docs(readme): update build/deploy section for new script names and env tiers

Replace stale deploy:staging/deploy:prod references with current
build:docker:*, deploy:remote:*, and .env.dev/test/prod file names.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

.ae_brief

@@ -0,0 +1,22 @@
+# Aether Project Brief: aether_app_sveltekit
+**Last Updated:** 2026-02-09 22:03:56
+**Current Agent:** mcp_agent
+
+## 🛠️ What I Just Did
+Addressed multiple Svelte compiler warnings:
+1. Converted ~30 decorative labels to spans (a11y).
+2. Applied Svelte 5 untrack() pattern to initial state from props.
+3. Fixed CSS scoping for TipTap editor.
+4. Added rel="noopener noreferrer" to external links.
+5. Commited changes in two atomic batches.
+
+## 🚧 Current Blockers
+None. Remaining svelte-check warnings (219) require more granular ID/for linking in complex forms.
+
+## ➡️ Exact Next Steps
+1. Granular fix for remaining 68 label/ID associations in address/person forms.
+2. Systematic application of untrack() for remaining state-from-props warnings.
+3. Clean up unused TipTap CSS selectors identified by svelte-check.
+
+---
+*Generated by ae_brief*

.dockerignore

@@ -0,0 +1,47 @@
+# Build artifacts and local state
+.svelte-kit/
+.vite/
+node_modules/
+build/
+dist/
+.cache/
+
+# VCS and IDE
+.git/
+.gitignore
+.vscode/
+.idea/
+
+# OS junk
+.DS_Store
+.directory
+
+# Logs and temp files
+*.log
+*.bak
+*.tgz
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+.pnpm-debug.log*
+
+# Test output and dev-only dirs
+tests/
+test-results/
+test_results/
+coverage/
+documentation/
+backups/
+.claude/
+
+# Deployment artifacts
+npm_deploy/
+package-lock.json.bak
+
+# Env files: exclude all live secrets, allow only the per-environment files needed for Docker builds.
+# .env.local is workstation-only and must never enter a container image.
+.env
+.env.*
+!.env.dev
+!.env.test
+!.env.prod

.env.dev.default

@@ -0,0 +1,19 @@
+# One Sky IT's Aether Framework and System — DEV template (dev-*.oneskyit.com)
+# Copy to .env.dev and fill in real values.
+
+
+# Aether API access
+PUBLIC_AE_API_PROTOCOL=https
+PUBLIC_AE_API_SERVER=dev-api.oneskyit.com
+PUBLIC_AE_API_BAK_SERVER=test-api.oneskyit.com
+PUBLIC_AE_API_PORT=443
+PUBLIC_AE_API_PATH=
+PUBLIC_AE_API_SECRET_KEY=XXXX
+PUBLIC_AE_API_CRUD_SUPER_KEY=XXXX
+
+
+# Bootstrap key: used only for the unauthenticated site-domain lookup on first load.
+# Separate from the main API key — has limited permissions (no account_id required).
+PUBLIC_AE_BOOTSTRAP_KEY=XXXX
+PUBLIC_AE_NO_ACCOUNT_ID=No_Account_ID_Here
+

.env.prod.default

@@ -0,0 +1,18 @@
+# One Sky IT's Aether Framework and System — PROD template (api.oneskyit.com)
+# Copy to .env.prod and fill in real values.
+
+# Aether API access
+PUBLIC_AE_API_PROTOCOL=https
+PUBLIC_AE_API_SERVER=api.oneskyit.com
+PUBLIC_AE_API_BAK_SERVER=bak-api.oneskyit.com
+PUBLIC_AE_API_PORT=443
+PUBLIC_AE_API_PATH=
+PUBLIC_AE_API_SECRET_KEY=XXXX
+PUBLIC_AE_API_CRUD_SUPER_KEY=XXXX
+
+
+
+# Bootstrap key: used only for the unauthenticated site-domain lookup on first load.
+# Separate from the main API key — has limited permissions (no account_id required).
+PUBLIC_AE_BOOTSTRAP_KEY=XXXX
+PUBLIC_AE_NO_ACCOUNT_ID=No_Account_ID_Here

