- Add AUTH_URL env var to docker-compose.yml and .env/.env.example so
NextAuth builds correct redirect URLs instead of falling back to the
Docker bind address (0.0.0.0:3000)
- Normalize email to lowercase in authorize() to match how the register
route stores emails, preventing case-sensitive lookup mismatches
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Change AUTH_SECRET generation command from 'openssl rand -hex 32' to 'openssl rand -base64 32' for consistency with documentation.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Added AUTH_SECRET, AUTH_GOOGLE_ID, AUTH_GOOGLE_SECRET, AUTH_TRUST_HOST, DEFAULT_ADMIN_EMAIL, and DEFAULT_ADMIN_PASSWORD environment variables with helpful comments and placeholder values for Auth.js v5 and Google OAuth setup.
Marked task 1.2 as complete in tasks.md.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
- Add API_KEY environment variable with placeholder value 'change_me_to_a_strong_random_key'
- Include helpful comment explaining its purpose: authentication between Next.js and ML service
- Provide command for generating strong random value: openssl rand -hex 32
- Mark task 3.4 as completed
- Replace ml_password with change_me_to_a_strong_password placeholder
- Replace ml_user with your_db_user placeholder
- Mark task 1.3 as completed in tasks.md
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
