screentinker

mirror of https://github.com/screentinker/screentinker.git synced 2026-06-15 10:43:36 -06:00

History

ScreenTinker 6760f61fb8 fix(content): show thumbnails for not-yet-assigned content (#39 ) After uploading, content thumbnails were blank until the item was added to a playlist/widget. The public /api/content/:id/thumbnail (and /file) endpoints are reference-gated (an anonymous player with a UUID must not pull arbitrary tenants' media), and a plain <img> can't send a Bearer token - so a just-uploaded item 403'd. - Backend: add an authenticated bypass - a logged-in user who can access the content's workspace (verified from the Bearer token) may view its file/thumbnail even when unreferenced. Anonymous players still hit the reference gate. - Frontend: the content library lazy-fetches thumbnails/previews WITH the token and swaps in an object URL (IntersectionObserver keeps it under the rate limit; the URL is revoked after load). Verified: unreferenced thumbnail now 200 with a bearer token, still 403 anonymous.		2026-06-09 11:18:56 -05:00
..
components	feat(admin): Delete Organization + Workspace with cascade (#36 )	2026-06-09 09:22:21 -05:00
i18n	ui(content): advertise multi-file upload in the drop-zone text (#39 )	2026-06-09 10:50:51 -05:00
views	fix(content): show thumbnails for not-yet-assigned content (#39 )	2026-06-09 11:18:56 -05:00
api.js	feat(admin): Delete Organization + Workspace with cascade (#36 )	2026-06-09 09:22:21 -05:00
app.js	feat(signup): optional org-on-create for self-service signups (#12 )	2026-06-05 11:16:27 -05:00
branding.js	Fix white-label settings not applying on page load	2026-04-22 19:36:20 -05:00
i18n.js	i18n: register Italian locale in language registry (followup to PR #2 )	2026-05-11 20:05:09 -05:00
socket.js	feat(debug): live per-device debug logging toggle on the device screen	2026-06-08 21:49:03 -05:00
utils.js	Phase 2.1: tenancy middleware, permission helpers, JWT workspace context, frontend + backend role-rename compat	2026-05-11 20:02:00 -05:00