feat(website): sync user with backend on login, use internal user ID

[fhennig]

resolves #1190

Summary

• On GitHub login, mapProfileToUser calls POST /users/sync to upsert the user in the backend and stores the returned internal ID as gsUserId in the better-auth session (stateless JWE cookie)
• If the sync fails, login is aborted (no silent fallback)
• Replaces the use of the GitHub ID for ownership checks — collections and subscriptions now use the internal numeric user ID throughout
• Owner name is resolved via GET /users/{id} and displayed on the collection detail page

Changes

Auth & middleware

• auth.ts: mapProfileToUser syncs user with backend, stores gsUserId (number); throws on failure to abort login
• authMiddleware.ts: reads gsUserId from session into Astro.locals
• backendProxy.ts: forwards gsUserId as userId query param

Types & API

• types/Collection.ts: ownedBy changed from string to number to match backend Long
• types/PublicUser.ts: new Zod schema for GET /users/{id} response
• backendService.ts: adds getUser() to resolve owner names server-side
• pages/api/users/[id].ts: new proxy route for public user lookup

Collection pages

• Detail page: fetches and displays owner name (falls back to numeric ID on error); ownerName is always a string
• Edit page: uses gsUserId for ownership check

Tests

• Unit/browser specs: fix ownedBy from string to number in fixtures
• E2E tests: sync E2E user via POST /users/sync in beforeAll to obtain internal ID for collection ownership

Notes

This branch depends on the backend changes in feat/user-table (users table, POST /users/sync, GET /users/{id} endpoints).

🤖 Generated with Claude Code

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
dashboards	Ready	Preview, Comment	May 8, 2026 5:37pm