chore: fix release with missing changeset (#2588)

Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>

.github/workflows/gen_schedule_update_deps.yaml

@@ -22,7 +22,7 @@ jobs:
     - name: Configure aws
       uses: aws-actions/configure-aws-credentials@v4
       with:
-        role-to-assume: arn:aws:iam::${{ secrets.AWS_PRODUCTION_CORE_ACCOUNT_ID }}:role/github-actions-nhost-be
+        role-to-assume: arn:aws:iam::${{ secrets.AWS_PRODUCTION_CORE_ACCOUNT_ID }}:role/github-actions-nhost-${{ github.event.repository.name }}
         aws-region: eu-central-1
 
     - uses: nixbuild/nix-quick-install-action@v26

config/.husky/pre-commit

@@ -1,4 +1,7 @@
 #!/bin/sh
+#
+[ -n "$CI" ] && exit 0
+
 . "$(dirname "$0")/_/husky.sh"
 
 pnpm dlx lint-staged --config config/.lintstagedrc.js

dashboard/CHANGELOG.md

@@ -1,5 +1,73 @@
 # @nhost/dashboard
 
+## 1.10.0
+
+### Minor Changes
+
+- 49a80c2: chore: update dependencies
+- 150c04a: feat: add healthcheck config to run services
+
+### Patch Changes
+
+- e03f141: fix: allow insert, update and delete on tables in `auth` and `storage` schemas
+- 28676f4: feat: add min postgres version check to enable the ai service
+- Updated dependencies [49a80c2]
+  - @nhost/react-apollo@10.0.0
+  - @nhost/nextjs@2.1.6
+
+## 1.9.0
+
+### Minor Changes
+
+- d86e5c9: feat: add support for filtering the logs using a RegExp
+
+## 1.8.3
+
+### Patch Changes
+
+- @nhost/react-apollo@9.0.3
+- @nhost/nextjs@2.1.5
+
+## 1.8.2
+
+### Patch Changes
+
+- 6df4f02: fix: use custom error toast and show correct message when sending an invite
+
+## 1.8.1
+
+### Patch Changes
+
+- @nhost/react-apollo@9.0.2
+- @nhost/nextjs@2.1.4
+
+## 1.8.0
+
+### Minor Changes
+
+- 713d53c: feat: add catch-all route for workspace/project - useful for documentation
+
+### Patch Changes
+
+- 3db2999: fix: refresh table list after running SQL using the editor
+- 3c4dd55: fix: handle `Error` objects properly in the `ErrorToast` component
+- 92b434e: fix: resolve an issue where the checkbox in the data-grid header did not select all rows
+  - @nhost/react-apollo@9.0.1
+  - @nhost/nextjs@2.1.3
+
+## 1.7.0
+
+### Minor Changes
+
+- 0d8d0eb: Update docs and dashboard references
+
+## 1.6.9
+
+### Patch Changes
+
+- @nhost/react-apollo@9.0.0
+- @nhost/nextjs@2.1.2
+
 ## 1.6.8
 
 ### Patch Changes

dashboard/next.config.js

@@ -16,8 +16,6 @@ const cspHeader = `
     form-action 'self';
     frame-ancestors 'none';
     frame-src 'self' js.stripe.com;
-    block-all-mixed-content;
-    upgrade-insecure-requests;
 `;
 
 module.exports = withBundleAnalyzer({
@@ -42,10 +40,6 @@ module.exports = withBundleAnalyzer({
             key: 'X-Frame-Options',
             value: 'SAMEORIGIN',
           },
-          {
-            key: 'Content-Security-Policy',
-            value: cspHeader.replace(/\n/g, ''),
-          },
         ],
       },
     ];

dashboard/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@nhost/dashboard",
-  "version": "1.6.8",
+  "version": "1.10.0",
   "private": true,
   "scripts": {
     "preinstall": "npx only-allow pnpm",
@@ -19,58 +19,58 @@
     "e2e": "pnpm install-browsers && pnpm playwright test"
   },
   "dependencies": {
-    "@apollo/client": "^3.9.4",
-    "@codemirror/lang-sql": "^6.5.5",
+    "@apollo/client": "^3.9.5",
+    "@codemirror/lang-sql": "^6.6.0",
     "@emotion/cache": "^11.11.0",
-    "@emotion/react": "^11.11.3",
+    "@emotion/react": "^11.11.4",
     "@emotion/server": "^11.11.0",
     "@emotion/styled": "^11.11.0",
     "@fontsource/inter": "^5.0.16",
     "@fontsource/roboto-mono": "^5.0.16",
-    "@graphiql/react": "^0.20.2",
+    "@graphiql/react": "^0.20.3",
     "@graphiql/toolkit": "^0.9.1",
     "@headlessui/react": "^1.7.18",
     "@heroicons/react": "^1.0.6",
     "@hookform/resolvers": "^3.3.4",
     "@mui/base": "5.0.0-beta.31",
-    "@mui/material": "^5.15.7",
-    "@mui/system": "^5.15.7",
+    "@mui/material": "^5.15.11",
+    "@mui/system": "^5.15.11",
     "@mui/x-date-pickers": "^5.0.20",
     "@nhost/nextjs": "workspace:*",
     "@nhost/react-apollo": "workspace:*",
     "@segment/snippet": "^4.16.2",
-    "@stripe/react-stripe-js": "^2.4.0",
+    "@stripe/react-stripe-js": "^2.5.1",
     "@stripe/stripe-js": "^1.54.2",
     "@tailwindcss/forms": "^0.5.7",
     "@tanstack/react-query": "^4.36.1",
-    "@tanstack/react-table": "^8.11.7",
-    "@tanstack/react-virtual": "^3.0.2",
-    "@uiw/codemirror-theme-github": "^4.21.21",
-    "@uiw/react-codemirror": "^4.21.21",
+    "@tanstack/react-table": "^8.13.2",
+    "@tanstack/react-virtual": "^3.1.3",
+    "@uiw/codemirror-theme-github": "^4.21.24",
+    "@uiw/react-codemirror": "^4.21.24",
     "analytics-node": "^6.2.0",
     "bcryptjs": "^2.4.3",
     "clsx": "^1.2.1",
     "date-fns": "^2.30.0",
     "framer-motion": "^10.18.0",
     "generate-password": "^1.7.1",
-    "graphiql": "^3.1.0",
+    "graphiql": "^3.1.1",
     "graphql": "16.8.1",
     "graphql-request": "^6.1.0",
     "graphql-tag": "^2.12.6",
-    "graphql-ws": "^5.14.3",
+    "graphql-ws": "^5.15.0",
     "just-kebab-case": "^4.2.0",
     "lodash.debounce": "^4.0.8",
     "next": "^14.1.0",
-    "next-seo": "^6.4.0",
+    "next-seo": "^6.5.0",
     "node-pg-format": "^1.3.5",
     "pluralize": "^8.0.0",
     "react": "18.2.0",
     "react-children-utilities": "^2.10.0",
     "react-dom": "18.2.0",
-    "react-error-boundary": "^4.0.12",
-    "react-hook-form": "^7.50.0",
+    "react-error-boundary": "^4.0.13",
+    "react-hook-form": "^7.50.1",
     "react-hot-toast": "^2.4.1",
-    "react-intersection-observer": "^9.5.4",
+    "react-intersection-observer": "^9.8.1",
     "react-is": "18.2.0",
     "react-loading-skeleton": "^2.2.0",
     "react-markdown": "^9.0.1",
@@ -91,7 +91,7 @@
     "yup-password": "^0.2.2"
   },
   "devDependencies": {
-    "@babel/core": "^7.23.9",
+    "@babel/core": "^7.24.0",
     "@faker-js/faker": "^7.6.0",
     "@graphql-codegen/cli": "^3.3.1",
     "@graphql-codegen/typescript": "^3.0.4",
@@ -106,36 +106,36 @@
     "@storybook/addon-postcss": "^2.0.0",
     "@storybook/builder-webpack5": "^6.5.16",
     "@storybook/manager-webpack5": "^6.5.16",
-    "@storybook/react": "^7.6.15",
+    "@storybook/react": "^7.6.17",
     "@storybook/testing-library": "^0.2.2",
     "@tailwindcss/typography": "^0.5.10",
     "@testing-library/dom": "^9.3.4",
     "@testing-library/jest-dom": "^5.17.0",
-    "@testing-library/react": "^14.2.0",
+    "@testing-library/react": "^14.2.1",
     "@testing-library/user-event": "^14.5.2",
     "@types/ace": "^0.0.48",
     "@types/bcryptjs": "^2.4.6",
-    "@types/jest": "^29.5.11",
+    "@types/jest": "^29.5.12",
     "@types/lodash.debounce": "^4.0.9",
-    "@types/node": "^16.18.78",
+    "@types/node": "^16.18.86",
     "@types/pluralize": "^0.0.30",
-    "@types/react": "^18.2.50",
-    "@types/react-dom": "^18.2.18",
+    "@types/react": "^18.2.61",
+    "@types/react-dom": "^18.2.19",
     "@types/react-table": "^7.7.19",
     "@types/shell-quote": "^1.7.5",
     "@types/testing-library__jest-dom": "^5.14.9",
-    "@types/validator": "^13.11.8",
-    "@typescript-eslint/eslint-plugin": "^6.20.0",
-    "@typescript-eslint/parser": "^6.20.0",
+    "@types/validator": "^13.11.9",
+    "@typescript-eslint/eslint-plugin": "^6.21.0",
+    "@typescript-eslint/parser": "^6.21.0",
     "@vitejs/plugin-react": "^4.2.1",
     "@vitest/coverage-v8": "^0.32.4",
     "autoprefixer": "^10.4.17",
     "babel-loader": "^8.3.0",
     "babel-plugin-transform-remove-console": "^6.9.4",
     "csstype": "^3.1.3",
-    "dotenv": "^16.4.1",
+    "dotenv": "^16.4.5",
     "encoding": "^0.1.13",
-    "eslint": "^8.56.0",
+    "eslint": "^8.57.0",
     "eslint-config-airbnb": "19.0.4",
     "eslint-config-airbnb-typescript": "^17.1.0",
     "eslint-config-next": "^13.5.6",
@@ -145,11 +145,11 @@
     "eslint-plugin-react": "^7.33.2",
     "eslint-plugin-react-hooks": "^4.6.0",
     "jsdom": "^22.1.0",
-    "lint-staged": "^15.2.1",
+    "lint-staged": "^15.2.2",
     "msw": "^1.3.2",
     "msw-storybook-addon": "^1.10.0",
     "node-fetch": "^3.3.2",
-    "postcss": "^8.4.33",
+    "postcss": "^8.4.35",
     "prettier": "^2.8.8",
     "prettier-plugin-organize-imports": "^3.2.4",
     "prettier-plugin-tailwindcss": "^0.4.1",
@@ -160,7 +160,7 @@
     "tailwindcss": "^3.4.1",
     "ts-node": "^10.9.2",
     "tsconfig-paths-webpack-plugin": "^4.1.0",
-    "vite": "^5.0.12",
+    "vite": "^5.1.4",
     "vite-tsconfig-paths": "^4.3.1",
     "vitest": "^0.32.4"
   },

dashboard/src/components/dataGrid/DataGridBody/DataGridBody.tsx

@@ -35,7 +35,7 @@ function InsertPlaceholderTableRow({
   ...props
 }: InsertPlaceholderTableRowProps) {
   return (
-    <Box className="h-12 border-r-1 border-b-1" {...props}>
+    <Box className="h-12 border-b-1 border-r-1" {...props}>
       <Button
         onClick={onInsertRow}
         variant="borderless"
@@ -209,7 +209,7 @@ export default function DataGridBody<T extends object>({
             />
           ) : (
             <Box
-              className="inline-flex h-12 items-center border-b-1 border-r-1 py-1.5 px-2 text-xs"
+              className="inline-flex h-12 items-center border-b-1 border-r-1 px-2 py-1.5 text-xs"
               sx={{ color: 'text.secondary' }}
               style={{
                 width: allowInsertColumn
@@ -281,8 +281,8 @@ export default function DataGridBody<T extends object>({
                     }}
                     className={twMerge(
                       'h-12 font-display text-xs motion-safe:transition-colors',
-                      'border-r-1 border-b-1',
-                      'scroll-mt-[57px] scroll-ml-8',
+                      'border-b-1 border-r-1',
+                      'scroll-ml-8 scroll-mt-[57px]',
                       column.id === 'selection' &&
                         'sticky left-0 z-20 justify-center px-0',
                     )}
@@ -296,7 +296,7 @@ export default function DataGridBody<T extends object>({
               })}
 
               {allowInsertColumn && (
-                <Box className="h-12 w-25 border-r-1 border-b-1" />
+                <Box className="h-12 w-25 border-b-1 border-r-1" />
               )}
             </div>
 

dashboard/src/components/dataGrid/DataGridCell/DataGridCell.tsx

@@ -8,7 +8,15 @@ import type {
   DataBrowserGridCellProps,
 } from '@/features/database/dataGrid/types/dataBrowser';
 import { triggerToast } from '@/utils/toast';
-import type { FocusEvent, JSXElementConstructor, KeyboardEvent, MouseEvent, ReactElement, ReactNode, ReactPortal } from 'react';
+import type {
+  FocusEvent,
+  JSXElementConstructor,
+  KeyboardEvent,
+  MouseEvent,
+  ReactElement,
+  ReactNode,
+  ReactPortal,
+} from 'react';
 import {
   Children,
   cloneElement,
@@ -308,7 +316,7 @@ function DataGridCellContent<TData extends object = {}, TValue = unknown>({
         isEditable &&
           'focus-within:outline-none focus-within:ring-0 focus:ring-0',
         isSelected && 'shadow-outline',
-        isEditing ? 'p-0.5 shadow-outline-dark' : 'py-1.5 px-2',
+        isEditing ? 'p-0.5 shadow-outline-dark' : 'px-2 py-1.5',
         className,
       )}
       onFocus={handleFocus}
@@ -320,20 +328,28 @@ function DataGridCellContent<TData extends object = {}, TValue = unknown>({
       sx={{ backgroundColor: 'transparent' }}
       {...props}
     >
-      {Children.map(children, (child: ReactNode | ReactPortal | ReactElement<unknown, string | JSXElementConstructor<any>>) => {
-        if (!isValidElement(child)) {
-          return null;
-        }
+      {Children.map(
+        children,
+        (
+          child:
+            | ReactNode
+            | ReactPortal
+            | ReactElement<unknown, string | JSXElementConstructor<any>>,
+        ) => {
+          if (!isValidElement(child)) {
+            return null;
+          }
 
-        return cloneElement(child, {
-          ...child.props,
-          onSave: handleSave,
-          optimisticValue,
-          onOptimisticValueChange: setOptimisticValue,
-          temporaryValue,
-          onTemporaryValueChange: setTemporaryValue,
-        });
-      })}
+          return cloneElement(child, {
+            ...child.props,
+            onSave: handleSave,
+            optimisticValue,
+            onOptimisticValueChange: setOptimisticValue,
+            temporaryValue,
+            onTemporaryValueChange: setTemporaryValue,
+          });
+        },
+      )}
     </Box>
   );
 

dashboard/src/components/dataGrid/DataGridHeader/DataGridHeader.tsx

@@ -96,45 +96,52 @@ export default function DataGridHeader<T extends object>({
             }}
             key={column.id}
           >
-            <Dropdown.Trigger
-              className={twMerge(
-                'focus:outline-none motion-safe:transition-colors',
-              )}
-              disabled={
-                column.isDisabled ||
-                column.id === 'selection' ||
-                (column.disableSortBy && !onRemoveColumn)
-              }
-              hideChevron
-            >
+            {column.id === 'selection' ? (
               <span
                 {...headerProps}
                 className="relative grid w-full grid-flow-col items-center justify-between p-2"
               >
                 {column.render('Header')}
-
-                {allowSort && (
-                  <Box component="span" sx={{ color: 'text.primary' }}>
-                    {column.isSorted && !column.isSortedDesc && (
-                      <ArrowUpIcon className="h-3 w-3" />
-                    )}
-
-                    {column.isSorted && column.isSortedDesc && (
-                      <ArrowDownIcon className="h-3 w-3" />
-                    )}
-                  </Box>
-                )}
               </span>
-
-              {allowResize && !column.disableResizing && (
+            ) : (
+              <Dropdown.Trigger
+                className={twMerge(
+                  'focus:outline-none motion-safe:transition-colors',
+                )}
+                disabled={
+                  column.isDisabled || (column.disableSortBy && !onRemoveColumn)
+                }
+                hideChevron
+              >
                 <span
-                  {...column.getResizerProps({
-                    onClick: (event: Event) => event.stopPropagation(),
-                  })}
-                  className="absolute top-0 bottom-0 -right-0.5 z-10 h-full w-1.5 group-hover:bg-slate-900 group-hover:bg-opacity-20 group-active:bg-slate-900 group-active:bg-opacity-20 motion-safe:transition-colors"
-                />
-              )}
-            </Dropdown.Trigger>
+                  {...headerProps}
+                  className="relative grid w-full grid-flow-col items-center justify-between p-2"
+                >
+                  {column.render('Header')}
+
+                  {allowSort && (
+                    <Box component="span" sx={{ color: 'text.primary' }}>
+                      {column.isSorted && !column.isSortedDesc && (
+                        <ArrowUpIcon className="h-3 w-3" />
+                      )}
+
+                      {column.isSorted && column.isSortedDesc && (
+                        <ArrowDownIcon className="h-3 w-3" />
+                      )}
+                    </Box>
+                  )}
+                </span>
+
+                {allowResize && !column.disableResizing && (
+                  <span
+                    {...column.getResizerProps({
+                      onClick: (event: Event) => event.stopPropagation(),
+                    })}
+                    className="absolute -right-0.5 bottom-0 top-0 z-10 h-full w-1.5 group-hover:bg-slate-900 group-hover:bg-opacity-20 group-active:bg-slate-900 group-active:bg-opacity-20 motion-safe:transition-colors"
+                  />
+                )}
+              </Dropdown.Trigger>
+            )}
 
