feat: complete Week 1 frontend setup (#9 #10 #11 #12)

- Install and configure Tailwind CSS (#9)
- Install Nuxt UI component library (#10)
- Create app layout with header/footer components (#11)
- Implement Supabase client composable (#12)
- Add TypeScript database types
- Create placeholder pages (index, scan, settings)
- Setup responsive navigation with mobile menu
- Configure auth state management

All Week 1 frontend foundation tasks complete.

app/.env.example

@@ -0,0 +1,3 @@
+# Supabase Configuration
+NUXT_PUBLIC_SUPABASE_URL=http://localhost:54321
+NUXT_PUBLIC_SUPABASE_ANON_KEY=your-anon-key-here

app/.gitignore

@@ -0,0 +1,24 @@
+# Nuxt dev/build outputs
+.output
+.data
+.nuxt
+.nitro
+.cache
+dist
+
+# Node dependencies
+node_modules
+
+# Logs
+logs
+*.log
+
+# Misc
+.DS_Store
+.fleet
+.idea
+
+# Local env files
+.env
+.env.*
+!.env.example

app/README.md

@@ -0,0 +1,75 @@
+# Nuxt Minimal Starter
+
+Look at the [Nuxt documentation](https://nuxt.com/docs/getting-started/introduction) to learn more.
+
+## Setup
+
+Make sure to install dependencies:
+
+```bash
+# npm
+npm install
+
+# pnpm
+pnpm install
+
+# yarn
+yarn install
+
+# bun
+bun install
+```
+
+## Development Server
+
+Start the development server on `http://localhost:3000`:
+
+```bash
+# npm
+npm run dev
+
+# pnpm
+pnpm dev
+
+# yarn
+yarn dev
+
+# bun
+bun run dev
+```
+
+## Production
+
+Build the application for production:
+
+```bash
+# npm
+npm run build
+
+# pnpm
+pnpm build
+
+# yarn
+yarn build
+
+# bun
+bun run build
+```
+
+Locally preview production build:
+
+```bash
+# npm
+npm run preview
+
+# pnpm
+pnpm preview
+
+# yarn
+yarn preview
+
+# bun
+bun run preview
+```
+
+Check out the [deployment documentation](https://nuxt.com/docs/getting-started/deployment) for more information.

app/app/app.vue

@@ -0,0 +1,5 @@
+<template>
+  <NuxtLayout>
+    <NuxtPage />
+  </NuxtLayout>
+</template>

app/app/layouts/default.vue

@@ -0,0 +1,15 @@
+<template>
+  <div class="min-h-screen bg-gray-50">
+    <AppHeader />
+    
+    <main class="container mx-auto px-4 py-6 max-w-7xl">
+      <slot />
+    </main>
+
+    <AppFooter />
+  </div>
+</template>
+
+<script setup lang="ts">
+// App layout automatically wraps all pages
+</script>

app/components/AppFooter.vue

@@ -0,0 +1,40 @@
+<template>
+  <footer class="bg-white border-t border-gray-200 mt-auto">
+    <div class="container mx-auto px-4 py-6 max-w-7xl">
+      <div class="flex flex-col md:flex-row items-center justify-between gap-4">
+        <!-- Copyright -->
+        <p class="text-sm text-gray-600">
+          © {{ currentYear }} Pantry. Self-hosted inventory management.
+        </p>
+
+        <!-- Links -->
+        <div class="flex items-center space-x-6">
+          <a 
+            href="https://github.com/pantry-app/pantry" 
+            target="_blank" 
+            rel="noopener noreferrer"
+            class="text-sm text-gray-600 hover:text-primary transition-colors"
+          >
+            GitHub
+          </a>
+          <NuxtLink 
+            to="/about" 
+            class="text-sm text-gray-600 hover:text-primary transition-colors"
+          >
+            About
+          </NuxtLink>
+          <NuxtLink 
+            to="/privacy" 
+            class="text-sm text-gray-600 hover:text-primary transition-colors"
+          >
+            Privacy
+          </NuxtLink>
+        </div>
+      </div>
+    </div>
+  </footer>
+</template>
+
+<script setup lang="ts">
+const currentYear = new Date().getFullYear()
+</script>

