✨ Authors and admins can now update/remove translations

Zeta611 · Zeta611 · commit 50b128ead6fa · 2025-09-06T20:55:35.000+09:00
diff --git a/app/actions/remove-translation.ts b/app/actions/remove-translation.ts
@@ -0,0 +1,39 @@
+"use server";
+
+import { MUTATIONS } from "@/lib/supabase/repository";
+import { createClient } from "@/lib/supabase/server";
+
+export type RemoveTranslationState =
+  | { ok: false; error: string }
+  | { ok: true; error: null };
+
+export type RemoveTranslationAction = (
+  prevState: RemoveTranslationState,
+  formData: FormData,
+) => Promise<RemoveTranslationState>;
+
+export async function removeTranslation(
+  translationId: string,
+  _prevState: RemoveTranslationState,
+  _formData: FormData,
+): Promise<RemoveTranslationState> {
+  const supabase = await createClient();
+  const { error } = await MUTATIONS.removeTranslation(supabase, translationId);
+
+  if (error) {
+    switch (error.code) {
+      case "28000":
+        return { ok: false, error: "로그인이 필요해요" };
+      case "22023":
+        return { ok: false, error: "잘못된 요청이에요" };
+      case "NO_TRANSLATION":
+        return { ok: false, error: "번역을 찾을 수 없어요" };
+      case "42501":
+        return { ok: false, error: "이 번역을 지울 권한이 없어요" };
+      default:
+        return { ok: false, error: "번역을 지우는 중 문제가 생겼어요" };
+    }
+  }
+
+  return { ok: true, error: null };
+}
diff --git a/app/actions/update-translation.ts b/app/actions/update-translation.ts
@@ -0,0 +1,48 @@
+"use server";
+
+import { MUTATIONS } from "@/lib/supabase/repository";
+import { createClient } from "@/lib/supabase/server";
+
+export type UpdateTranslationState =
+  | { ok: false; error: string }
+  | { ok: true; error: null };
+
+export type UpdateTranslationAction = (
+  prevState: UpdateTranslationState,
+  formData: FormData,
+) => Promise<UpdateTranslationState>;
+
+export async function updateTranslation(
+  translationId: string,
+  _prevState: UpdateTranslationState,
+  formData: FormData,
+): Promise<UpdateTranslationState> {
+  const name = (formData.get("name") as string | null)?.trim();
+  if (!name) return { ok: false, error: "번역을 입력해주세요" };
+
+  const supabase = await createClient();
+  const { error } = await MUTATIONS.updateTranslation(
+    supabase,
+    translationId,
+    name,
+  );
+
+  if (error) {
+    switch (error.code) {
+      case "28000":
+        return { ok: false, error: "로그인이 필요해요" };
+      case "22023":
+        return { ok: false, error: "올바른 값을 입력해주세요" };
+      case "NO_TRANSLATION":
+        return { ok: false, error: "번역을 찾을 수 없어요" };
+      case "23505":
+        return { ok: false, error: "이미 존재하는 번역이에요" };
+      case "42501":
+        return { ok: false, error: "이 번역을 고칠 권한이 없어요" };
+      default:
+        return { ok: false, error: "번역을 고치는 중 문제가 생겼어요" };
+    }
+  }
+
+  return { ok: true, error: null };
+}
diff --git a/app/jargon/[slug]/page.tsx b/app/jargon/[slug]/page.tsx
@@ -6,6 +6,7 @@ import SuggestTranslationDialog from "@/components/dialogs/suggest-translation-d
 import ShareButton from "@/components/share-button";
 import { Comment } from "@/types/comment";
 import JargonActions from "@/components/jargon/jargon-actions";
+import TranslationActions from "@/components/jargon/translation-actions";
 
 export default async function JargonDetailPage({
   params,
@@ -67,8 +68,16 @@ export default async function JargonDetailPage({
             <div className="text-foreground text-base">
               <ul className="list-disc pl-5">
                 {jargon.translations.map((tran) => (
-                  <li key={tran.name} className="text-foreground">
-                    {tran.name}
+                  <li
+                    key={tran.id}
+                    className="text-foreground flex items-center gap-2"
+                  >
+                    <span>{tran.name}</span>
