Add forced currentUser update to settings and teams pages

[Oksamies]

Summary by CodeRabbit

• New Features

  • Settings is now available with Connections and Account views.
  • Teams section added, including team pages with tabs: Profile, Members, Service Accounts, and Settings.
  • Mobile user menu now includes the Settings option.

• Refactor

  • Unified internal navigation to use app-native links for Settings, Teams, and Upload across header, desktop dropdown, and mobile menus for more consistent routing.

[coderabbitai]

Important

Review skipped

Auto reviews are disabled on base/target branches other than the default branch.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Walkthrough

Internal navigation updated to use cyberstormLink with linkId instead of hrefs, including desktop and mobile menus. Previously commented settings-related routes are re-enabled, adding /settings, /teams, and /teams/:namespaceId with nested tabs to the route configuration.

Changes

Cohort / File(s)	Summary
Navigation link refactor apps/cyberstorm-remix/app/commonComponents/Navigation/Navigation.tsx	Replaced href-based primitiveType="link" with primitiveType="cyberstormLink" using linkId for Upload, Settings, and Teams; re-enabled mobile Settings item with cyberstormLink. External links unchanged.
Settings and teams routes enabled apps/cyberstorm-remix/app/routes.ts	Un-commented and added routes: /settings (with connections, account), /teams, and /teams/:namespaceId with nested tabs (profile index, members, service-accounts, settings).

Sequence Diagram(s)

sequenceDiagram
  autonumber
  actor User
  participant Nav as Navigation UI
  participant Router as Router
  participant Page as Target Page

  rect rgb(230,245,255)
  note over User,Nav: Internal navigation via linkId
  User->>Nav: Click "Settings" (cyberstormLink, linkId=Settings)
  Nav->>Router: navigate(linkId=Settings)
  Router->>Page: Resolve /settings route
  Page-->>User: Render Settings view
  end

  rect rgb(245,235,255)
  note over User,Router: Team scoped navigation
  User->>Nav: Click Team "Members"
  Nav->>Router: navigate(linkId=Teams, params:{namespaceId})
  Router->>Page: Match /teams/:namespaceId/members
  Page-->>User: Render Members tab
  end

Loading

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

Poem

I thump to new routes, ears all a-twist,
LinkIds hopping where hrefs once kissed.
Settings awake, teams tabs align—
Paths un-commented, tidy and fine.
With a twitch of the nose and a soft little squeak,
I bound through namespaces, new pages to seek. 🐇✨

Pre-merge checks and finishing touches

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%.	You can run @coderabbitai generate docstrings to improve docstring coverage.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title Check	✅ Passed	The title references settings and teams pages, which matches the PR's primary area of change (re-enabling /settings and /teams routes and updating navigation to use internal linkIds); although the raw_summary does not explicitly mention a "forced currentUser update," the title is related to the changeset rather than off-topic or vague.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[Oksamies]

• Separate and organize root.tsx to multiple files #1550
• Enable teams, team settigns and user settings pages #1544
• Correct API fetch params and data in few settings actions #1543
• Update thunderstore-api to match up coming cyberstorm API changes #1542
• Add forced currentUser update to settings and teams pages #1535 👈 (View in Graphite)
• Add a option to force currentUser update to getSessionCurrentUser #1541
• Ensure current user is updated #1540
• Fix session revalidation corner case #1539
• Fix setSsion stale value set #1538
• master

This stack of pull requests is managed by Graphite. Learn more about stacking.

[coderabbitai]

Actionable comments posted: 1

🧹 Nitpick comments (2)

apps/cyberstorm-remix/app/commonComponents/Navigation/Navigation.tsx (1)

547-569: Mobile user popover: inconsistent CSS classes on links (likely broken styling).
Both links use rootClasses="__item --thick" whereas the rest of the mobile popover uses mobile-navigation__popover-item mobile-navigation__popover--thick. Fix to keep spacing/tap-targets consistent.

Apply:

-          <NewLink
+          <NewLink
             primitiveType="cyberstormLink"
             linkId="Settings"
             csVariant="primary"
-            rootClasses="__item --thick"
+            rootClasses="mobile-navigation__popover-item mobile-navigation__popover--thick"
           >
@@
-          <NewLink
+          <NewLink
             primitiveType="cyberstormLink"
             linkId="Teams"
             csVariant="primary"
-            rootClasses="__item --thick"
+            rootClasses="mobile-navigation__popover-item mobile-navigation__popover--thick"
           >

apps/cyberstorm-remix/app/routes.ts (1)

57-63: /settings routes enabled — consider using index() helper for consistency.
Verified files exist and export default components; safe to replace the child index route with index(...).

-  route("/settings", "settings/user/Settings.tsx", [
-    route("", "settings/user/Connections/Connections.tsx", {
-      index: true,
-    }),
-    route("account", "settings/user/Account/Account.tsx"),
-  ]),
+  route("/settings", "settings/user/Settings.tsx", [
+    index("settings/user/Connections/Connections.tsx"),
+    route("account", "settings/user/Account/Account.tsx"),
+  ]),

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 96c1a6d and c2597d4.

