comparing b92b7cf976d308e63bed94c00c0d0a023d91c9c2 and main on dunkirk.sh/thistle

+39

scripts/remove-from-classes.ts

···

       1
       +
       #!/usr/bin/env bun

     

       2
       +
       

     

       3
       +
       import db from "../src/db/schema";

     

       4
       +
       

     

       5
       +
       const email = process.argv[2];

     

       6
       +
       

     

       7
       +
       if (!email) {

     

       8
       +
       	console.error("Usage: bun scripts/remove-from-classes.ts <email>");

     

       9
       +
       	console.error("  Removes a user from all their enrolled classes");

     

       10
       +
       	process.exit(1);

     

       11
       +
       }

     

       12
       +
       

     

       13
       +
       const user = db

     

       14
       +
       	.query<{ id: number; email: string }, [string]>(

     

       15
       +
       		"SELECT id, email FROM users WHERE email = ?",

     

       16
       +
       	)

     

       17
       +
       	.get(email);

     

       18
       +
       

     

       19
       +
       if (!user) {

     

       20
       +
       	console.error(`User with email ${email} not found`);

     

       21
       +
       	process.exit(1);

     

       22
       +
       }

     

       23
       +
       

     

       24
       +
       // Get current enrollments

     

       25
       +
       const enrollments = db

     

       26
       +
       	.query<{ class_id: string }, [number]>(

     

       27
       +
       		"SELECT class_id FROM class_members WHERE user_id = ?",

     

       28
       +
       	)

     

       29
       +
       	.all(user.id);

     

       30
       +
       

     

       31
       +
       if (enrollments.length === 0) {

     

       32
       +
       	console.log(`User ${email} is not enrolled in any classes`);

     

       33
       +
       	process.exit(0);

     

       34
       +
       }

     

       35
       +
       

     

       36
       +
       // Remove from all classes

     

       37
       +
       db.run("DELETE FROM class_members WHERE user_id = ?", [user.id]);

     

       38
       +
       

     

       39
       +
       console.log(`✅ Successfully removed ${email} from ${enrollments.length} class(es)`);

+215 -15

src/components/admin-classes.ts

···

       40
        
       	@state() activeTab: "classes" | "waitlist" = "classes";

     

       41
        
       	@state() approvingEntry: WaitlistEntry | null = null;

     

       42
        
       	@state() showModal = false;

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       43
        
       	@state() meetingTimes: MeetingTime[] = [];

     

       0
        
       
     

       44
        
       	@state() editingClass = {

     

       45
        
       		courseCode: "",

     

       46
        
       		courseName: "",

     
···

       664
        
       		this.showModal = true;

     

       665
        
       	}

     

       666
        
       

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       667
        
       	private getFilteredClasses() {

     

       668
        
       		if (!this.searchTerm) return this.classes;

     

       669
        
       

     
···

       714
        
       			}

     

       715
        
       

     

       716
        
             ${this.showModal ? this.renderApprovalModal() : ""}

     

       0
        
       
     

       717
        
           `;

     

       718
        
       	}

     

       719
        
       

     
···

       743
        
                 <div class="classes-grid">

     

       744
        
                   ${filteredClasses.map(

     

       745
        
       							(cls) => html`

     

       746
       -
                     <div class="class-card ${cls.archived ? "archived" : ""}">

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       747
        
                       <div class="class-header">

     

       748
        
                         <div class="class-info">

     

       749
        
                           <div class="course-code">${cls.course_code}</div>

     
···

       756
        
                             ${cls.archived ? html`<span class="badge archived">Archived</span>` : ""}

     

       757
        
                           </div>

     

       758
        
                         </div>

     

       759
       -
                         <div class="actions">

     

       760
       -
                           <button

     

       761
       -
                             class="btn-archive"

     

       762
       -
                             @click=${() => this.handleToggleArchive(cls.id)}

     

       763
       -
                           >

     

       764
       -
                             ${cls.archived ? "Unarchive" : "Archive"}

     

       765
       -
                           </button>

     

       766
       -
                           <button

     

       767
       -
                             class="btn-delete"

     

       768
       -
                             @click=${() => this.handleDeleteClick(cls.id, "class")}

     

       769
       -
                           >

     

       770
       -
                             ${this.getDeleteButtonText(cls.id, "class")}

     

       771
       -
                           </button>

     

       772
       -
                         </div>

     

       773
        
                       </div>

     

       774
        
                     </div>

     

       775
        
                   `,

     
···

       780
        
           `;

     

       781
        
       	}

     

       782
        
       

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       783
        
       	private renderWaitlist() {

     

       784
        
       		return html`

     

       785
        
             ${

     
···

       865
        
       		this.meetingTimes = e.detail;

     

       866
        
       	}

     

       867
        
       

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       868
        
       	private handleClassFieldInput(field: string, e: Event) {

     

       869
        
       		const value = (e.target as HTMLInputElement | HTMLSelectElement).value;

     

       870
        
       		this.editingClass = { ...this.editingClass, [field]: value };

     
···

       874
        
       		this.showModal = false;

     

       875
        
       		this.approvingEntry = null;

     

       876
        
       		this.meetingTimes = [];

     

       0
        
       
     

       877
        
       		this.editingClass = {

     

       878
        
       			courseCode: "",

     

       879
        
       			courseName: "",

     
···

       903
        
       					semester: this.editingClass.semester,

     

       904
        
       					year: this.editingClass.year,

     

       905
        
       					meeting_times: labels,

     

       0
        
       
     

       906
        
       				}),

     

       907
        
       			});

     

       908
        
       

     
···

       1018
        
                       .value=${this.meetingTimes}

     

       1019
        
                       @change=${this.handleMeetingTimesChange}

     

       1020
        
                     ></meeting-time-picker>

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       1021
        
                   </div>

     

       1022
        
                 </div>

     

       1023

···

       40
        
       	@state() activeTab: "classes" | "waitlist" = "classes";

     

       41
        
       	@state() approvingEntry: WaitlistEntry | null = null;

     

       42
        
       	@state() showModal = false;

     

       43
       +
       	@state() showClassSettingsModal = false;

     

       44
       +
       	@state() editingClassId: string | null = null;

     

       45
       +
       	@state() editingClassInfo: Class | null = null;

     

       46
       +
       	@state() editingClassSections: { id: string; section_number: string }[] = [];

     

       47
       +
       	@state() newSectionNumber = "";

     

       48
        
       	@state() meetingTimes: MeetingTime[] = [];

     

       49
       +
       	@state() sections: string[] = [];

     

       50
        
       	@state() editingClass = {

     

       51
        
       		courseCode: "",

     

       52
        
       		courseName: "",

     
···

       670
        
       		this.showModal = true;

     

       671
        
       	}

     

       672
        
       

     

       673
       +
       	private async handleEditSections(classId: string) {

     

       674
       +
       		try {

     

       675
       +
       			const response = await fetch(`/api/classes/${classId}`);

     

       676
       +
       			if (!response.ok) throw new Error("Failed to load class");

     

       677
       +
       			

     

       678
       +
       			const data = await response.json();

     

       679
       +
       			this.editingClassId = classId;

     

       680
       +
       			this.editingClassInfo = data.class;

     

       681
       +
       			this.editingClassSections = data.sections || [];

     

       682
       +
       			this.newSectionNumber = "";

     

       683
       +
       			this.showClassSettingsModal = true;

     

       684
       +
       		} catch {

     

       685
       +
       			this.error = "Failed to load class details";

     

       686
       +
       		}

     

       687
       +
       	}

     

       688
       +
       

     

       689
       +
       	private async handleAddSection() {

     

       690
       +
       		if (!this.newSectionNumber.trim() || !this.editingClassId) return;

     

       691
       +
       

     

       692
       +
       		try {

     

       693
       +
       			const response = await fetch(`/api/classes/${this.editingClassId}/sections`, {

     

       694
       +
       				method: "POST",

     

       695
       +
       				headers: { "Content-Type": "application/json" },

     

       696
       +
       				body: JSON.stringify({ section_number: this.newSectionNumber.trim() }),

     

       697
       +
       			});

     

       698
       +
       

     

       699
       +
       			if (!response.ok) {

     

       700
       +
       				const data = await response.json();

     

       701
       +
       				this.error = data.error || "Failed to add section";

     

       702
       +
       				return;

     

       703
       +
       			}

     

       704
       +
       

     

       705
       +
       			const newSection = await response.json();

     

       706
       +
       			this.editingClassSections = [...this.editingClassSections, newSection];

     

       707
       +
       			this.newSectionNumber = "";

     

       708
       +
       		} catch {

     

       709
       +
       			this.error = "Failed to add section";

     

       710
       +
       		}

     

       711
       +
       	}

     

       712
       +
       

     

       713
       +
       	private async handleDeleteSection(sectionId: string) {

     

       714
       +
       		if (!this.editingClassId) return;

     

       715
       +
       

     

       716
       +
       		try {

     

       717
       +
       			const response = await fetch(`/api/classes/${this.editingClassId}/sections/${sectionId}`, {

     

       718
       +
       				method: "DELETE",

     

       719
       +
       			});

     

       720
       +
       

     

       721
       +
       			if (!response.ok) {

     

       722
       +
       				const data = await response.json();

     

       723
       +
       				this.error = data.error || "Failed to delete section";

     

       724
       +
       				return;

     

       725
       +
       			}

     

       726
       +
       

     

       727
       +
       			this.editingClassSections = this.editingClassSections.filter(s => s.id !== sectionId);

     

       728
       +
       		} catch {

     

       729
       +
       			this.error = "Failed to delete section";

     

       730
       +
       		}

     

       731
       +
       	}

     

       732
       +
       

     

       733
       +
       	private handleCloseSectionsModal() {

     

       734
       +
       		this.showClassSettingsModal = false;

     

       735
       +
       		this.editingClassId = null;

     

       736
       +
       		this.editingClassInfo = null;

     

       737
       +
       		this.editingClassSections = [];

     

       738
       +
       		this.newSectionNumber = "";

     

       739
       +
       		this.loadData();

     

       740
       +
       	}

     

       741
       +
       

     

       742
       +
       

     

       743
        
       	private getFilteredClasses() {

     

       744
        
       		if (!this.searchTerm) return this.classes;

     

       745
        
       

     
···

       790
        
       			}

     

       791
        
       

     

       792
        
             ${this.showModal ? this.renderApprovalModal() : ""}

     

       793
       +
             ${this.showClassSettingsModal ? this.renderClassSettingsModal() : ""}

     

       794
        
           `;

     

       795
        
       	}

     

       796
        
       

     
···

       820
        
                 <div class="classes-grid">

     

       821
        
                   ${filteredClasses.map(

     

       822
        
       							(cls) => html`

     

       823
       +
                     <div 

     

       824
       +
                       class="class-card ${cls.archived ? "archived" : ""}"

     

       825
       +
                       @click=${() => this.handleEditSections(cls.id)}

     

       826
       +
                       style="cursor: pointer;"

     

       827
       +
                     >

     

       828
        
                       <div class="class-header">

     

       829
        
                         <div class="class-info">

     

       830
        
                           <div class="course-code">${cls.course_code}</div>

     
···

       837
        
                             ${cls.archived ? html`<span class="badge archived">Archived</span>` : ""}

     

       838
        
                           </div>

     

       839
        
                         </div>

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       840
        
                       </div>

     

       841
        
                     </div>

     

       842
        
                   `,

     
···

       847
        
           `;

     

       848
        
       	}

     

       849
        
       

     

       850
       +
       	private renderClassSettingsModal() {

     

       851
       +
       		if (!this.showClassSettingsModal || !this.editingClassInfo) return html``;

     

       852
       +
       

     

       853
       +
       		return html`

     

       854
       +
             <div class="modal-overlay" @click=${this.handleCloseSectionsModal}>

     

       855
       +
               <div class="modal" @click=${(e: Event) => e.stopPropagation()} style="max-width: 48rem;">

     

       856
       +
                 <div class="modal-header">

     

       857
       +
                   <h2 class="modal-title">${this.editingClassInfo.course_code} - ${this.editingClassInfo.name}</h2>

     

       858
       +
                   <button class="close-btn" @click=${this.handleCloseSectionsModal} type="button">×</button>

     

       859
       +
                 </div>

     

       860
       +
       

     

       861
       +
                 <div class="tabs" style="margin-bottom: 1.5rem;">

     

       862
       +
                   <div style="display: flex; gap: 0.5rem; border-bottom: 2px solid var(--secondary);">

     

       863
       +
                     <button

     

       864
       +
                       style="padding: 0.75rem 1.5rem; background: transparent; color: var(--primary); border: none; border-bottom: 2px solid var(--primary); font-weight: 600; cursor: pointer; margin-bottom: -2px;"

     

       865
       +
                     >

     

       866
       +
                       Sections

     

       867
       +
                     </button>

     

       868
       +
                   </div>

     

       869
       +
                 </div>

     

       870
       +
       

     

       871
       +
                 <!-- Sections Tab -->

     

       872
       +
                 <div style="margin-bottom: 1.5rem;">

     

       873
       +
                   <h3 style="margin-bottom: 1rem; color: var(--text);">Manage Sections</h3>

     

       874
       +
                   

     

       875
       +
                   <div style="display: flex; gap: 0.75rem; margin-bottom: 1rem;">

     

       876
       +
                     <input

     

       877
       +
                       type="text"

     

       878
       +
                       placeholder="Section number (e.g., 01, 02, A, B)"

     

       879
       +
                       .value=${this.newSectionNumber}

     

       880
       +
                       @input=${(e: Event) => {

     

       881
       +
       									this.newSectionNumber = (e.target as HTMLInputElement).value;

     

       882
       +
       								}}

     

       883
       +
                       @keypress=${(e: KeyboardEvent) => {

     

       884
       +
       									if (e.key === "Enter") {

     

       885
       +
       										e.preventDefault();

     

       886
       +
       										this.handleAddSection();

     

       887
       +
       									}

     

       888
       +
       								}}

     

       889
       +
                       style="flex: 1; padding: 0.75rem; border: 2px solid var(--secondary); border-radius: 6px; font-size: 1rem; background: var(--background); color: var(--text);"

     

       890
       +
                     />

     

       891
       +
                     <button

     

       892
       +
                       @click=${this.handleAddSection}

     

       893
       +
                       ?disabled=${!this.newSectionNumber.trim()}

     

       894
       +
                       style="padding: 0.75rem 1.5rem; background: var(--primary); color: white; border: 2px solid var(--primary); border-radius: 6px; font-weight: 500; cursor: pointer; white-space: nowrap;"

     

       895
       +
                     >

     

       896
       +
                       Add Section

     

       897
       +
                     </button>

     

       898
       +
                   </div>

     

       899
       +
       

     

       900
       +
                   ${

     

       901
       +
       							this.editingClassSections.length === 0

     

       902
       +
       								? html`<p style="color: var(--paynes-gray); text-align: center; padding: 2rem;">No sections yet. Add one above.</p>`

     

       903
       +
       								: html`

     

       904
       +
                       <div style="display: flex; flex-direction: column; gap: 0.5rem;">

     

       905
       +
                         ${this.editingClassSections.map(

     

       906
       +
       										(section) => html`

     

       907
       +
                           <div style="display: flex; justify-content: space-between; align-items: center; padding: 0.75rem; background: color-mix(in srgb, var(--secondary) 30%, transparent); border-radius: 6px;">

     

       908
       +
                             <span style="font-weight: 500;">Section ${section.section_number}</span>

     

       909
       +
                             <button

     

       910
       +
                               @click=${(e: Event) => {

     

       911
       +
       													e.stopPropagation();

     

       912
       +
       													this.handleDeleteSection(section.id);

     

       913
       +
       												}}

     

       914
       +
                               style="padding: 0.5rem 1rem; background: transparent; color: red; border: 2px solid red; border-radius: 4px; font-size: 0.875rem; cursor: pointer;"

     

       915
       +
                             >

     

       916
       +
                               Delete

     

       917
       +
                             </button>

     

       918
       +
                           </div>

     

       919
       +
                         `,

     

       920
       +
       									)}

     

       921
       +
                       </div>

     

       922
       +
                     `

     

       923
       +
       						}

     

       924
       +
                 </div>

     

       925
       +
       

     

       926
       +
                 <!-- Actions -->

     

       927
       +
                 <div style="display: flex; gap: 0.75rem; justify-content: space-between; padding-top: 1.5rem; border-top: 2px solid var(--secondary);">

     

       928
       +
                   <div style="display: flex; gap: 0.75rem;">

     

       929
       +
                     <button

     

       930
       +
                       @click=${(e: Event) => {

     

       931
       +
       									e.stopPropagation();

     

       932
       +
       									this.handleToggleArchive(this.editingClassId!);

     

       933
       +
       									this.handleCloseSectionsModal();

     

       934
       +
       								}}

     

       935
       +
                       style="padding: 0.75rem 1.5rem; background: transparent; color: var(--primary); border: 2px solid var(--primary); border-radius: 6px; font-weight: 500; cursor: pointer;"

     

       936
       +
                     >

     

       937
       +
                       ${this.editingClassInfo.archived ? "Unarchive" : "Archive"} Class

     

       938
       +
                     </button>

     

       939
       +
                     <button

     

       940
       +
                       @click=${(e: Event) => {

     

       941
       +
       									e.stopPropagation();

     

       942
       +
       									this.handleDeleteClick(this.editingClassId!, "class");

     

       943
       +
       								}}

     

       944
       +
                       style="padding: 0.75rem 1.5rem; background: transparent; color: red; border: 2px solid red; border-radius: 6px; font-weight: 500; cursor: pointer;"

     

       945
       +
                     >

     

       946
       +
                       ${this.getDeleteButtonText(this.editingClassId!, "class")}

     

       947
       +
                     </button>

     

       948
       +
                   </div>

     

       949
       +
                   <button

     

       950
       +
                     @click=${this.handleCloseSectionsModal}

     

       951
       +
                     style="padding: 0.75rem 1.5rem; background: var(--primary); color: white; border: 2px solid var(--primary); border-radius: 6px; font-weight: 500; cursor: pointer;"

     

       952
       +
                   >

     

       953
       +
                     Done

     

       954
       +
                   </button>

     

       955
       +
                 </div>

     

       956
       +
       

     

       957
       +
                 ${this.error ? html`<div style="color: red; margin-top: 1rem; padding: 0.75rem; background: color-mix(in srgb, red 10%, transparent); border-radius: 6px;">${this.error}</div>` : ""}

     

       958
       +
               </div>

     

       959
       +
             </div>

     

       960
       +
           `;

     

       961
       +
       	}

     

       962
       +
       

     

       963
        
       	private renderWaitlist() {

     

       964
        
       		return html`

     

       965
        
             ${

     
···

       1045
        
       		this.meetingTimes = e.detail;

     

       1046
        
       	}

     

       1047
        
       

     

       1048
       +
       	private handleSectionsChange(e: Event) {

     

       1049
       +
       		const value = (e.target as HTMLInputElement).value;

     

       1050
       +
       		this.sections = value

     

       1051
       +
       			.split(",")

     

       1052
       +
       			.map((s) => s.trim())

     

       1053
       +
       			.filter((s) => s);

     

       1054
       +
       	}

     

       1055
       +
       

     

       1056
        
       	private handleClassFieldInput(field: string, e: Event) {

     

       1057
        
       		const value = (e.target as HTMLInputElement | HTMLSelectElement).value;

     

       1058
        
       		this.editingClass = { ...this.editingClass, [field]: value };

     
···

       1062
        
       		this.showModal = false;

     

       1063
        
       		this.approvingEntry = null;

     

       1064
        
       		this.meetingTimes = [];

     

       1065
       +
       		this.sections = [];

     

       1066
        
       		this.editingClass = {

     

       1067
        
       			courseCode: "",

     

       1068
        
       			courseName: "",

     
···

       1092
        
       					semester: this.editingClass.semester,

     

       1093
        
       					year: this.editingClass.year,

     

       1094
        
       					meeting_times: labels,

     

       1095
       +
       					sections: this.sections.length > 0 ? this.sections : undefined,

     

       1096
        
       				}),

     

       1097
        
       			});

     

       1098
        
       

     
···

       1208
        
                       .value=${this.meetingTimes}

     

       1209
        
                       @change=${this.handleMeetingTimesChange}

     

       1210
        
                     ></meeting-time-picker>

     

       1211
       +
                   </div>

     

       1212
       +
                   <div class="form-group form-group-full">

     

       1213
       +
                     <label>Sections (optional)</label>

     

       1214
       +
                     <input

     

       1215
       +
                       type="text"

     

       1216
       +
                       placeholder="e.g., 01, 02, 03 or A, B, C"

     

       1217
       +
                       .value=${this.sections.join(", ")}

     

       1218
       +
                       @input=${this.handleSectionsChange}

     

       1219
       +
                     />

     

       1220
       +
                     <div class="help-text">Comma-separated list of section numbers. Leave blank if no sections.</div>

     

       1221
        
                   </div>

     

       1222
        
                 </div>

     

       1223

+112 -6

src/components/class-view.ts

···

       2
        
       import { customElement, state } from "lit/decorators.js";

     

       3
        
       import "./upload-recording-modal.ts";

     

       4
        
       import "./vtt-viewer.ts";

     

       0
        
       
     

       5
        
       

     

       6
        
       interface Class {

     

       7
        
       	id: string;

     
···

       24
        
       	id: string;

     

       25
        
       	user_id: number;

     

       26
        
       	meeting_time_id: string | null;

     

       0
        
       
     

       27
        
       	filename: string;

     

       28
        
       	original_filename: string;

     

       29
        
       	status:

     
···

       42
        
       	audioUrl?: string;

     

       43
        
       }

     

       44
        
       

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       45
        
       @customElement("class-view")

     

       46
        
       export class ClassView extends LitElement {

     

       47
        
       	@state() classId = "";

     

       48
        
       	@state() classInfo: Class | null = null;

     

       49
        
       	@state() meetingTimes: MeetingTime[] = [];

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       50
        
       	@state() transcriptions: Transcription[] = [];

     

       51
        
       	@state() isLoading = true;

     

       52
        
       	@state() error: string | null = null;

     
···

       363
        
       			const data = await response.json();

     

       364
        
       			this.classInfo = data.class;

     

       365
        
       			this.meetingTimes = data.meetingTimes || [];

     

       0
        
       
     

       0
        
       
     

       366
        
       			this.transcriptions = data.transcriptions || [];

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       367
        
       

     

       368
        
       			// Load VTT for completed transcriptions

     

       369
        
       			await this.loadVTTForCompleted();

     
···

       450
        
       	}

     

       451
        
       

     

       452
        
       	private get filteredTranscriptions() {

     

       453
       -
       		if (!this.searchQuery) return this.transcriptions;

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       454
        
       

     

       455
       -
       		const query = this.searchQuery.toLowerCase();

     

       456
       -
       		return this.transcriptions.filter((t) =>

     

       457
       -
       			t.original_filename.toLowerCase().includes(query),

     

       458
       -
       		);

     

       459
        
       	}

     

       460
        
       

     

       461
        
       	private formatDate(timestamp: number): string {

     
···

       521
        
                   <div class="course-code">${this.classInfo.course_code}</div>

     

       522
        
                   <h1>${this.classInfo.name}</h1>

     

       523
        
                   <div class="professor">Professor: ${this.classInfo.professor}</div>

     

       524
       -
                   <div class="semester">${this.classInfo.semester} ${this.classInfo.year}</div>

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       525
        
                 </div>

     

       526
        
               </div>

     

       527
        
       

     
···

       549
        
               `

     

       550
        
       						: html`

     

       551
        
               <div class="search-upload">

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       552
        
                 <input

     

       553
        
                   type="text"

     

       554
        
                   class="search-box"

     
···

       567
        
                 </button>

     

       568
        
               </div>

     

       569
        
       

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       570
        
               ${

     

       571
        
       					this.filteredTranscriptions.length === 0

     

       572
        
       						? html`

     
···

       631
        
               ?open=${this.uploadModalOpen}

     

       632
        
               .classId=${this.classId}

     

       633
        
               .meetingTimes=${this.meetingTimes.map((m) => ({ id: m.id, label: m.label }))}

     

       0
        
       
     

       0
        
       
     

       634
        
               @close=${this.handleModalClose}

     

       635
        
               @upload-success=${this.handleUploadSuccess}

     

       636
        
             ></upload-recording-modal>

···

       2
        
       import { customElement, state } from "lit/decorators.js";

     

       3
        
       import "./upload-recording-modal.ts";

     

       4
        
       import "./vtt-viewer.ts";

     

       5
       +
       import "./pending-recordings-view.ts";

     

       6
        
       

     

       7
        
       interface Class {

     

       8
        
       	id: string;

     
···

       25
        
       	id: string;

     

       26
        
       	user_id: number;

     

       27
        
       	meeting_time_id: string | null;

     

       28
       +
       	section_id: string | null;

     

       29
        
       	filename: string;

     

       30
        
       	original_filename: string;

     

       31
        
       	status:

     
···

       44
        
       	audioUrl?: string;

     

       45
        
       }

     

       46
        
       

     

       47
       +
       interface ClassSection {

     

       48
       +
       	id: string;

     

       49
       +
       	section_number: string;

     

       50
       +
       }

     

       51
       +
       

     

       52
        
       @customElement("class-view")

     

