feat(settings): per-integration Test button with live API checks

Each integration card now has a Test button that re-runs its
connectivity check on demand and updates the badge in place.

- Refactors checkIntegrationStatus into checkIntegration(name) so a
  single integration can be tested without firing the others.
- Adds POST /api/settings/test for the on-demand check.
- Replaces the "key exists ⇒ connected" placeholder for Tavily,
  Gemini, and Nextdoor with real API calls (Tavily search, Gemini
  models list, Nextdoor advertiser fetch). 401/403 surface as
  "Invalid API key" / "Token expired or invalid" so a stale
  credential is obvious instead of pretending to be healthy.
- Fixes Postiz auth header (was Bearer, the rest of the codebase
  passes the API key bare — matches lib/postiz.ts now).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

app/(dashboard)/settings/page.tsx

@@ -12,7 +12,7 @@ import {
   CardHeader,
   CardTitle,
 } from "@/components/ui/card";
-import { CheckCircle2, XCircle, Loader2, ExternalLink } from "lucide-react";
+import { CheckCircle2, XCircle, Loader2, ExternalLink, FlaskConical } from "lucide-react";
 
 interface SettingsGroup {
   name: string;
@@ -110,6 +110,7 @@ export default function SettingsPage() {
   const [saving, setSaving] = useState<string | null>(null);
   const [saved, setSaved] = useState<string | null>(null);
   const [loading, setLoading] = useState(true);
+  const [testing, setTesting] = useState<string | null>(null);
 
   useEffect(() => {
     fetch("/api/settings?status=true")
@@ -159,6 +160,27 @@ export default function SettingsPage() {
     return status[key] || { connected: false, error: "Unknown" };
   }
 
+  async function handleTest(group: SettingsGroup) {
+    const integration = group.name.toLowerCase();
+    setTesting(integration);
+    try {
+      const res = await fetch("/api/settings/test", {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({ integration }),
+      });
+      const result = await res.json();
+      setStatus((prev) => ({ ...prev, [integration]: result }));
+    } catch {
+      setStatus((prev) => ({
+        ...prev,
+        [integration]: { connected: false, error: "Test request failed" },
+      }));
+    } finally {
+      setTesting(null);
+    }
+  }
+
   if (loading) {
     return (
       <div className="flex items-center justify-center py-20">
@@ -179,6 +201,8 @@ export default function SettingsPage() {
 
       {SETTINGS_GROUPS.map((group) => {
         const groupStatus = getGroupStatus(group);
+        const integrationKey = group.name.toLowerCase();
+        const isTesting = testing === integrationKey;
 
         return (
           <Card key={group.name}>
@@ -186,7 +210,15 @@ export default function SettingsPage() {
               <div className="flex items-center justify-between">
                 <div className="flex items-center gap-3">
                   <CardTitle>{group.name}</CardTitle>
-                  {groupStatus.connected ? (
+                  {isTesting ? (
+                    <Badge
+                      variant="outline"
+                      className="text-blue-600 border-blue-200 bg-blue-50"
+                    >
+                      <Loader2 className="h-3 w-3 mr-1 animate-spin" />
+                      Testing…
+                    </Badge>
+                  ) : groupStatus.connected ? (
                     <Badge
                       variant="outline"
                       className="text-green-600 border-green-200 bg-green-50"
@@ -204,15 +236,30 @@ export default function SettingsPage() {
                     </Badge>
                   )}
                 </div>
-                <a
+                <div className="flex items-center gap-3">
-                  href={group.docsUrl}
+                  <Button
-                  target="_blank"
+                    variant="outline"
-                  rel="noopener noreferrer"
+                    size="sm"
-                  className="text-sm text-muted-foreground hover:text-foreground flex items-center gap-1"
+                    onClick={() => handleTest(group)}
-                >
+                    disabled={isTesting}
-                  Docs
+                  >
-                  <ExternalLink className="h-3 w-3" />
+                    {isTesting ? (
-                </a>
+                      <Loader2 className="h-3.5 w-3.5 animate-spin" />
+                    ) : (
+                      <FlaskConical className="h-3.5 w-3.5 mr-1" />
+                    )}
+                    {isTesting ? "" : "Test"}
+                  </Button>
+                  <a
+                    href={group.docsUrl}
+                    target="_blank"
+                    rel="noopener noreferrer"
+                    className="text-sm text-muted-foreground hover:text-foreground flex items-center gap-1"
+                  >
+                    Docs
+                    <ExternalLink className="h-3 w-3" />
+                  </a>
+                </div>
               </div>
               <CardDescription>{group.description}</CardDescription>
             </CardHeader>

