3 Commits

Author	SHA1	Message	Date
Patrick Plate	281adda27c	fix(frontend): align NextAuth authorize() with flat backend LoginResponse ... Login reached the backend (HTTP 200) but NextAuth returned CredentialsSignin. Cause: authorize() read data.member.id/email/clubName/clubId, but the backend LoginResponse is flat — { accessToken, refreshToken, expiresIn, role } with no member object. Accessing data.member.id on undefined threw, so authorize() returned null. Decode the JWT payload to recover identity claims (sub=userId, email, tenant_id=clubId) and use the flat top-level role. Adds a small decodeJwtPayload helper (claims only, no signature verification needed here).	2026-06-13 10:10:48 +02:00
Patrick Plate	d650987b9a	fix(frontend): guard redirect callback against undefined url during SSG	2026-06-13 09:28:52 +02:00
Patrick Plate	fe6e96dd3f	feat: Sprint 4 complete — frontend MVP (admin dashboard + member portal) ... Shadboard starter-kit (Next.js 15 + React 19 + shadcn/ui + Tailwind 4) Sprint 4.a — Admin Dashboard: - Auth: NextAuth.js v5, login page, middleware, token rotation - Dashboard: KPI cards, Recharts stock chart, quick actions - Members: TanStack Table (search/sort/paginate), add/edit forms - Distributions: multi-step form, real-time quota check, history - Stock: batch management, recall dialog, bar chart - Reports: monthly/member-list/recall, PDF/CSV download, preview Sprint 4.b — Member Portal: - Separate route group with top-nav layout (mobile-first) - Quota dashboard with radial SVG progress indicators - Distribution history with month filter - Profile/settings with password change Cross-cutting: - i18n: German (default) + English via next-intl - Dark + light mode (next-themes, user-togglable) - Playwright E2E tests (6/6 green) - Docker multi-stage build (node:22-alpine) - API proxy via Next.js rewrites Tech: Next.js 15.2.8, React 19, Tailwind 4, NextAuth v5, TanStack Table, Recharts, Zod, React Hook Form, Playwright	2026-06-12 17:18:38 +02:00