       53
        
       export class ClassView extends LitElement {

     

       54
        
       	@state() classId = "";

     

       55
        
       	@state() classInfo: Class | null = null;

     

       56
        
       	@state() meetingTimes: MeetingTime[] = [];

     

       57
       +
       	@state() sections: ClassSection[] = [];

     

       58
       +
       	@state() userSection: string | null = null;

     

       59
       +
       	@state() selectedSectionFilter: string | null = null;

     

       60
        
       	@state() transcriptions: Transcription[] = [];

     

       61
        
       	@state() isLoading = true;

     

       62
        
       	@state() error: string | null = null;

     
···

       373
        
       			const data = await response.json();

     

       374
        
       			this.classInfo = data.class;

     

       375
        
       			this.meetingTimes = data.meetingTimes || [];

     

       376
       +
       			this.sections = data.sections || [];

     

       377
       +
       			this.userSection = data.userSection || null;

     

       378
        
       			this.transcriptions = data.transcriptions || [];

     

       379
       +
       

     

       380
       +
       			// Default to user's section for filtering

     

       381
       +
       			if (this.userSection && !this.selectedSectionFilter) {

     

       382
       +
       				this.selectedSectionFilter = this.userSection;

     

       383
       +
       			}

     

       384
        
       

     

       385
        
       			// Load VTT for completed transcriptions

     

       386
        
       			await this.loadVTTForCompleted();

     
···

       467
        
       	}

     

       468
        
       

     

       469
        
       	private get filteredTranscriptions() {

     

       470
       +
       		let filtered = this.transcriptions;

     

       471
       +
       

     

       472
       +
       		// Filter by selected section (or user's section by default)

     

       473
       +
       		const sectionFilter = this.selectedSectionFilter || this.userSection;

     

       474
       +
       		

     

       475
       +
       		// Only filter by section if:

     

       476
       +
       		// 1. There are sections in the class

     

       477
       +
       		// 2. User has a section OR has selected one

     

       478
       +
       		if (this.sections.length > 0 && sectionFilter) {

     

       479
       +
       			// For admins: show all transcriptions

     

       480
       +
       			// For users: show their section + transcriptions with no section (legacy/unassigned)

     

       481
       +
       			if (!this.isAdmin) {

     

       482
       +
       				filtered = filtered.filter(

     

       483
       +
       					(t) => t.section_id === sectionFilter || t.section_id === null,

     

       484
       +
       				);

     

       485
       +
       			}

     

       486
       +
       		}

     

       487
       +
       

     

       488
       +
       		// Filter by search query

     

       489
       +
       		if (this.searchQuery) {

     

       490
       +
       			const query = this.searchQuery.toLowerCase();

     

       491
       +
       			filtered = filtered.filter((t) =>

     

       492
       +
       				t.original_filename.toLowerCase().includes(query),

     

       493
       +
       			);

     

       494
       +
       		}

     

       495
        
       

     

       496
       +
       		// Exclude pending recordings (they're shown in the voting section)

     

       497
       +
       		filtered = filtered.filter((t) => t.status !== "pending");

     

       498
       +
       

     

       499
       +
       		return filtered;

     

       500
        
       	}

     

       501
        
       

     

       502
        
       	private formatDate(timestamp: number): string {

     
···

       562
        
                   <div class="course-code">${this.classInfo.course_code}</div>

     

       563
        
                   <h1>${this.classInfo.name}</h1>

     

       564
        
                   <div class="professor">Professor: ${this.classInfo.professor}</div>

     

       565
       +
                   <div class="semester">

     

       566
       +
                     ${this.classInfo.semester} ${this.classInfo.year}

     

       567
       +
                     ${

     

       568
       +
       								this.userSection

     

       569
       +
       									? ` • Section ${this.sections.find((s) => s.id === this.userSection)?.section_number || ""}`

     

       570
       +
       									: ""

     

       571
       +
       							}

     

       572
       +
                   </div>

     

       573
        
                 </div>

     

       574
        
               </div>

     

       575
        
       

     
···

       597
        
               `

     

       598
        
       						: html`

     

       599
        
               <div class="search-upload">

     

       600
       +
                 ${

     

       601
       +
       						this.sections.length > 1

     

       602
       +
       							? html`

     

       603
       +
                     <select

     

       604
       +
                       style="padding: 0.5rem 0.75rem; border: 1px solid var(--secondary); border-radius: 4px; font-size: 0.875rem; color: var(--text); background: var(--background);"

     

       605
       +
                       @change=${(e: Event) => {

     

       606
       +
       									this.selectedSectionFilter =

     

       607
       +
       										(e.target as HTMLSelectElement).value || null;

     

       608
       +
       								}}

     

       609
       +
                       .value=${this.selectedSectionFilter || ""}

     

       610
       +
                     >

     

       611
       +
                       ${this.sections.map(

     

       612
       +
       									(s) =>

     

       613
       +
       										html`<option value=${s.id} ?selected=${s.id === this.selectedSectionFilter}>${s.section_number}</option>`,

     

       614
       +
       								)}

     

       615
       +
                     </select>

     

       616
       +
                   `

     

       617
       +
       							: ""

     

       618
       +
       					}

     

       619
        
                 <input

     

       620
        
                   type="text"

     

       621
        
                   class="search-box"

     
···

       634
        
                 </button>

     

       635
        
               </div>

     

       636
        
       

     

       637
       +
               <!-- Pending Recordings for Voting -->

     

       638
       +
               ${

     

       639
       +
       					this.meetingTimes.map((meeting) => {

     

       640
       +
       						// Apply section filtering to pending recordings

     

       641
       +
       						const sectionFilter = this.selectedSectionFilter || this.userSection;

     

       642
       +
       						

     

       643
       +
       						const pendingCount = this.transcriptions.filter((t) => {

     

       644
       +
       							if (t.meeting_time_id !== meeting.id || t.status !== "pending") {

     

       645
       +
       								return false;

     

       646
       +
       							}

     

       647
       +
       							

     

       648
       +
       							// Filter by section if applicable

     

       649
       +
       							if (this.sections.length > 0 && sectionFilter) {

     

       650
       +
       								// Show recordings from user's section or no section (unassigned)

     

       651
       +
       								return t.section_id === sectionFilter || t.section_id === null;

     

       652
       +
       							}

     

       653
       +
       							

     

       654
       +
       							return true;

     

       655
       +
       						}).length;

     

       656
       +
       

     

       657
       +
       						// Only show if there are pending recordings

     

       658
       +
       						if (pendingCount === 0) return "";

     

       659
       +
       

     

       660
       +
       						return html`

     

       661
       +
                   <div style="margin-bottom: 2rem;">

     

       662
       +
                     <pending-recordings-view

     

       663
       +
                       .classId=${this.classId}

     

       664
       +
                       .meetingTimeId=${meeting.id}

     

       665
       +
                       .meetingTimeLabel=${meeting.label}

     

       666
       +
                       .sectionId=${sectionFilter}

     

       667
       +
                     ></pending-recordings-view>

     

       668
       +
                   </div>

     

       669
       +
                 `;

     

       670
       +
       					})

     

       671
       +
       				}

     

       672
       +
       

     

       673
       +
               <!-- Completed/Processing Transcriptions -->

     

       674
        
               ${

     

       675
        
       					this.filteredTranscriptions.length === 0

     

       676
        
       						? html`

     
···

       735
        
               ?open=${this.uploadModalOpen}

     

       736
        
               .classId=${this.classId}

     

       737
        
               .meetingTimes=${this.meetingTimes.map((m) => ({ id: m.id, label: m.label }))}

     

       738
       +
               .sections=${this.sections}

     

       739
       +
               .userSection=${this.userSection}

     

       740
        
               @close=${this.handleModalClose}

     

       741
        
               @upload-success=${this.handleUploadSuccess}

     

       742
        
             ></upload-recording-modal>

src/components/classes-overview.ts

···

       232
        
       	}

     

       233
        
       

     

       234
        
       	private async handleClassJoined() {

     

       0
        
       
     

       235
        
       		await this.loadClasses();

     

       236
        
       	}

     

       237

···

       232
        
       	}

     

       233
        
       

     

       234
        
       	private async handleClassJoined() {

     

       235
       +
       		this.showRegistrationModal = false;

     

       236
        
       		await this.loadClasses();

     

       237
        
       	}

     

       238

+436

src/components/pending-recordings-view.ts

···

       1
       +
       import { css, html, LitElement } from "lit";

     

       2
       +
       import { customElement, property, state } from "lit/decorators.js";

     

       3
       +
       

     

       4
       +
       interface PendingRecording {

     

       5
       +
       	id: string;

     

       6
       +
       	user_id: number;

     

       7
       +
       	filename: string;

     

       8
       +
       	original_filename: string;

     

       9
       +
       	vote_count: number;

     

       10
       +
       	created_at: number;

     

       11
       +
       }

     

       12
       +
       

     

       13
       +
       interface RecordingsData {

     

       14
       +
       	recordings: PendingRecording[];

     

       15
       +
       	total_users: number;

     

       16
       +
       	user_vote: string | null;

     

       17
       +
       	vote_threshold: number;

     

       18
       +
       	winning_recording_id: string | null;

     

       19
       +
       }

     

       20
       +
       

     

       21
       +
       @customElement("pending-recordings-view")

     

       22
       +
       export class PendingRecordingsView extends LitElement {

     

       23
       +
       	@property({ type: String }) classId = "";

     

       24
       +
       	@property({ type: String }) meetingTimeId = "";

     

       25
       +
       	@property({ type: String }) meetingTimeLabel = "";

     

       26
       +
       	@property({ type: String }) sectionId: string | null = null;

     

       27
       +
       

     

       28
       +
       	@state() private recordings: PendingRecording[] = [];

     

       29
       +
       	@state() private userVote: string | null = null;

     

       30
       +
       	@state() private voteThreshold = 0;

     

       31
       +
       	@state() private winningRecordingId: string | null = null;

     

       32
       +
       	@state() private error: string | null = null;

     

       33
       +
       	@state() private timeRemaining = "";

     

       34
       +
       

     

       35
       +
       	private refreshInterval?: number;

     

       36
       +
       	private loadingInProgress = false;

     

       37
       +
       

     

       38
       +
       	static override styles = css`

     

       39
       +
           :host {

     

       40
       +
             display: block;

     

       41
       +
             padding: 1rem;

     

       42
       +
           }

     

       43
       +
       

     

       44
       +
           .container {

     

       45
       +
             max-width: 56rem;

     

       46
       +
             margin: 0 auto;

     

       47
       +
           }

     

       48
       +
       

     

       49
       +
           h2 {

     

       50
       +
             color: var(--text);

     

       51
       +
             margin-bottom: 0.5rem;

     

       52
       +
           }

     

       53
       +
       

     

       54
       +
           .info {

     

       55
       +
             color: var(--paynes-gray);

     

       56
       +
             font-size: 0.875rem;

     

       57
       +
             margin-bottom: 1.5rem;

     

       58
       +
           }

     

       59
       +
       

     

       60
       +
           .stats {

     

       61
       +
             display: flex;

     

       62
       +
             gap: 2rem;

     

       63
       +
             margin-bottom: 1.5rem;

     

       64
       +
             padding: 1rem;

     

       65
       +
             background: color-mix(in srgb, var(--primary) 5%, transparent);

     

       66
       +
             border-radius: 8px;

     

       67
       +
           }

     

       68
       +
       

     

       69
       +
           .stat {

     

       70
       +
             display: flex;

     

       71
       +
             flex-direction: column;

     

       72
       +
             gap: 0.25rem;

     

       73
       +
           }

     

       74
       +
       

     

       75
       +
           .stat-label {

     

       76
       +
             font-size: 0.75rem;

     

       77
       +
             color: var(--paynes-gray);

     

       78
       +
             text-transform: uppercase;

     

       79
       +
             letter-spacing: 0.05em;

     

       80
       +
           }

     

       81
       +
       

     

       82
       +
           .stat-value {

     

       83
       +
             font-size: 1.5rem;

     

       84
       +
             font-weight: 600;

     

       85
       +
             color: var(--text);

     

       86
       +
           }

     

       87
       +
       

     

       88
       +
           .recordings-list {

     

       89
       +
             display: flex;

     

       90
       +
             flex-direction: column;

     

       91
       +
             gap: 1rem;

     

       92
       +
           }

     

       93
       +
       

     

       94
       +
           .recording-card {

     

       95
       +
             border: 2px solid var(--secondary);

     

       96
       +
             border-radius: 8px;

     

       97
       +
             padding: 1rem;

     

       98
       +
             transition: all 0.2s;

     

       99
       +
           }

     

       100
       +
       

     

       101
       +
           .recording-card.voted {

     

       102
       +
             border-color: var(--accent);

     

       103
       +
             background: color-mix(in srgb, var(--accent) 5%, transparent);

     

       104
       +
           }

     

       105
       +
       

     

       106
       +
           .recording-card.winning {

     

       107
       +
             border-color: var(--accent);

     

       108
       +
             background: color-mix(in srgb, var(--accent) 10%, transparent);

     

       109
       +
           }

     

       110
       +
       

     

       111
       +
           .recording-header {

     

       112
       +
             display: flex;

     

       113
       +
             justify-content: space-between;

     

       114
       +
             align-items: center;

     

       115
       +
             margin-bottom: 0.75rem;

     

       116
       +
           }

     

       117
       +
       

     

       118
       +
           .recording-info {

     

       119
       +
             flex: 1;

     

       120
       +
           }

     

       121
       +
       

     

       122
       +
           .recording-name {

     

       123
       +
             font-weight: 600;

     

       124
       +
             color: var(--text);

     

       125
       +
             margin-bottom: 0.25rem;

     

       126
       +
           }

     

       127
       +
       

     

       128
       +
           .recording-meta {

     

       129
       +
             font-size: 0.75rem;

     

       130
       +
             color: var(--paynes-gray);

     

       131
       +
           }

     

       132
       +
       

     

       133
       +
           .vote-section {

     

       134
       +
             display: flex;

     

       135
       +
             align-items: center;

     

       136
       +
             gap: 1rem;

     

       137
       +
           }

     

       138
       +
       

     

       139
       +
           .vote-count {

     

       140
       +
             font-size: 1.25rem;

     

       141
       +
             font-weight: 600;

     

       142
       +
             color: var(--accent);

     

       143
       +
             min-width: 3rem;

     

       144
       +
             text-align: center;

     

       145
       +
           }

     

       146
       +
       

     

       147
       +
           .vote-button {

     

       148
       +
             padding: 0.5rem 1rem;

     

       149
       +
             border-radius: 6px;

     

       150
       +
             font-size: 0.875rem;

     

       151
       +
             font-weight: 500;

     

       152
       +
             cursor: pointer;

     

       153
       +
             transition: all 0.2s;

     

       154
       +
             border: 2px solid var(--secondary);

     

       155
       +
             background: var(--background);

     

       156
       +
             color: var(--text);

     

       157
       +
           }

     

       158
       +
       

     

       159
       +
           .vote-button:hover:not(:disabled) {

     

       160
       +
             border-color: var(--accent);

     

       161
       +
             background: color-mix(in srgb, var(--accent) 10%, transparent);

     

       162
       +
           }

     

       163
       +
       

     

       164
       +
           .vote-button.voted {

     

       165
       +
             border-color: var(--accent);

     

       166
       +
             background: var(--accent);

     

       167
       +
             color: var(--white);

     

       168
       +
           }

     

       169
       +
       

     

       170
       +
           .vote-button:disabled {

     

       171
       +
             opacity: 0.5;

     

       172
       +
             cursor: not-allowed;

     

       173
       +
           }

     

       174
       +
       

     

       175
       +
           .delete-button {

     

       176
       +
             padding: 0.5rem;

     

       177
       +
             border: none;

     

       178
       +
             background: transparent;

     

       179
       +
             color: var(--paynes-gray);

     

       180
       +
             cursor: pointer;

     

       181
       +
             border-radius: 4px;

     

       182
       +
             transition: all 0.2s;

     

       183
       +
           }

     

       184
       +
       

     

       185
       +
           .delete-button:hover {

     

       186
       +
             background: color-mix(in srgb, red 10%, transparent);

     

       187
       +
             color: red;

     

       188
       +
           }

     

       189
       +
       

     

       190
       +
           .winning-badge {

     

       191
       +
             background: var(--accent);

     

       192
       +
             color: var(--white);

     

       193
       +
             padding: 0.25rem 0.75rem;

     

       194
       +
             border-radius: 12px;

     

       195
       +
             font-size: 0.75rem;

     

       196
       +
             font-weight: 600;

     

       197
       +
           }

     

       198
       +
       

     

       199
       +
           .error {

     

       200
       +
             background: color-mix(in srgb, red 10%, transparent);

     

       201
       +
             border: 1px solid red;

     

       202
       +
             color: red;

     

       203
       +
             padding: 0.75rem;

     

       204
       +
             border-radius: 4px;

     

       205
       +
             margin-bottom: 1rem;

     

       206
       +
             font-size: 0.875rem;

     

       207
       +
           }

     

       208
       +
       

     

       209
       +
           .empty-state {

     

       210
       +
             text-align: center;

     

       211
       +
             padding: 3rem 1rem;

     

       212
       +
             color: var(--paynes-gray);

     

       213
       +
           }

     

       214
       +
       

     

       215
       +
           .audio-player {

     

       216
       +
             margin-top: 0.75rem;

     

       217
       +
           }

     

       218
       +
       

     

       219
       +
           audio {

     

       220
       +
             width: 100%;

     

       221
       +
             height: 2.5rem;

     

       222
       +
           }

     

       223
       +
         `;

     

       224
       +
       

     

       225
       +
       	override connectedCallback() {

     

       226
       +
       		super.connectedCallback();

     

       227
       +
       		this.loadRecordings();

     

       228
       +
       		// Refresh every 10 seconds

     

       229
       +
       		this.refreshInterval = setInterval(() => this.loadRecordings(), 10000);

     

       230
       +
       	}

     

       231
       +
       

     

       232
       +
       	override disconnectedCallback() {

     

       233
       +
       		super.disconnectedCallback();

     

       234
       +
       		if (this.refreshInterval) {

     

       235
       +
       			clearInterval(this.refreshInterval);

     

       236
       +
       		}

     

       237
       +
       	}

     

       238
       +
       

     

       239
       +
       	private async loadRecordings() {

     

       240
       +
       		if (this.loadingInProgress) return;

     

       241
       +
       

     

       242
       +
       		this.loadingInProgress = true;

     

       243
       +
       

     

       244
       +
       		try {

     

       245
       +
       			// Build URL with optional section_id parameter

     

       246
       +
       			const url = new URL(

     

       247
       +
       				`/api/classes/${this.classId}/meetings/${this.meetingTimeId}/recordings`,

     

       248
       +
       				window.location.origin,

     

       249
       +
       			);

     

       250
       +
       			if (this.sectionId !== null) {

     

       251
       +
       				url.searchParams.set("section_id", this.sectionId);

     

       252
       +
       			}

     

       253
       +
       

     

       254
       +
       			const response = await fetch(url.toString());

     

       255
       +
       

     

       256
       +
       			if (!response.ok) {

     

       257
       +
       				throw new Error("Failed to load recordings");

     

       258
       +
       			}

     

       259
       +
       

     

       260
       +
       			const data: RecordingsData = await response.json();

     

       261
       +
       			this.recordings = data.recordings;

     

       262
       +
       			this.userVote = data.user_vote;

     

       263
       +
       			this.voteThreshold = data.vote_threshold;

     

       264
       +
       			this.winningRecordingId = data.winning_recording_id;

     

       265
       +
       

     

       266
       +
       			// Calculate time remaining for first recording

     

       267
       +
       			if (this.recordings.length > 0 && this.recordings[0]) {

     

       268
       +
       				const uploadedAt = this.recordings[0].created_at;

     

       269
       +
       				const now = Date.now() / 1000;

     

       270
       +
       				const elapsed = now - uploadedAt;

     

       271
       +
       				const remaining = 30 * 60 - elapsed; // 30 minutes

     

       272
       +
       

     

       273
       +
       				if (remaining > 0) {

     

       274
       +
       					const minutes = Math.floor(remaining / 60);

     

       275
       +
       					const seconds = Math.floor(remaining % 60);

     

       276
       +
       					this.timeRemaining = `${minutes}:${seconds.toString().padStart(2, "0")}`;

     

       277
       +
       				} else {

     

       278
       +
       					this.timeRemaining = "Auto-submitting...";

     

       279
       +
       				}

     

       280
       +
       			}

     

       281
       +
       

     

       282
       +
       			this.error = null;

     

       283
       +
       		} catch (error) {

     

       284
       +
       			this.error =

     

       285
       +
       				error instanceof Error ? error.message : "Failed to load recordings";

     

       286
       +
       		} finally {

     

       287
       +
       			this.loadingInProgress = false;

     

       288
       +
       		}

     

       289
       +
       	}

     

       290
       +
       

     

       291
       +
       	private async handleVote(recordingId: string) {

     

       292
       +
       		try {

     

       293
       +
       			const response = await fetch(`/api/recordings/${recordingId}/vote`, {

     

       294
       +
       				method: "POST",

     

       295
       +
       			});

     

       296
       +
       

     

       297
       +
       			if (!response.ok) {

     

       298
       +
       				throw new Error("Failed to vote");

     

       299
       +
       			}

     

       300
       +
       

     

       301
       +
       			const data = await response.json();

     

       302
       +
       

     

       303
       +
       			// If a winner was selected, reload the page to show it in transcriptions

     

       304
       +
       			if (data.winning_recording_id) {

     

       305
       +
       				window.location.reload();

     

       306
       +
       			} else {

     

       307
       +
       				// Just reload recordings to show updated votes

     

       308
       +
       				await this.loadRecordings();

     

       309
       +
       			}

     

       310
       +
       		} catch (error) {

     

       311
       +
       			this.error =

     

       312
       +
       				error instanceof Error ? error.message : "Failed to vote";

     

       313
       +
       		}

     

       314
       +
       	}

     

       315
       +
       

     

       316
       +
       	private async handleDelete(recordingId: string) {

     

       317
       +
       		if (!confirm("Delete this recording?")) {

     

       318
       +
       			return;

     

       319
       +
       		}

     

       320
       +
       

     

       321
       +
       		try {

     

       322
       +
       			const response = await fetch(`/api/recordings/${recordingId}`, {

     

       323
       +
       				method: "DELETE",

     

       324
       +
       			});

     

       325
       +
       

     

       326
       +
       			if (!response.ok) {

     

       327
       +
       				throw new Error("Failed to delete recording");

     

       328
       +
       			}

     

       329
       +
       

     

       330
       +
       			await this.loadRecordings();

     

       331
       +
       		} catch (error) {

     

       332
       +
       			this.error =

     

       333
       +
       				error instanceof Error ? error.message : "Failed to delete recording";

     

       334
       +
       		}

     

       335
       +
       	}

     

       336
       +
       

     

       337
       +
       	private formatTimeAgo(timestamp: number): string {

     

       338
       +
       		const now = Date.now() / 1000;

     

       339
       +
       		const diff = now - timestamp;

     

       340
       +
       

     

       341
       +
       		if (diff < 60) return "just now";

     

       342
       +
       		if (diff < 3600) return `${Math.floor(diff / 60)}m ago`;

     

       343
       +
       		if (diff < 86400) return `${Math.floor(diff / 3600)}h ago`;

     

       344
       +
       		return `${Math.floor(diff / 86400)}d ago`;

     

       345
       +
       	}

     

       346
       +
       

     

       347
       +
       	override render() {

     

       348
       +
       		return html`

     

       349
       +
             <div class="container">

     

       350
       +
               <h2>Pending Recordings - ${this.meetingTimeLabel}</h2>

     

       351
       +
               <p class="info">

     

       352
       +
                 Vote for the best quality recording. The winner will be automatically transcribed when 40% of class votes or after 30 minutes.

