fix(gui): profile creation bug and UX improvements (v4.10.2)

## Bug Fix (#52)
- Profile creation now works when frontend sends empty config_path
- Backend auto-generates config_path using sanitized profile ID
- Creates default config from template or copies main config
- SECURITY: Validates path BEFORE file I/O (prevents TOCTOU)
- SECURITY: Uses create_new(true) for atomic file creation (Council review fix)
- 3 TDD tests verify auto-generation behavior

## UX Improvement (#53)
- App Profiles moved from modal to main sidebar navigation
- Created dedicated ProfilesView.svelte component
- DevicesView now focuses on device/template management
- Added PROFILES section to navigation store

## Files Changed
- profile_manager.rs: Auto-generate config_path with atomic creation + tests
- resources/default_profile.toml: Default profile template (NEW)
- ProfilesView.svelte: Dedicated profile view (NEW)
- App.svelte: Added PROFILES routing
- Sidebar.svelte: Added App Profiles nav item
- navigation.js: Added PROFILES section
- DevicesView.svelte: Removed ProfileManager modal code
- Cargo.toml: Bumped version to 4.10.2
- CHANGELOG.md: v4.10.2 release notes

Co-Authored-By: Claude Opus 4.5 <[email protected]>

Author: amiable-dev

CHANGELOG.md

@@ -12,6 +12,27 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 - Action macros and scripting
 - Cloud sync (optional)
 
+## [4.10.2] - 2026-01-30
+
+### Fixed
+- **Profile Creation Bug** (#52): Fixed profile creation failing when frontend sends empty config_path
+  - Backend now auto-generates config_path using sanitized profile ID
+  - Creates default config file from template or copies main config
+  - Added `create_default_profile_config()` helper method
+  - 3 TDD tests verify auto-generation behavior
+
+### Changed
+- **App Profiles Moved to Sidebar** (#53): Improved UX for per-app profile management
+  - App Profiles now accessible directly from main sidebar navigation
+  - Created dedicated `ProfilesView.svelte` component
+  - Removed ProfileManager modal from DevicesView
+  - DevicesView now focused solely on device/template management
+
+### Added
+- **Default Profile Template**: New `resources/default_profile.toml` for auto-generated profiles
+  - Contains device settings, modes, and example mappings
+  - Used when no main config exists to copy from
+
 ## [4.10.1] - 2026-01-30
 
 ### Security

Cargo.lock

@@ -13,7 +13,7 @@ exclude = [
 resolver = "2"
 
 [workspace.package]
-version = "4.10.1"
+version = "4.10.2"
 edition = "2024"
 authors = ["Conductor Contributors"]
 license = "MIT"

Cargo.toml

@@ -0,0 +1,21 @@
+# Default profile configuration
+# Created automatically for new profiles
+# Customize this file to define your MIDI mappings
+
+[device]
+name = "Default Profile"
+auto_connect = true
+
+[advanced_settings]
+chord_timeout_ms = 50
+double_tap_timeout_ms = 300
+hold_threshold_ms = 2000
+
+[[modes]]
+name = "Default"
+color = "blue"
+
+# Example mapping (uncomment and modify):
+# [[modes.mappings]]
+# trigger = { type = "Note", note = 36 }
+# action = { type = "Keystroke", keys = ["cmd", "space"] }

conductor-gui/src-tauri/resources/default_profile.toml

@@ -243,7 +243,11 @@ impl ProfileManager {
     /// # Security (ADR-006)
     /// - Validates profile_id doesn't contain path traversal characters
     /// - Validates config_path is within profiles directory
-    pub async fn register_profile(&self, profile: AppProfile) -> Result<(), String> {
+    ///
+    /// # Auto-generation (v4.10.2 - GitHub Issue #52)
+    /// If config_path is empty, auto-generates a path based on profile_id
+    /// and creates a default config file from the template.
+    pub async fn register_profile(&self, mut profile: AppProfile) -> Result<(), String> {
         // SECURITY: Validate profile_id before registration (ADR-006)
         validate_profile_id(&profile.id).map_err(|e| format!("Invalid profile ID: {}", e))?;
 
@@ -252,12 +256,39 @@ impl ProfileManager {
             validate_bundle_id(bundle_id).map_err(|e| format!("Invalid bundle ID: {}", e))?;
         }
 
-        // SECURITY: Validate config_path before registration (ADR-006)
-        // Use async version to avoid blocking the Tokio runtime
+        // AUTO-GENERATE config_path if empty (v4.10.2 - GitHub Issue #52)
+        // This allows the frontend to create profiles without specifying a path
+        // SECURITY: Set path first, validate BEFORE any file I/O to prevent TOCTOU
+        let needs_default_config = if profile.config_path.as_os_str().is_empty() {
+            let sanitized_id = sanitize_profile_id(&profile.id);
+            let config_filename = format!("{}.toml", sanitized_id);
+            let config_path = self.profiles_dir.join(&config_filename);
+
+            profile.config_path = config_path;
+            tracing::info!(
+                "Auto-generated config_path for profile '{}': {}",
+                profile.id,
+                profile.config_path.display()
+            );
+            true // Mark that we need to create default config after validation
+        } else {
+            false
+        };
+
+        // SECURITY: Validate config_path BEFORE any file operations (ADR-006)
+        // This prevents TOCTOU vulnerabilities by ensuring path is safe before writes
         validate_config_path_async(&profile.config_path, &self.profiles_dir)
             .await
             .map_err(|e| format!("Invalid config path: {}", e))?;
 
