zcashme · Rashmi-278 · Feb 15, 2026 · Feb 15, 2026 · Feb 15, 2026 · Feb 15, 2026
diff --git a/AGENT.md b/AGENT.md
diff --git a/app/AGENT.md b/app/AGENT.md
@@ -0,0 +1,52 @@
+# /app - Next.js App Router
+
+## Purpose
+Contains all page routes and API endpoints for zcash.me. Uses Next.js 16 App Router with React 19.
+
+## Key Routes
+
+| Path | Description |
+|------|-------------|
+| `/` | Homepage with featured Zcash profiles |
+| `/[slug]` | Dynamic profile pages (e.g., /alice) |
+| `/ns` | Network School directory - filtered profile list |
+| `/swap-app` | Cryptocurrency swap interface (Defuse OneClick) |
+| `/leader-app` | Referral leaderboard dashboard |
+| `/stats-app` | Network statistics |
+| `/thread` | Discussion board (OTP-verified posting) |
+| `/design-system` | Component showcase for manual testing |
+
+## API Routes
+
+### `/api/resolve/[username]` - GET
+Profile lookup by username. Returns profile with links.
+
+### `/api/directory` - GET
+Search profiles with ranking. Supports `q`, `limit`, `cursor`, `verified_only` params.
+Features space-insensitive, case-insensitive matching with relevance ranking.
+
+### `/api/social` - GET
+Social platform lookup (stub implementation).
+
+## Zcash-Specific Patterns
+- Profile pages display Zcash unified addresses (u1...) prominently
+- QR codes encode `zcash:` URIs with memo for verification
+- Swap routes handle ZEC as primary currency with cross-chain support
+
+## Testing Harness
+- No automated tests in /app
+- Use `/design-system` route for manual component testing
+- API routes use rate limiting via `/lib/api/guard.ts`
+
+## Adding New Pages
+1. Create folder under `/app/[route-name]`
+2. Add `page.tsx` with default export
+3. Use server components by default, `'use client'` only when needed
+4. Import UI from `/ui/*`, logic from `/lib/*`
+
+## Environment Variables
+```
+NEXT_PUBLIC_BASE_DOMAIN - zcash.me or localhost:3000
+NEXT_PUBLIC_SUPABASE_URL - Database URL
+ZVS_SECRET_SEED - HMAC secret for OTP generation
+```
diff --git a/app/[slug]/ProfilePage.tsx b/app/[slug]/ProfilePage.tsx
@@ -4,8 +4,6 @@ import { useEffect, useState, useCallback } from "react";
 import type { Profile } from "@/lib/profile/types";
 import type { Token, SwapContextQuoteData, SwapQuoteDisplay } from "@/lib/swap/types";
 
-// Stores
-import { useEditsStore } from "@/lib/stores/edits";
 
 // Swap utilities
 import { getTokenId } from "@/lib/swap/utils";
@@ -68,9 +66,6 @@ export default function ProfilePage({
   const [forceShowQR, setForceShowQR] = useState(false);
   const [isProfileEditing, setIsProfileEditing] = useState(false);
 
-  // Granular subscriptions to prevent unnecessary re-renders
-  const pendingEdits = useEditsStore(state => state.pendingEdits);
-
   // Local state
   const [mode, setMode] = useState<'donate' | 'swap' | 'verification'>('donate');
   const [originTokenId, setOriginTokenId] = useState<string | null>(null);
@@ -249,7 +244,6 @@ export default function ProfilePage({
               {mode === "verification" ? (
                 <ProfileVerification
                   profile={initialProfile}
-                  pendingEdits={pendingEdits}
                 />
               ) : mode === "swap" ? (
                 <div className="p-0">

diff --git a/app/api/directory/route.ts b/app/api/directory/route.ts
@@ -18,6 +18,7 @@ interface ZcasherLink {
   id: number;
   label: string;
   url: string;
+  platform?: string;
   is_verified: boolean;
   zcasher_id: number;
 }
@@ -26,6 +27,7 @@ interface LinkOutput {
   id: number;
   label: string;
   url: string;
+  platform?: string;
   is_verified: boolean;
 }
 
@@ -272,7 +274,7 @@ export async function GET(request: Request): Promise<Response> {
   if (profileIds.length > 0) {
     const { data: links, error: linksError } = await supabase
       .from("zcasher_links")
-      .select("id,label,url,is_verified,zcasher_id")
+      .select("id,label,url,platform,is_verified,zcasher_id")
       .in("zcasher_id", profileIds);
 
     if (linksError) {
@@ -293,10 +295,10 @@ export async function GET(request: Request): Promise<Response> {
     const profileLinks = linksMap.get(p.id) || [];
     const authenticated_links: LinkOutput[] = profileLinks
       .filter((l) => l.is_verified)
-      .map((l) => ({ id: l.id, label: l.label, url: l.url, is_verified: l.is_verified }));
+      .map((l) => ({ id: l.id, label: l.label, url: l.url, platform: l.platform, is_verified: l.is_verified }));
     const unauthenticated_links: LinkOutput[] = profileLinks
       .filter((l) => !l.is_verified)
-      .map((l) => ({ id: l.id, label: l.label, url: l.url, is_verified: l.is_verified }));
+      .map((l) => ({ id: l.id, label: l.label, url: l.url, platform: l.platform, is_verified: l.is_verified }));
 
