
+
+// GET handler to retrieve server configuration
+export async function GET() {
+  // Check if user is authorized
+  if (!(await isSuperAdmin())) {
+    return NextResponse.json({ error: "Not authorized" }, { status: 403 });
+  }
+
+  try {
+    const serverConfig = await db.query.serverConfigTable.findFirst({
+      where: eq(serverConfigTable.id, 1),
+    });
+
+    return NextResponse.json(serverConfig);
+  } catch (error) {
+    console.error("Error fetching server config:", error);
+    return NextResponse.json(
+      { error: "Failed to fetch server configuration" },
+      { status: 500 }
+    );
+  }
+}
+
+// PUT handler to update server configuration
+export async function PUT(request: NextRequest) {
+  // Check if user is authorized
+  if (!(await isSuperAdmin())) {
+    return NextResponse.json({ error: "Not authorized" }, { status: 403 });
+  }
+
+  try {
+    const body = await request.json();
+
+    // Validate the request body
+    const validFields = [
+      "licenseKey",
+      "signupsEnabled",
+      "emailSendFromName",
+      "emailSendFromEmail",
+      "superAdminIds",
+    ];
+
+    const updateData: Record<string, any> = {};
+
+    // Only include valid fields in the update
+    for (const field of validFields) {
+      if (body[field] !== undefined) {
+        updateData[field] = body[field];
+      }
+    }
+
+    // Update the server config
+    await db
+      .update(serverConfigTable)
+      .set(updateData)
+      .where(eq(serverConfigTable.id, 1));
+
+    // Get the updated config
+    const updatedConfig = await db.query.serverConfigTable.findFirst({
+      where: eq(serverConfigTable.id, 1),
+    });
+
+    return NextResponse.json(updatedConfig);
+  } catch (error) {
+    console.error("Error updating server config:", error);
+    return NextResponse.json(
+      { error: "Failed to update server configuration" },
+      { status: 500 }
+    );
+  }
+}
diff --git a/apps/web/app/api/auth/[...nextauth]/route.ts b/apps/web/app/api/auth/[...nextauth]/route.ts
index d92ef0dc7..406eb3447 100644
--- a/apps/web/app/api/auth/[...nextauth]/route.ts
+++ b/apps/web/app/api/auth/[...nextauth]/route.ts
@@ -19,11 +19,9 @@ const extendedAuthOptions: NextAuthOptions = {
       email?: { verificationRequest?: boolean };
       credentials?: Record<string, any>;
     }) {
-      console.log("🔥", { params, user: params.user });
-
       const serverConfig = await getServerConfig();
 
-      // If CapCloud or signups are enabled, allow all sign-ins
+      // If CapCloud or signups are enabled, allow all sign-ins and registrations
       if (serverConfig.isCapCloud || serverConfig.signupsEnabled) {
         return true;
       }
@@ -37,10 +35,12 @@ const extendedAuthOptions: NextAuthOptions = {
         where: eq(users.email, params.user.email),
       });
 
+      // If user exists, allow sign-in
       if (existingUser) {
         return true;
       }
 
+      // If user is invited, allow sign-in (workaround for signups being disabled)
       const matchedInvitedUser = await db.query.spaceInvites.findFirst({
         where: eq(spaceInvites.invitedEmail, params.user.email),
       });
diff --git a/apps/web/app/dashboard/admin/actions.ts b/apps/web/app/dashboard/admin/actions.ts
index 677d4da51..c061e34ed 100644
--- a/apps/web/app/dashboard/admin/actions.ts
+++ b/apps/web/app/dashboard/admin/actions.ts
@@ -2,8 +2,9 @@
 
 import { db } from "@cap/database";
 import { getCurrentUser } from "@cap/database/auth/session";
-import { users } from "@cap/database/schema";
-import { eq } from "drizzle-orm";
+import { users, serverConfigTable } from "@cap/database/schema";
+import { eq, like, inArray } from "drizzle-orm";
+import { ServerConfigFormValues, SuperAdminUser } from "./server-config/schema";
 
 export async function lookupUserById(data: FormData) {
   const currentUser = await getCurrentUser();
@@ -16,3 +17,190 @@ export async function lookupUserById(data: FormData) {
 
   return user;
 }
+
+// Helper function to check if user is a super admin
+async function isSuperAdmin() {
+  const currentUser = await getCurrentUser();
+  if (!currentUser) return false;
+
+  const serverConfig = await db.query.serverConfigTable.findFirst({
+    where: eq(serverConfigTable.id, 1),
+  });
+
+  if (!serverConfig) return false;
+
+  return (
+    serverConfig.superAdminIds.includes(currentUser.id) ||
+    currentUser.email.endsWith("@cap.so")
+  );
+}
+
+// Get current user ID
+export async function getCurrentUserId() {
+  const currentUser = await getCurrentUser();
+  return currentUser?.id || null;
+}
+
+// Get server configuration
+export async function getServerConfiguration() {
+  if (!(await isSuperAdmin())) {
+    throw new Error("Not authorized");
+  }
+
+  const serverConfig = await db.query.serverConfigTable.findFirst({
+    where: eq(serverConfigTable.id, 1),
+  });
+
+  return serverConfig;
+}
+
+// Update server configuration with typed values
+export async function updateServerConfiguration(
+  values: ServerConfigFormValues
+) {
+  if (!(await isSuperAdmin())) {
+    throw new Error("Not authorized");
+  }
+
+  // Prepare update data
+  const updateData: Record<string, any> = {
+    licenseKey: values.licenseKey,
+    signupsEnabled: values.signupsEnabled,
+    emailSendFromName: values.emailSendFromName,
+    emailSendFromEmail: values.emailSendFromEmail,
+  };
+
+  await db
+    .update(serverConfigTable)
+    .set(updateData)
+    .where(eq(serverConfigTable.id, 1));
+
+  return await db.query.serverConfigTable.findFirst({
+    where: eq(serverConfigTable.id, 1),
+  });
+}
+
+// Search for users by email
+export async function searchUsersByEmail(
+  email: string
+): Promise<SuperAdminUser[]> {
+  if (!(await isSuperAdmin())) {
+    throw new Error("Not authorized");
+  }
+
+  if (!email || email.trim().length < 3) {
+    return [];
+  }
+
+  const searchResults = await db
+    .select({
+      id: users.id,
+      name: users.name,
+      email: users.email,
+      image: users.image,
+    })
+    .from(users)
+    .where(like(users.email, `%${email}%`))
+    .limit(5);
+
+  return searchResults;
+}
+
+// Add user to super admin list
+export async function addSuperAdmin(userId: string) {
+  if (!(await isSuperAdmin())) {
+    throw new Error("Not authorized");
+  }
+
+  const serverConfig = await db.query.serverConfigTable.findFirst({
+    where: eq(serverConfigTable.id, 1),
+  });
+
+  if (!serverConfig) {
+    throw new Error("Server configuration not found");
+  }
+
+  // Check if user is already a super admin
+  if (serverConfig.superAdminIds.includes(userId)) {
+    return serverConfig;
+  }
+
+  // Add user to super admin list
+  const updatedSuperAdminIds = [...serverConfig.superAdminIds, userId];
+
+  await db
+    .update(serverConfigTable)
+    .set({ superAdminIds: updatedSuperAdminIds })
+    .where(eq(serverConfigTable.id, 1));
+
+  return await db.query.serverConfigTable.findFirst({
+    where: eq(serverConfigTable.id, 1),
+  });
+}
+
+// Remove user from super admin list
+export async function removeSuperAdmin(userId: string) {
+  if (!(await isSuperAdmin())) {
+    throw new Error("Not authorized");
+  }
+
+  // Prevent removing yourself
+  const currentUser = await getCurrentUser();
+  if (!currentUser) {
+    throw new Error("User not authenticated");
+  }
+
+  if (userId === currentUser.id) {
+    throw new Error("You cannot remove yourself from super admins");
+  }
+
+  const serverConfig = await db.query.serverConfigTable.findFirst({
+    where: eq(serverConfigTable.id, 1),
+  });
+
+  if (!serverConfig) {
+    throw new Error("Server configuration not found");
+  }
+
+  // Remove user from super admin list
+  const updatedSuperAdminIds = serverConfig.superAdminIds.filter(
+    (id) => id !== userId
+  );
+
+  await db
+    .update(serverConfigTable)
+    .set({ superAdminIds: updatedSuperAdminIds })
+    .where(eq(serverConfigTable.id, 1));
+
+  return await db.query.serverConfigTable.findFirst({
+    where: eq(serverConfigTable.id, 1),
+  });
+}
+
+// Get super admin users with details
+export async function getSuperAdminUsers(): Promise<SuperAdminUser[]> {
+  if (!(await isSuperAdmin())) {
+    throw new Error("Not authorized");
+  }
+
+  const serverConfig = await db.query.serverConfigTable.findFirst({
+    where: eq(serverConfigTable.id, 1),
+  });
+
+  if (!serverConfig || !serverConfig.superAdminIds.length) {
+    return [];
+  }
+
+  // Get user details for all super admins
+  const superAdminUsers = await db
+    .select({
+      id: users.id,
+      name: users.name,
+      email: users.email,
+      image: users.image,
+    })
+    .from(users)
+    .where(inArray(users.id, serverConfig.superAdminIds));
+
+  return superAdminUsers;
+}
diff --git a/apps/web/app/dashboard/admin/page.tsx b/apps/web/app/dashboard/admin/page.tsx
index 6e1f6a656..fa3bec1b8 100644
--- a/apps/web/app/dashboard/admin/page.tsx
+++ b/apps/web/app/dashboard/admin/page.tsx
@@ -2,24 +2,62 @@
 
 import { useState } from "react";
 import { lookupUserById } from "./actions";
+import Link from "next/link";
+import { Button } from "@cap/ui";
 
-export default function () {
+export default function AdminPage() {
   const [data, setData] = useState<any>(null);
 
   return (
-    <div>
-      <label>Lookup user by ID</label>
-      <form
-        onSubmit={(e) => {
-          e.preventDefault();
-          lookupUserById(new FormData(e.currentTarget)).then(setData);
-        }}
-      >
-        <input type="text" name="id" />
-        <button type="submit">Lookup</button>
-      </form>
+    <div className="p-4 max-w-4xl mx-auto">
+      <h1 className="text-2xl font-bold mb-6">Admin Dashboard</h1>
 