+        // Create default config file AFTER validation, only if auto-generated
+        // SECURITY: Use atomic creation (try_create_new) instead of exists() + write
+        // to prevent TOCTOU race condition where attacker could create symlink between check and write
+        if needs_default_config {
+            self.try_create_default_profile_config(&profile.config_path)
+                .await?;
+        }
+
         let profile_id = profile.id.clone();
 
         // Add to profiles map
@@ -275,6 +306,65 @@ impl ProfileManager {
         Ok(())
     }
 
+    /// Atomically create a default profile config file from template (v4.10.2 - GitHub Issue #52)
+    ///
+    /// SECURITY: Uses create_new(true) for atomic file creation to prevent TOCTOU.
+    /// If file already exists, returns Ok (idempotent).
+    ///
+    /// Strategy:
+    /// 1. Try to copy from main config if it exists (preserves user's settings)
+    /// 2. Fall back to embedded default template
+    async fn try_create_default_profile_config(&self, path: &Path) -> Result<(), String> {
+        use tokio::io::AsyncWriteExt;
+
+        // Determine content to write
+        let config_dir = dirs::config_dir().ok_or("Failed to get config directory")?;
+        let main_config = config_dir.join("midimon").join("config.toml");
+
+        let content: String = if main_config.exists() {
+            tokio::fs::read_to_string(&main_config)
+                .await
+                .map_err(|e| format!("Failed to read main config: {}", e))?
+        } else {
+            include_str!("../resources/default_profile.toml").to_string()
+        };
+
+        // SECURITY: Atomic file creation with create_new(true) - fails if file exists
+        // This prevents TOCTOU race where attacker creates symlink between check and write
+        let file_result = tokio::fs::OpenOptions::new()
+            .write(true)
+            .create_new(true) // Atomic: fails if file already exists
+            .open(path)
+            .await;
+
+        match file_result {
+            Ok(mut file) => {
+                file.write_all(content.as_bytes())
+                    .await
+                    .map_err(|e| format!("Failed to write profile config: {}", e))?;
+                tracing::info!(
+                    "Created profile config{}: {}",
+                    if main_config.exists() {
+                        " from main config"
+                    } else {
+                        " from default template"
+                    },
+                    path.display()
+                );
+                Ok(())
+            }
+            Err(e) if e.kind() == std::io::ErrorKind::AlreadyExists => {
+                // File already exists - this is OK, idempotent behavior
+                tracing::debug!(
+                    "Profile config already exists (skipped creation): {}",
+                    path.display()
+                );
+                Ok(())
+            }
+            Err(e) => Err(format!("Failed to create profile config: {}", e)),
+        }
+    }
+
     /// Get profile by ID
     pub async fn get_profile(&self, profile_id: &str) -> Option<AppProfile> {
         self.profiles.read().await.get(profile_id).cloned()
@@ -1527,4 +1617,122 @@ mod tests {
             );
         }
     }
+
+    // =========================================================================
+    // Auto-generate config_path Tests (v4.10.2 - GitHub Issue #52)
+    // =========================================================================
+
+    #[tokio::test]
+    async fn test_register_profile_auto_generates_config_path() {
+        // Test that profiles with empty config_path get a generated path
+        let temp_dir = TempDir::new().unwrap();
+        let manager = ProfileManager::with_directory(temp_dir.path().to_path_buf()).unwrap();
+
+        // Profile with empty config_path (simulates frontend creating new profile)
+        let profile = AppProfile {
+            id: "test-profile".to_string(),
+            name: "Test Profile".to_string(),
+            bundle_ids: vec!["com.example.app".to_string()],
+            config_path: PathBuf::new(), // Empty!
+            last_modified: None,
+            is_default: false,
+        };
+
+        // Registration should succeed
+        let result = manager.register_profile(profile).await;
+        assert!(result.is_ok(), "Registration should succeed with empty config_path: {:?}", result);
+
+        // Verify config file was created
+        let expected_path = temp_dir.path().join("test-profile.toml");
+        assert!(
+            expected_path.exists(),
+            "Config file should be created at: {}",
+            expected_path.display()
+        );
+
+        // Verify profile has correct config_path set
+        let stored = manager.get_profile("test-profile").await;
+        assert!(stored.is_some(), "Profile should be retrievable");
+        let stored = stored.unwrap();
+        // Canonicalize both paths to handle macOS /var -> /private/var symlink
+        let stored_canonical = stored.config_path.canonicalize().unwrap();
+        let expected_canonical = expected_path.canonicalize().unwrap();
+        assert_eq!(
+            stored_canonical, expected_canonical,
+            "Profile should have auto-generated config_path"
+        );
+
+        // Verify the config file has valid content
+        let content = tokio::fs::read_to_string(&expected_path).await.unwrap();
+        assert!(
+            content.contains("[device]") || content.contains("name"),
+            "Config file should have valid TOML content: {}",
+            content
+        );
+    }
+
+    #[tokio::test]
+    async fn test_register_profile_preserves_existing_config_path() {
+        // Test that profiles with explicit config_path retain it
+        let temp_dir = TempDir::new().unwrap();
+        let manager = ProfileManager::with_directory(temp_dir.path().to_path_buf()).unwrap();
+
+        // Create existing config file
+        let config_path = temp_dir.path().join("existing.toml");
+        tokio::fs::write(&config_path, "# Existing config\n[device]\nname = \"Existing\"")
+            .await
+            .unwrap();
+
+        let profile = AppProfile {
+            id: "test-profile".to_string(),
+            name: "Test Profile".to_string(),
+            bundle_ids: vec![],
+            config_path: config_path.clone(),
+            last_modified: None,
+            is_default: false,
+        };
+
+        manager.register_profile(profile).await.unwrap();
+
+        // Verify original config_path is preserved
+        let stored = manager.get_profile("test-profile").await.unwrap();
+        assert_eq!(
+            stored.config_path, config_path,
+            "Should preserve explicit config_path"
+        );
+
+        // Verify original content wasn't overwritten
+        let content = tokio::fs::read_to_string(&config_path).await.unwrap();
+        assert!(
+            content.contains("Existing"),
+            "Original config content should be preserved"
+        );
+    }
+
+    #[tokio::test]
+    async fn test_register_profile_auto_generate_uses_sanitized_id() {
+        // Test that auto-generated paths use sanitized profile IDs
+        let temp_dir = TempDir::new().unwrap();
+        let manager = ProfileManager::with_directory(temp_dir.path().to_path_buf()).unwrap();
+
+        // Profile with special characters in ID (should be sanitized)
+        let profile = AppProfile {
+            id: "my_profile-123".to_string(),
+            name: "Test Profile".to_string(),
+            bundle_ids: vec![],
+            config_path: PathBuf::new(),
+            last_modified: None,
+            is_default: false,
+        };
+
+        manager.register_profile(profile).await.unwrap();
+
+        // Verify config file was created with correct sanitized name
+        let expected_path = temp_dir.path().join("my_profile-123.toml");
+        assert!(
+            expected_path.exists(),
+            "Config file should be created with sanitized name: {}",
+            expected_path.display()
+        );
+    }
 }