+                    <TranslationActions
+                      id={tran.id}
+                      authorId={tran.author_id}
+                      name={tran.name}
+                    />
                   </li>
                 ))}
               </ul>
diff --git a/components/jargon/translation-actions.tsx b/components/jargon/translation-actions.tsx
@@ -0,0 +1,137 @@
+"use client";
+
+import { useActionState, useEffect } from "react";
+import Form from "next/form";
+import { useQueryClient } from "@tanstack/react-query";
+import { useUserQuery } from "@/hooks/use-user-query";
+import { Button } from "@/components/ui/button";
+import {
+  Dialog,
+  DialogClose,
+  DialogContent,
+  DialogDescription,
+  DialogFooter,
+  DialogHeader,
+  DialogTitle,
+  DialogTrigger,
+} from "@/components/ui/dialog";
+import {
+  AlertDialog,
+  AlertDialogAction,
+  AlertDialogCancel,
+  AlertDialogContent,
+  AlertDialogDescription,
+  AlertDialogFooter,
+  AlertDialogHeader,
+  AlertDialogTitle,
+  AlertDialogTrigger,
+} from "@/components/ui/alert-dialog";
+import { Input } from "@/components/ui/input";
+import {
+  updateTranslation,
+  type UpdateTranslationAction,
+} from "@/app/actions/update-translation";
+import {
+  removeTranslation,
+  type RemoveTranslationAction,
+} from "@/app/actions/remove-translation";
+
+export default function TranslationActions({
+  id,
+  authorId,
+  name,
+}: {
+  id: string;
+  authorId: string;
+  name: string;
+}) {
+  const queryClient = useQueryClient();
+
+  const { data: user } = useUserQuery();
+  const isAdmin = user?.app_metadata?.userrole === "admin";
+  const canManage = !!user && (user.id === authorId || isAdmin);
+
+  const [updateState, updateAction] = useActionState(
+    updateTranslation.bind(null, id) satisfies UpdateTranslationAction,
+    { ok: false, error: "" },
+  );
+  const [removeState, removeAction] = useActionState(
+    removeTranslation.bind(null, id) satisfies RemoveTranslationAction,
+    { ok: false, error: "" },
+  );
+
+  useEffect(() => {
+    if (updateState.ok || removeState.ok) {
+      queryClient.invalidateQueries({ queryKey: ["translations"] });
+      window.location.reload();
+    }
+  }, [updateState.ok, removeState.ok, queryClient]);
+
+  if (!canManage) return null;
+
+  return (
+    <div className="flex items-center gap-1">
+      <Dialog>
+        <DialogTrigger asChild>
+          <Button type="button" variant="ghost" className="h-6 px-2.5 text-xs">
+            고치기
+          </Button>
+        </DialogTrigger>
+        <DialogContent className="sm:max-w-[420px]">
+          <DialogHeader>
+            <DialogTitle>번역 고치기</DialogTitle>
+            <DialogDescription>새로운 번역을 입력해 주세요.</DialogDescription>
+          </DialogHeader>
+          <Form action={updateAction} className="grid gap-3">
+            <Input name="name" defaultValue={name} autoFocus />
+            {updateState?.error && (
+              <span className="text-xs text-red-600">{updateState.error}</span>
+            )}
+            <DialogFooter>
+              <DialogClose asChild>
+                <Button type="button" variant="outline">
+                  닫기
+                </Button>
+              </DialogClose>
+              <Button type="submit">저장</Button>
+            </DialogFooter>
+          </Form>
+        </DialogContent>
+      </Dialog>
+
+      <AlertDialog>
+        <AlertDialogTrigger asChild>
+          <Button
+            type="button"
+            variant="ghost"
+            className="h-6 px-2.5 text-xs text-red-600 hover:text-red-700"
+          >
+            지우기
+          </Button>
+        </AlertDialogTrigger>
+        <AlertDialogContent>
+          <AlertDialogHeader>
+            <AlertDialogTitle>정말로 번역을 지울까요?</AlertDialogTitle>
+            <AlertDialogDescription>
+              이 작업은 되돌릴 수 없어요. 연결된 댓글의 표기도 함께 사라져요.