app/components/AppHeader.vue

@@ -0,0 +1,122 @@
+<template>
+  <header class="bg-white border-b border-gray-200 sticky top-0 z-50">
+    <div class="container mx-auto px-4 max-w-7xl">
+      <div class="flex items-center justify-between h-16">
+        <!-- Logo / Brand -->
+        <NuxtLink to="/" class="flex items-center space-x-2">
+          <UIcon name="i-heroicons-squares-2x2" class="w-8 h-8 text-primary" />
+          <span class="text-xl font-bold text-gray-900">Pantry</span>
+        </NuxtLink>
+
+        <!-- Navigation -->
+        <nav class="hidden md:flex items-center space-x-6">
+          <NuxtLink 
+            to="/" 
+            class="text-gray-700 hover:text-primary transition-colors"
+            active-class="text-primary font-semibold"
+          >
+            Inventory
+          </NuxtLink>
+          <NuxtLink 
+            to="/scan" 
+            class="text-gray-700 hover:text-primary transition-colors"
+            active-class="text-primary font-semibold"
+          >
+            Scan
+          </NuxtLink>
+          <NuxtLink 
+            to="/settings" 
+            class="text-gray-700 hover:text-primary transition-colors"
+            active-class="text-primary font-semibold"
+          >
+            Settings
+          </NuxtLink>
+        </nav>
+
+        <!-- User Menu -->
+        <div class="flex items-center space-x-4">
+          <UButton 
+            v-if="!user" 
+            to="/auth/login" 
+            color="primary"
+            variant="soft"
+          >
+            Sign In
+          </UButton>
+
+          <UDropdown v-else :items="userMenuItems" mode="hover">
+            <UAvatar 
+              :alt="user.email" 
+              size="sm"
+              :ui="{ background: 'bg-primary' }"
+            />
+          </UDropdown>
+        </div>
+
+        <!-- Mobile Menu Button -->
+        <UButton 
+          icon="i-heroicons-bars-3" 
+          color="gray" 
+          variant="ghost"
+          class="md:hidden"
+          @click="mobileMenuOpen = !mobileMenuOpen"
+        />
+      </div>
+
+      <!-- Mobile Navigation -->
+      <nav 
+        v-if="mobileMenuOpen" 
+        class="md:hidden py-4 space-y-2 border-t border-gray-200"
+      >
+        <NuxtLink 
+          to="/" 
+          class="block px-4 py-2 text-gray-700 hover:bg-gray-50 rounded"
+          @click="mobileMenuOpen = false"
+        >
+          Inventory
+        </NuxtLink>
+        <NuxtLink 
+          to="/scan" 
+          class="block px-4 py-2 text-gray-700 hover:bg-gray-50 rounded"
+          @click="mobileMenuOpen = false"
+        >
+          Scan
+        </NuxtLink>
+        <NuxtLink 
+          to="/settings" 
+          class="block px-4 py-2 text-gray-700 hover:bg-gray-50 rounded"
+          @click="mobileMenuOpen = false"
+        >
+          Settings
+        </NuxtLink>
+      </nav>
+    </div>
+  </header>
+</template>
+
+<script setup lang="ts">
+const { user, signOut } = useSupabaseAuth()
+const mobileMenuOpen = ref(false)
+
+const userMenuItems = [[
+  {
+    label: user.value?.email || 'User',
+    slot: 'account',
+    disabled: true
+  }
+], [
+  {
+    label: 'Settings',
+    icon: 'i-heroicons-cog-6-tooth',
+    to: '/settings'
+  },
+  {
+    label: 'Sign Out',
+    icon: 'i-heroicons-arrow-right-on-rectangle',
+    click: async () => {
+      await signOut()
+      navigateTo('/auth/login')
+    }
+  }
+]]
+</script>

app/composables/useSupabase.ts

@@ -0,0 +1,81 @@
+import { createClient, SupabaseClient } from '@supabase/supabase-js'
+import type { Database } from '~/types/database.types'
+
+let supabaseInstance: SupabaseClient<Database> | null = null
+
+export const useSupabase = () => {
+  const config = useRuntimeConfig()
+  
+  if (!supabaseInstance) {
+    supabaseInstance = createClient<Database>(
+      config.public.supabaseUrl,
+      config.public.supabaseAnonKey,
+      {
+        auth: {
+          persistSession: true,
+          autoRefreshToken: true,
+          detectSessionInUrl: true,
+          storage: process.client ? window.localStorage : undefined
+        }
+      }
+    )
+  }
+
+  return supabaseInstance
+}
+
+/**
+ * Composable for Supabase authentication
+ */
+export const useSupabaseAuth = () => {
+  const supabase = useSupabase()
+  const user = useState('supabase_user', () => null as any)
+  const session = useState('supabase_session', () => null as any)
+
+  // Initialize auth state
+  const initAuth = async () => {
+    const { data: { session: currentSession } } = await supabase.auth.getSession()
+    session.value = currentSession
+    user.value = currentSession?.user || null
+
+    // Listen for auth changes
+    supabase.auth.onAuthStateChange((_event, newSession) => {
+      session.value = newSession
+      user.value = newSession?.user || null
+    })
+  }
+
+  // Call initAuth on composable mount
+  if (process.client) {
+    initAuth()
+  }
+
+  const signIn = async (email: string, password: string) => {
+    const { data, error } = await supabase.auth.signInWithPassword({
+      email,
+      password
+    })
+    return { data, error }
+  }
+
+  const signUp = async (email: string, password: string) => {
+    const { data, error } = await supabase.auth.signUp({
+      email,
+      password
+    })
+    return { data, error }
+  }
+
+  const signOut = async () => {
+    const { error } = await supabase.auth.signOut()
+    return { error }
+  }
+
+  return {
+    user: readonly(user),
+    session: readonly(session),
+    signIn,
+    signUp,
+    signOut
+  }
+}