     

       353
       +
               </p>

     

       354
       +
       

     

       355
       +
               ${this.error ? html`<div class="error">${this.error}</div>` : ""}

     

       356
       +
       

     

       357
       +
               ${

     

       358
       +
       					this.recordings.length > 0

     

       359
       +
       						? html`

     

       360
       +
                   <div class="stats">

     

       361
       +
                     <div class="stat">

     

       362
       +
                       <div class="stat-label">Recordings</div>

     

       363
       +
                       <div class="stat-value">${this.recordings.length}</div>

     

       364
       +
                     </div>

     

       365
       +
                     <div class="stat">

     

       366
       +
                       <div class="stat-label">Vote Threshold</div>

     

       367
       +
                       <div class="stat-value">${this.voteThreshold} votes</div>

     

       368
       +
                     </div>

     

       369
       +
                     <div class="stat">

     

       370
       +
                       <div class="stat-label">Time Remaining</div>

     

       371
       +
                       <div class="stat-value">${this.timeRemaining}</div>

     

       372
       +
                     </div>

     

       373
       +
                   </div>

     

       374
       +
       

     

       375
       +
                   <div class="recordings-list">

     

       376
       +
                     ${this.recordings.map(

     

       377
       +
       								(recording) => html`

     

       378
       +
                       <div class="recording-card ${this.userVote === recording.id ? "voted" : ""} ${this.winningRecordingId === recording.id ? "winning" : ""}">

     

       379
       +
                         <div class="recording-header">

     

       380
       +
                           <div class="recording-info">

     

       381
       +
                             <div class="recording-name">${recording.original_filename}</div>

     

       382
       +
                             <div class="recording-meta">

     

       383
       +
                               Uploaded ${this.formatTimeAgo(recording.created_at)}

     

       384
       +
                             </div>

     

       385
       +
                           </div>

     

       386
       +
       

     

       387
       +
                           <div class="vote-section">

     

       388
       +
                             ${

     

       389
       +
       												this.winningRecordingId === recording.id

     

       390
       +
       													? html`<span class="winning-badge">✨ Selected</span>`

     

       391
       +
       													: ""

     

       392
       +
       											}

     

       393
       +
                             

     

       394
       +
                             <div class="vote-count">

     

       395
       +
                               ${recording.vote_count} ${recording.vote_count === 1 ? "vote" : "votes"}

     

       396
       +
                             </div>

     

       397
       +
       

     

       398
       +
                             <button

     

       399
       +
                               class="vote-button ${this.userVote === recording.id ? "voted" : ""}"

     

       400
       +
                               @click=${() => this.handleVote(recording.id)}

     

       401
       +
                               ?disabled=${this.winningRecordingId !== null}

     

       402
       +
                             >

     

       403
       +
                               ${this.userVote === recording.id ? "✓ Voted" : "Vote"}

     

       404
       +
                             </button>

     

       405
       +
       

     

       406
       +
                             <button

     

       407
       +
                               class="delete-button"

     

       408
       +
                               @click=${() => this.handleDelete(recording.id)}

     

       409
       +
                               title="Delete recording"

     

       410
       +
                             >

     

       411
       +
                               🗑️

     

       412
       +
                             </button>

     

       413
       +
                           </div>

     

       414
       +
                         </div>

     

       415
       +
       

     

       416
       +
                         <div class="audio-player">

     

       417
       +
                           <audio controls preload="none">

     

       418
       +
                             <source src="/api/transcriptions/${recording.id}/audio" type="audio/mpeg">

     

       419
       +
                           </audio>

     

       420
       +
                         </div>

     

       421
       +
                       </div>

     

       422
       +
                     `,

     

       423
       +
       							)}

     

       424
       +
                   </div>

     

       425
       +
                 `

     

       426
       +
       						: html`

     

       427
       +
                   <div class="empty-state">

     

       428
       +
                     <p>No recordings uploaded yet for this meeting time.</p>

     

       429
       +
                     <p>Upload a recording to get started!</p>

     

       430
       +
                   </div>

     

       431
       +
                 `

     

       432
       +
       				}

     

       433
       +
             </div>

     

       434
       +
           `;

     

       435
       +
       	}

     

       436
       +
       }

+70 -1

src/db/schema.ts

···

       1
        
       import { Database } from "bun:sqlite";

     

       2
        
       

     

       3
        
       // Use test database when NODE_ENV is test

     

       4
       -
       const dbPath = process.env.NODE_ENV === "test" ? "thistle.test.db" : "thistle.db";

     

       0
        
       
     

       5
        
       export const db = new Database(dbPath);

     

       6
        
       

     

       7
        
       console.log(`[Database] Using database: ${dbPath}`);

     
···

       223
        
             INSERT OR IGNORE INTO users (id, email, password_hash, name, avatar, role, created_at)

     

       224
        
             VALUES (0, 'ghosty@thistle.internal', NULL, 'Ghosty', '👻', 'user', strftime('%s', 'now'));

     

       225
        
           `,

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       226
        
       	},

     

       227
        
       ];

     

       228

···

       1
        
       import { Database } from "bun:sqlite";

     

       2
        
       

     

       3
        
       // Use test database when NODE_ENV is test

     

       4
       +
       const dbPath =

     

       5
       +
       	process.env.NODE_ENV === "test" ? "thistle.test.db" : "thistle.db";

     

       6
        
       export const db = new Database(dbPath);

     

       7
        
       

     

       8
        
       console.log(`[Database] Using database: ${dbPath}`);

     
···

       224
        
             INSERT OR IGNORE INTO users (id, email, password_hash, name, avatar, role, created_at)

     

       225
        
             VALUES (0, 'ghosty@thistle.internal', NULL, 'Ghosty', '👻', 'user', strftime('%s', 'now'));

     

       226
        
           `,

     

       227
       +
       	},

     

       228
       +
       	{

     

       229
       +
       		version: 2,

     

       230
       +
       		name: "Add sections support to classes and class members",

     

       231
       +
       		sql: `

     

       232
       +
       			-- Add section_number to classes (nullable for existing classes)

     

       233
       +
       			ALTER TABLE classes ADD COLUMN section_number TEXT;

     

       234
       +
       

     

       235
       +
       			-- Add section_id to class_members (nullable - NULL means default section)

     

       236
       +
       			ALTER TABLE class_members ADD COLUMN section_id TEXT;

     

       237
       +
       

     

       238
       +
       			-- Create sections table to track all available sections for a class

     

       239
       +
       			CREATE TABLE IF NOT EXISTS class_sections (

     

       240
       +
       				id TEXT PRIMARY KEY,

     

       241
       +
       				class_id TEXT NOT NULL,

     

       242
       +
       				section_number TEXT NOT NULL,

     

       243
       +
       				created_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now')),

     

       244
       +
       				FOREIGN KEY (class_id) REFERENCES classes(id) ON DELETE CASCADE,

     

       245
       +
       				UNIQUE(class_id, section_number)

     

       246
       +
       			);

     

       247
       +
       

     

       248
       +
       			CREATE INDEX IF NOT EXISTS idx_class_sections_class_id ON class_sections(class_id);

     

       249
       +
       

     

       250
       +
       			-- Add section_id to transcriptions to track which section uploaded it

     

       251
       +
       			ALTER TABLE transcriptions ADD COLUMN section_id TEXT;

     

       252
       +
       

     

       253
       +
       			CREATE INDEX IF NOT EXISTS idx_transcriptions_section_id ON transcriptions(section_id);

     

       254
       +
       		`,

     

       255
       +
       	},

     

       256
       +
       	{

     

       257
       +
       		version: 3,

     

       258
       +
       		name: "Add voting system for collaborative recording selection",

     

       259
       +
       		sql: `

     

       260
       +
       			-- Add vote count to transcriptions

     

       261
       +
       			ALTER TABLE transcriptions ADD COLUMN vote_count INTEGER NOT NULL DEFAULT 0;

     

       262
       +
       

     

       263
       +
       			-- Add auto-submitted flag to track if transcription was auto-selected

     

       264
       +
       			ALTER TABLE transcriptions ADD COLUMN auto_submitted BOOLEAN DEFAULT 0;

     

       265
       +
       

     

       266
       +
       			-- Create votes table to track who voted for which recording

     

       267
       +
       			CREATE TABLE IF NOT EXISTS recording_votes (

     

       268
       +
       				id TEXT PRIMARY KEY,

     

       269
       +
       				transcription_id TEXT NOT NULL,

     

       270
       +
       				user_id INTEGER NOT NULL,

     

       271
       +
       				created_at INTEGER NOT NULL DEFAULT (strftime('%s', 'now')),

     

       272
       +
       				FOREIGN KEY (transcription_id) REFERENCES transcriptions(id) ON DELETE CASCADE,

     

       273
       +
       				FOREIGN KEY (user_id) REFERENCES users(id) ON DELETE CASCADE,

     

       274
       +
       				UNIQUE(transcription_id, user_id)

     

       275
       +
       			);

     

       276
       +
       

     

       277
       +
       			CREATE INDEX IF NOT EXISTS idx_recording_votes_transcription_id ON recording_votes(transcription_id);

     

       278
       +
       			CREATE INDEX IF NOT EXISTS idx_recording_votes_user_id ON recording_votes(user_id);

     

       279
       +
       		`,

     

       280
       +
       	},

     

       281
       +
       	{

     

       282
       +
       		version: 4,

     

       283
       +
       		name: "Add recording_date to transcriptions for chronological ordering",

     

       284
       +
       		sql: `

     

       285
       +
       			-- Add recording_date (timestamp when the recording was made, not uploaded)

     

       286
       +
       			-- Defaults to created_at for existing records

     

       287
       +
       			ALTER TABLE transcriptions ADD COLUMN recording_date INTEGER;

     

       288
       +
       			

     

       289
       +
       			-- Set recording_date to created_at for existing records

     

       290
       +
       			UPDATE transcriptions SET recording_date = created_at WHERE recording_date IS NULL;

     

       291
       +
       

     

       292
       +
       			-- Create index for ordering by recording date

     

       293
       +
       			CREATE INDEX IF NOT EXISTS idx_transcriptions_recording_date ON transcriptions(recording_date);

     

       294
       +
       		`,

     

       295
        
       	},

     

       296
        
       ];

     

       297

+82 -86

src/index.test.ts

···

       6
        
       	expect,

     

       7
        
       	test,

     

       8
        
       } from "bun:test";

     

       9
       -
       import { hashPasswordClient } from "./lib/client-auth";

     

       10
        
       import type { Subprocess } from "bun";

     

       0
        
       
     

       11
        
       

     

       12
        
       // Test server configuration

     

       13
        
       const TEST_PORT = 3001;

     
···

       54
        
       	const stdoutReader = serverProcess.stdout.getReader();

     

       55
        
       	const stderrReader = serverProcess.stderr.getReader();

     

       56
        
       	const decoder = new TextDecoder();

     

       57
       -
       	

     

       58
        
       	(async () => {

     

       59
        
       		try {

     

       60
        
       			while (true) {

     
···

       65
        
       			}

     

       66
        
       		} catch {}

     

       67
        
       	})();

     

       68
       -
       	

     

       69
        
       	(async () => {

     

       70
        
       		try {

     

       71
        
       			while (true) {

     
···

       123
        
       // Clear database between each test

     

       124
        
       beforeEach(async () => {

     

       125
        
       	const db = require("bun:sqlite").Database.open(TEST_DB_PATH);

     

       126
       -
       	

     

       127
        
       	// Delete all data from tables (preserve schema)

     

       128
        
       	db.run("DELETE FROM rate_limit_attempts");

     

       129
        
       	db.run("DELETE FROM email_change_tokens");

     
···

       138
        
       	db.run("DELETE FROM classes");

     

       139
        
       	db.run("DELETE FROM class_waitlist");

     

       140
        
       	db.run("DELETE FROM users WHERE id != 0"); // Keep ghost user

     

       141
       -
       	

     

       142
        
       	db.close();

     

       143
        
       });

     

       144
        
       

     
···

       194
        
       }

     

       195
        
       

     

       196
        
       // Helper to register a user, verify email, and get session via login

     

       197
       -
       async function registerAndLogin(user: { email: string; password: string; name?: string }): Promise<string> {

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       198
        
       	const hashedPassword = await clientHashPassword(user.email, user.password);

     

       199
        
       

     

       200
        
       	// Register the user

     
···

       208
        
       		}),

     

       209
        
       	});

     

       210
        
       

     

       211
       -
       	if (registerResponse.status !== 200) {

     

       212
        
       		const error = await registerResponse.json();

     

       213
        
       		throw new Error(`Registration failed: ${JSON.stringify(error)}`);

     

       214
        
       	}

     
···

       242
        
       // Helper to add active subscription to a user

     

       243
        
       function addSubscription(userEmail: string): void {

     

       244
        
       	const db = require("bun:sqlite").Database.open(TEST_DB_PATH);

     

       245
       -
       	const user = db.query("SELECT id FROM users WHERE email = ?").get(userEmail) as { id: number };

     

       0
        
       
     

       0
        
       
     

       246
        
       	if (!user) {

     

       247
        
       		db.close();

     

       248
        
       		throw new Error(`User ${userEmail} not found`);

     

       249
        
       	}

     

       250
       -
       	

     

       251
        
       	db.run(

     

       252
        
       		"INSERT INTO subscriptions (id, user_id, customer_id, status) VALUES (?, ?, ?, ?)",

     

       253
       -
       		[`test-sub-${user.id}`, user.id, `test-customer-${user.id}`, "active"]

     

       254
        
       	);

     

       255
        
       	db.close();

     

       256
        
       }

     
···

       275
        
       				}),

     

       276
        
       			});

     

       277
        
       

     

       278
       -
       			if (response.status !== 200) {

     

       279
        
       				const error = await response.json();

     

       280
        
       				console.error("Registration failed:", response.status, error);

     

       281
        
       			}

     

       282
        
       

     

       283
       -
       			expect(response.status).toBe(200);

     

       284
       -
       			

     

       285
        
       			const data = await response.json();

     

       286
        
       			expect(data.user).toBeDefined();

     

       287
        
       			expect(data.user.email).toBe(TEST_USER.email);

     
···

       302
        
       			expect(data.error).toBe("Email and password required");

     

       303
        
       		});

     

       304
        
       

     

       305
       -
       		test(

     

       306
       -
       			"should reject registration with invalid password format",

     

       307
       -
       			async () => {

     

       308
       -
       				const response = await fetch(`${BASE_URL}/api/auth/register`, {

     

       309
       -
       					method: "POST",

     

       310
       -
       					headers: { "Content-Type": "application/json" },

     

       311
       -
       					body: JSON.stringify({

     

       312
       -
       						email: TEST_USER.email,

     

       313
       -
       						password: "short",

     

       314
       -
       					}),

     

       315
       -
       				});

     

       316
        
       

     

       317
       -
       				expect(response.status).toBe(400);

     

       318
       -
       				const data = await response.json();

     

       319
       -
       				expect(data.error).toBe("Invalid password format");

     

       320
       -
       			},

     

       321
       -
       		);

     

       322
        
       

     

       323
        
       		test("should reject duplicate email registration", async () => {

     

       324
        
       			const hashedPassword = await clientHashPassword(

     
···

       348
        
       				}),

     

       349
        
       			});

     

       350
        
       

     

       351
       -
       			expect(response.status).toBe(400);

     

       352
        
       			const data = await response.json();

     

       353
        
       			expect(data.error).toBe("Email already registered");

     

       354
        
       		});

     
···

       431
        
       				},

     

       432
        
       			);

     

       433
        
       

     

       434
       -
       			expect(response.status).toBe(200);

     

       435
       -
       			const data = await response.json();

     

       436
       -
       			expect(data.success).toBe(true);

     

       437
        
       

     

       438
        
       			// Verify user is deleted

     

       439
        
       			const verifyResponse = await authRequest(

     
···

       475
        
       

     

       476
        
       			// Manually complete the email change in the database (simulating verification)

     

       477
        
       			const db = require("bun:sqlite").Database.open(TEST_DB_PATH);

     

       478
       -
       			const tokenData = db.query("SELECT user_id, new_email FROM email_change_tokens ORDER BY created_at DESC LIMIT 1").get() as { user_id: number, new_email: string };

     

       479
       -
       			db.run("UPDATE users SET email = ?, email_verified = 1 WHERE id = ?", [tokenData.new_email, tokenData.user_id]);

     

       480
       -
       			db.run("DELETE FROM email_change_tokens WHERE user_id = ?", [tokenData.user_id]);

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       481
        
       			db.close();

     

       482
        
       

     

       483
        
       			// Verify email updated

     
···

       505
        
       				},

     

       506
        
       			);

     

       507
        
       

     

       508
       -
       			expect(response.status).toBe(400);

     

       509
        
       			const data = await response.json();

     

       510
        
       			expect(data.error).toBe("Email already in use");

     

       511
        
       		});

     
···

       586
        
       			);

     

       587
        
       

     

       588
        
       			expect(response.status).toBe(200);

     

       589
       -
       			const data = await response.json();

     

       590
       -
       			expect(data.success).toBe(true);

     

       591
        
       

     

       592
        
       			// Verify name updated

     

       593
        
       			const meResponse = await authRequest(

     
···

       650
        
       

     

       651
        
       describe("API Endpoints - Health", () => {

     

       652
        
       	describe("GET /api/health", () => {

     

       653
       -
       		test(

     

       654
       -
       			"should return service health status with details",

     

       655
       -
       			async () => {

     

       656
       -
       				const response = await fetch(`${BASE_URL}/api/health`);

     

       657
        
       

     

       658
       -
       				expect(response.status).toBe(200);

     

       659
       -
       				const data = await response.json();

     

       660
       -
       				expect(data).toHaveProperty("status");

     

       661
       -
       				expect(data).toHaveProperty("timestamp");

     

       662
       -
       				expect(data).toHaveProperty("services");

     

       663
       -
       				expect(data.services).toHaveProperty("database");

     

       664
       -
       				expect(data.services).toHaveProperty("whisper");

     

       665
       -
       				expect(data.services).toHaveProperty("storage");

     

       666
       -
       			},

     

       667
       -
       		);

     

       668
        
       	});

     

       669
        
       });

     

       670
        
       

     
···

       673
        
       		test("should return user transcriptions", async () => {

     

       674
        
       			// Register and login

     

       675
        
       			const sessionCookie = await registerAndLogin(TEST_USER);

     

       676
       -
       			

     

       677
        
       			// Add subscription

     

       678
        
       			addSubscription(TEST_USER.email);

     

       679
        
       

     
···

       700
        
       		test("should upload audio file and start transcription", async () => {

     

       701
        
       			// Register and login

     

       702
        
       			const sessionCookie = await registerAndLogin(TEST_USER);

     

       703
       -
       			

     

       704
        
       			// Add subscription

     

       705
        
       			addSubscription(TEST_USER.email);

     

       706
        
       

     
···

       720
        
       				},

     

       721
        
       			);

     

       722
        
       

     

       723
       -
       			expect(response.status).toBe(200);

     

       724
        
       			const data = await response.json();

     

       725
        
       			expect(data.id).toBeDefined();

     

       726
        
       			expect(data.message).toContain("Upload successful");

     
···

       729
        
       		test("should reject non-audio files", async () => {

     

       730
        
       			// Register and login

     

       731
        
       			const sessionCookie = await registerAndLogin(TEST_USER);

     

       732
       -
       			

     

       733
        
       			// Add subscription

     

       734
        
       			addSubscription(TEST_USER.email);

     

       735
        
       

     
···

       753
        
       		test("should reject files exceeding size limit", async () => {

     

       754
        
       			// Register and login

     

       755
        
       			const sessionCookie = await registerAndLogin(TEST_USER);

     

       756
       -
       			

     

       757
        
       			// Add subscription

     

       758
        
       			addSubscription(TEST_USER.email);

     

       759
        
       

     
···

       801
        
       	beforeEach(async () => {

     

       802
        
       		// Create admin user

     

       803
        
       		adminCookie = await registerAndLogin(TEST_ADMIN);

     

       804
       -
       		

     

       805
        
       		// Manually set admin role in database

     

       806
        
       		const db = require("bun:sqlite").Database.open(TEST_DB_PATH);

     

       807
        
       		db.run("UPDATE users SET role = 'admin' WHERE email = ?", [

     
···

       816
        
       			.query<{ id: number }, [string]>("SELECT id FROM users WHERE email = ?")

     

       817
        
       			.get(TEST_USER.email);

     

       818
        
       		userId = userIdResult?.id;

     

       819
       -
       		

     

       820
        
       		db.close();

     

       821
        
       	});

     

       822
        
       

     
···

       881
        
       				},

     

       882
        
       			);

     

       883
        
       

     

       884
       -
       			expect(response.status).toBe(200);

     

       885
       -
       			const data = await response.json();

     

       886
       -
       			expect(data.success).toBe(true);

     

       887
        
       

     

       888
        
       			// Verify user is deleted

     

       889
        
       			const verifyResponse = await authRequest(

     
···

       919
        
       			);

     

       920
        
       

     

       921
        
       			expect(response.status).toBe(200);

     

       922
       -
       			const data = await response.json();

     

       923
       -
       			expect(data.success).toBe(true);

     

       924
        
       

     

       925
        
       			// Verify role updated

     

       926
        
       			const meResponse = await authRequest(

     
···

       1033
        
       				},

     

       1034
        
       			);

     

       1035
        
       

     

       1036
       -
       			expect(response.status).toBe(400);

     

       1037
        
       			const data = await response.json();

     

       1038
        
       			expect(data.error).toBe("Email already in use");

     

       1039
        
       		});

     
···

       1062
        
       				},

     

       1063
        
       			);

     

       1064
        
       

     

       1065
       -
       			expect(response.status).toBe(200);

     

       1066
       -
       			const data = await response.json();

     

       1067
       -
       			expect(data.success).toBe(true);

     

       1068
        
       

     

       1069
        
       			// Verify sessions are deleted

     

       1070
        
       			const verifyResponse = await authRequest(

     
···

       1105
        
       	});

     

       1106
        
       

     

       1107
        
       	describe("POST /api/passkeys/register/options", () => {

     

       1108
       -
       		test(

     

       1109
       -
       			"should return registration options for authenticated user",

     

       1110
       -
       			async () => {

     

       1111
       -
       				const response = await authRequest(

     

       1112
       -
       					`${BASE_URL}/api/passkeys/register/options`,

     

       1113
       -
       					sessionCookie,

     

       1114
       -
       					{

     

       1115
       -
       						method: "POST",

     

       1116
       -
       					},

     

       1117
       -
       				);

     

       1118
        
       

     

       1119
       -
       				expect(response.status).toBe(200);

     

       1120
       -
       				const data = await response.json();

     

       1121
       -
       				expect(data).toHaveProperty("challenge");

     

       1122
       -
       				expect(data).toHaveProperty("rp");

     

       1123
       -
       				expect(data).toHaveProperty("user");

     

       1124
       -
       			},

     

       1125
       -
       		);

     

       1126
        
       

     

       1127
        
       		test("should require authentication", async () => {

     

       1128
        
       			const response = await fetch(

···

       6
        
       	expect,

     

       7
        
       	test,

     

       8
        
       } from "bun:test";

     

       0
        
       
     

       9
        
       import type { Subprocess } from "bun";

     

       10
       +
       import { hashPasswordClient } from "./lib/client-auth";

     

       11
        
       

     

       12
        
       // Test server configuration

     

       13
        
       const TEST_PORT = 3001;

     
···

       54
        
       	const stdoutReader = serverProcess.stdout.getReader();

     

       55
        
       	const stderrReader = serverProcess.stderr.getReader();

     

       56
        
       	const decoder = new TextDecoder();

     

       57
       +
       

     

       58
        
       	(async () => {

     

       59
        
       		try {

     

       60
        
       			while (true) {

     
···

       65
        
       			}

     

       66
        
       		} catch {}

     

       67
        
       	})();

     

       68
       +
       

     

       69
        
       	(async () => {

     

       70
        
       		try {

     

       71
        
       			while (true) {

     
···

       123
        
       // Clear database between each test

     

       124
        
       beforeEach(async () => {

     

       125
        
       	const db = require("bun:sqlite").Database.open(TEST_DB_PATH);

     

       126
       +
       

     

       127
        
       	// Delete all data from tables (preserve schema)

     

       128
        
       	db.run("DELETE FROM rate_limit_attempts");

     

       129
        
       	db.run("DELETE FROM email_change_tokens");

     
···

       138
        
       	db.run("DELETE FROM classes");

     

       139
        
       	db.run("DELETE FROM class_waitlist");

     

       140
        
       	db.run("DELETE FROM users WHERE id != 0"); // Keep ghost user

     

       141
       +
       

     

       142
        
       	db.close();

     

       143
        
       });

     

       144
        
       

     
···

       194
        
       }

     

       195
        
       

     

       196
        
       // Helper to register a user, verify email, and get session via login

     

       197
       +
       async function registerAndLogin(user: {

     

       198
       +
       	email: string;

     

       199
       +
       	password: string;

     

       200
       +
       	name?: string;

     

       201
       +
       }): Promise<string> {

     

       202
        
       	const hashedPassword = await clientHashPassword(user.email, user.password);

     

       203
        
       

     

       204
        
       	// Register the user

     
···

       212
        
       		}),

     

       213
        
       	});

     

       214
        
       

     

       215
       +
       	if (registerResponse.status !== 201) {

     

       216
        
       		const error = await registerResponse.json();

     

       217
        
       		throw new Error(`Registration failed: ${JSON.stringify(error)}`);

     

       218
        
       	}

     
···

       246
        
       // Helper to add active subscription to a user

     

       247
        
       function addSubscription(userEmail: string): void {

     

       248
        
       	const db = require("bun:sqlite").Database.open(TEST_DB_PATH);

     

       249
       +
       	const user = db

     

       250
       +
       		.query("SELECT id FROM users WHERE email = ?")