-      {data && <pre>{JSON.stringify(data, null, 4)}</pre>}
+      <div className="grid grid-cols-1 md:grid-cols-2 gap-6 mb-8">
+        <div className="bg-white p-6 rounded-lg shadow-sm border border-gray-200">
+          <h2 className="text-xl font-semibold mb-4">Server Configuration</h2>
+          <p className="text-gray-600 mb-4">
+            Manage server settings including license key, signup settings, and
+            email configuration.
+          </p>
+          <Link href="/dashboard/admin/server-config">
+            <Button variant="primary">Manage Configuration</Button>
+          </Link>
+        </div>
+
+        <div className="bg-white p-6 rounded-lg shadow-sm border border-gray-200">
+          <h2 className="text-xl font-semibold mb-4">User Lookup</h2>
+          <p className="text-gray-600 mb-4">Look up user information by ID.</p>
+          <form
+            onSubmit={(e) => {
+              e.preventDefault();
+              lookupUserById(new FormData(e.currentTarget)).then(setData);
+            }}
+            className="space-y-4"
+          >
+            <div>
+              <label className="block text-sm font-medium mb-1">User ID</label>
+              <input
+                type="text"
+                name="id"
+                className="w-full p-2 border border-gray-300 rounded"
+                placeholder="Enter user ID"
+              />
+            </div>
+            <Button type="submit" variant="primary">
+              Lookup
+            </Button>
+          </form>
+        </div>
+      </div>
+
+      {data && (
+        <div className="bg-white p-6 rounded-lg shadow-sm border border-gray-200">
+          <h2 className="text-xl font-semibold mb-4">User Information</h2>
+          <pre className="bg-gray-100 p-4 rounded overflow-auto max-h-96">
+            {JSON.stringify(data, null, 4)}
+          </pre>
+        </div>
+      )}
     </div>
   );
 }
diff --git a/apps/web/app/dashboard/admin/server-config/page.tsx b/apps/web/app/dashboard/admin/server-config/page.tsx
new file mode 100644
index 000000000..85442fb21
--- /dev/null
+++ b/apps/web/app/dashboard/admin/server-config/page.tsx
@@ -0,0 +1,467 @@
+"use client";
+
+import { useState, useEffect } from "react";
+import {
+  getServerConfiguration,
+  updateServerConfiguration,
+  searchUsersByEmail,
+  addSuperAdmin,
+  removeSuperAdmin,
+  getSuperAdminUsers,
+  getCurrentUserId,
+} from "../actions";
+import { Button } from "@cap/ui";
+import { Input } from "@cap/ui";
+import { useForm } from "react-hook-form";
+import { zodResolver } from "@hookform/resolvers/zod";
+import {
+  ServerConfigFormValues,
+  SuperAdminUser,
+  serverConfigSchema,
+} from "./schema";
+
+export default function ServerConfigPage() {
+  const [data, setData] = useState<any>(null);
+  const [loading, setLoading] = useState(true);
+  const [error, setError] = useState<string | null>(null);
+  const [success, setSuccess] = useState(false);
+
+  // React Hook Form setup
+  const {
+    register,
+    handleSubmit,
+    reset,
+    formState: { errors, isSubmitting },
+  } = useForm<ServerConfigFormValues>({
+    resolver: zodResolver(serverConfigSchema),
+    defaultValues: {
+      licenseKey: null,
+      signupsEnabled: false,
+      emailSendFromName: null,
+      emailSendFromEmail: null,
+    },
+  });
+
+  // Super admin management
+  const [searchQuery, setSearchQuery] = useState("");
+  const [searchResults, setSearchResults] = useState<SuperAdminUser[]>([]);
+  const [searching, setSearching] = useState(false);
+  const [superAdmins, setSuperAdmins] = useState<SuperAdminUser[]>([]);
+  const [superAdminError, setSuperAdminError] = useState<string | null>(null);
+  const [debouncedSearchQuery, setDebouncedSearchQuery] = useState("");
+  const [currentUserId, setCurrentUserId] = useState<string | null>(null);
+
+  // Debounce search query
+  useEffect(() => {
+    const timer = setTimeout(() => {
+      setDebouncedSearchQuery(searchQuery);
+    }, 300);
+
+    return () => clearTimeout(timer);
+  }, [searchQuery]);
+
+  // Perform search when debounced query changes
+  useEffect(() => {
+    if (debouncedSearchQuery.trim().length >= 3) {
+      performSearch(debouncedSearchQuery);
+    } else {
+      setSearchResults([]);
+    }
+  }, [debouncedSearchQuery]);
+
+  useEffect(() => {
+    const fetchData = async () => {
+      try {
+        const config = await getServerConfiguration();
+        if (config) {
+          setData(config);
+          setError(null);
+
+          // Set form default values
+          reset({
+            licenseKey: config.licenseKey || null,
+            signupsEnabled: config.signupsEnabled || false,
+            emailSendFromName: config.emailSendFromName || null,
+            emailSendFromEmail: config.emailSendFromEmail || null,
+          });
+        }
+
+        // Fetch super admin users
+        const adminUsers = await getSuperAdminUsers();
+        setSuperAdmins(adminUsers);
+
+        // Get current user ID
+        const userId = await getCurrentUserId();
+        setCurrentUserId(userId);
+      } catch (err) {
+        setError("Failed to load server configuration");
+        console.error(err);
+      } finally {
+        setLoading(false);
+      }
+    };
+
+    fetchData();
+  }, [reset]);
+
+  const onSubmit = async (values: ServerConfigFormValues) => {
+    setError(null);
+    setSuccess(false);
+
+    try {
+      const updatedConfig = await updateServerConfiguration(values);
+      setData(updatedConfig);
+      setSuccess(true);
+
+      // Reset success message after 3 seconds
+      setTimeout(() => {
+        setSuccess(false);
+      }, 3000);
+    } catch (err) {
+      setError("Failed to update server configuration");
+      console.error(err);
+    }
+  };
+
+  // Perform search with debounce
+  const performSearch = async (query: string) => {
+    if (query.trim().length < 3) {
+      setSearchResults([]);
+      return;
+    }
+
+    setSearching(true);
+    setSuperAdminError(null);
+
+    try {
+      const results = await searchUsersByEmail(query);
+      setSearchResults(results);
+    } catch (err) {
+      setSuperAdminError("Failed to search for users");
+      console.error(err);
+    } finally {
+      setSearching(false);
+    }
+  };
+
+  // Handle user search button click
+  const handleSearchButtonClick = () => {
+    performSearch(searchQuery);
+  };
+
+  // Add user as super admin
+  const handleAddSuperAdmin = async (userId: string) => {
+    setSuperAdminError(null);
+
+    try {
+      const updatedConfig = await addSuperAdmin(userId);
+      setData(updatedConfig);
+
+      // Refresh super admin list
+      const adminUsers = await getSuperAdminUsers();
+      setSuperAdmins(adminUsers);
+
+      // Clear search
+      setSearchQuery("");
+      setSearchResults([]);
+    } catch (err) {
+      setSuperAdminError("Failed to add super admin");
+      console.error(err);
+    }
+  };
+
+  // Remove user from super admin list
+  const handleRemoveSuperAdmin = async (userId: string) => {
+    setSuperAdminError(null);
+
+    try {
+      const updatedConfig = await removeSuperAdmin(userId);
+      setData(updatedConfig);
+
+      // Refresh super admin list
+      const adminUsers = await getSuperAdminUsers();
+      setSuperAdmins(adminUsers);
+    } catch (err) {
+      setSuperAdminError(
+        err instanceof Error ? err.message : "Failed to remove super admin"
+      );
+      console.error(err);
+    }
+  };
+
+  // Check if user is the current user
+  const isCurrentUser = (userId: string) => {
+    return userId === currentUserId;
+  };
+
+  if (loading && !data) {
+    return <div className="p-4">Loading...</div>;
+  }
+
+  if (error && !data) {
+    return <div className="p-4 text-red-500">{error}</div>;
+  }
+
+  return (
+    <div className="p-4 max-w-2xl mx-auto flex flex-col gap-6">
+      <h1 className="text-3xl font-bold mb-6">Server Configuration</h1>
+
+      {error && (
+        <div className="mb-4 p-3 bg-red-100 text-red-700 rounded">{error}</div>
+      )}
+      {success && (
+        <div className="mb-4 p-3 bg-green-100 text-green-700 rounded">
+          Configuration updated successfully!
+        </div>
+      )}
+
+      <form onSubmit={handleSubmit(onSubmit)} className="flex flex-col gap-6">
+        <div className="flex flex-col gap-4">
+          <div>
+            <label className="text-sm font-medium mb-1 text-gray-500">
+              License Key
+            </label>
+            <Input
+              type="text"
+              {...register("licenseKey")}
+              className="w-full max-w-full"
+            />
+            {errors.licenseKey && (
+              <p className="text-sm text-red-500 mt-1">
+                {errors.licenseKey.message}
+              </p>
+            )}
+            <div className="flex flex-row items-center justify-between gap-4">
+              <p className="text-sm text-gray-500 mt-1">Your Cap license key</p>
+              {data?.licenseValid !== undefined && (
+                <div
+                  className={`text-sm ${
+                    data.licenseValid ? "text-green-600" : "text-red-600"
+                  }`}
+                >
+                  {data.licenseValid ? "Valid" : "Invalid"}
+                </div>
+              )}
+            </div>
+          </div>
+
+          <div>
+            <label className="text-sm font-medium mb-1 text-gray-500">
+              Signups Enabled
+            </label>
+            <div className="flex items-center">
+              <input
+                type="checkbox"
+                {...register("signupsEnabled")}
+                className="h-4 w-4 text-blue-600 rounded"
+              />
+              <span className="ml-2 text-sm">Allow new user signups</span>
+            </div>
+            {errors.signupsEnabled && (
+              <p className="text-sm text-red-500 mt-1">
+                {errors.signupsEnabled.message}
+              </p>
+            )}
+          </div>
+
+          <div>
+            <label className="text-sm font-medium mb-1 text-gray-500">
+              Email From Name
+            </label>
+            <Input
+              type="text"
+              {...register("emailSendFromName")}
+              className="w-full max-w-full"
+            />
+            {errors.emailSendFromName && (
+              <p className="text-sm text-red-500 mt-1">
+                {errors.emailSendFromName.message}
+              </p>
+            )}
+            <p className="text-sm text-gray-500 mt-1">
+              Name to use in the "From" field for emails
+            </p>
+          </div>
+
+          <div>
+            <label className="text-sm font-medium mb-1 text-gray-500">
+              Email From Address
+            </label>
+            <Input
+              type="email"
+              {...register("emailSendFromEmail")}
+              className="w-full max-w-full"
+            />
+            {errors.emailSendFromEmail && (
+              <p className="text-sm text-red-500 mt-1">
+                {errors.emailSendFromEmail.message}
+              </p>
+            )}
+            <p className="text-sm text-gray-500 mt-1">
+              Email address to use in the "From" field
+            </p>
+          </div>
+        </div>
+
+        <div className="flex items-center gap-4">
+          <Button type="submit" disabled={isSubmitting}>
+            {isSubmitting ? "Saving..." : "Save Server Configuration"}
+          </Button>
+        </div>
+      </form>
+
+      {/* Super Admin Management */}
+      <div className="mt-8 border-t pt-6">
+        <h2 className="text-2xl font-semibold mb-4">Super Admin Management</h2>
+        <p className="text-sm text-gray-500 mb-4">
+          Manage who can access this page and change server configuration
+        </p>
+
+        {superAdminError && (
+          <div className="mb-4 p-3 bg-red-100 text-red-700 rounded">
+            {superAdminError}
+          </div>
+        )}
+
+        <div className="mb-6">
+          <label className="text-sm font-medium mb-1 text-gray-500">
+            Search Users by Email
+          </label>
+          <div className="flex space-x-2">
+            <Input
+              type="email"
+              value={searchQuery}
+              onChange={(e) => setSearchQuery(e.target.value)}
+              placeholder="Enter email address (min 3 characters)"
+              className="w-full max-w-full"
+            />
+            <Button
+              type="button"
+              onClick={handleSearchButtonClick}
+              disabled={searching || searchQuery.trim().length < 3}
+            >
+              {searching ? "Searching..." : "Search"}
+            </Button>
+          </div>
+
+          {searching && (
+            <div className="mt-2 text-sm text-gray-500">Searching...</div>
+          )}
+
+          {/* Search Results */}
+          {searchResults.length > 0 && !searching && (
+            <div className="mt-2 border rounded-md overflow-hidden">
+              {searchResults.map((user) => (
+                <div
+                  key={user.id}
+                  className="flex items-center justify-between p-3 border-b last:border-b-0 hover:bg-gray-50"
+                >
+                  <div className="flex items-center">
+                    {user.image && (
+                      <img
+                        src={user.image}
+                        alt={user.name || user.email}
+                        className="w-8 h-8 rounded-full mr-3"
+                      />
+                    )}
+                    <div>
+                      {user.name && (
+                        <div className="font-medium">{user.name}</div>
+                      )}
+                      <div className="text-sm text-gray-500">{user.email}</div>
+                    </div>
+                  </div>
+                  <Button
+                    type="button"
+                    size="sm"
+                    onClick={() => handleAddSuperAdmin(user.id)}
+                    disabled={data?.superAdminIds?.includes(user.id)}
+                  >
+                    {data?.superAdminIds?.includes(user.id)
+                      ? "Already Admin"
+                      : "Add as Admin"}
+                  </Button>
+                </div>
+              ))}
+            </div>
+          )}
+
+          {searchQuery.trim().length >= 3 &&
+            searchResults.length === 0 &&
+            !searching && (
+              <div className="mt-2 text-sm text-gray-500">
+                No users found matching "{searchQuery}"
+              </div>
+            )}
+        </div>
+
+        {/* Current Super Admins */}
+        <div>
+          <h3 className="font-medium mb-2">Current Super Admins</h3>
+
+          {superAdmins.length === 0 ? (
+            <div className="text-sm text-gray-500">
+              No super admins configured
+            </div>
+          ) : (
+            <div className="border rounded-md overflow-hidden">
+              {superAdmins.map((admin) => (
+                <div
+                  key={admin.id}
+                  className="flex items-center justify-between p-3 border-b last:border-b-0 hover:bg-gray-50"
+                >
+                  <div className="flex items-center">
+                    {admin.image && (
+                      <img
+                        src={admin.image}
+                        alt={admin.name || admin.email}
+                        className="w-8 h-8 rounded-full mr-3"
+                      />
+                    )}
+                    <div>
+                      {admin.name && (
+                        <div className="font-medium">
+                          {admin.name}
+                          {isCurrentUser(admin.id) && (
+                            <span className="ml-2 text-xs text-blue-500 font-normal">
+                              (You)
+                            </span>
+                          )}
+                        </div>
+                      )}
+                      <div className="text-sm text-gray-500">{admin.email}</div>
+                    </div>
+                  </div>
+                  <div className="relative group">
+                    <Button
+                      type="button"
+                      size="sm"
+                      variant="destructive"
+                      onClick={() => handleRemoveSuperAdmin(admin.id)}
+                      disabled={isCurrentUser(admin.id)}
+                    >
+                      Remove
+                    </Button>
+                    {isCurrentUser(admin.id) && (
+                      <div className="absolute right-0 bottom-full mb-2 w-48 p-2 bg-gray-800 text-white text-xs rounded shadow-lg opacity-0 group-hover:opacity-100 transition-opacity duration-200 pointer-events-none">
+                        You cannot remove yourself from super admins
+                      </div>
+                    )}
+                  </div>
+                </div>
+              ))}
+            </div>
+          )}
+        </div>
+      </div>
+
+      {/* Current Configuration */}
+      <div className="mt-8 border-t pt-6">
+        <h2 className="text-xl font-semibold mb-4">Current Configuration</h2>
+        <pre className="bg-gray-100 p-4 rounded overflow-auto max-h-96">
+          {JSON.stringify(data, null, 2)}
+        </pre>
+      </div>
+    </div>
+  );
+}
diff --git a/apps/web/app/dashboard/admin/server-config/schema.ts b/apps/web/app/dashboard/admin/server-config/schema.ts
new file mode 100644
index 000000000..4de2bd933
--- /dev/null
+++ b/apps/web/app/dashboard/admin/server-config/schema.ts
@@ -0,0 +1,22 @@
+import { z } from "zod";
+
+// Schema for server configuration form
+export const serverConfigSchema = z.object({
+  licenseKey: z.string().nullable(),
+  signupsEnabled: z.boolean().default(false),
+  emailSendFromName: z.string().nullable(),
+  emailSendFromEmail: z.string().email().nullable(),
+});
+
+// Type for server configuration form
+export type ServerConfigFormValues = z.infer<typeof serverConfigSchema>;
+
+// Schema for super admin management
+export const superAdminSchema = z.object({
+  id: z.string(),
+  name: z.string().nullable(),
+  email: z.string().email(),
+  image: z.string().nullable(),
+});
+
+export type SuperAdminUser = z.infer<typeof superAdminSchema>;
diff --git a/apps/web/app/dashboard/settings/workspace/Workspace.tsx b/apps/web/app/dashboard/settings/workspace/Workspace.tsx
index bddbfce61..6c84bb71c 100644
--- a/apps/web/app/dashboard/settings/workspace/Workspace.tsx
+++ b/apps/web/app/dashboard/settings/workspace/Workspace.tsx
@@ -24,12 +24,13 @@ import {
   DialogFooter,
 } from "@cap/ui";
 import { useRouter } from "next/navigation";
-import { useState, useRef } from "react";
+import { useState, useRef, useEffect } from "react";
 import toast from "react-hot-toast";
 import { useSharedContext } from "@/app/dashboard/_components/DynamicSharedLayout";
 import { format } from "date-fns";
 import { Tooltip } from "react-tooltip";
 import { CustomDomain } from "./components/CustomDomain";
+import { getServerConfigAction } from "@/app/actions";
 