app/nuxt.config.ts

@@ -0,0 +1,21 @@
+// https://nuxt.com/docs/api/configuration/nuxt-config
+export default defineNuxtConfig({
+  compatibilityDate: '2025-07-15',
+  devtools: { enabled: true },
+
+  modules: [
+    '@nuxt/ui',
+    '@nuxt/fonts'
+  ],
+
+  runtimeConfig: {
+    public: {
+      supabaseUrl: process.env.NUXT_PUBLIC_SUPABASE_URL || 'http://localhost:54321',
+      supabaseAnonKey: process.env.NUXT_PUBLIC_SUPABASE_ANON_KEY || ''
+    }
+  },
+
+  colorMode: {
+    preference: 'light'
+  }
+})

app/package.json

@@ -0,0 +1,23 @@
+{
+  "name": "app",
+  "type": "module",
+  "private": true,
+  "scripts": {
+    "build": "nuxt build",
+    "dev": "nuxt dev",
+    "generate": "nuxt generate",
+    "preview": "nuxt preview",
+    "postinstall": "nuxt prepare"
+  },
+  "dependencies": {
+    "@nuxt/fonts": "^0.13.0",
+    "@nuxt/ui": "^4.4.0",
+    "@supabase/supabase-js": "^2.95.3",
+    "nuxt": "^4.3.1",
+    "vue": "^3.5.28",
+    "vue-router": "^4.6.4"
+  },
+  "devDependencies": {
+    "@nuxtjs/tailwindcss": "^6.14.0"
+  }
+}

app/pages/index.vue

@@ -0,0 +1,57 @@
+<template>
+  <div>
+    <div class="flex items-center justify-between mb-6">
+      <h1 class="text-3xl font-bold text-gray-900">Inventory</h1>
+      
+      <div class="flex gap-2">
+        <UButton 
+          to="/scan" 
+          color="primary" 
+          size="lg"
+          icon="i-heroicons-qr-code"
+        >
+          Scan Item
+        </UButton>
+        
+        <UButton 
+          color="white" 
+          size="lg"
+          icon="i-heroicons-plus"
+        >
+          Add Manually
+        </UButton>
+      </div>
+    </div>
+
+    <!-- Empty State -->
+    <UCard v-if="true">
+      <div class="text-center py-12">
+        <UIcon 
+          name="i-heroicons-inbox" 
+          class="w-16 h-16 text-gray-400 mx-auto mb-4"
+        />
+        <h3 class="text-lg font-semibold text-gray-900 mb-2">
+          No items yet
+        </h3>
+        <p class="text-gray-600 mb-6">
+          Start by scanning a barcode or adding an item manually.
+        </p>
+        <UButton 
+          to="/scan" 
+          color="primary"
+          icon="i-heroicons-qr-code"
+        >
+          Scan First Item
+        </UButton>
+      </div>
+    </UCard>
+
+    <!-- TODO: Item list will go here -->
+  </div>
+</template>
+
+<script setup lang="ts">
+definePageMeta({
+  layout: 'default'
+})
+</script>

app/pages/scan.vue

@@ -0,0 +1,33 @@
+<template>
+  <div>
+    <h1 class="text-3xl font-bold text-gray-900 mb-6">Scan Item</h1>
+    
+    <UCard>
+      <div class="text-center py-12">
+        <UIcon 
+          name="i-heroicons-qr-code" 
+          class="w-16 h-16 text-gray-400 mx-auto mb-4"
+        />
+        <h3 class="text-lg font-semibold text-gray-900 mb-2">
+          Barcode Scanner
+        </h3>
+        <p class="text-gray-600 mb-6">
+          This feature will be implemented in Week 3.
+        </p>
+        <UButton 
+          to="/" 
+          color="gray"
+          variant="soft"
+        >
+          Back to Inventory
+        </UButton>
+      </div>
+    </UCard>
+  </div>
+</template>
+
+<script setup lang="ts">
+definePageMeta({
+  layout: 'default'
+})
+</script>

