Skip to content

Feature/front page improvement#234

Merged
Deodat-Lawson merged 5 commits into
mainfrom
feature/front-page-improvement
Mar 5, 2026
Merged

Feature/front page improvement#234
Deodat-Lawson merged 5 commits into
mainfrom
feature/front-page-improvement

Conversation

@Deodat-Lawson
Copy link
Copy Markdown
Owner

@Deodat-Lawson Deodat-Lawson commented Mar 4, 2026

Improved frontend design and login page design

@vercel
Copy link
Copy Markdown

vercel Bot commented Mar 4, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
pdr-ai-v2 Ready Ready Preview, Comment Mar 5, 2026 1:36am

chatgpt-codex-connector[bot]
chatgpt-codex-connector Bot reviewed Mar 4, 2026
View reviewed changes
Copy link
Copy Markdown

@chatgpt-codex-connector chatgpt-codex-connector Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 0ec2b76bb5

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Comment thread src/app/api/company/onboarding/route.ts
Comment on lines +20 to +23
const [userInfo] = await db
.select({ companyId: users.companyId })
.from(users)
.where(eq(users.userId, userId));
Copy link
Copy Markdown

@chatgpt-codex-connector chatgpt-codex-connector Bot Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P1 Badge Restrict onboarding updates to employer/owner roles

This handler updates company profile fields after checking only that a Clerk session exists, but it never verifies users.role before writing to company, unlike src/app/api/updateCompany/route.ts which explicitly gates to employer/owner. As written, any authenticated employee in the same company can call POST /api/company/onboarding and overwrite shared company description/industry, which is an authorization regression for mutable company settings.

Useful? React with 👍 / 👎.

Comment thread src/app/employer/onboarding/page.tsx
text: "Every upload enriches your company profile and powers AI features",
iconWrap: styles.quickStartIconPurple,
iconColor: styles.quickStartIconColorPurple,
href: "/employer/documents?view=upload",
Copy link
Copy Markdown

@chatgpt-codex-connector chatgpt-codex-connector Bot Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P2 Badge Make onboarding quick-start links open the intended tab

These quick-start URLs add a ?view=... query, but the documents shell does not read view at all (it initializes viewMode to a fixed default and only parses docId), so users are always dropped on the default screen instead of Upload/Marketing/Metadata. This breaks the new onboarding navigation flow and similarly affects other ?view= links such as the metadata panel’s Settings edit link.

Useful? React with 👍 / 👎.

@Deodat-Lawson Deodat-Lawson merged commit 07c20bc into main Mar 5, 2026
4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@chatgpt-codex-connector chatgpt-codex-connector[bot] chatgpt-codex-connector[bot] left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Deodat-Lawson