             <Dropdown.Content
               menu

dashboard/src/components/ui/v2/Button/Button.stories.tsx

@@ -1,6 +1,6 @@
 import { PlusCircleIcon } from '@/components/ui/v2/icons/PlusCircleIcon';
 import { PlusIcon } from '@/components/ui/v2/icons/PlusIcon';
-import type { ComponentMeta, ComponentStory } from '@storybook/react';
+import type { Meta, StoryFn } from '@storybook/react';
 import type { ButtonProps } from './Button';
 import Button from './Button';
 
@@ -24,9 +24,9 @@ export default {
       control: { type: 'radio' },
     },
   },
-} as ComponentMeta<typeof Button>;
+} as Meta<typeof Button>;
 
-const Template: ComponentStory<typeof Button> = function Template(
+const Template: StoryFn<ButtonProps> = function TemplateFunction(
   args: ButtonProps,
 ) {
   return <Button {...args} />;

dashboard/src/components/ui/v2/ErrorToast/ErrorToast.tsx

@@ -5,7 +5,7 @@ import { XIcon } from '@/components/ui/v2/icons/XIcon';
 import { useCurrentWorkspaceAndProject } from '@/features/projects/common/hooks/useCurrentWorkspaceAndProject';
 import { getToastBackgroundColor } from '@/utils/constants/settings';
 import { copy } from '@/utils/copy';
-import { type ApolloError } from '@apollo/client';
+import type { ApolloError } from '@apollo/client';
 import { useUserData } from '@nhost/nextjs';
 import { AnimatePresence, motion } from 'framer-motion';
 import { useRouter } from 'next/router';
@@ -20,6 +20,44 @@ interface ErrorDetails {
   error: any;
 }
 
+const getInternalErrorMessage = (
+  error: Error | ApolloError | undefined,
+): string | null => {
+  if (!error) {
+    return null;
+  }
+
+  if (error.name === 'ApolloError') {
+    // @ts-ignore
+    const internalError = error.graphQLErrors?.[0]?.extensions?.internal as {
+      error: { message: string };
+    };
+    return internalError?.error?.message || null;
+  }
+
+  if (error instanceof Error) {
+    return error.message;
+  }
+
+  return null;
+};
+
+const errorToObject = (error: ApolloError | Error) => {
+  if (error.name === 'ApolloError') {
+    return error;
+  }
+
+  if (error instanceof Error) {
+    return {
+      name: error.name,
+      message: error.message,
+      stack: error.stack,
+    };
+  }
+
+  return {};
+};
+
 export default function ErrorToast({
   isVisible,
   errorMessage,
@@ -28,7 +66,7 @@ export default function ErrorToast({
 }: {
   isVisible: boolean;
   errorMessage: string;
-  error: ApolloError;
+  error: ApolloError | Error;
   close: () => void;
 }) {
   const userData = useUserData();
@@ -43,19 +81,10 @@ export default function ErrorToast({
       userId: userData?.id || 'local',
       url: asPath,
     },
-    error,
+    error: errorToObject(error),
   };
 
-  const internalError = error?.graphQLErrors?.at(0)?.extensions?.internal as {
-    error: {
-      message: string;
-    };
-  };
-
-  const msg =
-    internalError?.error?.message ||
-    error?.graphQLErrors?.at(0).message ||
-    errorMessage;
+  const msg = getInternalErrorMessage(error) || errorMessage;
 
   return (
     <AnimatePresence>

dashboard/src/components/ui/v2/Select/Select.stories.tsx

@@ -1,5 +1,5 @@
 import { Option } from '@/components/ui/v2/Option';
-import type { ComponentMeta, ComponentStory } from '@storybook/react';
+import type { Meta, StoryFn } from '@storybook/react';
 import type { SelectProps } from './Select';
 import Select from './Select';
 
@@ -7,11 +7,9 @@ export default {
   title: 'UI Library / Select',
   component: Select,
   argTypes: {},
-} as ComponentMeta<typeof Select>;
+} as Meta<typeof Select>;
 
-const Template: ComponentStory<typeof Select> = function Template(
-  args: SelectProps<any>,
-) {
+const Template: StoryFn<SelectProps<any>> = function TemplateFunction(args) {
   return (
     <Select className="w-64" {...args}>
       <Option value="value1">Value 1</Option>

dashboard/src/components/ui/v2/Switch/Switch.stories.tsx

@@ -1,4 +1,4 @@
-import type { ComponentMeta, ComponentStory } from '@storybook/react';
+import type { Meta, StoryFn } from '@storybook/react';
 import type { SwitchProps } from './Switch';
 import Switch from './Switch';
 
@@ -6,9 +6,9 @@ export default {
   title: 'UI Library / Switch',
   component: Switch,
   argTypes: {},
-} as ComponentMeta<typeof Switch>;
+} as Meta<typeof Switch>;
 
-const Template: ComponentStory<typeof Switch> = function Template(
+const Template: StoryFn<SwitchProps> = function TemplateFunction(
   args: SwitchProps,
 ) {
   return <Switch label="Accept Rules" {...args} />;

dashboard/src/features/ai/settings/components/AISettings.tsx

@@ -21,13 +21,17 @@ import {
   useUpdateConfigMutation,
 } from '@/generated/graphql';
 import { RESOURCE_VCPU_MULTIPLIER } from '@/utils/constants/common';
+import { getToastStyleProps } from '@/utils/constants/settings';
 import { execPromiseWithErrorToast } from '@/utils/execPromiseWithErrorToast';
 import { yupResolver } from '@hookform/resolvers/yup';
 import { useEffect, useState } from 'react';
 import { FormProvider, useForm } from 'react-hook-form';
+import { toast } from 'react-hot-toast';
 import * as Yup from 'yup';
 import { DisableAIServiceConfirmationDialog } from './DisableAIServiceConfirmationDialog';
 
+const MIN_POSTGRES_VERSION_SUPPORTING_AI = '14.6-20231018-1';
+
 const validationSchema = Yup.object({
   version: Yup.object({
     label: Yup.string().required(),
@@ -54,7 +58,9 @@ export default function AISettings() {
   const [aiServiceEnabled, setAIServiceEnabled] = useState(true);
 
   const {
-    data: { config: { ai } = {} } = {},
+    data: {
+      config: { ai, postgres: { version: postgresVersion } = {} } = {},
+    } = {},
     loading: loadingAiSettings,
     error: errorGettingAiSettings,
   } = useGetAiSettingsQuery({
@@ -150,6 +156,17 @@ export default function AISettings() {
   ]);
 
   const toggleAIService = async (enabled: boolean) => {
+    if (postgresVersion < MIN_POSTGRES_VERSION_SUPPORTING_AI) {
+      toast.error(
+        'In order to enable the AI service you need to update your database version to 14.6-20231018-1 or newer.',
+        {
+          style: getToastStyleProps().style,
+          ...getToastStyleProps().error,
+        },
+      );
+      return;
+    }
+
     setAIServiceEnabled(enabled);
 
     if (!enabled && ai) {

dashboard/src/features/ai/settings/gql/getAISettings.gql

@@ -1,5 +1,8 @@
 query GetAISettings($appId: uuid!) {
   config(appID: $appId, resolve: false) {
+    postgres {
+      version
+    }
     ai {
       version
       webhookSecret

dashboard/src/features/authentication/settings/components/AllowedEmailSettings/AllowedEmailSettings.tsx

@@ -130,7 +130,7 @@ export default function AllowedEmailDomainsSettings() {
               loading: formState.isSubmitting,
             },
           }}
-          docsLink="https://docs.nhost.io/authentication#allowed-emails-and-domains"
+          docsLink="https://docs.nhost.io/guides/auth/overview#allowed-emails-and-domains"
           switchId="enabled"
           showSwitch
           className={twMerge(

dashboard/src/features/authentication/settings/components/AllowedRedirectURLsSettings/AllowedRedirectURLsSettings.tsx

@@ -105,7 +105,7 @@ export default function AllowedRedirectURLsSettings() {
               loading: formState.isSubmitting,
             },
           }}
-          docsLink="https://docs.nhost.io/authentication#allowed-redirect-urls"
+          docsLink="https://docs.nhost.io/guides/auth/overview#allowed-redirect-urls"
           className="grid grid-flow-row px-4 lg:grid-cols-5"
         >
           <Input

dashboard/src/features/authentication/settings/components/AppleProviderSettings/AppleProviderSettings.tsx

@@ -141,7 +141,7 @@ export default function AppleProviderSettings() {
               loading: formState.isSubmitting,
             },
           }}
-          docsLink="https://docs.nhost.io/authentication/sign-in-with-apple"
+          docsLink="https://docs.nhost.io/guides/auth/social/sign-in-apple"
           docsTitle="how to sign in users with Apple"
           icon={
             theme.palette.mode === 'dark'

dashboard/src/features/authentication/settings/components/BlockedEmailSettings/BlockedEmailSettings.tsx

@@ -136,7 +136,7 @@ export default function BlockedEmailSettings() {
               loading: formState.isSubmitting,
             },
           }}
-          docsLink="https://docs.nhost.io/authentication#blocked-emails-and-domains"
+          docsLink="https://docs.nhost.io/guides/auth/overview#allowed-emails-and-domains"
           switchId="enabled"
           showSwitch
           className={twMerge(

dashboard/src/features/authentication/settings/components/ClientURLSettings/ClientURLSettings.tsx

@@ -99,7 +99,7 @@ export default function ClientURLSettings() {
               loading: formState.isSubmitting,
             },
           }}
-          docsLink="https://docs.nhost.io/authentication#client-url"
+          docsLink="https://docs.nhost.io/guides/auth/overview#client-url"
           className="grid grid-flow-row lg:grid-cols-5"
         >
           <Input

dashboard/src/features/authentication/settings/components/DisableNewUsersSettings/DisableNewUsersSettings.tsx

@@ -89,7 +89,7 @@ export default function DisableNewUsersSettings() {
         <SettingsContainer
           title="Disable New Users"
           description="If set, newly registered users are disabled and won't be able to sign in."
-          docsLink="https://docs.nhost.io/authentication#disable-new-users"
+          docsLink="https://docs.nhost.io/guides/auth/overview#disable-new-users"
           switchId="disabled"
           showSwitch
           slotProps={{

dashboard/src/features/authentication/settings/components/DiscordProviderSettings/DiscordProviderSettings.tsx

@@ -111,7 +111,7 @@ export default function DiscordProviderSettings() {
               loading: formState.isSubmitting,
             },
           }}
-          docsLink="https://docs.nhost.io/platform/authentication/sign-in-with-discord"
+          docsLink="https://docs.nhost.io/guides/auth/social/sign-in-discord"
           docsTitle="how to sign in users with Discord"
           icon="/assets/brands/discord.svg"
           switchId="enabled"

dashboard/src/features/authentication/settings/components/EmailAndPasswordSettings/EmailAndPasswordSettings.tsx

@@ -104,7 +104,7 @@ export default function EmailAndPasswordSettings() {
         <SettingsContainer
           title="Email and Password"
           description="Allow users to sign in with email and password."
-          docsLink="https://docs.nhost.io/authentication/sign-in-with-email-and-password"
+          docsLink="https://docs.nhost.io/guides/auth/sign-in-email-password"
           docsTitle="how to sign in users with email and password"
           className="grid grid-flow-row"
           showSwitch

dashboard/src/features/authentication/settings/components/FacebookProviderSettings/FacebookProviderSettings.tsx

@@ -111,7 +111,7 @@ export default function FacebookProviderSettings() {
               loading: formState.isSubmitting,
             },
           }}
-          docsLink="https://docs.nhost.io/platform/authentication/sign-in-with-facebook"
+          docsLink="https://docs.nhost.io/guides/auth/social/sign-in-facebook"
           docsTitle="how to sign in users with Facebook"
           icon="/assets/brands/facebook.svg"
           switchId="enabled"

dashboard/src/features/authentication/settings/components/GitHubProviderSettings/GitHubProviderSettings.tsx

@@ -113,7 +113,7 @@ export default function GitHubProviderSettings() {
               loading: formState.isSubmitting,
             },
           }}
-          docsLink="https://docs.nhost.io/platform/authentication/sign-in-with-github"
+          docsLink="https://docs.nhost.io/guides/auth/social/sign-in-github"
           docsTitle="how to sign in users with GitHub"
           icon={
             theme.palette.mode === 'dark'

dashboard/src/features/authentication/settings/components/GoogleProviderSettings/GoogleProviderSettings.tsx

@@ -111,7 +111,7 @@ export default function GoogleProviderSettings() {
               loading: formState.isSubmitting,
             },
           }}
-          docsLink="https://docs.nhost.io/platform/authentication/sign-in-with-google"
+          docsLink="https://docs.nhost.io/guides/auth/social/sign-in-google"
           docsTitle="how to sign in users with Google"
           icon="/assets/brands/google.svg"
           switchId="enabled"

dashboard/src/features/authentication/settings/components/GravatarSettings/GravatarSettings.tsx

@@ -113,7 +113,7 @@ export default function GravatarSettings() {
               loading: formState.isSubmitting,
             },
           }}
-          docsLink="https://docs.nhost.io/authentication#gravatar"
+          docsLink="https://docs.nhost.io/guides/auth/overview#gravatar"
           switchId="enabled"
           showSwitch
           className={twMerge(

dashboard/src/features/authentication/settings/components/LinkedInProviderSettings/LinkedInProviderSettings.tsx

@@ -111,7 +111,7 @@ export default function LinkedInProviderSettings() {
               loading: formState.isSubmitting,
             },
           }}
-          docsLink="https://docs.nhost.io/platform/authentication/sign-in-with-linkedin"
+          docsLink="https://docs.nhost.io/guides/auth/social/sign-in-linkedin"
           docsTitle="how to sign in users with LinkedIn"
           icon="/assets/brands/linkedin.svg"
           switchId="enabled"

dashboard/src/features/authentication/settings/components/MFASettings/MFASettings.tsx

@@ -102,7 +102,7 @@ export default function MFASettings() {
               loading: formState.isSubmitting,
             },
           }}
-          docsLink="https://docs.nhost.io/authentication#multi-factor-authentication"
+          docsLink="https://docs.nhost.io/guides/auth/overview#multi-factor-authentication"
           switchId="enabled"
           showSwitch
           className={twMerge(

dashboard/src/features/authentication/settings/components/MagicLinkSettings/MagicLinkSettings.tsx

@@ -97,7 +97,7 @@ export default function MagicLinkSettings() {
               loading: formState.isSubmitting,
             },
           }}
-          docsLink="https://docs.nhost.io/authentication/sign-in-with-magic-link"
+          docsLink="https://docs.nhost.io/guides/auth/sign-in-magic-link"
           docsTitle="how to sign in users with Magic Link"
           switchId="enabled"
           showSwitch

dashboard/src/features/authentication/settings/components/SMSSettings/SMSSettings.tsx

@@ -137,7 +137,7 @@ export default function SMSSettings() {
           }}
           switchId="enabled"
           showSwitch
-          docsLink="https://docs.nhost.io/authentication/sign-in-with-phone-number-sms"
+          docsLink="https://docs.nhost.io/guides/auth/sign-in-phone-number"
           docsTitle="how to sign in users with a phone number (SMS)"
           className={twMerge(
             'grid grid-flow-col grid-cols-2 grid-rows-4 gap-x-3 gap-y-4 px-4 py-2',

dashboard/src/features/authentication/settings/components/SpotifyProviderSettings/SpotifyProviderSettings.tsx

@@ -111,7 +111,7 @@ export default function SpotifyProviderSettings() {
               loading: formState.isSubmitting,
             },
           }}
-          docsLink="https://docs.nhost.io/platform/authentication/sign-in-with-spotify"
+          docsLink="https://docs.nhost.io/guides/auth/social/sign-in-spotify"
           docsTitle="how to sign in users with Spotify"
           icon="/assets/brands/spotify.svg"
           switchId="enabled"

dashboard/src/features/authentication/settings/components/TwitchProviderSettings/TwitchProviderSettings.tsx

@@ -113,7 +113,7 @@ export default function TwitchProviderSettings() {
               loading: formState.isSubmitting,
             },
           }}
-          docsLink="https://docs.nhost.io/platform/authentication/sign-in-with-twitch"
+          docsLink="https://docs.nhost.io/guides/auth/social/sign-in-twitch"
           docsTitle="how to sign in users with Twitch"
           icon={
             theme.palette.mode === 'dark'

dashboard/src/features/authentication/settings/components/WebAuthnSettings/WebAuthnSettings.tsx

@@ -101,7 +101,7 @@ export default function WebAuthnSettings() {
               loading: formState.isSubmitting,
             },
           }}
-          docsLink="https://docs.nhost.io/authentication/sign-in-with-security-keys"
+          docsLink="https://docs.nhost.io/guides/auth/sign-in-webauthn"
           docsTitle="how to sign in users with security keys"
           switchId="enabled"
           showSwitch

dashboard/src/features/authentication/settings/components/WorkOsProviderSettings/WorkOsProviderSettings.tsx

@@ -137,7 +137,7 @@ export default function WorkOsProviderSettings() {
               loading: formState.isSubmitting,
             },
           }}
-          docsLink="https://docs.nhost.io/authentication/sign-in-with-workos"
+          docsLink="https://docs.nhost.io/guides/auth/social/sign-in-workos"
           docsTitle="how to sign in users with WorkOS"
           icon="/assets/brands/workos.svg"
           switchId="enabled"

dashboard/src/features/database/dataGrid/components/DataBrowserGrid/DataBrowserGrid.tsx

@@ -275,7 +275,7 @@ export default function DataBrowserGrid({
     () =>
       columns
         .map((column) => ({
-          ...createDataGridColumn(column, isSchemaEditable),
+          ...createDataGridColumn(column, true),
           onCellEdit: async (variables: UpdateRecordVariables) => {
             const result = await updateRow(variables);
             await queryClient.invalidateQueries([currentTablePath]);
@@ -288,7 +288,6 @@ export default function DataBrowserGrid({
     [
       columns,
       currentTablePath,
-      isSchemaEditable,
       optimisticlyRemovedColumnId,
       queryClient,
       removableColumnId,
@@ -422,7 +421,7 @@ export default function DataBrowserGrid({
       loading={status === 'loading'}
       sortBy={sortBy}
       className="pb-17 sm:pb-0"
-      onInsertRow={isSchemaEditable ? handleInsertRowClick : undefined}
+      onInsertRow={handleInsertRowClick}
       onInsertColumn={isSchemaEditable ? handleInsertColumnClick : undefined}
       onEditColumn={isSchemaEditable ? handleEditColumnClick : undefined}
       onRemoveColumn={isSchemaEditable ? handleColumnRemoveClick : undefined}
@@ -445,7 +444,7 @@ export default function DataBrowserGrid({
           onInsertColumnClick={
             isSchemaEditable ? handleInsertColumnClick : undefined
           }
-          onInsertRowClick={isSchemaEditable ? handleInsertRowClick : undefined}
+          onInsertRowClick={handleInsertRowClick}
           paginationProps={{
             currentPage: Math.max(currentPage, 1),
             totalPages: Math.max(numberOfPages, 1),

dashboard/src/features/database/dataGrid/components/DataBrowserGridControls/DataBrowserGridControls.tsx

