feat(auth): bounce to /login.html on 401 so AUTH_ENABLED=true gives a real login #26

Merged

zgaetano merged 1 commit from feat/auth-login-redirect into main

2026-05-23 16:41:25 -04:00

Author	SHA1	Message	Date
Zac Gaetano	bec4bfaf31	feat(auth): bounce to /login.html on any 401 from the api wrapper apiFetch now redirects to /login.html when the server returns 401, so flipping AUTH_ENABLED=true on mam-api gives the user the login screen instead of a half-loaded app that silently failed to fetch /auth/me. While AUTH_ENABLED=false the server's /auth/me still returns a synthetic 200 user, so this branch is dormant — safe to deploy ahead of the env flip on the server. After the flip the operator visits /login.html (directly or via auto-redirect), runs the "Create admin account" flow once, and lands back on the SPA with a real session. Guards against a redirect loop if login.html itself somehow lands here. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-05-23 16:40:45 -04:00

Author

SHA1

Message

Date

Zac Gaetano

bec4bfaf31

feat(auth): bounce to /login.html on any 401 from the api wrapper

apiFetch now redirects to /login.html when the server returns 401, so
flipping AUTH_ENABLED=true on mam-api gives the user the login screen
instead of a half-loaded app that silently failed to fetch /auth/me.

While AUTH_ENABLED=false the server's /auth/me still returns a synthetic
200 user, so this branch is dormant — safe to deploy ahead of the env
flip on the server. After the flip the operator visits /login.html
(directly or via auto-redirect), runs the "Create admin account" flow
once, and lands back on the SPA with a real session.

Guards against a redirect loop if login.html itself somehow lands here.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-05-23 16:40:45 -04:00