     

       251
       +
       		.get(userEmail) as { id: number };

     

       252
        
       	if (!user) {

     

       253
        
       		db.close();

     

       254
        
       		throw new Error(`User ${userEmail} not found`);

     

       255
        
       	}

     

       256
       +
       

     

       257
        
       	db.run(

     

       258
        
       		"INSERT INTO subscriptions (id, user_id, customer_id, status) VALUES (?, ?, ?, ?)",

     

       259
       +
       		[`test-sub-${user.id}`, user.id, `test-customer-${user.id}`, "active"],

     

       260
        
       	);

     

       261
        
       	db.close();

     

       262
        
       }

     
···

       281
        
       				}),

     

       282
        
       			});

     

       283
        
       

     

       284
       +
       			if (response.status !== 201) {

     

       285
        
       				const error = await response.json();

     

       286
        
       				console.error("Registration failed:", response.status, error);

     

       287
        
       			}

     

       288
        
       

     

       289
       +
       			expect(response.status).toBe(201);

     

       290
       +
       

     

       291
        
       			const data = await response.json();

     

       292
        
       			expect(data.user).toBeDefined();

     

       293
        
       			expect(data.user.email).toBe(TEST_USER.email);

     
···

       308
        
       			expect(data.error).toBe("Email and password required");

     

       309
        
       		});

     

       310
        
       

     

       311
       +
       		test("should reject registration with invalid password format", async () => {

     

       312
       +
       			const response = await fetch(`${BASE_URL}/api/auth/register`, {

     

       313
       +
       				method: "POST",

     

       314
       +
       				headers: { "Content-Type": "application/json" },

     

       315
       +
       				body: JSON.stringify({

     

       316
       +
       					email: TEST_USER.email,

     

       317
       +
       					password: "short",

     

       318
       +
       				}),

     

       319
       +
       			});

     

       0
        
       
     

       0
        
       
     

       320
        
       

     

       321
       +
       			expect(response.status).toBe(400);

     

       322
       +
       			const data = await response.json();

     

       323
       +
       			expect(data.error).toBe("Invalid password format");

     

       324
       +
       		});

     

       0
        
       
     

       325
        
       

     

       326
        
       		test("should reject duplicate email registration", async () => {

     

       327
        
       			const hashedPassword = await clientHashPassword(

     
···

       351
        
       				}),

     

       352
        
       			});

     

       353
        
       

     

       354
       +
       			expect(response.status).toBe(409);

     

       355
        
       			const data = await response.json();

     

       356
        
       			expect(data.error).toBe("Email already registered");

     

       357
        
       		});

     
···

       434
        
       				},

     

       435
        
       			);

     

       436
        
       

     

       437
       +
       			expect(response.status).toBe(204);

     

       0
        
       
     

       0
        
       
     

       438
        
       

     

       439
        
       			// Verify user is deleted

     

       440
        
       			const verifyResponse = await authRequest(

     
···

       476
        
       

     

       477
        
       			// Manually complete the email change in the database (simulating verification)

     

       478
        
       			const db = require("bun:sqlite").Database.open(TEST_DB_PATH);

     

       479
       +
       			const tokenData = db

     

       480
       +
       				.query(

     

       481
       +
       					"SELECT user_id, new_email FROM email_change_tokens ORDER BY created_at DESC LIMIT 1",

     

       482
       +
       				)

     

       483
       +
       				.get() as { user_id: number; new_email: string };

     

       484
       +
       			db.run("UPDATE users SET email = ?, email_verified = 1 WHERE id = ?", [

     

       485
       +
       				tokenData.new_email,

     

       486
       +
       				tokenData.user_id,

     

       487
       +
       			]);

     

       488
       +
       			db.run("DELETE FROM email_change_tokens WHERE user_id = ?", [

     

       489
       +
       				tokenData.user_id,

     

       490
       +
       			]);

     

       491
        
       			db.close();

     

       492
        
       

     

       493
        
       			// Verify email updated

     
···

       515
        
       				},

     

       516
        
       			);

     

       517
        
       

     

       518
       +
       			expect(response.status).toBe(409);

     

       519
        
       			const data = await response.json();

     

       520
        
       			expect(data.error).toBe("Email already in use");

     

       521
        
       		});

     
···

       596
        
       			);

     

       597
        
       

     

       598
        
       			expect(response.status).toBe(200);

     

       0
        
       
     

       0
        
       
     

       599
        
       

     

       600
        
       			// Verify name updated

     

       601
        
       			const meResponse = await authRequest(

     
···

       658
        
       

     

       659
        
       describe("API Endpoints - Health", () => {

     

       660
        
       	describe("GET /api/health", () => {

     

       661
       +
       		test("should return service health status with details", async () => {

     

       662
       +
       			const response = await fetch(`${BASE_URL}/api/health`);

     

       0
        
       
     

       0
        
       
     

       663
        
       

     

       664
       +
       			expect(response.status).toBe(200);

     

       665
       +
       			const data = await response.json();

     

       666
       +
       			expect(data).toHaveProperty("status");

     

       667
       +
       			expect(data).toHaveProperty("timestamp");

     

       668
       +
       			expect(data).toHaveProperty("services");

     

       669
       +
       			expect(data.services).toHaveProperty("database");

     

       670
       +
       			expect(data.services).toHaveProperty("whisper");

     

       671
       +
       			expect(data.services).toHaveProperty("storage");

     

       672
       +
       		});

     

       0
        
       
     

       673
        
       	});

     

       674
        
       });

     

       675
        
       

     
···

       678
        
       		test("should return user transcriptions", async () => {

     

       679
        
       			// Register and login

     

       680
        
       			const sessionCookie = await registerAndLogin(TEST_USER);

     

       681
       +
       

     

       682
        
       			// Add subscription

     

       683
        
       			addSubscription(TEST_USER.email);

     

       684
        
       

     
···

       705
        
       		test("should upload audio file and start transcription", async () => {

     

       706
        
       			// Register and login

     

       707
        
       			const sessionCookie = await registerAndLogin(TEST_USER);

     

       708
       +
       

     

       709
        
       			// Add subscription

     

       710
        
       			addSubscription(TEST_USER.email);

     

       711
        
       

     
···

       725
        
       				},

     

       726
        
       			);

     

       727
        
       

     

       728
       +
       			expect(response.status).toBe(201);

     

       729
        
       			const data = await response.json();

     

       730
        
       			expect(data.id).toBeDefined();

     

       731
        
       			expect(data.message).toContain("Upload successful");

     
···

       734
        
       		test("should reject non-audio files", async () => {

     

       735
        
       			// Register and login

     

       736
        
       			const sessionCookie = await registerAndLogin(TEST_USER);

     

       737
       +
       

     

       738
        
       			// Add subscription

     

       739
        
       			addSubscription(TEST_USER.email);

     

       740
        
       

     
···

       758
        
       		test("should reject files exceeding size limit", async () => {

     

       759
        
       			// Register and login

     

       760
        
       			const sessionCookie = await registerAndLogin(TEST_USER);

     

       761
       +
       

     

       762
        
       			// Add subscription

     

       763
        
       			addSubscription(TEST_USER.email);

     

       764
        
       

     
···

       806
        
       	beforeEach(async () => {

     

       807
        
       		// Create admin user

     

       808
        
       		adminCookie = await registerAndLogin(TEST_ADMIN);

     

       809
       +
       

     

       810
        
       		// Manually set admin role in database

     

       811
        
       		const db = require("bun:sqlite").Database.open(TEST_DB_PATH);

     

       812
        
       		db.run("UPDATE users SET role = 'admin' WHERE email = ?", [

     
···

       821
        
       			.query<{ id: number }, [string]>("SELECT id FROM users WHERE email = ?")

     

       822
        
       			.get(TEST_USER.email);

     

       823
        
       		userId = userIdResult?.id;

     

       824
       +
       

     

       825
        
       		db.close();

     

       826
        
       	});

     

       827
        
       

     
···

       886
        
       				},

     

       887
        
       			);

     

       888
        
       

     

       889
       +
       			expect(response.status).toBe(204);

     

       0
        
       
     

       0
        
       
     

       890
        
       

     

       891
        
       			// Verify user is deleted

     

       892
        
       			const verifyResponse = await authRequest(

     
···

       922
        
       			);

     

       923
        
       

     

       924
        
       			expect(response.status).toBe(200);

     

       0
        
       
     

       0
        
       
     

       925
        
       

     

       926
        
       			// Verify role updated

     

       927
        
       			const meResponse = await authRequest(

     
···

       1034
        
       				},

     

       1035
        
       			);

     

       1036
        
       

     

       1037
       +
       			expect(response.status).toBe(409);

     

       1038
        
       			const data = await response.json();

     

       1039
        
       			expect(data.error).toBe("Email already in use");

     

       1040
        
       		});

     
···

       1063
        
       				},

     

       1064
        
       			);

     

       1065
        
       

     

       1066
       +
       			expect(response.status).toBe(204);

     

       0
        
       
     

       0
        
       
     

       1067
        
       

     

       1068
        
       			// Verify sessions are deleted

     

       1069
        
       			const verifyResponse = await authRequest(

     
···

       1104
        
       	});

     

       1105
        
       

     

       1106
        
       	describe("POST /api/passkeys/register/options", () => {

     

       1107
       +
       		test("should return registration options for authenticated user", async () => {

     

       1108
       +
       			const response = await authRequest(

     

       1109
       +
       				`${BASE_URL}/api/passkeys/register/options`,

     

       1110
       +
       				sessionCookie,

     

       1111
       +
       				{

     

       1112
       +
       					method: "POST",

     

       1113
       +
       				},

     

       1114
       +
       			);

     

       0
        
       
     

       0
        
       
     

       1115
        
       

     

       1116
       +
       			expect(response.status).toBe(200);

     

       1117
       +
       			const data = await response.json();

     

       1118
       +
       			expect(data).toHaveProperty("challenge");

     

       1119
       +
       			expect(data).toHaveProperty("rp");

     

       1120
       +
       			expect(data).toHaveProperty("user");

     

       1121
       +
       		});

     

       0
        
       
     

       1122
        
       

     

       1123
        
       		test("should require authentication", async () => {

     

       1124
        
       			const response = await fetch(

+518 -75

src/index.ts

···

       48
        
       	getClassById,

     

       49
        
       	getClassesForUser,

     

       50
        
       	getClassMembers,

     

       0
        
       
     

       51
        
       	getMeetingById,

     

       52
        
       	getMeetingTimesForClass,

     

       53
        
       	getTranscriptionsForClass,

     

       0
        
       
     

       54
        
       	isUserEnrolledInClass,

     

       55
        
       	joinClass,

     

       56
        
       	removeUserFromClass,

     

       57
        
       	searchClassesByCourseCode,

     

       58
        
       	toggleClassArchive,

     

       59
        
       	updateMeetingTime,

     

       0
        
       
     

       60
        
       } from "./lib/classes";

     

       61
        
       import { sendEmail } from "./lib/email";

     

       62
        
       import {

     
···

       88
        
       	type TranscriptionUpdate,

     

       89
        
       	WhisperServiceManager,

     

       90
        
       } from "./lib/transcription";

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       91
        
       import {

     

       92
        
       	validateClassId,

     

       93
        
       	validateCourseCode,

     
···

       175
        
       	email: string,

     

       176
        
       ): Promise<void> {

     

       177
        
       	// Skip Polar sync in test mode

     

       178
       -
       	if (process.env.NODE_ENV === "test" || process.env.SKIP_POLAR_SYNC === "true") {

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       179
        
       		return;

     

       180
        
       	}

     

       181
        
       

     
···

       305
        
       );

     

       306
        
       

     

       307
        
       const server = Bun.serve({

     

       308
       -
       	port: process.env.NODE_ENV === "test" 

     

       309
       -
       		? 3001 

     

       310
       -
       		: (process.env.PORT ? Number.parseInt(process.env.PORT, 10) : 3000),

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       311
        
       	idleTimeout: 120, // 120 seconds for SSE connections

     

       312
        
       	routes: {

     

       313
        
       		"/": indexHTML,

     
···

       400
        
       							email_verification_required: true,

     

       401
        
       							verification_code_sent_at: sentAt,

     

       402
        
       						},

     

       403
       -
       						{ status: 200 },

     

       404
        
       					);

     

       405
        
       				} catch (err: unknown) {

     

       406
        
       					const error = err as { message?: string };

     

       407
        
       					if (error.message?.includes("UNIQUE constraint failed")) {

     

       408
        
       						return Response.json(

     

       409
        
       							{ error: "Email already registered" },

     

       410
       -
       							{ status: 400 },

     

       411
        
       						);

     

       412
        
       					}

     

       413
        
       					console.error("[Auth] Registration error:", err);

     
···

       895
        
       						role: user.role,

     

       896
        
       						has_subscription: !!subscription,

     

       897
        
       						email_verified: isEmailVerified(user.id),

     

       898
       -
       						email_notifications_enabled: prefs?.email_notifications_enabled === 1,

     

       0
        
       
     

       899
        
       					});

     

       900
        
       				} catch (err) {

     

       901
        
       					return handleError(err);

     
···

       1065
        
       					}

     

       1066
        
       

     

       1067
        
       					updatePasskeyName(passkeyId, user.id, name);

     

       1068
       -
       					return Response.json({ success: true });

     

       1069
        
       				} catch (err) {

     

       1070
        
       					return handleError(err);

     

       1071
        
       				}

     
···

       1081
        
       

     

       1082
        
       					const passkeyId = req.params.id;

     

       1083
        
       					deletePasskey(passkeyId, user.id);

     

       1084
       -
       					return Response.json({ success: true });

     

       1085
        
       				} catch (err) {

     

       1086
        
       					return handleError(err);

     

       1087
        
       				}

     
···

       1092
        
       				try {

     

       1093
        
       					const sessionId = getSessionFromRequest(req);

     

       1094
        
       					if (!sessionId) {

     

       1095
       -
       						return Response.json({ error: "Not authenticated" }, { status: 401 });

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       1096
        
       					}

     

       1097
        
       					const user = getUserBySession(sessionId);

     

       1098
        
       					if (!user) {

     
···

       1117
        
       				try {

     

       1118
        
       					const currentSessionId = getSessionFromRequest(req);

     

       1119
        
       					if (!currentSessionId) {

     

       1120
       -
       						return Response.json({ error: "Not authenticated" }, { status: 401 });

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       1121
        
       					}

     

       1122
        
       					const user = getUserBySession(currentSessionId);

     

       1123
        
       					if (!user) {

     
···

       1147
        
       					// Verify the session belongs to the user

     

       1148
        
       					const targetSession = getSession(targetSessionId);

     

       1149
        
       					if (!targetSession || targetSession.user_id !== user.id) {

     

       1150
       -
       						return Response.json({ error: "Session not found" }, { status: 404 });

     

       1151
        
       					}

     

       1152
        
       					deleteSession(targetSessionId);

     

       1153
       -
       					return Response.json({ success: true });

     

       1154
        
       				} catch (err) {

     

       1155
        
       					return handleError(err);

     

       1156
        
       				}

     
···

       1168
        
       					if (rateLimitError) return rateLimitError;

     

       1169
        
       

     

       1170
        
       					await deleteUser(user.id);

     

       1171
       -
       					return Response.json(

     

       1172
       -
       						{ success: true },

     

       1173
       -
       						{

     

       1174
       -
       							headers: {

     

       1175
       -
       								"Set-Cookie":

     

       1176
       -
       									"session=; HttpOnly; Secure; Path=/; Max-Age=0; SameSite=Lax",

     

       1177
       -
       							},

     

       1178
        
       						},

     

       1179
       -
       					);

     

       1180
        
       				} catch (err) {

     

       1181
        
       					return handleError(err);

     

       1182
        
       				}

     
···

       1204
        
       					if (existingUser) {

     

       1205
        
       						return Response.json(

     

       1206
        
       							{ error: "Email already in use" },

     

       1207
       -
       							{ status: 400 },

     

       1208
        
       						);

     

       1209
        
       					}

     

       1210
        
       

     
···

       1303
        
       					const body = await req.json();

     

       1304
        
       					const { password } = body;

     

       1305
        
       					if (!password) {

     

       1306
       -
       						return Response.json({ error: "Password required" }, { status: 400 });

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       1307
        
       					}

     

       1308
        
       					// Validate password format (client-side hashed PBKDF2)

     

       1309
        
       					const passwordValidation = validatePasswordHash(password);

     
···

       1648
        
       

     

       1649
        
       					// Allow access if: owner, admin, or enrolled in the class

     

       1650
        
       					if (!isOwner && !isAdmin && !isClassMember) {

     

       1651
       -
       						return Response.json(

     

       1652
       -
       							{ error: "Transcription not found" },

     

       1653
       -
       							{ status: 404 },

     

       1654
       -
       						);

     

       1655
        
       					}

     

       1656
        
       

     

       1657
        
       					// Require subscription only if accessing own transcription (not class)

     
···

       1891
        
       

     

       1892
        
       					// Allow access if: owner, admin, or enrolled in the class

     

       1893
        
       					if (!isOwner && !isAdmin && !isClassMember) {

     

       1894
       -
       						return Response.json(

     

       1895
       -
       							{ error: "Transcription not found" },

     

       1896
       -
       							{ status: 404 },

     

       1897
       -
       						);

     

       1898
        
       					}

     

       1899
        
       

     

       1900
        
       					// Require subscription only if accessing own transcription (not class)

     
···

       1910
        
       					if (transcription.status !== "completed") {

     

       1911
        
       						return Response.json(

     

       1912
        
       							{ error: "Transcription not completed yet" },

     

       1913
       -
       							{ status: 400 },

     

       1914
        
       						);

     

       1915
        
       					}

     

       1916
        
       

     
···

       1999
        
       

     

       2000
        
       					// Allow access if: owner, admin, or enrolled in the class

     

       2001
        
       					if (!isOwner && !isAdmin && !isClassMember) {

     

       2002
       -
       						return Response.json(

     

       2003
       -
       							{ error: "Transcription not found" },

     

       2004
       -
       							{ status: 404 },

     

       2005
       -
       						);

     

       2006
        
       					}

     

       2007
        
       

     

       2008
        
       					// Require subscription only if accessing own transcription (not class)

     
···

       2074
        
       				}

     

       2075
        
       			},

     

       2076
        
       		},

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       2077
        
       		"/api/transcriptions": {

     

       2078
        
       			GET: async (req) => {

     

       2079
        
       				try {

     
···

       2216
        
       					const formData = await req.formData();

     

       2217
        
       					const file = formData.get("audio") as File;

     

       2218
        
       					const classId = formData.get("class_id") as string | null;

     

       2219
       -
       					const meetingTimeId = formData.get("meeting_time_id") as

     

       0
        
       
     

       2220
        
       						| string

     

       2221
        
       						| null;

     

       2222
        
       

     
···

       2285
        
       					const uploadDir = "./uploads";

     

       2286
        
       					await Bun.write(`${uploadDir}/${filename}`, file);

     

       2287
        
       

     

       2288
       -
       					// Create database record

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       2289
        
       					db.run(

     

       2290
       -
       						"INSERT INTO transcriptions (id, user_id, class_id, meeting_time_id, filename, original_filename, status) VALUES (?, ?, ?, ?, ?, ?, ?)",

     

       2291
        
       						[

     

       2292
        
       							transcriptionId,

     

       2293
        
       							user.id,

     

       2294
        
       							classId,

     

       2295
       -
       							meetingTimeId,

     

       0
        
       
     

       2296
        
       							filename,

     

       2297
        
       							file.name,

     

       2298
        
       							"pending",

     

       0
        
       
     

       2299
        
       						],

     

       2300
        
       					);

     

       2301
        
       

     

       2302
        
       					// Don't auto-start transcription - admin will select recordings

     

       2303
        
       					// whisperService.startTranscription(transcriptionId, filename);

     

       2304
        
       

     

       2305
       -
       					return Response.json({

     

       2306
       -
       						id: transcriptionId,

     

       2307
       -
       						message: "Upload successful",

     

       2308
       -
       					});

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       2309
        
       				} catch (error) {

     

       2310
        
       					return handleError(error);

     

       2311
        
       				}

     
···

       2377
        
       					requireAdmin(req);

     

       2378
        
       					const id = req.params.id;

     

       2379
        
       					deleteWaitlistEntry(id);

     

       2380
       -
       					return Response.json({ success: true });

     

       2381
        
       				} catch (error) {

     

       2382
        
       					return handleError(error);

     

       2383
        
       				}

     
···

       2389
        
       					requireAdmin(req);

     

       2390
        
       					const transcriptionId = req.params.id;

     

       2391
        
       					deleteTranscription(transcriptionId);

     

       2392
       -
       					return Response.json({ success: true });

     

       2393
        
       				} catch (error) {

     

       2394
        
       					return handleError(error);

     

       2395
        
       				}

     
···

       2404
        
       						return Response.json({ error: "Invalid user ID" }, { status: 400 });

     

       2405
        
       					}

     

       2406
        
       					await deleteUser(userId);

     

       2407
       -
       					return Response.json({ success: true });

     

       2408
        
       				} catch (error) {

     

       2409
        
       					return handleError(error);

     

       2410
        
       				}

     
···

       2654
        
       

     

       2655
        
       					const { passkeyId } = req.params;

     

       2656
        
       					deletePasskey(passkeyId, userId);

     

       2657
       -
       					return Response.json({ success: true });

     

       2658
        
       				} catch (error) {

     

       2659
        
       					return handleError(error);

     

       2660
        
       				}

     
···

       2720
        
       					if (existing) {

     

       2721
        
       						return Response.json(

     

       2722
        
       							{ error: "Email already in use" },

     

       2723
       -
       							{ status: 400 },

     

       2724
        
       						);

     

       2725
        
       					}

     

       2726
        
       

     
···

       2805
        
       					}

     

       2806
        
       

     

       2807
        
       					deleteAllUserSessions(userId);

     

       2808
       -
       					return Response.json({ success: true });

     

       2809
        
       				} catch (error) {

     

       2810
        
       					return handleError(error);

     

       2811
        
       				}

     
···

       2830
        
       						);

     

       2831
        
       					}

     

       2832
        
       

     

       2833
       -
       					return Response.json({ success: true });

     

       2834
        
       				} catch (error) {

     

       2835
        
       					return handleError(error);

     

       2836
        
       				}

     
···

       2907
        
       						cursor,

     

       2908
        
       					);

     

       2909
        
       

     

       2910
       -
       					// For admin, return flat array. For users, group by semester/year

     

       2911
       -
       					if (user.role === "admin") {

     

       2912
       -
       						return Response.json(result.data);

     

       2913
       -
       					}

     

       2914
       -
       

     

       2915
       -
       					// Group by semester/year for regular users

     

       2916
        
       					const grouped: Record<

     

       2917
        
       						string,

     

       2918
        
       						Array<{

     
···

       3011
        
       						semester,

     

       3012
        
       						year,

     

       3013
        
       						meeting_times,

     

       0
        
       
     

       3014
        
       					});

     

       3015
        
       

     

       3016
       -
       					return Response.json(newClass);

     

       3017
        
       				} catch (error) {

     

       3018
        
       					return handleError(error);

     

       3019
        
       				}

     
···

       3040
        
       						.all(user.id)

     

       3041
        
       						.map((row) => row.class_id);

     

       3042
        
       

     

       3043
       -
       					// Add is_enrolled flag to each class

     

       3044
        
       					const classesWithEnrollment = classes.map((cls) => ({

     

       3045
        
       						...cls,

     

       3046
        
       						is_enrolled: enrolledClassIds.includes(cls.id),

     

       0
        
       
     

       3047
        
       					}));

     

       3048
        
       

     

       3049
        
       					return Response.json({ classes: classesWithEnrollment });

     
···

       3058
        
       					const user = requireAuth(req);

     

       3059
        
       					const body = await req.json();

     

       3060
        
       					const classId = body.class_id;

     

       0
        
       
     

       3061
        
       

     

       3062
        
       					const classIdValidation = validateClassId(classId);

     

       3063
        
       					if (!classIdValidation.valid) {

     
···

       3067
        
       						);

     

       3068
        
       					}

     

       3069
        
       

     

       3070
       -
       					const result = joinClass(classId, user.id);

     

       3071
        
       

     

       3072
        
       					if (!result.success) {

     

       3073
        
       						return Response.json({ error: result.error }, { status: 400 });

     

       3074
        
       					}

     

       3075
        
       

     

       3076
       -
       					return Response.json({ success: true });

     

       3077
        
       				} catch (error) {

     

       3078
        
       					return handleError(error);

     

       3079
        
       				}

     
···

       3149
        
       						meetingTimes || null,

     

       3150
        
       					);

     

       3151
        
       

     

       3152
       -
       					return Response.json({ success: true, id });

     

       3153
        
       				} catch (error) {

     

       3154
        
       					return handleError(error);

     

       3155
        
       				}

     
···

       3176
        
       					}

     

       3177
        
       

     

       3178
        
       					const meetingTimes = getMeetingTimesForClass(classId);

     

       0
        
       
     

       3179
        
       					const transcriptions = getTranscriptionsForClass(classId);

     

       0
        
       
     

       3180
        
       

     

       3181
        
       					return Response.json({

     

       3182
        
       						class: classInfo,

     

       3183
        
       						meetingTimes,

     

       0
        
       
     

       0
        
       
     

       3184
        
       						transcriptions,

     

       3185
        
       					});

     

       3186
        
       				} catch (error) {

     
···

       3199
        
       					}

     

       3200
        
       

     

       3201
        
       					deleteClass(classId);

     

       3202
       -
       					return Response.json({ success: true });

     

       3203
        
       				} catch (error) {

     

       3204
        
       					return handleError(error);

     

       3205
        
       				}

     
···

       3227
        
       					}

     

       3228
        
       

     

       3229
        
       					toggleClassArchive(classId, archived);

     

       3230
       -
       					return Response.json({ success: true });

     

       3231
        
       				} catch (error) {

     

       3232
        
       					return handleError(error);

     

       3233
        
       				}

     
···

       3268
        
       					}

     

       3269
        
       

     

       3270
        
       					enrollUserInClass(user.id, classId);

     