@@ -12,11 +12,9 @@ import { PlusIcon } from '@/components/ui/v2/icons/PlusIcon';
 import { RowIcon } from '@/components/ui/v2/icons/RowIcon';
 import { useDeleteRecordMutation } from '@/features/database/dataGrid/hooks/useDeleteRecordMutation';
 import type { DataBrowserGridColumn } from '@/features/database/dataGrid/types/dataBrowser';
-import { isSchemaLocked } from '@/features/database/dataGrid/utils/schemaHelpers/isSchemaLocked';
 import { useCurrentWorkspaceAndProject } from '@/features/projects/common/hooks/useCurrentWorkspaceAndProject';
 import { triggerToast } from '@/utils/toast';
 import { useQueryClient } from '@tanstack/react-query';
-import { useRouter } from 'next/router';
 import { useState } from 'react';
 import type { Row } from 'react-table';
 import { twMerge } from 'tailwind-merge';
@@ -58,11 +56,6 @@ export default function DataBrowserGridControls({
   const { className: paginationClassName, ...restPaginationProps } =
     paginationProps || ({} as DataGridPaginationProps);
 
-  const {
-    query: { schemaSlug },
-  } = useRouter();
-  const isSchemaEditable = !isSchemaLocked(schemaSlug as string);
-
   const {
     selectedFlatRows: selectedRows,
     columns,
@@ -126,7 +119,7 @@ export default function DataBrowserGridControls({
           numberOfSelectedRows > 0 ? 'justify-between' : 'justify-end',
         )}
       >
-        {isSchemaEditable && numberOfSelectedRows > 0 && (
+        {numberOfSelectedRows > 0 && (
           <div className="grid grid-flow-col place-content-start items-center gap-2">
             <Chip
               size="small"

dashboard/src/features/database/dataGrid/hooks/useDeleteRecordMutation/deleteRecord.ts

@@ -43,7 +43,13 @@ export default async function deleteRecord({
     (row) =>
       `(${primaryOrUniqueColumns
         .map((primaryOrUniqueColumn) =>
-          format('%I=%L', primaryOrUniqueColumn, row[primaryOrUniqueColumn]),
+          row[primaryOrUniqueColumn] === null
+            ? format('%I IS NULL', primaryOrUniqueColumn)
+            : format(
+                '%I=%L',
+                primaryOrUniqueColumn,
+                row[primaryOrUniqueColumn],
+              ),
         )
         .join(' AND ')})`,
   );

dashboard/src/features/database/dataGrid/hooks/useRunSQL/useRunSQL.ts

@@ -1,10 +1,12 @@
+import { useDatabaseQuery } from '@/features/database/dataGrid/hooks/useDatabaseQuery';
 import { useCurrentWorkspaceAndProject } from '@/features/projects/common/hooks/useCurrentWorkspaceAndProject';
 import { generateAppServiceUrl } from '@/features/projects/common/utils/generateAppServiceUrl';
 import { getToastStyleProps } from '@/utils/constants/settings';
 import { getHasuraAdminSecret } from '@/utils/env';
 import { parseIdentifiersFromSQL } from '@/utils/sql';
-import toast from 'react-hot-toast';
+import { useRouter } from 'next/router';
 import { useState } from 'react';
+import toast from 'react-hot-toast';
 
 export default function useRunSQL(
   sqlCode: string,
@@ -22,6 +24,14 @@ export default function useRunSQL(
   const [columns, setColumns] = useState<string[]>([]);
   const [rows, setRows] = useState<string[][]>([[]]);
 
+  const router = useRouter();
+
+  const {
+    query: { dataSourceSlug },
+  } = router;
+
+  const { refetch } = useDatabaseQuery([dataSourceSlug as string]);
+
   const appUrl = generateAppServiceUrl(
     currentProject?.subdomain,
     currentProject?.region,
@@ -269,6 +279,9 @@ export default function useRunSQL(
       }
     }
 
+    // refresh the table list after running the sql
+    await refetch();
+
     setLoading(false);
   };
 

dashboard/src/features/projects/logs/components/LogsBody/LogsBody.tsx

@@ -131,7 +131,7 @@ export default function LogsBody({ logsData, loading, error }: LogsBodyProps) {
     count: rows.length,
     getScrollElement: () => tableRef.current,
     estimateSize: () => 63,
-    overscan: 5,
+    overscan: 50,
   });
 
   if (loading && !error) {
@@ -214,7 +214,7 @@ export default function LogsBody({ logsData, loading, error }: LogsBodyProps) {
                   <TableCell
                     key={cell.id}
                     component="td"
-                    className="break-words py-2.5 px-2 align-top text-xs- font-normal tracking-tight"
+                    className="break-words px-2 py-2.5 align-top text-xs- font-normal tracking-tight"
                     style={{
                       width: cell.column.getSize() || 'auto',
                       minWidth: !cell.column.getSize() ? 300 : 'initial',

dashboard/src/features/projects/logs/components/LogsDatePicker/LogsDatePicker.tsx

@@ -52,7 +52,7 @@ function LogsDatePicker({
           <Text
             htmlFor={label}
             component="label"
-            className="self-center text-sm+ font-normal"
+            className="min-w-14 self-center text-sm+ font-normal"
             color="secondary"
           >
             {label}

dashboard/src/features/projects/logs/components/LogsHeader/LogsHeader.tsx

@@ -1,246 +1,240 @@
+import { ControlledSelect } from '@/components/form/ControlledSelect';
+import { Form } from '@/components/form/Form';
+import { ActivityIndicator } from '@/components/ui/v2/ActivityIndicator';
 import type { BoxProps } from '@/components/ui/v2/Box';
 import { Box } from '@/components/ui/v2/Box';
 import { Button } from '@/components/ui/v2/Button';
-import { ClockIcon } from '@/components/ui/v2/icons/ClockIcon';
+import { InfoIcon } from '@/components/ui/v2/icons/InfoIcon';
+import { SearchIcon } from '@/components/ui/v2/icons/SearchIcon';
+import { Input } from '@/components/ui/v2/Input';
+import { Link } from '@/components/ui/v2/Link';
 import { Option } from '@/components/ui/v2/Option';
-import { Select } from '@/components/ui/v2/Select';
+import { Tooltip } from '@/components/ui/v2/Tooltip';
 import { useCurrentWorkspaceAndProject } from '@/features/projects/common/hooks/useCurrentWorkspaceAndProject';
-import { LogsDatePicker } from '@/features/projects/logs/components/LogsDatePicker';
-import type { LogsCustomInterval } from '@/features/projects/logs/utils/constants/intervals';
-import { LOGS_AVAILABLE_INTERVALS } from '@/features/projects/logs/utils/constants/intervals';
-import type { AvailableLogsService } from '@/features/projects/logs/utils/constants/services';
-import { LOGS_AVAILABLE_SERVICES } from '@/features/projects/logs/utils/constants/services';
-import { useGetRunServicesQuery } from '@/utils/__generated__/graphql';
+import { LogsRangeSelector } from '@/features/projects/logs/components/LogsRangeSelector';
+import { AvailableLogsService } from '@/features/projects/logs/utils/constants/services';
+import { MINUTES_TO_DECREASE_FROM_CURRENT_DATE } from '@/utils/constants/common';
+import { useGetServiceLabelValuesQuery } from '@/utils/__generated__/graphql';
+import { yupResolver } from '@hookform/resolvers/yup';
 import { subMinutes } from 'date-fns';
 import { useEffect, useState } from 'react';
-import { twMerge } from 'tailwind-merge';
+import { FormProvider, useForm } from 'react-hook-form';
+import * as Yup from 'yup';
 
-export interface LogsHeaderProps extends Omit<BoxProps, 'children'> {
+export const validationSchema = Yup.object({
+  from: Yup.date(),
+  to: Yup.date().nullable(),
+  service: Yup.string().oneOf(Object.values(AvailableLogsService)),
+  regexFilter: Yup.string(),
+});
+
+export type LogsFilterFormValues = Yup.InferType<typeof validationSchema>;
+
+interface LogsHeaderProps extends Omit<BoxProps, 'children'> {
   /**
-   * The date to be displayed in the date picker for the from date.
+   * This is used to indicate that a query is currently inflight
    */
-  fromDate: Date;
+  loading: boolean;
   /**
-   * The date to be displayed in the date picker for the to date.
+   *
+   * Function to be called when the user submits the filters form
    */
-  toDate: Date | null;
-  /**
-   * Service to where to fetch logs from.
-   */
-  service: AvailableLogsService;
-  /**
-   * Function to be called when the user changes the from date.
-   */
-  onFromDateChange: (value: Date) => void;
-  /**
-   * Function to be called when the user changes the `to` date.
-   */
-  onToDateChange: (value: Date) => void;
-  /**
-   * Function to be called when the user changes service to which to query logs from.
-   */
-  onServiceChange: (value: AvailableLogsService) => void;
-}
-
-type LogsToDatePickerLiveButtonProps = Pick<
-  LogsHeaderProps,
-  'fromDate' | 'toDate' | 'onToDateChange'
->;
-
-function LogsToDatePickerLiveButton({
-  fromDate,
-  toDate,
-  onToDateChange,
-}: LogsToDatePickerLiveButtonProps) {
-  const [currentTime, setCurrentTime] = useState(new Date());
-  const isLive = !toDate;
-
-  function handleLiveButtonClick() {
-    if (isLive) {
-      return;
-    }
-
-    onToDateChange(null);
-    setCurrentTime(new Date());
-  }
-
-  // if isLive is true, we want to update the current time every second
-  // and set the toDate to the current time.
-  useEffect(() => {
-    let interval = null;
-
-    if (!interval && isLive) {
-      interval = setInterval(() => {
-        setCurrentTime(new Date());
-      }, 1000);
-    }
-
-    return () => {
-      clearInterval(interval);
-    };
-  }, [isLive, onToDateChange]);
-
-  return (
-    <div className="text-greyscaleMedium grid grid-flow-col">
-      <LogsDatePicker
-        label="To"
-        value={!isLive ? toDate : currentTime}
-        disabled={isLive}
-        onChange={onToDateChange}
-        minDate={fromDate}
-        maxDate={toDate || new Date()}
-        componentsProps={{
-          button: {
-            className: twMerge(
-              'rounded-r-none pr-3',
-              isLive ? 'border-r-0 hover:border-r-0 z-0' : 'z-10',
-            ),
-            color: toDate ? 'inherit' : 'secondary',
-          },
-        }}
-      />
-
-      <Button
-        variant="outlined"
-        color={isLive ? 'primary' : 'secondary'}
-        sx={{
-          backgroundColor: (theme) =>
-            !isLive ? `${theme.palette.grey[200]} !important` : 'transparent',
-          color: !isLive ? 'text.secondary' : undefined,
-        }}
-        className={twMerge(
-          'min-w-[77px] rounded-l-none',
-          !isLive ? 'z-0 border-l-0 hover:border-l-0' : 'z-10',
-        )}
-        startIcon={<ClockIcon className="h-4 w-4 self-center align-middle" />}
-        onClick={handleLiveButtonClick}
-      >
-        Live
-      </Button>
-    </div>
-  );
+  onSubmitFilterValues: (value: LogsFilterFormValues) => void;
 }
 
 export default function LogsHeader({
-  fromDate,
-  toDate,
-  service,
-  onFromDateChange,
-  onToDateChange,
-  onServiceChange,
+  loading,
+  onSubmitFilterValues,
   ...props
 }: LogsHeaderProps) {
   const { currentProject } = useCurrentWorkspaceAndProject();
-  const applicationCreationDate = new Date(currentProject.createdAt);
 
-  const [runServices, setRunServices] = useState<
-    {
-      label: string;
-      value: string;
-    }[]
+  const [serviceLabels, setServiceLabels] = useState<
+    { label: string; value: string }[]
   >([]);
 
-  const { data, loading } = useGetRunServicesQuery({
-    variables: {
-      appID: currentProject.id,
-      resolve: false,
-      limit: 1000,
-      offset: 0,
-    },
-  });
+  const { data, loading: loadingServiceLabelValues } =
+    useGetServiceLabelValuesQuery({
+      variables: { appID: currentProject.id },
+    });
 
   useEffect(() => {
-    if (!loading) {
-      const services = data.app?.runServices ?? [];
+    if (!loadingServiceLabelValues) {
+      const labels = data.getServiceLabelValues ?? [];
+      setServiceLabels(labels.map((l) => ({ label: l, value: l })));
+    }
+  }, [loadingServiceLabelValues, data]);
 
-      setRunServices(
-        services
-          .filter((s) => !!s.config?.name)
-          .map((s) => ({
-            label: s.config.name,
-            value: `run-${s.config.name}`,
-          })),
+  useEffect(() => {
+    if (!loadingServiceLabelValues) {
+      const labels = data.getServiceLabelValues ?? [];
+
+      const labelMappings = {
+        'hasura-auth': 'Auth',
+        'hasura-storage': 'Storage',
+        postgres: 'Postgres',
+        functions: 'Functions',
+        hasura: 'Hasura',
+        grafana: 'Grafana',
+        'job-backup': 'Backup Jobs',
+        ai: 'AI',
+      };
+
+      setServiceLabels(
+        labels.map((l) => ({ label: labelMappings[l] ?? l, value: l })),
       );
     }
-  }, [loading, data]);
+  }, [loadingServiceLabelValues, data]);
 
-  /**
-   * Will subtract the `customInterval` time in minutes from the current date.
-   */
-  function handleIntervalChange({
-    minutesToDecreaseFromCurrentDate,
-  }: LogsCustomInterval) {
-    onFromDateChange(subMinutes(new Date(), minutesToDecreaseFromCurrentDate));
-    onToDateChange(new Date());
-  }
+  const form = useForm<LogsFilterFormValues>({
+    defaultValues: {
+      from: subMinutes(new Date(), MINUTES_TO_DECREASE_FROM_CURRENT_DATE),
+      to: new Date(),
+      regexFilter: '',
+      service: AvailableLogsService.ALL,
+    },
+    reValidateMode: 'onSubmit',
+    resolver: yupResolver(validationSchema),
+  });
+
+  const { register, watch, getValues } = form;
+
+  const service = watch('service');
+
+  useEffect(() => {
+    onSubmitFilterValues(getValues());
+  }, [service, getValues, onSubmitFilterValues]);
+
+  const handleSubmit = (values: LogsFilterFormValues) =>
+    onSubmitFilterValues(values);
 
   return (
     <Box
-      className="sticky top-0 z-10 grid w-full grid-flow-row gap-x-6 gap-y-2 border-b py-2.5 px-4 lg:grid-flow-col lg:justify-between"
+      className="sticky top-0 z-10 grid w-full grid-flow-row gap-x-6 gap-y-2 border-b px-4 py-2.5 lg:grid-flow-col"
       {...props}
     >
-      <Box className="grid w-full grid-flow-row items-center justify-center gap-2 md:w-[initial] md:grid-flow-col md:gap-3 lg:justify-start">
-        <div className="grid grid-flow-col items-center gap-3 md:justify-start">
-          <LogsDatePicker
-            label="From"
-            value={fromDate}
-            onChange={onFromDateChange}
-            minDate={applicationCreationDate}
-            maxDate={toDate || new Date()}
-          />
+      <FormProvider {...form}>
+        <Form
+          onSubmit={handleSubmit}
+          className="grid w-full grid-flow-row items-center gap-2 md:w-[initial] md:grid-flow-col md:gap-3 lg:justify-end"
+        >
+          <Box className="flex flex-row space-x-2">
+            <ControlledSelect
+              {...register('service')}
+              className="w-full text-sm font-normal min-w-fit"
+              placeholder="All Services"
+              aria-label="Select service"
+              hideEmptyHelperText
+              slotProps={{
+                root: {
+                  className: 'min-h-[initial] h-10 leading-[initial]',
+                },
+              }}
+            >
+              {[{ label: 'All services', value: '' }, ...serviceLabels].map(
+                ({ value, label }) => (
+                  <Option
+                    key={value}
+                    value={value}
+                    className="text-sm+ font-medium"
+                  >
+                    {label}
+                  </Option>
+                ),
+              )}
+            </ControlledSelect>
+            <div className="w-full min-w-fit">
+              <LogsRangeSelector onSubmitFilterValues={onSubmitFilterValues} />
+            </div>
+          </Box>
 
