From 83a981cabc8446cceff493d2d09e3700924fc442 Mon Sep 17 00:00:00 2001
From: Andrei <andrei@cloudz.ro>
Date: Sun, 28 Sep 2025 20:22:57 +0000
Subject: [PATCH] Require user authentication for AI chat functionality
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- Update chat API to require valid authentication tokens for all requests
- Add authentication requirement screens to both chat components
- Show "Create Account / Sign In" prompts for unauthenticated users
- Hide chat input and functionality until user is logged in
- Return 401 errors with clear messages when authentication is missing
- Maintain bilingual support (Romanian/English) for auth prompts

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>
---
 app/api/chat/route.ts              |  43 ++++++----
 components/chat/chat-interface.tsx |  95 +++++++++++++++------
 components/chat/floating-chat.tsx  | 127 ++++++++++++++++++++---------
 3 files changed, 182 insertions(+), 83 deletions(-)

diff --git a/app/api/chat/route.ts b/app/api/chat/route.ts
index 66604af..dedc796 100644
--- a/app/api/chat/route.ts
+++ b/app/api/chat/route.ts
@@ -26,24 +26,35 @@ export async function POST(request: Request) {
     const body = await request.json()
     const { message, conversationId, locale, history } = chatRequestSchema.parse(body)
 
-    // Try to get user from authentication (optional for backward compatibility)
+    // Require authentication for chat functionality
     let userId: string | null = null
     const authHeader = request.headers.get('authorization')
-    console.log('Chat API - authHeader present:', !!authHeader)
-    if (authHeader?.startsWith('Bearer ')) {
-      try {
-        const token = authHeader.substring(7)
-        console.log('Chat API - token extracted, length:', token.length)
-        const payload = await verifyToken(token)
-        console.log('Chat API - token payload:', payload)
-        userId = payload.userId
-        console.log('Chat API - userId extracted from token:', userId)
-      } catch (error) {
-        // Continue without authentication for backward compatibility
-        console.log('Chat API - authentication failed:', (error as any)?.message || error)
-      }
-    } else {
-      console.log('Chat API - no valid auth header')
+
+    if (!authHeader?.startsWith('Bearer ')) {
+      return NextResponse.json(
+        {
+          success: false,
+          error: 'Authentication required to use chat functionality',
+          code: 'AUTH_REQUIRED'
+        },
+        { status: 401 }
+      )
+    }
+
+    try {
+      const token = authHeader.substring(7)
+      const payload = await verifyToken(token)
+      userId = payload.userId
+      console.log('Chat API - authenticated user:', userId)
+    } catch (error) {
+      return NextResponse.json(
+        {
+          success: false,
+          error: 'Invalid or expired authentication token',
+          code: 'AUTH_INVALID'
+        },
+        { status: 401 }
+      )
     }
 
     // Handle conversation logic
diff --git a/components/chat/chat-interface.tsx b/components/chat/chat-interface.tsx
index b56ad01..8a769f9 100644
--- a/components/chat/chat-interface.tsx
+++ b/components/chat/chat-interface.tsx
@@ -1,13 +1,14 @@
 'use client'
 
 import { useState, useRef, useEffect } from 'react'
-import { Send } from 'lucide-react'
+import { Send, User } from 'lucide-react'
 import ReactMarkdown from 'react-markdown'
 
 export function ChatInterface() {
   const [messages, setMessages] = useState<Array<{ role: string; content: string }>>([])
   const [input, setInput] = useState('')
   const [loading, setLoading] = useState(false)
+  const [isAuthenticated, setIsAuthenticated] = useState(false)
   const messagesEndRef = useRef<HTMLDivElement>(null)
 
   const scrollToBottom = () => {
@@ -16,6 +17,24 @@ export function ChatInterface() {
 
   useEffect(scrollToBottom, [messages])
 
+  // Check authentication status on mount
+  useEffect(() => {
+    const checkAuth = async () => {
+      try {
+        const token = localStorage.getItem('authToken')
+        if (token) {
+          const response = await fetch('/api/auth/me', {
+            headers: { 'Authorization': `Bearer ${token}` }
+          })
+          setIsAuthenticated(response.ok)
+        }
+      } catch (error) {
+        setIsAuthenticated(false)
+      }
+    }
+    checkAuth()
+  }, [])
+
   const handleSubmit = async (e: React.FormEvent) => {
     e.preventDefault()
     if (!input.trim() || loading) return
@@ -64,14 +83,32 @@ export function ChatInterface() {
       </div>
 