.env.test.default

@@ -0,0 +1,18 @@
+# One Sky IT's Aether Framework and System — TEST template (test-api.oneskyit.com)
+# Copy to .env.test and fill in real values.
+
+# Aether API access
+PUBLIC_AE_API_PROTOCOL=https
+PUBLIC_AE_API_SERVER=test-api.oneskyit.com
+PUBLIC_AE_API_BAK_SERVER=api.oneskyit.com
+PUBLIC_AE_API_PORT=443
+PUBLIC_AE_API_PATH=
+PUBLIC_AE_API_SECRET_KEY=XXXX
+PUBLIC_AE_API_CRUD_SUPER_KEY=XXXX
+
+
+
+# Bootstrap key: used only for the unauthenticated site-domain lookup on first load.
+# Separate from the main API key — has limited permissions (no account_id required).
+PUBLIC_AE_BOOTSTRAP_KEY=XXXX
+PUBLIC_AE_NO_ACCOUNT_ID=No_Account_ID_Here

.eslintignore

@@ -0,0 +1,13 @@
+.DS_Store
+node_modules
+/build
+/.svelte-kit
+/package
+.env
+.env.*
+!.env.example
+
+# Ignore files for PNPM, NPM and YARN
+pnpm-lock.yaml
+package-lock.json
+yarn.lock

.eslintrc.cjs

@@ -0,0 +1,31 @@
+/** @type { import("eslint").Linter.Config } */
+module.exports = {
+    root: true,
+    extends: [
+        'eslint:recommended',
+        'plugin:@typescript-eslint/recommended',
+        'plugin:svelte/recommended',
+        'prettier'
+    ],
+    parser: '@typescript-eslint/parser',
+    plugins: ['@typescript-eslint'],
+    parserOptions: {
+        sourceType: 'module',
+        ecmaVersion: 2020,
+        extraFileExtensions: ['.svelte']
+    },
+    env: {
+        browser: true,
+        es2017: true,
+        node: true
+    },
+    overrides: [
+        {
+            files: ['*.svelte'],
+            parser: 'svelte-eslint-parser',
+            parserOptions: {
+                parser: '@typescript-eslint/parser'
+            }
+        }
+    ]
+};

.gitignore

@@ -1,4 +1,36 @@
-/node_modules/
-/public/build/
-
 .DS_Store
+.directory
+node_modules
+/build
+/.svelte-kit
+/package
+.env
+.env.*
+!.env.example
+!.env.prod.default
+!.env.test.default
+!.env.dev.default
+vite.config.js.timestamp-*
+vite.config.ts.timestamp-*
+
+# Logs
+logs
+*.log
+*.log.*
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+pnpm-debug.log*
+lerna-debug.log*
+
+# Backups and archives
+*.bak
+*.tar.gz
+backups/
+
+# Temporary files
+tmp/
+temp/
+*.kate-swp
+test_results
+test-results

.npmrc

@@ -0,0 +1 @@
+engine-strict=true

.prettierignore

@@ -0,0 +1,4 @@
+# Ignore files for PNPM, NPM and YARN
+pnpm-lock.yaml
+package-lock.json
+yarn.lock

.prettierrc

@@ -0,0 +1,17 @@
+{
+    "useTabs": false,
+    "tabWidth": 4,
+    "singleQuote": true,
+    "trailingComma": "none",
+    "printWidth": 80,
+    "bracketSameLine": true,
+
+    "svelteSortOrder": "options-scripts-markup-styles",
+    "svelteIndentScriptAndStyle": false,
+    "svelteAllowShorthand": true,
+    "plugins": [
+        "prettier-plugin-svelte",
+        "prettier-plugin-tailwindcss"
+    ],
+    "overrides": [{ "files": "*.svelte", "options": { "parser": "svelte" } }]
+}

