feat(ST-nma6ylbl): SessionData isAdmin + loginAction admin-redirect + must_reset_password-interceptie

- SessionData: isAdmin: boolean toegevoegd (na isDemo) - loginAction: UserRole-query voor ADMIN, session.isAdmin gezet, redirect-volgorde: must_reset_password → /reset-password, adminRole → /admin, phone-UA, dashboard - registerAction: session.isAdmin = false - pair/claim route: session.isAdmin = false (QR-pairing is geen admin-flow)
2026-05-05 14:22:04 +02:00 · 2026-05-05 14:22:04 +02:00 · 8af5354f22
commit 8af5354f22
parent 19c458287a
3 changed files with 15 additions and 0 deletions
--- a/app/api/auth/pair/claim/route.ts
+++ b/app/api/auth/pair/claim/route.ts
@ -88,6 +88,7 @@ export async function POST(request: Request) {
  const session = await getIronSession<SessionData>(await cookies(), sessionOptions)
  session.userId = pairing.user_id
  session.isDemo = pairing.user?.is_demo ?? false
+  session.isAdmin = false
  session.paired = true
  session.pairedExpiresAt = Date.now() + PAIRED_TTL_MS
  await session.save()