     return {
       id: p.id,

diff --git a/app/api/resolve/[username]/route.ts b/app/api/resolve/[username]/route.ts
@@ -1,6 +1,6 @@
 import { NextRequest } from "next/server";
-import { createSupabaseServerClient } from "../../../../lib/supabase/supabase-server";
-import { enforceApiGuard, withCacheHeaders } from "../../../../lib/api/guard";
+import { createSupabaseServerClient } from "@/lib/supabase/supabase-server";
+import { enforceApiGuard, withCacheHeaders } from "@/lib/api/guard";
 
 interface ZcasherProfile {
   id: number;
@@ -18,6 +18,7 @@ interface ZcasherLink {
   id: number;
   label: string;
   url: string;
+  platform?: string;
   is_verified: boolean;
 }
 
@@ -73,7 +74,7 @@ export async function GET(
 
   const { data: links, error: linksError } = await supabase
     .from("zcasher_links")
-    .select("id,label,url,is_verified")
+    .select("id,label,url,platform,is_verified")
     .eq("zcasher_id", typedProfile.id);
 
   if (linksError) {

diff --git a/app/api/resolve/route.ts b/app/api/resolve/route.ts
@@ -1,5 +1,5 @@
-import { createSupabaseServerClient } from "../../../lib/supabase/supabase-server";
-import { enforceApiGuard, withCacheHeaders } from "../../../lib/api/guard";
+import { createSupabaseServerClient } from "@/lib/supabase/supabase-server";
+import { enforceApiGuard, withCacheHeaders } from "@/lib/api/guard";
 
 const jsonResponse = (body: Record<string, unknown>, status: number = 200, cacheSeconds: number = 0): Response =>
   new Response(JSON.stringify(body), {
@@ -23,6 +23,7 @@ interface ZcasherLink {
   id: number;
   label: string;
   url: string;
+  platform?: string;
   is_verified: boolean;
 }
 
@@ -65,7 +66,7 @@ export async function GET(request: Request): Promise<Response> {
 
   const { data: links, error: linksError } = await supabase
     .from("zcasher_links")
-    .select("id,label,url,is_verified")
+    .select("id,label,url,platform,is_verified")
     .eq("zcasher_id", typedProfile.id);
 
   if (linksError) {

diff --git a/app/api/social/route.ts b/app/api/social/route.ts
@@ -1,31 +1,111 @@
-import { lookupSocialAddress } from "../../../lib/profile/social-lookup";
-import { enforceApiGuard, withCacheHeaders } from "../../../lib/api/guard";
+import { createSupabaseServerClient } from "@/lib/supabase/supabase-server";
+import { enforceApiGuard, withCacheHeaders } from "@/lib/api/guard";
+import { normalizeSocialUsername, type SocialPlatform } from "@/lib/profile/usernameNormalizer";
+
+const PLATFORM_ALIASES: Record<string, SocialPlatform> = {
+  x: "X",
+  twitter: "X",
+  github: "GitHub",
+  instagram: "Instagram",
+  reddit: "Reddit",
+  linkedin: "LinkedIn",
+  discord: "Discord",
+  tiktok: "TikTok",
+  bluesky: "Bluesky",
+  mastodon: "Mastodon",
+  snapchat: "Snapchat",
+  telegram: "Telegram",
+};
+
+const json = (body: Record<string, unknown>, status: number, cacheSeconds = 0): Response =>
+  new Response(JSON.stringify(body), {
+    status,
+    headers: withCacheHeaders({ "Content-Type": "application/json" }, cacheSeconds),
+  });
 
 export async function GET(request: Request): Promise<Response> {
   const guard = await enforceApiGuard(request, { cacheSeconds: 300 });
   if (guard instanceof Response) return guard;
 
   const { searchParams } = new URL(request.url);
-  const platform = searchParams.get("platform") || "";
-  const handle = searchParams.get("handle") || "";
-
-  if (!platform || !handle) {
-    return new Response(
-      JSON.stringify({ error: "missing_parameters", platform: null, handle: null }),
-      {
-        status: 400,
-        headers: { "Content-Type": "application/json" },
-      }
-    );
+  const rawPlatform = (searchParams.get("platform") || "").trim().toLowerCase();
+  const rawHandle = searchParams.get("handle") || "";
+
+  const platform = PLATFORM_ALIASES[rawPlatform];
+  if (!platform) {
+    return json({ error: "unsupported_platform", address: null, handle: null }, 400);
+  }
+
+  const handle = normalizeSocialUsername(rawHandle, platform);
+  if (!handle) {
+    return json({ error: "invalid_handle", address: null, handle: null }, 400);
   }
 
