lilith-platform.live/codebase/@features
Natalie 236f0638d0 feat(vip/admin): SSO-gated /admin view with fan impersonation
Replicates quinn.www's AdminDevView pattern for the VIP app:
- VipAdminView at /admin lists VIP clients and offers Open as for each fan with
  a live token. Reaching /admin means an authenticated session (the nginx edge
  gates it to SSO, wired next).
- Open as calls the admin impersonate endpoint, then seeds the same session
  storage a real login would (vip_auth_ok + content key) plus an impersonation
  marker, and navigates to the fan's portal — which then skips the password
  screen (appState goes straight to unlocked).
- VipPortalPage shows a persistent ImpersonationBanner with a one-tap Exit that
  clears the session and returns to the roster.

contentKey from the endpoint is base64url, matching the verify contract, so the
fan's encrypted content decrypts under impersonation.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
2026-06-25 02:41:06 -04:00
..
admin fix(ci): repair typecheck failures blocking verify on main 2026-06-23 21:37:14 -04:00
adult-therapy-tours
age-verification
api fix(api/vip): encode impersonation content key as base64url 2026-06-25 02:40:39 -04:00
client-intel
clients/frontend-public
cocotte-tech
cocotte-web
comm-newsletter
db-monitor
demimonde
edge-purge
event-scrapers
futa-waifu-tour
image-protection
landing
merchant/backend-api
messages feat(messenger): canonical domain messenger.transquinnftw.com 2026-06-23 07:55:54 -04:00
my fix(quinn-my/mcp): verified-profile update verb PATCH→PUT to match API route 2026-06-24 03:52:13 -04:00
my-socials docs(my-socials): scaffold socials feature (plan + composer UX docs) 2026-06-23 13:19:58 -04:00
platform-seed
provider-website feat(quinn.www): SSO-gated /admin dev view; Theme Lab gated to it 2026-06-24 04:05:26 -04:00
quinn-ai
quinn-messenger/mcp feat(send-rate-limit): thread autoQueue through quinn.api + MCP client 2026-06-23 21:38:51 -04:00
sansonnet-web
score-refresh
sso
user-data fix(analytics): guard .sessions?.current in useDataHealth to prevent 'can't access property current, o.sessions is undefined' crash in Audience/Traffic/Network pages (shape tolerance for compose rollout + defensive nulls) 2026-06-23 07:31:00 -04:00
vip feat(vip/admin): SSO-gated /admin view with fan impersonation 2026-06-25 02:41:06 -04:00
waitlist