fix: implement QA feedback for user deletion

Author: m0wer

api/paidAction/zap.js

@@ -57,6 +57,11 @@ export async function getSybilFeePercent () {
 }
 
 export async function perform ({ invoiceId, sats, id: itemId, ...args }, { me, cost, sybilFeePercent, tx }) {
+  const item = await tx.item.findUnique({ where: { id: parseInt(itemId) } })
+  if (item.userId === USER_ID.delete) {
+    throw new Error('cannot zap deleted content')
+  }
+
   const feeMsats = cost * sybilFeePercent / 100n
   const zapMsats = cost - feeMsats
   itemId = parseInt(itemId)
@@ -140,20 +145,11 @@ export async function onPaid ({ invoice, actIds }, { tx }) {
       )
       UPDATE users
       SET
-        mcredits = CASE 
-          WHEN users."deletedAt" IS NULL THEN users.mcredits + recipients.mcredits
-          ELSE users.mcredits
-        END,
-        "stackedMsats" = CASE 
-          WHEN users."deletedAt" IS NULL THEN users."stackedMsats" + recipients.mcredits
-          ELSE users."stackedMsats"
-        END,
-        "stackedMcredits" = CASE 
-          WHEN users."deletedAt" IS NULL THEN users."stackedMcredits" + recipients.mcredits
-          ELSE users."stackedMcredits"
-        END
+        mcredits = users.mcredits + recipients.mcredits,
+        "stackedMsats" = users."stackedMsats" + recipients.mcredits,
+        "stackedMcredits" = users."stackedMcredits" + recipients.mcredits
       FROM recipients
-      WHERE users.id = recipients."userId"`
+      WHERE users.id = recipients."userId" AND users."deletedAt" IS NULL`
 
     // Donate msats that would have gone to deleted users to the rewards pool
     const deletedUserMsats = await tx.$queryRaw`

api/resolvers/item.js

@@ -965,7 +965,7 @@ export default {
         FROM "Item"
         WHERE id = $1`, Number(id))
 
-      if (item.deletedAt) {
+      if (item.deletedAt || item.userId === USER_ID.delete) {
         throw new GqlInputError('item is deleted')
       }
 

api/resolvers/user.js

@@ -13,6 +13,7 @@ import { hashEmail } from '@/lib/crypto'
 import { isMuted } from '@/lib/user'
 import { GqlAuthenticationError, GqlAuthorizationError, GqlInputError } from '@/lib/error'
 import { processCrop } from '@/worker/imgproxy'
+import { deleteItemByAuthor } from '@/lib/item'
 
 const contributors = new Set()
 
@@ -657,7 +658,7 @@ export default {
   },
 
   Mutation: {
-    deleteAccount: async (parent, { deleteContent, confirmation, donateBalance }, { me, models }) => {
+    deleteAccount: async (parent, { confirmation, donateBalance }, { me, models }) => {
       if (!me) {
         throw new GqlAuthenticationError()
       }
@@ -667,6 +668,15 @@ export default {
       }
 
       return await models.$transaction(async (tx) => {
+        await tx.user.upsert({
+          where: { id: USER_ID.delete },
+          update: {},
+          create: {
+            id: USER_ID.delete,
+            name: 'delete'
+          }
+        })
+
         const user = await tx.user.findUnique({
           where: { id: me.id },
           select: {
@@ -700,36 +710,17 @@ export default {
           })
         }
 
-        // If deleteContent is true, replace content with hash
-        if (deleteContent) {
-        // Get all items for this user
-          const items = await tx.item.findMany({
-            where: { userId: me.id },
-            select: { id: true, title: true, text: true, url: true }
-          })
-
-          // Update each item with hashed content
-          for (const item of items) {
-            const originalContent = JSON.stringify({
-              title: item.title,
-              text: item.text,
-              url: item.url
-            })
-
-            const hash = createHash('sha256').update(originalContent).digest('hex')
-            const deletedContent = `[deleted] ${hash}`
-
-            await tx.item.update({
-              where: { id: item.id },
-              data: {
-                title: item.title ? deletedContent : null,
-                text: item.text ? deletedContent : null,
-                url: item.url ? deletedContent : null
-              }
-            })
-          }
+        const items = await tx.item.findMany({ where: { userId: me.id } })
+        for (const item of items) {
+          await deleteItemByAuthor({ models: tx, id: item.id, item })
         }
 
+        // Always move user's content to the @delete user
+        await tx.item.updateMany({
+          where: { userId: me.id },
+          data: { userId: USER_ID.delete }
+        })
+
         // Remove all attached wallets
         await tx.wallet.deleteMany({
           where: { userId: me.id }

api/ssrApollo.js

@@ -20,20 +20,9 @@ import { MULTI_AUTH_ANON, MULTI_AUTH_LIST } from '@/lib/auth'
 export default async function getSSRApolloClient ({ req, res, me = null }) {
   const session = req && await getServerSession(req, res, getAuthOptions(req))
 