-          <LogsToDatePickerLiveButton
-            fromDate={fromDate}
-            toDate={toDate}
-            onToDateChange={onToDateChange}
-          />
-        </div>
-
-        <Box className="-my-2.5 px-0 py-2.5 lg:border-l lg:px-3">
-          <Select
-            className="w-full text-sm font-normal"
-            placeholder="All Services"
-            onChange={(_e, value) => {
-              if (typeof value !== 'string') {
-                return;
-              }
-              onServiceChange(value as AvailableLogsService);
-            }}
-            value={service}
-            aria-label="Select service"
+          <Input
+            {...register('regexFilter')}
+            placeholder="Filter logs with a regular expression"
             hideEmptyHelperText
-            slotProps={{
-              root: { className: 'min-h-[initial] h-9 leading-[initial]' },
-            }}
-          >
-            {[...LOGS_AVAILABLE_SERVICES, ...runServices].map(
-              ({ value, label }) => (
-                <Option
-                  key={value}
-                  value={value}
-                  className="text-sm+ font-medium"
-                >
-                  {label}
-                </Option>
-              ),
-            )}
-          </Select>
-        </Box>
-      </Box>
+            autoComplete="off"
+            fullWidth
+            className="min-w-80"
+            startAdornment={
+              <Tooltip
+                componentsProps={{
+                  tooltip: {
+                    sx: {
+                      maxWidth: '30rem',
+                    },
+                  },
+                }}
+                title={
+                  <div className="p-2 space-y-4">
+                    <h2>Here are some useful regular expressions:</h2>
+                    <ul className="pl-3 space-y-2 list-disc">
+                      <li>
+                        use
+                        <code className="px-1 py-px mx-1 rounded-md bg-slate-500 text-slate-100">
+                          (?i)error
+                        </code>
+                        to search for lines with the word <b>error</b> (case
+                        insenstive)
+                      </li>
+                      <li>
+                        use
+                        <code className="px-1 py-px mx-1 rounded-md bg-slate-500 text-slate-100">
+                          error
+                        </code>
+                        to search for lines with the word <b>error</b> (case
+                        sensitive)
+                      </li>
+                      <li>
+                        use
+                        <code className="px-1 py-px mx-1 rounded-md bg-slate-500 text-slate-100">
+                          /metadata.*error
+                        </code>
+                        to search for errors in hasura&apos;s metadata endpoint
+                      </li>
+                      <li>
+                        See
+                        <Link
+                          href="https://github.com/google/re2/wiki/Syntax"
+                          target="_blank"
+                          rel="noopener noreferrer"
+                          underline="hover"
+                          className="mx-1"
+                        >
+                          here
+                        </Link>
+                        for more patterns
+                      </li>
+                    </ul>
+                  </div>
+                }
+              >
+                <Box className="ml-2 rounded-full cursor-pointer">
+                  <InfoIcon
+                    aria-label="Info"
+                    className="w-5 h-5"
+                    color="info"
+                  />
+                </Box>
+              </Tooltip>
+            }
+          />
 
-      <Box className="hidden grid-flow-col items-center justify-center gap-3 md:grid lg:justify-end">
-        {LOGS_AVAILABLE_INTERVALS.map((logInterval) => (
           <Button
-            key={logInterval.label}
-            variant="outlined"
-            color="secondary"
-            className="self-center"
-            onClick={() => handleIntervalChange(logInterval)}
+            type="submit"
+            className="h-10"
+            startIcon={
+              loading ? (
+                <ActivityIndicator className="w-4 h-4" />
+              ) : (
+                <SearchIcon />
+              )
+            }
+            disabled={loading}
           >
-            {logInterval.label}
+            Search
           </Button>
-        ))}
-      </Box>
+        </Form>
+      </FormProvider>
     </Box>
   );
 }

dashboard/src/features/projects/logs/components/LogsHeader/index.ts

@@ -1,2 +1 @@
-export * from './LogsHeader';
-export { default as LogsHeader } from './LogsHeader';
+export { default as LogsHeader, type LogsFilterFormValues } from './LogsHeader';

dashboard/src/features/projects/logs/components/LogsRangeSelector/LogsRangeSelector.tsx

@@ -0,0 +1,170 @@
+import { Box } from '@/components/ui/v2/Box';
+import { Button } from '@/components/ui/v2/Button';
+import { Dropdown, useDropdown } from '@/components/ui/v2/Dropdown';
+import { ClockIcon } from '@/components/ui/v2/icons/ClockIcon';
+import { useCurrentWorkspaceAndProject } from '@/features/projects/common/hooks/useCurrentWorkspaceAndProject';
+import { LogsDatePicker } from '@/features/projects/logs/components/LogsDatePicker';
+import type { LogsFilterFormValues } from '@/features/projects/logs/components/LogsHeader';
+import {
+  LOGS_AVAILABLE_INTERVALS,
+  type LogsCustomInterval,
+} from '@/features/projects/logs/utils/constants/intervals';
+import { useInterval } from '@/hooks/useInterval';
+import { ChevronDownIcon } from '@graphiql/react';
+import { formatDistance, subMinutes } from 'date-fns';
+import { useState } from 'react';
+import { useFormContext, useWatch } from 'react-hook-form';
+import { twMerge } from 'tailwind-merge';
+
+function LogsToDatePickerLiveButton() {
+  const [currentTime, setCurrentTime] = useState(new Date());
+
+  const { setValue } = useFormContext<LogsFilterFormValues>();
+  const { from, to } = useWatch<LogsFilterFormValues>();
+  const isLive = !to;
+
+  function handleLiveButtonClick() {
+    if (isLive) {
+      setValue('from', subMinutes(new Date(), 20));
+      setValue('to', new Date());
+      return;
+    }
+
+    setValue('to', null);
+    setCurrentTime(new Date());
+  }
+
+  useInterval(() => setCurrentTime(new Date()), isLive ? 1000 : 0);
+
+  return (
+    <div className="text-greyscaleMedium flex flex-col">
+      {!isLive && (
+        <LogsDatePicker
+          label="To"
+          value={!isLive ? to : currentTime}
+          disabled={isLive}
+          onChange={(date: Date) => setValue('to', date)}
+          minDate={from}
+          maxDate={new Date()}
+          componentsProps={{
+            button: {
+              className: twMerge('rounded-r-none', isLive ? 'z-0' : 'z-10'),
+              color: to ? 'inherit' : 'secondary',
+            },
+          }}
+        />
+      )}
+
+      <Button
+        variant="outlined"
+        color={isLive ? 'primary' : 'secondary'}
+        sx={{
+          backgroundColor: (theme) =>
+            !isLive ? `${theme.palette.grey[200]} !important` : 'transparent',
+          color: !isLive ? 'text.secondary' : undefined,
+        }}
+        className={twMerge(!isLive ? 'z-0 mt-4' : 'z-10')}
+        startIcon={<ClockIcon className="h-4 w-4 self-center align-middle" />}
+        onClick={handleLiveButtonClick}
+      >
+        Live
+      </Button>
+    </div>
+  );
+}
+
+interface LogsRangeSelectorProps {
+  onSubmitFilterValues: (value: LogsFilterFormValues) => void;
+}
+
+function LogsRangeSelectorIntervalPickers({
+  onSubmitFilterValues,
+}: LogsRangeSelectorProps) {
+  const { currentProject } = useCurrentWorkspaceAndProject();
+  const applicationCreationDate = new Date(currentProject.createdAt);
+
+  const { setValue, getValues } = useFormContext<LogsFilterFormValues>();
+  const { from } = useWatch<LogsFilterFormValues>();
+
+  const { handleClose } = useDropdown();
+
+  const handleApply = () => {
+    onSubmitFilterValues(getValues());
+    handleClose();
+  };
+
+  /**
+   * Will subtract the `customInterval` time in minutes from the current date.
+   */
+  function handleIntervalChange({
+    minutesToDecreaseFromCurrentDate,
+  }: LogsCustomInterval) {
+    setValue('from', subMinutes(new Date(), minutesToDecreaseFromCurrentDate));
+    setValue('to', new Date());
+  }
+
+  return (
+    <Box className="flex flex-col space-y-4">
+      <div className="flex flex-col space-y-4">
+        <LogsDatePicker
+          label="From"
+          value={from}
+          onChange={(date) => setValue('from', date)}
+          minDate={applicationCreationDate}
+          maxDate={new Date()}
+        />
+
+        <LogsToDatePickerLiveButton />
+      </div>
+
+      <Box className="grid grid-cols-2 gap-2">
+        {LOGS_AVAILABLE_INTERVALS.map((logInterval) => (
+          <Button
+            key={logInterval.label}
+            variant="outlined"
+            color="secondary"
+            className="self-center"
+            onClick={() => handleIntervalChange(logInterval)}
+          >
+            Last {logInterval.label}
+          </Button>
+        ))}
+      </Box>
+
+      <Button color="primary" variant="contained" onClick={handleApply}>
+        Apply
+      </Button>
+    </Box>
+  );
+}
+
+export default function LogsRangeSelector({
+  onSubmitFilterValues,
+}: LogsRangeSelectorProps) {
+  const { from, to } = useWatch<LogsFilterFormValues>();
+
+  return (
+    <Dropdown.Root>
+      <Dropdown.Trigger hideChevron className="flex w-full rounded-full">
+        <Button
+          component="a"
+          className="h-10 w-full min-w-40 items-center justify-between"
+          variant="outlined"
+        >
+          <span>
+            {to === null
+              ? 'Live'
+              : `${formatDistance(to.getTime(), from.getTime())}`}
+          </span>
+          <ChevronDownIcon className="h-3 w-3" />
+        </Button>
+      </Dropdown.Trigger>
+
+      <Dropdown.Content PaperProps={{ className: 'mt-1 max-w-xs w-full p-3' }}>
+        <LogsRangeSelectorIntervalPickers
+          onSubmitFilterValues={onSubmitFilterValues}
+        />
+      </Dropdown.Content>
+    </Dropdown.Root>
+  );
+}

dashboard/src/features/projects/logs/components/LogsRangeSelector/index.ts

@@ -0,0 +1 @@
+export { default as LogsRangeSelector } from './LogsRangeSelector';

dashboard/src/features/projects/logs/components/LogsTimePicker/LogsTimePicker.tsx

@@ -89,7 +89,7 @@ function LogsTimePicker({
         </Button>
 
         <Button variant="contained" color="primary" onClick={handleApply}>
-          Apply
+          Set
         </Button>
       </Box>
     </div>

dashboard/src/features/projects/logs/utils/constants/intervals/intervals.ts

@@ -26,4 +26,12 @@ export const LOGS_AVAILABLE_INTERVALS: LogsCustomInterval[] = [
     label: '60 min',
     minutesToDecreaseFromCurrentDate: 60,
   },
+  {
+    label: '12 hours',
+    minutesToDecreaseFromCurrentDate: 720,
+  },
+  {
+    label: '24 hours',
+    minutesToDecreaseFromCurrentDate: 1440,
+  },
 ];

dashboard/src/features/projects/permissions/settings/components/PermissionVariableSettings/PermissionVariableSettings.tsx

@@ -138,7 +138,7 @@ export default function PermissionVariableSettings() {
     <SettingsContainer
       title="Permission Variables"
       description="Permission variables are used to define permission rules in the GraphQL API."
-      docsLink="https://docs.nhost.io/graphql/permissions"
+      docsLink="https://docs.nhost.io/guides/api/permissions#permission-variables"
       rootClassName="gap-0"
       className="my-2 px-0"
       slotProps={{ submitButton: { className: 'hidden' } }}

dashboard/src/features/projects/resources/settings/components/ResourcesForm/ResourcesFormFooter.tsx

@@ -79,7 +79,7 @@ export default function ResourcesFormFooter() {
       <Text>
         Learn more about{' '}
         <Link
-          href="https://docs.nhost.io/platform/compute"
+          href="https://docs.nhost.io/platform/compute-resources"
           target="_blank"
           rel="noopener noreferrer"
           underline="hover"

dashboard/src/features/projects/roles/settings/components/RoleSettings/RoleSettings.tsx

@@ -169,7 +169,7 @@ export default function RoleSettings() {
     <SettingsContainer
       title="Default Allowed Roles"
       description="Default Allowed Roles are roles users get automatically when they sign up."
-      docsLink="https://docs.nhost.io/authentication/users#allowed-roles"
+      docsLink="https://docs.nhost.io/guides/auth/users#allowed-roles"
       rootClassName="gap-0"
       className={twMerge(
         'my-2 px-0',

dashboard/src/features/projects/workspaces/components/WorkspaceMembers/WorkspaceMembers.tsx

@@ -7,7 +7,7 @@ import { useIsCurrentUserOwner } from '@/features/projects/common/hooks/useIsCur
 import { PendingWorkspaceMemberInvitation } from '@/features/projects/workspaces/components/PendingWorkspaceMemberInvitation';
 import { WorkspaceMember } from '@/features/projects/workspaces/components/WorkspaceMember';
 import { discordAnnounce } from '@/utils/discordAnnounce';
-import { getErrorMessage } from '@/utils/getErrorMessage';
+import { execPromiseWithErrorToast } from '@/utils/execPromiseWithErrorToast';
 import { triggerToast } from '@/utils/toast';
 import {
   refetchGetWorkspaceMembersQuery,
@@ -52,38 +52,42 @@ function WorkspaceMemberInviteForm({
       return;
     }
 
-    try {
-      await insertWorkspaceMemberInvite({
-        variables: {
-          workspaceMemberInvite: {
-            workspaceId: currentWorkspace.id,
-            email,
-            memberType: 'member',
+    await execPromiseWithErrorToast(
+      async () => {
+        await insertWorkspaceMemberInvite({
+          variables: {
+            workspaceMemberInvite: {
+              workspaceId: currentWorkspace.id,
+              email,
+              memberType: 'member',
+            },
           },
-        },
-      });
-      triggerToast(
-        `Invite to join workspace ${currentWorkspace.name} sent to ${email}.`,
-      );
-    } catch (error) {
-      await discordAnnounce(
-        `Error trying to invite to ${email} to ${currentWorkspace.name} ${error.message}`,
-      );
-      if (
-        error.message ===
-        'Foreign key violation. insert or update on table "workspace_member_invites" violates foreign key constraint "workspace_member_invites_email_fkey"'
-      ) {
-        setWorkspaceInviteError(
-          'You can only invite users that are already registered at Nhost. Ask the person to register an account, then invite them again.',
+        });
+
+        triggerToast(
+          `Invite to join workspace ${currentWorkspace.name} sent to ${email}.`,
         );
+      },
+      {
+        loadingMessage: 'Sending invite...',
+        successMessage: 'The invite has been sent successfully.',
+        errorMessage: `Error trying to invite to ${email} to ${currentWorkspace.name}`,
+        onError: async (error) => {
+          await discordAnnounce(
+            `Error trying to invite to ${email} to ${currentWorkspace.name} ${error.message}`,
+          );
 
-        return;
-      }
-
-      setWorkspaceInviteError(getErrorMessage(error, 'invite'));
-
-      return;
-    }
+          if (
+            error.message ===
+            'Foreign key violation. insert or update on table "workspace_member_invites" violates foreign key constraint "workspace_member_invites_email_fkey"'
+          ) {
+            setWorkspaceInviteError(
+              'You can only invite users that are already registered at Nhost. Ask the person to register an account, then invite them again.',
+            );
+          }
+        },
+      },
+    );
 
     setEmail('');
   };
@@ -130,8 +134,8 @@ export default function WorkspaceMembers() {
   });
 
   return (
-    <div className="mx-auto mt-18 max-w-3xl font-display">
-      <div className="mb-2 grid grid-flow-row gap-1">
+    <div className="max-w-3xl mx-auto mt-18 font-display">
+      <div className="grid grid-flow-row gap-1 mb-2">
         <Text variant="h3">Members</Text>
         <Text color="secondary" className="text-sm">
           People in this workspace can manage all projects listed above.

dashboard/src/features/services/components/ServiceForm/ServiceForm.tsx

@@ -38,6 +38,7 @@ import { yupResolver } from '@hookform/resolvers/yup';
 import { useEffect, useState } from 'react';
 import { FormProvider, useForm } from 'react-hook-form';
 import { parse } from 'shell-quote';
+import { HealthCheckFormSection } from './components/HealthCheckFormSection';
 import { ServiceConfirmationDialog } from './components/ServiceConfirmationDialog';
 import { ServiceDetailsDialog } from './components/ServiceDetailsDialog';
 
@@ -118,6 +119,13 @@ export default function ServiceForm({
         type: item.type,
         publish: item.publish,
       })),
+      healthCheck: values.healthCheck
+        ? {
+            port: values.healthCheck?.port,
+            initialDelaySeconds: values.healthCheck?.initialDelaySeconds,
+            probePeriodSeconds: values.healthCheck?.probePeriodSeconds,
+          }
+        : null,
     };
 
     return config;
@@ -375,6 +383,8 @@ export default function ServiceForm({
 
         <StorageFormSection />
 
+        <HealthCheckFormSection />
+
         {createServiceFormError && (
           <Alert
             severity="error"

dashboard/src/features/services/components/ServiceForm/ServiceFormTypes.ts

@@ -41,6 +41,13 @@ export const validationSchema = Yup.object({
       })
       .required(),
   ),
+  healthCheck: Yup.object()
+    .shape({
+      port: Yup.number().required(),
+      initialDelaySeconds: Yup.number().required(),
+      probePeriodSeconds: Yup.number().required(),
+    })
+    .nullable(),
 });
 
 export type ServiceFormValues = Yup.InferType<typeof validationSchema>;

dashboard/src/features/services/components/ServiceForm/components/HealthCheckFormSection/HealthCheckFormSection.tsx

@@ -0,0 +1,112 @@
+import { Box } from '@/components/ui/v2/Box';
+import { InfoIcon } from '@/components/ui/v2/icons/InfoIcon';
+import { Input } from '@/components/ui/v2/Input';
+import { Switch } from '@/components/ui/v2/Switch';
+import { Text } from '@/components/ui/v2/Text';
+import { Tooltip } from '@/components/ui/v2/Tooltip';
+import type { ServiceFormValues } from '@/features/services/components/ServiceForm/ServiceFormTypes';
+import { useState } from 'react';
+import { useFormContext } from 'react-hook-form';
+
+export default function HealthCheckFormSection() {
+  const {
+    watch,
+    setValue,
+    register,
+    formState: { errors },
+  } = useFormContext<ServiceFormValues>();
+
+  const healthCheck = watch('healthCheck');
+  const [healthCheckEnabled, setHealthCheckEnabled] = useState(!!healthCheck);
+
+  const toggleHealthCheckEnabled = async (enabled: boolean) => {
+    setHealthCheckEnabled(enabled);
+
+    if (!enabled) {
+      setValue('healthCheck', null);
+    }
+  };
+
+  return (
+    <Box className="space-y-4 rounded border-1 p-4">
+      <Box className="flex flex-row items-center justify-between ">
+        <Box className="flex flex-row items-center space-x-2">
+          <Text variant="h4" className="font-semibold">
+            Health Check
+          </Text>
+
+          <Tooltip
+            title={
+              <span>
+                Monitor the health and availability of a service. Refer to{' '}
+                <a
+                  target="_blank"
+                  rel="noopener noreferrer"
+                  href="https://docs.nhost.io/guides/run/health-checks"
+                  className="underline"
+                >
+                  Health Check
+                </a>{' '}
+                for more information.
+              </span>
+            }
+          >
+            <InfoIcon aria-label="Info" className="h-4 w-4" color="primary" />
+          </Tooltip>
+        </Box>
+
+        <Switch
+          checked={healthCheckEnabled}
+          onChange={(e) => toggleHealthCheckEnabled(e.target.checked)}
+          className="self-center"
+        />
+      </Box>
+
+      {healthCheckEnabled && (
+        <Box className="flex flex-col space-y-4">
+          <Input
+            {...register(`healthCheck.port`)}
+            id="healthCheck.port"
+            label="Port"
+            placeholder="3000"
+            className="w-full"
+            hideEmptyHelperText
+            error={!!errors?.healthCheck?.port}
+            helperText={errors?.healthCheck?.port?.message}
+            fullWidth
+            autoComplete="off"
+            type="number"
+          />
+
+          <Input
+            {...register(`healthCheck.initialDelaySeconds`)}
+            id="healthCheck.initialDelaySeconds"
+            label="Initial delay seconds"
+            placeholder="30"
+            className="w-full"
+            hideEmptyHelperText
+            error={!!errors?.healthCheck?.initialDelaySeconds}
+            helperText={errors?.healthCheck?.initialDelaySeconds?.message}
+            fullWidth
+            autoComplete="off"
+            type="number"
+          />
+
+          <Input
+            {...register(`healthCheck.probePeriodSeconds`)}
+            id="healthCheck.probePeriodSeconds"
+            label="Probe period seconds"
+            placeholder="60"
+            className="w-full"
+            hideEmptyHelperText
+            error={!!errors?.healthCheck?.probePeriodSeconds}
+            helperText={errors?.healthCheck?.probePeriodSeconds?.message}
+            fullWidth
+            autoComplete="off"
+            type="number"
+          />
+        </Box>
+      )}
+    </Box>
+  );
+}

dashboard/src/features/services/components/ServiceForm/components/HealthCheckFormSection/index.ts