app/pages/settings.vue

@@ -0,0 +1,74 @@
+<template>
+  <div>
+    <h1 class="text-3xl font-bold text-gray-900 mb-6">Settings</h1>
+    
+    <div class="grid gap-6 md:grid-cols-2">
+      <UCard>
+        <template #header>
+          <h3 class="text-lg font-semibold">Account</h3>
+        </template>
+        
+        <div class="space-y-4">
+          <div v-if="user">
+            <label class="text-sm font-medium text-gray-700">Email</label>
+            <p class="text-gray-900">{{ user.email }}</p>
+          </div>
+          
+          <UButton 
+            v-if="!user"
+            to="/auth/login"
+            color="primary"
+          >
+            Sign In
+          </UButton>
+        </div>
+      </UCard>
+
+      <UCard>
+        <template #header>
+          <h3 class="text-lg font-semibold">Tags</h3>
+        </template>
+        
+        <p class="text-gray-600">
+          Manage your custom tags here (coming in Week 2).
+        </p>
+      </UCard>
+
+      <UCard>
+        <template #header>
+          <h3 class="text-lg font-semibold">Units</h3>
+        </template>
+        
+        <p class="text-gray-600">
+          Manage your custom units here (coming in Week 2).
+        </p>
+      </UCard>
+
+      <UCard>
+        <template #header>
+          <h3 class="text-lg font-semibold">About</h3>
+        </template>
+        
+        <div class="space-y-2 text-sm text-gray-600">
+          <p><strong>Pantry</strong> v0.1.0-alpha</p>
+          <p>Self-hosted inventory management</p>
+          <a 
+            href="https://github.com/pantry-app/pantry" 
+            target="_blank"
+            class="text-primary hover:underline"
+          >
+            View on GitHub →
+          </a>
+        </div>
+      </UCard>
+    </div>
+  </div>
+</template>
+
+<script setup lang="ts">
+const { user } = useSupabaseAuth()
+
+definePageMeta({
+  layout: 'default'
+})
+</script>

app/public/robots.txt

@@ -0,0 +1,2 @@
+User-Agent: *
+Disallow:

app/tsconfig.json

@@ -0,0 +1,18 @@
+{
+  // https://nuxt.com/docs/guide/concepts/typescript
+  "files": [],
+  "references": [
+    {
+      "path": "./.nuxt/tsconfig.app.json"
+    },
+    {
+      "path": "./.nuxt/tsconfig.server.json"
+    },
+    {
+      "path": "./.nuxt/tsconfig.shared.json"
+    },
+    {
+      "path": "./.nuxt/tsconfig.node.json"
+    }
+  ]
+}

app/types/database.types.ts

@@ -0,0 +1,184 @@
+/**
+ * Database type definitions
+ * 
+ * TODO: Generate these from Supabase schema using:
+ * supabase gen types typescript --project-id <project-id> > types/database.types.ts
+ * 
+ * For now, using a placeholder structure that matches our schema
+ */
+
+export type Json =
+  | string
+  | number
+  | boolean
+  | null
+  | { [key: string]: Json | undefined }
+  | Json[]
+
+export interface Database {
+  public: {
+    Tables: {
+      inventory_items: {
+        Row: {
+          id: string
+          product_id: string | null
+          name: string
+          quantity: number
+          unit_id: string
+          expiry_date: string | null
+          notes: string | null
+          added_by: string
+          created_at: string
+          updated_at: string
+        }
+        Insert: {
+          id?: string
+          product_id?: string | null
+          name: string
+          quantity: number
+          unit_id: string
+          expiry_date?: string | null
+          notes?: string | null
+          added_by: string
+          created_at?: string
+          updated_at?: string
+        }
+        Update: {
+          id?: string
+          product_id?: string | null
+          name?: string
+          quantity?: number
+          unit_id?: string
+          expiry_date?: string | null
+          notes?: string | null
+          added_by?: string
+          created_at?: string
+          updated_at?: string
+        }
+      }
+      products: {
+        Row: {
+          id: string
+          barcode: string
+          name: string
+          brand: string | null
+          image_url: string | null
+          default_unit_id: string | null
+          cached_at: string
+          created_at: string
+        }
+        Insert: {
+          id?: string
+          barcode: string
+          name: string
+          brand?: string | null
+          image_url?: string | null
+          default_unit_id?: string | null
+          cached_at?: string
+          created_at?: string
+        }
+        Update: {
+          id?: string
+          barcode?: string
+          name?: string
+          brand?: string | null
+          image_url?: string | null
+          default_unit_id?: string | null
+          cached_at?: string
+          created_at?: string
+        }
+      }
+      tags: {
+        Row: {
+          id: string
+          name: string
+          category: 'position' | 'type' | 'custom'
+          icon: string | null
+          color: string | null
+          created_by: string | null
+          created_at: string
+        }
+        Insert: {
+          id?: string
+          name: string
+          category?: 'position' | 'type' | 'custom'
+          icon?: string | null
+          color?: string | null
+          created_by?: string | null
+          created_at?: string
+        }
+        Update: {
+          id?: string
+          name?: string
+          category?: 'position' | 'type' | 'custom'
+          icon?: string | null
+          color?: string | null
+          created_by?: string | null
+          created_at?: string
+        }
+      }
+      units: {
+        Row: {
+          id: string
+          name: string
+          abbreviation: string
+          unit_type: 'weight' | 'volume' | 'count' | 'custom'
+          base_unit_id: string | null
+          conversion_factor: number | null
+          is_default: boolean
+          created_by: string | null
+          created_at: string
+        }
+        Insert: {
+          id?: string
+          name: string
+          abbreviation: string
+          unit_type?: 'weight' | 'volume' | 'count' | 'custom'
+          base_unit_id?: string | null
+          conversion_factor?: number | null
+          is_default?: boolean
+          created_by?: string | null
+          created_at?: string
+        }
+        Update: {
+          id?: string
+          name?: string
+          abbreviation?: string
+          unit_type?: 'weight' | 'volume' | 'count' | 'custom'
+          base_unit_id?: string | null
+          conversion_factor?: number | null
+          is_default?: boolean
+          created_by?: string | null
+          created_at?: string
+        }
+      }
+      item_tags: {
+        Row: {
+          item_id: string
+          tag_id: string
+          created_at: string
+        }
+        Insert: {
+          item_id: string
+          tag_id: string
+          created_at?: string
+        }
+        Update: {
+          item_id?: string
+          tag_id?: string
+          created_at?: string
+        }
+      }
+    }
+    Views: {
+      [_ in never]: never
+    }
+    Functions: {
+      [_ in never]: never
+    }
+    Enums: {
+      tag_category: 'position' | 'type' | 'custom'
+      unit_type: 'weight' | 'volume' | 'count' | 'custom'
+    }
+  }
+}