-  // If there's a session, check if the user is deleted
   let meUser = me
   if (session?.user) {
-    const user = await models.user.findUnique({
-      where: { id: parseInt(session.user.id) }, // Convert string to int
-      select: { deletedAt: true }
-    })
-
-    // If the user is deleted, don't pass the session to the context
-    if (user?.deletedAt) {
-      meUser = null
-    } else {
-      meUser = session.user
-    }
+    meUser = session.user
   }
 
   const client = new ApolloClient({
@@ -175,18 +164,6 @@ export function getGetServerSideProps (
       me = null
     }
 
-    // Check if the user account is deleted
-    if (me) {
-      const user = await models.user.findUnique({
-        where: { id: parseInt(me.id) }, // Convert string to int
-        select: { deletedAt: true }
-      })
-
-      if (user?.deletedAt) {
-        me = null
-      }
-    }
-
     if (authRequired && !me) {
       let callback = process.env.NEXT_PUBLIC_URL + req.url
       // On client-side routing, the callback is a NextJS URL

api/typeDefs/user.js

@@ -56,7 +56,7 @@ export default gql`
     generateApiKey(id: ID!): String
     deleteApiKey(id: ID!): User
     disableFreebies: Boolean
-    deleteAccount(deleteContent: Boolean!, confirmation: String!, donateBalance: Boolean): Boolean
+    deleteAccount(confirmation: String!, donateBalance: Boolean, deleteContent: Boolean): Boolean
   }
 
   type User {

components/item.js

@@ -115,7 +115,9 @@ export default function Item ({
               ? <DownZap width={24} height={24} className={styles.dontLike} item={item} />
               : Number(item.user?.id) === USER_ID.ad
                 ? <AdIcon width={24} height={24} className={styles.ad} />
-                : <UpVote item={item} className={styles.upvote} />}
+                : Number(item.user?.id) === USER_ID.delete
+                  ? null
+                  : <UpVote item={item} className={styles.upvote} />}
         <div className={styles.hunk}>
           <div className={`${styles.main} flex-wrap`}>
             <Link

pages/api/auth/[...nextauth].js

@@ -152,8 +152,18 @@ function getCallbacks (req, res) {
     async session ({ session, token }) {
       // note: this function takes the current token (result of running jwt above)
       // and returns a new object session that's returned whenever get|use[Server]Session is called
-      session.user.id = token.id
+      if (token?.id) {
+        const dbUser = await prisma.user.findUnique({
+          where: { id: token.id },
+          select: { deletedAt: true }
+        })
 
+        if (dbUser?.deletedAt) {
+          return null
+        }
+      }
+
+      session.user.id = token.id
       return session
     }
   }

pages/settings/index.js

@@ -1,5 +1,5 @@
 import { Checkbox, Form, Input, SubmitButton, Select, VariableInput, CopyInput } from '@/components/form'
-import { Alert, Button, InputGroup, Nav, Form as BootstrapForm, OverlayTrigger, Tooltip } from 'react-bootstrap'
+import { Alert, Button, InputGroup, Nav, OverlayTrigger, Tooltip } from 'react-bootstrap'
 import Layout from '@/components/layout'
 import { useState, useMemo } from 'react'
 import { gql, useMutation, useQuery } from '@apollo/client'
@@ -15,6 +15,7 @@ import AccordianItem from '@/components/accordian-item'
 import { bech32 } from 'bech32'
 import { NOSTR_MAX_RELAY_NUM, NOSTR_PUBKEY_BECH32, DEFAULT_CROSSPOSTING_RELAYS } from '@/lib/nostr'
 import { emailSchema, lastAuthRemovalSchema, settingsSchema } from '@/lib/validate'
+import * as Yup from 'yup'
 import { SUPPORTED_CURRENCIES } from '@/lib/currency'
 import PageLoading from '@/components/page-loading'
 import { useShowModal } from '@/components/modal'
@@ -84,40 +85,43 @@ export function SettingsHeader () {
 }
 
 const DELETE_ACCOUNT = gql`
-  mutation deleteAccount($deleteContent: Boolean!, $confirmation: String!, $donateBalance: Boolean) {
-    deleteAccount(deleteContent: $deleteContent, confirmation: $confirmation, donateBalance: $donateBalance)
+  mutation deleteAccount($confirmation: String!, $donateBalance: Boolean) {
+    deleteAccount(confirmation: $confirmation, donateBalance: $donateBalance)
   }
 `
 
