pelagia-portal

161 commits 2 branches 2 tags 9.7 MiB

Author	SHA1	Message	Date
Hardik	eb402e03ef	fix(profile+vendors): profile reachable for all roles incl SSO; submitter vendor creation Profile (fixes Safari/SSO no-password redirect): - User lookup falls back to email when JWT id is stale (SSO users) - generateDownloadUrl wrapped in try/catch so storage never crashes the page - Signature gate now uses approve_po permission (approvers only) - SSO/no-password users see a Set Password form (current-password field hidden) Vendors: - New create_vendor permission for all PO roles incl. submitters - Submitters create UNVERIFIED vendors (no Vendor ID); simple form mode - verifyVendor action + Verify menu item (manage_vendors) - Vendors auto-verify when a PO closes with them (receipt confirm + import) - Add Vendor button on /inventory/vendors Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-08 18:53:33 +05:30
Hardik	bff9696b7b	fix(profile): allow empty current password when setting password for first time SSO users have no passwordHash and should be able to set a local password without providing a current one. Users with an existing password still must verify it. Removes the client-side required attribute and updates the server-side logic accordingly. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-05-29 00:14:46 +05:30
Hardik	19029a5a77	chore: restructure repo — flatten App/pelagia-portal to App, rename Prototype→Wireframe and Spec→Design Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-05-18 23:18:58 +05:30

Author

SHA1

Message

Date

Hardik

eb402e03ef

fix(profile+vendors): profile reachable for all roles incl SSO; submitter vendor creation

Profile (fixes Safari/SSO no-password redirect):
- User lookup falls back to email when JWT id is stale (SSO users)
- generateDownloadUrl wrapped in try/catch so storage never crashes the page
- Signature gate now uses approve_po permission (approvers only)
- SSO/no-password users see a Set Password form (current-password field hidden)

Vendors:
- New create_vendor permission for all PO roles incl. submitters
- Submitters create UNVERIFIED vendors (no Vendor ID); simple form mode
- verifyVendor action + Verify menu item (manage_vendors)
- Vendors auto-verify when a PO closes with them (receipt confirm + import)
- Add Vendor button on /inventory/vendors

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

2026-06-08 18:53:33 +05:30

Hardik

bff9696b7b

fix(profile): allow empty current password when setting password for first time

SSO users have no passwordHash and should be able to set a local password
without providing a current one. Users with an existing password still
must verify it. Removes the client-side required attribute and updates
the server-side logic accordingly.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-05-29 00:14:46 +05:30

Hardik

19029a5a77

chore: restructure repo — flatten App/pelagia-portal to App, rename Prototype→Wireframe and Spec→Design

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-05-18 23:18:58 +05:30

Renamed from App/pelagia-portal/app/(portal)/profile/change-password-form.tsx (Browse further)

3 commits