📒 Files selected for processing (2)

• apps/cyberstorm-remix/app/commonComponents/Navigation/Navigation.tsx (5 hunks)
• apps/cyberstorm-remix/app/routes.ts (1 hunks)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (3)

• GitHub Check: chromatic-deployment (apps/cyberstorm-storybook, CHROMATIC_CYBERSTORM_TOKEN)
• GitHub Check: Generate visual diffs
• GitHub Check: CodeQL

🔇 Additional comments (3)

apps/cyberstorm-remix/app/commonComponents/Navigation/Navigation.tsx (2)

396-398: Desktop: Teams link via cyberstormLink — confirmed.
LinkId "Teams" exists in LinkLibrary (apps/cyberstorm-remix/cyberstorm/utils/LinkLibrary.tsx and apps/cyberstorm-storybook/LinkLibrary.tsx) mapping to /teams/, and routes.ts registers route("/teams", "settings/teams/Teams.tsx"). No change required.

---

163-165: Confirmed — PackageUpload wired to /package/create.
PackageUpload maps to "/package/create" in apps/cyberstorm-remix/cyberstorm/utils/LinkLibrary.tsx and route("/package/create", "upload/upload.tsx") exists in apps/cyberstorm-remix/app/routes.ts (line 55).

apps/cyberstorm-remix/app/routes.ts (1)

64-74: Teams routes enabled — structure LGTM; files & default exports verified.
Ensure pages self-guard for auth/visibility; optional nit: replace the empty default route with index() for clarity.

-  route("/teams/:namespaceId", "settings/teams/team/teamSettings.tsx", [
-    route("", "settings/teams/team/tabs/Profile/Profile.tsx", {
-      index: true,
-    }),
+  route("/teams/:namespaceId", "settings/teams/team/teamSettings.tsx", [
+    index("settings/teams/team/tabs/Profile/Profile.tsx"),
     route("members", "settings/teams/team/tabs/Members/Members.tsx"),
     route(
       "service-accounts",
       "settings/teams/team/tabs/ServiceAccounts/ServiceAccounts.tsx"
     ),
     route("settings", "settings/teams/team/tabs/Settings/Settings.tsx"),
   ]),

[coderabbitai]

⚠️ Potential issue

🧩 Analysis chain

Desktop: Settings link via cyberstormLink — confirm auth gating and linkId mapping.
Looks consistent. Ensure unauthenticated users can’t access /settings content (page-level guard/redirect) and that Settings linkId exists in the link registry.

---

🏁 Script executed:

#!/bin/bash
# 1) Check linkId present
rg -n --hidden -C2 '\bSettings\b' | sed -n '1,200p'
# 2) Check settings pages implement auth guard/redirect patterns
rg -n -C3 -g 'apps/cyberstorm-remix/app/**' 'requireUser|useCurrentUser|redirect.*login|ProtectedRoute' \
  | sed -n '1,200p'

Length of output: 8278

---

Desktop: Settings linkId present — enforce page-level auth on /settings.

• Evidence: Settings linkId mapped (packages/cyberstorm/src/components/Links/LinkingProvider.tsx; apps/cyberstorm-remix/app/cyberstorm/utils/LinkLibrary.tsx) and route("/settings") exists (apps/cyberstorm-remix/app/routes.ts).
• Issue: I did not find a loader-level requireUser/redirect or ProtectedRoute for the settings routes; team settings even has a REMIX TODO about redirecting unauthenticated users, and user Settings imports NotLoggedIn (not a server-side guard).
• Action: Add server-side auth in the route loader (requireUser / redirect to login) or equivalent for these files: apps/cyberstorm-remix/app/settings/user/Settings.tsx and apps/cyberstorm-remix/app/settings/teams/team/tabs/Settings/Settings.tsx so unauthenticated users cannot access /settings content.

🤖 Prompt for AI Agents

In apps/cyberstorm-remix/app/settings/user/Settings.tsx and
apps/cyberstorm-remix/app/settings/teams/team/tabs/Settings/Settings.tsx, add a
server-side loader that enforces authentication (e.g., call your existing
requireUser or perform a redirect to the login route when no session/user is
present) so the /settings routes are protected; update the route exports to
include the loader and ensure any client-side NotLoggedIn UI remains only as a
fallback, not the primary guard.

[anttimaki]

I feel this is bad pattern. Based on the naming I'd assume the function return a boolean. Well, it does, but the value is ignored. So why did we call it? Because the function had some side effects that are completely unknown to me until I read that function.

I think this should be split to two functions, isSessionValid that returns a boolean without having side effects, and another with a descriptive name for the side effects it has. Scratch that, looks the boolean value is never used anywhere, so we can drop the return value and just have function that updates the staleness. (Assuming this is still needed after the earlier comment is resolved.)

[Oksamies]

I've added a commit that renames the function to something more appropriate to what it does. Kept it as one function as the return value is more or less a "utility" return value, cause it's not always needed in the logic it's called.

[Oksamies]

ESLint and CodeQL checks are failing because Graphite created a temporary branch when I was fixing and submitting code in each PR in order. (someone has limited the maximum amount of pushes to 2 in a single command and graphite normally tries to do the whole stack at once to prevent needing to create temporary branches)

[anttimaki]

Approved but I think there's some low-hangers that could improve the code.

[anttimaki]

Minor: IMO we could just as well call sessionTools.setSessionStale() here? Wouldn't require forceUpdateCurrentUser variable here or argument in getSessionCurrentUser. I.e. simpler but does the same thing (if I'm reading the code right).

[anttimaki]

Minor: I think this shouldn't return boolean as the value is never used for anything and removing it would simplify the implementation.