conductor-gui/src-tauri/src/profile_manager.rs

@@ -5,6 +5,7 @@
   import DevicesView from './lib/views/DevicesView.svelte';
   import ModesView from './lib/views/ModesView.svelte';
   import MappingsView from './lib/views/MappingsView.svelte';
+  import ProfilesView from './lib/views/ProfilesView.svelte';
   import PluginsView from './lib/views/PluginsView.svelte';
   import SettingsView from './lib/views/SettingsView.svelte';
   import { currentSection, restoreNavigationState, SECTIONS } from './lib/stores/navigation.js';
@@ -28,6 +29,8 @@
         <ModesView />
       {:else if $currentSection === SECTIONS.MAPPINGS}
         <MappingsView />
+      {:else if $currentSection === SECTIONS.PROFILES}
+        <ProfilesView />
       {:else if $currentSection === SECTIONS.PLUGINS}
         <PluginsView />
       {:else if $currentSection === SECTIONS.SETTINGS}

conductor-gui/ui/src/App.svelte

@@ -5,6 +5,7 @@
     { id: SECTIONS.DEVICES, label: 'Devices', icon: '🎹' },
     { id: SECTIONS.MODES, label: 'Modes', icon: '🎨' },
     { id: SECTIONS.MAPPINGS, label: 'Mappings', icon: '🔗' },
+    { id: SECTIONS.PROFILES, label: 'App Profiles', icon: '📱' },
     { id: SECTIONS.PLUGINS, label: 'Plugins', icon: '🧩' },
     { id: SECTIONS.SETTINGS, label: 'Settings', icon: '⚙️' },
   ];

conductor-gui/ui/src/lib/components/Sidebar.svelte

@@ -15,6 +15,7 @@ export const SECTIONS = {
   DEVICES: 'devices',
   MODES: 'modes',
   MAPPINGS: 'mappings',
+  PROFILES: 'profiles',  // v4.10.2: App Profiles moved to sidebar (GitHub Issue #53)
   PLUGINS: 'plugins',
   SETTINGS: 'settings',
 };