Compass/backend/api/src/update-profile.ts

import {APIErrors, APIHandler} from 'api/helpers/endpoint'
import {trimStrings} from 'common/parsing'
import {type Row} from 'common/supabase/utils'
import {tryCatch} from 'common/util/try-catch'
import {removePinnedUrlFromPhotoUrls} from 'shared/profiles/parse-photos'
import {createSupabaseDirectClient} from 'shared/supabase/init'
import {updateProfile, updateUser} from 'shared/supabase/users'
import {log} from 'shared/utils'

/**
 * Update Profile API Handler
 *
 * Updates an existing user's profile information in the database.
 * Performs validation and sanitization on input data before applying changes.
 *
 * Features:
 * - Trims whitespace from string fields
 * - Handles avatar/photo updates
 * - Updates related user data when profile photo changes
 * - Proper error handling with rollback support
 *
 * @param parsedBody - Profile data to update (validated against schema)
 * @param auth - Authenticated user information
 * @returns Updated profile data
 * @throws {APIError} 404 if profile doesn't exist, 500 for database errors
 */
export const updateProfileEndpoint: APIHandler<'update-profile'> = async (parsedBody, auth) => {
  trimStrings(parsedBody)
  log('Updating profile', parsedBody)
  const pg = createSupabaseDirectClient()

  const {data: existingProfile} = await tryCatch(
    pg.oneOrNone<Row<'profiles'>>('select * from profiles where user_id = $1', [auth.uid]),
  )

  if (!existingProfile) {
    throw APIErrors.notFound('Profile not found')
  }

  log('Updating profile', {userId: auth.uid, parsedBody})

  await removePinnedUrlFromPhotoUrls(parsedBody)

  if (parsedBody.pinned_url) {
    await updateUser(auth.uid, {avatarUrl: parsedBody.pinned_url})
  }

  const {data, error} = await tryCatch(updateProfile(auth.uid, parsedBody))

  if (error) {
    log('Error updating profile', error)
    throw APIErrors.internalServerError('Error updating profile')
  }

  return data
}