-  const result = await lookupSocialAddress(platform, handle);
+  const supabase = createSupabaseServerClient();
+  if (!supabase) {
+    return json({ error: "server_misconfigured", address: null, handle }, 500);
+  }
 
-  return new Response(JSON.stringify(result.body), {
-    status: result.status,
-    headers: withCacheHeaders(
-      { "Content-Type": "application/json" },
-      guard.cacheSeconds
-    ),
-  });
+  // Query by platform column + handle match on label or url tail
+  const { data: links, error: linksError } = await supabase
+    .from("zcasher_links")
+    .select("id,zcasher_id,label,url,is_verified")
+    .eq("platform", platform)
+    .eq("is_verified", true)
+    .or(`label.ilike.${handle},url.ilike.%/${handle}`)
+    .limit(25);
+
+  if (linksError) {
+    return json({ error: "lookup_failed", address: null, handle }, 500);
+  }
+
+  if (!links || !links.length) {
+    return json({ error: "not_found", address: null, handle }, 404);
+  }
+
+  // Fetch profiles for matched links
+  const ids = [...new Set(links.map((l) => l.zcasher_id))];
+  const { data: profiles, error: profileError } = await supabase
+    .from("zcasher")
+    .select("id,address,name,address_verified")
+    .in("id", ids);
+
+  if (profileError || !profiles?.length) {
+    return json({ error: "profile_lookup_failed", address: null, handle }, 500);
+  }
+
+  const profilesById = new Map(profiles.map((p) => [p.id, p]));
+
+  // Pick best: prefer verified link + verified address, then oldest profile
+  const best = links
+    .map((link) => ({ link, profile: profilesById.get(link.zcasher_id) }))
+    .filter((c): c is { link: typeof links[0]; profile: NonNullable<typeof profiles[0]> } =>
+      !!c.profile?.address
+    )
+    .sort((a, b) => {
+      const scoreA = (a.profile.address_verified ? 1 : 0);
+      const scoreB = (b.profile.address_verified ? 1 : 0);
+      if (scoreA !== scoreB) return scoreB - scoreA;
+      return a.profile.id - b.profile.id;
+    })[0];
+
+  if (!best) {
+    return json({ error: "address_missing", address: null, handle }, 404);
+  }
+
+  return json(
+    {
+      link: {
+        platform: platform.toLowerCase(),
+        handle,
+        url: best.link.url,
+        is_verified: true,
+      },
+      address: best.profile.address,
+      profile_name: best.profile.name,
+      address_verified: !!best.profile.address_verified,
+    },
+    200,
+    guard.cacheSeconds
+  );
 }
diff --git a/app/design-system/page.tsx b/app/design-system/page.tsx
@@ -1,36 +1,34 @@
 "use client";
 
 import { useState } from "react";
-import {
-  // Buttons
-  Button,
-  CopyButton,
-  IconButton,
-  // Layout
-  Card,
-  Section,
-  Divider,
-  // Feedback
-  Badge,
-  Spinner,
-  Alert,
-  // Forms
-  Input,
-  TextArea,
-  Select,
-  Checkbox,
-  FormField,
-  Dropdown,
-  // Modals
-  Modal,
-  ModalHeader,
-  ModalBody,
-  ModalFooter,
-  ConfirmDialog,
-  TutorialModal,
-  // Other
-  HelpIcon,
-} from "@/ui/common";
+// Buttons
+import Button from "@/ui/common/buttons/Button";
+import CopyButton from "@/ui/common/buttons/CopyButton";
+import IconButton from "@/ui/common/buttons/IconButton";
+// Layout
+import Card from "@/ui/common/layout/Card";
+import Section from "@/ui/common/layout/Section";
+import Divider from "@/ui/common/layout/Divider";
+// Feedback
+import Badge from "@/ui/common/feedback/Badge";
+import Spinner from "@/ui/common/feedback/Spinner";
+import Alert from "@/ui/common/feedback/Alert";
+// Forms
+import Input from "@/ui/common/forms/Input";
+import TextArea from "@/ui/common/forms/TextArea";
+import Select from "@/ui/common/forms/Select";
+import Checkbox from "@/ui/common/forms/Checkbox";
+import FormField from "@/ui/common/forms/FormField";
+import Dropdown from "@/ui/common/forms/Dropdown";
+// Modals
+import Modal from "@/ui/common/modals/Modal";
+import ModalHeader from "@/ui/common/modals/ModalHeader";
+import ModalBody from "@/ui/common/modals/ModalBody";
+import ModalFooter from "@/ui/common/modals/ModalFooter";
+import ConfirmDialog from "@/ui/common/modals/ConfirmDialog";
+import TutorialModal from "@/ui/common/modals/TutorialModal";
+// Other
+import HelpIcon from "@/ui/common/HelpIcon";
 
 export default function DesignSystemPage() {
   const [modalOpen, setModalOpen] = useState(false);