8 commits

Author	SHA1	Message	Date
senke	a90b584e53	fix(security): protect admin routes with role check ... Previously, any authenticated user could access /admin, /admin/moderation, /admin/platform, /admin/transfers, and /admin/roles — the ProtectedRoute only checked isAuthenticated, not role. Exposed the admin Command Center UI to listeners/creators (critical security flaw). Changes: - ProtectedRoute accepts requireAdmin prop; redirects to /dashboard when authenticated user lacks admin/super_admin role or is_admin=true - New wrapAdminProtected() helper in routeConfig - All /admin/* routes now use wrapAdminProtected Note: Backend API still enforces admin checks independently — this fix only prevents the UI from being shown to non-admins. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-05 16:19:16 +02:00
senke	1b25013c6f	refactor(frontend): simplify TokenStorage usage for httpOnly cookie auth	2026-02-15 16:04:42 +01:00
senke	37981c2c17	chore(refactor/sumi-migration): commit pending changes — tests, stream server, dist_verification ... - apps/web: test updates (Vitest/setup), playbackAnalyticsService, TrackGrid, serviceErrorHandler - veza-common: logging, metrics, traits, validation, random - veza-stream-server: audio pipeline, codecs, cache, monitoring, routes - apps/web/dist_verification: refresh build assets (content-hashed filenames) Co-authored-by: Cursor <cursoragent@cursor.com>	2026-02-13 19:39:18 +01:00
senke	83f12a6e42	chore: remove production logs in components	2026-01-07 10:31:02 +01:00
senke	c70dc23e70	[INT-AUTH-002] Remove duplicate auth store - migrate to features/auth/store/authStore.ts	2025-12-26 09:11:46 +01:00
senke	84913e1108	fix(frontend): stabilize architecture (router, lazy loading, build, auth)	2025-12-17 09:15:45 -05:00
senke	2dfde29f7d	refonte: backend-api go first; phase 1	2025-12-12 21:34:34 -05:00
okinrev	327ac36a30	BASE: completing the initial repo state	2025-12-03 22:56:50 +01:00