Email Linking System

Overview

The email linking system allows users to authenticate with multiple email addresses that all resolve to the same account. This is particularly useful for developers with both work (@aethex.dev) and personal email addresses.

Architecture

Database Tables

`user_email_links`

Links multiple email addresses to a single user account.

- id: UUID (primary key)
- user_id: UUID (FK to user_profiles.user_id)
- email: TEXT (unique)
- is_primary: BOOLEAN (marks the main email)
- verified_at: TIMESTAMP
- linked_at: TIMESTAMP
- created_at: TIMESTAMP
- updated_at: TIMESTAMP

`user_profiles` (additions)

- primary_email: TEXT (the primary email for the account)
- is_dev_account: BOOLEAN (marks if this is a developer account)
- merged_to_user_id: UUID (if this account was merged, points to the primary account)

User Flows

User attempts login with: [email protected]
↓
SignIn catches "invalid credentials" error
↓
Calls /api/user/resolve-linked-email with email
↓
Check user_email_links table
↓
Found! Returns primary email: [email protected]
↓
Retry SignIn with primary email
↓
Success - user logged in

Flow 2: Link Additional Email (Settings)

User clicks "Link Email" in settings
↓
Enters secondary email: [email protected]
↓
Verification sent to that email
↓
User verifies via link
↓
Email added to user_email_links with is_primary=false
↓
UI shows: "Also logged in as [email protected]"

API Endpoints

POST `/api/user/resolve-linked-email`

Resolve a linked email to its primary email address.

Request:

{
  "email": "[email protected]"
}

Response (linked email):

{
  "primaryEmail": "[email protected]",
  "linkedFrom": "[email protected]",
  "userId": "uuid-here"
}

Response (non-linked email):

{
  "primaryEmail": "[email protected]"
}

POST `/api/user/link-email`

Link two existing user accounts by merging one into the other.

Request:

{
  "primaryEmail": "[email protected]",
  "linkedEmail": "[email protected]"
}

Response:

{
  "success": true,
  "message": "Successfully linked [email protected] to [email protected]",
  "targetUserId": "primary-user-uuid",
  "sourceUserId": "linked-user-uuid"
}

POST `/api/user/link-mrpiglr-accounts` (Admin Only)

Special endpoint to link the mrpiglr accounts.

Request:

curl -X POST https://aethex.dev/api/user/link-mrpiglr-accounts \
  -H "Authorization: Bearer mrpiglr-admin-token" \
  -H "Content-Type: application/json"

Response:

{
  "success": true,
  "message": "Successfully linked [email protected] and [email protected]",
  "primaryEmail": "[email protected]",
  "linkedEmail": "[email protected]",
  "note": "Both emails can now log in and will access the same account."
}

Implementation Details

Authentication Resolution

When a user tries to sign in with a linked email:

First attempt: Try with provided email (normal auth flow)
If it fails with "invalid credentials":
- Check /api/user/resolve-linked-email
- If email is linked, get primary email
- Retry with primary email
- If successful, user is logged in

This is transparent to the user - they can log in with any linked email.

Data Transfer on Merge

When two accounts are merged:

Achievements: Transferred to primary account
Creator Profile: Transferred or preserved if not duplicate
Applications: Transferred to primary account
Discord Links: Transferred (avoiding duplicates)
Web3 Wallets: Transferred (avoiding duplicates)
Email Links: Both emails added to user_email_links table
Profile: Source profile marked as merged_to_user_id

For Developers (Dev Accounts)

Developer accounts with @aethex.dev email:

is_dev_account = true
primary_email = "@aethex.dev email"
Public profile shows work email
Can link personal email for authentication convenience

Usage Examples

Link mrpiglr Accounts

# Admin endpoint (one-time setup)
curl -X POST https://aethex.dev/api/user/link-mrpiglr-accounts \
  -H "Authorization: Bearer mrpiglr-admin-token" \
  -H "Content-Type: application/json"

Link Any Two Accounts

# Generic link endpoint
curl -X POST https://aethex.dev/api/user/link-email \
  -H "Content-Type: application/json" \
  -d '{
    "primaryEmail": "[email protected]",
    "linkedEmail": "[email protected]"
  }'

Check Email Resolution

curl -X POST https://aethex.dev/api/user/resolve-linked-email \
  -H "Content-Type: application/json" \
  -d '{"email": "[email protected]"}'

Database Migration

Applied via: code/supabase/migrations/20250206_add_email_linking.sql

Includes:

user_email_links table with RLS policies
get_primary_user_by_email() function
Columns on user_profiles for dev accounts and primary email
Proper indexes for performance

Future Enhancements

Email Verification: Add verification flow before linking new emails
Settings UI: Add "Linked Emails" section in user settings
Email Change Request: Allow users to change primary email
Admin Dashboard: View all linked emails for a user
Notification: Email both addresses when a new email is linked

PreviousAeThex Ecosystem Audit & Consolidation Plan NextEthos Guild - Complete Implementation Guide

Last updated 1 month ago

Good afternoon

Overview

Architecture

Database Tables

user_email_links

user_profiles (additions)

User Flows

Flow 1: Login with Linked Email

Flow 2: Link Additional Email (Settings)

API Endpoints

POST /api/user/resolve-linked-email

POST /api/user/link-email

POST /api/user/link-mrpiglr-accounts (Admin Only)

Implementation Details

Authentication Resolution

Data Transfer on Merge

For Developers (Dev Accounts)

Usage Examples

Link mrpiglr Accounts

Link Any Two Accounts

Check Email Resolution

Database Migration

Future Enhancements

`user_email_links`

`user_profiles` (additions)

POST `/api/user/resolve-linked-email`

POST `/api/user/link-email`

POST `/api/user/link-mrpiglr-accounts` (Admin Only)