supabase/migrations/001_initial_schema.sql

@@ -1,282 +0,0 @@
--- Migration: Initial database schema
--- Created: 2026-02-09
--- Issue: #13
--- Description: Creates core tables for Pantry app (inventory, products, tags, units)
-
--- ======================
--- ENUM TYPES
--- ======================
-
-CREATE TYPE tag_category AS ENUM (
-  'position',    -- Location: fridge, freezer, pantry
-  'type',        -- Food type: dairy, meat, vegan
-  'dietary',     -- Diet: gluten-free, vegan, organic
-  'custom'       -- User-defined
-);
-
-CREATE TYPE unit_type AS ENUM (
-  'weight',   -- kg, g, lb, oz
-  'volume',   -- L, mL, cup, tbsp
-  'count',    -- pcs, items (no conversion)
-  'custom'    -- can, jar, bottle (user-defined)
-);
-
--- ======================
--- BASE TABLES (no foreign keys)
--- ======================
-
--- Units: measurement units with conversion support
-CREATE TABLE units (
-  id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
-  
-  -- Core data
-  name TEXT NOT NULL,           -- "kilogram", "liter", "piece"
-  abbreviation TEXT NOT NULL,   -- "kg", "L", "pcs"
-  unit_type unit_type NOT NULL,
-  
-  -- Conversion system
-  base_unit_id UUID REFERENCES units(id),  -- NULL = this is a base unit
-  conversion_factor DECIMAL(20,10),        -- Factor to convert to base unit
-  
-  -- Metadata
-  is_default BOOLEAN DEFAULT false,  -- Shipped with app
-  created_by UUID REFERENCES auth.users(id),  -- NULL = system unit
-  created_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
-  
-  CONSTRAINT unique_unit_abbr UNIQUE (abbreviation, created_by),
-  CONSTRAINT check_conversion_logic CHECK (
-    (base_unit_id IS NULL AND conversion_factor IS NULL) OR 
-    (base_unit_id IS NOT NULL AND conversion_factor IS NOT NULL)
-  )
-);
-
--- Tags: flexible labeling system
-CREATE TABLE tags (
-  id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
-  
-  -- Core data
-  name TEXT NOT NULL,
-  category tag_category NOT NULL DEFAULT 'custom',
-  
-  -- Visual
-  icon TEXT,    -- Emoji or icon name: "🧊", "cheese"
-  color TEXT,   -- Hex color: "#3b82f6"
-  
-  -- Ownership
-  created_by UUID REFERENCES auth.users(id),  -- NULL = system tag
-  created_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
-  
-  CONSTRAINT unique_tag_name UNIQUE (name, created_by)
-);
-
--- ======================
--- MAIN TABLES
--- ======================
-
--- Products: cached product data from Open Food Facts
-CREATE TABLE products (
-  id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
-  
-  -- Open Food Facts data
-  barcode TEXT UNIQUE NOT NULL,
-  name TEXT NOT NULL,
-  brand TEXT,
-  image_url TEXT,
-  image_small_url TEXT,  -- Thumbnail
-  
-  -- Categories from Open Food Facts
-  categories TEXT[],  -- Array: ['dairy', 'milk']
-  
-  -- Nutrition (optional, for future features)
-  nutrition JSONB,  -- Full nutrition data
-  
-  -- Defaults
-  default_unit_id UUID REFERENCES units(id),
-  default_quantity DECIMAL(10,2),  -- E.g., 1L bottle
-  
-  -- Metadata
-  source TEXT DEFAULT 'openfoodfacts',
-  cached_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
-  last_fetched TIMESTAMPTZ,
-  
-  -- Quality score (from Open Food Facts)
-  completeness_score INTEGER CHECK (completeness_score BETWEEN 0 AND 100)
-);
-
--- Inventory Items: actual items in your kitchen right now
-CREATE TABLE inventory_items (
-  id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
-  
-  -- Product reference (nullable for custom items)
-  product_id UUID REFERENCES products(id) ON DELETE SET NULL,
-  
-  -- Core data
-  name TEXT NOT NULL,  -- Product name or custom name
-  quantity DECIMAL(10,2) NOT NULL CHECK (quantity >= 0),
-  unit_id UUID NOT NULL REFERENCES units(id),
-  
-  -- Optional metadata
-  expiry_date DATE,
-  location TEXT,  -- Free text: "top shelf", "door", etc.
-  notes TEXT,
-  
-  -- Audit trail
-  added_by UUID NOT NULL REFERENCES auth.users(id),
-  created_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
-  updated_at TIMESTAMPTZ NOT NULL DEFAULT NOW()
-);
-
--- Item Tags: many-to-many relationship between items and tags
-CREATE TABLE item_tags (
-  item_id UUID NOT NULL REFERENCES inventory_items(id) ON DELETE CASCADE,
-  tag_id UUID NOT NULL REFERENCES tags(id) ON DELETE CASCADE,
-  
-  created_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
-  
-  PRIMARY KEY (item_id, tag_id)
-);
-
--- User Profiles: additional user metadata
