while-basic
diff --git a/‎apps/backend/prisma/seed.ts‎
Lines changed: 1 addition & 1 deletion b/‎apps/backend/prisma/seed.ts‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎apps/backend/src/app/api/latest/(api-keys)/handlers.tsx‎
Lines changed: 6 additions & 5 deletions b/‎apps/backend/src/app/api/latest/(api-keys)/handlers.tsx‎
Lines changed: 6 additions & 5 deletions
diff --git a/‎apps/backend/src/app/api/latest/auth/mfa/sign-in/verification-code-handler.tsx‎
Lines changed: 1 addition & 1 deletion b/‎apps/backend/src/app/api/latest/auth/mfa/sign-in/verification-code-handler.tsx‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎apps/backend/src/app/api/latest/integrations/neon/domains/crud.tsx‎
Lines changed: 3 additions & 3 deletions b/‎apps/backend/src/app/api/latest/integrations/neon/domains/crud.tsx‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎apps/backend/src/app/api/latest/integrations/neon/oauth-providers/crud.tsx‎
Lines changed: 7 additions & 4 deletions b/‎apps/backend/src/app/api/latest/integrations/neon/oauth-providers/crud.tsx‎
Lines changed: 7 additions & 4 deletions
diff --git a/‎apps/backend/src/app/api/latest/internal/projects/crud.tsx‎
Lines changed: 18 additions & 5 deletions b/‎apps/backend/src/app/api/latest/internal/projects/crud.tsx‎
Lines changed: 18 additions & 5 deletions
diff --git a/‎apps/backend/src/app/api/latest/internal/projects/current/crud.tsx‎
Lines changed: 10 additions & 2 deletions b/‎apps/backend/src/app/api/latest/internal/projects/current/crud.tsx‎
Lines changed: 10 additions & 2 deletions
diff --git a/‎apps/backend/src/app/api/latest/projects/current/crud.tsx‎
Lines changed: 4 additions & 1 deletion b/‎apps/backend/src/app/api/latest/projects/current/crud.tsx‎
Lines changed: 4 additions & 1 deletion
diff --git a/‎apps/backend/src/lib/projects.tsx‎
Lines changed: 19 additions & 36 deletions b/‎apps/backend/src/lib/projects.tsx‎
Lines changed: 19 additions & 36 deletions
diff --git a/‎apps/backend/src/lib/tenancies.tsx‎
Lines changed: 8 additions & 6 deletions b/‎apps/backend/src/lib/tenancies.tsx‎
Lines changed: 8 additions & 6 deletions
@@ -69,7 +69,7 @@ async function seed() {
         allow_localhost: allowLocalhost,
         domains: [
           ...(dashboardDomain && new URL(dashboardDomain).hostname !== 'localhost' ? [{ domain: dashboardDomain, handler_path: '/handler' }] : []),
-          ...internalProject.config.domains.filter((d) => d.domain !== dashboardDomain),
+          ...internalTenancy.config.domains.filter((d) => d.domain !== dashboardDomain),
         ]
       },
     },
 
@@ -169,7 +169,7 @@ function createApiKeyHandlers<Type extends "user" | "team">(type: Type) {
         body: type === 'user' ? userApiKeysCreateOutputSchema.defined() : teamApiKeysCreateOutputSchema.defined(),
       }),
       handler: async ({ url, auth, body }) => {
-        await throwIfFeatureDisabled(auth.project.config, type);
+        await throwIfFeatureDisabled(auth.tenancy.config, type);
         const { userId, teamId } = await parseTypeAndParams({ type, params: body });
         await ensureUserCanManageApiKeys(auth, {
           userId,
@@ -222,6 +222,7 @@ function createApiKeyHandlers<Type extends "user" | "team">(type: Type) {
         auth: yupObject({
           type: serverOrHigherAuthTypeSchema,
           project: adaptSchema.defined(),
+          tenancy: adaptSchema.defined(),
         }).defined(),
         body: yupObject({
           api_key: yupString().defined(),
@@ -233,7 +234,7 @@ function createApiKeyHandlers<Type extends "user" | "team">(type: Type) {
         body: (type === 'user' ? userApiKeysCrud : teamApiKeysCrud).server.readSchema.defined(),
       }),
       handler: async ({ auth, body }) => {
-        await throwIfFeatureDisabled(auth.project.config, type);
+        await throwIfFeatureDisabled(auth.tenancy.config, type);
 
