diff --git a/public_html/index.html b/public_html/index.html index c1b42db..2000b1a 100644 --- a/public_html/index.html +++ b/public_html/index.html @@ -959,14 +959,18 @@ window.addEventListener("load", () => { initVoice(); loadVoices(); - // Check if already logged in - const saved = sessionStorage.getItem('jarvis_token'); + // Check if already logged in — prefer PHP-injected global, fall back to sessionStorage + const saved = (typeof __jarvisToken !== 'undefined' ? __jarvisToken : null) + || sessionStorage.getItem('jarvis_token'); + const savedUser = (typeof __jarvisUser !== 'undefined' ? __jarvisUser : null) + || sessionStorage.getItem('jarvis_user') || ''; const autoReload = sessionStorage.getItem('jarvis_autoreload') === '1'; sessionStorage.removeItem('jarvis_autoreload'); if (saved) { sessionToken = saved; - sessionUser = sessionStorage.getItem('jarvis_user') || ''; - showApp(sessionUser, null, autoReload); + sessionUser = savedUser; + try { sessionStorage.setItem('jarvis_token', saved); sessionStorage.setItem('jarvis_user', savedUser); } catch(e) {} + showApp(savedUser, null, autoReload); } }); diff --git a/public_html/index.php b/public_html/index.php index fe7a24a..80a7d7e 100644 --- a/public_html/index.php +++ b/public_html/index.php @@ -9,6 +9,11 @@ if (empty($_SESSION['jarvis_token'])) { $token = $_SESSION['jarvis_token']; $name = $_SESSION['jarvis_name'] ?? ''; $html = file_get_contents(__DIR__ . '/index.html'); -$inject = ''; +// Inject token as JS globals — no sessionStorage dependency at all +$inject = ''; echo str_replace('', '' . $inject, $html); diff --git a/public_html/login.php b/public_html/login.php index 6e19882..3f4873f 100644 --- a/public_html/login.php +++ b/public_html/login.php @@ -20,7 +20,7 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST') { $_SESSION['jarvis_user_id'] = $user['id']; $_SESSION['jarvis_name'] = $user['display_name']; $pdo->prepare('UPDATE users SET last_seen=NOW() WHERE id=?')->execute([$user['id']]); - header('Location: /bridge.php'); + header('Location: /'); exit; } $error = 'ACCESS DENIED';