-CREATE TABLE user_profiles (
-  id UUID PRIMARY KEY REFERENCES auth.users(id) ON DELETE CASCADE,
-  
-  display_name TEXT,
-  avatar_url TEXT,
-  
-  -- Preferences
-  default_unit_system TEXT DEFAULT 'metric',  -- 'metric' or 'imperial'
-  theme TEXT DEFAULT 'auto',                  -- 'light', 'dark', 'auto'
-  
-  created_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
-  updated_at TIMESTAMPTZ NOT NULL DEFAULT NOW()
-);
-
--- ======================
--- INDEXES
--- ======================
-
--- Units
-CREATE INDEX idx_units_type ON units(unit_type);
-CREATE INDEX idx_units_base ON units(base_unit_id);
-
--- Tags
-CREATE INDEX idx_tags_category ON tags(category);
-CREATE INDEX idx_tags_created_by ON tags(created_by);
-
--- Products
-CREATE UNIQUE INDEX idx_products_barcode ON products(barcode);
-CREATE INDEX idx_products_name ON products USING GIN (to_tsvector('english', name));
-CREATE INDEX idx_products_search ON products 
-  USING GIN (to_tsvector('english', name || ' ' || COALESCE(brand, '')));
-
--- Inventory Items
-CREATE INDEX idx_items_product ON inventory_items(product_id);
-CREATE INDEX idx_items_added_by ON inventory_items(added_by);
-CREATE INDEX idx_items_expiry ON inventory_items(expiry_date) WHERE expiry_date IS NOT NULL;
-
--- Item Tags
-CREATE INDEX idx_item_tags_tag ON item_tags(tag_id);
-CREATE INDEX idx_item_tags_item ON item_tags(item_id);
-
--- ======================
--- FUNCTIONS
--- ======================
-
--- Auto-update timestamp trigger function
-CREATE OR REPLACE FUNCTION update_updated_at()
-RETURNS TRIGGER AS $$
-BEGIN
-  NEW.updated_at = NOW();
-  RETURN NEW;
-END;
-$$ LANGUAGE plpgsql;
-
--- Unit conversion function
-CREATE OR REPLACE FUNCTION convert_unit(
-  quantity DECIMAL,
-  from_unit_id UUID,
-  to_unit_id UUID
-)
-RETURNS DECIMAL AS $$
-DECLARE
-  from_factor DECIMAL;
-  to_factor DECIMAL;
-  from_type unit_type;
-  to_type unit_type;
-  base_quantity DECIMAL;
-BEGIN
-  -- Get unit types and conversion factors
-  SELECT unit_type, 
-         COALESCE(conversion_factor, 1.0) INTO from_type, from_factor
-  FROM units WHERE id = from_unit_id;
-  
-  SELECT unit_type,
-         COALESCE(conversion_factor, 1.0) INTO to_type, to_factor
-  FROM units WHERE id = to_unit_id;
-  
-  -- Check if units are compatible
-  IF from_type != to_type THEN
-    RAISE EXCEPTION 'Cannot convert between % and %', from_type, to_type;
-  END IF;
-  
-  -- Convert to base unit, then to target unit
-  base_quantity := quantity * from_factor;
-  RETURN base_quantity / to_factor;
-END;
-$$ LANGUAGE plpgsql IMMUTABLE;
-
--- Full-text search function for products
-CREATE OR REPLACE FUNCTION search_products(search_query TEXT)
-RETURNS TABLE (
-  id UUID,
-  barcode TEXT,
-  name TEXT,
-  brand TEXT,
-  rank REAL
-) AS $$
-BEGIN
-  RETURN QUERY
-  SELECT 
-    p.id,
-    p.barcode,
-    p.name,
-    p.brand,
-    ts_rank(to_tsvector('english', p.name || ' ' || COALESCE(p.brand, '')), 
-            plainto_tsquery('english', search_query)) AS rank
-  FROM products p
-  WHERE to_tsvector('english', p.name || ' ' || COALESCE(p.brand, '')) 
-        @@ plainto_tsquery('english', search_query)
-  ORDER BY rank DESC
-  LIMIT 20;
-END;
-$$ LANGUAGE plpgsql;
-
--- ======================
--- TRIGGERS
--- ======================
-
--- Auto-update timestamp triggers
-CREATE TRIGGER update_items_updated_at
-  BEFORE UPDATE ON inventory_items
-  FOR EACH ROW
-  EXECUTE FUNCTION update_updated_at();
-
-CREATE TRIGGER update_profiles_updated_at
-  BEFORE UPDATE ON user_profiles
-  FOR EACH ROW
-  EXECUTE FUNCTION update_updated_at();
-
--- ======================
--- COMMENTS
--- ======================
-
-COMMENT ON TABLE inventory_items IS 'Current inventory items in the kitchen';
-COMMENT ON TABLE products IS 'Cached product data from Open Food Facts';
-COMMENT ON TABLE tags IS 'Flexible labeling system for organization';
-COMMENT ON TABLE item_tags IS 'Many-to-many relationship between items and tags';
-COMMENT ON TABLE units IS 'Measurement units with conversion support';
-COMMENT ON TABLE user_profiles IS 'Additional user metadata and preferences';
-
-COMMENT ON FUNCTION update_updated_at() IS 'Automatically updates the updated_at timestamp';
-COMMENT ON FUNCTION convert_unit(DECIMAL, UUID, UUID) IS 'Converts quantity between compatible units';
-COMMENT ON FUNCTION search_products(TEXT) IS 'Full-text search for products by name and brand';

