chore: bulk commit of pre-existing changes
Build & Deploy / Build & Push Docker Image (push) Successful in 48s
Test / API Unit Tests (push) Successful in 9m48s
Test / Marketplace Unit Tests (push) Successful in 9m38s
Test / Admin Unit Tests (push) Successful in 9m33s
Build & Deploy / Deploy to VPS (push) Has been cancelled
Test / Dashboard Unit Tests (push) Has been cancelled
Test / API Integration Tests (push) Has been cancelled

Includes:
- Admin dashboard layout and page updates
- API account auth module (routes, schemas, service)
- Dashboard sign-up form extraction, middleware refactor
- Marketplace proxy and middleware updates
- CORS origins expansion for dev environment
- Seed email domain correction (.com → .ma)
- Docs: create-account guide, fleet page, signup plan
- Various UI component and layout refinements
This commit is contained in:
root
2026-06-25 00:57:59 -04:00
parent 572d115003
commit 3b142ca4c7
36 changed files with 2987 additions and 1156 deletions
@@ -75,6 +75,18 @@ describe('API foundation integration', () => {
expect(res.body.paths).toHaveProperty('/health')
})
it('allows dashboard credentialed preflights to employee auth routes', async () => {
const res = await request(app)
.options('/api/v1/auth/employee/menu')
.set('Origin', 'http://localhost:3001')
.set('Access-Control-Request-Method', 'GET')
.set('Access-Control-Request-Headers', 'content-type')
expect(res.status).toBe(204)
expect(res.headers['access-control-allow-origin']).toBe('http://localhost:3001')
expect(res.headers['access-control-allow-credentials']).toBe('true')
})
it('blocks legacy anonymous access to customer identity document storage paths', async () => {
const res = await request(app).get('/storage/companies/company_1/customers/customer_1/passport.jpg')