       3271
       -
       					return Response.json({ success: true });

     

       3272
        
       				} catch (error) {

     

       3273
        
       					return handleError(error);

     

       3274
        
       				}

     
···

       3292
        
       					}

     

       3293
        
       

     

       3294
        
       					removeUserFromClass(userId, classId);

     

       3295
       -
       					return Response.json({ success: true });

     

       3296
        
       				} catch (error) {

     

       3297
        
       					return handleError(error);

     

       3298
        
       				}

     
···

       3337
        
       					}

     

       3338
        
       

     

       3339
        
       					const meetingTime = createMeetingTime(classId, label);

     

       3340
       -
       					return Response.json(meetingTime);

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       3341
        
       				} catch (error) {

     

       3342
        
       					return handleError(error);

     

       3343
        
       				}

     
···

       3358
        
       					// Verify meeting exists

     

       3359
        
       					const existingMeeting = getMeetingById(meetingId);

     

       3360
        
       					if (!existingMeeting) {

     

       3361
       -
       						return Response.json({ error: "Meeting not found" }, { status: 404 });

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       3362
        
       					}

     

       3363
        
       

     

       3364
        
       					updateMeetingTime(meetingId, label);

     

       3365
       -
       					return Response.json({ success: true });

     

       3366
        
       				} catch (error) {

     

       3367
        
       					return handleError(error);

     

       3368
        
       				}

     
···

       3375
        
       					// Verify meeting exists

     

       3376
        
       					const existingMeeting = getMeetingById(meetingId);

     

       3377
        
       					if (!existingMeeting) {

     

       3378
       -
       						return Response.json({ error: "Meeting not found" }, { status: 404 });

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       3379
        
       					}

     

       3380
        
       

     

       3381
        
       					deleteMeetingTime(meetingId);

     

       3382
       -
       					return Response.json({ success: true });

     

       3383
        
       				} catch (error) {

     

       3384
        
       					return handleError(error);

     

       3385
        
       				}

     
···

       3427
        
       						transcription.filename,

     

       3428
        
       					);

     

       3429
        
       

     

       3430
       -
       					return Response.json({ success: true });

     

       3431
        
       				} catch (error) {

     

       3432
        
       					return handleError(error);

     

       3433
        
       				}

     

       3434
        
       			},

     

       3435
        
       		},

     

       3436
        
       	},

     

       3437
       -
       	development: {

     

       3438
       -
       		hmr: true,

     

       3439
       -
       		console: true,

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       3440
        
       	},

     

       3441
        
       });

     

       3442
        
       console.log(`🪻 Thistle running at http://localhost:${server.port}`);

···

       48
        
       	getClassById,

     

       49
        
       	getClassesForUser,

     

       50
        
       	getClassMembers,

     

       51
       +
       	getClassSections,

     

       52
        
       	getMeetingById,

     

       53
        
       	getMeetingTimesForClass,

     

       54
        
       	getTranscriptionsForClass,

     

       55
       +
       	getUserSection,

     

       56
        
       	isUserEnrolledInClass,

     

       57
        
       	joinClass,

     

       58
        
       	removeUserFromClass,

     

       59
        
       	searchClassesByCourseCode,

     

       60
        
       	toggleClassArchive,

     

       61
        
       	updateMeetingTime,

     

       62
       +
       	createClassSection,

     

       63
        
       } from "./lib/classes";

     

       64
        
       import { sendEmail } from "./lib/email";

     

       65
        
       import {

     
···

       91
        
       	type TranscriptionUpdate,

     

       92
        
       	WhisperServiceManager,

     

       93
        
       } from "./lib/transcription";

     

       94
       +
       import {

     

       95
       +
       	findMatchingMeetingTime,

     

       96
       +
       	getDayName,

     

       97
       +
       } from "./lib/audio-metadata";

     

       98
       +
       import {

     

       99
       +
       	checkAutoSubmit,

     

       100
       +
       	deletePendingRecording,

     

       101
       +
       	getEnrolledUserCount,

     

       102
       +
       	getPendingRecordings,

     

       103
       +
       	getUserVoteForMeeting,

     

       104
       +
       	markAsAutoSubmitted,

     

       105
       +
       	removeVote,

     

       106
       +
       	voteForRecording,

     

       107
       +
       } from "./lib/voting";

     

       108
        
       import {

     

       109
        
       	validateClassId,

     

       110
        
       	validateCourseCode,

     
···

       192
        
       	email: string,

     

       193
        
       ): Promise<void> {

     

       194
        
       	// Skip Polar sync in test mode

     

       195
       +
       	if (

     

       196
       +
       		process.env.NODE_ENV === "test" ||

     

       197
       +
       		process.env.SKIP_POLAR_SYNC === "true"

     

       198
       +
       	) {

     

       199
        
       		return;

     

       200
        
       	}

     

       201
        
       

     
···

       325
        
       );

     

       326
        
       

     

       327
        
       const server = Bun.serve({

     

       328
       +
       	port:

     

       329
       +
       		process.env.NODE_ENV === "test"

     

       330
       +
       			? 3001

     

       331
       +
       			: process.env.PORT

     

       332
       +
       				? Number.parseInt(process.env.PORT, 10)

     

       333
       +
       				: 3000,

     

       334
        
       	idleTimeout: 120, // 120 seconds for SSE connections

     

       335
        
       	routes: {

     

       336
        
       		"/": indexHTML,

     
···

       423
        
       							email_verification_required: true,

     

       424
        
       							verification_code_sent_at: sentAt,

     

       425
        
       						},

     

       426
       +
       						{ status: 201 },

     

       427
        
       					);

     

       428
        
       				} catch (err: unknown) {

     

       429
        
       					const error = err as { message?: string };

     

       430
        
       					if (error.message?.includes("UNIQUE constraint failed")) {

     

       431
        
       						return Response.json(

     

       432
        
       							{ error: "Email already registered" },

     

       433
       +
       							{ status: 409 },

     

       434
        
       						);

     

       435
        
       					}

     

       436
        
       					console.error("[Auth] Registration error:", err);

     
···

       918
        
       						role: user.role,

     

       919
        
       						has_subscription: !!subscription,

     

       920
        
       						email_verified: isEmailVerified(user.id),

     

       921
       +
       						email_notifications_enabled:

     

       922
       +
       							prefs?.email_notifications_enabled === 1,

     

       923
        
       					});

     

       924
        
       				} catch (err) {

     

       925
        
       					return handleError(err);

     
···

       1089
        
       					}

     

       1090
        
       

     

       1091
        
       					updatePasskeyName(passkeyId, user.id, name);

     

       1092
       +
       					return new Response(null, { status: 204 });

     

       1093
        
       				} catch (err) {

     

       1094
        
       					return handleError(err);

     

       1095
        
       				}

     
···

       1105
        
       

     

       1106
        
       					const passkeyId = req.params.id;

     

       1107
        
       					deletePasskey(passkeyId, user.id);

     

       1108
       +
       					return new Response(null, { status: 204 });

     

       1109
        
       				} catch (err) {

     

       1110
        
       					return handleError(err);

     

       1111
        
       				}

     
···

       1116
        
       				try {

     

       1117
        
       					const sessionId = getSessionFromRequest(req);

     

       1118
        
       					if (!sessionId) {

     

       1119
       +
       						return Response.json(

     

       1120
       +
       							{ error: "Not authenticated" },

     

       1121
       +
       							{ status: 401 },

     

       1122
       +
       						);

     

       1123
        
       					}

     

       1124
        
       					const user = getUserBySession(sessionId);

     

       1125
        
       					if (!user) {

     
···

       1144
        
       				try {

     

       1145
        
       					const currentSessionId = getSessionFromRequest(req);

     

       1146
        
       					if (!currentSessionId) {

     

       1147
       +
       						return Response.json(

     

       1148
       +
       							{ error: "Not authenticated" },

     

       1149
       +
       							{ status: 401 },

     

       1150
       +
       						);

     

       1151
        
       					}

     

       1152
        
       					const user = getUserBySession(currentSessionId);

     

       1153
        
       					if (!user) {

     
···

       1177
        
       					// Verify the session belongs to the user

     

       1178
        
       					const targetSession = getSession(targetSessionId);

     

       1179
        
       					if (!targetSession || targetSession.user_id !== user.id) {

     

       1180
       +
       						return Response.json({ error: "Forbidden" }, { status: 403 });

     

       1181
        
       					}

     

       1182
        
       					deleteSession(targetSessionId);

     

       1183
       +
       					return new Response(null, { status: 204 });

     

       1184
        
       				} catch (err) {

     

       1185
        
       					return handleError(err);

     

       1186
        
       				}

     
···

       1198
        
       					if (rateLimitError) return rateLimitError;

     

       1199
        
       

     

       1200
        
       					await deleteUser(user.id);

     

       1201
       +
       					return new Response(null, {

     

       1202
       +
       						status: 204,

     

       1203
       +
       						headers: {

     

       1204
       +
       							"Set-Cookie":

     

       1205
       +
       								"session=; HttpOnly; Secure; Path=/; Max-Age=0; SameSite=Lax",

     

       0
        
       
     

       0
        
       
     

       1206
        
       						},

     

       1207
       +
       					});

     

       1208
        
       				} catch (err) {

     

       1209
        
       					return handleError(err);

     

       1210
        
       				}

     
···

       1232
        
       					if (existingUser) {

     

       1233
        
       						return Response.json(

     

       1234
        
       							{ error: "Email already in use" },

     

       1235
       +
       							{ status: 409 },

     

       1236
        
       						);

     

       1237
        
       					}

     

       1238
        
       

     
···

       1331
        
       					const body = await req.json();

     

       1332
        
       					const { password } = body;

     

       1333
        
       					if (!password) {

     

       1334
       +
       						return Response.json(

     

       1335
       +
       							{ error: "Password required" },

     

       1336
       +
       							{ status: 400 },

     

       1337
       +
       						);

     

       1338
        
       					}

     

       1339
        
       					// Validate password format (client-side hashed PBKDF2)

     

       1340
        
       					const passwordValidation = validatePasswordHash(password);

     
···

       1679
        
       

     

       1680
        
       					// Allow access if: owner, admin, or enrolled in the class

     

       1681
        
       					if (!isOwner && !isAdmin && !isClassMember) {

     

       1682
       +
       						return Response.json({ error: "Forbidden" }, { status: 403 });

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       1683
        
       					}

     

       1684
        
       

     

       1685
        
       					// Require subscription only if accessing own transcription (not class)

     
···

       1919
        
       

     

       1920
        
       					// Allow access if: owner, admin, or enrolled in the class

     

       1921
        
       					if (!isOwner && !isAdmin && !isClassMember) {

     

       1922
       +
       						return Response.json({ error: "Forbidden" }, { status: 403 });

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       1923
        
       					}

     

       1924
        
       

     

       1925
        
       					// Require subscription only if accessing own transcription (not class)

     
···

       1935
        
       					if (transcription.status !== "completed") {

     

       1936
        
       						return Response.json(

     

       1937
        
       							{ error: "Transcription not completed yet" },

     

       1938
       +
       							{ status: 409 },

     

       1939
        
       						);

     

       1940
        
       					}

     

       1941
        
       

     
···

       2024
        
       

     

       2025
        
       					// Allow access if: owner, admin, or enrolled in the class

     

       2026
        
       					if (!isOwner && !isAdmin && !isClassMember) {

     

       2027
       +
       						return Response.json({ error: "Forbidden" }, { status: 403 });

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       2028
        
       					}

     

       2029
        
       

     

       2030
        
       					// Require subscription only if accessing own transcription (not class)

     
···

       2096
        
       				}

     

       2097
        
       			},

     

       2098
        
       		},

     

       2099
       +
       		"/api/transcriptions/detect-meeting-time": {

     

       2100
       +
       			POST: async (req) => {

     

       2101
       +
       				try {

     

       2102
       +
       					const user = requireAuth(req);

     

       2103
       +
       

     

       2104
       +
       					const formData = await req.formData();

     

       2105
       +
       					const file = formData.get("audio") as File;

     

       2106
       +
       					const classId = formData.get("class_id") as string | null;

     

       2107
       +
       					const fileTimestampStr = formData.get("file_timestamp") as

     

       2108
       +
       						| string

     

       2109
       +
       						| null;

     

       2110
       +
       

     

       2111
       +
       					if (!file) throw ValidationErrors.missingField("audio");

     

       2112
       +
       					if (!classId) throw ValidationErrors.missingField("class_id");

     

       2113
       +
       

     

       2114
       +
       					// Verify user is enrolled in the class

     

       2115
       +
       					const enrolled = isUserEnrolledInClass(user.id, classId);

     

       2116
       +
       					if (!enrolled && user.role !== "admin") {

     

       2117
       +
       						return Response.json(

     

       2118
       +
       							{ error: "Not enrolled in this class" },

     

       2119
       +
       							{ status: 403 },

     

       2120
       +
       						);

     

       2121
       +
       					}

     

       2122
       +
       

     

       2123
       +
       					let creationDate: Date | null = null;

     

       2124
       +
       

     

       2125
       +
       					// Use client-provided timestamp (from File.lastModified)

     

       2126
       +
       					if (fileTimestampStr) {

     

       2127
       +
       						const timestamp = Number.parseInt(fileTimestampStr, 10);

     

       2128
       +
       						if (!Number.isNaN(timestamp)) {

     

       2129
       +
       							creationDate = new Date(timestamp);

     

       2130
       +
       							console.log(

     

       2131
       +
       								`[Upload] Using file timestamp: ${creationDate.toISOString()}`,

     

       2132
       +
       							);

     

       2133
       +
       						}

     

       2134
       +
       					}

     

       2135
       +
       

     

       2136
       +
       					if (!creationDate) {

     

       2137
       +
       						return Response.json({

     

       2138
       +
       							detected: false,

     

       2139
       +
       							meeting_time_id: null,

     

       2140
       +
       							message: "Could not extract creation date from file",

     

       2141
       +
       						});

     

       2142
       +
       					}

     

       2143
       +
       

     

       2144
       +
       					// Get meeting times for this class

     

       2145
       +
       					const meetingTimes = getMeetingTimesForClass(classId);

     

       2146
       +
       

     

       2147
       +
       					if (meetingTimes.length === 0) {

     

       2148
       +
       						return Response.json({

     

       2149
       +
       							detected: false,

     

       2150
       +
       							meeting_time_id: null,

     

       2151
       +
       							message: "No meeting times configured for this class",

     

       2152
       +
       						});

     

       2153
       +
       					}

     

       2154
       +
       

     

       2155
       +
       					// Find matching meeting time based on day of week

     

       2156
       +
       					const matchedId = findMatchingMeetingTime(

     

       2157
       +
       						creationDate,

     

       2158
       +
       						meetingTimes,

     

       2159
       +
       					);

     

       2160
       +
       

     

       2161
       +
       					if (matchedId) {

     

       2162
       +
       						const dayName = getDayName(creationDate);

     

       2163
       +
       						return Response.json({

     

       2164
       +
       							detected: true,

     

       2165
       +
       							meeting_time_id: matchedId,

     

       2166
       +
       							day: dayName,

     

       2167
       +
       							date: creationDate.toISOString(),

     

       2168
       +
       						});

     

       2169
       +
       					}

     

       2170
       +
       

     

       2171
       +
       					const dayName = getDayName(creationDate);

     

       2172
       +
       					return Response.json({

     

       2173
       +
       						detected: false,

     

       2174
       +
       						meeting_time_id: null,

     

       2175
       +
       						day: dayName,

     

       2176
       +
       						date: creationDate.toISOString(),

     

       2177
       +
       						message: `No meeting time matches ${dayName}`,

     

       2178
       +
       					});

     

       2179
       +
       				} catch (error) {

     

       2180
       +
       					return handleError(error);

     

       2181
       +
       				}

     

       2182
       +
       			},

     

       2183
       +
       		},

     

       2184
       +
       		"/api/transcriptions/:id/meeting-time": {

     

       2185
       +
       			PATCH: async (req) => {

     

       2186
       +
       				try {

     

       2187
       +
       					const user = requireAuth(req);

     

       2188
       +
       					const transcriptionId = req.params.id;

     

       2189
       +
       

     

       2190
       +
       					const body = await req.json();

     

       2191
       +
       					const meetingTimeId = body.meeting_time_id;

     

       2192
       +
       					const sectionId = body.section_id;

     

       2193
       +
       

     

       2194
       +
       					if (!meetingTimeId) {

     

       2195
       +
       						return Response.json(

     

       2196
       +
       							{ error: "meeting_time_id required" },

     

       2197
       +
       							{ status: 400 },

     

       2198
       +
       						);

     

       2199
       +
       					}

     

       2200
       +
       

     

       2201
       +
       					// Verify transcription ownership

     

       2202
       +
       					const transcription = db

     

       2203
       +
       						.query<

     

       2204
       +
       							{ id: string; user_id: number; class_id: string | null },

     

       2205
       +
       							[string]

     

       2206
       +
       						>("SELECT id, user_id, class_id FROM transcriptions WHERE id = ?")

     

       2207
       +
       						.get(transcriptionId);

     

       2208
       +
       

     

       2209
       +
       					if (!transcription) {

     

       2210
       +
       						return Response.json(

     

       2211
       +
       							{ error: "Transcription not found" },

     

       2212
       +
       							{ status: 404 },

     

       2213
       +
       						);

     

       2214
       +
       					}

     

       2215
       +
       

     

       2216
       +
       					if (transcription.user_id !== user.id && user.role !== "admin") {

     

       2217
       +
       						return Response.json({ error: "Forbidden" }, { status: 403 });

     

       2218
       +
       					}

     

       2219
       +
       

     

       2220
       +
       					// Verify meeting time belongs to the class

     

       2221
       +
       					if (transcription.class_id) {

     

       2222
       +
       						const meetingTime = db

     

       2223
       +
       							.query<{ id: string }, [string, string]>(

     

       2224
       +
       								"SELECT id FROM meeting_times WHERE id = ? AND class_id = ?",

     

       2225
       +
       							)

     

       2226
       +
       							.get(meetingTimeId, transcription.class_id);

     

       2227
       +
       

     

       2228
       +
       						if (!meetingTime) {

     

       2229
       +
       							return Response.json(

     

       2230
       +
       								{

     

       2231
       +
       									error:

     

       2232
       +
       										"Meeting time does not belong to the class for this transcription",

     

       2233
       +
       								},

     

       2234
       +
       								{ status: 400 },

     

       2235
       +
       							);

     

       2236
       +
       						}

     

       2237
       +
       					}

     

       2238
       +
       

     

       2239
       +
       					// Update meeting time and optionally section_id

     

       2240
       +
       					if (sectionId !== undefined) {

     

       2241
       +
       						db.run(

     

       2242
       +
       							"UPDATE transcriptions SET meeting_time_id = ?, section_id = ? WHERE id = ?",

     

       2243
       +
       							[meetingTimeId, sectionId, transcriptionId],

     

       2244
       +
       						);

     

       2245
       +
       					} else {

     

       2246
       +
       						db.run(

     

       2247
       +
       							"UPDATE transcriptions SET meeting_time_id = ? WHERE id = ?",

     

       2248
       +
       							[meetingTimeId, transcriptionId],

     

       2249
       +
       						);

     

       2250
       +
       					}

     

       2251
       +
       

     

       2252
       +
       					return Response.json({

     

       2253
       +
       						success: true,

     

       2254
       +
       						message: "Meeting time updated successfully",

     

       2255
       +
       					});

     

       2256
       +
       				} catch (error) {

     

       2257
       +
       					return handleError(error);

     

       2258
       +
       				}

     

       2259
       +
       			},

     

       2260
       +
       		},

     

       2261
       +
       		"/api/classes/:classId/meetings/:meetingTimeId/recordings": {

     

       2262
       +
       			GET: async (req) => {

     

       2263
       +
       				try {

     

       2264
       +
       					const user = requireAuth(req);

     

       2265
       +
       					const classId = req.params.classId;

     

       2266
       +
       					const meetingTimeId = req.params.meetingTimeId;

     

       2267
       +
       

     

       2268
       +
       					// Verify user is enrolled in the class

     

       2269
       +
       					const enrolled = isUserEnrolledInClass(user.id, classId);

     

       2270
       +
       					if (!enrolled && user.role !== "admin") {

     

       2271
       +
       						return Response.json(

     

       2272
       +
       							{ error: "Not enrolled in this class" },

     

       2273
       +
       							{ status: 403 },

     

       2274
       +
       						);

     

       2275
       +
       					}

     

       2276
       +
       

     

       2277
       +
       					// Get section filter from query params or use user's section

     

       2278
       +
       					const url = new URL(req.url);

     

       2279
       +
       					const sectionParam = url.searchParams.get("section_id");

     

       2280
       +
       					const sectionFilter =

     

       2281
       +
       						sectionParam !== null

     

       2282
       +
       							? sectionParam || null // empty string becomes null

     

       2283
       +
       							: user.role === "admin"

     

       2284
       +
       								? null

     

       2285
       +
       								: getUserSection(user.id, classId);

     

       2286
       +
       

     

       2287
       +
       					const recordings = getPendingRecordings(

     

       2288
       +
       						classId,

     

       2289
       +
       						meetingTimeId,

     

       2290
       +
       						sectionFilter,

     

       2291
       +
       					);

     

       2292
       +
       					const totalUsers = getEnrolledUserCount(classId);

     

       2293
       +
       					const userVote = getUserVoteForMeeting(

     

       2294
       +
       						user.id,

     

       2295
       +
       						classId,

     

       2296
       +
       						meetingTimeId,

     

       2297
       +
       					);

     

       2298
       +
       

     

       2299
       +
       					// Check if any recording should be auto-submitted

     

       2300
       +
       					const winningId = checkAutoSubmit(

     

       2301
       +
       						classId,

     

       2302
       +
       						meetingTimeId,

     

       2303
       +
       						sectionFilter,

     

       2304
       +
       					);

     

       2305
       +
       

     

       2306
       +
       					return Response.json({

     

       2307
       +
       						recordings,

     

       2308
       +
       						total_users: totalUsers,

     

       2309
       +
       						user_vote: userVote,

     

       2310
       +
       						vote_threshold: Math.ceil(totalUsers * 0.4),

     

       2311
       +
       						winning_recording_id: winningId,

     

       2312
       +
       					});

     

       2313
       +
       				} catch (error) {

     

       2314
       +
       					return handleError(error);

     

       2315
       +
       				}

     

       2316
       +
       			},

     

       2317
       +
       		},

     

       2318
       +
       		"/api/recordings/:id/vote": {

     

       2319
       +
       			POST: async (req) => {

     

       2320
       +
       				try {

     

       2321
       +
       					const user = requireAuth(req);

     

       2322
       +
       					const recordingId = req.params.id;

     

       2323
       +
       

     

       2324
       +
       					// Verify user is enrolled in the recording's class

     

       2325
       +
       					const recording = db

     

       2326
       +
       						.query<

     

       2327
       +
       							{ class_id: string; meeting_time_id: string; status: string },

     

       2328
       +
       							[string]

     

       2329
       +
       						>(

     

       2330
       +
       							"SELECT class_id, meeting_time_id, status FROM transcriptions WHERE id = ?",

     

       2331
       +
       						)

     

       2332
       +
       						.get(recordingId);

     

       2333
       +
       

     

       2334
       +
       					if (!recording) {

     

       2335
       +
       						return Response.json(

     

       2336
       +
       							{ error: "Recording not found" },

     

       2337
       +
       							{ status: 404 },

     

       2338
       +
       						);

     

       2339
       +
       					}

     

       2340
       +
       

     

       2341
       +
       					if (recording.status !== "pending") {

     

       2342
       +
       						return Response.json(

     

       2343
       +
       							{ error: "Can only vote on pending recordings" },

     

       2344
       +
       							{ status: 400 },

     

       2345
       +
       						);

     

       2346
       +
       					}

     

       2347
       +
       

     

       2348
       +
       					const enrolled = isUserEnrolledInClass(user.id, recording.class_id);

     

       2349
       +
       					if (!enrolled && user.role !== "admin") {

     

       2350
       +
       						return Response.json(

     

       2351
       +
       							{ error: "Not enrolled in this class" },

     

       2352
       +
       							{ status: 403 },

     

       2353
       +
       						);

     

       2354
       +
       					}

     

       2355
       +
       

     

       2356
       +
       					// Remove existing vote for this meeting time

     

       2357
       +
       					const existingVote = getUserVoteForMeeting(

     

       2358
       +
       						user.id,

     

       2359
       +
       						recording.class_id,

     

       2360
       +
       						recording.meeting_time_id,

     

       2361
       +
       					);

     

       2362
       +
       					if (existingVote) {

     

       2363
       +
       						removeVote(existingVote, user.id);

     

       2364
       +
       					}

     

       2365
       +
       

     

       2366
       +
       					// Add new vote

     

       2367
       +
       					const success = voteForRecording(recordingId, user.id);

     

       2368
       +
       

     

       2369
       +
       					// Get user's section for auto-submit check

     

       2370
       +
       					const userSection =

     

       2371
       +
       						user.role === "admin"

     

       2372
       +
       							? null

     

       2373
       +
       							: getUserSection(user.id, recording.class_id);

     

       2374
       +
       

     

       2375
       +
       					// Check if auto-submit threshold reached

     

       2376
       +
       					const winningId = checkAutoSubmit(

     