 export const Workspace = () => {
   const { spaceData, activeSpace, user } = useSharedContext();
@@ -41,6 +42,20 @@ export const Workspace = () => {
   const [inviteEmails, setInviteEmails] = useState<string[]>([]);
   const [emailInput, setEmailInput] = useState("");
   const ownerToastShown = useRef(false);
+  const [isCapCloud, setIsCapCloud] = useState(false);
+
+  useEffect(() => {
+    const fetchServerConfig = async () => {
+      try {
+        const serverConfig = await getServerConfigAction();
+        setIsCapCloud(serverConfig.isCapCloud);
+      } catch (error) {
+        console.error("Failed to get server config:", error);
+      }
+    };
+
+    fetchServerConfig();
+  }, []);
 
   const showOwnerToast = () => {
     if (!ownerToastShown.current) {
@@ -266,35 +281,39 @@ export const Workspace = () => {
       </CardHeader>
       <CardContent>
         <div className="flex items-center space-x-2">
-          <Button
-            type="button"
-            size="sm"
-            variant="primary"
-            disabled={!isOwner || loading}
-            onClick={() => {
-              if (!isOwner) {
-                showOwnerToast();
-                return;
-              }
-              setLoading(true);
-              fetch(`/api/settings/billing/manage`, {
-                method: "POST",
-              })
-                .then(async (res) => {
-                  const url = await res.json();
-                  router.push(url);
-                })
-                .catch((err) => {
-                  alert(err);
-                  setLoading(false);
-                });
-            }}
-            data-tooltip-id="purchase-seats-tooltip"
-            data-tooltip-content='Once inside the Stripe dashboard, click "Manage Plan", then increase quantity of subscriptions to purchase more seats.'
-          >
-            {loading ? "Loading..." : "Purchase more seats"}
-          </Button>
-          <Tooltip id="purchase-seats-tooltip" place="top" />
+          {isCapCloud && (
+            <>
+              <Button
+                type="button"
+                size="sm"
+                variant="primary"
+                disabled={!isOwner || loading}
+                onClick={() => {
+                  if (!isOwner) {
+                    showOwnerToast();
+                    return;
+                  }
+                  setLoading(true);
+                  fetch(`/api/settings/billing/manage`, {
+                    method: "POST",
+                  })
+                    .then(async (res) => {
+                      const url = await res.json();
+                      router.push(url);
+                    })
+                    .catch((err) => {
+                      alert(err);
+                      setLoading(false);
+                    });
+                }}
+                data-tooltip-id="purchase-seats-tooltip"
+                data-tooltip-content='Once inside the Stripe dashboard, click "Manage Plan", then increase quantity of subscriptions to purchase more seats.'
+              >
+                {loading ? "Loading..." : "Purchase more seats"}
+              </Button>
+              <Tooltip id="purchase-seats-tooltip" place="top" />
+            </>
+          )}
           <Button
             type="button"
             size="sm"
@@ -377,43 +396,47 @@ export const Workspace = () => {
           </TableBody>
         </Table>
       </CardContent>
-      <CardHeader>
-        <CardTitle>View and manage your billing details</CardTitle>
-        <CardDescription>
-          View and edit your billing details, as well as manage your
-          subscription.
-        </CardDescription>
-      </CardHeader>
-      <CardContent>
-        <CardDescription className="mt-1">
-          <Button
-            type="button"
-            size="sm"
-            variant="gray"
-            onClick={() => {
-              if (!isOwner) {
-                showOwnerToast();
-                return;
-              }
-              setLoading(true);
-              fetch(`/api/settings/billing/manage`, {
-                method: "POST",
-              })
-                .then(async (res) => {
-                  const url = await res.json();
-                  router.push(url);
-                })
-                .catch((err) => {
-                  alert(err);
-                  setLoading(false);
-                });
-            }}
-            disabled={!isOwner}
-          >
-            {loading ? "Loading..." : "Manage Billing"}
-          </Button>
-        </CardDescription>
-      </CardContent>
+      {isCapCloud && (
+        <>
+          <CardHeader>
+            <CardTitle>View and manage your billing details</CardTitle>
+            <CardDescription>
+              View and edit your billing details, as well as manage your
+              subscription.
+            </CardDescription>
+          </CardHeader>
+          <CardContent>
+            <CardDescription className="mt-1">
+              <Button
+                type="button"
+                size="sm"
+                variant="gray"
+                onClick={() => {
+                  if (!isOwner) {
+                    showOwnerToast();
+                    return;
+                  }
+                  setLoading(true);
+                  fetch(`/api/settings/billing/manage`, {
+                    method: "POST",
+                  })
+                    .then(async (res) => {
+                      const url = await res.json();
+                      router.push(url);
+                    })
+                    .catch((err) => {
+                      alert(err);
+                      setLoading(false);
+                    });
+                }}
+                disabled={!isOwner}
+              >
+                {loading ? "Loading..." : "Manage Billing"}
+              </Button>
+            </CardDescription>
+          </CardContent>
+        </>
+      )}
 
       <Dialog open={isInviteDialogOpen} onOpenChange={setIsInviteDialogOpen}>
         <DialogContent>
diff --git a/apps/web/utils/instance/constants.ts b/apps/web/utils/instance/constants.ts
index 63524da34..479151839 100644
--- a/apps/web/utils/instance/constants.ts
+++ b/apps/web/utils/instance/constants.ts
@@ -1,4 +1,7 @@
 import { clientEnv } from "@cap/env";
 
-export const LICENSE_SERVER_URL = "https://l.cap.so";
+export const LICENSE_SERVER_URL =
+  process.env.NODE_ENV === "production"
+    ? "https://l.cap.so"
+    : "http://localhost:3100";
 export const INSTANCE_SITE_URL = clientEnv.NEXT_PUBLIC_WEB_URL;
diff --git a/apps/web/utils/instance/functions.ts b/apps/web/utils/instance/functions.ts
index 7a35c33f7..72b71426c 100644
--- a/apps/web/utils/instance/functions.ts
+++ b/apps/web/utils/instance/functions.ts
@@ -188,7 +188,7 @@ export async function validateServerLicense({
     console.log("[function call: validateServerLicense: 200: license is valid");
     newPartialServerConfig = {
       licenseValid: true,
-      licenseValidityCache: licenseServerResponseJson.refresh,
+      licenseValidityCache: new Date(licenseServerResponseJson.refresh),
       isCapCloud: licenseServerResponseJson.isCapCloudLicense,
     };
     console.log(

From 8604402d0571eeb3197b9a92c7acdda43361c0e6 Mon Sep 17 00:00:00 2001
From: McPizza0 <gh@l1.io>
Date: Wed, 5 Mar 2025 17:24:09 +0100
Subject: [PATCH 11/17] add nuqs

---
 apps/web/app/dashboard/admin/actions.ts | 21 +++++++---
 apps/web/app/providers.tsx              | 23 ++++++-----
 apps/web/package.json                   |  1 +
 pnpm-lock.yaml                          | 55 ++++++++++++++++++++-----
 4 files changed, 75 insertions(+), 25 deletions(-)

diff --git a/apps/web/app/dashboard/admin/actions.ts b/apps/web/app/dashboard/admin/actions.ts
index c061e34ed..9802f5d34 100644
--- a/apps/web/app/dashboard/admin/actions.ts
+++ b/apps/web/app/dashboard/admin/actions.ts
@@ -5,6 +5,7 @@ import { getCurrentUser } from "@cap/database/auth/session";
 import { users, serverConfigTable } from "@cap/database/schema";
 import { eq, like, inArray } from "drizzle-orm";
 import { ServerConfigFormValues, SuperAdminUser } from "./server-config/schema";
+import { validateServerLicense } from "@/utils/instance/functions";
 
 export async function lookupUserById(data: FormData) {
   const currentUser = await getCurrentUser();
@@ -62,8 +63,16 @@ export async function updateServerConfiguration(
     throw new Error("Not authorized");
   }
 
-  // Prepare update data
-  const updateData: Record<string, any> = {
+  const serverConfig = await db.query.serverConfigTable.findFirst({
+    where: eq(serverConfigTable.id, 1),
+  });
+
+  if (!serverConfig) {
+    throw new Error("Server configuration not found");
+  }
+
+  const updatedServerConfig = {
+    ...serverConfig,
     licenseKey: values.licenseKey,
     signupsEnabled: values.signupsEnabled,
     emailSendFromName: values.emailSendFromName,
@@ -72,12 +81,14 @@ export async function updateServerConfiguration(
 
   await db
     .update(serverConfigTable)
-    .set(updateData)
+    .set(updatedServerConfig)
     .where(eq(serverConfigTable.id, 1));
 
-  return await db.query.serverConfigTable.findFirst({
-    where: eq(serverConfigTable.id, 1),
+  const licenseValidationResponse = await validateServerLicense({
+    serverConfig: updatedServerConfig,
   });
+
+  return licenseValidationResponse;
 }
 
 // Search for users by email
diff --git a/apps/web/app/providers.tsx b/apps/web/app/providers.tsx
index c343398b1..6e5aa4beb 100644
--- a/apps/web/app/providers.tsx
+++ b/apps/web/app/providers.tsx
@@ -10,6 +10,7 @@ import Intercom from "@intercom/messenger-js-sdk";
 import { AuthProvider } from "./AuthProvider";
 import { BentoScript } from "@/components/BentoScript";
 import { getServerConfigAction } from "./actions";
+import { NuqsAdapter } from "nuqs/adapters/next/app";
 
 // Internal PostHog provider component
 function PostHogWrapper({ children }: { children: React.ReactNode }) {
@@ -107,15 +108,17 @@ export function Providers({
 
   // Always wrap with AuthProvider, but conditionally wrap with PostHog if isCapCloud
   return (
-    <AuthProvider>
-      {isCapCloud ? (
-        <>
-          <PostHogWrapper>{children}</PostHogWrapper>
-          {email && <BentoScript userEmail={email} />}
-        </>
-      ) : (
-        children
-      )}
-    </AuthProvider>
+    <NuqsAdapter>
+      <AuthProvider>
+        {isCapCloud ? (
+          <>
+            <PostHogWrapper>{children}</PostHogWrapper>
+            {email && <BentoScript userEmail={email} />}
+          </>
+        ) : (
+          children
+        )}
+      </AuthProvider>
+    </NuqsAdapter>
   );
 }
diff --git a/apps/web/package.json b/apps/web/package.json
index ea362acc8..2d74bf40b 100644
--- a/apps/web/package.json
+++ b/apps/web/package.json
@@ -61,6 +61,7 @@
     "next-contentlayer2": "^0.5.3",
     "next-mdx-remote": "^4.4.1",
     "nextjs-cors": "^2.2.0",
+    "nuqs": "^2.4.0",
     "posthog-js": "^1.215.3",
     "react": "^18.2.0",
     "react-dom": "^18.2.0",
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index 356f06f02..c6b2a1bae 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -551,6 +551,9 @@ importers:
       nextjs-cors:
         specifier: ^2.2.0
         version: 2.2.0(next@14.2.3(@opentelemetry/api@1.9.0)(react-dom@18.3.1(react@18.3.1))(react@18.3.1))
+      nuqs:
+        specifier: ^2.4.0
+        version: 2.4.0(next@14.2.3(@opentelemetry/api@1.9.0)(react-dom@18.3.1(react@18.3.1))(react@18.3.1))(react-router-dom@6.26.2(react-dom@18.3.1(react@18.3.1))(react@18.3.1))(react-router@6.26.2(react@18.3.1))(react@18.3.1)
       posthog-js:
         specifier: ^1.215.3
         version: 1.215.3
@@ -4643,10 +4646,10 @@ packages:
       react-dom:
         optional: true
 
-  '@storybook/builder-vite@9.0.0-alpha.1':
-    resolution: {integrity: sha512-uIcc85jwjZNHJuUrWqs5ADB2ge+4mMTIblJf+6gvqYMMj53MyzDtpci7pkT2daKcO03n2VB6pcjW21T/LEqL3g==}
+  '@storybook/builder-vite@9.0.0-alpha.2':
+    resolution: {integrity: sha512-j+yUaBzLrssR6dPkXj/IYubFgr3JYUovW5tneiNAJigFIcH9xNQ08m4z6pYXGKUYOqcvVLm5S5o8STg/BQjZ8Q==}
     peerDependencies:
-      storybook: ^9.0.0-alpha.1
+      storybook: ^9.0.0-alpha.2
       vite: ^4.0.0 || ^5.0.0 || ^6.0.0
 
   '@storybook/core@8.3.3':
@@ -4657,10 +4660,10 @@ packages:
     peerDependencies:
       storybook: ^8.3.3
 
-  '@storybook/csf-plugin@9.0.0-alpha.1':
-    resolution: {integrity: sha512-ax1VSSbm/5k2XQWe15A4VItG5iUM85pQmRP2p4tlS76bDIOLCuHwzYKuGmb4ILOQFM3UQAH3obHFeOaKpcTuog==}
+  '@storybook/csf-plugin@9.0.0-alpha.2':
+    resolution: {integrity: sha512-AAyHIaL6NIalFKI7gBzad85jg5vZ6RBzboQXup3qxEz4d0BrPEJva9XQf63F90SP/I4kaBQA9gURXJX8ZJ86bg==}
     peerDependencies:
-      storybook: ^9.0.0-alpha.1
+      storybook: ^9.0.0-alpha.2
 
   '@storybook/csf@0.1.11':
     resolution: {integrity: sha512-dHYFQH3mA+EtnCkHXzicbLgsvzYjcDJ1JWsogbItZogkPHgSJM/Wr71uMkcvw8v9mmCyP4NpXJuu6bPoVsOnzg==}
@@ -9132,6 +9135,9 @@ packages:
     resolution: {integrity: sha512-bAxsR8BVfj60DWXHE3u30oHzfl4G7khkSuPW+qvpd7jFRHm7dLxOjUk1EHACJ/hxLY8phGJ0YhYHZo7jil7Qdg==}
     engines: {node: '>= 8'}
 
+  mitt@3.0.1:
+    resolution: {integrity: sha512-vKivATfr97l2/QBCYAkXYDbrIWPM2IIKEl7YPhjCvKlG3kE2gm+uBo6nEXK3M5/Ffh/FLpKExzOQ3JJoJGFKBw==}
+
   mkdirp@0.5.6:
     resolution: {integrity: sha512-FP+p8RB8OWpF3YZBCrP5gtADmtXApB5AMLn+vdyA+PyxCjrCs00mjyUozssO33cwDeT3wNGdLxJ5M//YqtHAJw==}
     hasBin: true
@@ -9398,6 +9404,24 @@ packages:
     resolution: {integrity: sha512-AqZtDUWOMKs1G/8lwylVjrdYgqA4d9nu8hc+0gzRxlDb1I10+FHBGMXs6aiQHFdCUUlqH99MUMuLfzWDNDtfxw==}
     deprecated: This package is no longer supported.
 