@@ -0,0 +1 @@
+export { default as HealthCheckFormSection } from './HealthCheckFormSection';

dashboard/src/gql/logs/getProjectLogs.gql

@@ -3,8 +3,15 @@ query getProjectLogs(
   $service: String
   $from: Timestamp
   $to: Timestamp
+  $regexFilter: String
 ) {
-  logs(appID: $appID, service: $service, from: $from, to: $to) {
+  logs(
+    appID: $appID
+    service: $service
+    from: $from
+    to: $to
+    regexFilter: $regexFilter
+  ) {
     log
     service
     timestamp
@@ -15,8 +22,14 @@ subscription getLogsSubscription(
   $appID: String!
   $service: String
   $from: Timestamp
+  $regexFilter: String
 ) {
-  logs(appID: $appID, service: $service, from: $from) {
+  logs(
+    appID: $appID
+    service: $service
+    from: $from
+    regexFilter: $regexFilter
+  ) {
     log
     service
     timestamp

dashboard/src/gql/logs/getServiceLabelValues.gql

@@ -0,0 +1,3 @@
+query getServiceLabelValues($appID: String!) {
+  getServiceLabelValues(appID: $appID)
+}

dashboard/src/gql/services/getRunServices.graphql

@@ -40,6 +40,11 @@ query getRunServices(
             fqdn
           }
         }
+        healthCheck {
+          port
+          initialDelaySeconds
+          probePeriodSeconds
+        }
       }
     }
     runServices_aggregate {

dashboard/src/hooks/useRemoteApplicationGQLClientWithSubscriptions/useRemoteApplicationGQLClientWithSubscriptions.tsx

@@ -35,7 +35,24 @@ export default function useRemoteApplicationGQLClientWithSubscriptions() {
     );
 
     return new ApolloClient({
-      cache: new InMemoryCache(),
+      cache: new InMemoryCache({
+        typePolicies: {
+          Subscription: {
+            fields: {
+              logs: {
+                keyArgs: false,
+              },
+            },
+          },
+          Query: {
+            fields: {
+              logs: {
+                keyArgs: false,
+              },
+            },
+          },
+        },
+      }),
       connectToDevTools: true,
       link: split(
         ({ query }) => {

dashboard/src/pages/[workspaceSlug]/[appSlug]/logs/index.tsx

@@ -2,49 +2,53 @@ import { ProjectLayout } from '@/components/layout/ProjectLayout';
 import { RetryableErrorBoundary } from '@/components/presentational/RetryableErrorBoundary';
 import { useCurrentWorkspaceAndProject } from '@/features/projects/common/hooks/useCurrentWorkspaceAndProject';
 import { LogsBody } from '@/features/projects/logs/components/LogsBody';
-import { LogsHeader } from '@/features/projects/logs/components/LogsHeader';
+import {
+  LogsHeader,
+  type LogsFilterFormValues,
+} from '@/features/projects/logs/components/LogsHeader';
 import { AvailableLogsService } from '@/features/projects/logs/utils/constants/services';
 import { useRemoteApplicationGQLClientWithSubscriptions } from '@/hooks/useRemoteApplicationGQLClientWithSubscriptions';
+import { MINUTES_TO_DECREASE_FROM_CURRENT_DATE } from '@/utils/constants/common';
 import {
   GetLogsSubscriptionDocument,
   useGetProjectLogsQuery,
 } from '@/utils/__generated__/graphql';
 import { subMinutes } from 'date-fns';
-import type { ReactElement } from 'react';
-import { useCallback, useEffect, useRef, useState } from 'react';
+import {
+  useCallback,
+  useEffect,
+  useRef,
+  useState,
+  type ReactElement,
+} from 'react';
 
-const MINUTES_TO_DECREASE_FROM_CURRENT_DATE = 20;
+interface LogsFilters {
+  from: Date;
+  to: Date | null;
+  service: AvailableLogsService;
+  regexFilter: string;
+}
 
 export default function LogsPage() {
   const { currentProject } = useCurrentWorkspaceAndProject();
-  const [fromDate, setFromDate] = useState<Date>(
-    subMinutes(new Date(), MINUTES_TO_DECREASE_FROM_CURRENT_DATE),
-  );
-  const [toDate, setToDate] = useState<Date | null>(new Date());
-  const [service, setService] = useState<AvailableLogsService>(
-    AvailableLogsService.ALL,
-  );
 
   // create a client that sends http requests to Hasura but websocket requests to Bragi
   const clientWithSplit = useRemoteApplicationGQLClientWithSubscriptions();
   const subscriptionReturn = useRef(null);
 
-  /**
-   * Will change the specific service from which we query logs.
-   */
-  function handleServiceChange(value: AvailableLogsService) {
-    setService(value);
-  }
+  const [filters, setFilters] = useState<LogsFilters>({
+    from: subMinutes(new Date(), MINUTES_TO_DECREASE_FROM_CURRENT_DATE),
+    to: new Date(),
+    regexFilter: '',
+    service: AvailableLogsService.ALL,
+  });
 
-  const { data, loading, error, subscribeToMore, client } =
+  const { data, error, subscribeToMore, client, loading, refetch } =
     useGetProjectLogsQuery({
-      variables: {
-        appID: currentProject.id,
-        from: fromDate,
-        to: toDate,
-        service,
-      },
+      variables: { appID: currentProject.id, ...filters },
       client: clientWithSplit,
+      fetchPolicy: 'cache-and-network',
+      notifyOnNetworkStatusChange: true,
     });
 
   const subscribeToMoreLogs = useCallback(
@@ -53,8 +57,9 @@ export default function LogsPage() {
         document: GetLogsSubscriptionDocument,
         variables: {
           appID: currentProject.id,
-          service,
-          from: fromDate,
+          service: filters.service,
+          from: filters.from,
+          regexFilter: filters.regexFilter,
         },
         updateQuery: (prev, { subscriptionData }) => {
           // if there is no new data, just return the previous data
@@ -93,40 +98,47 @@ export default function LogsPage() {
           };
         },
       }),
-    [subscribeToMore, currentProject.id, service, fromDate],
+    [subscribeToMore, currentProject.id, filters],
   );
 
   useEffect(() => {
-    if (toDate && subscriptionReturn.current !== null) {
+    if (filters.to && subscriptionReturn.current !== null) {
       subscriptionReturn.current();
       subscriptionReturn.current = null;
 
       return () => {};
     }
 
-    if (toDate) {
+    if (filters.to) {
       return () => {};
     }
 
+    if (subscriptionReturn.current) {
+      subscriptionReturn.current();
+      subscriptionReturn.current = null;
+    }
+
     // This will open the websocket connection and it will return a function to close it.
     subscriptionReturn.current = subscribeToMoreLogs();
 
-    // get rid of the current apollo client instance (will also close the websocket if it's the live status)
-    return () => client.stop();
-  }, [subscribeToMoreLogs, toDate, client]);
+    return () => {};
+  }, [filters, subscribeToMoreLogs, client]);
+
+  const onSubmitFilterValues = useCallback(
+    async (values: LogsFilterFormValues) => {
+      setFilters({ ...(values as LogsFilters) });
+      await refetch();
+    },
+    [setFilters, refetch],
+  );
 
   return (
     <div className="flex h-full w-full flex-col">
       <RetryableErrorBoundary>
         <LogsHeader
-          fromDate={fromDate}
-          toDate={toDate}
-          service={service}
-          onServiceChange={handleServiceChange}
-          onFromDateChange={setFromDate}
-          onToDateChange={setToDate}
+          loading={loading}
+          onSubmitFilterValues={onSubmitFilterValues}
         />
-
         <LogsBody error={error} loading={loading} logsData={data} />
       </RetryableErrorBoundary>
     </div>

dashboard/src/pages/_/_/[...slug].tsx

@@ -0,0 +1,158 @@
+import { AuthenticatedLayout } from '@/components/layout/AuthenticatedLayout';
+import { Container } from '@/components/layout/Container';
+import { RetryableErrorBoundary } from '@/components/presentational/RetryableErrorBoundary';
+import { ActivityIndicator } from '@/components/ui/v2/ActivityIndicator';
+import { Box } from '@/components/ui/v2/Box';
+import { Button } from '@/components/ui/v2/Button';
+import { Input } from '@/components/ui/v2/Input';
+import { List } from '@/components/ui/v2/List';
+import { ListItem } from '@/components/ui/v2/ListItem';
+import { Text } from '@/components/ui/v2/Text';
+import {
+  useGetAllWorkspacesAndProjectsQuery,
+  type GetAllWorkspacesAndProjectsQuery,
+} from '@/utils/__generated__/graphql';
+import { Divider } from '@mui/material';
+import { useUserData } from '@nhost/nextjs';
+import debounce from 'lodash.debounce';
+import Image from 'next/image';
+import { useRouter } from 'next/router';
+import type { ChangeEvent, ReactElement } from 'react';
+import { Fragment, useEffect, useMemo, useState } from 'react';
+
+type Workspace = Omit<
+  GetAllWorkspacesAndProjectsQuery['workspaces'][0],
+  '__typename'
+>;
+
+export default function SelectWorkspaceAndProject() {
+  const user = useUserData();
+  const router = useRouter();
+
+  const { data, loading } = useGetAllWorkspacesAndProjectsQuery({
+    skip: !user,
+  });
+
+  const workspaces: Workspace[] = data?.workspaces || [];
+
+  const projects = workspaces.flatMap((workspace) =>
+    workspace.projects.map((project) => ({
+      workspaceName: workspace.name,
+      projectName: project.name,
+      value: `${workspace.slug}/${project.slug}`,
+    })),
+  );
+
+  const [filter, setFilter] = useState('');
+
+  const handleFilterChange = useMemo(
+    () =>
+      debounce((event: ChangeEvent<HTMLInputElement>) => {
+        setFilter(event.target.value);
+      }, 200),
+    [],
+  );
+
+  useEffect(() => () => handleFilterChange.cancel(), [handleFilterChange]);
+
+  const goToProjectPage = async (project: {
+    workspaceName: string;
+    projectName: string;
+    value: string;
+  }) => {
+    const { slug } = router.query;
+
+    await router.push({
+      pathname: `/${project.value}/${
+        Array.isArray(slug) ? slug.join('/') : slug
+      }`,
+    });
+  };
+
+  const projectsToDisplay = filter
+    ? projects.filter((project) =>
+        project.projectName.toLowerCase().includes(filter.toLowerCase()),
+      )
+    : projects;
+
+  if (loading) {
+    return (
+      <div className="flex w-full justify-center">
+        <ActivityIndicator
+          delay={500}
+          label="Loading workspaces and projects..."
+        />
+      </div>
+    );
+  }
+
+  return (
+    <Container>
+      <div className="mx-auto grid max-w-[760px] grid-flow-row gap-4 py-6 sm:py-14">
+        <Text variant="h2" component="h1" className="">
+          Select a Project
+        </Text>
+
+        <div>
+          <div className="mb-2 flex w-full">
+            <Input
+              placeholder="Search..."
+              onChange={handleFilterChange}
+              fullWidth
+              autoFocus
+            />
+          </div>
+          <RetryableErrorBoundary>
+            {projectsToDisplay.length === 0 ? (
+              <Box className="h-import py-2">
+                <Text variant="subtitle2">No results found.</Text>
+              </Box>
+            ) : (
+              <List className="h-import overflow-y-auto">
+                {projectsToDisplay.map((project, index) => (
+                  <Fragment key={project.value}>
+                    <ListItem.Root
+                      className="grid grid-flow-col justify-start gap-2  py-2.5"
+                      secondaryAction={
+                        <Button
+                          variant="borderless"
+                          color="primary"
+                          onClick={() => goToProjectPage(project)}
+                        >
+                          Select
+                        </Button>
+                      }
+                    >
+                      <ListItem.Avatar>
+                        <span className="inline-block h-6 w-6 overflow-hidden rounded-md">
+                          <Image
+                            src="/logos/new.svg"
+                            alt="Nhost Logo"
+                            width={24}
+                            height={24}
+                          />
+                        </span>
+                      </ListItem.Avatar>
+                      <ListItem.Text
+                        primary={project.projectName}
+                        secondary={`${project.workspaceName} / ${project.projectName}`}
+                      />
+                    </ListItem.Root>
+
+                    {index < projects.length - 1 && <Divider component="li" />}
+                  </Fragment>
+                ))}
+              </List>
+            )}
+          </RetryableErrorBoundary>
+        </div>
+      </div>
+    </Container>
+  );
+}
+
+SelectWorkspaceAndProject.getLayout = function getLayout(page: ReactElement) {
+  return (
+    <AuthenticatedLayout title="Select a Project">{page}</AuthenticatedLayout>
+  );
+};

dashboard/src/tests/testUtils.tsx

@@ -29,6 +29,7 @@ import { Toaster } from 'react-hot-toast';
 const emotionCache = createEmotionCache();
 
 process.env = {
+  TEST_MODE: 'true',
   NODE_ENV: 'development',
   NEXT_PUBLIC_NHOST_PLATFORM: 'false',
   NEXT_PUBLIC_ENV: 'dev',

dashboard/src/utils/__generated__/graphql.ts

@@ -196,6 +196,7 @@ export type ConfigAppSystemConfig = {
  */
 export type ConfigAuth = {
   __typename?: 'ConfigAuth';
+  elevatedPrivileges?: Maybe<ConfigAuthElevatedPrivileges>;
   method?: Maybe<ConfigAuthMethod>;
   redirections?: Maybe<ConfigAuthRedirections>;
   /** Resources for the service */
@@ -219,6 +220,7 @@ export type ConfigAuthComparisonExp = {
   _and?: InputMaybe<Array<ConfigAuthComparisonExp>>;
   _not?: InputMaybe<ConfigAuthComparisonExp>;
   _or?: InputMaybe<Array<ConfigAuthComparisonExp>>;
+  elevatedPrivileges?: InputMaybe<ConfigAuthElevatedPrivilegesComparisonExp>;
   method?: InputMaybe<ConfigAuthMethodComparisonExp>;
   redirections?: InputMaybe<ConfigAuthRedirectionsComparisonExp>;
   resources?: InputMaybe<ConfigResourcesComparisonExp>;
@@ -229,7 +231,28 @@ export type ConfigAuthComparisonExp = {
   version?: InputMaybe<ConfigStringComparisonExp>;
 };
 
+export type ConfigAuthElevatedPrivileges = {
+  __typename?: 'ConfigAuthElevatedPrivileges';
+  mode?: Maybe<Scalars['String']>;
+};
+
+export type ConfigAuthElevatedPrivilegesComparisonExp = {
+  _and?: InputMaybe<Array<ConfigAuthElevatedPrivilegesComparisonExp>>;
+  _not?: InputMaybe<ConfigAuthElevatedPrivilegesComparisonExp>;
+  _or?: InputMaybe<Array<ConfigAuthElevatedPrivilegesComparisonExp>>;
+  mode?: InputMaybe<ConfigStringComparisonExp>;
+};
+
+export type ConfigAuthElevatedPrivilegesInsertInput = {
+  mode?: InputMaybe<Scalars['String']>;
+};
+
+export type ConfigAuthElevatedPrivilegesUpdateInput = {
+  mode?: InputMaybe<Scalars['String']>;
+};
+
 export type ConfigAuthInsertInput = {
+  elevatedPrivileges?: InputMaybe<ConfigAuthElevatedPrivilegesInsertInput>;
   method?: InputMaybe<ConfigAuthMethodInsertInput>;
   redirections?: InputMaybe<ConfigAuthRedirectionsInsertInput>;
   resources?: InputMaybe<ConfigResourcesInsertInput>;
@@ -808,6 +831,7 @@ export type ConfigAuthTotpUpdateInput = {
 };
 
 export type ConfigAuthUpdateInput = {
+  elevatedPrivileges?: InputMaybe<ConfigAuthElevatedPrivilegesUpdateInput>;
   method?: InputMaybe<ConfigAuthMethodUpdateInput>;
   redirections?: InputMaybe<ConfigAuthRedirectionsUpdateInput>;
   resources?: InputMaybe<ConfigResourcesUpdateInput>;
@@ -5238,9 +5262,9 @@ export type AuthUserProviders_Bool_Exp = {
 export enum AuthUserProviders_Constraint {
   /** unique or primary key constraint on columns "id" */
   UserProvidersPkey = 'user_providers_pkey',
-  /** unique or primary key constraint on columns "provider_id", "provider_user_id" */
+  /** unique or primary key constraint on columns "provider_user_id", "provider_id" */
   UserProvidersProviderIdProviderUserIdKey = 'user_providers_provider_id_provider_user_id_key',
-  /** unique or primary key constraint on columns "provider_id", "user_id" */
+  /** unique or primary key constraint on columns "user_id", "provider_id" */
   UserProvidersUserIdProviderIdKey = 'user_providers_user_id_provider_id_key'
 }
 
