gjovanovicst
diff --git a/‎CHANGELOG.md‎
Lines changed: 113 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 113 additions & 0 deletions
diff --git a/‎docs/CODE_FIXES_SUMMARY.md‎
Lines changed: 256 additions & 0 deletions b/‎docs/CODE_FIXES_SUMMARY.md‎
Lines changed: 256 additions & 0 deletions
@@ -0,0 +1,113 @@
+# Changelog
+
+All notable changes to this project will be documented in this file.
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+## [Unreleased]
+
+### Added - Profile Sync on Social Login (2025-11-08)
+
+#### Automatic Profile Synchronization
+- **Profile data now automatically syncs** from social providers on every login
+- System updates both `social_accounts` and `users` tables with latest provider data
+- **Smart update strategy**: Only updates fields that have changed
+- **Non-blocking**: Authentication succeeds even if profile update fails
+- Supports all providers: Google, Facebook, GitHub
+
+#### What Gets Synced
+- Profile picture (avatar/photo URL)
+- Full name, first name, last name
+- Email from provider
+- Locale/language preference
+- Username (GitHub login, etc.)
+- Complete raw provider response (JSONB)
+- OAuth access token
+
+#### Benefits
+- Users see updated profile pictures immediately after changing them on social platforms
+- Name changes on social accounts automatically reflected in app
+- No manual sync or refresh needed
+- Data stays current with social provider
+
+#### Repository Enhancement
+- Added `UpdateSocialAccount()` method to social repository
+- Enables full social account record updates via GORM
+
+#### Profile Endpoint Enhancement
+- Updated `UserResponse` DTO to include all new profile fields
+- Added `SocialAccountResponse` DTO for social account data
+- Modified `GetUserByID` repository to preload social accounts
+- Enhanced `GetProfile` handler to return complete user profile with social accounts
+- Profile endpoint now returns: name, first_name, last_name, profile_picture, locale, social_accounts
+- Regenerated Swagger documentation to reflect new profile structure
+
+### Added - Social Login Data Enhancement (2025-11-08)
+
+#### User Model Enhancements
+- Added `Name` field to store full name from social login or user input
+- Added `FirstName` field for first name from social login
+- Added `LastName` field for last name from social login
+- Added `ProfilePicture` field to store profile picture URL from social providers
+- Added `Locale` field for user's language/locale preference
+
+#### Social Account Model Enhancements
+- Added `Email` field to store email from social provider
+- Added `Name` field to store name from social provider
+- Added `FirstName` field for first name from social provider
+- Added `LastName` field for last name from social provider
+- Added `ProfilePicture` field for profile picture URL from social provider
+- Added `Username` field for username/login from providers (e.g., GitHub login)
+- Added `Locale` field for locale from social provider
+- Added `RawData` JSONB field to store complete raw JSON response from provider
+
+#### Service Layer Enhancements
+- Added `UpdateUser()` method to user repository for updating user profile data
+- Enhanced Google login handler to capture: email, verified_email, name, given_name, family_name, picture, locale
+- Enhanced Facebook login handler to capture: email, name, first_name, last_name, picture (large), locale
+- Enhanced GitHub login handler to capture: email, name, login, avatar_url, bio, location, company
+- Implemented smart profile update logic: only update user fields if currently empty when linking social accounts
+- Store complete provider response in `RawData` field for all providers
+
+#### API Changes
+- Profile endpoint (`GET /profile`) now returns additional fields: name, first_name, last_name, profile_picture, locale
+- Social account objects now include all new fields in responses
+- No breaking changes - all new fields are optional and nullable
+
+### Changed
+- Modified social login data extraction to request extended fields from providers
+- Updated Facebook Graph API call to request: `id,name,email,first_name,last_name,picture.type(large),locale`
+- Enhanced social account linking to preserve and enrich existing user profile data
+
+### Technical Details
+- **Migration Method:** GORM AutoMigrate (automatic on application startup)
+- **Database Impact:** Adds 5 columns to `users` table, 8 columns to `social_accounts` table