supabase/migrations/002_rls_policies.sql

@@ -1,180 +0,0 @@
--- Migration: Row Level Security Policies
--- Created: 2026-02-09
--- Issue: #14
--- Description: Enables RLS and creates security policies for all tables
-
--- ======================
--- ENABLE RLS
--- ======================
-
-ALTER TABLE inventory_items ENABLE ROW LEVEL SECURITY;
-ALTER TABLE products ENABLE ROW LEVEL SECURITY;
-ALTER TABLE tags ENABLE ROW LEVEL SECURITY;
-ALTER TABLE item_tags ENABLE ROW LEVEL SECURITY;
-ALTER TABLE units ENABLE ROW LEVEL SECURITY;
-ALTER TABLE user_profiles ENABLE ROW LEVEL SECURITY;
-
--- ======================
--- INVENTORY_ITEMS POLICIES
--- ======================
-
--- Everyone can read (shared household inventory)
-CREATE POLICY "inventory_items_select_all" ON inventory_items
-  FOR SELECT
-  USING (true);
-
--- Authenticated users can insert items
-CREATE POLICY "inventory_items_insert_auth" ON inventory_items
-  FOR INSERT
-  WITH CHECK (auth.uid() IS NOT NULL);
-
--- Authenticated users can update any item
-CREATE POLICY "inventory_items_update_auth" ON inventory_items
-  FOR UPDATE
-  USING (auth.uid() IS NOT NULL);
-
--- Authenticated users can delete any item
-CREATE POLICY "inventory_items_delete_auth" ON inventory_items
-  FOR DELETE
-  USING (auth.uid() IS NOT NULL);
-
--- ======================
--- PRODUCTS POLICIES
--- ======================
-
--- Everyone can read cached products
-CREATE POLICY "products_select_all" ON products
-  FOR SELECT
-  USING (true);
-
--- Only service role can write (via Edge Functions)
--- No user-level INSERT/UPDATE/DELETE policies
-
--- ======================
--- TAGS POLICIES
--- ======================
-
--- Everyone can read all tags
-CREATE POLICY "tags_select_all" ON tags
-  FOR SELECT
-  USING (true);
-
--- Authenticated users can create tags
-CREATE POLICY "tags_insert_auth" ON tags
-  FOR INSERT
-  WITH CHECK (auth.uid() IS NOT NULL);
-
--- Users can update their own tags OR system tags (created_by IS NULL)
-CREATE POLICY "tags_update_own" ON tags
-  FOR UPDATE
-  USING (
-    created_by = auth.uid() OR created_by IS NULL
-  );
-
--- Users can only delete their own custom tags
-CREATE POLICY "tags_delete_own" ON tags
-  FOR DELETE
-  USING (created_by = auth.uid());
-
--- ======================
--- ITEM_TAGS POLICIES
--- ======================
-
--- Everyone can read
-CREATE POLICY "item_tags_select_all" ON item_tags
-  FOR SELECT
-  USING (true);
-
--- Authenticated users can add tags to items
-CREATE POLICY "item_tags_insert_auth" ON item_tags
-  FOR INSERT
-  WITH CHECK (auth.uid() IS NOT NULL);
-
--- Authenticated users can remove tags from items
-CREATE POLICY "item_tags_delete_auth" ON item_tags
-  FOR DELETE
-  USING (auth.uid() IS NOT NULL);
-
--- ======================
--- UNITS POLICIES
--- ======================
-
--- Everyone can read all units
-CREATE POLICY "units_select_all" ON units
-  FOR SELECT
-  USING (true);
-
--- Authenticated users can create custom units (not default ones)
-CREATE POLICY "units_insert_auth" ON units
-  FOR INSERT
-  WITH CHECK (
-    auth.uid() IS NOT NULL AND is_default = false
-  );
-
--- Users can update their own custom units only
