feat: add customer profile, VAT alignment, and fix shop auth

Customer Profile: - Add profile API (GET/PUT /api/v1/shop/profile) - Add password change endpoint (PUT /api/v1/shop/profile/password) - Implement full profile page with preferences and password sections - Add CustomerPasswordChange schema Shop Authentication Fixes: - Add Authorization header to all shop account API calls - Fix orders, order-detail, messages pages authentication - Add proper redirect to login on 401 responses - Fix toast message showing noqa comment in shop-layout.js VAT Calculation: - Add shared VAT utility (app/utils/vat.py) - Add VAT fields to Order model (vat_regime, vat_rate, etc.) - Align order VAT calculation with invoice settings - Add migration for VAT fields on orders Validation Framework: - Fix base_validator.py with missing methods - Add validate_file, output_results, get_exit_code methods - Fix validate_all.py import issues Documentation: - Add launch-readiness.md tracking OMS status - Update to 95% feature complete 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-02 20:31:48 +01:00
parent b5b32fb351
commit 82c07c165f
21 changed files with 2224 additions and 85 deletions
--- a/app/templates/shop/account/messages.html
+++ b/app/templates/shop/account/messages.html
@@ -309,6 +309,12 @@ function shopMessages() {

        async loadConversations() {
            try {
+                const token = localStorage.getItem('customer_token');
+                if (!token) {
+                    window.location.href = '{{ base_url }}shop/account/login?next=' + encodeURIComponent(window.location.pathname);
+                    return;
+                }
+
                const params = new URLSearchParams({
                    skip: (this.currentPage - 1) * this.limit,
                    limit: this.limit,
@@ -317,8 +323,20 @@ function shopMessages() {
                    params.append('status', this.statusFilter);
                }

-                const response = await fetch(`/api/v1/shop/messages?${params}`);
-                if (!response.ok) throw new Error('Failed to load conversations');
+                const response = await fetch(`/api/v1/shop/messages?${params}`, {
+                    headers: {
+                        'Authorization': `Bearer ${token}`
+                    }
+                });
+                if (!response.ok) {
+                    if (response.status === 401) {
+                        localStorage.removeItem('customer_token');
+                        localStorage.removeItem('customer_user');
+                        window.location.href = '{{ base_url }}shop/account/login?next=' + encodeURIComponent(window.location.pathname);
+                        return;
+                    }
+                    throw new Error('Failed to load conversations');
+                }

                const data = await response.json();
                this.conversations = data.conversations;
@@ -334,7 +352,17 @@ function shopMessages() {

        async selectConversation(conversationId) {
            try {
-                const response = await fetch(`/api/v1/shop/messages/${conversationId}`);
+                const token = localStorage.getItem('customer_token');
+                if (!token) {
+                    window.location.href = '{{ base_url }}shop/account/login?next=' + encodeURIComponent(window.location.pathname);
+                    return;
+                }
+
+                const response = await fetch(`/api/v1/shop/messages/${conversationId}`, {
+                    headers: {
+                        'Authorization': `Bearer ${token}`
+                    }
+                });
                if (!response.ok) throw new Error('Failed to load conversation');

                this.selectedConversation = await response.json();
@@ -360,7 +388,14 @@ function shopMessages() {
            if (!this.selectedConversation) return;

            try {
-                const response = await fetch(`/api/v1/shop/messages/${this.selectedConversation.id}`);
+                const token = localStorage.getItem('customer_token');
+                if (!token) return;
+
+                const response = await fetch(`/api/v1/shop/messages/${this.selectedConversation.id}`, {
+                    headers: {
+                        'Authorization': `Bearer ${token}`
+                    }
+                });
                if (!response.ok) return;

                const data = await response.json();
@@ -397,6 +432,12 @@ function shopMessages() {
            this.sending = true;

            try {
+                const token = localStorage.getItem('customer_token');
+                if (!token) {
+                    window.location.href = '{{ base_url }}shop/account/login?next=' + encodeURIComponent(window.location.pathname);
+                    return;
+                }
+
                const formData = new FormData();
                formData.append('content', this.replyContent);
                for (const file of this.attachments) {
@@ -405,6 +446,9 @@ function shopMessages() {

                const response = await fetch(`/api/v1/shop/messages/${this.selectedConversation.id}/messages`, {
                    method: 'POST',
+                    headers: {
+                        'Authorization': `Bearer ${token}`
+                    },
                    body: formData,
                });