feature: repo sync to gh account connected

[20407002036]

🚀 Feature: GitHub Repository Sync (SPA-13)

This PR implements the backend synchronization flow to fetch and store a user's GitHub repositories. This allows users to import their projects into Colabs and selectively mark public repositories for collaboration.

🛠️ Key Changes

🗄️ Database Schema

• User Model: Added githubAccessToken, githubRefreshToken, and lastSyncedAt to support authenticated API requests and enforce sync rate limits.
• Project Model: Added isCollaborative boolean flag (default: false) to control public visibility in the project gallery.

🔐 Authentication

• Updated the GitHub OAuth strategy (auth.strategy.ts) to capture and persist access and refresh tokens during the user login/upsert process.

🌐 GitHub API Integration (src/lib/github.ts)

• Dynamic Client: Refactored the API client to support per-user authorization tokens instead of relying solely on a global system token.
• Pagination: Implemented robust link-based pagination in fetchUserRepositories to ensure all repositories are fetched regardless of count.

🔄 Sync Logic & API

• New Endpoint: POST /api/projects/sync-repos — allows users to manually trigger a repository sync.
• Rate Limiting: Implemented a user-based cooldown period (15 minutes) using the lastSyncedAt timestamp to prevent API abuse.
• Idempotent Upserts: Used a "Fetch $\to$ Map $\to$ Upsert" pattern. Repositories are upserted based on their githubRepoUrl to prevent duplicates while keeping metadata (stars, forks, etc.) up to date.
• Visibility Control: Updated listProjects to filter the public gallery by isCollaborative: true, while ensuring users can still see all their own projects regardless of the flag.

🧪 Verification Plan (For Reviewer)

• Auth Flow: Log in via GitHub and verify that the access token is correctly stored in the User table.
• Sync Trigger: Call POST /api/projects/sync-repos and verify that repositories are created/updated in the Project table.
• Rate Limit: Attempt to trigger the sync twice within 15 minutes; verify the second request returns a 429 Too Many Requests error.
• Public Visibility:
  • Verify that a project with isCollaborative: false is hidden from the public GET /api/projects list.
  • Verify that setting isCollaborative: true makes it visible.
• Pagination: Test with an account having >100 repositories to ensure the pagination logic captures everything.

⚠️ Deployment Note

This PR includes a database migration. Please ensure npx prisma migrate dev is run to apply the new columns to the User and Project tables.

[SimonGideon]

Schema adds githubAccessToken, githubRefreshToken, lastSyncedAt, isCollaborative, but no migration SQL is included in the PR. PR description says to run prisma migrate dev, but reviewers/CI cannot apply changes reliably.

Suggested Fix: Commit the generated migration:

npx prisma migrate dev --name add_github_sync_fields

[SimonGideon]

Problem: Upsert is keyed only on githubRepoUrl. If User B already registered facebook/react, User A's sync runs the update branch and refreshes metadata on User B's project — no ownerId check.

Suggesting fix:

const existing = await prisma.project.findUnique({ where: { githubRepoUrl } });
if (existing && existing.ownerId !== userId) {
  return null; // skip repos owned by others
}
// OR upsert with where: { githubRepoUrl, ownerId: userId } if you add a composite unique

[SimonGideon]

Problem: GET /api/projects has no auth middleware, so req.user is always undefined. The filter isCollaborative: true always applies, including for owners trying to view their own repos. This contradicts the PR verification plan (“users can still see all their own projects”).

Suggesting Fix:
Add optional auth middleware, then:

const ownerId = req.query.ownerId as string | undefined;
const isOwnList = req.user && ownerId && req.user.id === ownerId;

if (!isOwnList) {
  where.isCollaborative = true;
}
if (ownerId) where.ownerId = ownerId;

Or add a dedicated authenticated route: GET /api/projects/mine.

[SimonGideon]

Problem: No try/catch around axios. GitHub 401 (expired token), 403 (missing scope), or rate-limit → unhandled rejection → process exit.

Also add import 'express-async-errors' in app.ts so controller errors reach errorHandler.

[SimonGideon]

Problem: githubAccessToken stored as plain text on User. DB leak = full GitHub account access.

Fix (minimum for review): Encrypt at rest (e.g. AES with TOKEN_ENCRYPTION_KEY env var) or store in a separate secrets table. Document risk if deferring encryption to a follow-up ticket.

[SimonGideon]

User with 200+ repos fires 200 parallel upserts — can exhaust Prisma connection pool.

Fix: Batch in chunks (for (const chunk of chunks(repos, 20))) or use $transaction with batch size limits.

[SimonGideon]

Good progress on SPA-13: token persistence + repo sync endpoint is the right foundation. However, OAuth scopes, upsert ownership, and listProjects filtering need fixes before merge, and GitHub failures can still crash the server. Please address the inline comments and checklist below, then re-request review.

• Prisma migration committed and tested
• OAuth scopes include repo (or documented public_repo limitation)
• Upsert ownership guard — cannot modify another user's project
• listProjects visibility works for owners vs public gallery
• fetchUserRepositories error handling + async error middleware
• Endpoint to toggle isCollaborative (or updated verification plan)
• /sync-repos route registered before /:id
• Token encryption planned or implemented

Functional gaps vs SPA-13 & PR description

No endpoint to toggle isCollaborative
Problem: Verification plan says “setting isCollaborative: true makes it visible”, but the PR adds no PATCH endpoint. Cannot complete manual QA as written.

Fix: Add e.g. PATCH /api/projects/:id/collaboration with owner auth.

Happy 💯 to re-review once those are addressed.