From 7335721f6d1af4c500fca7a9a71c734199fad109 Mon Sep 17 00:00:00 2001
From: Scott Idem <stidem@gmail.com>
Date: Tue, 16 Jun 2026 11:49:15 -0400
Subject: [PATCH] pres_mgmt: fix QR code display not respecting remote
 show__session_qr / show__presenter_qr

Gate QR generation effect and display blocks on the remote admin enable flag:
- session_view: effect and display both check show__session_qr || trusted_access
- presenter_view: generation effect and await block check show__presenter_qr || trusted_access
Previously only the toggle buttons were gated; the actual QR content rendered
regardless of the remote config if show_content__*_qr was already true in localStorage
---
 .../presenter/[presenter_id]/presenter_view.svelte           | 5 +++--
 .../(pres_mgmt)/session/[session_id]/session_view.svelte     | 3 ++-
 2 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/src/routes/events/[event_id]/(pres_mgmt)/presenter/[presenter_id]/presenter_view.svelte b/src/routes/events/[event_id]/(pres_mgmt)/presenter/[presenter_id]/presenter_view.svelte
index adf54189..4f3abc53 100644
--- a/src/routes/events/[event_id]/(pres_mgmt)/presenter/[presenter_id]/presenter_view.svelte
+++ b/src/routes/events/[event_id]/(pres_mgmt)/presenter/[presenter_id]/presenter_view.svelte
@@ -109,7 +109,8 @@ $effect(() => {
             console.log(`$lq__event_presenter_obj:`, $lq__event_presenter_obj);
         }
 
-        if (pres_mgmt_loc.current.show_content__presenter_qr) {
+        if (pres_mgmt_loc.current.show_content__presenter_qr &&
+            (pres_mgmt_loc.current.show__presenter_qr || $ae_loc.trusted_access)) {
             if (
                 $lq__event_presenter_obj.updated_on ==
                 $events_sess.pres_mgmt.presenter__updated_on
@@ -208,7 +209,7 @@ $effect(() => {
         {#await ae_promises.generate_qr_code_url}
             Generating...
         {:then result}
-            {#if ae_promises.generate_qr_code_url && $ae_loc.trusted_access}
+            {#if ae_promises.generate_qr_code_url && (pres_mgmt_loc.current.show__presenter_qr || $ae_loc.trusted_access)}
                 <div
                     class="group float-right m-1 flex flex-col items-center justify-center p-1 outline outline-gray-200 transition-all">
                     <!-- svelte-ignore a11y_click_events_have_key_events -->
diff --git a/src/routes/events/[event_id]/(pres_mgmt)/session/[session_id]/session_view.svelte b/src/routes/events/[event_id]/(pres_mgmt)/session/[session_id]/session_view.svelte
index 9529069a..b57cae84 100644
--- a/src/routes/events/[event_id]/(pres_mgmt)/session/[session_id]/session_view.svelte
+++ b/src/routes/events/[event_id]/(pres_mgmt)/session/[session_id]/session_view.svelte
@@ -177,6 +177,7 @@ $events_sess.pres_mgmt.session__updated_on = null;
 $effect(() => {
     if (
         $lq__event_session_obj?.id &&
+        (pres_mgmt_loc.current.show__session_qr || $ae_loc.trusted_access) &&
         pres_mgmt_loc.current.show_content__session_qr &&
         !$events_sess.pres_mgmt.session_qr_url[$lq__event_session_obj.id]
     ) {
@@ -236,7 +237,7 @@ async function send_poc_email_link() {
             <!-- QR code: floats top-right, compact by default, toggle to enlarge.
                  Only rendered once the async URL is resolved (string), never while
                  it is still the boolean `true` loading placeholder. -->
-            {#if $lq__event_session_obj && typeof $events_sess.pres_mgmt.session_qr_url?.[$lq__event_session_obj.id] === 'string'}
+            {#if $lq__event_session_obj && (pres_mgmt_loc.current.show__session_qr || $ae_loc.trusted_access) && typeof $events_sess.pres_mgmt.session_qr_url?.[$lq__event_session_obj.id] === 'string'}
                 <div class="float-right mb-1 ml-3 flex flex-col items-center gap-1">
                     <button
                         type="button"