+- **Backward Compatibility:** Fully backward compatible - all new fields are nullable
+- **Files Modified:**
+  - `pkg/models/user.go` - User model with new profile fields
+  - `pkg/models/social_account.go` - Social account model with extended data fields
+  - `internal/social/service.go` - Enhanced provider handlers for Google, Facebook, GitHub
+  - `internal/user/repository.go` - Added UpdateUser method
+  - `docs/migrations/MIGRATION_SOCIAL_LOGIN_DATA.md` - Migration documentation
+
+### Documentation
+- Added comprehensive migration documentation in `docs/migrations/MIGRATION_SOCIAL_LOGIN_DATA.md`
+- Documents data flow changes, database schema updates, and testing recommendations
+- Includes security considerations and rollback plan
+
+---
+
+## [1.0.0] - Previous Release
+
+### Features
+- User registration and authentication
+- Email verification
+- Password reset functionality
+- Two-factor authentication (TOTP)
+- Social login integration (Google, Facebook, GitHub)
+- JWT-based authentication (access & refresh tokens)
+- Activity logging
+- Redis-based session management
+- Comprehensive API documentation with Swagger
+
@@ -0,0 +1,256 @@
+# Code Fixes - Profile Endpoint Returns All Data
+
+## ✅ Issues Found and Fixed
+
+### Issue 1: DTO Missing New Fields ❌
+**File:** `pkg/dto/auth.go`
+
+**Problem:**
+```go
+type UserResponse struct {
+    ID            string `json:"id"`
+    Email         string `json:"email"`
+    EmailVerified bool   `json:"email_verified"`
+    TwoFAEnabled  bool   `json:"two_fa_enabled"`
+    CreatedAt     string `json:"created_at"`
+    UpdatedAt     string `json:"updated_at"`
+    // Missing: name, first_name, last_name, profile_picture, locale, social_accounts
+}
+```
+
+**Fixed:** ✅
+```go
+type UserResponse struct {
+    ID             string                  `json:"id"`
+    Email          string                  `json:"email"`
+    EmailVerified  bool                    `json:"email_verified"`
+    Name           string                  `json:"name,omitempty"`           // ✨ NEW
+    FirstName      string                  `json:"first_name,omitempty"`     // ✨ NEW
+    LastName       string                  `json:"last_name,omitempty"`      // ✨ NEW
+    ProfilePicture string                  `json:"profile_picture,omitempty"` // ✨ NEW
+    Locale         string                  `json:"locale,omitempty"`         // ✨ NEW
+    TwoFAEnabled   bool                    `json:"two_fa_enabled"`
+    CreatedAt      string                  `json:"created_at"`
+    UpdatedAt      string                  `json:"updated_at"`
+    SocialAccounts []SocialAccountResponse `json:"social_accounts,omitempty"` // ✨ NEW
+}
+
+// ✨ NEW: Social account DTO
+type SocialAccountResponse struct {
+    ID             string `json:"id"`
+    Provider       string `json:"provider"`
+    ProviderUserID string `json:"provider_user_id"`
+    Email          string `json:"email,omitempty"`
+    Name           string `json:"name,omitempty"`
+    FirstName      string `json:"first_name,omitempty"`
+    LastName       string `json:"last_name,omitempty"`
+    ProfilePicture string `json:"profile_picture,omitempty"`
+    Username       string `json:"username,omitempty"`
+    Locale         string `json:"locale,omitempty"`
+    CreatedAt      string `json:"created_at"`
+    UpdatedAt      string `json:"updated_at"`
+}
+```
+
+---
+
+### Issue 2: Repository Not Loading Social Accounts ❌
+**File:** `internal/user/repository.go`
+
+**Problem:**
+```go
+func (r *Repository) GetUserByID(id string) (*models.User, error) {
+    var user models.User
+    err := r.DB.Where("id = ?", id).First(&user).Error
+    return &user, err
+    // Social accounts not loaded!
+}
+```
+
+**Fixed:** ✅
+```go
+func (r *Repository) GetUserByID(id string) (*models.User, error) {
+    var user models.User
+    err := r.DB.Preload("SocialAccounts").Where("id = ?", id).First(&user).Error // ✨ Added Preload
+    return &user, err
+}
+```
+
+---
+
+### Issue 3: Handler Not Returning New Fields ❌
+**File:** `internal/user/handler.go`
+
+**Problem:**
+```go
+c.JSON(http.StatusOK, dto.UserResponse{
+    ID:            user.ID.String(),
+    Email:         user.Email,
+    EmailVerified: user.EmailVerified,
+    TwoFAEnabled:  user.TwoFAEnabled,
+    CreatedAt:     user.CreatedAt.Format("2006-01-02T15:04:05Z07:00"),
+    UpdatedAt:     user.UpdatedAt.Format("2006-01-02T15:04:05Z07:00"),
+    // Missing all new fields!