-CREATE POLICY "units_update_own" ON units
-  FOR UPDATE
-  USING (
-    created_by = auth.uid() AND is_default = false
-  );
-
--- Users can delete their own custom units only
-CREATE POLICY "units_delete_own" ON units
-  FOR DELETE
-  USING (
-    created_by = auth.uid() AND is_default = false
-  );
-
--- ======================
--- USER_PROFILES POLICIES
--- ======================
-
--- Users can read all profiles (for display names, avatars)
-CREATE POLICY "user_profiles_select_all" ON user_profiles
-  FOR SELECT
-  USING (true);
-
--- Users can insert their own profile
-CREATE POLICY "user_profiles_insert_own" ON user_profiles
-  FOR INSERT
-  WITH CHECK (auth.uid() = id);
-
--- Users can update only their own profile
-CREATE POLICY "user_profiles_update_own" ON user_profiles
-  FOR UPDATE
-  USING (auth.uid() = id);
-
--- Users can delete only their own profile
-CREATE POLICY "user_profiles_delete_own" ON user_profiles
-  FOR DELETE
-  USING (auth.uid() = id);
-
--- ======================
--- COMMENTS
--- ======================
-
-COMMENT ON POLICY "inventory_items_select_all" ON inventory_items IS 'Allow all users to view shared household inventory';
-COMMENT ON POLICY "inventory_items_insert_auth" ON inventory_items IS 'Authenticated users can add items';
-COMMENT ON POLICY "inventory_items_update_auth" ON inventory_items IS 'Authenticated users can update any item (shared inventory)';
-COMMENT ON POLICY "inventory_items_delete_auth" ON inventory_items IS 'Authenticated users can delete any item';
-
-COMMENT ON POLICY "products_select_all" ON products IS 'Allow all users to view cached product data';
-
-COMMENT ON POLICY "tags_select_all" ON tags IS 'Allow all users to view tags (system and custom)';
-COMMENT ON POLICY "tags_insert_auth" ON tags IS 'Authenticated users can create custom tags';
-COMMENT ON POLICY "tags_update_own" ON tags IS 'Users can update their own tags or system tags';
-COMMENT ON POLICY "tags_delete_own" ON tags IS 'Users can only delete their own custom tags';
-
-COMMENT ON POLICY "item_tags_select_all" ON item_tags IS 'Allow all users to view item tag associations';
-COMMENT ON POLICY "item_tags_insert_auth" ON item_tags IS 'Authenticated users can tag items';
-COMMENT ON POLICY "item_tags_delete_auth" ON item_tags IS 'Authenticated users can remove tags from items';
-
-COMMENT ON POLICY "units_select_all" ON units IS 'Allow all users to view all units';
-COMMENT ON POLICY "units_insert_auth" ON units IS 'Authenticated users can create custom units';
-COMMENT ON POLICY "units_update_own" ON units IS 'Users can only update their own custom units';
-COMMENT ON POLICY "units_delete_own" ON units IS 'Users can only delete their own custom units';
-
-COMMENT ON POLICY "user_profiles_select_all" ON user_profiles IS 'Allow users to view all profiles for display purposes';
-COMMENT ON POLICY "user_profiles_insert_own" ON user_profiles IS 'Users can create their own profile';
-COMMENT ON POLICY "user_profiles_update_own" ON user_profiles IS 'Users can only update their own profile';
-COMMENT ON POLICY "user_profiles_delete_own" ON user_profiles IS 'Users can only delete their own profile';