         const apiKey = await prismaClient.projectApiKey.findUnique({
           where: {
@@ -282,7 +283,7 @@ function createApiKeyHandlers<Type extends "user" | "team">(type: Type) {
         }),
 
         onList: async ({ auth, query }) => {
-          await throwIfFeatureDisabled(auth.project.config, type);
+          await throwIfFeatureDisabled(auth.tenancy.config, type);
           const { userId, teamId } = await parseTypeAndParams({ type, params: query });
           await ensureUserCanManageApiKeys(auth, {
             userId,
@@ -307,7 +308,7 @@ function createApiKeyHandlers<Type extends "user" | "team">(type: Type) {
         },
 
         onRead: async ({ auth, query, params }) => {
-          await throwIfFeatureDisabled(auth.project.config, type);
+          await throwIfFeatureDisabled(auth.tenancy.config, type);
 
           const apiKey = await prismaClient.projectApiKey.findUnique({
             where: {
@@ -330,7 +331,7 @@ function createApiKeyHandlers<Type extends "user" | "team">(type: Type) {
         },
 
         onUpdate: async ({ auth, data, params, query }) => {
-          await throwIfFeatureDisabled(auth.project.config, type);
+          await throwIfFeatureDisabled(auth.tenancy.config, type);
 
           const existingApiKey = await prismaClient.projectApiKey.findUnique({
             where: {
 
@@ -73,7 +73,7 @@ export const mfaVerificationCodeHandler = createVerificationCodeHandler({
   },
 });
 
-export async function createMfaRequiredError(options: { project: ProjectsCrud["Admin"]["Read"], branchId: string, isNewUser: boolean, userId: string }) {
+export async function createMfaRequiredError(options: { project: Omit<ProjectsCrud["Admin"]["Read"], "config">, branchId: string, isNewUser: boolean, userId: string }) {
   const attemptCode = await mfaVerificationCodeHandler.createCode({
     expiresInMs: 1000 * 60 * 5,
     project: options.project,
 
@@ -50,7 +50,7 @@ export const domainCrudHandlers = createLazyProxy(() => createCrudHandlers(domai
     domain: domainSchema.optional(),
   }),
   onCreate: async ({ auth, data, params }) => {
-    const oldDomains = auth.project.config.domains;
+    const oldDomains = auth.tenancy.config.domains;
     await projectsCrudHandlers.adminUpdate({
       data: {
         config: {
@@ -64,7 +64,7 @@ export const domainCrudHandlers = createLazyProxy(() => createCrudHandlers(domai
     return { domain: data.domain };
   },
   onDelete: async ({ auth, params }) => {
-    const oldDomains = auth.project.config.domains;
+    const oldDomains = auth.tenancy.config.domains;
     await projectsCrudHandlers.adminUpdate({
       data: {
         config: { domains: oldDomains.filter((domain) => domain.domain !== params.domain) },
@@ -75,7 +75,7 @@ export const domainCrudHandlers = createLazyProxy(() => createCrudHandlers(domai
   },
   onList: async ({ auth }) => {
     return {
-      items: auth.project.config.domains.map((domain) => ({ domain: domain.domain })),
+      items: auth.tenancy.config.domains.map((domain) => ({ domain: domain.domain })),
       is_paginated: false,
     };
   },
 
@@ -1,4 +1,5 @@
 import { createOrUpdateProject } from "@/lib/projects";
+import { getTenancy } from "@/lib/tenancies";
 import { createCrudHandlers } from "@/route-handlers/crud-handler";
 import { createCrud } from "@stackframe/stack-shared/dist/crud";
 import * as schemaFields from "@stackframe/stack-shared/dist/schema-fields";
@@ -94,8 +95,9 @@ export const oauthProvidersCrudHandlers = createLazyProxy(() => createCrudHandle
         }
       }
     });
+    const updatedTenancy = await getTenancy(auth.tenancy.id) ?? throwErr('Tenancy not found after update?'); // since we updated the config, we need to re-fetch the tenancy
 