       2377
       +
       						recording.class_id,

     

       2378
       +
       						recording.meeting_time_id,

     

       2379
       +
       						userSection,

     

       2380
       +
       					);

     

       2381
       +
       					if (winningId) {

     

       2382
       +
       						markAsAutoSubmitted(winningId);

     

       2383
       +
       						// Start transcription

     

       2384
       +
       						const winningRecording = db

     

       2385
       +
       							.query<{ filename: string }, [string]>(

     

       2386
       +
       								"SELECT filename FROM transcriptions WHERE id = ?",

     

       2387
       +
       							)

     

       2388
       +
       							.get(winningId);

     

       2389
       +
       						if (winningRecording) {

     

       2390
       +
       							whisperService.startTranscription(

     

       2391
       +
       								winningId,

     

       2392
       +
       								winningRecording.filename,

     

       2393
       +
       							);

     

       2394
       +
       						}

     

       2395
       +
       					}

     

       2396
       +
       

     

       2397
       +
       					return Response.json({

     

       2398
       +
       						success,

     

       2399
       +
       						winning_recording_id: winningId,

     

       2400
       +
       					});

     

       2401
       +
       				} catch (error) {

     

       2402
       +
       					return handleError(error);

     

       2403
       +
       				}

     

       2404
       +
       			},

     

       2405
       +
       		},

     

       2406
       +
       		"/api/recordings/:id": {

     

       2407
       +
       			DELETE: async (req) => {

     

       2408
       +
       				try {

     

       2409
       +
       					const user = requireAuth(req);

     

       2410
       +
       					const recordingId = req.params.id;

     

       2411
       +
       

     

       2412
       +
       					const success = deletePendingRecording(

     

       2413
       +
       						recordingId,

     

       2414
       +
       						user.id,

     

       2415
       +
       						user.role === "admin",

     

       2416
       +
       					);

     

       2417
       +
       

     

       2418
       +
       					if (!success) {

     

       2419
       +
       						return Response.json(

     

       2420
       +
       							{ error: "Cannot delete this recording" },

     

       2421
       +
       							{ status: 403 },

     

       2422
       +
       						);

     

       2423
       +
       					}

     

       2424
       +
       

     

       2425
       +
       					return new Response(null, { status: 204 });

     

       2426
       +
       				} catch (error) {

     

       2427
       +
       					return handleError(error);

     

       2428
       +
       				}

     

       2429
       +
       			},

     

       2430
       +
       		},

     

       2431
        
       		"/api/transcriptions": {

     

       2432
        
       			GET: async (req) => {

     

       2433
        
       				try {

     
···

       2570
        
       					const formData = await req.formData();

     

       2571
        
       					const file = formData.get("audio") as File;

     

       2572
        
       					const classId = formData.get("class_id") as string | null;

     

       2573
       +
       					const sectionId = formData.get("section_id") as string | null;

     

       2574
       +
       					const recordingDateStr = formData.get("recording_date") as

     

       2575
        
       						| string

     

       2576
        
       						| null;

     

       2577
        
       

     
···

       2640
        
       					const uploadDir = "./uploads";

     

       2641
        
       					await Bun.write(`${uploadDir}/${filename}`, file);

     

       2642
        
       

     

       2643
       +
       					// Parse recording date (default to current time if not provided)

     

       2644
       +
       					const recordingDate = recordingDateStr

     

       2645
       +
       						? Number.parseInt(recordingDateStr, 10)

     

       2646
       +
       						: Math.floor(Date.now() / 1000);

     

       2647
       +
       

     

       2648
       +
       					// Create database record (without meeting_time_id - will be set later via PATCH)

     

       2649
        
       					db.run(

     

       2650
       +
       						"INSERT INTO transcriptions (id, user_id, class_id, meeting_time_id, section_id, filename, original_filename, status, recording_date) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?)",

     

       2651
        
       						[

     

       2652
        
       							transcriptionId,

     

       2653
        
       							user.id,

     

       2654
        
       							classId,

     

       2655
       +
       							null, // meeting_time_id will be set via PATCH endpoint

     

       2656
       +
       							sectionId,

     

       2657
        
       							filename,

     

       2658
        
       							file.name,

     

       2659
        
       							"pending",

     

       2660
       +
       							recordingDate,

     

       2661
        
       						],

     

       2662
        
       					);

     

       2663
        
       

     

       2664
        
       					// Don't auto-start transcription - admin will select recordings

     

       2665
        
       					// whisperService.startTranscription(transcriptionId, filename);

     

       2666
        
       

     

       2667
       +
       					return Response.json(

     

       2668
       +
       						{

     

       2669
       +
       							id: transcriptionId,

     

       2670
       +
       							message: "Upload successful",

     

       2671
       +
       						},

     

       2672
       +
       						{ status: 201 },

     

       2673
       +
       					);

     

       2674
        
       				} catch (error) {

     

       2675
        
       					return handleError(error);

     

       2676
        
       				}

     
···

       2742
        
       					requireAdmin(req);

     

       2743
        
       					const id = req.params.id;

     

       2744
        
       					deleteWaitlistEntry(id);

     

       2745
       +
       					return new Response(null, { status: 204 });

     

       2746
        
       				} catch (error) {

     

       2747
        
       					return handleError(error);

     

       2748
        
       				}

     
···

       2754
        
       					requireAdmin(req);

     

       2755
        
       					const transcriptionId = req.params.id;

     

       2756
        
       					deleteTranscription(transcriptionId);

     

       2757
       +
       					return new Response(null, { status: 204 });

     

       2758
        
       				} catch (error) {

     

       2759
        
       					return handleError(error);

     

       2760
        
       				}

     
···

       2769
        
       						return Response.json({ error: "Invalid user ID" }, { status: 400 });

     

       2770
        
       					}

     

       2771
        
       					await deleteUser(userId);

     

       2772
       +
       					return new Response(null, { status: 204 });

     

       2773
        
       				} catch (error) {

     

       2774
        
       					return handleError(error);

     

       2775
        
       				}

     
···

       3019
        
       

     

       3020
        
       					const { passkeyId } = req.params;

     

       3021
        
       					deletePasskey(passkeyId, userId);

     

       3022
       +
       					return new Response(null, { status: 204 });

     

       3023
        
       				} catch (error) {

     

       3024
        
       					return handleError(error);

     

       3025
        
       				}

     
···

       3085
        
       					if (existing) {

     

       3086
        
       						return Response.json(

     

       3087
        
       							{ error: "Email already in use" },

     

       3088
       +
       							{ status: 409 },

     

       3089
        
       						);

     

       3090
        
       					}

     

       3091
        
       

     
···

       3170
        
       					}

     

       3171
        
       

     

       3172
        
       					deleteAllUserSessions(userId);

     

       3173
       +
       					return new Response(null, { status: 204 });

     

       3174
        
       				} catch (error) {

     

       3175
        
       					return handleError(error);

     

       3176
        
       				}

     
···

       3195
        
       						);

     

       3196
        
       					}

     

       3197
        
       

     

       3198
       +
       					return new Response(null, { status: 204 });

     

       3199
        
       				} catch (error) {

     

       3200
        
       					return handleError(error);

     

       3201
        
       				}

     
···

       3272
        
       						cursor,

     

       3273
        
       					);

     

       3274
        
       

     

       3275
       +
       					// Group by semester/year for all users

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       3276
        
       					const grouped: Record<

     

       3277
        
       						string,

     

       3278
        
       						Array<{

     
···

       3371
        
       						semester,

     

       3372
        
       						year,

     

       3373
        
       						meeting_times,

     

       3374
       +
       						sections: body.sections,

     

       3375
        
       					});

     

       3376
        
       

     

       3377
       +
       					return Response.json(newClass, { status: 201 });

     

       3378
        
       				} catch (error) {

     

       3379
        
       					return handleError(error);

     

       3380
        
       				}

     
···

       3401
        
       						.all(user.id)

     

       3402
        
       						.map((row) => row.class_id);

     

       3403
        
       

     

       3404
       +
       					// Add is_enrolled flag and sections to each class

     

       3405
        
       					const classesWithEnrollment = classes.map((cls) => ({

     

       3406
        
       						...cls,

     

       3407
        
       						is_enrolled: enrolledClassIds.includes(cls.id),

     

       3408
       +
       						sections: getClassSections(cls.id),

     

       3409
        
       					}));

     

       3410
        
       

     

       3411
        
       					return Response.json({ classes: classesWithEnrollment });

     
···

       3420
        
       					const user = requireAuth(req);

     

       3421
        
       					const body = await req.json();

     

       3422
        
       					const classId = body.class_id;

     

       3423
       +
       					const sectionId = body.section_id || null;

     

       3424
        
       

     

       3425
        
       					const classIdValidation = validateClassId(classId);

     

       3426
        
       					if (!classIdValidation.valid) {

     
···

       3430
        
       						);

     

       3431
        
       					}

     

       3432
        
       

     

       3433
       +
       					const result = joinClass(classId, user.id, sectionId);

     

       3434
        
       

     

       3435
        
       					if (!result.success) {

     

       3436
        
       						return Response.json({ error: result.error }, { status: 400 });

     

       3437
        
       					}

     

       3438
        
       

     

       3439
       +
       					return new Response(null, { status: 204 });

     

       3440
        
       				} catch (error) {

     

       3441
        
       					return handleError(error);

     

       3442
        
       				}

     
···

       3512
        
       						meetingTimes || null,

     

       3513
        
       					);

     

       3514
        
       

     

       3515
       +
       					return Response.json({ success: true, id }, { status: 201 });

     

       3516
        
       				} catch (error) {

     

       3517
        
       					return handleError(error);

     

       3518
        
       				}

     
···

       3539
        
       					}

     

       3540
        
       

     

       3541
        
       					const meetingTimes = getMeetingTimesForClass(classId);

     

       3542
       +
       					const sections = getClassSections(classId);

     

       3543
        
       					const transcriptions = getTranscriptionsForClass(classId);

     

       3544
       +
       					const userSection = getUserSection(user.id, classId);

     

       3545
        
       

     

       3546
        
       					return Response.json({

     

       3547
        
       						class: classInfo,

     

       3548
        
       						meetingTimes,

     

       3549
       +
       						sections,

     

       3550
       +
       						userSection,

     

       3551
        
       						transcriptions,

     

       3552
        
       					});

     

       3553
        
       				} catch (error) {

     
···

       3566
        
       					}

     

       3567
        
       

     

       3568
        
       					deleteClass(classId);

     

       3569
       +
       					return new Response(null, { status: 204 });

     

       3570
        
       				} catch (error) {

     

       3571
        
       					return handleError(error);

     

       3572
        
       				}

     
···

       3594
        
       					}

     

       3595
        
       

     

       3596
        
       					toggleClassArchive(classId, archived);

     

       3597
       +
       					return new Response(null, { status: 204 });

     

       3598
        
       				} catch (error) {

     

       3599
        
       					return handleError(error);

     

       3600
        
       				}

     
···

       3635
        
       					}

     

       3636
        
       

     

       3637
        
       					enrollUserInClass(user.id, classId);

     

       3638
       +
       					return new Response(null, { status: 201 });

     

       3639
        
       				} catch (error) {

     

       3640
        
       					return handleError(error);

     

       3641
        
       				}

     
···

       3659
        
       					}

     

       3660
        
       

     

       3661
        
       					removeUserFromClass(userId, classId);

     

       3662
       +
       					return new Response(null, { status: 204 });

     

       3663
        
       				} catch (error) {

     

       3664
        
       					return handleError(error);

     

       3665
        
       				}

     
···

       3704
        
       					}

     

       3705
        
       

     

       3706
        
       					const meetingTime = createMeetingTime(classId, label);

     

       3707
       +
       					return Response.json(meetingTime, { status: 201 });

     

       3708
       +
       				} catch (error) {

     

       3709
       +
       					return handleError(error);

     

       3710
       +
       				}

     

       3711
       +
       			},

     

       3712
       +
       		},

     

       3713
       +
       		"/api/classes/:id/sections": {

     

       3714
       +
       			POST: async (req) => {

     

       3715
       +
       				try {

     

       3716
       +
       					requireAdmin(req);

     

       3717
       +
       					const classId = req.params.id;

     

       3718
       +
       					const body = await req.json();

     

       3719
       +
       					const { section_number } = body;

     

       3720
       +
       

     

       3721
       +
       					if (!section_number) {

     

       3722
       +
       						return Response.json({ error: "Section number required" }, { status: 400 });

     

       3723
       +
       					}

     

       3724
       +
       

     

       3725
       +
       					const section = createClassSection(classId, section_number);

     

       3726
       +
       					return Response.json(section);

     

       3727
       +
       				} catch (error) {

     

       3728
       +
       					return handleError(error);

     

       3729
       +
       				}

     

       3730
       +
       			},

     

       3731
       +
       		},

     

       3732
       +
       		"/api/classes/:classId/sections/:sectionId": {

     

       3733
       +
       			DELETE: async (req) => {

     

       3734
       +
       				try {

     

       3735
       +
       					requireAdmin(req);

     

       3736
       +
       					const sectionId = req.params.sectionId;

     

       3737
       +
       

     

       3738
       +
       					// Check if any students are in this section

     

       3739
       +
       					const studentsInSection = db

     

       3740
       +
       						.query<{ count: number }, [string]>(

     

       3741
       +
       							"SELECT COUNT(*) as count FROM class_members WHERE section_id = ?",

     

       3742
       +
       						)

     

       3743
       +
       						.get(sectionId);

     

       3744
       +
       

     

       3745
       +
       					if (studentsInSection && studentsInSection.count > 0) {

     

       3746
       +
       						return Response.json(

     

       3747
       +
       							{ error: "Cannot delete section with enrolled students" },

     

       3748
       +
       							{ status: 400 },

     

       3749
       +
       						);

     

       3750
       +
       					}

     

       3751
       +
       

     

       3752
       +
       					db.run("DELETE FROM class_sections WHERE id = ?", [sectionId]);

     

       3753
       +
       					return new Response(null, { status: 204 });

     

       3754
        
       				} catch (error) {

     

       3755
        
       					return handleError(error);

     

       3756
        
       				}

     
···

       3771
        
       					// Verify meeting exists

     

       3772
        
       					const existingMeeting = getMeetingById(meetingId);

     

       3773
        
       					if (!existingMeeting) {

     

       3774
       +
       						return Response.json(

     

       3775
       +
       							{ error: "Meeting not found" },

     

       3776
       +
       							{ status: 404 },

     

       3777
       +
       						);

     

       3778
        
       					}

     

       3779
        
       

     

       3780
        
       					updateMeetingTime(meetingId, label);

     

       3781
       +
       					return new Response(null, { status: 204 });

     

       3782
        
       				} catch (error) {

     

       3783
        
       					return handleError(error);

     

       3784
        
       				}

     
···

       3791
        
       					// Verify meeting exists

     

       3792
        
       					const existingMeeting = getMeetingById(meetingId);

     

       3793
        
       					if (!existingMeeting) {

     

       3794
       +
       						return Response.json(

     

       3795
       +
       							{ error: "Meeting not found" },

     

       3796
       +
       							{ status: 404 },

     

       3797
       +
       						);

     

       3798
        
       					}

     

       3799
        
       

     

       3800
        
       					deleteMeetingTime(meetingId);

     

       3801
       +
       					return new Response(null, { status: 204 });

     

       3802
        
       				} catch (error) {

     

       3803
        
       					return handleError(error);

     

       3804
        
       				}

     
···

       3846
        
       						transcription.filename,

     

       3847
        
       					);

     

       3848
        
       

     

       3849
       +
       					return new Response(null, { status: 204 });

     

       3850
        
       				} catch (error) {

     

       3851
        
       					return handleError(error);

     

       3852
        
       				}

     

       3853
        
       			},

     

       3854
        
       		},

     

       3855
        
       	},

     

       3856
       +
       	development: process.env.NODE_ENV === "dev",

     

       3857
       +
       	fetch(req, server) {

     

       3858
       +
       		const response = server.fetch(req);

     

       3859
       +
       

     

       3860
       +
       		// Add security headers to all responses

     

       3861
       +
       		if (response instanceof Response) {

     

       3862
       +
       			const headers = new Headers(response.headers);

     

       3863
       +
       			headers.set("Permissions-Policy", "interest-cohort=()");

     

       3864
       +
       			headers.set("X-Content-Type-Options", "nosniff");

     

       3865
       +
       			headers.set("X-Frame-Options", "DENY");

     

       3866
       +
       			headers.set("Referrer-Policy", "strict-origin-when-cross-origin");

     

       3867
       +
       

     

       3868
       +
       			// Set CSP that allows inline styles with unsafe-inline (needed for Lit components)

     

       3869
       +
       			// and script-src 'self' for bundled scripts

     

       3870
       +
       			headers.set(

     

       3871
       +
       				"Content-Security-Policy",

     

       3872
       +
       				"default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https://hostedboringavatars.vercel.app; font-src 'self'; connect-src 'self'; form-action 'self'; base-uri 'self'; frame-ancestors 'none'; object-src 'none';",

     

       3873
       +
       			);

     

       3874
       +
       

     

       3875
       +
       			return new Response(response.body, {

     

       3876
       +
       				status: response.status,

     

       3877
       +
       				statusText: response.statusText,

     

       3878
       +
       				headers,

     

       3879
       +
       			});

     

       3880
       +
       		}

     

       3881
       +
       

     

       3882
       +
       		return response;

     

       3883
        
       	},

     

       3884
        
       });

     

       3885
        
       console.log(`🪻 Thistle running at http://localhost:${server.port}`);

+55

src/lib/audio-metadata.integration.test.ts

···

       1
       +
       import { afterAll, describe, expect, test } from "bun:test";

     

       2
       +
       import { extractAudioCreationDate } from "./audio-metadata";

     

       3
       +
       

     

       4
       +
       describe("extractAudioCreationDate (integration)", () => {

     

       5
       +
       	const testAudioPath = "./test-audio-sample.m4a";

     

       6
       +
       

     

       7
       +
       	// Clean up test file after tests

     

       8
       +
       	afterAll(async () => {

     

       9
       +
       		try {

     

       10
       +
       			await Bun.file(testAudioPath).exists().then(async (exists) => {

     

       11
       +
       				if (exists) {

     

       12
       +
       					await Bun.$`rm ${testAudioPath}`;

     

       13
       +
       				}

     

       14
       +
       			});

     

       15
       +
       		} catch {

     

       16
       +
       			// Ignore cleanup errors

     

       17
       +
       		}

     

       18
       +
       	});

     

       19
       +
       

     

       20
       +
       	test("extracts creation date from audio file with metadata", async () => {

     

       21
       +
       		// Create a test audio file with metadata using ffmpeg

     

       22
       +
       		// 1 second silent audio with creation_time metadata

     

       23
       +
       		const creationTime = "2024-01-15T14:30:00.000000Z";

     

       24
       +
       

     

       25
       +
       		// Create the file with metadata

     

       26
       +
       		await Bun.$`ffmpeg -f lavfi -i anullsrc=r=44100:cl=mono -t 1 -metadata creation_time=${creationTime} -y ${testAudioPath}`.quiet();

     

       27
       +
       

     

       28
       +
       		const date = await extractAudioCreationDate(testAudioPath);

     

       29
       +
       

     

       30
       +
       		expect(date).not.toBeNull();

     

       31
       +
       		expect(date).toBeInstanceOf(Date);

     

       32
       +
       		// JavaScript Date.toISOString() uses 3 decimal places, not 6 like the input

     

       33
       +
       		expect(date?.toISOString()).toBe("2024-01-15T14:30:00.000Z");

     

       34
       +
       	});

     

       35
       +
       

     

       36
       +
       	test("returns null for audio file without creation_time metadata", async () => {

     

       37
       +
       		// Create audio file without metadata

     

       38
       +
       		await Bun.$`ffmpeg -f lavfi -i anullsrc=r=44100:cl=mono -t 1 -y ${testAudioPath}`.quiet();

     

       39
       +
       

     

       40
       +
       		const date = await extractAudioCreationDate(testAudioPath);

     

       41
       +
       

     

       42
       +
       		// Should use file modification time as fallback

     

       43
       +
       		expect(date).not.toBeNull();

     

       44
       +
       		expect(date).toBeInstanceOf(Date);

     

       45
       +
       		// Should be very recent (within last minute)

     

       46
       +
       		const now = new Date();

     

       47
       +
       		const diff = now.getTime() - (date?.getTime() ?? 0);

     

       48
       +
       		expect(diff).toBeLessThan(60000); // Less than 1 minute

     

       49
       +
       	});

     

       50
       +
       

     

       51
       +
       	test("returns null for non-existent file", async () => {

     

       52
       +
       		const date = await extractAudioCreationDate("./non-existent-file.m4a");

     

       53
       +
       		expect(date).toBeNull();

     

       54
       +
       	});

     

       55
       +
       });

+128

src/lib/audio-metadata.test.ts

···

       1
       +
       import { describe, expect, test } from "bun:test";

     

       2
       +
       import {

     

       3
       +
       	findMatchingMeetingTime,

     

       4
       +
       	getDayName,

     

       5
       +
       	getDayOfWeek,

     

       6
       +
       	meetingTimeLabelMatchesDay,

     

       7
       +
       } from "./audio-metadata";

     

       8
       +
       

     

       9
       +
       describe("getDayOfWeek", () => {

     

       10
       +
       	test("returns correct day number", () => {

     

       11
       +
       		// January 1, 2024 is a Monday (day 1)

     

       12
       +
       		const monday = new Date("2024-01-01T12:00:00Z");

     

       13
       +
       		expect(getDayOfWeek(monday)).toBe(1);

     

       14
       +
       

     

       15
       +
       		// January 7, 2024 is a Sunday (day 0)

     

       16
       +
       		const sunday = new Date("2024-01-07T12:00:00Z");

     

       17
       +
       		expect(getDayOfWeek(sunday)).toBe(0);

     

       18
       +
       

     

       19
       +
       		// January 6, 2024 is a Saturday (day 6)

     

       20
       +
       		const saturday = new Date("2024-01-06T12:00:00Z");

     

       21
       +
       		expect(getDayOfWeek(saturday)).toBe(6);

     

       22
       +
       	});

     

       23
       +
       });

     

       24
       +
       

     

       25
       +
       describe("getDayName", () => {

     

       26
       +
       	test("returns correct day name", () => {

     

       27
       +
       		expect(getDayName(new Date("2024-01-01T12:00:00Z"))).toBe("Monday");

     

       28
       +
       		expect(getDayName(new Date("2024-01-02T12:00:00Z"))).toBe("Tuesday");

     

       29
       +
       		expect(getDayName(new Date("2024-01-03T12:00:00Z"))).toBe("Wednesday");

     

       30
       +
       		expect(getDayName(new Date("2024-01-04T12:00:00Z"))).toBe("Thursday");

     

       31
       +
       		expect(getDayName(new Date("2024-01-05T12:00:00Z"))).toBe("Friday");

     

       32
       +
       		expect(getDayName(new Date("2024-01-06T12:00:00Z"))).toBe("Saturday");

     

       33
       +
       		expect(getDayName(new Date("2024-01-07T12:00:00Z"))).toBe("Sunday");

     

       34
       +
       	});

     

       35
       +
       });

     

       36
       +
       

     

       37
       +
       describe("meetingTimeLabelMatchesDay", () => {

     

       38
       +
       	test("matches full day names", () => {

     

       39
       +
       		expect(meetingTimeLabelMatchesDay("Monday Lecture", "Monday")).toBe(true);

     

       40
       +
       		expect(meetingTimeLabelMatchesDay("Tuesday Lab", "Tuesday")).toBe(true);

     

       41
       +
       		expect(meetingTimeLabelMatchesDay("Wednesday Discussion", "Wednesday")).toBe(

     

       42
       +
       			true,

     

       43
       +
       		);

     

       44
       +
       	});

     

       45
       +
       

     

       46
       +
       	test("matches 3-letter abbreviations", () => {

     

       47
       +
       		expect(meetingTimeLabelMatchesDay("Mon Lecture", "Monday")).toBe(true);

     

       48
       +
       		expect(meetingTimeLabelMatchesDay("Tue Lab", "Tuesday")).toBe(true);

     

       49
       +
       		expect(meetingTimeLabelMatchesDay("Wed Discussion", "Wednesday")).toBe(

     

       50
       +
       			true,

     

       51
       +
       		);

     

       52
       +
       		expect(meetingTimeLabelMatchesDay("Thu Seminar", "Thursday")).toBe(true);

     

       53
       +
       		expect(meetingTimeLabelMatchesDay("Fri Workshop", "Friday")).toBe(true);

     

       54
       +
       		expect(meetingTimeLabelMatchesDay("Sat Review", "Saturday")).toBe(true);

     

       55
       +
       		expect(meetingTimeLabelMatchesDay("Sun Study", "Sunday")).toBe(true);

     

       56
       +
       	});

     

       57
       +
       

     

       58
       +
       	test("is case insensitive", () => {

     

       59
       +
       		expect(meetingTimeLabelMatchesDay("MONDAY LECTURE", "Monday")).toBe(true);

     

       60
       +
       		expect(meetingTimeLabelMatchesDay("monday lecture", "Monday")).toBe(true);

     

       61
       +
       		expect(meetingTimeLabelMatchesDay("MoNdAy LeCTuRe", "Monday")).toBe(true);