.vscode/extensions.json

@@ -1,3 +0,0 @@
-{
-  "recommendations": ["svelte.svelte-vscode"]
-}

.vscode/settings.json

@@ -0,0 +1,129 @@
+{
+    "prettier.documentSelectors": ["**/*.svelte"],
+    "tailwindCSS.classAttributes": [
+        "class",
+        "accent",
+        "active",
+        "animIndeterminate",
+        "aspectRatio",
+        "background",
+        "badge",
+        "bgBackdrop",
+        "bgDark",
+        "bgDrawer",
+        "bgLight",
+        "blur",
+        "border",
+        "button",
+        "buttonAction",
+        "buttonBack",
+        "buttonClasses",
+        "buttonComplete",
+        "buttonDismiss",
+        "buttonNeutral",
+        "buttonNext",
+        "buttonPositive",
+        "buttonTextCancel",
+        "buttonTextConfirm",
+        "buttonTextFirst",
+        "buttonTextLast",
+        "buttonTextNext",
+        "buttonTextPrevious",
+        "buttonTextSubmit",
+        "caretClosed",
+        "caretOpen",
+        "chips",
+        "color",
+        "controlSeparator",
+        "controlVariant",
+        "cursor",
+        "display",
+        "element",
+        "fill",
+        "fillDark",
+        "fillLight",
+        "flex",
+        "flexDirection",
+        "gap",
+        "gridColumns",
+        "height",
+        "hover",
+        "inactive",
+        "indent",
+        "justify",
+        "meter",
+        "padding",
+        "position",
+        "regionAnchor",
+        "regionBackdrop",
+        "regionBody",
+        "regionCaption",
+        "regionCaret",
+        "regionCell",
+        "regionChildren",
+        "regionChipList",
+        "regionChipWrapper",
+        "regionCone",
+        "regionContent",
+        "regionControl",
+        "regionDefault",
+        "regionDrawer",
+        "regionFoot",
+        "regionFootCell",
+        "regionFooter",
+        "regionHead",
+        "regionHeadCell",
+        "regionHeader",
+        "regionIcon",
+        "regionInput",
+        "regionInterface",
+        "regionInterfaceText",
+        "regionLabel",
+        "regionLead",
+        "regionLegend",
+        "regionList",
+        "regionListItem",
+        "regionNavigation",
+        "regionPage",
+        "regionPanel",
+        "regionRowHeadline",
+        "regionRowMain",
+        "regionSummary",
+        "regionSymbol",
+        "regionTab",
+        "regionTrail",
+        "ring",
+        "rounded",
+        "select",
+        "shadow",
+        "slotDefault",
+        "slotFooter",
+        "slotHeader",
+        "slotLead",
+        "slotMessage",
+        "slotMeta",
+        "slotPageContent",
+        "slotPageFooter",
+        "slotPageHeader",
+        "slotSidebarLeft",
+        "slotSidebarRight",
+        "slotTrail",
+        "spacing",
+        "text",
+        "track",
+        "transition",
+        "width",
+        "zIndex"
+    ],
+    "explorer.fileNesting.enabled": false,
+    "cSpell.words": [
+        "lpignore",
+        "prejoin"
+    ],
+    "markdownlint.config": {
+        "MD004": false,
+        "MD007": false,
+        "MD030": false,
+        "MD033": false
+    }
+}

