pos-system

Files

Ho Ngoc Hai 6aa52cdb19 fix(auth): preserve staff role across session restore

IAM JWT doesn't include role claims for staff users, so BFF session
always returns role="owner" as default. This caused:
- Staff users navigating to admin pages from POS settings button
- TryRestoreSessionAsync overriding stored "staff" role with "owner"

Fix: In both LoginAsync and TryRestoreSessionAsync, prefer the
login-flow role (stored in localStorage) over server "owner" default
when the user originally logged in as staff/branch.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-30 12:15:22 +07:00

app-client-base-net

…

app-client-base-swift

…

web-client-base-net

…

web-client-tpos-net

fix(auth): preserve staff role across session restore

2026-03-30 12:15:22 +07:00

web-docs

…