-    return updated.config.oauth_providers.find(provider => provider.id === data.id) ?? throwErr('Provider not found');
+    return updatedTenancy.config.oauth_providers.find(provider => provider.id === data.id) ?? throwErr('Provider not found');
   },
   onUpdate: async ({ auth, data, params }) => {
     if (!auth.tenancy.config.oauth_providers.find(provider => provider.id === params.oauth_provider_id)) {
@@ -107,16 +109,17 @@ export const oauthProvidersCrudHandlers = createLazyProxy(() => createCrudHandle
       projectId: auth.project.id,
       data: {
         config: {
-          oauth_providers: auth.project.config.oauth_providers
+          oauth_providers: auth.tenancy.config.oauth_providers
             .map(provider => provider.id === params.oauth_provider_id ? {
               ...provider,
               ...data,
             } : provider),
         }
       }
     });
+    const updatedTenancy = await getTenancy(auth.tenancy.id) ?? throwErr('Tenancy not found after update?'); // since we updated the config, we need to re-fetch the tenancy
 
-    return updated.config.oauth_providers.find(provider => provider.id === params.oauth_provider_id) ?? throwErr('Provider not found');
+    return updatedTenancy.config.oauth_providers.find(provider => provider.id === params.oauth_provider_id) ?? throwErr('Provider not found');
   },
   onList: async ({ auth }) => {
     return {
@@ -134,7 +137,7 @@ export const oauthProvidersCrudHandlers = createLazyProxy(() => createCrudHandle
       projectId: auth.project.id,
       data: {
         config: {
-          oauth_providers: auth.project.config.oauth_providers.filter(provider =>
+          oauth_providers: auth.tenancy.config.oauth_providers.filter(provider =>
             provider.id !== params.oauth_provider_id
           )
         }
 
@@ -1,11 +1,12 @@
 import { createOrUpdateProject, getProjectQuery, listManagedProjectIds } from "@/lib/projects";
+import { getSoleTenancyFromProject } from "@/lib/tenancies";
 import { prismaClient, rawQueryAll } from "@/prisma-client";
 import { createCrudHandlers } from "@/route-handlers/crud-handler";
 import { KnownErrors } from "@stackframe/stack-shared";
 import { adminUserProjectsCrud } from "@stackframe/stack-shared/dist/interface/crud/projects";
 import { projectIdSchema, yupObject } from "@stackframe/stack-shared/dist/schema-fields";
 import { StackAssertionError, throwErr } from "@stackframe/stack-shared/dist/utils/errors";
-import { typedEntries, typedFromEntries } from "@stackframe/stack-shared/dist/utils/objects";
+import { isNotNull, typedEntries, typedFromEntries } from "@stackframe/stack-shared/dist/utils/objects";
 import { createLazyProxy } from "@stackframe/stack-shared/dist/utils/proxies";
 
 // if one of these users creates a project, the others will be added as owners
@@ -28,24 +29,36 @@ export const adminUserProjectsCrudHandlers = createLazyProxy(() => createCrudHan
     const ownerPack = ownerPacks.find(p => p.has(user.id));
     const userIds = ownerPack ? [...ownerPack] : [user.id];
 
-    return await createOrUpdateProject({
+    const project = await createOrUpdateProject({
       ownerIds: userIds,
       initialBranchId: 'main',
       type: 'create',
       data,
     });
+    const tenancy = await getSoleTenancyFromProject(project);
+    return {
+      ...project,
+      config: tenancy.config,
+    };
   },
   onList: async ({ auth }) => {
     const projectIds = listManagedProjectIds(auth.user ?? throwErr('auth.user is required'));
     const projectsRecord = await rawQueryAll(prismaClient, typedFromEntries(projectIds.map((id, index) => [index, getProjectQuery(id)])));
-    const projects = await Promise.all(typedEntries(projectsRecord).map(async ([_, project]) => await project));
+    const projects = (await Promise.all(typedEntries(projectsRecord).map(async ([_, project]) => await project))).filter(isNotNull);
 
-    if (projects.filter(x => x !== null).length !== projectIds.length) {
+    if (projects.length !== projectIds.length) {
       throw new StackAssertionError('Failed to fetch all projects of a user');
     }
 
+    const projectsWithConfig = await Promise.all(projects.map(async (project) => {
+      return {
+        ...project,
+        config: (await getSoleTenancyFromProject(project)).config,
+      };
+    }));
+
     return {
-      items: projects as NonNullable<typeof projects[number]>[],
+      items: projectsWithConfig,
       is_paginated: false,
     } as const;
   }
 