app/api/settings/test/route.ts

@@ -0,0 +1,19 @@
+import { auth } from "@/lib/auth";
+import { checkIntegration, type IntegrationName } from "@/lib/settings";
+
+const VALID: IntegrationName[] = ["claude", "postiz", "tavily", "gemini", "nextdoor"];
+
+export async function POST(request: Request) {
+  const session = await auth();
+  if (!session) return new Response("Unauthorized", { status: 401 });
+
+  const body = await request.json().catch(() => ({}));
+  const name = body?.integration as IntegrationName | undefined;
+
+  if (!name || !VALID.includes(name)) {
+    return Response.json({ error: "integration must be one of: " + VALID.join(", ") }, { status: 400 });
+  }
+
+  const status = await checkIntegration(name);
+  return Response.json(status);
+}

lib/settings.ts

@@ -102,82 +102,132 @@ export async function saveSetting(key: SettingKey, value: string) {
   });
 }
 
-/**
+export type IntegrationName = "claude" | "postiz" | "tavily" | "gemini" | "nextdoor";
- * Check connectivity status for each integration.
+export type IntegrationStatus = { connected: boolean; error?: string };
- */
-export async function checkIntegrationStatus(): Promise<Record<string, { connected: boolean; error?: string }>> {
-  const settings = await getAllSettings();
-  const status: Record<string, { connected: boolean; error?: string }> = {};
 