+  nuqs@2.4.0:
+    resolution: {integrity: sha512-+yOdX0q/wdYlseSYtWC8StDDt2QFcYX/zV5/E67J1cOJo3PR0mggxMx4acZGC0Hu66xFHENKQkqI2zSpH742xQ==}
+    peerDependencies:
+      '@remix-run/react': '>=2'
+      next: '>=14.2.0'
+      react: '>=18.2.0 || ^19.0.0-0'
+      react-router: ^6 || ^7
+      react-router-dom: ^6 || ^7
+    peerDependenciesMeta:
+      '@remix-run/react':
+        optional: true
+      next:
+        optional: true
+      react-router:
+        optional: true
+      react-router-dom:
+        optional: true
+
   nwsapi@2.2.12:
     resolution: {integrity: sha512-qXDmcVlZV4XRtKFzddidpfVP4oMSGhga+xdMc25mv8kaLUHtgzCDhUxkrN8exkGdTlLNaXj7CV3GtON7zuGZ+w==}
 
@@ -15967,9 +15991,9 @@ snapshots:
       react: 18.3.1
       react-dom: 18.3.1(react@18.3.1)
 
-  '@storybook/builder-vite@9.0.0-alpha.1(storybook@8.3.3)(vite@5.4.8(@types/node@22.12.0)(terser@5.34.0))':
+  '@storybook/builder-vite@9.0.0-alpha.2(storybook@8.3.3)(vite@5.4.8(@types/node@22.12.0)(terser@5.34.0))':
     dependencies:
-      '@storybook/csf-plugin': 9.0.0-alpha.1(storybook@8.3.3)
+      '@storybook/csf-plugin': 9.0.0-alpha.2(storybook@8.3.3)
       browser-assert: 1.2.1
       storybook: 8.3.3
       ts-dedent: 2.2.0
@@ -16000,7 +16024,7 @@ snapshots:
       storybook: 8.3.3
       unplugin: 1.16.1
 
-  '@storybook/csf-plugin@9.0.0-alpha.1(storybook@8.3.3)':
+  '@storybook/csf-plugin@9.0.0-alpha.2(storybook@8.3.3)':
     dependencies:
       storybook: 8.3.3
       unplugin: 1.16.1
@@ -21984,6 +22008,8 @@ snapshots:
       minipass: 3.3.6
       yallist: 4.0.0
 
+  mitt@3.0.1: {}
+
   mkdirp@0.5.6:
     dependencies:
       minimist: 1.2.8
@@ -22383,6 +22409,15 @@ snapshots:
       gauge: 3.0.2
       set-blocking: 2.0.0
 
+  nuqs@2.4.0(next@14.2.3(@opentelemetry/api@1.9.0)(react-dom@18.3.1(react@18.3.1))(react@18.3.1))(react-router-dom@6.26.2(react-dom@18.3.1(react@18.3.1))(react@18.3.1))(react-router@6.26.2(react@18.3.1))(react@18.3.1):
+    dependencies:
+      mitt: 3.0.1
+      react: 18.3.1
+    optionalDependencies:
+      next: 14.2.3(@opentelemetry/api@1.9.0)(react-dom@18.3.1(react@18.3.1))(react@18.3.1)
+      react-router: 6.26.2(react@18.3.1)
+      react-router-dom: 6.26.2(react-dom@18.3.1(react@18.3.1))(react@18.3.1)
+
   nwsapi@2.2.12: {}
 
   nypm@0.3.12:
@@ -23827,7 +23862,7 @@ snapshots:
 
   storybook-solidjs-vite@1.0.0-beta.2(storybook@8.3.3)(vite@5.4.8(@types/node@22.12.0)(terser@5.34.0)):
     dependencies:
-      '@storybook/builder-vite': 9.0.0-alpha.1(storybook@8.3.3)(vite@5.4.8(@types/node@22.12.0)(terser@5.34.0))
+      '@storybook/builder-vite': 9.0.0-alpha.2(storybook@8.3.3)(vite@5.4.8(@types/node@22.12.0)(terser@5.34.0))
     transitivePeerDependencies:
       - storybook
       - vite

From 9289cced0e2df63b230a394632e377e6299fce03 Mon Sep 17 00:00:00 2001
From: McPizza0 <gh@l1.io>
Date: Wed, 5 Mar 2025 17:54:11 +0100
Subject: [PATCH 12/17] update purchase links

---
 .../_components/AdminNavbar/AdminNavItems.tsx |  2 +-
 .../_components/DynamicSharedLayout.tsx       | 12 +++-
 apps/web/app/dashboard/layout.tsx             |  1 +
 apps/web/components/UsageButton.tsx           | 71 +++++++++++++++++--
 apps/web/components/pages/PricingPage.tsx     | 44 ++++++++----
 5 files changed, 107 insertions(+), 23 deletions(-)

diff --git a/apps/web/app/dashboard/_components/AdminNavbar/AdminNavItems.tsx b/apps/web/app/dashboard/_components/AdminNavbar/AdminNavItems.tsx
index 701f061d6..3ede9a1a0 100644
--- a/apps/web/app/dashboard/_components/AdminNavbar/AdminNavItems.tsx
+++ b/apps/web/app/dashboard/_components/AdminNavbar/AdminNavItems.tsx
@@ -212,7 +212,7 @@ export const AdminNavItems = () => {
         </div>
         <div className="mt-auto">
           <div className="w-full mb-3 pb-5 border-b-2 border-gray-200 border-dotted">
-            <UsageButton subscribed={isSubscribed} />
+            <UsageButton />
           </div>
           <Popover open={menuOpen} onOpenChange={setMenuOpen}>
             <PopoverTrigger asChild>
diff --git a/apps/web/app/dashboard/_components/DynamicSharedLayout.tsx b/apps/web/app/dashboard/_components/DynamicSharedLayout.tsx
index bee0364a6..87f772d00 100644
--- a/apps/web/app/dashboard/_components/DynamicSharedLayout.tsx
+++ b/apps/web/app/dashboard/_components/DynamicSharedLayout.tsx
@@ -11,6 +11,7 @@ type SharedContext = {
   user: typeof users.$inferSelect;
   isSubscribed: boolean;
   isSuperAdmin: boolean;
+  isCapCloud: boolean;
 };
 
 const Context = createContext<SharedContext>({} as SharedContext);
@@ -22,6 +23,7 @@ export default function DynamicSharedLayout({
   user,
   isSubscribed,
   isSuperAdmin,
+  isCapCloud,
 }: {
   children: React.ReactNode;
   spaceData: SharedContext["spaceData"];
@@ -29,10 +31,18 @@ export default function DynamicSharedLayout({
   user: SharedContext["user"];
   isSubscribed: SharedContext["isSubscribed"];
   isSuperAdmin: SharedContext["isSuperAdmin"];
+  isCapCloud: SharedContext["isCapCloud"];
 }) {
   return (
     <Context.Provider
-      value={{ spaceData, activeSpace, user, isSubscribed, isSuperAdmin }}
+      value={{
+        spaceData,
+        activeSpace,
+        user,
+        isSubscribed,
+        isSuperAdmin,
+        isCapCloud,
+      }}
     >
       <div className="dashboard-layout h-screen min-h-full flex">
         <AdminDesktopNav />
diff --git a/apps/web/app/dashboard/layout.tsx b/apps/web/app/dashboard/layout.tsx
index f3e602802..c62a887be 100644
--- a/apps/web/app/dashboard/layout.tsx
+++ b/apps/web/app/dashboard/layout.tsx
@@ -150,6 +150,7 @@ export default async function DashboardLayout({
       user={user}
       isSubscribed={isSubscribed}
       isSuperAdmin={isSuperAdmin}
+      isCapCloud={serverConfig?.isCapCloud}
     >
       <div className="full-layout">
         <DashboardTemplate>{children}</DashboardTemplate>
diff --git a/apps/web/components/UsageButton.tsx b/apps/web/components/UsageButton.tsx
index b625e1c62..9a2a6d4cd 100644
--- a/apps/web/components/UsageButton.tsx
+++ b/apps/web/components/UsageButton.tsx
@@ -1,12 +1,50 @@
+import { useSharedContext } from "@/app/dashboard/_components/DynamicSharedLayout";
 import Link from "next/link";
 
-export const UsageButton = ({ subscribed }: { subscribed: boolean }) => {
-  return (
-    <Link href={subscribed ? "/dashboard/settings/workspace" : "/pricing"}>
+export const UsageButton = () => {
+  const { isCapCloud, isSubscribed, isSuperAdmin } = useSharedContext();
+
+  if (isCapCloud) {
+    return (
+      <Link href={"/dashboard/settings/workspace"}>
+        <div className="w-full flex items-center justify-center bg-white border border-gray-200 rounded-xl py-2 px-4 hover:border-blue-500 transition-all">
+          {isSubscribed ? (
+            <div className="text-primary font-medium tracking-tighter">
+              Cap{" "}
+              <span className="bg-blue-500 text-sm text-white py-1 px-1.5 rounded-[8px]">
+                Pro
+              </span>
+            </div>
+          ) : (
+            <span className="text-sm">
+              Upgrade to{" "}
+              <span className="bg-blue-500 text-sm text-white py-1 px-1.5 rounded-[8px]">
+                Pro
+              </span>{" "}
+              plan
+            </span>
+          )}
+        </div>
+      </Link>
+    );
+  }
+
+  return isSuperAdmin ? (
+    <Link
+      href={
+        isSubscribed
+          ? "/dashboard/admin/server-config"
+          : "/pricing?deploy=selfhosted"
+      }
+    >
       <div className="w-full flex items-center justify-center bg-white border border-gray-200 rounded-xl py-2 px-4 hover:border-blue-500 transition-all">
-        {subscribed ? (
+        {isSubscribed ? (
           <div className="text-primary font-medium tracking-tighter">
-            Cap Pro
+            Cap{" "}
+            <span className="bg-blue-500 text-sm text-white py-1 px-1.5 rounded-[8px]">
+              Pro
+            </span>{" "}
+            Self-Hosted
           </div>
         ) : (
           <span className="text-sm">
@@ -14,7 +52,28 @@ export const UsageButton = ({ subscribed }: { subscribed: boolean }) => {
             <span className="bg-blue-500 text-sm text-white py-1 px-1.5 rounded-[8px]">
               Pro
             </span>{" "}
-            plan
+            self-hosted
+          </span>
+        )}
+      </div>
+    </Link>
+  ) : (
+    <Link href={"/pricing"}>
+      <div className="w-full flex items-center justify-center bg-white border border-gray-200 rounded-xl py-2 px-4 hover:border-blue-500 transition-all">
+        {isSubscribed ? (
+          <div className="text-primary font-medium tracking-tighter">
+            Cap{" "}
+            <span className="bg-blue-500 text-sm text-white py-1 px-1.5 rounded-[8px]">
+              Pro
+            </span>{" "}
+            Self-Hosted
+          </div>
+        ) : (
+          <span className="text-sm">
+            Ask your admin to upgrade to{" "}
+            <span className="bg-blue-500 text-sm text-white py-1 px-1.5 rounded-[8px]">
+              Pro
+            </span>
           </span>
         )}
       </div>
diff --git a/apps/web/components/pages/PricingPage.tsx b/apps/web/components/pages/PricingPage.tsx
index 52a8290dd..10bd2222e 100644
--- a/apps/web/components/pages/PricingPage.tsx
+++ b/apps/web/components/pages/PricingPage.tsx
@@ -17,21 +17,41 @@ import { getProPlanId } from "@cap/utils";
 import toast from "react-hot-toast";
 import { useRouter, useSearchParams } from "next/navigation";
 import { SimplePlans } from "../text/SimplePlans";
+import { parseAsBoolean, parseAsInteger, useQueryState } from "nuqs";
 
 export const PricingPage = () => {
   const [proLoading, setProLoading] = useState(false);
   const [commercialLoading, setCommercialLoading] = useState(false);
   const [selfHostedLoading, setSelfHostedLoading] = useState(false);
-  const [isAnnual, setIsAnnual] = useState(true);
-  const [isCommercialAnnual, setIsCommercialAnnual] = useState(false);
-  const [isSelfHostedAnnual, setIsSelfHostedAnnual] = useState(true);
-  const [proQuantity, setProQuantity] = useState(1);
-  const [licenseQuantity, setLicenseQuantity] = useState(1);
-  const [selfHostedQuantity, setSelfHostedQuantity] = useState(10);
-  const [initialRender, setInitialRender] = useState(true);
-  const [deploymentType, setDeploymentType] = useState<"cloud" | "selfhosted">(
-    "cloud"
+  const [isAnnual, setIsAnnual] = useQueryState(
+    "proAnnual",
+    parseAsBoolean.withDefault(true)
+  );
+  const [isCommercialAnnual, setIsCommercialAnnual] = useQueryState(
+    "commercialAnnual",
+    parseAsBoolean.withDefault(false)
+  );
+  const [isSelfHostedAnnual, setIsSelfHostedAnnual] = useQueryState(
+    "selfHostedAnnual",
+    parseAsBoolean.withDefault(true)
+  );
+  const [proQuantity, setProQuantity] = useQueryState(
+    "users",
+    parseAsInteger.withDefault(1)
+  );
+  const [licenseQuantity, setLicenseQuantity] = useQueryState(
+    "licenses",
+    parseAsInteger.withDefault(1)
   );
+  const [selfHostedQuantity, setSelfHostedQuantity] = useQueryState(
+    "seats",
+    parseAsInteger.withDefault(10)
+  );
+  const [initialRender, setInitialRender] = useState(true);
+  const [deploymentType, setDeploymentType] = useQueryState("deploy", {
+    defaultValue: "cloud",
+    parse: (value) => value as "cloud" | "selfhosted",
+  });
   const { push } = useRouter();
   const searchParams = useSearchParams();
 
