From 356c1a1894b6af8039858d1bfde701790a0b275c Mon Sep 17 00:00:00 2001
From: Torben Sorensen <torben.sorensen@gmail.com>
Date: Sun, 28 Dec 2025 14:50:53 -0800
Subject: [PATCH] jwtsecret issue

---
 .gitea/workflows/deploy-to-test.yml | 4 ++--
 src/routes/passport.routes.ts       | 7 +++++++
 2 files changed, 9 insertions(+), 2 deletions(-)

diff --git a/.gitea/workflows/deploy-to-test.yml b/.gitea/workflows/deploy-to-test.yml
index c6942a15..2d86e249 100644
--- a/.gitea/workflows/deploy-to-test.yml
+++ b/.gitea/workflows/deploy-to-test.yml
@@ -390,8 +390,8 @@ jobs:
 
         run: |
           # Fail-fast check to ensure secrets are configured in Gitea.
-          if [ -z "$DB_HOST" ] || [ -z "$DB_USER" ] || [ -z "$DB_PASSWORD" ] || [ -z "$DB_NAME" ]; then
-            echo "ERROR: One or more test database secrets (DB_HOST, DB_USER, DB_PASSWORD, DB_DATABASE_TEST) are not set in Gitea repository settings."
+          if [ -z "$DB_HOST" ] || [ -z "$DB_USER" ] || [ -z "$DB_PASSWORD" ] || [ -z "$DB_NAME" ] || [ -z "$JWT_SECRET" ]; then
+            echo "ERROR: One or more test secrets (DB_*, JWT_SECRET) are not set in Gitea repository settings."
             exit 1
           fi
 
diff --git a/src/routes/passport.routes.ts b/src/routes/passport.routes.ts
index 190d65e0..4feda74d 100644
--- a/src/routes/passport.routes.ts
+++ b/src/routes/passport.routes.ts
@@ -260,6 +260,13 @@ const jwtOptions = {
   secretOrKey: JWT_SECRET,
 };
 
+// --- DEBUG LOGGING FOR JWT SECRET ---
+if (!JWT_SECRET) {
+  logger.fatal('[Passport] CRITICAL: JWT_SECRET is missing or empty in environment variables! JwtStrategy will fail.');
+} else {
+  logger.info(`[Passport] JWT_SECRET loaded successfully (length: ${JWT_SECRET.length}).`);
+}
+
 passport.use(
   new JwtStrategy(jwtOptions, async (jwt_payload, done) => {
     logger.debug(