-  // Claude OAuth token — validate by hitting the messages API with a 1-token call.
+function errorMessage(e: unknown): string {
-  // A valid OAuth token returns 200; an expired/invalid one returns 401.
+  if (e instanceof Error) {
-  if (settings.CLAUDE_CODE_OAUTH_TOKEN) {
+    if (e.name === "TimeoutError" || e.name === "AbortError") return "Timed out";
-    try {
+    return e.message;
-      const res = await fetch("https://api.anthropic.com/v1/messages", {
-        method: "POST",
-        headers: {
-          "Content-Type": "application/json",
-          "anthropic-version": "2023-06-01",
-          "anthropic-beta": "oauth-2025-04-20",
-          Authorization: `Bearer ${settings.CLAUDE_CODE_OAUTH_TOKEN}`,
-        },
-        body: JSON.stringify({
-          model: "claude-haiku-4-5-20251001",
-          max_tokens: 1,
-          messages: [{ role: "user", content: "." }],
-        }),
-        signal: AbortSignal.timeout(10000),
-      });
-      if (res.ok) {
-        status.claude = { connected: true };
-      } else if (res.status === 401) {
-        status.claude = { connected: false, error: "Token expired or invalid" };
-      } else {
-        status.claude = { connected: false, error: `HTTP ${res.status}` };
-      }
-    } catch (e) {
-      status.claude = { connected: false, error: e instanceof Error ? e.message : "Connection failed" };
-    }
-  } else {
-    status.claude = { connected: false, error: "Not configured" };
   }
-
+  return "Connection failed";
-  // Postiz
+}
-  if (settings.POSTIZ_URL && settings.POSTIZ_API_KEY) {
+
-    try {
+/**
-      const res = await fetch(`${settings.POSTIZ_URL}/public/v1/integrations`, {
+ * Live-test a single integration by making a real API call.
-        headers: { Authorization: `Bearer ${settings.POSTIZ_API_KEY}` },
+ */
-        signal: AbortSignal.timeout(5000),
+export async function checkIntegration(name: IntegrationName): Promise<IntegrationStatus> {
-      });
+  const settings = await getAllSettings();
-      status.postiz = { connected: res.ok };
+
-      if (!res.ok) status.postiz.error = `HTTP ${res.status}`;
+  switch (name) {
-    } catch (e) {
+    case "claude": {
-      status.postiz = { connected: false, error: e instanceof Error ? e.message : "Connection failed" };
+      // OAuth token — validate by hitting the messages API with a 1-token call.
-    }
+      if (!settings.CLAUDE_CODE_OAUTH_TOKEN) return { connected: false, error: "Not configured" };
-  } else {
+      try {
-    status.postiz = { connected: false, error: "Not configured" };
+        const res = await fetch("https://api.anthropic.com/v1/messages", {
-  }
+          method: "POST",
-
+          headers: {
-  // Tavily
+            "Content-Type": "application/json",
-  if (settings.TAVILY_API_KEY) {
+            "anthropic-version": "2023-06-01",
-    status.tavily = { connected: true }; // No ping endpoint, just check if key exists
+            "anthropic-beta": "oauth-2025-04-20",
-  } else {
+            Authorization: `Bearer ${settings.CLAUDE_CODE_OAUTH_TOKEN}`,
-    status.tavily = { connected: false, error: "Not configured" };
+          },
-  }
+          body: JSON.stringify({
-
+            model: "claude-haiku-4-5-20251001",
-  // Gemini
+            max_tokens: 1,
-  if (settings.GEMINI_API_KEY) {
+            messages: [{ role: "user", content: "." }],
-    status.gemini = { connected: true };
+          }),
-  } else {
+          signal: AbortSignal.timeout(10000),
-    status.gemini = { connected: false, error: "Not configured" };
+        });
-  }
+        if (res.ok) return { connected: true };
-
+        if (res.status === 401) return { connected: false, error: "Token expired or invalid" };
-  // Nextdoor
+        return { connected: false, error: `HTTP ${res.status}` };
-  if (settings.NEXTDOOR_API_TOKEN && settings.NEXTDOOR_ADVERTISER_ID) {
+      } catch (e) {
-    status.nextdoor = { connected: true };
+        return { connected: false, error: errorMessage(e) };
-  } else {
+      }
-    status.nextdoor = { connected: false, error: "Not configured" };
+    }
-  }
+
-
+    case "postiz": {
-  return status;
+      if (!settings.POSTIZ_URL || !settings.POSTIZ_API_KEY) return { connected: false, error: "Not configured" };
+      try {
+        const res = await fetch(`${settings.POSTIZ_URL}/public/v1/integrations`, {
+          headers: { Authorization: settings.POSTIZ_API_KEY },
+          signal: AbortSignal.timeout(5000),
+        });
+        if (res.ok) return { connected: true };
+        return { connected: false, error: `HTTP ${res.status}` };
+      } catch (e) {
+        return { connected: false, error: errorMessage(e) };
+      }
+    }
+
+    case "tavily": {
+      if (!settings.TAVILY_API_KEY) return { connected: false, error: "Not configured" };
+      try {
+        const res = await fetch("https://api.tavily.com/search", {
+          method: "POST",
+          headers: { "Content-Type": "application/json" },
+          body: JSON.stringify({
+            api_key: settings.TAVILY_API_KEY,
+            query: "ping",
+            max_results: 1,
+          }),
+          signal: AbortSignal.timeout(8000),
+        });
+        if (res.ok) return { connected: true };
+        if (res.status === 401 || res.status === 403) return { connected: false, error: "Invalid API key" };
+        return { connected: false, error: `HTTP ${res.status}` };
+      } catch (e) {
+        return { connected: false, error: errorMessage(e) };
+      }
+    }
+
+    case "gemini": {
+      if (!settings.GEMINI_API_KEY) return { connected: false, error: "Not configured" };
+      try {
+        const res = await fetch(
+          `https://generativelanguage.googleapis.com/v1beta/models?key=${encodeURIComponent(settings.GEMINI_API_KEY)}`,
+          { signal: AbortSignal.timeout(8000) }
+        );
+        if (res.ok) return { connected: true };
+        if (res.status === 400 || res.status === 403) return { connected: false, error: "Invalid API key" };
+        return { connected: false, error: `HTTP ${res.status}` };
+      } catch (e) {
+        return { connected: false, error: errorMessage(e) };
+      }
+    }
+
+    case "nextdoor": {
+      if (!settings.NEXTDOOR_API_TOKEN || !settings.NEXTDOOR_ADVERTISER_ID) {
+        return { connected: false, error: "Not configured" };
+      }
+      try {
+        const res = await fetch(
+          `https://api.nextdoor.com/v1/advertiser/${encodeURIComponent(settings.NEXTDOOR_ADVERTISER_ID)}`,
+          {
+            headers: { Authorization: `Bearer ${settings.NEXTDOOR_API_TOKEN}` },
+            signal: AbortSignal.timeout(8000),
+          }
+        );
+        if (res.ok) return { connected: true };
+        if (res.status === 401 || res.status === 403) return { connected: false, error: "Token expired or invalid" };
+        if (res.status === 404) return { connected: false, error: "Advertiser ID not found" };
+        return { connected: false, error: `HTTP ${res.status}` };
+      } catch (e) {
+        return { connected: false, error: errorMessage(e) };
+      }
+    }
+  }
+}
+
+const ALL_INTEGRATIONS: IntegrationName[] = ["claude", "postiz", "tavily", "gemini", "nextdoor"];
+
+/**
+ * Check connectivity status for every integration in parallel.
+ */
+export async function checkIntegrationStatus(): Promise<Record<string, IntegrationStatus>> {
+  const results = await Promise.all(
+    ALL_INTEGRATIONS.map(async (name) => [name, await checkIntegration(name)] as const)
+  );
+  return Object.fromEntries(results);
 }