@@ -58,15 +78,9 @@ export const PricingPage = () => {
       setInitialRender(false);
       const planFromUrl = searchParams.get("plan");
       const next = searchParams.get("next");
-      const typeFromUrl = searchParams.get("type");
       const pendingPriceId = localStorage.getItem("pendingPriceId");
       const pendingProQuantity = localStorage.getItem("pendingQuantity");
 
-      // Set deployment type based on URL parameter
-      if (typeFromUrl === "selfhosted") {
-        setDeploymentType("selfhosted");
-      }
-
       if (pendingPriceId && pendingProQuantity) {
         localStorage.removeItem("pendingPriceId");
         localStorage.removeItem("pendingQuantity");

From 54805710956b2710adbace66125095aa9dc15d51 Mon Sep 17 00:00:00 2001
From: McPizza0 <gh@l1.io>
Date: Wed, 5 Mar 2025 19:27:11 +0100
Subject: [PATCH 13/17] check if can add more users

---
 apps/web/app/actions.ts                       |  9 +-
 .../settings/workspace/Workspace.tsx          | 95 ++++++++++++-------
 apps/web/utils/instance/functions.ts          | 36 +++++++
 3 files changed, 105 insertions(+), 35 deletions(-)

diff --git a/apps/web/app/actions.ts b/apps/web/app/actions.ts
index 8a7c1e690..fc08c87b9 100644
--- a/apps/web/app/actions.ts
+++ b/apps/web/app/actions.ts
@@ -1,6 +1,9 @@
 "use server";
 
-import { getServerConfig as getServerConfigInternal } from "@/utils/instance/functions";
+import {
+  getServerConfig as getServerConfigInternal,
+  canInstanceAddUser,
+} from "@/utils/instance/functions";
 import { serverEnv } from "@cap/env";
 
 export async function getServerConfigAction() {
@@ -17,3 +20,7 @@ export async function getServerConfigAction() {
     },
   };
 }
+
+export async function canInstanceAddUserAction() {
+  return await canInstanceAddUser();
+}
diff --git a/apps/web/app/dashboard/settings/workspace/Workspace.tsx b/apps/web/app/dashboard/settings/workspace/Workspace.tsx
index 6c84bb71c..a18ca76b9 100644
--- a/apps/web/app/dashboard/settings/workspace/Workspace.tsx
+++ b/apps/web/app/dashboard/settings/workspace/Workspace.tsx
@@ -30,7 +30,7 @@ import { useSharedContext } from "@/app/dashboard/_components/DynamicSharedLayou
 import { format } from "date-fns";
 import { Tooltip } from "react-tooltip";
 import { CustomDomain } from "./components/CustomDomain";
-import { getServerConfigAction } from "@/app/actions";
+import { getServerConfigAction, canInstanceAddUserAction } from "@/app/actions";
 
 export const Workspace = () => {
   const { spaceData, activeSpace, user } = useSharedContext();
@@ -43,12 +43,15 @@ export const Workspace = () => {
   const [emailInput, setEmailInput] = useState("");
   const ownerToastShown = useRef(false);
   const [isCapCloud, setIsCapCloud] = useState(false);
+  const [canAddUser, setCanAddUser] = useState(true);
 
   useEffect(() => {
     const fetchServerConfig = async () => {
       try {
         const serverConfig = await getServerConfigAction();
         setIsCapCloud(serverConfig.isCapCloud);
+        const canAdd = await canInstanceAddUserAction();
+        setCanAddUser(canAdd);
       } catch (error) {
         console.error("Failed to get server config:", error);
       }
@@ -263,19 +266,28 @@ export const Workspace = () => {
         <div className="flex items-center justify-between">
           <div>
             <CardTitle>Workspace Members</CardTitle>
-            <CardDescription>Manage your workspace members.</CardDescription>
-            <CardDescription>
-              Current seats capacity:{" "}
-              {`${activeSpace?.inviteQuota} paid ${
-                activeSpace && activeSpace?.inviteQuota > 1
-                  ? "subscriptions"
-                  : "subscription"
-              } across all of your workspaces`}
-            </CardDescription>
-            <CardDescription>
-              Seats remaining:{" "}
-              {activeSpace?.inviteQuota ?? 1 - (activeSpace?.totalInvites ?? 1)}
-            </CardDescription>
+            {isCapCloud && (
+              <>
+                <CardDescription>
+                  Manage your workspace members.
+                </CardDescription>
+
+                {/* Legacy invite quota based code
+                <CardDescription>
+                  Current seats capacity:{" "}
+                  {`${activeSpace?.inviteQuota} paid ${
+                    activeSpace && activeSpace?.inviteQuota > 1
+                      ? "subscriptions"
+                      : "subscription"
+                  } across all of your workspaces`}
+                </CardDescription>
+                <CardDescription>
+                  Seats remaining:{" "}
+                  {activeSpace?.inviteQuota ??
+                    1 - (activeSpace?.totalInvites ?? 1)}
+                </CardDescription> */}
+              </>
+            )}
           </div>
         </div>
       </CardHeader>
@@ -314,26 +326,41 @@ export const Workspace = () => {
               <Tooltip id="purchase-seats-tooltip" place="top" />
             </>
           )}
-          <Button
-            type="button"
-            size="sm"
-            variant="gray"
-            onClick={() => {
-              if (!isOwner) {
-                showOwnerToast();
-              } else if (
-                activeSpace &&
-                activeSpace.inviteQuota <= activeSpace.totalInvites
-              ) {
-                toast.error("Invite limit reached, please purchase more seats");
-              } else {
-                setIsInviteDialogOpen(true);
-              }
-            }}
-            disabled={!isOwner}
-          >
-            Invite users
-          </Button>
+          {isCapCloud ? (
+            <Button
+              type="button"
+              size="sm"
+              variant="gray"
+              onClick={() => {
+                if (!isOwner) {
+                  showOwnerToast();
+                } else {
+                  setIsInviteDialogOpen(true);
+                }
+              }}
+              disabled={!isOwner}
+            >
+              Invite users
+            </Button>
+          ) : (
+            <Button
+              type="button"
+              size="sm"
+              variant="gray"
+              onClick={() => {
+                if (!isOwner) {
+                  showOwnerToast();
+                } else if (!canAddUser) {
+                  toast.error("Self-hosted user limit reached");
+                } else {
+                  setIsInviteDialogOpen(true);
+                }
+              }}
+              disabled={!isOwner}
+            >
+              Invite users
+            </Button>
+          )}
         </div>
       </CardContent>
       <CardContent>
diff --git a/apps/web/utils/instance/functions.ts b/apps/web/utils/instance/functions.ts
index 72b71426c..1ba32c59c 100644
--- a/apps/web/utils/instance/functions.ts
+++ b/apps/web/utils/instance/functions.ts
@@ -615,3 +615,39 @@ export async function generateCloudProStripePortalLink({
     return null;
   }
 }
+
+// Check if the instance can add a user
+export async function canInstanceAddUser() {
+  console.log("[function call: 🔥 canInstanceAddUser input");
+  const serverConfig = await getServerConfig();
+  console.log("[function call: 🔥 canInstanceAddUser: serverConfig", {
+    serverConfig,
+  });
+  if (!serverConfig.licenseKey) {
+    console.log("[function call: 🔥 canInstanceAddUser: licenseKey not found");
+    return true;
+  }
+
+  const instanceSeatCount = await getServerUserCount();
+
+  console.log("[function call: 🔥 canInstanceAddUser: instanceSeatCount", {
+    instanceSeatCount,
+  });
+  try {
+    const response = await fetch(
+      `${LICENSE_SERVER_URL}/api/instances/add-user?currentSeats=${instanceSeatCount}`,
+      {
+        method: "GET",
+        headers: {
+          licenseKey: serverConfig.licenseKey,
+          siteUrl: INSTANCE_SITE_URL,
+          "Content-Type": "application/json",
+        },
+      }
+    );
+    return response.ok;
+  } catch (error) {
+    console.error(error);
+    return false;
+  }
+}

From 28c29258be19353a55934d8969717d0fcbce22a3 Mon Sep 17 00:00:00 2001
From: McPizza0 <gh@l1.io>
Date: Fri, 7 Mar 2025 16:49:58 +0100
Subject: [PATCH 14/17] big last bug push

---
 apps/web/app/actions.ts                       |   6 +
 .../api/settings/billing/subscribe/route.ts   |  18 +-
 .../settings/workspace/Workspace.tsx          | 303 ++++++++----------
 .../workspace/components/CloudProUpgrade.tsx  | 172 ++++++++++
 .../workspace/components/CustomDomain.tsx     |  18 +-
 apps/web/app/login/form.tsx                   |  11 +-
 apps/web/app/login/page.tsx                   |   4 +-
 apps/web/components/pages/PricingPage.tsx     |  59 +---
 apps/web/components/pages/consts.ts           |  45 +++
 apps/web/utils/instance/functions.ts          | 108 ++-----
 packages/database/emails/config.ts            |   4 +-
 11 files changed, 423 insertions(+), 325 deletions(-)
 create mode 100644 apps/web/app/dashboard/settings/workspace/components/CloudProUpgrade.tsx
 create mode 100644 apps/web/components/pages/consts.ts

diff --git a/apps/web/app/actions.ts b/apps/web/app/actions.ts
index fc08c87b9..cdca4d867 100644
--- a/apps/web/app/actions.ts
+++ b/apps/web/app/actions.ts
@@ -3,6 +3,7 @@
 import {
   getServerConfig as getServerConfigInternal,
   canInstanceAddUser,
+  isWorkspacePro,
 } from "@/utils/instance/functions";
 import { serverEnv } from "@cap/env";
 
@@ -24,3 +25,8 @@ export async function getServerConfigAction() {
 export async function canInstanceAddUserAction() {
   return await canInstanceAddUser();
 }
+
+export async function isWorkspaceProAction(workspaceId: string) {
+  "use server";
+  return isWorkspacePro({ workspaceId });
+}
diff --git a/apps/web/app/api/settings/billing/subscribe/route.ts b/apps/web/app/api/settings/billing/subscribe/route.ts
index a643a834c..dc3dd02aa 100644
--- a/apps/web/app/api/settings/billing/subscribe/route.ts
+++ b/apps/web/app/api/settings/billing/subscribe/route.ts
@@ -9,7 +9,7 @@ import {
 export async function POST(request: NextRequest) {
   console.log("Starting subscription process");
   const user = await getCurrentUser();
-  const { priceId } = await request.json();
+  const { priceId, spaceId } = await request.json();
 
   console.log("Received request with priceId:", priceId);
   console.log("Current user:", user?.id);
@@ -19,21 +19,19 @@ export async function POST(request: NextRequest) {
     return Response.json({ error: true }, { status: 400 });
   }
 
+  if (!spaceId) {
+    console.error("Space ID not found");
+    return Response.json({ error: true }, { status: 400 });
+  }
+
   if (!user) {
     console.error("User not found");
     return Response.json({ error: true, auth: false }, { status: 401 });
   }
 
-  const userActiveWorkspaceId = user.activeSpaceId;
-
-  if (!userActiveWorkspaceId) {
-    console.error("User has no active workspace");
-    return Response.json({ error: true }, { status: 400 });
-  }
-
   // get the current workspace pro status and return if it is already on pro
   const workspaceProStatus = await isWorkspacePro({
-    workspaceId: userActiveWorkspaceId,
+    workspaceId: spaceId,
   });
   if (workspaceProStatus) {
     console.error("Workspace already has pro plan");
@@ -44,7 +42,7 @@ export async function POST(request: NextRequest) {
 
   try {
     const checkoutLink = await generateCloudProStripeCheckoutSession({
-      cloudWorkspaceId: userActiveWorkspaceId,
+      cloudWorkspaceId: spaceId,
       cloudUserId: user.id,
       email: user.email,
       type: priceType,
diff --git a/apps/web/app/dashboard/settings/workspace/Workspace.tsx b/apps/web/app/dashboard/settings/workspace/Workspace.tsx
index a18ca76b9..99fab256d 100644
--- a/apps/web/app/dashboard/settings/workspace/Workspace.tsx
+++ b/apps/web/app/dashboard/settings/workspace/Workspace.tsx
@@ -24,16 +24,18 @@ import {
   DialogFooter,
 } from "@cap/ui";
 import { useRouter } from "next/navigation";
-import { useState, useRef, useEffect } from "react";
+import { useState, useRef, useEffect, Suspense } from "react";
 import toast from "react-hot-toast";
 import { useSharedContext } from "@/app/dashboard/_components/DynamicSharedLayout";
 import { format } from "date-fns";
 import { Tooltip } from "react-tooltip";
 import { CustomDomain } from "./components/CustomDomain";
-import { getServerConfigAction, canInstanceAddUserAction } from "@/app/actions";
+import { canInstanceAddUserAction, isWorkspaceProAction } from "@/app/actions";
+import { CloudProUpgrade } from "./components/CloudProUpgrade";
+import Loading from "../loading";
 
 export const Workspace = () => {
-  const { spaceData, activeSpace, user } = useSharedContext();
+  const { activeSpace, user, isCapCloud } = useSharedContext();
   const workspaceName = activeSpace?.space.name;
   const router = useRouter();
   const [loading, setLoading] = useState(false);
@@ -42,23 +44,28 @@ export const Workspace = () => {
   const [inviteEmails, setInviteEmails] = useState<string[]>([]);
   const [emailInput, setEmailInput] = useState("");
   const ownerToastShown = useRef(false);
-  const [isCapCloud, setIsCapCloud] = useState(false);
+  const [isServerConfigLoading, setIsServerConfigLoading] = useState(true);
   const [canAddUser, setCanAddUser] = useState(true);
+  const [isWorkspacePro, setIsWorkspacePro] = useState(false);
 
   useEffect(() => {
     const fetchServerConfig = async () => {
+      setIsServerConfigLoading(true);
       try {
-        const serverConfig = await getServerConfigAction();
-        setIsCapCloud(serverConfig.isCapCloud);
         const canAdd = await canInstanceAddUserAction();
         setCanAddUser(canAdd);
+        if (activeSpace?.space.id) {
+          const proStatus = await isWorkspaceProAction(activeSpace.space.id);
+          setIsWorkspacePro(proStatus);
+        }
+        setIsServerConfigLoading(false);
       } catch (error) {
         console.error("Failed to get server config:", error);
       }
     };
 