@@ -15774,6 +15798,7 @@ export type Query_Root = {
   runServiceConfig?: Maybe<ConfigRunServiceConfig>;
   runServiceConfigRawJSON: Scalars['String'];
   runServiceConfigs: Array<ConfigRunServiceConfigWithId>;
+  runServiceConfigsAll: Array<ConfigRunServiceConfigWithId>;
   /** An array relationship */
   runServices: Array<Run_Service>;
   /** fetch aggregated fields from the table: "run_service" */
@@ -16755,6 +16780,12 @@ export type Query_RootRunServiceConfigRawJsonArgs = {
 
 
 export type Query_RootRunServiceConfigsArgs = {
+  appID: Scalars['uuid'];
+  resolve: Scalars['Boolean'];
+};
+
+
+export type Query_RootRunServiceConfigsAllArgs = {
   resolve: Scalars['Boolean'];
   where?: InputMaybe<ConfigRunServiceConfigComparisonExp>;
 };
@@ -21355,7 +21386,7 @@ export type WorkspaceMemberInvites_Bool_Exp = {
 
 /** unique or primary key constraints on table "workspace_member_invites" */
 export enum WorkspaceMemberInvites_Constraint {
-  /** unique or primary key constraint on columns "email", "workspace_id" */
+  /** unique or primary key constraint on columns "workspace_id", "email" */
   WorkspaceMemberInvitesEmailWorkspaceIdKey = 'workspace_member_invites_email_workspace_id_key',
   /** unique or primary key constraint on columns "id" */
   WorkspaceMemberInvitesPkey = 'workspace_member_invites_pkey'
@@ -22425,7 +22456,7 @@ export type GetAiSettingsQueryVariables = Exact<{
 }>;
 
 
-export type GetAiSettingsQuery = { __typename?: 'query_root', config?: { __typename?: 'ConfigConfig', ai?: { __typename?: 'ConfigAI', version?: string | null, webhookSecret: string, autoEmbeddings?: { __typename?: 'ConfigAIAutoEmbeddings', synchPeriodMinutes?: any | null } | null, openai: { __typename?: 'ConfigAIOpenai', apiKey: string, organization?: string | null }, resources: { __typename?: 'ConfigAIResources', compute: { __typename?: 'ConfigComputeResources', cpu: any, memory: any } } } | null } | null };
+export type GetAiSettingsQuery = { __typename?: 'query_root', config?: { __typename?: 'ConfigConfig', postgres?: { __typename?: 'ConfigPostgres', version?: string | null } | null, ai?: { __typename?: 'ConfigAI', version?: string | null, webhookSecret: string, autoEmbeddings?: { __typename?: 'ConfigAIAutoEmbeddings', synchPeriodMinutes?: any | null } | null, openai: { __typename?: 'ConfigAIOpenai', apiKey: string, organization?: string | null }, resources: { __typename?: 'ConfigAIResources', compute: { __typename?: 'ConfigComputeResources', cpu: any, memory: any } } } | null } | null };
 
 export type GetAuthenticationSettingsQueryVariables = Exact<{
   appId: Scalars['uuid'];
@@ -22772,6 +22803,7 @@ export type GetProjectLogsQueryVariables = Exact<{
   service?: InputMaybe<Scalars['String']>;
   from?: InputMaybe<Scalars['Timestamp']>;
   to?: InputMaybe<Scalars['Timestamp']>;
+  regexFilter?: InputMaybe<Scalars['String']>;
 }>;
 
 
@@ -22781,11 +22813,19 @@ export type GetLogsSubscriptionSubscriptionVariables = Exact<{
   appID: Scalars['String'];
   service?: InputMaybe<Scalars['String']>;
   from?: InputMaybe<Scalars['Timestamp']>;
+  regexFilter?: InputMaybe<Scalars['String']>;
 }>;
 
 
 export type GetLogsSubscriptionSubscription = { __typename?: 'subscription_root', logs: Array<{ __typename?: 'Log', log: string, service: string, timestamp: any }> };
 
+export type GetServiceLabelValuesQueryVariables = Exact<{
+  appID: Scalars['String'];
+}>;
+
+
+export type GetServiceLabelValuesQuery = { __typename?: 'query_root', getServiceLabelValues: Array<string> };
+
 export type DeletePaymentMethodMutationVariables = Exact<{
   paymentMethodId: Scalars['uuid'];
 }>;
@@ -22960,7 +23000,7 @@ export type GetRunServicesQueryVariables = Exact<{
 }>;
 
 
-export type GetRunServicesQuery = { __typename?: 'query_root', app?: { __typename?: 'apps', runServices: Array<{ __typename?: 'run_service', id: any, createdAt: any, updatedAt: any, subdomain: string, config?: { __typename?: 'ConfigRunServiceConfig', name: any, command?: Array<string> | null, image: { __typename?: 'ConfigRunServiceImage', image: string }, resources: { __typename?: 'ConfigRunServiceResources', replicas: any, compute: { __typename?: 'ConfigComputeResources', cpu: any, memory: any }, storage?: Array<{ __typename?: 'ConfigRunServiceResourcesStorage', name: any, path: string, capacity: any }> | null }, environment?: Array<{ __typename?: 'ConfigEnvironmentVariable', name: string, value: string }> | null, ports?: Array<{ __typename?: 'ConfigRunServicePort', port: any, type: string, publish?: boolean | null, ingresses?: Array<{ __typename?: 'ConfigIngress', fqdn?: Array<string> | null }> | null }> | null } | null }>, runServices_aggregate: { __typename?: 'run_service_aggregate', aggregate?: { __typename?: 'run_service_aggregate_fields', count: number } | null } } | null };
+export type GetRunServicesQuery = { __typename?: 'query_root', app?: { __typename?: 'apps', runServices: Array<{ __typename?: 'run_service', id: any, createdAt: any, updatedAt: any, subdomain: string, config?: { __typename?: 'ConfigRunServiceConfig', name: any, command?: Array<string> | null, image: { __typename?: 'ConfigRunServiceImage', image: string }, resources: { __typename?: 'ConfigRunServiceResources', replicas: any, compute: { __typename?: 'ConfigComputeResources', cpu: any, memory: any }, storage?: Array<{ __typename?: 'ConfigRunServiceResourcesStorage', name: any, path: string, capacity: any }> | null }, environment?: Array<{ __typename?: 'ConfigEnvironmentVariable', name: string, value: string }> | null, ports?: Array<{ __typename?: 'ConfigRunServicePort', port: any, type: string, publish?: boolean | null, ingresses?: Array<{ __typename?: 'ConfigIngress', fqdn?: Array<string> | null }> | null }> | null, healthCheck?: { __typename?: 'ConfigHealthCheck', port: any, initialDelaySeconds?: number | null, probePeriodSeconds?: number | null } | null } | null }>, runServices_aggregate: { __typename?: 'run_service_aggregate', aggregate?: { __typename?: 'run_service_aggregate_fields', count: number } | null } } | null };
 
 export type InsertRunServiceMutationVariables = Exact<{
   object: Run_Service_Insert_Input;
@@ -23524,6 +23564,9 @@ export type DeletePersonalAccessTokenMutationOptions = Apollo.BaseMutationOption
 export const GetAiSettingsDocument = gql`
     query GetAISettings($appId: uuid!) {
   config(appID: $appId, resolve: false) {
+    postgres {
+      version
+    }
     ai {
       version
       webhookSecret
@@ -25558,8 +25601,14 @@ export function refetchGetGithubRepositoriesQuery(variables?: GetGithubRepositor
       return { query: GetGithubRepositoriesDocument, variables: variables }
     }
 export const GetProjectLogsDocument = gql`
-    query getProjectLogs($appID: String!, $service: String, $from: Timestamp, $to: Timestamp) {
-  logs(appID: $appID, service: $service, from: $from, to: $to) {
+    query getProjectLogs($appID: String!, $service: String, $from: Timestamp, $to: Timestamp, $regexFilter: String) {
+  logs(
+    appID: $appID
+    service: $service
+    from: $from
+    to: $to
+    regexFilter: $regexFilter
+  ) {
     log
     service
     timestamp
@@ -25583,6 +25632,7 @@ export const GetProjectLogsDocument = gql`
  *      service: // value for 'service'
  *      from: // value for 'from'
  *      to: // value for 'to'
+ *      regexFilter: // value for 'regexFilter'
  *   },
  * });
  */
@@ -25601,8 +25651,8 @@ export function refetchGetProjectLogsQuery(variables: GetProjectLogsQueryVariabl
       return { query: GetProjectLogsDocument, variables: variables }
     }
 export const GetLogsSubscriptionDocument = gql`
-    subscription getLogsSubscription($appID: String!, $service: String, $from: Timestamp) {
-  logs(appID: $appID, service: $service, from: $from) {
+    subscription getLogsSubscription($appID: String!, $service: String, $from: Timestamp, $regexFilter: String) {
+  logs(appID: $appID, service: $service, from: $from, regexFilter: $regexFilter) {
     log
     service
     timestamp
@@ -25625,6 +25675,7 @@ export const GetLogsSubscriptionDocument = gql`
  *      appID: // value for 'appID'
  *      service: // value for 'service'
  *      from: // value for 'from'
+ *      regexFilter: // value for 'regexFilter'
  *   },
  * });
  */
@@ -25634,6 +25685,42 @@ export function useGetLogsSubscriptionSubscription(baseOptions: Apollo.Subscript
       }
 export type GetLogsSubscriptionSubscriptionHookResult = ReturnType<typeof useGetLogsSubscriptionSubscription>;
 export type GetLogsSubscriptionSubscriptionResult = Apollo.SubscriptionResult<GetLogsSubscriptionSubscription>;
+export const GetServiceLabelValuesDocument = gql`
+    query getServiceLabelValues($appID: String!) {
+  getServiceLabelValues(appID: $appID)
+}
+    `;
+
+/**
+ * __useGetServiceLabelValuesQuery__
+ *
+ * To run a query within a React component, call `useGetServiceLabelValuesQuery` and pass it any options that fit your needs.
+ * When your component renders, `useGetServiceLabelValuesQuery` returns an object from Apollo Client that contains loading, error, and data properties
+ * you can use to render your UI.
+ *
+ * @param baseOptions options that will be passed into the query, supported options are listed on: https://www.apollographql.com/docs/react/api/react-hooks/#options;
+ *
+ * @example
+ * const { data, loading, error } = useGetServiceLabelValuesQuery({
+ *   variables: {
+ *      appID: // value for 'appID'
+ *   },
+ * });
+ */
+export function useGetServiceLabelValuesQuery(baseOptions: Apollo.QueryHookOptions<GetServiceLabelValuesQuery, GetServiceLabelValuesQueryVariables>) {
+        const options = {...defaultOptions, ...baseOptions}
+        return Apollo.useQuery<GetServiceLabelValuesQuery, GetServiceLabelValuesQueryVariables>(GetServiceLabelValuesDocument, options);
+      }
+export function useGetServiceLabelValuesLazyQuery(baseOptions?: Apollo.LazyQueryHookOptions<GetServiceLabelValuesQuery, GetServiceLabelValuesQueryVariables>) {
+          const options = {...defaultOptions, ...baseOptions}
+          return Apollo.useLazyQuery<GetServiceLabelValuesQuery, GetServiceLabelValuesQueryVariables>(GetServiceLabelValuesDocument, options);
+        }
+export type GetServiceLabelValuesQueryHookResult = ReturnType<typeof useGetServiceLabelValuesQuery>;
+export type GetServiceLabelValuesLazyQueryHookResult = ReturnType<typeof useGetServiceLabelValuesLazyQuery>;
+export type GetServiceLabelValuesQueryResult = Apollo.QueryResult<GetServiceLabelValuesQuery, GetServiceLabelValuesQueryVariables>;
+export function refetchGetServiceLabelValuesQuery(variables: GetServiceLabelValuesQueryVariables) {
+      return { query: GetServiceLabelValuesDocument, variables: variables }
+    }
 export const DeletePaymentMethodDocument = gql`
     mutation deletePaymentMethod($paymentMethodId: uuid!) {
   deletePaymentMethod(id: $paymentMethodId) {
@@ -26577,6 +26664,11 @@ export const GetRunServicesDocument = gql`
             fqdn
           }
         }
+        healthCheck {
+          port
+          initialDelaySeconds
+          probePeriodSeconds
+        }
       }
     }
     runServices_aggregate {

dashboard/src/utils/constants/common/common.ts

@@ -66,3 +66,8 @@ export const RESOURCE_VCPU_PRICE_PER_MINUTE = 0.0012;
  * Maximum number of free projects a user is allowed to have.
  */
 export const MAX_FREE_PROJECTS = 1;
+
+/**
+ * Default value in minutes to use for querying the logs
+ */
+export const MINUTES_TO_DECREASE_FROM_CURRENT_DATE = 20;

dashboard/src/utils/execPromiseWithErrorToast/execPromiseWithErrorToast.tsx

@@ -29,6 +29,7 @@ export default async function execPromiseWithErrorToast(
     const result = await call();
 
     toast.dismiss(loadingToastId);
+
     toast.success(successMessage, {
       style: toastStyle.style,
       ...toastStyle.success,

dashboard/tailwind.config.js

@@ -21,6 +21,9 @@ module.exports = {
         copper: '#DD792D',
         paper: '#171d26',
         divider: '#2f363d',
+        'primary-main': '#0052cd',
+        'primary-light': '#ebf3ff',
+        'primary-dark': '#063799',
       },
       boxShadow: {
         outline: 'inset 0 0 0 2px rgba(0, 82, 205, 0.6)',

docs/CHANGELOG.md

@@ -1,5 +1,28 @@
 # @nhost/docs
 
+## 2.7.0
+
+### Minor Changes
+
+- 49a80c2: chore: update dependencies
+
+## 2.6.0
+
+### Minor Changes
+
+- dc23dc0: fix: docs run references
+
+## 2.5.0
+
+### Minor Changes
+
+- 0d8d0eb: Update docs and dashboard references
+
+### Patch Changes
+
+- 41617b9: feat: added elevated permissions docs
+- 7db095f: chore: added a note about disk performance and CDN information
+
 ## 2.4.0
 
 ### Minor Changes

docs/guides/ai/local-development.mdx

@@ -9,7 +9,7 @@ If you are using the Nhost CLI for local development, as of [v0.12.0](https://gi
 
 <Steps>
   <Step title="Configuring the Service">
-    Follow the steps highlighed in the ["Enabling Service"](enabling-service) guide and don't forget to add the relevant secrets to your `.secrets` file.
+    Follow the steps highlighed in the [Enabling Service](enabling-service) guide and don't forget to add the relevant secrets to your `.secrets` file.
   </Step>
   <Step title="Start nhost">
     Run `nhost up`:

docs/guides/auth/elevated-permissions.mdx

@@ -0,0 +1,92 @@
+---
+title: Elevated Permissions
+sidebarTitle: Elevated Permissions
+description: Require extra permissions to perform critical operations
+icon: unlock
+---
+
+In some scenarios you may want to add an extra layer of security to perform certain actions or view certain data. For instance, you may wish to allow users to view their profile information after authenticating but you may want to require users to confirm changes to their profile by performing an extra validation step with a [security key](sign-in-webauthn).
+
+![overview-flow](/images/guides/auth/elevated-permissions/overview.png)
+
+This is accomplished by adding the claim `x-hasura-auth-elevated: $user-id` to the access token in response to the extra security challenge. With this new claim in mind you can start writing permissions that require this extra step.
+
+It is important to keep in mind the claim is added to the access token so, for as long as you have that access token, you will have elevated access. Once the access token is renewed (due to expiration or any other reason), the claim will be lost and a new security challenge will be required to add it back.
+
+# API Endpoints and SDK components
+
+To implement this functionality [auth](/product/authentication) [0.26.0](https://github.com/nhost/hasura-auth/releases/tag/0.26.0) introduces the new endpoint [/elevate/webauthn](/reference/auth/elevate-webauthn). This endpoint works the same way as [/signin/webauthn](/reference/auth/sign-in-using-email-via-fido2-webauthn-authentication) but it requires an Authorization header with a valid token to add the elevated claim to.
+
+In addition, a few methods and components have also been added to simplify it's usage:
+
+- [nhost.auth.elevateEmailSecurityKey](/reference/javascript/auth/elevate-email-security-key)
+- [React - useElevateSecurityKeyEmail](/reference/react/use-elevate-security-key-email)
+- [Next.js - useElevateSecurityKeyEmail](/reference/nextjs/use-elevate-security-key-email)
+- [Vue - useElevateSecurityKeyEmail](/reference/vue/use-elevate-security-key-email)
+
+# Protecting Hasura data
+
+You can use the claim `x-hasura-auth-elevated` in exactly the same way you would normally use `X-Hasura-User-Id` for added security. For instance, the following permissions would allow users to see their data without any extra security:
+
+![example-select-permissions](/images/guides/auth/elevated-permissions/select.png)
+
+While the following permissions would require them first to elevate their access in order to update them:
+
+![example-update-permissions](/images/guides/auth/elevated-permissions/update.png)
+
+# Protecting Auth data
+
+Some user information needs to be changed via hasura-auth's API rather than via graphql mutations. These endpoints are:
+
+- [/user/password](/reference/auth/set-a-new-password) for changing passwords
+- [/user/email/change](/reference/auth/change-the-current-users-email) for changing emails
+- [/user/mfa](/reference/auth/activatedeactivate-multi-factor-authentication) for enabling or disabling MFA
+- [/user/webauthn/add](/reference/auth/initialize-adding-of-a-new-webauthn-security-key-device-browser) for adding security keys
+- [/pat](/reference/auth/create-personal-access-token-pat) for PAT creation
+
+To protect these endpoints and require the elevated claim you can use the following configuration option:
+
+```toml
+[auth.elevatedPrivileges]
+mode = 'required'
+```
+
+The mode can be one of `disabled` (default), `required`, `recommended`.
+
+In `disabled` mode the elevated claim isn't required in any of the options above. This is the default behavior.
+
+In `required` mode, all of the endpoints above will require an access token with the elevated claim. There is only one exception to this rule. If the user has no security key, adding the first security key won't require the elevated claim. However, as the rest of the endpoints do require it, the user won't be able to perform any changes until it adds a security key and gets an access token with the elevated claim. Adding extra security keys after the first one has been added will require the elevated claim. Removing security keys always requires the elevated claim.
+
+In `recommended` mode, the elevated claim is only required if the user has a security key configured. If a user doesn't have a security key the elevated claim won't be required to perform the actions described above. If the user has one or more keys the elevated claims will be required. This mode provides flexibility for the users to choose if they want the extra security or not.
+
+<Warning>
+If you are allowing users to perform changes to auth data directly by performing graphql mutations (i.e. deleting security keys), don't forget to update the permissions to match the desired behavior.
+</Warning>
+
+## Example
+
+To demonstrate this functionality we have implemented them in our [react-apollo](https://react-apollo.example.nhost.io) ([source](https://github.com/nhost/nhost/tree/main/examples/react-apollo)) and [vue-apollo](https://vue-apollo.example.nhost.io) ([source](https://github.com/nhost/nhost/tree/main/examples/vue-apollo)) examples.
+
+### Secret Notes
+
+To demonstrate how the elevated claim can work for permissions you can check the "Secret Notes" example. In this example, we are allowing users to see their secret notes by giving the `select` permissions `notes.user_id eq X-Hasura-User-Id`
+
+![view secret notes](/images/guides/auth/elevated-permissions/secret_notes_view.png)
+
+However, we are requiring elevated permissions to `insert`, `update` and `delete` with the permissions `notes.user_id eq x-hasura-auth-elevated`. In our example we automatically initiate the elevation process if the claim isn't already present:
+
+![add secret notes](/images/guides/auth/elevated-permissions/secret_notes_add.png)
+
+Note that after elevating permissions the secret note is added and the elevated claim persists until there is a token refreshed.
+
+![after adding secret notes](/images/guides/auth/elevated-permissions/secret_notes_added.png)
+
+### Updating profile information
+
+In addition, to demonstrate the new `auth.elevatedPrivileges` setting, we have set it to `required` in this example requiring elevated access to perform certain changes. For instance, if you try to change your password you will first have to elevate your access:
+
+![change password](/images/guides/auth/elevated-permissions/password.png)
+
+After elevating access the password is changed:
+
+![password changed](/images/guides/auth/elevated-permissions/password_changed.png)