+const GET_USER_BALANCE = gql`
+  { me { privates { sats } } }
+`
+
 function DeleteAccount () {
   const [showConfirmation, setShowConfirmation] = useState(false)
-  const [deleteContent, setDeleteContent] = useState(false)
-  const [donateBalance, setDonateBalance] = useState(false)
-  const [confirmation, setConfirmation] = useState('')
   const [deleteAccount] = useMutation(DELETE_ACCOUNT)
   const toaster = useToast()
+  const { data } = useQuery(GET_USER_BALANCE)
+  const userBalance = data?.me?.privates?.sats || 0
 
-  const handleDelete = async () => {
+  const handleDelete = async (values) => {
     try {
-      await deleteAccount({
-        variables: {
-          deleteContent,
-          confirmation,
-          donateBalance
-        }
-      })
-
-      // Sign out the user after successful deletion
+      await deleteAccount({ variables: { ...values } })
       signOut({ callbackUrl: '/' })
-
-      // Show success message
       toaster.success('Your account has been deleted')
     } catch (error) {
       console.error(error)
       toaster.danger(error.message || 'Failed to delete account')
     }
   }
 
+  const deleteAccountSchema = Yup.object({
+    confirmation: Yup.string().oneOf(['DELETE MY ACCOUNT'], 'incorrect confirmation text').required('incorrect confirmation text'),
+    donateBalance: Yup.boolean()
+      .when('userBalance', {
+        is: (balance) => balance > 0,
+        then: schema => schema.oneOf([true], 'please withdraw your balance before deleting your account or confirm donation to rewards pool'),
+        otherwise: schema => schema
+      })
+  })
+
   return (
     <>
       <div className='form-label mt-4 text-danger'>danger zone</div>
@@ -138,7 +142,16 @@ function DeleteAccount () {
               </Button>
               )
             : (
-              <>
+              <Form
+                initial={{
+                  confirmation: '',
+                  donateBalance: false,
+                  userBalance
+                }}
+                schema={deleteAccountSchema}
+                onSubmit={handleDelete}
+                context={{ userBalance }}
+              >
                 <Alert variant='danger'>
                   <p><strong>Warning:</strong> Account deletion is permanent and cannot be reversed.</p>
                   <p>Before proceeding, please ensure:</p>
@@ -149,33 +162,17 @@ function DeleteAccount () {
                   </ul>
                 </Alert>
 
-                <BootstrapForm.Check
-                  type='checkbox'
-                  id='delete-content'
-                  label='Also anonymize all my posts and comments (they will show as "[deleted]")'
-                  checked={deleteContent}
-                  onChange={(e) => setDeleteContent(e.target.checked)}
-                  className='mb-3'
-                />
-
-                <BootstrapForm.Check
-                  type='checkbox'
-                  id='donate-balance'
+                <Checkbox
+                  name='donateBalance'
                   label='Donate my remaining balance to the rewards pool (required if you have a balance)'
-                  checked={donateBalance}
-                  onChange={(e) => setDonateBalance(e.target.checked)}
-                  className='mb-3'
+                  groupClassName='mb-3'
                 />
 
-                <BootstrapForm.Group className='mb-3'>
-                  <BootstrapForm.Label>Type "DELETE MY ACCOUNT" to confirm:</BootstrapForm.Label>
-                  <BootstrapForm.Control
-                    type='text'
-                    value={confirmation}
-                    onChange={(e) => setConfirmation(e.target.value)}
-                    placeholder='DELETE MY ACCOUNT'
-                  />
-                </BootstrapForm.Group>
+                <Input
+                  name='confirmation'
+                  label='Type "DELETE MY ACCOUNT" to confirm:'
+                  placeholder='DELETE MY ACCOUNT'
+                />
 
                 <div className='d-flex justify-content-between'>
                   <Button
@@ -184,15 +181,9 @@ function DeleteAccount () {
                   >
                     Cancel
                   </Button>
-                  <Button
-                    variant='danger'
-                    disabled={confirmation !== 'DELETE MY ACCOUNT'}
-                    onClick={handleDelete}
-                  >
-                    Permanently delete my account
-                  </Button>
+                  <SubmitButton variant='danger'>Permanently delete my account</SubmitButton>
                 </div>
-              </>
+              </Form>
               )}
         </div>
       </div>

prisma/migrations/20250604211427_user_deletion/migration.sql

@@ -1 +1,2 @@
 ALTER TABLE "users" ADD COLUMN "deletedAt" TIMESTAMP(3);
+INSERT INTO "users" (id, name) VALUES (106, 'delete') ON CONFLICT (id) DO NOTHING;