CLAUDE.md

@@ -0,0 +1,119 @@
+# Claude Code — Project: Aether App SvelteKit
+
+**Part of:** One Sky IT / Aether Platform
+**Backend:** `~/OSIT_dev/aether_api_fastapi/` via Docker
+
+---
+
+## CRITICAL: Privacy & Business Rules
+
+### IDAA — International Doctors in Alcoholics Anonymous
+- **ALL IDAA content is PRIVATE. Authentication required. Never public.**
+- BB (Bulletin Board / Posts) — always private
+- Archives — always private
+- Recovery Meetings — always private
+- A previous AI agent accidentally exposed IDAA BB publicly. This is a severe security failure.
+- IDAA users authenticate via Novi API (Novi UUID per member) at `Authenticated` permission level.
+- Default permission required: `trusted_access` or higher for IDAA module.
+
+### Journals
+- Private personal data. Always authenticated. Passcode/encryption features exist.
+
+### General
+- **Never expose private content publicly.** When in doubt — it's private.
+- Code comments must explain the WHY for any non-obvious business logic.
+  Key features have been silently broken by AI agents that didn't understand intent.
+
+---
+
+## Mandatory Workflow
+
+1. **Before starting:** Read `documentation/TODO__Agents.md` for active tasks
+2. **Before committing:** Run `npx svelte-check` — no exceptions
+3. **Commits:** Atomic — one component or fix per commit
+4. **Never delete files with `rm`** — move to `~/tmp/gemini_trash`
+5. **Backend coordination:** Use `ae_send_message` or flag changes clearly
+
+---
+
+## Tech Stack
+
+- **Framework:** Svelte 5 (runes mode) + SvelteKit v2
+- **Styling:** Tailwind CSS v4, Flowbite; Skeleton UI being phased out
+- **State:** `$state`, `$derived` runes + Dexie.js IndexedDB (`liveQuery`)
+- **Icons:** Lucide
+- **Editors:** CodeMirror 6 (primary), Edra/TipTap (secondary)
+- **Markdown:** `marked` library
+- **UI primitives:** ShadCN (`src/lib/components/ui/`)
+- **Native/Electron bridge:** `src/lib/electron/electron_relay.ts` via `window.aetherNative`
+
+---
+
+## API (V3)
+
+- Base: `/v3/crud/{obj_type}/` for all CRUD
+- Lookups: `/v3/lookup/`
+- Search: `POST /v3/crud/{obj_type}/search`
+- Auth headers: `x-aether-api-key` + `x-account-id` (NOT Bearer tokens)
+- Permissive PATCH: add `x-ae-ignore-extra-fields: true`
+- Guide: `documentation/GUIDE__AE_API_V3_for_Frontend.md`
+
+---
+
+## Key Patterns
+
+- **Canonical reference:** Journals module (`src/lib/ae_journals/`) — use as the pattern template
+- **Object files:** `ae_<module>__<object>.ts` + `<object>.editable_fields.ts`
+- **DB:** `db_<module>.ts` per module (Dexie instance)
+- **LiveQuery:** `lq__xyz` (read-only), `lqw__xyz` (writable form snapshot)
+- **Load pattern:** SWR — return Dexie cache immediately, refresh from API in background
+- **Component naming:** `ae_comp__*` (route-level), `ae_<module>_comp__*` (module), `element_*` (reusable)
+- **Standard fields:** `id`, `id_random`, `code`, `name`, `enable`, `hide`, `priority`, `sort`, `group`, `notes`, `created_on`, `updated_on`, `cfg_json`, `data_json`
+
+---
+
+## Source Layout
+
+```
+src/lib/
+  ae_api/         — API helpers (prefer V3)
+  ae_core/        — Account, User, Person, Site, Address, Contact
+  ae_events/      — Events, sessions, presenters, badges, locations, devices
+  ae_journals/    — Journals (canonical/frontier model)
+  ae_archives/    — Archives
+  ae_posts/       — Posts + Post Comments (IDAA BB)
+  ae_idaa/        — IDAA custom module
+  ae_reports/     — Reporting
+  elements/       — Reusable UI: V3 editor, CRUD, data store, CodeMirror
+  electron/       — Native app bridge
+
+src/routes/
+  /core/          — Admin (accounts, people, sites, users, contacts)
+  /events/[id]/   — Events: pres_mgmt, launcher, badges, leads, settings
+  /journals/      — Journals
+  /idaa/          — IDAA: archives, bb, recovery_meetings, video_conferences
+  /hosted_files/  — File management
+  /testing/       — Dev testing
+```
+
+---
+
+## Active Issues (check TODO__Agents.md for current state)
+
+- Sev-1: `PUBLIC_AE_API_SECRET_KEY` audit — see TODO__Agents.md (assessed acceptable, 2026-03-11)
+- V3 CRUD migration — remaining legacy API wrappers in events/sponsorships/core (see `PROJECT__Use_AE_API_V3_CRUD_upgrade.md`)
+- Style Review Phase 3 — IDAA + Pres Mgmt card polish deferred post-April 2026 conference
+
+---
+
+## Key Docs
+
+| File | Purpose |
+|---|---|
+| `documentation/TODO__Agents.md` | Active task list — read first |
+| `documentation/GUIDE__Development.md` | Dev SOP |
+| `documentation/GUIDE__AE_API_V3_for_Frontend.md` | V3 API reference (authoritative) |
+| `documentation/GUIDE__SvelteKit2_Svelte5_DexieJS.md` | Dexie + liveQuery patterns |
+| `documentation/GEMINI__Svelte_and_Me.md` | Svelte 5 runes patterns |
+| `documentation/PROJECT__AE_Events_Launcher_Native_integration.md` | Electron/Launcher |
+| `documentation/PROJECT__AE_Events_Badges_Review_Print.md` | Badges — kiosk editing (Task 4.0 open) |