docs/guides/auth/overview.mdx

@@ -0,0 +1,111 @@
+---
+title: Overview
+description: Learn about Nhost Auth
+icon: hand-wave
+---
+
+Nhost Auth is a ready-to-use authentication service seamlessly integrated with the [GraphQL API](/product/graphql) and its [Permission System](/guides/api/permissions) from Hasura. This allows you to easily add user authentication to your application without having to build and maintain your own authentication system.
+
+## Supported Methods
+
+<CardGroup cols={4}>
+  <Card title="Email and Password" icon="square-1" href="/guides/auth/sign-in-email-password">
+  </Card>
+  <Card title="Magic Link" icon="square-2" href="/guides/auth/sign-in-magic-link">
+  </Card>
+  <Card title="Phone Number (SMS)" icon="square-3" href="/guides/auth/sign-in-phone-number">
+  </Card>
+  <Card title="Security Keys (WebAuthn)" icon="square-4" href="/guides/auth/sign-in-webauthn">
+  </Card>
+  <Card title="Elevated Permissions" icon="square-5" href="/guides/auth/elevated-permissions">
+  </Card>
+</CardGroup>
+
+### OAuth Providers
+
+<CardGroup cols={4}>
+  <Card title="Apple" icon="square-1" href="/guides/auth/social/sign-in-apple">
+  </Card>
+  <Card title="Discord" icon="square-2" href="/guides/auth/social/sign-in-discord">
+  </Card>
+  <Card title="Facebook" icon="square-3" href="/guides/auth/social/sign-in-facebook">
+  </Card>
+  <Card title="GitHub" icon="square-4" href="/guides/auth/social/sign-in-github">
+  </Card>
+  <Card title="Google" icon="square-5" href="/guides/auth/social/sign-in-google">
+  </Card>
+  <Card title="Linkedin" icon="square-6" href="/guides/auth/social/sign-in-linkedin">
+  </Card>
+  <Card title="Spotify" icon="square-7" href="/guides/auth/social/sign-in-spotify">
+  </Card>
+  <Card title="Twitch" icon="square-8" href="/guides/auth/social/sign-in-twitch">
+  </Card>
+  <Card title="WorkOS" icon="square-9" href="/guides/auth/social/sign-in-workos">
+  </Card>
+</CardGroup>
+
+## Client URL
+
+Client URL is the URL of your frontend application. The Client URL is used to redirect the user in certain auth workflows like signing in or resetting a password.
+
+## Allowed Redirect URLs
+
+Allowed Redirect URLs are the URLs of your frontend application that users are allowed to be redirected to on specific auth workflows. This is useful if you have multiple applications using the same Nhost backend or if you want to redirect users to a specific URL after certain authentication workflows.
+
+As an example, for a staging project, you can set the Client URL to `https://staging.example.com` and Allowed Redirect URLs to `https://*.vercel.app`. This way, the user can be redirected to any Vercel deployment of your frontend application.
+
+## Allowed Emails and Domains
+
+Allowed Emails and Domains are used to restrict what email adresses and domains are valid when signing up and signing in.
+
+If both allowed emails and allowed domains are set a user can only sign up if their email address matches one of the allowed emails or one of the allowed domains.
+
+## Blocked Emails and Domains
+
+Blocked Emails and Domains are used to block specific email addresses and domains from signing up and signing in.
+
+Note that even if a user's email address matches any allowed email or domain, they will still be blocked if their email address matches any blocked email or domain.
+
+## Multi-factor Authentication
+
+By enabling Multi-Factor Authentication (MFA), you can allow users to verify their identity using a second factor during the sign-in process. We currently support Authenticator Apps (TOTP) for MFA.
+
+A user can enable MFA for their account by scanning a QR code with their Authenticator App. After that, they will be prompted to enter a code generated by their Authenticator App during the sign-in process.
+
+## Gravatar
+
+If Gravatar is enabled, Nhost Auth will use the user's email address to fetch their Gravatar profile picture. If the user doesn't have a Gravatar profile picture, a default image will be used.
+
+There are two options for Gravatars.
+
+<Steps>
+  <Step title="Default Image">
+
+If the user doesn't have a Gravatar profile picture, a default image will be used. You can choose between the following options:
+
+- `404`: Do not load any image if none is associated with the email hash, instead return an HTTP 404 (File Not Found) response.
+- `mp`: (mystery-person) a simple, cartoon-style silhouetted outline of a person (does not vary by email hash).
+- `identicon`: a geometric pattern based on an email hash.
+- `monsterid`: a generated 'monster' with different colors, faces, etc.
+- `wavatar`: generated faces with differing features and backgrounds.
+- `retro`: awesome generated, 8-bit arcade-style pixelated faces.
+- `robohash`: a generated robot with different colors, faces, etc.
+- `blank`: a transparent PNG image.
+
+</Step>
+
+<Step title="Rating">
+
+Gravatar images are rated by default. You can choose between the following options:
+
+- `g`: suitable for display on all websites with any audience type.
+- `pg`: may contain rude gestures, provocatively dressed individuals, lesser swear words or mild violence.
+- `r`: may contain such things as harsh profanity, intense violence, nudity, or hard drug use.
+- `x`: may contain hardcore sexual imagery or extremely disturbing violence.
+
+</Step>
+</Steps>
+
+## Disable New Users
+
+If set, newly registered users are disabled and won't be able to sign in. This is useful if you want to manually approve new users before they can sign in.

docs/guides/auth/users.mdx

@@ -0,0 +1,155 @@
+---
+title: Users
+description: Learn about Users managed by Nhost Auth
+icon: users
+---
+
+## Creating Users
+
+Users are created using the sign-up or sign-in flows described under [Supported Methods](/guides/auth/overview#supported-methods).
+
+- **Avoid** creating users directly via GraphQL or the database, unless you are [importing users](#import-users) from an external system.
+- **Avoid** modifying the database schema for the `auth.users` table.
+- **Avoid** modifying the GraphQL root queries or fields for any of the tables in the `auth` schema.
+
+You're allowed to:
+
+- Add and remove your GraphQL relationships for the `users` table and other tables in the `auth` schema.
+- Create, edit and delete permissions for the `users` table and other tables in the `auth` schema.
+
+## Roles
+
+Each user has one **default role** and a list of **allowed roles**. These roles are used to resolve permissions for requests to [GraphQL](/graphql/permissions) and [Storage](/storage#permissions).
+
+When the user makes a request, only one role is used to resolve permissions. The default role is used if no role is explicitly specified. Users can only make requests using the default role or one of the allowed roles.
+
+### Default Role
+
+The default role is used when no role is specified in the request. By default, users' default role is `user`.
+
+You can change what the default role for new users should be at **Settings -> Roles and Permissions**.
+
+### Allowed Roles
+
+Allowed roles are roles the user is allowed to use when making a request. Usually, you would change the role from `user` (the default role) to some other role because you want to use a different role to resolve permissions for a particular request.
+
+By default, users have two allowed roles:
+
+- `user` (default)
+- `me`
+
+You can change the default role for new users at **Settings -> Roles and Permissions**.
+
+#### Assign Allowed Roles
+
+It's possible to give users a subset of allowed roles during signup.
+
+**Example:** Only set the `user` role (exclude the `me` role) for the user's allowed roles:
+
+```js
+await nhost.auth.signUp({
+  email: 'joe@example.com',
+  password: 'secret-password'
+  options: {
+    allowedRoles: ['user']
+  }
+})
+```
+
+### Set Role for GraphQL Requests
+
+When no role is specified, the user's default role will be used:
+
+```js
+await nhost.graphql.request(QUERY, {})
+```
+
+If you want to make a GraphQL request using a specific role, you can do so by using the `x-hasura-role` header, like this:
+
+```js
+await nhost.graphql.request(
+  QUERY,
+  {},
+  {
+    headers: {
+      'x-hasura-role': 'me'
+    }
+  }
+)
+```
+
+If the request is not part of the user's allowed roles, the request will fail.
+
+## Metadata
+
+You can store custom information about the user in the `metadata` column of the `users` table. The `metadata` column is of type JSONB so any JSON data can be stored.
+
+**Example:** Add metadata to a user during sign-up:
+
+```js
+await nhost.auth.signUp({
+  email: 'joe@example.com',
+  password: 'secret-password',
+  options: {
+    metadata: {
+      birthYear: 1989,
+      town: 'Stockholm',
+      likes: ['Postgres', 'GraphQL', 'Hasura', 'Authentication', 'Storage', 'Serverless Functions']
+    }
+  }
+})
+```
+
+## Get User Information using GraphQL
+
+**Example:** Get all users.
+
+```graphql
+query {
+  users {
+    id
+    displayName
+    email
+    metadata
+  }
+}
+```
+
+**Example:** Get a single user.
+
+```graphql
+query {
+  user(id: "<user-id>") {
+    id
+    displayName
+    email
+    metadata
+  }
+}
+```
+
+## Import Users
+
+If you have users in a different system, you can import them into Nhost. When importing users you should insert the users directly into the database instead of using the authentication endpoints (`/signup/email-password`) to avoid sending unnecessary transactional emails.
+
+### GraphQL
+
+Make a GraphQL request to insert a user like this:
+
+```graphql
+mutation insertUser($user: users_insert_input!) {
+  insertUser(object: $user) {
+    id
+  }
+}
+```
+
+### SQL
+
+Connect directly to the database and insert a user like this:
+
+```sql
+INSERT INTO auth.users (id, email, display_name, password_hash, ..) VALUES ('<user-id>', '<email>', '<display-name>', '<password-hash>', ..);
+```
+
+Passwords are hashed using [bcrypt](https://en.wikipedia.org/wiki/Bcrypt).

docs/guides/database/configuring-postgres.mdx

@@ -12,78 +12,41 @@ Postgres configuration can be tweaked to customize the **runtime behavior**, **p
   Postgres.
 </Warning>
 
-### Available Settings
-
-The following `CUE` schema contains all postgres settings available in `nhost.toml`.
-
-```cue schema
-#Postgres: {
-    version: string | *"14.6-20230705-1"
-
-    // Resources for the service, optional
-    resources?: #Resources & {
-        replicas: 1
-    }
-
-    // postgres settings of the same name in camelCase, optional
-    settings?: {
-        jit:                           "off"  | "on" | *"on"
-        maxConnections:                int32  | *100
-        sharedBuffers:                 string | *"128MB"
-        effectiveCacheSize:            string | *"4GB"
-        maintenanceWorkMem:            string | *"64MB"
-        checkpointCompletionTarget:    number | *0.9
-        walBuffers:                    int32  | *-1
-        defaultStatisticsTarget:       int32  | *100
-        randomPageCost:                number | *4.0
-        effectiveIOConcurrency:        int32  | *1
-        workMem:                       string | *"4MB"
-        hugePages:                     string | *"try"
-        minWalSize:                    string | *"80MB"
-        maxWalSize:                    string | *"1GB"
-        maxWorkerProcesses:            int32  | *8
-        maxParallelWorkersPerGather:   int32  | *2
-        maxParallelWorkers:            int32  | *8
-        maxParallelMaintenanceWorkers: int32  | *2
-        walLevel:                      string | *"replica"
-        maxWalSenders:                 int32 | *10
-        maxReplicationSlots:           int32 | *10
-    }
-}
-```
-
 ### Configuration Example
 
 To configure your Postgres instance, simply add the relevant settings under `[postgres.settings]` in your project's `nhost.toml` file.
 
 ```toml nhost.toml
 [postgres]
-version = '14.6-20230925-1'
+version = '14-20230312-1'
 
 [postgres.resources.compute]
-cpu = 1000
-memory = 2048
+cpu = 2000
+memory = 4096
+
+[postgres.resources.storage]
+capacity = 20
 
 [postgres.settings]
-jit = "off"
+jit = 'off'
 maxConnections = 100
-sharedBuffers = '256MB'
-effectiveCacheSize = '768MB'
+sharedBuffers = '128MB'
+effectiveCacheSize = '4GB'
 maintenanceWorkMem = '64MB'
 checkpointCompletionTarget = 0.9
-walBuffers = -1
+walBuffers = '-1'
 defaultStatisticsTarget = 100
-randomPageCost = 1.1
-effectiveIOConcurrency = 200
-workMem = '1310kB'
-hugePages = 'off'
+randomPageCost = 4.0
+effectiveIOConcurrency = 1
+workMem = '4MB'
+hugePages = 'try'
 minWalSize = '80MB'
 maxWalSize = '1GB'
 maxWorkerProcesses = 8
 maxParallelWorkersPerGather = 2
 maxParallelWorkers = 8
 maxParallelMaintenanceWorkers = 2
-walLevel = "replica"
+walLevel = 'replica'
 maxWalSenders = 10
 maxReplicationSlots = 10
 ```

docs/guides/database/performance.mdx

@@ -16,6 +16,8 @@ In case your Postgres service is not meeting your performance expectations, you
 
 4. Evaluate the usage of indexes in your database. Identify queries that could benefit from additional indexes and strategically add them to improve query performance.
 
+5. Increase the disk size to increase [disk performance](/platform/compute-resources#disk-performance). Keep in mind increasing the disk size isn't reversible and increasing the memory of the service may yield better results. This is mostly useful when your data is very volatile and the postgres cache can't work effectively. Only attempt to increase disk for performance reasons if your reads and writes are very high and increasing memory isn't effective.
+
 By implementing these steps, you can effectively address performance concerns and enhance the overall performance of your Postgres service.
 
 ## Upgrade to our latest postgres image

docs/guides/run/configuration.mdx

@@ -46,11 +46,11 @@ capacity=1
   </Tab>
 </Tabs>
 
-<Info>Head to [CLI & CI deployments](/run/ci) for more details on how to deploy using a configuration file.</Info>
+<Info>Head to [CLI & CI deployments](/guides/run/cli-deployments) for more details on how to deploy using a configuration file.</Info>
 
-The `name` of the service is used as an identifier and to generate URLs when exposing the service to the Internet. You can use any container image publicly available or you can push your own to the [Nhost registry](/run/registry).
+The `name` of the service is used as an identifier and to generate URLs when exposing the service to the Internet. You can use any container image publicly available or you can push your own to the [Nhost registry](/guides/run/registry).
 
 All environment variables set here are exclusive to this service and will not be shared with other services or with the Nhost stack. If you are using a configuration file secrets are supported.
 
-For more details about the `Ports` section head to [networking](/run/networking). You can also head to [resources](/run/resources) for more information about replicas, compute, and storage.
+For more details about the `Ports` section head to [networking](/guides/run/networking). You can also head to [resources](/guides/run/resources) for more information about replicas, compute, and storage.
 

docs/guides/run/getting-started.mdx

@@ -12,11 +12,11 @@ Then on `New Service`:
 
 ![click on New Service](/images/guides/run/getting_started_2.png)
 
-Now you can fill your [service configuration](/run/configuration):
+Now you can fill your [service configuration](/guides/run/configuration):
 
 ![click on New Service](/images/guides/run/getting_started_3.png)
 
-As you configure the `Ports` section you can take note of the generated URL. You can find more information about this section under [Networking](/run/networking).
+As you configure the `Ports` section you can take note of the generated URL. You can find more information about this section under [Networking](/guides/run/networking).
 