     

       62
       +
       	});

     

       63
       +
       

     

       64
       +
       	test("does not match wrong days", () => {

     

       65
       +
       		expect(meetingTimeLabelMatchesDay("Monday Lecture", "Tuesday")).toBe(false);

     

       66
       +
       		expect(meetingTimeLabelMatchesDay("Wednesday Lab", "Thursday")).toBe(false);

     

       67
       +
       		expect(meetingTimeLabelMatchesDay("Lecture Hall A", "Monday")).toBe(false);

     

       68
       +
       	});

     

       69
       +
       

     

       70
       +
       	test("handles labels without day names", () => {

     

       71
       +
       		expect(meetingTimeLabelMatchesDay("Lecture", "Monday")).toBe(false);

     

       72
       +
       		expect(meetingTimeLabelMatchesDay("Lab Session", "Tuesday")).toBe(false);

     

       73
       +
       		expect(meetingTimeLabelMatchesDay("Section A", "Wednesday")).toBe(false);

     

       74
       +
       	});

     

       75
       +
       });

     

       76
       +
       

     

       77
       +
       describe("findMatchingMeetingTime", () => {

     

       78
       +
       	const meetingTimes = [

     

       79
       +
       		{ id: "mt1", label: "Monday Lecture" },

     

       80
       +
       		{ id: "mt2", label: "Wednesday Discussion" },

     

       81
       +
       		{ id: "mt3", label: "Friday Lab" },

     

       82
       +
       	];

     

       83
       +
       

     

       84
       +
       	test("finds correct meeting time for full day name", () => {

     

       85
       +
       		const monday = new Date("2024-01-01T12:00:00Z"); // Monday

     

       86
       +
       		expect(findMatchingMeetingTime(monday, meetingTimes)).toBe("mt1");

     

       87
       +
       

     

       88
       +
       		const wednesday = new Date("2024-01-03T12:00:00Z"); // Wednesday

     

       89
       +
       		expect(findMatchingMeetingTime(wednesday, meetingTimes)).toBe("mt2");

     

       90
       +
       

     

       91
       +
       		const friday = new Date("2024-01-05T12:00:00Z"); // Friday

     

       92
       +
       		expect(findMatchingMeetingTime(friday, meetingTimes)).toBe("mt3");

     

       93
       +
       	});

     

       94
       +
       

     

       95
       +
       	test("finds correct meeting time for abbreviated day name", () => {

     

       96
       +
       		const abbrevMeetingTimes = [

     

       97
       +
       			{ id: "mt1", label: "Mon Lecture" },

     

       98
       +
       			{ id: "mt2", label: "Wed Discussion" },

     

       99
       +
       			{ id: "mt3", label: "Fri Lab" },

     

       100
       +
       		];

     

       101
       +
       

     

       102
       +
       		const monday = new Date("2024-01-01T12:00:00Z");

     

       103
       +
       		expect(findMatchingMeetingTime(monday, abbrevMeetingTimes)).toBe("mt1");

     

       104
       +
       	});

     

       105
       +
       

     

       106
       +
       	test("returns null when no match found", () => {

     

       107
       +
       		const tuesday = new Date("2024-01-02T12:00:00Z"); // Tuesday

     

       108
       +
       		expect(findMatchingMeetingTime(tuesday, meetingTimes)).toBe(null);

     

       109
       +
       

     

       110
       +
       		const saturday = new Date("2024-01-06T12:00:00Z"); // Saturday

     

       111
       +
       		expect(findMatchingMeetingTime(saturday, meetingTimes)).toBe(null);

     

       112
       +
       	});

     

       113
       +
       

     

       114
       +
       	test("returns null for empty meeting times", () => {

     

       115
       +
       		const monday = new Date("2024-01-01T12:00:00Z");

     

       116
       +
       		expect(findMatchingMeetingTime(monday, [])).toBe(null);

     

       117
       +
       	});

     

       118
       +
       

     

       119
       +
       	test("returns first match when multiple matches exist", () => {

     

       120
       +
       		const duplicateMeetingTimes = [

     

       121
       +
       			{ id: "mt1", label: "Monday Lecture" },

     

       122
       +
       			{ id: "mt2", label: "Monday Lab" },

     

       123
       +
       		];

     

       124
       +
       

     

       125
       +
       		const monday = new Date("2024-01-01T12:00:00Z");

     

       126
       +
       		expect(findMatchingMeetingTime(monday, duplicateMeetingTimes)).toBe("mt1");

     

       127
       +
       	});

     

       128
       +
       });

+144

src/lib/audio-metadata.ts

···

       1
       +
       import { $ } from "bun";

     

       2
       +
       

     

       3
       +
       /**

     

       4
       +
        * Extracts creation date from audio file metadata using ffprobe

     

       5
       +
        * Falls back to file birth time (original creation) if no metadata found

     

       6
       +
        * @param filePath Path to audio file

     

       7
       +
        * @returns Date object or null if not found

     

       8
       +
        */

     

       9
       +
       export async function extractAudioCreationDate(

     

       10
       +
       	filePath: string,

     

       11
       +
       ): Promise<Date | null> {

     

       12
       +
       	try {

     

       13
       +
       		// Use ffprobe to extract creation_time metadata

     

       14
       +
       		// -v quiet: suppress verbose output

     

       15
       +
       		// -print_format json: output as JSON

     

       16
       +
       		// -show_entries format_tags: show all tags to search for date fields

     

       17
       +
       		const result =

     

       18
       +
       			await $`ffprobe -v quiet -print_format json -show_entries format_tags ${filePath}`.text();

     

       19
       +
       

     

       20
       +
       		const metadata = JSON.parse(result);

     

       21
       +
       		const tags = metadata?.format?.tags || {};

     

       22
       +
       

     

       23
       +
       		// Try multiple metadata fields that might contain creation date

     

       24
       +
       		const dateFields = [

     

       25
       +
       			tags.creation_time, // Standard creation_time

     

       26
       +
       			tags.date, // Common date field

     

       27
       +
       			tags.DATE, // Uppercase variant

     

       28
       +
       			tags.year, // Year field

     

       29
       +
       			tags.YEAR, // Uppercase variant

     

       30
       +
       			tags["com.apple.quicktime.creationdate"], // Apple QuickTime

     

       31
       +
       			tags.TDRC, // ID3v2 recording time

     

       32
       +
       			tags.TDRL, // ID3v2 release time

     

       33
       +
       		];

     

       34
       +
       

     

       35
       +
       		for (const dateField of dateFields) {

     

       36
       +
       			if (dateField) {

     

       37
       +
       				const date = new Date(dateField);

     

       38
       +
       				if (!Number.isNaN(date.getTime())) {

     

       39
       +
       					console.log(

     

       40
       +
       						`[AudioMetadata] Extracted creation date from metadata: ${date.toISOString()} from ${filePath}`,

     

       41
       +
       					);

     

       42
       +
       					return date;

     

       43
       +
       				}

     

       44
       +
       			}

     

       45
       +
       		}

     

       46
       +
       

     

       47
       +
       		// Fallback: use file birth time (original creation time on filesystem)

     

       48
       +
       		// This preserves the original file creation date better than mtime

     

       49
       +
       		console.log(

     

       50
       +
       			`[AudioMetadata] No creation_time metadata found, using file birth time`,

     

       51
       +
       		);

     

       52
       +
       		const file = Bun.file(filePath);

     

       53
       +
       		const stat = await file.stat();

     

       54
       +
       		const date = new Date(stat.birthtime || stat.mtime);

     

       55
       +
       		console.log(

     

       56
       +
       			`[AudioMetadata] Using file birth time: ${date.toISOString()} from ${filePath}`,

     

       57
       +
       		);

     

       58
       +
       		return date;

     

       59
       +
       	} catch (error) {

     

       60
       +
       		console.error(

     

       61
       +
       			`[AudioMetadata] Failed to extract metadata from ${filePath}:`,

     

       62
       +
       			error instanceof Error ? error.message : "Unknown error",

     

       63
       +
       		);

     

       64
       +
       		return null;

     

       65
       +
       	}

     

       66
       +
       }

     

       67
       +
       

     

       68
       +
       /**

     

       69
       +
        * Gets day of week from a date (0 = Sunday, 6 = Saturday)

     

       70
       +
        */

     

       71
       +
       export function getDayOfWeek(date: Date): number {

     

       72
       +
       	return date.getDay();

     

       73
       +
       }

     

       74
       +
       

     

       75
       +
       /**

     

       76
       +
        * Gets day name from a date

     

       77
       +
        */

     

       78
       +
       export function getDayName(date: Date): string {

     

       79
       +
       	const days = [

     

       80
       +
       		"Sunday",

     

       81
       +
       		"Monday",

     

       82
       +
       		"Tuesday",

     

       83
       +
       		"Wednesday",

     

       84
       +
       		"Thursday",

     

       85
       +
       		"Friday",

     

       86
       +
       		"Saturday",

     

       87
       +
       	];

     

       88
       +
       	return days[date.getDay()] || "Unknown";

     

       89
       +
       }

     

       90
       +
       

     

       91
       +
       /**

     

       92
       +
        * Checks if a meeting time label matches a specific day

     

       93
       +
        * Labels like "Monday Lecture", "Tuesday Lab", "Wed Discussion" should match

     

       94
       +
        */

     

       95
       +
       export function meetingTimeLabelMatchesDay(

     

       96
       +
       	label: string,

     

       97
       +
       	dayName: string,

     

       98
       +
       ): boolean {

     

       99
       +
       	const lowerLabel = label.toLowerCase();

     

       100
       +
       	const lowerDay = dayName.toLowerCase();

     

       101
       +
       

     

       102
       +
       	// Check for full day name

     

       103
       +
       	if (lowerLabel.includes(lowerDay)) {

     

       104
       +
       		return true;

     

       105
       +
       	}

     

       106
       +
       

     

       107
       +
       	// Check for 3-letter abbreviations

     

       108
       +
       	const abbrev = dayName.slice(0, 3).toLowerCase();

     

       109
       +
       	if (lowerLabel.includes(abbrev)) {

     

       110
       +
       		return true;

     

       111
       +
       	}

     

       112
       +
       

     

       113
       +
       	return false;

     

       114
       +
       }

     

       115
       +
       

     

       116
       +
       /**

     

       117
       +
        * Finds the best matching meeting time for a given date

     

       118
       +
        * @param date Date from audio metadata

     

       119
       +
        * @param meetingTimes Available meeting times for the class

     

       120
       +
        * @returns Meeting time ID or null if no match

     

       121
       +
        */

     

       122
       +
       export function findMatchingMeetingTime(

     

       123
       +
       	date: Date,

     

       124
       +
       	meetingTimes: Array<{ id: string; label: string }>,

     

       125
       +
       ): string | null {

     

       126
       +
       	const dayName = getDayName(date);

     

       127
       +
       

     

       128
       +
       	// Find meeting time that matches the day

     

       129
       +
       	const match = meetingTimes.find((mt) =>

     

       130
       +
       		meetingTimeLabelMatchesDay(mt.label, dayName),

     

       131
       +
       	);

     

       132
       +
       

     

       133
       +
       	if (match) {

     

       134
       +
       		console.log(

     

       135
       +
       			`[AudioMetadata] Matched ${dayName} to meeting time: ${match.label}`,

     

       136
       +
       		);

     

       137
       +
       		return match.id;

     

       138
       +
       	}

     

       139
       +
       

     

       140
       +
       	console.log(

     

       141
       +
       		`[AudioMetadata] No meeting time found matching ${dayName} in available options: ${meetingTimes.map((mt) => mt.label).join(", ")}`,

     

       142
       +
       	);

     

       143
       +
       	return null;

     

       144
       +
       }

+34

src/lib/auth.test.ts

···

       130
        
       	};

     

       131
        
       	expect(typeof result.count).toBe("number");

     

       132
        
       });

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0

···

       130
        
       	};

     

       131
        
       	expect(typeof result.count).toBe("number");

     

       132
        
       });

     

       133
       +
       

     

       134
       +
       test("enforces maximum session limit per user", () => {

     

       135
       +
       	const userId = 999;

     

       136
       +
       

     

       137
       +
       	// Clean up any existing sessions for this user

     

       138
       +
       	db.run("DELETE FROM sessions WHERE user_id = ?", [userId]);

     

       139
       +
       

     

       140
       +
       	// Create 11 sessions (limit is 10)

     

       141
       +
       	const sessionIds: string[] = [];

     

       142
       +
       	for (let i = 0; i < 11; i++) {

     

       143
       +
       		const sessionId = createSession(userId, `192.168.1.${i}`, `Agent ${i}`);

     

       144
       +
       		sessionIds.push(sessionId);

     

       145
       +
       	}

     

       146
       +
       

     

       147
       +
       	// Count total sessions for user

     

       148
       +
       	const sessionCount = db

     

       149
       +
       		.query<{ count: number }, [number]>(

     

       150
       +
       			"SELECT COUNT(*) as count FROM sessions WHERE user_id = ?",

     

       151
       +
       		)

     

       152
       +
       		.get(userId);

     

       153
       +
       

     

       154
       +
       	expect(sessionCount?.count).toBe(10);

     

       155
       +
       

     

       156
       +
       	// First session should be deleted (oldest)

     

       157
       +
       	const firstSession = getSession(sessionIds[0]);

     

       158
       +
       	expect(firstSession).toBeNull();

     

       159
       +
       

     

       160
       +
       	// Last session should exist (newest)

     

       161
       +
       	const lastSession = getSession(sessionIds[10]);

     

       162
       +
       	expect(lastSession).not.toBeNull();

     

       163
       +
       

     

       164
       +
       	// Cleanup

     

       165
       +
       	db.run("DELETE FROM sessions WHERE user_id = ?", [userId]);

     

       166
       +
       });

+22

src/lib/auth.ts

···

       1
        
       import db from "../db/schema";

     

       2
        
       

     

       3
        
       const SESSION_DURATION = 7 * 24 * 60 * 60; // 7 days in seconds

     

       0
        
       
     

       4
        
       

     

       5
        
       export type UserRole = "user" | "admin";

     

       6
        
       

     
···

       30
        
       ): string {

     

       31
        
       	const sessionId = crypto.randomUUID();

     

       32
        
       	const expiresAt = Math.floor(Date.now() / 1000) + SESSION_DURATION;

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       33
        
       

     

       34
        
       	db.run(

     

       35
        
       		"INSERT INTO sessions (id, user_id, ip_address, user_agent, expires_at) VALUES (?, ?, ?, ?, ?)",

···

       1
        
       import db from "../db/schema";

     

       2
        
       

     

       3
        
       const SESSION_DURATION = 7 * 24 * 60 * 60; // 7 days in seconds

     

       4
       +
       const MAX_SESSIONS_PER_USER = 10; // Maximum number of sessions per user

     

       5
        
       

     

       6
        
       export type UserRole = "user" | "admin";

     

       7
        
       

     
···

       31
        
       ): string {

     

       32
        
       	const sessionId = crypto.randomUUID();

     

       33
        
       	const expiresAt = Math.floor(Date.now() / 1000) + SESSION_DURATION;

     

       34
       +
       

     

       35
       +
       	// Check current session count for user

     

       36
       +
       	const sessionCount = db

     

       37
       +
       		.query<{ count: number }, [number]>(

     

       38
       +
       			"SELECT COUNT(*) as count FROM sessions WHERE user_id = ?",

     

       39
       +
       		)

     

       40
       +
       		.get(userId);

     

       41
       +
       

     

       42
       +
       	// If at or over limit, delete oldest session(s)

     

       43
       +
       	if (sessionCount && sessionCount.count >= MAX_SESSIONS_PER_USER) {

     

       44
       +
       		const sessionsToDelete = sessionCount.count - MAX_SESSIONS_PER_USER + 1;

     

       45
       +
       		db.run(

     

       46
       +
       			`DELETE FROM sessions WHERE id IN (

     

       47
       +
       				SELECT id FROM sessions 

     

       48
       +
       				WHERE user_id = ? 

     

       49
       +
       				ORDER BY created_at ASC 

     

       50
       +
       				LIMIT ?

     

       51
       +
       			)`,

     

       52
       +
       			[userId, sessionsToDelete],

     

       53
       +
       		);

     

       54
       +
       	}

     

       55
        
       

     

       56
        
       	db.run(

     

       57
        
       		"INSERT INTO sessions (id, user_id, ip_address, user_agent, expires_at) VALUES (?, ?, ?, ?, ?)",

+97 -7

src/lib/classes.ts

···

       9
        
       	semester: string;

     

       10
        
       	year: number;

     

       11
        
       	archived: boolean;

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       12
        
       	created_at: number;

     

       13
        
       }

     

       14
        
       

     
···

       22
        
       export interface ClassMember {

     

       23
        
       	class_id: string;

     

       24
        
       	user_id: number;

     

       0
        
       
     

       25
        
       	enrolled_at: number;

     

       26
        
       }

     

       27
        
       

     
···

       204
        
       	semester: string;

     

       205
        
       	year: number;

     

       206
        
       	meeting_times?: string[];

     

       0
        
       
     

       207
        
       }): Class {

     

       208
        
       	const id = nanoid();

     

       209
        
       	const now = Math.floor(Date.now() / 1000);

     
···

       225
        
       	if (data.meeting_times && data.meeting_times.length > 0) {

     

       226
        
       		for (const label of data.meeting_times) {

     

       227
        
       			createMeetingTime(id, label);

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       228
        
       		}

     

       229
        
       	}

     

       230
        
       

     
···

       264
        
       /**

     

       265
        
        * Enroll a user in a class

     

       266
        
        */

     

       267
       -
       export function enrollUserInClass(userId: number, classId: string): void {

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       268
        
       	const now = Math.floor(Date.now() / 1000);

     

       269
        
       	db.run(

     

       270
       -
       		"INSERT OR IGNORE INTO class_members (class_id, user_id, enrolled_at) VALUES (?, ?, ?)",

     

       271
       -
       		[classId, userId, now],

     

       272
        
       	);

     

       273
        
       }

     

       274
        
       

     
···

       371
        
       				id: string;

     

       372
        
       				user_id: number;

     

       373
        
       				meeting_time_id: string | null;

     

       0
        
       
     

       374
        
       				filename: string;

     

       375
        
       				original_filename: string;

     

       376
        
       				status: string;

     
···

       381
        
       			},

     

       382
        
       			[string]

     

       383
        
       		>(

     

       384
       -
       			`SELECT id, user_id, meeting_time_id, filename, original_filename, status, progress, error_message, created_at, updated_at

     

       385
        
              FROM transcriptions

     

       386
        
              WHERE class_id = ?

     

       387
       -
              ORDER BY created_at DESC`,

     

       388
        
       		)

     

       389
        
       		.all(classId);

     

       390
        
       }

     
···

       409
        
       export function joinClass(

     

       410
        
       	classId: string,

     

       411
        
       	userId: number,

     

       0
        
       
     

       412
        
       ): { success: boolean; error?: string } {

     

       413
        
       	// Find class by ID

     

       414
        
       	const cls = db

     
···

       434
        
       		return { success: false, error: "Already enrolled in this class" };

     

       435
        
       	}

     

       436
        
       

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       437
        
       	// Enroll user

     

       438
        
       	db.query(

     

       439
       -
       		"INSERT INTO class_members (class_id, user_id, enrolled_at) VALUES (?, ?, ?)",

     

       440
       -
       	).run(cls.id, userId, Math.floor(Date.now() / 1000));

     

       441
        
       

     

       442
        
       	return { success: true };

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       443
        
       }

     

       444
        
       

     

       445
        
       /**

···

       9
        
       	semester: string;

     

       10
        
       	year: number;

     

       11
        
       	archived: boolean;

     

       12
       +
       	section_number?: string | null;

     

       13
       +
       	created_at: number;

     

       14
       +
       }

     

       15
       +
       

     

       16
       +
       export interface ClassSection {

     

       17
       +
       	id: string;

     

       18
       +
       	class_id: string;

     

       19
       +
       	section_number: string;

     

       20
        
       	created_at: number;

     

       21
        
       }

     

       22
        
       

     
···

       30
        
       export interface ClassMember {

     

       31
        
       	class_id: string;

     

       32
        
       	user_id: number;

     

       33
       +
       	section_id: string | null;

     

       34
        
       	enrolled_at: number;

     

       35
        
       }

     

       36
        
       

     
···

       213
        
       	semester: string;

     

       214
        
       	year: number;

     

       215
        
       	meeting_times?: string[];

     

       216
       +
       	sections?: string[];

     

       217
        
       }): Class {

     

       218
        
       	const id = nanoid();

     

       219
        
       	const now = Math.floor(Date.now() / 1000);

     
···

       235
        
       	if (data.meeting_times && data.meeting_times.length > 0) {

     

       236
        
       		for (const label of data.meeting_times) {

     

       237
        
       			createMeetingTime(id, label);

     

       238
       +
       		}

     

       239
       +
       	}

     

       240
       +
       

     

       241
       +
       	// Create sections if provided

     

       242
       +
       	if (data.sections && data.sections.length > 0) {

     

       243
       +
       		for (const sectionNumber of data.sections) {

     

       244
       +
       			createClassSection(id, sectionNumber);

     

       245
        
       		}

     

       246
        
       	}

     

       247
        
       

     
···

       281
        
       /**

     

       282
        
        * Enroll a user in a class

     

       283
        
        */

     

       284
       +
       export function enrollUserInClass(

     

       285
       +
       	userId: number,

     

       286
       +
       	classId: string,

     

       287
       +
       	sectionId?: string | null,

     

       288
       +
       ): void {

     

       289
        
       	const now = Math.floor(Date.now() / 1000);

     

       290
        
       	db.run(

     

       291
       +
       		"INSERT OR IGNORE INTO class_members (class_id, user_id, section_id, enrolled_at) VALUES (?, ?, ?, ?)",

     

       292
       +
       		[classId, userId, sectionId ?? null, now],

     

       293
        
       	);

     

       294
        
       }

     

       295
        
       

     
···

       392
        
       				id: string;

     

       393
        
       				user_id: number;

     

       394
        
       				meeting_time_id: string | null;

     

       395
       +
       				section_id: string | null;

     

       396
        
       				filename: string;

     

       397
        
       				original_filename: string;

     

       398
        
       				status: string;

     
···

       403
        
       			},

     

       404
        
       			[string]

     

       405
        
       		>(

     

       406
       +
       			`SELECT id, user_id, meeting_time_id, section_id, filename, original_filename, status, progress, error_message, created_at, updated_at

     

       407
        
              FROM transcriptions

     

       408
        
              WHERE class_id = ?

