Passaic 360 Workflows
How each part of the platform works — from auth to volunteering to admin review.
System Overview
How it works: All users interact via the frontend. The backend handles auth, validation, and database operations in Supabase.
Account Signup & Login
How it works: Signup creates both auth user and profile. Login validates credentials and returns session tokens. Employer signup uses a different endpoint.
Admin Login & Role Enforcement
How it works: Backend checks user_profile.role after login. Non-admins get 403 and their session is revoked immediately.
Organization Onboarding
How it works: Only employer accounts can onboard. Organization details go into volunteering_companies. Duplicate onboarding is blocked.
Volunteering Posting Lifecycle
How it works: Employers create postings as draft or pending. Admin approves or rejects. Active postings accept volunteer applications.
Volunteer Application
How it works: Authenticated users can apply only to active postings. First and last name required. Data stored in volunteer_applicant.
Organization Views Applicants
How it works: Employers only see applicants for their own postings. Ownership is checked via company_id.
Admin Timesheet Review
How it works: Admin can approve, reject (with note), or reset. Every action is logged in admin_audit_log.
OAuth Consent
How it works: Supabase redirects to consent page. User chooses whether to allow the third-party app.
Admin User Search & History
How it works: Admin can search users and view detailed history including timesheets, postings, or audit data based on role.