+})
+```
+
+**Fixed:** ✅
+```go
+// Convert social accounts to DTO
+socialAccounts := make([]dto.SocialAccountResponse, len(user.SocialAccounts))
+for i, sa := range user.SocialAccounts {
+    socialAccounts[i] = dto.SocialAccountResponse{
+        ID:             sa.ID.String(),
+        Provider:       sa.Provider,
+        ProviderUserID: sa.ProviderUserID,
+        Email:          sa.Email,
+        Name:           sa.Name,
+        FirstName:      sa.FirstName,
+        LastName:       sa.LastName,
+        ProfilePicture: sa.ProfilePicture,
+        Username:       sa.Username,
+        Locale:         sa.Locale,
+        CreatedAt:      sa.CreatedAt.Format("2006-01-02T15:04:05Z07:00"),
+        UpdatedAt:      sa.UpdatedAt.Format("2006-01-02T15:04:05Z07:00"),
+    }
+}
+
+c.JSON(http.StatusOK, dto.UserResponse{
+    ID:             user.ID.String(),
+    Email:          user.Email,
+    EmailVerified:  user.EmailVerified,
+    Name:           user.Name,                    // ✨ NEW
+    FirstName:      user.FirstName,               // ✨ NEW
+    LastName:       user.LastName,                // ✨ NEW
+    ProfilePicture: user.ProfilePicture,          // ✨ NEW
+    Locale:         user.Locale,                  // ✨ NEW
+    TwoFAEnabled:   user.TwoFAEnabled,
+    CreatedAt:      user.CreatedAt.Format("2006-01-02T15:04:05Z07:00"),
+    UpdatedAt:      user.UpdatedAt.Format("2006-01-02T15:04:05Z07:00"),
+    SocialAccounts: socialAccounts,               // ✨ NEW
+})
+```
+
+---
+
+## 🎯 Summary of Changes
+
+| File | Change | Status |
+|------|--------|--------|
+| `pkg/dto/auth.go` | Added `UserResponse` fields: name, first_name, last_name, profile_picture, locale, social_accounts | ✅ |
+| `pkg/dto/auth.go` | Created new `SocialAccountResponse` DTO | ✅ |
+| `internal/user/repository.go` | Added `.Preload("SocialAccounts")` to `GetUserByID()` | ✅ |
+| `internal/user/handler.go` | Updated `GetProfile()` to return all new fields and social accounts | ✅ |
+
+---
+
+## 📊 Before vs After
+
+### Before (Only 6 Fields)
+```json
+{
+  "id": "a65aec73-3c91-450c-b51f-a49391d6c3ba",
+  "email": "[email protected]",
+  "email_verified": true,
+  "two_fa_enabled": true,
+  "created_at": "2025-07-31T22:34:10Z",
+  "updated_at": "2025-11-08T17:35:55Z"
+}
+```
+
+### After (Complete Profile with Social Accounts) ✨
+```json
+{
+  "id": "a65aec73-3c91-450c-b51f-a49391d6c3ba",
+  "email": "[email protected]",
+  "email_verified": true,
+  "name": "Goran Jovanovic",
+  "first_name": "Goran",
+  "last_name": "Jovanovic",
+  "profile_picture": "https://lh3.googleusercontent.com/...",
+  "locale": "en",
+  "two_fa_enabled": true,
+  "created_at": "2025-07-31T22:34:10Z",
+  "updated_at": "2025-11-08T17:35:55Z",
+  "social_accounts": [
+    {
+      "id": "...",
+      "provider": "google",
+      "provider_user_id": "...",
+      "email": "[email protected]",
+      "name": "Goran Jovanovic",
+      "first_name": "Goran",
+      "last_name": "Jovanovic",
+      "profile_picture": "https://lh3.googleusercontent.com/...",
+      "locale": "en",
+      "created_at": "2025-11-08T17:35:55Z",
+      "updated_at": "2025-11-08T17:35:55Z"
+    }
+  ]
+}
+```
+
+---
+
+## ✅ Build Verification
+
+```bash
+✅ No linter errors
+✅ Compilation successful
+✅ Ready to deploy
+```
+
+---
+
+## 🚀 Next Steps
+
+### 1. Restart Application
+```bash
+cd /c/work/AI/Cursor/auth_api/v1.0.0
+
+# Stop old instance (Ctrl+C)
+
+# Start with new code
+./auth_api.exe
+
+# Wait for migration to complete
+```
+
+### 2. Login Again (To Populate Data if Needed)
+```
+Visit: http://localhost:8080/auth/google/login
+```
+
+### 3. Test Profile Endpoint
+```bash
+curl -H "Authorization: Bearer YOUR_TOKEN" \
+     http://localhost:8080/profile
+```
+
+**Expected:** Full profile with all fields! ✅
+
+---
+
+## 📝 Notes
+
+- **`omitempty` tags**: Fields with empty values won't appear in JSON response
+- **Social Accounts**: Array will be empty `[]` if no social logins linked
+- **Preload**: GORM now loads social accounts in one query (efficient)
+- **DTO Conversion**: Social accounts converted from model to DTO format
+- **No Breaking Changes**: Existing clients still work (new fields optional)
+
+---
+
+## 🎉 Result
+
+**Profile endpoint now returns complete user data:**
+- ✅ All user fields (name, profile picture, locale, etc.)
+- ✅ All linked social accounts with their data
+- ✅ Clean DTO structure
+- ✅ Efficient database query with preload
+- ✅ No sensitive data exposed (tokens hidden)
+
+---
+
+**The code is now complete and correct!** 🎯
+