poduck/smoothschedule
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: Implement tenant invitation system with onboarding wizard

Browse Source 
Backend Implementation:
- Add TenantInvitation model with lifecycle management (PENDING/ACCEPTED/EXPIRED/CANCELLED)
- Create platform admin API endpoints for invitation CRUD operations
- Add public token-based endpoints for invitation retrieval and acceptance
- Implement schema_context wrappers to ensure tenant operations run in public schema
- Add tenant permissions: can_manage_oauth_credentials, can_accept_payments, can_use_custom_domain, can_white_label, can_api_access
- Fix tenant update/create serializers to handle multi-schema environment
- Add migrations for tenant permissions and invitation system

Frontend Implementation:
- Create TenantInviteModal with comprehensive invitation form (350 lines)
  - Email, business name, subscription tier configuration
  - Custom user/resource limits
  - Platform permissions toggles
  - Future feature flags (video conferencing, event types, calendars, 2FA, logs, data deletion, POS, mobile app)
- Build TenantOnboardPage with 4-step wizard for invitation acceptance
  - Step 1: Account setup (email, password, name)
  - Step 2: Business details (name, subdomain, contact)
  - Step 3: Payment setup (conditional based on permissions)
  - Step 4: Success confirmation with redirect
- Extract BusinessCreateModal and BusinessEditModal into separate components
- Refactor PlatformBusinesses from 1080 lines to 220 lines (80% reduction)
- Add inactive businesses dropdown section (similar to staff page pattern)
- Update masquerade button styling to match Users page
- Remove deprecated "Add New Tenant" functionality in favor of invitation flow
- Add /tenant-onboard route for public access

API Integration:
- Add platform.ts API functions for tenant invitations
- Create React Query hooks in usePlatform.ts for invitation management
- Implement proper error handling and success states
- Add TypeScript interfaces for invitation types

Testing:
- Verified end-to-end invitation flow from creation to acceptance
- Confirmed tenant, domain, and owner user creation
- Validated schema context fixes for multi-tenant environment
- Tested active/inactive business filtering

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
This commit is contained in:
poduck
2025-11-28 03:55:07 -05:00
parent 83815fcb34
commit d158c1ddb0
32 changed files with 3715 additions and 201 deletions
Download Patch File Download Diff File Expand all files Collapse all files