     

       409
       +
              ORDER BY recording_date DESC, created_at DESC`,

     

       410
        
       		)

     

       411
        
       		.all(classId);

     

       412
        
       }

     
···

       431
        
       export function joinClass(

     

       432
        
       	classId: string,

     

       433
        
       	userId: number,

     

       434
       +
       	sectionId?: string | null,

     

       435
        
       ): { success: boolean; error?: string } {

     

       436
        
       	// Find class by ID

     

       437
        
       	const cls = db

     
···

       457
        
       		return { success: false, error: "Already enrolled in this class" };

     

       458
        
       	}

     

       459
        
       

     

       460
       +
       	// Check if class has sections and require one to be selected

     

       461
       +
       	const sections = getClassSections(classId);

     

       462
       +
       	if (sections.length > 0 && !sectionId) {

     

       463
       +
       		return { success: false, error: "Please select a section" };

     

       464
       +
       	}

     

       465
       +
       

     

       466
       +
       	// If section provided, validate it exists and belongs to this class

     

       467
       +
       	if (sectionId) {

     

       468
       +
       		const section = sections.find((s) => s.id === sectionId);

     

       469
       +
       		if (!section) {

     

       470
       +
       			return { success: false, error: "Invalid section selected" };

     

       471
       +
       		}

     

       472
       +
       	}

     

       473
       +
       

     

       474
        
       	// Enroll user

     

       475
        
       	db.query(

     

       476
       +
       		"INSERT INTO class_members (class_id, user_id, section_id, enrolled_at) VALUES (?, ?, ?, ?)",

     

       477
       +
       	).run(cls.id, userId, sectionId ?? null, Math.floor(Date.now() / 1000));

     

       478
        
       

     

       479
        
       	return { success: true };

     

       480
       +
       }

     

       481
       +
       

     

       482
       +
       /**

     

       483
       +
        * Create a section for a class

     

       484
       +
        */

     

       485
       +
       export function createClassSection(

     

       486
       +
       	classId: string,

     

       487
       +
       	sectionNumber: string,

     

       488
       +
       ): ClassSection {

     

       489
       +
       	const id = nanoid();

     

       490
       +
       	const now = Math.floor(Date.now() / 1000);

     

       491
       +
       

     

       492
       +
       	db.run(

     

       493
       +
       		"INSERT INTO class_sections (id, class_id, section_number, created_at) VALUES (?, ?, ?, ?)",

     

       494
       +
       		[id, classId, sectionNumber, now],

     

       495
       +
       	);

     

       496
       +
       

     

       497
       +
       	return {

     

       498
       +
       		id,

     

       499
       +
       		class_id: classId,

     

       500
       +
       		section_number: sectionNumber,

     

       501
       +
       		created_at: now,

     

       502
       +
       	};

     

       503
       +
       }

     

       504
       +
       

     

       505
       +
       /**

     

       506
       +
        * Get all sections for a class

     

       507
       +
        */

     

       508
       +
       export function getClassSections(classId: string): ClassSection[] {

     

       509
       +
       	return db

     

       510
       +
       		.query<ClassSection, [string]>(

     

       511
       +
       			"SELECT * FROM class_sections WHERE class_id = ? ORDER BY section_number ASC",

     

       512
       +
       		)

     

       513
       +
       		.all(classId);

     

       514
       +
       }

     

       515
       +
       

     

       516
       +
       /**

     

       517
       +
        * Delete a class section

     

       518
       +
        */

     

       519
       +
       export function deleteClassSection(sectionId: string): void {

     

       520
       +
       	db.run("DELETE FROM class_sections WHERE id = ?", [sectionId]);

     

       521
       +
       }

     

       522
       +
       

     

       523
       +
       /**

     

       524
       +
        * Get user's enrolled section for a class

     

       525
       +
        */

     

       526
       +
       export function getUserSection(userId: number, classId: string): string | null {

     

       527
       +
       	const result = db

     

       528
       +
       		.query<{ section_id: string | null }, [string, number]>(

     

       529
       +
       			"SELECT section_id FROM class_members WHERE class_id = ? AND user_id = ?",

     

       530
       +
       		)

     

       531
       +
       		.get(classId, userId);

     

       532
       +
       	return result?.section_id ?? null;

     

       533
        
       }

     

       534
        
       

     

       535
        
       /**

+3 -1

src/lib/email.ts

···

       27
        
       export async function sendEmail(options: SendEmailOptions): Promise<void> {

     

       28
        
       	// Skip sending emails in test mode

     

       29
        
       	if (process.env.NODE_ENV === "test" || process.env.SKIP_EMAILS === "true") {

     

       30
       -
       		console.log(`[Email] SKIPPED (test mode): "${options.subject}" to ${typeof options.to === "string" ? options.to : options.to.email}`);

     

       0
        
       
     

       0
        
       
     

       31
        
       		return;

     

       32
        
       	}

     

       33

···

       27
        
       export async function sendEmail(options: SendEmailOptions): Promise<void> {

     

       28
        
       	// Skip sending emails in test mode

     

       29
        
       	if (process.env.NODE_ENV === "test" || process.env.SKIP_EMAILS === "true") {

     

       30
       +
       		console.log(

     

       31
       +
       			`[Email] SKIPPED (test mode): "${options.subject}" to ${typeof options.to === "string" ? options.to : options.to.email}`,

     

       32
       +
       		);

     

       33
        
       		return;

     

       34
        
       	}

     

       35

+227

src/lib/voting.ts

···

       1
       +
       import { nanoid } from "nanoid";

     

       2
       +
       import db from "../db/schema";

     

       3
       +
       

     

       4
       +
       /**

     

       5
       +
        * Vote for a recording

     

       6
       +
        * Returns true if vote was recorded, false if already voted

     

       7
       +
        */

     

       8
       +
       export function voteForRecording(

     

       9
       +
       	transcriptionId: string,

     

       10
       +
       	userId: number,

     

       11
       +
       ): boolean {

     

       12
       +
       	try {

     

       13
       +
       		const voteId = nanoid();

     

       14
       +
       		db.run(

     

       15
       +
       			"INSERT INTO recording_votes (id, transcription_id, user_id) VALUES (?, ?, ?)",

     

       16
       +
       			[voteId, transcriptionId, userId],

     

       17
       +
       		);

     

       18
       +
       

     

       19
       +
       		// Increment vote count on transcription

     

       20
       +
       		db.run(

     

       21
       +
       			"UPDATE transcriptions SET vote_count = vote_count + 1 WHERE id = ?",

     

       22
       +
       			[transcriptionId],

     

       23
       +
       		);

     

       24
       +
       

     

       25
       +
       		return true;

     

       26
       +
       	} catch (error) {

     

       27
       +
       		// Unique constraint violation means user already voted

     

       28
       +
       		if (

     

       29
       +
       			error instanceof Error &&

     

       30
       +
       			error.message.includes("UNIQUE constraint failed")

     

       31
       +
       		) {

     

       32
       +
       			return false;

     

       33
       +
       		}

     

       34
       +
       		throw error;

     

       35
       +
       	}

     

       36
       +
       }

     

       37
       +
       

     

       38
       +
       /**

     

       39
       +
        * Remove vote for a recording

     

       40
       +
        */

     

       41
       +
       export function removeVote(transcriptionId: string, userId: number): boolean {

     

       42
       +
       	const result = db.run(

     

       43
       +
       		"DELETE FROM recording_votes WHERE transcription_id = ? AND user_id = ?",

     

       44
       +
       		[transcriptionId, userId],

     

       45
       +
       	);

     

       46
       +
       

     

       47
       +
       	if (result.changes > 0) {

     

       48
       +
       		// Decrement vote count on transcription

     

       49
       +
       		db.run(

     

       50
       +
       			"UPDATE transcriptions SET vote_count = vote_count - 1 WHERE id = ?",

     

       51
       +
       			[transcriptionId],

     

       52
       +
       		);

     

       53
       +
       		return true;

     

       54
       +
       	}

     

       55
       +
       

     

       56
       +
       	return false;

     

       57
       +
       }

     

       58
       +
       

     

       59
       +
       /**

     

       60
       +
        * Get user's vote for a specific class meeting time

     

       61
       +
        */

     

       62
       +
       export function getUserVoteForMeeting(

     

       63
       +
       	userId: number,

     

       64
       +
       	classId: string,

     

       65
       +
       	meetingTimeId: string,

     

       66
       +
       ): string | null {

     

       67
       +
       	const result = db

     

       68
       +
       		.query<

     

       69
       +
       			{ transcription_id: string },

     

       70
       +
       			[number, string, string]

     

       71
       +
       		>(

     

       72
       +
       			`SELECT rv.transcription_id 

     

       73
       +
              FROM recording_votes rv

     

       74
       +
              JOIN transcriptions t ON rv.transcription_id = t.id

     

       75
       +
              WHERE rv.user_id = ? 

     

       76
       +
                AND t.class_id = ? 

     

       77
       +
                AND t.meeting_time_id = ?

     

       78
       +
                AND t.status = 'pending'`,

     

       79
       +
       		)

     

       80
       +
       		.get(userId, classId, meetingTimeId);

     

       81
       +
       

     

       82
       +
       	return result?.transcription_id || null;

     

       83
       +
       }

     

       84
       +
       

     

       85
       +
       /**

     

       86
       +
        * Get all pending recordings for a class meeting time (filtered by section)

     

       87
       +
        */

     

       88
       +
       export function getPendingRecordings(

     

       89
       +
       	classId: string,

     

       90
       +
       	meetingTimeId: string,

     

       91
       +
       	sectionId?: string | null,

     

       92
       +
       ) {

     

       93
       +
       	// Build query based on whether section filtering is needed

     

       94
       +
       	let query = `SELECT id, user_id, filename, original_filename, vote_count, created_at, section_id

     

       95
       +
              FROM transcriptions

     

       96
       +
              WHERE class_id = ? 

     

       97
       +
                AND meeting_time_id = ?

     

       98
       +
                AND status = 'pending'`;

     

       99
       +
       

     

       100
       +
       	const params: (string | null)[] = [classId, meetingTimeId];

     

       101
       +
       

     

       102
       +
       	// Filter by section if provided (for voting - section-specific)

     

       103
       +
       	if (sectionId !== undefined) {

     

       104
       +
       		query += " AND (section_id = ? OR section_id IS NULL)";

     

       105
       +
       		params.push(sectionId);

     

       106
       +
       	}

     

       107
       +
       

     

       108
       +
       	query += " ORDER BY vote_count DESC, created_at ASC";

     

       109
       +
       

     

       110
       +
       	return db

     

       111
       +
       		.query<

     

       112
       +
       			{

     

       113
       +
       				id: string;

     

       114
       +
       				user_id: number;

     

       115
       +
       				filename: string;

     

       116
       +
       				original_filename: string;

     

       117
       +
       				vote_count: number;

     

       118
       +
       				created_at: number;

     

       119
       +
       				section_id: string | null;

     

       120
       +
       			},

     

       121
       +
       			(string | null)[]

     

       122
       +
       		>(query)

     

       123
       +
       		.all(...params);

     

       124
       +
       }

     

       125
       +
       

     

       126
       +
       /**

     

       127
       +
        * Get total enrolled users count for a class

     

       128
       +
        */

     

       129
       +
       export function getEnrolledUserCount(classId: string): number {

     

       130
       +
       	const result = db

     

       131
       +
       		.query<{ count: number }, [string]>(

     

       132
       +
       			"SELECT COUNT(*) as count FROM class_members WHERE class_id = ?",

     

       133
       +
       		)

     

       134
       +
       		.get(classId);

     

       135
       +
       

     

       136
       +
       	return result?.count || 0;

     

       137
       +
       }

     

       138
       +
       

     

       139
       +
       /**

     

       140
       +
        * Check if recording should be auto-submitted

     

       141
       +
        * Returns winning recording ID if ready, null otherwise

     

       142
       +
        */

     

       143
       +
       export function checkAutoSubmit(

     

       144
       +
       	classId: string,

     

       145
       +
       	meetingTimeId: string,

     

       146
       +
       	sectionId?: string | null,

     

       147
       +
       ): string | null {

     

       148
       +
       	const recordings = getPendingRecordings(classId, meetingTimeId, sectionId);

     

       149
       +
       

     

       150
       +
       	if (recordings.length === 0) {

     

       151
       +
       		return null;

     

       152
       +
       	}

     

       153
       +
       

     

       154
       +
       	const totalUsers = getEnrolledUserCount(classId);

     

       155
       +
       	const now = Date.now() / 1000; // Current time in seconds

     

       156
       +
       

     

       157
       +
       	// Get the recording with most votes

     

       158
       +
       	const topRecording = recordings[0];

     

       159
       +
       	if (!topRecording) return null;

     

       160
       +
       

     

       161
       +
       	const uploadedAt = topRecording.created_at;

     

       162
       +
       	const timeSinceUpload = now - uploadedAt;

     

       163
       +
       

     

       164
       +
       	// Auto-submit if:

     

       165
       +
       	// 1. 30 minutes have passed since first upload, OR

     

       166
       +
       	// 2. 40% of enrolled users have voted for the top recording

     

       167
       +
       	const thirtyMinutes = 30 * 60; // 30 minutes in seconds

     

       168
       +
       	const voteThreshold = Math.ceil(totalUsers * 0.4);

     

       169
       +
       

     

       170
       +
       	if (timeSinceUpload >= thirtyMinutes) {

     

       171
       +
       		console.log(

     

       172
       +
       			`[Voting] Auto-submitting ${topRecording.id} - 30 minutes elapsed`,

     

       173
       +
       		);

     

       174
       +
       		return topRecording.id;

     

       175
       +
       	}

     

       176
       +
       

     

       177
       +
       	if (topRecording.vote_count >= voteThreshold) {

     

       178
       +
       		console.log(

     

       179
       +
       			`[Voting] Auto-submitting ${topRecording.id} - reached ${topRecording.vote_count}/${voteThreshold} votes (40% threshold)`,

     

       180
       +
       		);

     

       181
       +
       		return topRecording.id;

     

       182
       +
       	}

     

       183
       +
       

     

       184
       +
       	return null;

     

       185
       +
       }

     

       186
       +
       

     

       187
       +
       /**

     

       188
       +
        * Mark a recording as auto-submitted and start transcription

     

       189
       +
        */

     

       190
       +
       export function markAsAutoSubmitted(transcriptionId: string): void {

     

       191
       +
       	db.run(

     

       192
       +
       		"UPDATE transcriptions SET auto_submitted = 1 WHERE id = ?",

     

       193
       +
       		[transcriptionId],

     

       194
       +
       	);

     

       195
       +
       }

     

       196
       +
       

     

       197
       +
       /**

     

       198
       +
        * Delete a pending recording (only allowed by uploader or admin)

     

       199
       +
        */

     

       200
       +
       export function deletePendingRecording(

     

       201
       +
       	transcriptionId: string,

     

       202
       +
       	userId: number,

     

       203
       +
       	isAdmin: boolean,

     

       204
       +
       ): boolean {

     

       205
       +
       	// Check ownership if not admin

     

       206
       +
       	if (!isAdmin) {

     

       207
       +
       		const recording = db

     

       208
       +
       			.query<{ user_id: number; status: string }, [string]>(

     

       209
       +
       				"SELECT user_id, status FROM transcriptions WHERE id = ?",

     

       210
       +
       			)

     

       211
       +
       			.get(transcriptionId);

     

       212
       +
       

     

       213
       +
       		if (!recording || recording.user_id !== userId) {

     

       214
       +
       			return false;

     

       215
       +
       		}

     

       216
       +
       

     

       217
       +
       		// Only allow deleting pending recordings

     

       218
       +
       		if (recording.status !== "pending") {

     

       219
       +
       			return false;

     

       220
       +
       		}

     

       221
       +
       	}

     

       222
       +
       

     

       223
       +
       	// Delete the recording (cascades to votes)

     

       224
       +
       	db.run("DELETE FROM transcriptions WHERE id = ?", [transcriptionId]);

     

       225
       +
       

     

       226
       +
       	return true;

     

       227
       +
       }

+3 -3

src/lib/vtt-cleaner.test.ts

···

       55
        
       

     

       56
        
       test("cleanVTT preserves empty VTT", async () => {

     

       57
        
       	const emptyVTT = "WEBVTT\n\n";

     

       58
       -
       	

     

       59
        
       	// Save and remove API key to avoid burning tokens

     

       60
        
       	const originalKey = process.env.LLM_API_KEY;

     

       61
        
       	delete process.env.LLM_API_KEY;

     

       62
       -
       	

     

       63
        
       	const result = await cleanVTT("test-empty", emptyVTT);

     

       64
        
       

     

       65
        
       	expect(result).toBe(emptyVTT);

     

       66
       -
       	

     

       67
        
       	// Restore original key

     

       68
        
       	if (originalKey) {

     

       69
        
       		process.env.LLM_API_KEY = originalKey;

···

       55
        
       

     

       56
        
       test("cleanVTT preserves empty VTT", async () => {

     

       57
        
       	const emptyVTT = "WEBVTT\n\n";

     

       58
       +
       

     

       59
        
       	// Save and remove API key to avoid burning tokens

     

       60
        
       	const originalKey = process.env.LLM_API_KEY;

     

       61
        
       	delete process.env.LLM_API_KEY;

     

       62
       +
       

     

       63
        
       	const result = await cleanVTT("test-empty", emptyVTT);

     

       64
        
       

     

       65
        
       	expect(result).toBe(emptyVTT);

     

       66
       +
       

     

       67
        
       	// Restore original key

     

       68
        
       	if (originalKey) {

     

       69
        
       		process.env.LLM_API_KEY = originalKey;

-1

src/pages/admin.html

···

       4
        
       <head>

     

       5
        
         <meta charset="UTF-8">

     

       6
        
         <meta name="viewport" content="width=device-width, initial-scale=1.0">

     

       7
       -
         <meta http-equiv="Content-Security-Policy" content="default-src 'self'; script-src 'self'; style-src 'self'; img-src 'self' data:; font-src 'self'; connect-src 'self'; form-action 'self'; base-uri 'self'; frame-ancestors 'none'; object-src 'none'">

     

       8
        
         <title>Admin - Thistle</title>

     

       9
        
         <link rel="apple-touch-icon" sizes="180x180" href="../../public/favicon/apple-touch-icon.png">

     

       10
        
         <link rel="icon" type="image/png" sizes="32x32" href="../../public/favicon/favicon-32x32.png">

···

       4
        
       <head>

     

       5
        
         <meta charset="UTF-8">

     

       6
        
         <meta name="viewport" content="width=device-width, initial-scale=1.0">

     

       0
        
       
     

       7
        
         <title>Admin - Thistle</title>

     

       8
        
         <link rel="apple-touch-icon" sizes="180x180" href="../../public/favicon/apple-touch-icon.png">

     

       9
        
         <link rel="icon" type="image/png" sizes="32x32" href="../../public/favicon/favicon-32x32.png">

-1

src/pages/checkout.html

···

       4
        
       <head>

     

       5
        
       	<meta charset="UTF-8">

     

       6
        
       	<meta name="viewport" content="width=device-width, initial-scale=1.0">

     

       7
       -
       	<meta http-equiv="Content-Security-Policy" content="default-src 'self'; script-src 'self'; style-src 'self'; img-src 'self' data:; font-src 'self'; connect-src 'self'; form-action 'self'; base-uri 'self'; frame-ancestors 'none'; object-src 'none'">

     

       8
        
       	<title>Success! - Thistle</title>

     

       9
        
       	<link rel="apple-touch-icon" sizes="180x180" href="../../public/favicon/apple-touch-icon.png">

     

       10
        
       	<link rel="icon" type="image/png" sizes="32x32" href="../../public/favicon/favicon-32x32.png">

···

       4
        
       <head>

     

       5
        
       	<meta charset="UTF-8">

     

       6
        
       	<meta name="viewport" content="width=device-width, initial-scale=1.0">

     

       0
        
       
     

       7
        
       	<title>Success! - Thistle</title>

     

       8
        
       	<link rel="apple-touch-icon" sizes="180x180" href="../../public/favicon/apple-touch-icon.png">

     

       9
        
       	<link rel="icon" type="image/png" sizes="32x32" href="../../public/favicon/favicon-32x32.png">

-1

src/pages/class.html

···

       4
        
       <head>

     

       5
        
         <meta charset="UTF-8">

     

       6
        
         <meta name="viewport" content="width=device-width, initial-scale=1.0">

     

       7
       -
         <meta http-equiv="Content-Security-Policy" content="default-src 'self'; script-src 'self'; style-src 'self'; img-src 'self' data:; font-src 'self'; connect-src 'self'; form-action 'self'; base-uri 'self'; frame-ancestors 'none'; object-src 'none'">

     

       8
        
         <title>Class - Thistle</title>

     

       9
        
         <link rel="apple-touch-icon" sizes="180x180" href="../../public/favicon/apple-touch-icon.png">

     

       10
        
         <link rel="icon" type="image/png" sizes="32x32" href="../../public/favicon/favicon-32x32.png">

···

       4
        
       <head>

     

       5
        
         <meta charset="UTF-8">

     

       6
        
         <meta name="viewport" content="width=device-width, initial-scale=1.0">

     

       0
        
       
     

       7
        
         <title>Class - Thistle</title>

     

       8
        
         <link rel="apple-touch-icon" sizes="180x180" href="../../public/favicon/apple-touch-icon.png">

     

       9
        
         <link rel="icon" type="image/png" sizes="32x32" href="../../public/favicon/favicon-32x32.png">

-1

src/pages/classes.html

···

       4
        
       <head>

     

       5
        
         <meta charset="UTF-8">

     

       6
        
         <meta name="viewport" content="width=device-width, initial-scale=1.0">

     

       7
       -
         <meta http-equiv="Content-Security-Policy" content="default-src 'self'; script-src 'self'; style-src 'self'; img-src 'self' data:; font-src 'self'; connect-src 'self'; form-action 'self'; base-uri 'self'; frame-ancestors 'none'; object-src 'none'">

     

       8
        
         <title>Classes - Thistle</title>

     

       9
        
         <link rel="apple-touch-icon" sizes="180x180" href="../../public/favicon/apple-touch-icon.png">

     

       10
        
         <link rel="icon" type="image/png" sizes="32x32" href="../../public/favicon/favicon-32x32.png">

···

       4
        
       <head>

     

       5
        
         <meta charset="UTF-8">

     

       6
        
         <meta name="viewport" content="width=device-width, initial-scale=1.0">

     

       0
        
       
     

       7
        
         <title>Classes - Thistle</title>

     

       8
        
         <link rel="apple-touch-icon" sizes="180x180" href="../../public/favicon/apple-touch-icon.png">

     

       9
        
         <link rel="icon" type="image/png" sizes="32x32" href="../../public/favicon/favicon-32x32.png">

-1

src/pages/index.html

···

       4
        
       <head>

     

       5
        
         <meta charset="UTF-8">

     

       6
        
         <meta name="viewport" content="width=device-width, initial-scale=1.0">

     

       7
       -
         <meta http-equiv="Content-Security-Policy" content="default-src 'self'; script-src 'self'; style-src 'self'; img-src 'self' data:; font-src 'self'; connect-src 'self'; form-action 'self'; base-uri 'self'; frame-ancestors 'none'; object-src 'none'">

     

       8
        
         <title>Thistle</title>

     

       9
        
         <link rel="apple-touch-icon" sizes="180x180" href="../../public/favicon/apple-touch-icon.png">

     

       10
        
         <link rel="icon" type="image/png" sizes="32x32" href="../../public/favicon/favicon-32x32.png">

···

       4
        
       <head>

     

       5
        
         <meta charset="UTF-8">

     

       6
        
         <meta name="viewport" content="width=device-width, initial-scale=1.0">

     

       0
        
       
     

       7
        
         <title>Thistle</title>

     

       8
        
         <link rel="apple-touch-icon" sizes="180x180" href="../../public/favicon/apple-touch-icon.png">

     

       9
        
         <link rel="icon" type="image/png" sizes="32x32" href="../../public/favicon/favicon-32x32.png">

-1

src/pages/reset-password.html

···

       4
        
       <head>

     

       5
        
         <meta charset="UTF-8">

     

       6
        
         <meta name="viewport" content="width=device-width, initial-scale=1.0">

     

       7
       -
         <meta http-equiv="Content-Security-Policy" content="default-src 'self'; script-src 'self'; style-src 'self'; img-src 'self' data:; font-src 'self'; connect-src 'self'; form-action 'self'; base-uri 'self'; frame-ancestors 'none'; object-src 'none'">

     

       8
        
         <title>Reset Password - Thistle</title>

     

       9
        
         <link rel="apple-touch-icon" sizes="180x180" href="../../public/favicon/apple-touch-icon.png">

     

       10
        
         <link rel="icon" type="image/png" sizes="32x32" href="../../public/favicon/favicon-32x32.png">

···

       4
        
       <head>

     

       5
        
         <meta charset="UTF-8">

     

       6
        
         <meta name="viewport" content="width=device-width, initial-scale=1.0">

     

       0
        
       
     

       7
        
         <title>Reset Password - Thistle</title>

     

       8
        
         <link rel="apple-touch-icon" sizes="180x180" href="../../public/favicon/apple-touch-icon.png">

     

       9
        
         <link rel="icon" type="image/png" sizes="32x32" href="../../public/favicon/favicon-32x32.png">

-1

src/pages/settings.html

···

       4
        
       <head>

     

       5
        
       	<meta charset="UTF-8">

     

       6
        
       	<meta name="viewport" content="width=device-width, initial-scale=1.0">

     

       7
       -
       	<meta http-equiv="Content-Security-Policy" content="default-src 'self'; script-src 'self'; style-src 'self'; img-src 'self' data:; font-src 'self'; connect-src 'self'; form-action 'self'; base-uri 'self'; frame-ancestors 'none'; object-src 'none'">

     

       8
        
       	<title>Settings - Thistle</title>

     

       9
        
       	<link rel="apple-touch-icon" sizes="180x180" href="../../public/favicon/apple-touch-icon.png">

     

       10
        
       	<link rel="icon" type="image/png" sizes="32x32" href="../../public/favicon/favicon-32x32.png">

···

       4
        
       <head>

     

       5
        
       	<meta charset="UTF-8">

     

       6
        
       	<meta name="viewport" content="width=device-width, initial-scale=1.0">

     

       0
        
       
     

       7
        
       	<title>Settings - Thistle</title>

     

       8
        
       	<link rel="apple-touch-icon" sizes="180x180" href="../../public/favicon/apple-touch-icon.png">

     

       9
        
       	<link rel="icon" type="image/png" sizes="32x32" href="../../public/favicon/favicon-32x32.png">

-1

src/pages/transcribe.html

···

       4
        
       <head>

     

       5
        
         <meta charset="UTF-8">

     

       6
        
         <meta name="viewport" content="width=device-width, initial-scale=1.0">

     

       7
       -
         <meta http-equiv="Content-Security-Policy" content="default-src 'self'; script-src 'self'; style-src 'self'; img-src 'self' data:; font-src 'self'; connect-src 'self'; form-action 'self'; base-uri 'self'; frame-ancestors 'none'; object-src 'none'">

     

       8
        
         <title>Transcribe - Thistle</title>

     

       9
        
         <link rel="apple-touch-icon" sizes="180x180" href="../../public/favicon/apple-touch-icon.png">

     

       10
        
         <link rel="icon" type="image/png" sizes="32x32" href="../../public/favicon/favicon-32x32.png">

···

       4
        
       <head>

     

       5
        
         <meta charset="UTF-8">

     

       6
        
         <meta name="viewport" content="width=device-width, initial-scale=1.0">

     

       0
        
       
     

       7
        
         <title>Transcribe - Thistle</title>

     

       8
        
         <link rel="apple-touch-icon" sizes="180x180" href="../../public/favicon/apple-touch-icon.png">

     

       9
        
         <link rel="icon" type="image/png" sizes="32x32" href="../../public/favicon/favicon-32x32.png">

Compare changes