mirror of
https://github.com/screentinker/screentinker.git
synced 2026-06-17 03:32:32 -06:00
efd4d7826c
Agency-facing. A self-contained page at /agency (NOT the dashboard SPA - the agency has no JWT, only the token). Entry: paste access key -> sessionStorage (cleared on tab close, not localStorage) -> sent as Bearer. Flow: list designated playlists -> upload (shared ingest = first-class content) -> date-bounded item on a chosen playlist (lands as draft for admin re-publish). Graceful failure: any 401/403 resets to the entry screen with "key invalid, paste it again" - never a wall of 403s. Blast radius of a leaked key stays bounded by the narrow scope. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com> |
||
|---|---|---|
| .. | ||
| config | ||
| db | ||
| lib | ||
| middleware | ||
| player | ||
| routes | ||
| scripts | ||
| services | ||
| test | ||
| ws | ||
| .gitignore | ||
| config.js | ||
| package-lock.json | ||
| package.json | ||
| server.js | ||
| version.js | ||