From b8f367e8ab5e8a276b4ba8603fac365bd2d02d28 Mon Sep 17 00:00:00 2001
From: "Builder.io" <builder-bot@builder.io>
Date: Tue, 11 Nov 2025 22:08:14 +0000
Subject: [PATCH] Add email linking system for account unification

cgen-2b636a35c5ec4e31a77cc4b25df383f9
---
 .../migrations/20250206_add_email_linking.sql | 73 +++++++++++++++++++
 1 file changed, 73 insertions(+)
 create mode 100644 supabase/migrations/20250206_add_email_linking.sql

diff --git a/supabase/migrations/20250206_add_email_linking.sql b/supabase/migrations/20250206_add_email_linking.sql
new file mode 100644
index 00000000..7334bd45
--- /dev/null
+++ b/supabase/migrations/20250206_add_email_linking.sql
@@ -0,0 +1,73 @@
+-- Create user_email_links table for linking multiple emails to single account
+CREATE TABLE IF NOT EXISTS user_email_links (
+  id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+  user_id UUID NOT NULL REFERENCES auth.users(id) ON DELETE CASCADE,
+  email TEXT NOT NULL UNIQUE,
+  is_primary BOOLEAN DEFAULT FALSE,
+  verified_at TIMESTAMPTZ,
+  linked_at TIMESTAMPTZ DEFAULT NOW(),
+  created_at TIMESTAMPTZ DEFAULT NOW(),
+  updated_at TIMESTAMPTZ DEFAULT NOW()
+);
+
+-- Create indexes for fast lookup
+CREATE INDEX idx_user_email_links_user_id ON user_email_links(user_id);
+CREATE INDEX idx_user_email_links_email ON user_email_links(email);
+CREATE INDEX idx_user_email_links_primary ON user_email_links(user_id, is_primary);
+
+-- Enable RLS
+ALTER TABLE user_email_links ENABLE ROW LEVEL SECURITY;
+
+-- RLS: Users can view their own linked emails
+CREATE POLICY "Users can view own email links"
+  ON user_email_links
+  FOR SELECT
+  USING (
+    auth.uid() = user_id
+    OR auth.role() = 'authenticated' AND auth.jwt()->>'email' IN (
+      SELECT email FROM user_email_links WHERE user_id = auth.uid()
+    )
+  );
+
+-- RLS: Service role can do anything (for backend operations)
+CREATE POLICY "Service role full access"
+  ON user_email_links
+  FOR ALL
+  USING (auth.role() = 'service_role')
+  WITH CHECK (auth.role() = 'service_role');
+
+-- Create a function to resolve linked emails to primary user
+CREATE OR REPLACE FUNCTION get_primary_user_by_email(email_input TEXT)
+RETURNS UUID AS $$
+BEGIN
+  RETURN (
+    SELECT user_id
+    FROM user_email_links
+    WHERE LOWER(email) = LOWER(email_input)
+    LIMIT 1
+  );
+END;
+$$ LANGUAGE plpgsql STABLE;
+
+-- Trigger to update updated_at
+CREATE OR REPLACE FUNCTION update_user_email_links_timestamp()
+RETURNS TRIGGER AS $$
+BEGIN
+  NEW.updated_at = NOW();
+  RETURN NEW;
+END;
+$$ LANGUAGE plpgsql;
+
+CREATE TRIGGER update_user_email_links_updated_at
+  BEFORE UPDATE ON user_email_links
+  FOR EACH ROW
+  EXECUTE FUNCTION update_user_email_links_timestamp();
+
+-- Add flag to user_profiles to mark dev accounts
+ALTER TABLE user_profiles
+ADD COLUMN IF NOT EXISTS is_dev_account BOOLEAN DEFAULT FALSE,
+ADD COLUMN IF NOT EXISTS primary_email TEXT;
+
+-- Create index for dev account lookup
+CREATE INDEX IF NOT EXISTS idx_user_profiles_is_dev_account ON user_profiles(is_dev_account);
+CREATE INDEX IF NOT EXISTS idx_user_profiles_primary_email ON user_profiles(primary_email);