       <div className="flex-1 overflow-y-auto p-4 space-y-4">
-        {messages.length === 0 && (
-          <div className="text-center text-gray-500 mt-12">
-            <p>Bună ziua! Sunt aici să vă ajut cu întrebările despre Biblie.</p>
-            <p className="text-sm mt-2">Puteți începe prin a întreba ceva despre un verset sau o temă biblică.</p>
+        {!isAuthenticated ? (
+          <div className="flex flex-col items-center justify-center h-full text-center p-6">
+            <User className="w-16 h-16 text-gray-400 mb-4" />
+            <h3 className="text-lg font-semibold mb-2">Bun venit la AI Chat Biblic!</h3>
+            <p className="text-gray-600 mb-4 max-w-md">
+              Pentru a accesa chat-ul AI și a salva conversațiile tale, te rugăm să îți creezi un cont sau să te conectezi.
+            </p>
+            <button
+              onClick={() => {
+                window.dispatchEvent(new CustomEvent('auth:sign-in-required'))
+              }}
+              className="px-6 py-3 bg-blue-500 text-white rounded-lg hover:bg-blue-600 transition-colors"
+            >
+              Creează Cont / Conectează-te
+            </button>
           </div>
-        )}
+        ) : (
+          <>
+            {messages.length === 0 && (
+              <div className="text-center text-gray-500 mt-12">
+                <p>Bună ziua! Sunt aici să vă ajut cu întrebările despre Biblie.</p>
+                <p className="text-sm mt-2">Puteți începe prin a întreba ceva despre un verset sau o temă biblică.</p>
+              </div>
+            )}
 
-        {messages.map((msg, idx) => (
+            {messages.map((msg, idx) => (
           <div
             key={idx}
             className={`flex ${msg.role === 'user' ? 'justify-end' : 'justify-start'}`}
@@ -106,29 +143,33 @@ export function ChatInterface() {
               </div>
             </div>
           </div>
+            )}
+            <div ref={messagesEndRef} />
+          </>
         )}
-        <div ref={messagesEndRef} />
       </div>
 
-      <form onSubmit={handleSubmit} className="p-4 border-t">
-        <div className="flex space-x-2">
-          <input
-            type="text"
-            value={input}
-            onChange={(e) => setInput(e.target.value)}
-            placeholder="Întreabă despre Biblie..."
-            className="flex-1 px-4 py-2 border border-gray-300 rounded-lg focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-blue-500"
-            disabled={loading}
-          />
-          <button
-            type="submit"
-            disabled={loading || !input.trim()}
-            className="px-4 py-2 bg-blue-500 text-white rounded-lg hover:bg-blue-600 disabled:opacity-50 disabled:cursor-not-allowed transition-colors"
-          >
-            <Send className="w-5 h-5" />
-          </button>
-        </div>
-      </form>
+      {isAuthenticated && (
+        <form onSubmit={handleSubmit} className="p-4 border-t">
+          <div className="flex space-x-2">
+            <input
+              type="text"
+              value={input}
+              onChange={(e) => setInput(e.target.value)}
+              placeholder="Întreabă despre Biblie..."
+              className="flex-1 px-4 py-2 border border-gray-300 rounded-lg focus:outline-none focus:ring-2 focus:ring-blue-500 focus:border-blue-500"
+              disabled={loading}
+            />
+            <button
+              type="submit"
+              disabled={loading || !input.trim()}
+              className="px-4 py-2 bg-blue-500 text-white rounded-lg hover:bg-blue-600 disabled:opacity-50 disabled:cursor-not-allowed transition-colors"
+            >
+              <Send className="w-5 h-5" />
+            </button>
+          </div>
+        </form>
+      )}
     </div>
   )
 }
diff --git a/components/chat/floating-chat.tsx b/components/chat/floating-chat.tsx
index 206f424..040b011 100644
--- a/components/chat/floating-chat.tsx
+++ b/components/chat/floating-chat.tsx
@@ -577,10 +577,16 @@ export default function FloatingChat() {
                   {!isAuthenticated ? (
                     <Box sx={{ textAlign: 'center', py: 3 }}>
                       <Typography variant="body2" color="text.secondary" sx={{ mb: 2 }}>
-                        ✨ Sign in to save your conversations
+                        ✨ {locale === 'ro' ? 'Conectează-te pentru a salva conversațiile' : 'Sign in to save your conversations'}
                       </Typography>
-                      <Button variant="outlined" size="small">
-                        Sign In
+                      <Button
+                        variant="outlined"
+                        size="small"
+                        onClick={() => {
+                          window.dispatchEvent(new CustomEvent('auth:sign-in-required'))
+                        }}
+                      >
+                        {locale === 'ro' ? 'Conectează-te' : 'Sign In'}
                       </Button>
                     </Box>
                   ) : isLoadingConversations ? (
@@ -688,7 +694,44 @@ export default function FloatingChat() {
                       p: 1,
                     }}
                   >
-                    {messages.map((message) => (
+                    {!isAuthenticated ? (
+                      <Box sx={{
+                        display: 'flex',
+                        flexDirection: 'column',
+                        alignItems: 'center',
+                        justifyContent: 'center',
+                        height: '100%',
+                        textAlign: 'center',
+                        p: 3
+                      }}>
+                        <SmartToy sx={{ fontSize: 64, color: 'text.secondary', mb: 2 }} />
+                        <Typography variant="h6" gutterBottom>
+                          {locale === 'ro' ? 'Bun venit la AI Chat Biblic!' : 'Welcome to Biblical AI Chat!'}
+                        </Typography>
+                        <Typography variant="body2" color="text.secondary" sx={{ mb: 3, maxWidth: 400 }}>
+                          {locale === 'ro'
+                            ? 'Pentru a accesa chat-ul AI și a salva conversațiile tale, te rugăm să îți creezi un cont sau să te conectezi.'
+                            : 'To access the AI chat and save your conversations, please create an account or sign in.'
+                          }
+                        </Typography>
+                        <Button
+                          variant="contained"
+                          size="large"
+                          onClick={() => {
+                            window.dispatchEvent(new CustomEvent('auth:sign-in-required'))
+                          }}
+                          sx={{
+                            background: 'linear-gradient(45deg, #009688 30%, #00796B 90%)',
+                            px: 4,
+                            py: 1.5
+                          }}
+                        >
+                          {locale === 'ro' ? 'Creează Cont / Conectează-te' : 'Create Account / Sign In'}
+                        </Button>
+                      </Box>
+                    ) : (
+                      <>
+                        {messages.map((message) => (
                       <Box
                         key={message.id}
                         sx={{
@@ -834,49 +877,53 @@ export default function FloatingChat() {
                       </Box>
                     )}
 