 ![copy the URL](/images/guides/run/getting_started_4.png)
 

docs/guides/run/resources.mdx

@@ -76,7 +76,7 @@ To pause a service, simply set its number of replicas to `0`:
   <Tab title="dashboard">
 
 
-![pausing a service](/img/run/resources_3.png)
+![pausing a service](/images/guides/run/resources_3.png)
 
   </Tab>
   <Tab title="toml">

docs/guides/storage/cdn.mdx

@@ -0,0 +1,28 @@
+---
+title: CDN
+description: Serving files lightning fast
+icon: bolt
+---
+
+The [storage](/product/storage) service integrates with a CDN service to cache files and serve them close to users. This leads to faster response times and lower load on the backend service. You can read our initial [announcement](https://nhost.io/blog/launching-nhost-cdn-nhost-storage-is-now-blazing-fast) for some general information about what a CDN is and the performance gains.
+
+# Security
+
+The primary function of a CDN is to deliver cached files quickly to users without relying on the backend. While this is effective for public files, we need to handle non-public files differently to ensure that only users with proper permissions can access those files. Instead of serving the file directly, a conditional fetch is performed, including the user's Authorization header. This allows the backend service to verify the user's permissions. By conducting this conditional check, the backend service only needs to confirm to the CDN that the file can be served to the specific user, eliminating the need to serve the file itself.
+
+# Cache invalidation
+
+If a file is modified or deleted, we instruct the CDN to immediately invalidate the cached files. This is done automatically by the storage service and requires no special handling.
+
+# Maximizing HITs
+
+In CDN terminology, a HIT occurs when a file is found in the cache and can be served to the user. Conversely, a MISS happens when the file is not yet cached and requires a round trip to the backend to retrieve it before it can be served to the user.
+
+To lower response times and backend load, we want to maximize HITs as much as possible. To do that here are some notes and recommendations:
+
+1. Links with different query arguments are treated as different files, even if they all point to the same underlying file.
+2. Due to (1), if you are using the image manipulation feature, each set of options (i.e. different sizes or qualities), will be treated as different files. Having too many different combinations may increase the number of MISSes and be counterproductive.
+3. Only use presigned URLs if you really must to and reuse if possible. Due to (1) as well, each presigned URL is different, which means they are treated by the CDN as different files, even if they all point to the same file.
+4. If possible, always prefer public files
+5. Authenticated files are your second best option. You can use [nhost.storage.download](/reference/javascript/storage/download) to download private files.
+6. If you are hosting large files, don't be afraid of using the [range header](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Range). The service should be able to cache and serve partial files too.

docs/images/guides/auth/elevated-permissions/overview.mermaidjs

@@ -0,0 +1,24 @@
+sequenceDiagram
+    Note over User: User logins as usual
+    User->>App: I want to login, please
+    App->>Backend: /signin/...
+    Backend->>App: Session{...}
+    App->>User: Here is your session
+
+    Note over User: Actions that don't require elevated permissions work as usual
+    User->>App: I want to see my profile data
+    App->>Backend: query getProfileData { ... }
+    Backend->>App: data { ... }
+    App->>User: Here is your profile
+
+    Note over User: Action that requires elevated permissions starts here
+    User->>App: I want to change my address to X
+    App->>Backend: /elevate/webauthn
+    Backend->>App: SecurityChallenge{ ... }
+    App->>User: SecurityChallenge{ ... }
+    User->>App: SecurityChallengeResponse{ ... }
+    App->>+Backend: SecurityChallengeResponse{ ... }
+    Backend->>App: SessionWithElevatedClaim{ ... }
+    App->>Backend: mutation updateAddress { ... }
+    Backend->>App: success { ... }
+    App->>User: Your address has been changed

docs/mint.json

@@ -111,6 +111,8 @@
     {
       "group": "Authentication",
       "pages": [
+        "guides/auth/overview",
+        "guides/auth/users",
         {
           "group": "Social Sign In",
           "icon": "at",
@@ -130,6 +132,7 @@
         "guides/auth/sign-in-magic-link",
         "guides/auth/sign-in-phone-number",
         "guides/auth/sign-in-webauthn",
+        "guides/auth/elevated-permissions",
         "guides/auth/email-templates"
       ]
     },
@@ -139,7 +142,7 @@
     },
     {
       "group": "Storage",
-      "pages": ["guides/storage/overview", "guides/storage/antivirus"]
+      "pages": ["guides/storage/overview", "guides/storage/cdn", "guides/storage/antivirus"]
     },
     {
       "group": "Functions",
@@ -193,7 +196,9 @@
                 "reference/auth/sign-up-using-email-via-fido2-webauthn-authentication",
                 "reference/auth/verfiy-fido2-webauthn-authentication-and-complete-signup",
                 "reference/auth/sign-in-using-email-via-fido2-webauthn-authentication",
-                "reference/auth/verfiy-fido2-webauthn-authentication-using-public-key-cryptography"
+                "reference/auth/verfiy-fido2-webauthn-authentication-using-public-key-cryptography",
+                "reference/auth/elevate-webauthn", 
+                "reference/auth/elevate-webauthn-verify"
               ]
             },
             {
@@ -224,7 +229,8 @@
                 "reference/auth/get-user-information",
                 "reference/auth/refresh-the-oauth-access-tokens-of-a-given-user-you-must-be-an-admin-to-perform-this-operation",
                 "reference/auth/initialize-adding-of-a-new-webauthn-security-key-device-browser",
-                "reference/auth/verfiy-adding-of-a-new-webauth-security-key-device-browser"
+                "reference/auth/verfiy-adding-of-a-new-webauth-security-key-device-browser",
+                "reference/auth/create-personal-access-token-pat"
               ]
             },
             "reference/auth/sign-out"
@@ -291,7 +297,6 @@
               "group": "Auth",
               "pages": [
                 "reference/javascript/auth/hasura-auth-client",
-                "reference/javascript/auth/add-security-key",
                 "reference/javascript/auth/change-email",
                 "reference/javascript/auth/change-password",
                 "reference/javascript/auth/create-pat",
@@ -312,7 +317,9 @@
                 "reference/javascript/auth/sign-in",
                 "reference/javascript/auth/sign-in-pat",
                 "reference/javascript/auth/sign-out",
-                "reference/javascript/auth/sign-up"
+                "reference/javascript/auth/sign-up",
+                "reference/javascript/auth/add-security-key",
+                "reference/javascript/auth/elevate-email-security-key"
               ]
             },
             {
@@ -380,6 +387,7 @@
             "reference/react/use-sign-out",
             "reference/react/use-sign-up-email-password",
             "reference/react/use-sign-up-email-security-key-email",
+            "reference/react/use-elevate-security-key-email",
             "reference/react/use-user-avatar-url",
             "reference/react/use-user-data",
             "reference/react/use-user-default-role",
@@ -426,6 +434,7 @@
             "reference/nextjs/use-sign-out",
             "reference/nextjs/use-sign-up-email-password",
             "reference/nextjs/use-sign-up-email-security-key-email",
+            "reference/nextjs/use-elevate-security-key-email",
             "reference/nextjs/use-user-avatar-url",
             "reference/nextjs/use-user-data",
             "reference/nextjs/use-user-default-role",
@@ -472,7 +481,11 @@
             "reference/vue/use-user-id",
             "reference/vue/use-user-is-anonymous",
             "reference/vue/use-user-locale",
-            "reference/vue/use-user-roles"
+            "reference/vue/use-user-roles",
+            "reference/vue/use-add-security-key",
+            "reference/vue/use-elevate-security-key-email",
+            "reference/vue/use-sign-in-email-security-key",
+            "reference/vue/use-sign-up-email-security-key"
           ]
         }
       ]

docs/package.json

@@ -1,11 +1,11 @@
 {
   "name": "@nhost/docs",
-  "version": "2.4.0",
+  "version": "2.7.0",
   "private": true,
   "scripts": {
     "start": "mintlify dev"
   },
   "devDependencies": {
-    "mintlify": "^4.0.121"
+    "mintlify": "^4.0.128"
   }
 }

docs/platform/compute-resources.mdx

@@ -4,7 +4,7 @@ description: "Allocate CPU and Memory to your backend infrastructure"
 icon: server
 ---
 
-Compute resources are the fundamental units that represent the processing power and memory available to your projects. The primary compute resources are vCPU and RAM. 
+Compute resources are the fundamental units that represent the processing power and memory available to your projects. The primary compute resources are vCPU and RAM.
 
 This documentation outlines the key aspects of compute resources in the context of the Nhost Cloud Platform.
 
@@ -40,7 +40,7 @@ Projects on the pro tier have a total of 2 shared vCPUs and 2 GiB of RAM spread
 
 ## Dedicated Compute
 
-For production workloads where latency is essential or consistent performance is non-negotiable, we strongly suggest the use of dedicated resources. 
+For production workloads where latency is essential or consistent performance is non-negotiable, we strongly suggest the use of dedicated resources.
 
 <Note>Compute/Dedicated resources are only available on the Pro plan</Note>
 
@@ -72,3 +72,21 @@ To setup dedicated resources for your project, you can either use the Dashboard
   </Tab>
 </Tabs>
 
+## Disk Performance
+
+Services may require a disk provisioned to store data. For instance, [postgres](/guides/database/configuring-postgres#configuration-example) comes with a disk provisioned by default and [Nhost Run](/product/run) may [too](/guides/run/resources#storage). For these cases we provisioned SSD disks with the following performance:
+
+- Baseline: 3000 IOPS
+- Baseline: 125Mbps of thoughput
+- Every 50GB: +350 IOPS and +15Mbps of throughput
+
+For example, the following disk sizes will have the following performance:
+
+| Size | IOPS | Throughput |
+| ---- | ---- | ---------- |
+| 1 | 3000| 125 |
+| 10 | 3000| 125 |
+| 49 | 3000| 125 |
+| 50 | 3350| 140 |
+| 100 | 3700 | 155 |
+| 300 | 5100 | 215 |

docs/platform/environment-variables.mdx

@@ -21,7 +21,7 @@ export default (req: Request, res: Response) => {
 Variables created are available to all services, including Run Services and Functions
 </Note>
 
-## Add Environment Variables
+## Adding Environment Variables
 
 <Tabs>
 <Tab title="Config">
@@ -39,3 +39,43 @@ value = "Nhost is Awesome!"
 </Tab>
 </Tabs>
 
+## System Environment Variables
+
+System environment variables are generated and managed by Nhost. The following variables are available:
+
+- `NHOST_ADMIN_SECRET`
+- `NHOST_WEBHOOK_SECRET`
+- `NHOST_SUBDOMAIN`
+- `NHOST_REGION`
+- `NHOST_HASURA_URL`
+- `NHOST_AUTH_URL`
+- `NHOST_GRAPHQL_URL`
+- `NHOST_STORAGE_URL`
+- `NHOST_FUNCTIONS_URL`
+- `NHOST_JWT_SECRET`
+
+`NHOST_ADMIN_SECRET`, `NHOST_WEBHOOK_SECRET` and `NHOST_JWT_SECRET` are populated with values from their corresponding secrets. 
+
+**Example values**:
+
+```text
+NHOST_ADMIN_SECRET={{ secrets.HASURA_GRAPHQL_ADMIN_SECRET }}
+
+NHOST_WEBHOOK_SECRET={{ secrets.NHOST_WEBHOOK_SECRET }}
+
+NHOST_SUBDOMAIN=abv123abc
+
+NHOST_REGION=eu-central-1
+
+NHOST_HASURA_URL=https://abc123abc.hasura.eu-central-1.nhost.run/console
+
+NHOST_AUTH_URL=https://abc123abc.auth.eu-central-1.nhost.run/v1
+
+NHOST_GRAPHQL_URL=https://abc123abc.graphql.eu-central-1.nhost.run/v1
+
+NHOST_STORAGE_URL=https://abc123abc.storage.eu-central-1.nhost.run/v1
+
+NHOST_FUNCTIONS_URL=https://abc123abc.functions.eu-central-1.nhost.run/v1
+
+NHOST_JWT_SECRET={"key": "{{ secrets.HASURA_GRAPHQL_JWT_SECRET }}", "type": "HS256" }
+```

docs/product/authentication.mdx

@@ -19,6 +19,8 @@ Combined with a powerful **Permission Rules** system, Nhost Auth offers everythi
   </Card>
   <Card title="Security Keys (WebAuthn)" icon="square-4" href="../guides/auth/sign-in-webauthn">
   </Card>
+  <Card title="Elevated Permissions" icon="square-5" href="../guides/auth/elevated-permissions">
+  </Card>
 </CardGroup>
 
 ### OAuth Providers

docs/product/storage.mdx

@@ -4,13 +4,18 @@ description: Store and Serve large files
 icon: file
 ---
 
-Use Nhost Storage to store and retrieve large files such as videos, images, large documents, or any other objects. 
+Use Nhost Storage to store and retrieve large files such as videos, images, large documents, or any other objects.
 
 Nhost Storage includes a built-in image optimizer, so you can resize and compress your media files on the fly.
 
-### CDN 
-
-Serve your assets with a global CDN to reduce latency.
+<CardGroup cols={4}>
+  <Card title="Overview" icon="square-1" href="/guides/storage/overview">
+  </Card>
+  <Card title="CDN" icon="square-2" href="/guides/storage/cdn">
+  </Card>
+  <Card title="Antivirus" icon="square-3" href="/guides/storage/antivirus">
+  </Card>
+</CardGroup>
 
 
 ### Additional Resources

docs/reference/auth/create-personal-access-token-pat.mdx

@@ -0,0 +1,3 @@
+---
+openapi: post /pat
+---

docs/reference/auth/elevate-webauthn-verify.mdx

@@ -0,0 +1,4 @@
+---
+openapi: post /elevate/webauthn/verify
+sidebarTitle: Elevate Verify
+---

docs/reference/auth/elevate-webauthn.mdx

@@ -0,0 +1,4 @@
+---
+openapi: post /elevate/webauthn
+sidebarTitle: Elevate
+---

docs/reference/javascript/auth/elevate-email-security-key.mdx

@@ -0,0 +1,16 @@
+---
+title: elevateEmailSecurityKey()
+sidebarTitle: elevateEmailSecurityKey()
+---
+
+Use `nhost.auth.elevateEmailSecurityKey` to get a temporary elevated auth permissions to run sensitive operations.
+
+## Parameters
+
+---
+
+**<span className="parameter-name">email</span>** <span className="optional-status">required</span> <code>string</code>
+
+user email
+
+---

docs/reference/javascript/auth/types/elevate-with-security-key-handler-result.mdx

@@ -0,0 +1,39 @@
+---
+title: ElevateWithSecurityKeyHandlerResult
+sidebarTitle: ElevateWithSecurityKeyHandlerResult
+description: No description provided.
+---
+
+# `ElevateWithSecurityKeyHandlerResult`
+
+## Parameters
+
+---
+
+**<span className="parameter-name">elevated</span>** <span className="optional-status">required</span> <code>boolean</code>
+
+---
+
+**<span className="parameter-name">isError</span>** <span className="optional-status">required</span> <code>boolean</code>
+
+**`@returns`**
+
+`true` if an error occurred
+
+**`@depreacted`**
+
+use `!isSuccess` or `!!error` instead
+
+---
+
+**<span className="parameter-name">error</span>** <span className="optional-status">required</span> <code>null &#124; [`AuthErrorPayload`](/reference/javascript/auth/types/auth-error-payload)</code>
+
+Provides details about the error
+
+---
+
+**<span className="parameter-name">isSuccess</span>** <span className="optional-status">required</span> <code>boolean</code>
+
+Returns `true` if the action is successful.
+
+---

docs/reference/nextjs/create-server-side-client.mdx

@@ -16,7 +16,7 @@ instance of `NhostClient` that is ready to use on the server side (signed in or
 
 ---
 
-**<span className="parameter-name">params</span>** <span className="optional-status">required</span> <code>string &#124; Partial&lt;Pick&lt;NhostReactClientConstructorParams, "subdomain" &#124; "region" &#124; "authUrl" &#124; "graphqlUrl" &#124; "storageUrl" &#124; "functionsUrl"&gt;&gt;</code>
+**<span className="parameter-name">params</span>** <span className="optional-status">required</span> <code>Partial&lt;Pick&lt;NhostReactClientConstructorParams, "subdomain" &#124; "region" &#124; "authUrl" &#124; "graphqlUrl" &#124; "storageUrl" &#124; "functionsUrl"&gt;&gt;</code>
 
 ---
 

docs/reference/nextjs/get-nhost-session.mdx

@@ -28,7 +28,7 @@ export const getServerSideProps: GetServerSideProps = async (context) => {
 
 ---
 
-**<span className="parameter-name">params</span>** <span className="optional-status">required</span> <code>string &#124; Partial&lt;Pick&lt;NhostReactClientConstructorParams, "subdomain" &#124; "region" &#124; "authUrl" &#124; "graphqlUrl" &#124; "storageUrl" &#124; "functionsUrl"&gt;&gt;</code>
+**<span className="parameter-name">params</span>** <span className="optional-status">required</span> <code>Partial&lt;Pick&lt;NhostReactClientConstructorParams, "subdomain" &#124; "region" &#124; "authUrl" &#124; "graphqlUrl" &#124; "storageUrl" &#124; "functionsUrl"&gt;&gt;</code>
 
 ---
 

docs/reference/nextjs/nhost-client.mdx

@@ -1,6 +1,5 @@
 ---
 title: NhostClient
-sidebarTitle: NhostClient
 description: No description provided.
 ---
 
@@ -21,7 +20,6 @@ description: No description provided.
 | <span className="parameter-name"><span className="light-grey">params.</span>authUrl</span>             | <code>string</code>  |          |                                                                                                                                          |
 | <span className="parameter-name"><span className="light-grey">params.</span>region</span>              | <code>string</code>  |          | Project region (e.g. `eu-central-1`) Project region is not required during local development (when `subdomain` is `localhost`)           |
 | <span className="parameter-name"><span className="light-grey">params.</span>subdomain</span>           | <code>string</code>  |          | Project subdomain (e.g. `ieingiwnginwnfnegqwvdqwdwq`) Use `localhost` during local development                                           |
-| <span className="parameter-name"><span className="light-grey">params.</span>backendUrl</span>          | <code>string</code>  |          | Nhost backend URL Will be deprecated in a future release. Please look at 'subdomain' and 'region' instead.                               |
 | <span className="parameter-name"><span className="light-grey">params.</span>devTools</span>            | <code>boolean</code> |          | Activate devTools e.g. the ability to connect to the xstate inspector                                                                    |
 | <span className="parameter-name"><span className="light-grey">params.</span>autoSignIn</span>          | <code>boolean</code> |          | When set to true, will parse the url on startup to check if it contains a refresh token to start the session with                        |
 | <span className="parameter-name"><span className="light-grey">params.</span>autoRefreshToken</span>    | <code>boolean</code> |          | When set to true, will automatically refresh token before it expires                                                                     |

docs/reference/nextjs/types/backend-url.mdx

@@ -1,11 +0,0 @@
----
-title: BackendUrl
-sidebarTitle: BackendUrl
-description: No description provided.
----
-
-# `BackendUrl`
-
-```ts
-type BackendUrl = () => { backendUrl: string }
-```