     fetchServerConfig();
-  }, []);
+  }, [activeSpace?.space.id]);
 
   const showOwnerToast = () => {
     if (!ownerToastShown.current) {
@@ -183,154 +190,101 @@ export const Workspace = () => {
   };
 
   return (
-    <form onSubmit={handleSubmit}>
-      {isOwner === false && (
+    <>
+      <form onSubmit={handleSubmit}>
+        {isOwner === false && (
+          <CardContent>
+            <CardTitle>*Only the owner can make changes</CardTitle>
+            <CardDescription>
+              Only the owner can make changes to this workspace.
+            </CardDescription>
+          </CardContent>
+        )}
         <CardContent>
-          <CardTitle>*Only the owner can make changes</CardTitle>
+          <CardTitle>Workspace Details</CardTitle>
           <CardDescription>
-            Only the owner can make changes to this workspace.
+            Changing the name and image will update how your workspace appears
+            to others members.
           </CardDescription>
         </CardContent>
-      )}
-      <CardContent>
-        <CardTitle>Workspace Details</CardTitle>
-        <CardDescription>
-          Changing the name and image will update how your workspace appears to
-          others members.
-        </CardDescription>
-      </CardContent>
-      <CardContent>
-        <div className="space-y-3">
-          <div>
-            <Label htmlFor="workspaceName">Workspace name</Label>
-            <Input
-              type="text"
-              defaultValue={workspaceName as string}
-              id="workspaceName"
-              name="workspaceName"
-              disabled={!isOwner}
-              onChange={() => {
-                if (!isOwner) showOwnerToast();
-              }}
-            />
-          </div>
-          <div>
-            <Label htmlFor="allowedEmailDomain">
-              Workspace Access Requirements
-            </Label>
-            <Input
-              type="text"
-              placeholder="e.g. company.com"
-              defaultValue={activeSpace?.space.allowedEmailDomain || ""}
-              id="allowedEmailDomain"
-              name="allowedEmailDomain"
-              disabled={!isOwner}
-              onChange={() => {
-                if (!isOwner) showOwnerToast();
-              }}
-            />
-            <p className="text-sm text-gray-400 mt-1">
-              Only users with email addresses from this domain will be able to
-              access videos shared in this workspace. Leave empty to allow all
-              users.
-            </p>
+        <CardContent>
+          <div className="space-y-3">
+            <div>
+              <Label htmlFor="workspaceName">Workspace name</Label>
+              <Input
+                type="text"
+                defaultValue={workspaceName as string}
+                id="workspaceName"
+                name="workspaceName"
+                disabled={!isOwner}
+                onChange={() => {
+                  if (!isOwner) showOwnerToast();
+                }}
+              />
+            </div>
+            <div>
+              <Label htmlFor="allowedEmailDomain">
+                Workspace Access Requirements
+              </Label>
+              <Input
+                type="text"
+                placeholder="e.g. company.com"
+                defaultValue={activeSpace?.space.allowedEmailDomain || ""}
+                id="allowedEmailDomain"
+                name="allowedEmailDomain"
+                disabled={!isOwner}
+                onChange={() => {
+                  if (!isOwner) showOwnerToast();
+                }}
+              />
+              <p className="text-sm text-gray-400 mt-1">
+                Only users with email addresses from this domain will be able to
+                access videos shared in this workspace. Leave empty to allow all
+                users.
+              </p>
+            </div>
           </div>
-        </div>
-      </CardContent>
-      <CardFooter className="border-b px-6 pt-0 pb-6">
-        <Button
-          type="submit"
-          size="sm"
-          variant="gray"
-          disabled={!isOwner}
-          onClick={() => {
-            if (!isOwner) showOwnerToast();
-          }}
-        >
-          Save
-        </Button>
-      </CardFooter>
-      <>
+        </CardContent>
+        <CardFooter className="border-b px-6 pt-0 pb-6">
+          <Button
+            type="submit"
+            size="sm"
+            disabled={!isOwner}
+            onClick={() => {
+              if (!isOwner) showOwnerToast();
+            }}
+          >
+            Save
+          </Button>
+        </CardFooter>
+
         <CardContent className="pt-6">
           <CardTitle>Custom Domain</CardTitle>
           <CardDescription>
             Configure a custom domain for your workspace's shared caps.
           </CardDescription>
           <div className="mt-4">
-            <CustomDomain />
+            <CustomDomain isWorkspacePro={isWorkspacePro} />
           </div>
         </CardContent>
         <CardFooter className="border-b px-6 pt-0 pb-2"></CardFooter>
-      </>
+      </form>
       <CardHeader>
         <div className="flex items-center justify-between">
           <div>
             <CardTitle>Workspace Members</CardTitle>
             {isCapCloud && (
-              <>
-                <CardDescription>
-                  Manage your workspace members.
-                </CardDescription>
-
-                {/* Legacy invite quota based code
-                <CardDescription>
-                  Current seats capacity:{" "}
-                  {`${activeSpace?.inviteQuota} paid ${
-                    activeSpace && activeSpace?.inviteQuota > 1
-                      ? "subscriptions"
-                      : "subscription"
-                  } across all of your workspaces`}
-                </CardDescription>
-                <CardDescription>
-                  Seats remaining:{" "}
-                  {activeSpace?.inviteQuota ??
-                    1 - (activeSpace?.totalInvites ?? 1)}
-                </CardDescription> */}
-              </>
+              <CardDescription>Manage your workspace members.</CardDescription>
             )}
           </div>
         </div>
       </CardHeader>
       <CardContent>
         <div className="flex items-center space-x-2">
-          {isCapCloud && (
-            <>
-              <Button
-                type="button"
-                size="sm"
-                variant="primary"
-                disabled={!isOwner || loading}
-                onClick={() => {
-                  if (!isOwner) {
-                    showOwnerToast();
-                    return;
-                  }
-                  setLoading(true);
-                  fetch(`/api/settings/billing/manage`, {
-                    method: "POST",
-                  })
-                    .then(async (res) => {
-                      const url = await res.json();
-                      router.push(url);
-                    })
-                    .catch((err) => {
-                      alert(err);
-                      setLoading(false);
-                    });
-                }}
-                data-tooltip-id="purchase-seats-tooltip"
-                data-tooltip-content='Once inside the Stripe dashboard, click "Manage Plan", then increase quantity of subscriptions to purchase more seats.'
-              >
-                {loading ? "Loading..." : "Purchase more seats"}
-              </Button>
-              <Tooltip id="purchase-seats-tooltip" place="top" />
-            </>
-          )}
           {isCapCloud ? (
             <Button
               type="button"
               size="sm"
-              variant="gray"
               onClick={() => {
                 if (!isOwner) {
                   showOwnerToast();
@@ -346,7 +300,6 @@ export const Workspace = () => {
             <Button
               type="button"
               size="sm"
-              variant="gray"
               onClick={() => {
                 if (!isOwner) {
                   showOwnerToast();
@@ -423,46 +376,60 @@ export const Workspace = () => {
           </TableBody>
         </Table>
       </CardContent>
-      {isCapCloud && (
-        <>
-          <CardHeader>
-            <CardTitle>View and manage your billing details</CardTitle>
-            <CardDescription>
-              View and edit your billing details, as well as manage your
-              subscription.
-            </CardDescription>
-          </CardHeader>
-          <CardContent>
-            <CardDescription className="mt-1">
-              <Button
-                type="button"
-                size="sm"
-                variant="gray"
-                onClick={() => {
-                  if (!isOwner) {
-                    showOwnerToast();
-                    return;
-                  }
-                  setLoading(true);
-                  fetch(`/api/settings/billing/manage`, {
-                    method: "POST",
-                  })
-                    .then(async (res) => {
-                      const url = await res.json();
-                      router.push(url);
-                    })
-                    .catch((err) => {
-                      alert(err);
-                      setLoading(false);
-                    });
-                }}
-                disabled={!isOwner}
-              >
-                {loading ? "Loading..." : "Manage Billing"}
-              </Button>
-            </CardDescription>
-          </CardContent>
-        </>
+      {isServerConfigLoading ? (
+        <Loading />
+      ) : (
+        isCapCloud && (
+          <>
+            <CardHeader>
+              <CardTitle>View and manage your billing details</CardTitle>
+              <CardDescription>
+                View and edit your billing details, as well as manage your
+                subscription.
+              </CardDescription>
+            </CardHeader>
+            <CardContent>
+              <CardDescription className="mt-1 flex flex-col gap-2">
+                {isWorkspacePro ? (
+                  <>
+                    <p>You are currently on the Cap Pro plan.</p>
+                    <div>
+                      <Button
+                        type="button"
+                        size="sm"
+                        onClick={() => {
+                          if (!isOwner) {
+                            showOwnerToast();
+                            return;
+                          }
+                          setLoading(true);
+                          fetch(`/api/settings/billing/manage`, {
+                            method: "POST",
+                          })
+                            .then(async (res) => {
+                              const url = await res.json();
+                              router.push(url);
+                            })
+                            .catch((err) => {
+                              alert(err);
+                              setLoading(false);
+                            });
+                        }}
+                        disabled={!isOwner}
+                      >
+                        {loading ? "Loading..." : "Manage Billing"}
+                      </Button>
+                    </div>
+                  </>
+                ) : (
+                  <CloudProUpgrade
+                    workspaceUserCount={activeSpace?.members.length ?? 0}
+                  />
+                )}
+              </CardDescription>
+            </CardContent>
+          </>
+        )
       )}
 
       <Dialog open={isInviteDialogOpen} onOpenChange={setIsInviteDialogOpen}>
@@ -530,6 +497,6 @@ export const Workspace = () => {
           </DialogFooter>
         </DialogContent>
       </Dialog>
-    </form>
+    </>
   );
 };
diff --git a/apps/web/app/dashboard/settings/workspace/components/CloudProUpgrade.tsx b/apps/web/app/dashboard/settings/workspace/components/CloudProUpgrade.tsx
new file mode 100644
index 000000000..57792a368
--- /dev/null
+++ b/apps/web/app/dashboard/settings/workspace/components/CloudProUpgrade.tsx
@@ -0,0 +1,172 @@
+"use client";
+
+import {
+  Button,
+  LogoBadge,
+  Card,
+  CardDescription,
+  CardTitle,
+  CardHeader,
+  CardContent,
+  CardFooter,
+  Switch,
+} from "@cap/ui";
+import { Check, Construction } from "lucide-react";
+import { useState, useEffect } from "react";
+import { getProPlanId } from "@cap/utils";
+import toast from "react-hot-toast";
+import { useRouter, useSearchParams } from "next/navigation";
+import { parseAsBoolean, parseAsInteger, useQueryState } from "nuqs";
+import { pricingPerUser, proPlanFeatureList } from "@/components/pages/consts";
+import { useSharedContext } from "@/app/dashboard/_components/DynamicSharedLayout";
+
+export const CloudProUpgrade = ({
+  workspaceUserCount,
+}: {
+  workspaceUserCount: number;
+}) => {
+  const [proLoading, setProLoading] = useState(false);
+  const [isAnnual, setIsAnnual] = useQueryState(
+    "proAnnual",
+    parseAsBoolean.withDefault(true)
+  );
+  const [initialRender, setInitialRender] = useState(true);
+
+  const { activeSpace, isCapCloud } = useSharedContext();
+
+  const spaceName = activeSpace?.space.name;
+
+  useEffect(() => {
+    const init = async () => {
+      setInitialRender(false);
+    };
+
+    init();
+  }, []);
+
+  const planCheckout = async (planId?: string) => {
+    setProLoading(true);
+
+    if (!planId) {
+      planId = getProPlanId(isAnnual ? "yearly" : "monthly");
+    }
+
+    const response = await fetch(`/api/settings/billing/subscribe`, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json",
+      },
+      body: JSON.stringify({
+        priceId: planId,
+        spaceId: activeSpace?.space.id,
+      }),
+    });
+    const data = await response.json();
+
+    if (data.subscription === true) {
+      toast.success("You are already on the Cap Pro plan");
+    }
+
+    if (data.url) {
+      window.location.href = data.url;
+    }
+
+    setProLoading(false);
+  };
+
+  if (!isCapCloud) {
+    return null;
+  }
+
+  return (
+    <div className="flex flex-col gap-4">
+      <p className="text-xs">
+        Cap is currently in public beta, and we're offering special early
+        adopter pricing to our first users. This pricing will be locked in for
+        the lifetime of your subscription.
+      </p>
+
+      <Card
+        className={`bg-gray-50 rounded-xl flex-grow border-blue-500 border-2 w-fit ${
+          initialRender ? "fade-in-up animate-delay-2" : ""
+        }`}
+      >
+        <div className="">
+          <CardHeader>
+            <CardTitle className="text-2xl  font-medium">
+              App + Commercial License +{" "}
+              <span className="text-blue-500 text-2xl font-bold">Cap Pro</span>
+            </CardTitle>
+            <CardDescription className="text-lg">
+              For professional use + cloud features like shareable links,
+              transcriptions, comments, & more. Perfect for teams or sharing
+              with clients.
+            </CardDescription>
+          </CardHeader>
+          <CardContent>
+            <div className="w-full flex flex-col gap-4">
+              <div className="flex flex-row items-center justify-between">
+                <h3 className="text-4xl">
+                  {isAnnual
+                    ? `$${
+                        pricingPerUser.cloud.annually * workspaceUserCount
+                      }/mo`
+                    : `$${
+                        pricingPerUser.cloud.monthly * workspaceUserCount
+                      }/mo`}
+                </h3>
+
+                <div className="flex items-center gap-2">
+                  <span className="text-xs">Annual</span>
+                  <Switch
+                    checked={!isAnnual}
+                    onCheckedChange={() => setIsAnnual(!isAnnual)}
+                  />
+                  <span className="text-xs">Monthly</span>
+                </div>
+              </div>
+              <div>
+                <p className="text-sm font-medium">
+                  {isAnnual
+                    ? `$${pricingPerUser.cloud.annually}/mo per user${
+                        workspaceUserCount === 1 ? "" : "s"
+                      }, billed annually at $${
+                        pricingPerUser.cloud.annually * workspaceUserCount * 12
+                      }/year.`
+                    : `$${pricingPerUser.cloud.monthly}/mo per user${
+                        workspaceUserCount === 1 ? "" : "s"
+                      }, billed monthly at $${
+                        pricingPerUser.cloud.monthly * workspaceUserCount
+                      }/mo.`}
+                </p>
+              </div>
+
+              <Button
+                variant="primary"
+                onClick={() => planCheckout()}
+                className="w-full mt-2"
+                size="lg"
+                disabled={proLoading}
+              >
+                {proLoading ? "Loading..." : `Upgrade ${spaceName} to Cap Pro`}
+              </Button>
+
+              <ul className="grid grid-cols-1 md:grid-cols-2 gap-4 list-none mt-4">
+                {proPlanFeatureList.map((item, index) => (
+                  <li key={index} className="flex justify-start items-center">
+                    <div className="w-5 h-5 m-0 p-0 flex items-center border-[2px] border-green-500 justify-center rounded-full">
+                      <Check className="w-3 h-3 stroke-[4px] stroke-green-500" />
+                    </div>
+                    <span className="ml-1.5 text-gray-500 font-bold">
+                      {item.text}
+                    </span>
+                  </li>
+                ))}
+              </ul>
+            </div>
+          </CardContent>
+        </div>
+      </Card>
+    </div>
+  );
+};
diff --git a/apps/web/app/dashboard/settings/workspace/components/CustomDomain.tsx b/apps/web/app/dashboard/settings/workspace/components/CustomDomain.tsx
index 9dbb976b6..f97435bab 100644
--- a/apps/web/app/dashboard/settings/workspace/components/CustomDomain.tsx
+++ b/apps/web/app/dashboard/settings/workspace/components/CustomDomain.tsx
@@ -37,9 +37,9 @@ type VerificationResponse = {
   };
 };
 
