DJP c49f83a5a2 Role-based access control: Viewer / Editor / Admin ... Backend: - AppUser model with email, name, role (viewer/editor/admin), azure_oid - Users API: GET /users/me (current user + role), GET /users (admin: list all), PUT /users/{id}/role (admin: change role) - Auto-create user on first login: first user = admin, rest = editor - get_or_create_user helper for role lookup - require_role helper for permission checks Frontend: - UserRoleContext provides role to all components - useUserRole() hook: isAdmin, isEditor, isViewer - Nav items filtered by role: GMAL Editor + Users only for admin - Dashboard: Ingest button admin-only, New Project editor-only - User Management page: list all users, change roles via dropdown - Role badges: admin (red), editor (gold), viewer (grey) Roles: - Viewer: view projects, download exports - Editor: create/edit projects, upload, match, build ratecards - Admin: all + GMAL Editor, data ingest, user management Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>		2026-04-13 12:29:04 -04:00
..
src	Role-based access control: Viewer / Editor / Admin	2026-04-13 12:29:04 -04:00
Dockerfile	Initial commit - GMAL Scope Builder	2026-03-27 17:35:14 -04:00
index.html	Initial commit - GMAL Scope Builder	2026-03-27 17:35:14 -04:00
package-lock.json	Add Azure SSO + production deployment config	2026-03-28 18:51:18 +00:00
package.json	Add Azure SSO + production deployment config	2026-03-28 18:51:18 +00:00
tsconfig.json	Add vite/client types for import.meta.env support	2026-03-28 20:23:08 +00:00
vite.config.ts	Merge server changes (SSO, /gsb base path) + add proxy timeout	2026-03-28 17:06:39 -04:00