-                    <div ref={messagesEndRef} />
+                        <div ref={messagesEndRef} />
+                      </>
+                    )}
                   </Box>
 
                   <Divider />
 
                   {/* Input */}
-                  <Box sx={{ p: 2 }}>
-                    <Box sx={{ display: 'flex', gap: 1 }}>
-                      <TextField
-                        fullWidth
-                        size="small"
-                        multiline
-                        maxRows={3}
-                        placeholder={t('placeholder')}
-                        value={inputMessage}
-                        onChange={(e) => setInputMessage(e.target.value)}
-                        onKeyPress={handleKeyPress}
-                        disabled={isLoading}
-                        variant="outlined"
-                        sx={{
-                          '& .MuiOutlinedInput-root': {
+                  {isAuthenticated && (
+                    <Box sx={{ p: 2 }}>
+                      <Box sx={{ display: 'flex', gap: 1 }}>
+                        <TextField
+                          fullWidth
+                          size="small"
+                          multiline
+                          maxRows={3}
+                          placeholder={t('placeholder')}
+                          value={inputMessage}
+                          onChange={(e) => setInputMessage(e.target.value)}
+                          onKeyPress={handleKeyPress}
+                          disabled={isLoading}
+                          variant="outlined"
+                          sx={{
+                            '& .MuiOutlinedInput-root': {
+                              borderRadius: 2,
+                            }
+                          }}
+                        />
+                        <Button
+                          variant="contained"
+                          onClick={handleSendMessage}
+                          disabled={!inputMessage.trim() || isLoading}
+                          sx={{
+                            minWidth: 'auto',
+                            px: 2,
                             borderRadius: 2,
-                          }
-                        }}
-                      />
-                      <Button
-                        variant="contained"
-                        onClick={handleSendMessage}
-                        disabled={!inputMessage.trim() || isLoading}
-                        sx={{
-                          minWidth: 'auto',
-                          px: 2,
-                          borderRadius: 2,
-                          background: 'linear-gradient(45deg, #009688 30%, #00796B 90%)',
-                        }}
-                      >
-                        <Send fontSize="small" />
-                      </Button>
+                            background: 'linear-gradient(45deg, #009688 30%, #00796B 90%)',
+                          }}
+                        >
+                          <Send fontSize="small" />
+                        </Button>
+                      </Box>
+                      <Typography variant="caption" color="text.secondary" sx={{ mt: 0.5, display: 'block' }}>
+                        {t('enterToSend')}
+                      </Typography>
                     </Box>
-                    <Typography variant="caption" color="text.secondary" sx={{ mt: 0.5, display: 'block' }}>
-                      {t('enterToSend')}
-                    </Typography>
-                  </Box>
+                  )}
                 </Box>
               </Box>