-export function CustomDomain() {
+export function CustomDomain({ isWorkspacePro }: { isWorkspacePro: boolean }) {
   const router = useRouter();
-  const { activeSpace, isSubscribed } = useSharedContext();
+  const { activeSpace, isSubscribed, user } = useSharedContext();
   const [domain, setDomain] = useState(activeSpace?.space.customDomain || "");
   const [loading, setLoading] = useState(false);
   const [verifying, setVerifying] = useState(false);
@@ -52,6 +52,8 @@ export function CustomDomain() {
   const pollInterval = useRef<NodeJS.Timeout>();
   const POLL_INTERVAL = 5000; // 5 seconds
 
+  const isOwner = user?.id === activeSpace?.space.ownerId;
+
   const cleanDomain = (input: string) => {
     if (!input) return "";
 
@@ -168,7 +170,7 @@ export function CustomDomain() {
   const handleSubmit = async (e: React.FormEvent) => {
     e.preventDefault();
 
-    if (!isSubscribed) {
+    if (!isWorkspacePro) {
       toast.error(
         (t) => (
           <span>
@@ -315,10 +317,14 @@ export function CustomDomain() {
             placeholder="your-domain.com"
             value={domain}
             onChange={(e) => setDomain(e.target.value)}
-            disabled={loading}
+            disabled={loading || !isOwner}
             className="flex-1"
           />
-          <Button type="button" onClick={handleSubmit} disabled={loading}>
+          <Button
+            type="button"
+            onClick={handleSubmit}
+            disabled={loading || !isOwner}
+          >
             {loading ? "Saving..." : "Save"}
           </Button>
           {activeSpace?.space.customDomain && (
@@ -342,7 +348,7 @@ export function CustomDomain() {
               type="button"
               variant="destructive"
               onClick={handleRemoveDomain}
-              disabled={loading}
+              disabled={loading || !isOwner}
             >
               Remove
             </Button>
diff --git a/apps/web/app/login/form.tsx b/apps/web/app/login/form.tsx
index 156fbe0c1..fcae8cda9 100644
--- a/apps/web/app/login/form.tsx
+++ b/apps/web/app/login/form.tsx
@@ -282,7 +282,7 @@ interface LoginFormProps {
   };
 }
 
-function LoginFormClient({ serverConfig }: LoginFormProps) {
+export function LoginForm({ serverConfig }: LoginFormProps) {
   const searchParams = useSearchParams();
   const next = searchParams?.get("next");
   const [email, setEmail] = useState("");
@@ -411,12 +411,3 @@ function LoginFormClient({ serverConfig }: LoginFormProps) {
     </>
   );
 }
-
-// Server component to fetch config and render client component
-import { getServerConfigAction } from "../actions";
-
-export async function LoginForm() {
-  const serverConfig = await getServerConfigAction();
-
-  return <LoginFormClient serverConfig={serverConfig} />;
-}
diff --git a/apps/web/app/login/page.tsx b/apps/web/app/login/page.tsx
index 411fb97a1..9ef21e55a 100644
--- a/apps/web/app/login/page.tsx
+++ b/apps/web/app/login/page.tsx
@@ -4,6 +4,7 @@ import { LoginForm } from "./form";
 import { getCurrentUser } from "@cap/database/auth/session";
 import { redirect } from "next/navigation";
 import Loading from "../dashboard/loading";
+import { getServerConfigAction } from "../actions";
 
 export default async function LoginPage({
   searchParams,
@@ -11,6 +12,7 @@ export default async function LoginPage({
   searchParams: { error?: string };
 }) {
   const session = await getCurrentUser();
+  const serverConfig = await getServerConfigAction();
 
   if (session) {
     redirect("/dashboard");
@@ -48,7 +50,7 @@ export default async function LoginPage({
               </>
             }
           >
-            <LoginForm />
+            <LoginForm serverConfig={serverConfig} />
           </Suspense>
         </div>
       </div>
diff --git a/apps/web/components/pages/PricingPage.tsx b/apps/web/components/pages/PricingPage.tsx
index 10bd2222e..99afb1899 100644
--- a/apps/web/components/pages/PricingPage.tsx
+++ b/apps/web/components/pages/PricingPage.tsx
@@ -18,6 +18,7 @@ import toast from "react-hot-toast";
 import { useRouter, useSearchParams } from "next/navigation";
 import { SimplePlans } from "../text/SimplePlans";
 import { parseAsBoolean, parseAsInteger, useQueryState } from "nuqs";
+import { pricingPerUser, proPlanFeatureList } from "./consts";
 
 export const PricingPage = () => {
   const [proLoading, setProLoading] = useState(false);
@@ -226,45 +227,6 @@ export const PricingPage = () => {
     }
   };
 
-  const proList = [
-    {
-      text: "Connect your own domain to Cap",
-      available: true,
-    },
-    {
-      text: "Unlimited cloud storage & Shareable links",
-      available: true,
-    },
-    {
-      text: "Connect custom S3 storage bucket",
-      available: true,
-    },
-    {
-      text: "Desktop app commercial license included",
-      available: true,
-    },
-    {
-      text: "Advanced teams features",
-      available: true,
-    },
-    {
-      text: "Unlimited views",
-      available: true,
-    },
-    {
-      text: "Password protected videos",
-      available: true,
-    },
-    {
-      text: "Advanced analytics",
-      available: true,
-    },
-    {
-      text: "Priority support",
-      available: true,
-    },
-  ];
-
   const commercialList = [
     {
       text: "Commercial Use of Cap Recorder + Editor",
@@ -597,7 +559,7 @@ export const PricingPage = () => {
                     <div className="space-y-8">
                       <div>
                         <ul className="p-0 space-y-3 list-none">
-                          {proList.map((item, index) => (
+                          {proPlanFeatureList.map((item, index) => (
                             <li
                               key={index}
                               className="flex justify-start items-center"
@@ -644,8 +606,14 @@ export const PricingPage = () => {
                       <div className="flex items-center space-x-3">
                         <h3 className="text-4xl">
                           {isSelfHostedAnnual
-                            ? `$${6 * selfHostedQuantity}/mo`
-                            : `$${9 * selfHostedQuantity}/mo`}
+                            ? `$${
+                                pricingPerUser.cloud.annually *
+                                selfHostedQuantity
+                              }/mo`
+                            : `$${
+                                pricingPerUser.cloud.monthly *
+                                selfHostedQuantity
+                              }/mo`}
                         </h3>
                         <div>
                           <p className="text-sm font-medium">
@@ -655,8 +623,11 @@ export const PricingPage = () => {
                           </p>
                           {isSelfHostedAnnual && (
                             <p className="text-sm">
-                              or, ${9 * selfHostedQuantity}/month, for{" "}
-                              {selfHostedQuantity} users, billed monthly.
+                              or, $
+                              {pricingPerUser.cloud.monthly *
+                                selfHostedQuantity}
+                              /month, for {selfHostedQuantity} users, billed
+                              monthly.
                             </p>
                           )}
                         </div>
diff --git a/apps/web/components/pages/consts.ts b/apps/web/components/pages/consts.ts
new file mode 100644
index 000000000..cd6733fdb
--- /dev/null
+++ b/apps/web/components/pages/consts.ts
@@ -0,0 +1,45 @@
+export const proPlanFeatureList = [
+  {
+    text: "Connect your own domain to Cap",
+    available: true,
+  },
+  {
+    text: "Unlimited cloud storage & Shareable links",
+    available: true,
+  },
+  {
+    text: "Connect custom S3 storage bucket",
+    available: true,
+  },
+  {
+    text: "Desktop app commercial license included",
+    available: true,
+  },
+  {
+    text: "Advanced teams features",
+    available: true,
+  },
+  {
+    text: "Unlimited views",
+    available: true,
+  },
+  {
+    text: "Password protected videos",
+    available: true,
+  },
+  {
+    text: "Advanced analytics",
+    available: true,
+  },
+  {
+    text: "Priority support",
+    available: true,
+  },
+];
+
+export const pricingPerUser = {
+  cloud: {
+    annually: 6,
+    monthly: 9,
+  },
+};
diff --git a/apps/web/utils/instance/functions.ts b/apps/web/utils/instance/functions.ts
index 1ba32c59c..bc0117be5 100644
--- a/apps/web/utils/instance/functions.ts
+++ b/apps/web/utils/instance/functions.ts
@@ -12,17 +12,12 @@ import {
 export const getServerConfig = async (): Promise<
   typeof serverConfigTable.$inferSelect
 > => {
-  console.log("[function call: getServerConfig");
   const serverConfig = await db.query.serverConfigTable.findFirst({
     where: eq(serverConfigTable.id, 1),
   });
 
-  console.log("[function call: getServerConfig: serverConfig", {
-    serverConfig,
-  });
   // create server config object if it doesn't exist
   if (!serverConfig) {
-    console.log("[function call: getServerConfig: serverConfig not found");
     const newServerConfig = {
       id: 1,
       licenseKey: null,
@@ -34,11 +29,9 @@ export const getServerConfig = async (): Promise<
       emailSendFromName: null,
       emailSendFromEmail: null,
     };
-    console.log("[function call: getServerConfig: newServerConfig", {
-      newServerConfig,
-    });
+
     await db.insert(serverConfigTable).values(newServerConfig);
-    console.log("[function call: getServerConfig returning newServerConfig");
+
     return newServerConfig;
   }
 
@@ -47,17 +40,9 @@ export const getServerConfig = async (): Promise<
     (serverConfig.licenseValidityCache === null ||
       serverConfig.licenseValidityCache.getTime() < Date.now())
   ) {
-    console.log("[function call: getServerConfig: ifStatement", {
-      licenseKey: serverConfig.licenseKey,
-      licenseValidityCache: serverConfig.licenseValidityCache,
-      dateNow: Date.now(),
-    });
     const validationResult = await validateServerLicense({
       serverConfig,
     });
-    console.log("[function call: getServerConfig: validationResult", {
-      validationResult,
-    });
     return validationResult;
   }
 
@@ -66,39 +51,26 @@ export const getServerConfig = async (): Promise<
 
 // check if the server is a Cap Cloud server
 export const isCapCloud = async (): Promise<boolean> => {
-  console.log("[function call: isCapCloud");
   const serverConfig = await getServerConfig();
-  console.log("[function call: isCapCloud: serverConfig", { serverConfig });
   return serverConfig.isCapCloud;
 };
 
 // Used in self hosted instances to add a user to the server superAdminIds array
 export const addServerSuperAdmin = async ({ userId }: { userId: string }) => {
-  console.log("[function call: addServerSuperAdmin input", { userId });
   const currentUser = await getCurrentUser();
-  console.log("[function call: addServerSuperAdmin: currentUser", {
-    currentUser,
-  });
+
   if (!currentUser) {
-    console.log("[function call: addServerSuperAdmin: currentUser not found");
     throw new Error("Not authorized");
   }
 
   const serverConfig = await getServerConfig();
-  console.log("[function call: addServerSuperAdmin: serverConfig", {
-    serverConfig,
-  });
+
   const existingSuperAdminIds = serverConfig.superAdminIds;
-  console.log("[function call: addServerSuperAdmin: existingSuperAdminIds", {
-    existingSuperAdminIds,
-  });
+
   if (
     existingSuperAdminIds.length > 0 &&
     !existingSuperAdminIds.includes(currentUser.id)
   ) {
-    console.log(
-      "[function call: addServerSuperAdmin if not in admin array: not authorized"
-    );
     throw new Error("Not authorized");
   }
 
@@ -109,7 +81,7 @@ export const addServerSuperAdmin = async ({ userId }: { userId: string }) => {
       superAdminIds: [...existingSuperAdminIds, userId],
     })
     .where(eq(serverConfigTable.id, 1));
-  console.log("[function call: addServerSuperAdmin: updated server config");
+
   return;
 };
 