Dockerfile

@@ -0,0 +1,62 @@
+# Stage 1: Build the application
+FROM node:24-alpine AS builder
+WORKDIR /app
+
+# Install dependencies first for better Docker layer caching.
+COPY package*.json ./
+RUN npm install
+
+# Copy the rest of the source code.
+COPY . .
+
+# Build Argument to determine build environment (dev, test, prod).
+ARG BUILD_MODE=dev
+ENV NODE_ENV=production
+
+# Sync the SvelteKit project to generate ./.svelte-kit/tsconfig.json
+RUN npx svelte-kit sync
+
+# Perform the build based on the BUILD_MODE argument.
+# Each script uses vite --mode <name>, which reads .env.<name> directly — no cp hack needed.
+RUN if [ "$BUILD_MODE" = "prod" ] || [ "$BUILD_MODE" = "production" ]; then \
+        npm run build:prod; \
+    elif [ "$BUILD_MODE" = "test" ]; then \
+        npm run build:test; \
+    else \
+        npm run build:dev; \
+    fi
+
+# Copy the source env file to .env.runtime for the deploy stage.
+# PUBLIC_* vars are baked into the JS bundle by vite; non-PUBLIC vars (AE_CFG_ID,
+# AE_APP_NODE_PORT) are read by the Node server at runtime and need this file.
+RUN if [ "$BUILD_MODE" = "prod" ] || [ "$BUILD_MODE" = "production" ]; then \
+        cp .env.prod .env.runtime; \
+    elif [ "$BUILD_MODE" = "test" ]; then \
+        cp .env.test .env.runtime; \
+    else \
+        cp .env.dev .env.runtime; \
+    fi
+
+# Stage 2: Final runtime image
+FROM node:24-alpine AS deploy-node
+WORKDIR /app
+
+# Copy built files and package info.
+COPY --from=builder /app/build .
+COPY --from=builder /app/package.json .
+COPY --from=builder /app/package-lock.json .
+
+# Install only production dependencies.
+RUN npm install --omit=dev
+
+# Copy the runtime env file (non-PUBLIC vars for the Node server).
+COPY --from=builder /app/.env.runtime .env
+
+# SvelteKit (via adapter-node) defaults to port 3000.
+EXPOSE 3000
+
+# Healthcheck to verify the app is running
+HEALTHCHECK --interval=30s --timeout=5s --start-period=10s --retries=3 \
+  CMD node -e "fetch('http://localhost:3000/health').then(r => r.ok ? process.exit(0) : process.exit(1)).catch(() => process.exit(1))"
+
+CMD ["node", "index.js"]

