galaxy-game

developer/galaxy-game

Fork 0

Commit Graph

Author	SHA1	Message	Date
Ilia Denisov	9101aba816	phase 7+: i18n primitive + login language picker + autocomplete-off Adds a minimal Svelte 5 i18n primitive (`src/lib/i18n/`) backing the login form, the layout blocker page, and the lobby placeholder. SUPPORTED_LOCALES drives both the picker and the runtime lookup; adding a language is a two-step change inside `src/lib/i18n/`. Login form gains a globe-icon language dropdown (English / Русский in their native names), defaulting to navigator.languages with `en` as the fallback. Switching the locale re-renders the form in place; on submit, the locale rides in the JSON body of `send-email-code` because Safari/WebKit silently drops JS-set Accept-Language. Gateway gains a body `locale` field that takes priority over the request header for preferred-language resolution. Email and code inputs disable browser autofill / suggestions (`autocomplete=off` + `autocorrect=off` + `autocapitalize=off` + `spellcheck=false`) so Keychain / address-book pickers and remembered-value dropdowns no longer fire on focus. Cross-cuts: - backend & gateway openapi: clarify that body `locale` is honored. - docs/FUNCTIONAL{,_ru}.md §1.2: document body-vs-header priority. - gateway tests: body `locale` overrides Accept-Language; blank body `locale` falls back to header. - new ui/docs/i18n.md; cross-links from auth-flow.md and ui/README. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-07 16:14:40 +02:00
Ilia Denisov	22b0710d04	phase 7: auth flow UI (email-code login + session resume + revocation) Implements ui/PLAN.md Phase 7 end-to-end: - /login two-step form (email -> code) over the gateway public REST surface; /lobby placeholder issues the first authenticated user.account.get and renders the decoded display name. - SessionStore (Svelte 5 runes) with loading / unsupported / anonymous / authenticated states; layout-level route guard, browser-not-supported blocker, and a minimal SubscribeEvents revocation watcher that closes the active client within 1s on a clean stream end or Unauthenticated. - VITE_GATEWAY_BASE_URL + VITE_GATEWAY_RESPONSE_PUBLIC_KEY config plus AuthError taxonomy in api/auth.ts. - Vitest (auth-api, session-store, login-page) and Playwright e2e (auth-flow.spec.ts) on the four configured projects, with a fixture Ed25519 keypair forging Connect-Web JSON responses. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-07 15:24:21 +02:00

Author

SHA1

Message

Date

Ilia Denisov

9101aba816

phase 7+: i18n primitive + login language picker + autocomplete-off

Adds a minimal Svelte 5 i18n primitive (`src/lib/i18n/`) backing the
login form, the layout blocker page, and the lobby placeholder.
SUPPORTED_LOCALES drives both the picker and the runtime lookup;
adding a language is a two-step change inside `src/lib/i18n/`.

Login form gains a globe-icon language dropdown (English / Русский
in their native names), defaulting to navigator.languages with `en`
as the fallback. Switching the locale re-renders the form in place;
on submit, the locale rides in the JSON body of `send-email-code`
because Safari/WebKit silently drops JS-set Accept-Language. Gateway
gains a body `locale` field that takes priority over the request
header for preferred-language resolution.

Email and code inputs disable browser autofill / suggestions
(`autocomplete=off` + `autocorrect=off` + `autocapitalize=off` +
`spellcheck=false`) so Keychain / address-book pickers and
remembered-value dropdowns no longer fire on focus.

Cross-cuts:
- backend & gateway openapi: clarify that body `locale` is honored.
- docs/FUNCTIONAL{,_ru}.md §1.2: document body-vs-header priority.
- gateway tests: body `locale` overrides Accept-Language; blank
  body `locale` falls back to header.
- new ui/docs/i18n.md; cross-links from auth-flow.md and ui/README.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

2026-05-07 16:14:40 +02:00

Ilia Denisov

22b0710d04

phase 7: auth flow UI (email-code login + session resume + revocation)

Implements ui/PLAN.md Phase 7 end-to-end:

- /login two-step form (email -> code) over the gateway public REST
  surface; /lobby placeholder issues the first authenticated
  user.account.get and renders the decoded display name.
- SessionStore (Svelte 5 runes) with loading / unsupported / anonymous /
  authenticated states; layout-level route guard, browser-not-supported
  blocker, and a minimal SubscribeEvents revocation watcher that closes
  the active client within 1s on a clean stream end or
  Unauthenticated.
- VITE_GATEWAY_BASE_URL + VITE_GATEWAY_RESPONSE_PUBLIC_KEY config plus
  AuthError taxonomy in api/auth.ts.
- Vitest (auth-api, session-store, login-page) and Playwright e2e
  (auth-flow.spec.ts) on the four configured projects, with a fixture
  Ed25519 keypair forging Connect-Web JSON responses.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

2026-05-07 15:24:21 +02:00

2 Commits