Marcel Raddatz 16f0feb8d5 fix(auth): fix mock responses in tests and block open redirect in login ...

- Add response object to mockSuccess() in login and signup tests so
  response.headers.get() no longer throws
- Validate ?redirect= param: must start with / and not // to prevent
  redirecting users to external domains

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-04-02 18:48:48 +02:00

..

src

fix(auth): fix mock responses in tests and block open redirect in login

2026-04-02 18:48:48 +02:00

Dockerfile

Wire frontend into Docker Compose with type-safe API client

2026-04-02 12:36:09 +02:00

package-lock.json

feat(auth): add SignupForm component with validation and password toggle

2026-04-02 14:45:54 +02:00

package.json

feat(auth): add SignupForm component with validation and password toggle

2026-04-02 14:45:54 +02:00

svelte.config.js

Wire frontend into Docker Compose with type-safe API client

2026-04-02 12:36:09 +02:00

tsconfig.json

feat(design-system): add Tailwind 4 @theme tokens, fonts, and completeness tests

2026-04-02 12:45:11 +02:00

vite.config.ts

refactor(config): document resolve.conditions safety for SSR builds

2026-04-02 13:52:23 +02:00