@@ -1,4 +1,5 @@
 import { createOrUpdateProject } from "@/lib/projects";
+import { getSoleTenancyFromProject } from "@/lib/tenancies";
 import { retryTransaction } from "@/prisma-client";
 import { createCrudHandlers } from "@/route-handlers/crud-handler";
 import { projectsCrud } from "@stackframe/stack-shared/dist/interface/crud/projects";
@@ -8,14 +9,21 @@ import { createLazyProxy } from "@stackframe/stack-shared/dist/utils/proxies";
 export const projectsCrudHandlers = createLazyProxy(() => createCrudHandlers(projectsCrud, {
   paramsSchema: yupObject({}),
   onUpdate: async ({ auth, data }) => {
-    return await createOrUpdateProject({
+    const project = await createOrUpdateProject({
       type: "update",
       projectId: auth.project.id,
       data: data,
     });
+    return {
+      ...project,
+      config: (await getSoleTenancyFromProject(project)).config, // since we updated the project, we need tore-fetch the new config
+    };
   },
   onRead: async ({ auth }) => {
-    return auth.project;
+    return {
+      ...auth.project,
+      config: auth.tenancy.config,
+    };
   },
   onDelete: async ({ auth }) => {
     await retryTransaction(async (tx) => {
 
@@ -6,6 +6,9 @@ import { createLazyProxy } from "@stackframe/stack-shared/dist/utils/proxies";
 export const clientProjectsCrudHandlers = createLazyProxy(() => createCrudHandlers(clientProjectsCrud, {
   paramsSchema: yupObject({}),
   onRead: async ({ auth }) => {
-    return auth.project;
+    return {
+      ...auth.project,
+      config: auth.tenancy.config,
+    };
   },
 }));
@@ -7,7 +7,7 @@ import { StackAssertionError, captureError } from "@stackframe/stack-shared/dist
 import { filterUndefined, typedFromEntries } from "@stackframe/stack-shared/dist/utils/objects";
 import { generateUuid } from "@stackframe/stack-shared/dist/utils/uuids";
 import { RawQuery, prismaClient, rawQuery, retryTransaction } from "../prisma-client";
-import { getRenderedOrganizationConfigQuery, overrideEnvironmentConfigOverride, renderedOrganizationConfigToProjectCrud } from "./config";
+import { overrideEnvironmentConfigOverride } from "./config";
 import { getSoleTenancyFromProject } from "./tenancies";
 
 function isStringArray(value: any): value is string[] {
@@ -27,51 +27,34 @@ export function listManagedProjectIds(projectUser: UsersCrud["Admin"]["Read"]) {
   return managedProjectIds;
 }
 
-export function getProjectQuery(projectId: string): RawQuery<Promise<ProjectsCrud["Admin"]["Read"] | null>> {
-  return RawQuery.then(
-    RawQuery.all([
-      {
-        sql: Prisma.sql`
+export function getProjectQuery(projectId: string): RawQuery<Promise<Omit<ProjectsCrud["Admin"]["Read"], "config"> | null>> {
+  return {
+    sql: Prisma.sql`
           SELECT "Project".*
           FROM "Project"
           WHERE "Project"."id" = ${projectId}
         `,
-        postProcess: (queryResult) => {
-          if (queryResult.length > 1) {
-            throw new StackAssertionError(`Expected 0 or 1 projects with id ${projectId}, got ${queryResult.length}`, { queryResult });
-          }
-          if (queryResult.length === 0) {
-            return null;
-          }
-          const row = queryResult[0];
-          return {
-            id: row.id,
-            display_name: row.displayName,
-            description: row.description,
-            created_at_millis: new Date(row.createdAt + "Z").getTime(),
-            user_count: row.userCount,
-            is_production_mode: row.isProductionMode,
-          };
-        },
-      } as const,
-      getRenderedOrganizationConfigQuery({ projectId, branchId: "main", organizationId: null }),
-    ] as const),
-    async (result) => {
-      const projectPart = result[0];
-      if (!projectPart) {
+    postProcess: async (queryResult) => {
+      if (queryResult.length > 1) {
+        throw new StackAssertionError(`Expected 0 or 1 projects with id ${projectId}, got ${queryResult.length}`, { queryResult });
+      }
+      if (queryResult.length === 0) {
         return null;
       }
-      const renderedConfig = await result[1];
-
+      const row = queryResult[0];
       return {
-        ...projectPart,
-        config: renderedOrganizationConfigToProjectCrud(renderedConfig),
+        id: row.id,
+        display_name: row.displayName,
+        description: row.description,
+        created_at_millis: new Date(row.createdAt + "Z").getTime(),
+        user_count: row.userCount,
+        is_production_mode: row.isProductionMode,
       };
-    }
-  );
+    },
+  };
 }
 