192
frontend/src/api/platform.ts
View File

@@ -22,6 +22,37 @@ export interface PlatformBusiness {
created_on: string;
user_count: number;
owner: PlatformBusinessOwner | null;
max_users: number;
max_resources: number;
contact_email?: string;
phone?: string;
// Platform permissions
can_manage_oauth_credentials: boolean;
}
export interface PlatformBusinessUpdate {
name?: string;
is_active?: boolean;
subscription_tier?: string;
max_users?: number;
max_resources?: number;
can_manage_oauth_credentials?: boolean;
}
export interface PlatformBusinessCreate {
name: string;
subdomain: string;
subscription_tier?: string;
is_active?: boolean;
max_users?: number;
max_resources?: number;
contact_email?: string;
phone?: string;
can_manage_oauth_credentials?: boolean;
// Owner details (optional)
owner_email?: string;
owner_name?: string;
owner_password?: string;
}
export interface PlatformUser {
@@ -48,6 +79,33 @@ export const getBusinesses = async (): Promise<PlatformBusiness[]> => {
return response.data;
};
/**
* Update a business (platform admin only)
*/
export const updateBusiness = async (
businessId: number,
data: PlatformBusinessUpdate
): Promise<PlatformBusiness> => {
const response = await apiClient.patch<PlatformBusiness>(
`/api/platform/businesses/${businessId}/`,
data
);
return response.data;
};
/**
* Create a new business (platform admin only)
*/
export const createBusiness = async (
data: PlatformBusinessCreate
): Promise<PlatformBusiness> => {
const response = await apiClient.post<PlatformBusiness>(
'/api/platform/businesses/',
data
);
return response.data;
};
/**
* Get all users (platform admin only)
*/
@@ -63,3 +121,137 @@ export const getBusinessUsers = async (businessId: number): Promise<PlatformUser
const response = await apiClient.get<PlatformUser[]>(`/api/platform/users/?business=${businessId}`);
return response.data;
};
// ============================================================================
// Tenant Invitations
// ============================================================================
export interface TenantInvitation {
id: number;
email: string;
token: string;
status: 'PENDING' | 'ACCEPTED' | 'EXPIRED' | 'CANCELLED';
suggested_business_name: string;
subscription_tier: 'FREE' | 'STARTER' | 'PROFESSIONAL' | 'ENTERPRISE';
custom_max_users: number | null;
custom_max_resources: number | null;
permissions: {
can_manage_oauth_credentials?: boolean;
can_accept_payments?: boolean;
can_use_custom_domain?: boolean;
can_white_label?: boolean;
can_api_access?: boolean;
};
personal_message: string;
invited_by: number;
invited_by_email: string;
created_at: string;
expires_at: string;
accepted_at: string | null;
created_tenant: number | null;
created_tenant_name: string | null;
created_user: number | null;
created_user_email: string | null;
}
export interface TenantInvitationCreate {
email: string;
suggested_business_name?: string;
subscription_tier: 'FREE' | 'STARTER' | 'PROFESSIONAL' | 'ENTERPRISE';
custom_max_users?: number | null;
custom_max_resources?: number | null;
permissions?: {
can_manage_oauth_credentials?: boolean;
can_accept_payments?: boolean;
can_use_custom_domain?: boolean;
can_white_label?: boolean;
can_api_access?: boolean;
};
personal_message?: string;
}
export interface TenantInvitationDetail {
email: string;
suggested_business_name: string;
subscription_tier: string;
effective_max_users: number;
effective_max_resources: number;
permissions: {
can_manage_oauth_credentials?: boolean;
can_accept_payments?: boolean;
can_use_custom_domain?: boolean;
can_white_label?: boolean;
can_api_access?: boolean;
};
expires_at: string;
}
export interface TenantInvitationAccept {
email: string;
password: string;
first_name: string;
last_name: string;
business_name: string;
subdomain: string;
contact_email?: string;
phone?: string;
}
/**
* Get all tenant invitations (platform admin only)
*/
export const getTenantInvitations = async (): Promise<TenantInvitation[]> => {
const response = await apiClient.get<TenantInvitation[]>('/api/platform/tenant-invitations/');
return response.data;
};
/**
* Create a tenant invitation (platform admin only)
*/
export const createTenantInvitation = async (
data: TenantInvitationCreate
): Promise<TenantInvitation> => {
const response = await apiClient.post<TenantInvitation>(
'/api/platform/tenant-invitations/',
data
);
return response.data;
};
/**
* Resend a tenant invitation (platform admin only)
*/
export const resendTenantInvitation = async (invitationId: number): Promise<void> => {
await apiClient.post(`/api/platform/tenant-invitations/${invitationId}/resend/`);
};
/**
* Cancel a tenant invitation (platform admin only)
*/
export const cancelTenantInvitation = async (invitationId: number): Promise<void> => {
await apiClient.post(`/api/platform/tenant-invitations/${invitationId}/cancel/`);
};
/**
* Get invitation details by token (public, no auth required)
*/
export const getInvitationByToken = async (token: string): Promise<TenantInvitationDetail> => {
const response = await apiClient.get<TenantInvitationDetail>(
`/api/platform/tenant-invitations/token/${token}/`
);
return response.data;
};
/**
* Accept an invitation by token (public, no auth required)
*/
export const acceptInvitation = async (
token: string,
data: TenantInvitationAccept
): Promise<{ detail: string }> => {
const response = await apiClient.post<{ detail: string }>(
`/api/platform/tenant-invitations/token/${token}/accept/`,
data
);
return response.data;
};