KnearMe Admin Architecture
Route layout
Section titled “Route layout”- Public auth route:
/login. - Protected admin area:
/dashboard/*. - API helpers:
src/app/api/*.
Representative domain sections under dashboard:
ai(usage, costs, models)agents(handoffs, memory)businesses,chatsreview-pipelinesystem(health, logs, audit)
Auth and authorization
Section titled “Auth and authorization”- Supabase auth for identity.
admin_userstable gates access and role resolution.- Role order:
superadmin>ops>viewer. - Middleware protects private routes.
Data access model
Section titled “Data access model”- Standard server client for auth-sensitive checks.
- Admin service-role client for operational visibility across tenants.
Key sources
Section titled “Key sources”- App guide:
/Users/aaronbaker/knearme-platform/apps/knearme-admin/CLAUDE.md - Admin migrations:
/Users/aaronbaker/knearme-platform/apps/knearme-admin/supabase/migrations