@@ -119,14 +91,10 @@ export async function validateServerLicense({
 }: {
   serverConfig: typeof serverConfigTable.$inferSelect;
 }): Promise<typeof serverConfigTable.$inferSelect> {
-  console.log("[function call: validateServerLicense input", { serverConfig });
   if (!serverConfig?.licenseKey) {
-    console.log("[function call: validateServerLicense: licenseKey not found");
     return serverConfig;
   }
-  console.log("[function call: validateServerLicense: licenseKey", {
-    licenseKey: serverConfig.licenseKey,
-  });
+
   const licenseServerResponse = await fetch(
     `${LICENSE_SERVER_URL}/api/instances/validate`,
     {
@@ -141,18 +109,9 @@ export async function validateServerLicense({
       }),
     }
   );
-  console.log("[function call: validateServerLicense: licenseServerResponse", {
-    licenseServerResponse,
-  });
 
   const licenseServerResponseCode = await licenseServerResponse.status;
   const licenseServerResponseJson = await licenseServerResponse.json();
-  console.log(
-    "[function call: validateServerLicense: licenseServerResponseJson",
-    {
-      licenseServerResponseJson,
-    }
-  );
 
   let newPartialServerConfig: Partial<
     typeof serverConfigTable.$inferInsert
@@ -165,52 +124,27 @@ export async function validateServerLicense({
     licenseServerResponseCode === 402 ||
     licenseServerResponseCode === 409
   ) {
-    console.log(
-      "[function call: validateServerLicense: licenseServerResponseCode",
-      {
-        licenseServerResponseCode,
-      }
-    );
     newPartialServerConfig = {
       licenseValid: false,
       licenseValidityCache: null,
       isCapCloud: false,
     };
-    console.log(
-      "[function call: validateServerLicense: newPartialServerConfig",
-      {
-        newPartialServerConfig,
-      }
-    );
   }
   // handle 200: license is valid
   if (licenseServerResponseCode === 200) {
-    console.log("[function call: validateServerLicense: 200: license is valid");
     newPartialServerConfig = {
       licenseValid: true,
       licenseValidityCache: new Date(licenseServerResponseJson.refresh),
       isCapCloud: licenseServerResponseJson.isCapCloudLicense,
     };
-    console.log(
-      "[function call: validateServerLicense: newPartialServerConfig",
-      {
-        newPartialServerConfig,
-      }
-    );
   }
-  console.log("[function call: validateServerLicense: updating server config");
+
   newPartialServerConfig &&
     (await db
       .update(serverConfigTable)
       .set(newPartialServerConfig)
       .where(eq(serverConfigTable.id, 1)));
-  console.log(
-    "[function call: validateServerLicense: returning server config",
-    {
-      ...serverConfig,
-      ...newPartialServerConfig,
-    }
-  );
+
   return {
     ...serverConfig,
     ...newPartialServerConfig,
@@ -311,18 +245,20 @@ export async function getIsUserPro({ userId }: { userId: string }) {
 
 // check if a single workspace is a pro workspace
 export async function isWorkspacePro({ workspaceId }: { workspaceId: string }) {
-  console.log("[function call: isWorkspacePro input", { workspaceId });
+  console.log("[🔥function call: isWorkspacePro input", { workspaceId });
   const serverConfig = await getServerConfig();
-  console.log("[function call: isWorkspacePro: serverConfig", { serverConfig });
+  console.log("[🔥function call: isWorkspacePro: serverConfig", {
+    serverConfig,
+  });
   if (!serverConfig.licenseKey) {
-    console.log("[function call: isWorkspacePro: licenseKey not found");
+    console.log("[🔥function call: isWorkspacePro: licenseKey not found");
     return false;
   }
 
   // if self hosting, all workspaces on the server have the same pro status as the server itself
   if (!serverConfig.isCapCloud) {
     console.log(
-      "[function call: isWorkspacePro: ifStatement: self hosting: returning licenseValid"
+      "[🔥function call: isWorkspacePro: ifStatement: self hosting: returning licenseValid"
     );
     return serverConfig.licenseValid;
   }
@@ -331,11 +267,13 @@ export async function isWorkspacePro({ workspaceId }: { workspaceId: string }) {
   const workspaceResponse = await db.query.spaces.findFirst({
     where: eq(spaces.id, workspaceId),
   });
-  console.log("[function call: isWorkspacePro: workspaceResponse", {
+  console.log("[🔥function call: isWorkspacePro: workspaceResponse", {
     workspaceResponse,
   });
   if (!workspaceResponse) {
-    console.log("[function call: isWorkspacePro: workspaceResponse not found");
+    console.log(
+      "[🔥function call: isWorkspacePro: workspaceResponse not found"
+    );
     return false;
   }
 
@@ -346,7 +284,7 @@ export async function isWorkspacePro({ workspaceId }: { workspaceId: string }) {
     workspaceResponse.proExpiresAt > new Date()
   ) {
     console.log(
-      "[function call: isWorkspacePro: workspace is pro: returning true"
+      "[🔥function call: isWorkspacePro: workspace is pro: returning true"
     );
     return true;
   }
@@ -370,7 +308,7 @@ export async function isWorkspacePro({ workspaceId }: { workspaceId: string }) {
     workspaceId: string;
     cacheRefresh: number | null;
   };
-  console.log("[function call: isWorkspacePro: licenseServerResponse", {
+  console.log("[🔥function call: isWorkspacePro: licenseServerResponse", {
     licenseServerResponse,
   });
 
@@ -384,9 +322,9 @@ export async function isWorkspacePro({ workspaceId }: { workspaceId: string }) {
       proWorkspaceId: licenseServerResponse.workspaceId,
     })
     .where(eq(spaces.id, workspaceId));
-  console.log("[function call: isWorkspacePro: updated workspace");
+  console.log("[🔥function call: isWorkspacePro: updated workspace");
   console.log(
-    "[function call: isWorkspacePro: returning licenseServerResponse.isPro",
+    "[🔥function call: isWorkspacePro: returning licenseServerResponse.isPro",
     {
       licenseServerResponse,
     }
diff --git a/packages/database/emails/config.ts b/packages/database/emails/config.ts
index 6c733cf3c..89539fbf7 100644
--- a/packages/database/emails/config.ts
+++ b/packages/database/emails/config.ts
@@ -23,7 +23,9 @@ export const sendEmail = async ({
   test?: boolean;
 }) => {
   if (!resend) {
-    console.info(`Email to ${email} with subject ${subject} sent from Cap`);
+    console.info(
+      `❌ Could not send email to ${email} with subject ${subject} sent from Cap`
+    );
     return Promise.resolve();
   }
 

From 71efba7b0c481e9d12a4d5f379500a7509869877 Mon Sep 17 00:00:00 2001
From: McPizza0 <gh@l1.io>
Date: Fri, 7 Mar 2025 17:37:32 +0100
Subject: [PATCH 15/17] fix merge conflict fuckup

---
 .../desktop/src/routes/(window-chrome)/(main).tsx | 15 +--------------
 apps/desktop/src/routes/debug.tsx                 |  5 +----
 2 files changed, 2 insertions(+), 18 deletions(-)

diff --git a/apps/desktop/src/routes/(window-chrome)/(main).tsx b/apps/desktop/src/routes/(window-chrome)/(main).tsx
index 83c1dc64c..8b24cdf13 100644
--- a/apps/desktop/src/routes/(window-chrome)/(main).tsx
+++ b/apps/desktop/src/routes/(window-chrome)/(main).tsx
@@ -202,24 +202,16 @@ export default function () {
             />
           </button>
         </Show>
-<<<<<<< HEAD
 
-=======
->>>>>>> aee39a6c (fail injection (#344))
         {import.meta.env.DEV && (
           <button
             type="button"
             onClick={() => {
               new WebviewWindow("debug", { url: "/debug" });
             }}
-<<<<<<< HEAD
             class="flex items-center justify-center w-5 h-5"
           >
             <IconLucideBug class="size-5 text-gray-400 hover:text-gray-500" />
-=======
-          >
-            <IconLucideBug class="text-gray-400 hover:text-gray-500" />
->>>>>>> aee39a6c (fail injection (#344))
           </button>
         )}
       </div>
@@ -964,16 +956,11 @@ function TargetSelect<T extends { id: number; name: string }>(props: {
     const v = props.value;
     if (!v) return null;
 
-<<<<<<< HEAD
     const o = props.options.find((o) => o.id === v.id);
     if (o) return props.value;
 
     props.onChange(props.options[0]);
     return props.options[0];
-=======
-    if (props.options.some((o) => o.id === v.id)) return props.value;
-    else return props.options[0];
->>>>>>> aee39a6c (fail injection (#344))
   };
 
   return (
@@ -1169,4 +1156,4 @@ function ChangelogButton() {
       </Tooltip.Portal>
     </Tooltip.Root>
   );
-}
+}
\ No newline at end of file
diff --git a/apps/desktop/src/routes/debug.tsx b/apps/desktop/src/routes/debug.tsx
index 6670212bb..d4457c112 100644
--- a/apps/desktop/src/routes/debug.tsx
+++ b/apps/desktop/src/routes/debug.tsx
@@ -12,7 +12,6 @@ export default function Debug() {
 
   return (
     <main class="w-full h-full bg-gray-100 text-[--text-primary] p-4">
-<<<<<<< HEAD
       <h2 class="text-2xl font-bold">Debug Windows</h2>
       <div class="p-2 mb-4">
         <button
@@ -23,8 +22,6 @@ export default function Debug() {
         </button>
       </div>
 
-=======
->>>>>>> aee39a6c (fail injection (#344))
       <h2 class="text-2xl font-bold">Fail Points</h2>
       <ul class="p-2">
         <For each={orderedFails()}>
@@ -54,4 +51,4 @@ export default function Debug() {
       </ul>
     </main>
   );
-}
+}
\ No newline at end of file

From 0a9d8dc519c9837892690052a2bc73544ca4b0cc Mon Sep 17 00:00:00 2001
From: McPizza0 <gh@l1.io>
Date: Fri, 7 Mar 2025 17:41:40 +0100
Subject: [PATCH 16/17] fix merge conflict fuckup - rust

---
 apps/desktop/src-tauri/src/lib.rs | 14 +-------------
 crates/recording/src/cursor.rs    |  2 +-
 2 files changed, 2 insertions(+), 14 deletions(-)

diff --git a/apps/desktop/src-tauri/src/lib.rs b/apps/desktop/src-tauri/src/lib.rs
index 148f7bb4b..b7e80d1a4 100644
--- a/apps/desktop/src-tauri/src/lib.rs
+++ b/apps/desktop/src-tauri/src/lib.rs
@@ -226,11 +226,7 @@ impl App {
             }
         }
         .inspect(|_| {
-<<<<<<< HEAD
             self.recording_options.camera_label = new_options.camera_label.clone();
-=======
-            self.start_recording_options.camera_label = new_options.camera_label.clone();
->>>>>>> aee39a6c (fail injection (#344))
         });
 
         // try update microphone
@@ -256,19 +252,11 @@ impl App {
             }
         }
         .inspect(|_| {
-<<<<<<< HEAD
             self.recording_options.audio_input_name = new_options.audio_input_name.clone();
         });
 
         if camera.is_ok() || microphone.is_ok() {
             self.recording_options.capture_target = new_options.capture_target;
-=======
-            self.start_recording_options.audio_input_name = new_options.audio_input_name.clone();
-        });
-
-        if camera.is_ok() || microphone.is_ok() {
-            self.start_recording_options.capture_target = new_options.capture_target;
->>>>>>> aee39a6c (fail injection (#344))
 
             RecordingOptionsChanged.emit(&self.handle).ok();
         }
@@ -2509,4 +2497,4 @@ impl<F: Future<Output = T>, T, E> TransposeAsync for Result<F, E> {
             }
         }
     }
-}
+}
\ No newline at end of file
diff --git a/crates/recording/src/cursor.rs b/crates/recording/src/cursor.rs
index db4ddd6aa..ef98c8ad6 100644
--- a/crates/recording/src/cursor.rs
+++ b/crates/recording/src/cursor.rs
@@ -689,4 +689,4 @@ fn get_cursor_image_data() -> Option<CursorData> {
             hotspot: XY::new(hotspot_x, hotspot_y),
         })
     }
-}
+}
\ No newline at end of file

From b0cc9bcee753612be705be0ea139faa5d3913dd7 Mon Sep 17 00:00:00 2001
From: McPizza0 <gh@l1.io>
Date: Fri, 7 Mar 2025 17:43:20 +0100
Subject: [PATCH 17/17] fix merge conflict fuckup - rust2

---
 apps/desktop/src-tauri/src/recording.rs | 24 +-----------------------
 1 file changed, 1 insertion(+), 23 deletions(-)

diff --git a/apps/desktop/src-tauri/src/recording.rs b/apps/desktop/src-tauri/src/recording.rs
index c9e4a4232..928acbe48 100644
--- a/apps/desktop/src-tauri/src/recording.rs
+++ b/apps/desktop/src-tauri/src/recording.rs
@@ -15,11 +15,6 @@ use crate::{
     RecordingStarted, RecordingStopped, UploadMode,
 };
 use cap_fail::fail;
-<<<<<<< HEAD
-=======
-use cap_flags::FLAGS;
-use cap_media::sources::{CaptureScreen, CaptureWindow};
->>>>>>> aee39a6c (fail injection (#344))
 use cap_media::{feeds::CameraFeed, sources::ScreenCaptureTarget};
 use cap_media::{
     platform::Bounds,
@@ -159,7 +154,6 @@ pub async fn start_recording(
                     if let Ok(s3_config) = get_s3_config(&app, false, None).await {
                         let link = web_api::make_url(format!("/s/{}", s3_config.id()));
 
-<<<<<<< HEAD
                         state.pre_created_video = Some(PreCreatedVideo {
                             id: s3_config.id().to_string(),
                             link: link.clone(),
@@ -184,22 +178,6 @@ pub async fn start_recording(
             if let Some(window) = camera_window {
                 let _ = window.set_content_protected(true);
             }
-=======
-    if let Ok(Some(auth)) = AuthStore::get(&app) {
-        if auto_create_shareable_link && auth.is_upgraded() {
-            // Pre-create the video and get the shareable link
-            if let Ok(s3_config) = get_s3_config(&app, false, None).await {
-                let link = web_api::make_url(format!("/s/{}", s3_config.id()));
-
-                state.pre_created_video = Some(PreCreatedVideo {
-                    id: s3_config.id().to_string(),
-                    link: link.clone(),
-                    config: s3_config,
-                });
-
-                println!("Pre-created shareable link: {}", link);
-            };
->>>>>>> aee39a6c (fail injection (#344))
         }
     }
 
@@ -569,4 +547,4 @@ fn project_config_from_recording(
         }),
         ..default_config.unwrap_or_default()
     }
-}
+}
\ No newline at end of file