mealprep

Author	SHA1	Message	Date
Marcel Raddatz	aeaca76534	fix(auth): handle users without household — fallback to 'Kein Haushalt' Removes non-null assertions on householdId/householdName. Users who haven't joined a household get a fallback name in the sidebar. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-02 13:58:37 +02:00
Marcel Raddatz	32550377aa	fix(auth): read JSESSIONID cookie to match Spring Security default Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-02 13:57:34 +02:00
Marcel Raddatz	92c7d8f92e	feat(auth): preserve redirect URL when redirecting to /login Appends ?redirect= with the original pathname so the login page can redirect back after successful authentication. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-02 13:56:49 +02:00
Marcel Raddatz	cc74c0042a	test(auth): add isPublicRoute boundary tests for sub-paths and trailing slash Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-02 13:55:48 +02:00
Marcel Raddatz	2bdb1010f8	fix(auth): bypass auth guard for static assets and favicon Prevents redirect loop when backend is down — login page CSS/JS would otherwise be redirected to /login. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-02 13:55:03 +02:00
Marcel Raddatz	7a17873046	feat(auth): add auth guard in hooks.server.ts with session validation Validates session cookie via GET /v1/auth/me, populates event.locals with benutzer and haushalt, redirects to /login if unauthenticated. Public routes (/login, /register, /invite) bypass auth. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-02 13:19:40 +02:00

6 Commits