-export async function getProject(projectId: string): Promise<ProjectsCrud["Admin"]["Read"] | null> {
+export async function getProject(projectId: string): Promise<Omit<ProjectsCrud["Admin"]["Read"], "config"> | null> {
   const result = await rawQuery(prismaClient, getProjectQuery(projectId));
   return result;
 }
 
@@ -3,7 +3,7 @@ import { Prisma } from "@prisma/client";
 import { ProjectsCrud } from "@stackframe/stack-shared/dist/interface/crud/projects";
 import { getNodeEnvironment } from "@stackframe/stack-shared/dist/utils/env";
 import { StackAssertionError, throwErr } from "@stackframe/stack-shared/dist/utils/errors";
-import { getRenderedOrganizationConfigQuery } from "./config";
+import { getRenderedOrganizationConfigQuery, renderedOrganizationConfigToProjectCrud } from "./config";
 import { getProject } from "./projects";
 
 export async function tenancyPrismaToCrud(prisma: Prisma.TenancyGetPayload<{}>) {
@@ -21,11 +21,12 @@ export async function tenancyPrismaToCrud(prisma: Prisma.TenancyGetPayload<{}>)
     branchId: prisma.branchId,
     organizationId: prisma.organizationId,
   }));
+  const oldProjectConfig = renderedOrganizationConfigToProjectCrud(completeConfig);
 
   return {
     id: prisma.id,
     /** @deprecated */
-    config: projectCrud.config,
+    config: oldProjectConfig,
     completeConfig,
     branchId: prisma.branchId,
     organization: prisma.organizationId === null ? null : {
@@ -50,13 +51,13 @@ const soleTenancyIdsCache = new Map<string, string>();
   * @deprecated This is a temporary function for the situation where every project has exactly one tenancy. Later,
   * we will support multiple tenancies per project, and all uses of this function will be refactored.
   */
-export function getSoleTenancyFromProject(project: ProjectsCrud["Admin"]["Read"] | string): Promise<Tenancy>;
+export function getSoleTenancyFromProject(project: Omit<ProjectsCrud["Admin"]["Read"], "config"> | string): Promise<Tenancy>;
 /**
   * @deprecated This is a temporary function for the situation where every project has exactly one tenancy. Later,
   * we will support multiple tenancies per project, and all uses of this function will be refactored.
   */
-export function getSoleTenancyFromProject(project: ProjectsCrud["Admin"]["Read"] | string, returnNullIfNotFound: boolean): Promise<Tenancy | null>;
-export async function getSoleTenancyFromProject(projectOrId: ProjectsCrud["Admin"]["Read"] | string, returnNullIfNotFound: boolean = false): Promise<Tenancy | null> {
+export function getSoleTenancyFromProject(project: Omit<ProjectsCrud["Admin"]["Read"], "config"> | string, returnNullIfNotFound: boolean): Promise<Tenancy | null>;
+export async function getSoleTenancyFromProject(projectOrId: Omit<ProjectsCrud["Admin"]["Read"], "config"> | string, returnNullIfNotFound: boolean = false): Promise<Tenancy | null> {
   let project;
   if (!projectOrId) {
     throw new StackAssertionError("Project is required", { projectOrId });
@@ -82,10 +83,11 @@ export async function getSoleTenancyFromProject(projectOrId: ProjectsCrud["Admin
     branchId: "main",
     organizationId: null,
   }));
+  const oldProjectConfig = renderedOrganizationConfigToProjectCrud(completeConfig);
 
   return {
     id: tenancyId,
-    config: project.config,
+    config: oldProjectConfig,
     completeConfig,
     branchId: "main",
     organization: null,
Original file line number	Diff line number	Diff line change
`@@ -69,7 +69,7 @@ async function seed() {`
`69`	`69`	`allow_localhost: allowLocalhost,`
`70`	`70`	`domains: [`
`71`	`71`	`...(dashboardDomain && new URL(dashboardDomain).hostname !== 'localhost' ? [{ domain: dashboardDomain, handler_path: '/handler' }] : []),`
`72`		`- ...internalProject.config.domains.filter((d) => d.domain !== dashboardDomain),`
	`72`	`+ ...internalTenancy.config.domains.filter((d) => d.domain !== dashboardDomain),`
`73`	`73`	`]`
`74`	`74`	`},`
`75`	`75`	`},`