+            </AlertDialogDescription>
+          </AlertDialogHeader>
+          {removeState?.error && (
+            <span className="text-xs text-red-600">{removeState.error}</span>
+          )}
+          <AlertDialogFooter>
+            <AlertDialogCancel>닫기</AlertDialogCancel>
+            <Form action={removeAction}>
+              <AlertDialogAction
+                type="submit"
+                className="bg-red-600 hover:bg-red-700"
+              >
+                지우기
+              </AlertDialogAction>
+            </Form>
+          </AlertDialogFooter>
+        </AlertDialogContent>
+      </AlertDialog>
+    </div>
+  );
+}
diff --git a/lib/supabase/repository.ts b/lib/supabase/repository.ts
@@ -35,7 +35,7 @@ export const QUERIES = {
     return supabase
       .from("jargon")
       .select(
-        "id, name, slug, created_at, author_id, translations:translation(name), categories:jargon_category(category:category(acronym))",
+        "id, name, slug, created_at, author_id, translations:translation(id, name, author_id), categories:jargon_category(category:category(acronym))",
       )
       .eq("slug", slug)
       .limit(1)
@@ -227,4 +227,24 @@ export const MUTATIONS = {
   ) {
     return supabase.rpc("remove_jargon", { p_jargon_id: jargonId });
   },
+
+  updateTranslation: function (
+    supabase: SupabaseClient<Database>,
+    translationId: string,
+    name: string,
+  ) {
+    return (supabase as any).rpc("update_translation", {
+      p_translation_id: translationId,
+      p_name: name,
+    });
+  },
+
+  removeTranslation: function (
+    supabase: SupabaseClient<Database>,
+    translationId: string,
+  ) {
+    return (supabase as any).rpc("remove_translation", {
+      p_translation_id: translationId,
+    });
+  },
 };
diff --git a/supabase/migrations/20250828064500_translation_admin_author_update_remove.sql b/supabase/migrations/20250828064500_translation_admin_author_update_remove.sql
@@ -0,0 +1,97 @@
+CREATE OR REPLACE FUNCTION public.update_translation(
+  p_translation_id uuid,
+  p_name text
+) RETURNS boolean
+    LANGUAGE plpgsql SECURITY DEFINER
+    SET search_path TO 'public'
+AS $$
+declare
+  v_actor_id uuid := auth.uid();
+  v_author_id uuid;
+  v_is_admin boolean := coalesce(get_my_claim('userrole')::text, '') = '"admin"';
+begin
+  -- Auth check
+  if v_actor_id is null then
+    raise exception 'Not authenticated' using errcode = '28000';
+  end if;
+
+  -- Input validation
+  if p_translation_id is null then
+    raise exception 'Translation ID is required' using errcode = '22023';
+  end if;
+
+  if p_name is null or trim(p_name) = '' then
+    raise exception 'Name is required' using errcode = '22023';
+  end if;
+
+  -- Load author
+  select author_id into v_author_id from public.translation where id = p_translation_id;
+  if not found then
+    raise exception 'Translation not found' using errcode = 'NO_TRANSLATION';
+  end if;
+
+  -- Authorization: author or admin
+  if v_actor_id <> v_author_id and not v_is_admin then
+    raise exception 'Not authorized to update this translation' using errcode = '42501';
+  end if;
+
+  begin
+    update public.translation
+       set name = trim(p_name),
+           updated_at = now()
+     where id = p_translation_id;
+  exception
+    when unique_violation then
+      -- Surface a consistent error code for duplicates
+      raise exception using errcode = '23505', message = 'Translation already exists';
+  end;
+
+  return true;
+end;
+$$;
+
+CREATE OR REPLACE FUNCTION public.remove_translation(p_translation_id uuid) RETURNS boolean
+    LANGUAGE plpgsql SECURITY DEFINER
+    SET search_path TO 'public'
+AS $$
+declare
+  v_actor_id uuid := auth.uid();
+  v_author_id uuid;
+  v_is_admin boolean := coalesce(get_my_claim('userrole')::text, '') = '"admin"';
+begin
+  -- Auth check
+  if v_actor_id is null then
+    raise exception 'Not authenticated' using errcode = '28000';
+  end if;
+
+  -- Input validation
+  if p_translation_id is null then
+    raise exception 'Translation ID is required' using errcode = '22023';
+  end if;
+
+  -- Load author
+  select author_id into v_author_id from public.translation where id = p_translation_id;
+  if not found then
+    raise exception 'Translation not found' using errcode = 'NO_TRANSLATION';
+  end if;
+
+  -- Authorization: author or admin
+  if v_actor_id <> v_author_id and not v_is_admin then
+    raise exception 'Not authorized to remove this translation' using errcode = '42501';
+  end if;
+
+  delete from public.translation where id = p_translation_id;
+
+  return true;
+end;
+$$;
+
+GRANT ALL ON FUNCTION public.update_translation(p_translation_id uuid, p_name text) TO anon;
+GRANT ALL ON FUNCTION public.update_translation(p_translation_id uuid, p_name text) TO authenticated;
+GRANT ALL ON FUNCTION public.update_translation(p_translation_id uuid, p_name text) TO service_role;
+
+GRANT ALL ON FUNCTION public.remove_translation(p_translation_id uuid) TO anon;
+GRANT ALL ON FUNCTION public.remove_translation(p_translation_id uuid) TO authenticated;
+GRANT ALL ON FUNCTION public.remove_translation(p_translation_id uuid) TO service_role;
+
+NOTIFY pgrst, 'reload schema';