GEMINI.md

@@ -0,0 +1,42 @@
+# Aether Frontend Agent Context: Gemini CLI Standard
+> **Role:** Aether App Orchestrator (SvelteKit Frontend)
+> **Location:** GEMINI.md (Project Root)
+
+## 🚨 MANDATORY PROTOCOL
+You must follow the safety, testing, and coordination standards defined in:
+`documentation/GUIDE__DEVELOPMENT.md`
+
+---
+
+## 🏗️ Technical Domain: Aether Frontend
+### Stack & UI Standards
+- **Framework:** SvelteKit v2 + Svelte 5 (Runes)
+- **Styling:** Tailwind 4 + Skeleton UI + Skeleton V3 (SkeletonNext)
+- **Local Cache:** Dexie.js (IndexedDB)
+- **Icons:** Standardizing on **Lucide-Svelte**. Avoid legacy Font-Awesome where possible.
+
+### Reactivity Patterns (The "Aether Way")
+- **Svelte 5 Runes:** Use `$state`, `$derived`, and `$effect`. 
+- **Navigation Shield:** Use SvelteKit's `page.url` searchParams as the single source of truth for navigation-driven selection. Sync to global stores only via `untrack()` within effects.
+- **Side-Effect Purge:** Keep `liveQuery` observables pure. Do NOT update global stores ($events_slct) inside derived observables to prevent infinite reactivity loops.
+- **Dexie LiveQuery:** Use the `$` prefix (e.g., `$lq__obj`) consistently. Results from `liveQuery` are observables.
+- **Initialization:** Always initialize reactive state (`$state`) outside of `$props()` destructuring.
+
+### Performance & Data
+- **SWR (Stale-While-Revalidate):** Never block SvelteKit `load` functions with API calls for cached data. Let the UI render instantly from IndexedDB and update reactively.
+- **Triple-ID Pattern:** Map `id`, `[obj_type]_id`, and `[obj_type]_id_random` consistently.
+- **ID Vision:** The backend uses String IDs. Primary keys should use `_id` or `id` (String) mapping to backend `id_random`.
+
+## 🧠 Recent Strategy & Patterns
+- **Safe Handover (Native):** Rename `.tmp` to `.file` ONLY after SHA-256 verification in Electron.
+- **Envelopes:** API helpers automatically handle the `{data: ...}` envelope returned by the backend.
+- **Bootstrap Paradox:** Use unauthenticated bypass (`x-no-account-id: "Nothing to See Here"`) for initial site/domain lookups.
+- **Sev-1 Incident Recovery (2026-02-13):** Purged redundant/misplaced headers (`x-aether-api-token`, `Access-Control-Allow-Origin`). Unified all CRUD helpers to standard `/v3/crud/...` paths.
+- **Account ID Scavenging:** Core fetch helpers now proactively read `account_id` from `localStorage` (`ae_loc`) if missing from config. This is the mandatory fix for Svelte 5 hydration race conditions where `onMount` triggers API calls before global stores are synced.
+- **V3 Event File Mapping (2026-02-19):** Mapped prefixed backend fields (`hosted_file_hash_sha256`, `hosted_file_size`) to flat properties (`hash_sha256`, `file_size`) in the data layer. Required `inc_hosted_file=true` query param for full metadata retrieval.
+- **Launcher Location Discovery:** Resolved missing locations in room select by ensuring `load_ae_obj_li__event_location` requests `hidden: 'all'` during background sync and initial load.
+
+## 🤝 Coordination & Continuity
+- **Handshake:** Use the `message` tool to notify the Backend Agent of UI/Data requirements.
+- **Active Tasks:** Track your progress in `documentation/AGENT_TODO.md`.
+- **Reference:** See `README.md` for build/deploy steps and `TODO.md` for project milestones.

README.md

@@ -1,105 +1,277 @@
-*Looking for a shareable component template? Go here --> [sveltejs/component-template](https://github.com/sveltejs/component-template)*
+# One Sky IT's Aether App - SvelteKit v2 with Svelte v5
+
+This uses SvelteKit version 2.x with Svelte version 5.x, DexieJS 4.x, TailwindCSS 4.1, and Skeleton.
+
+# Modules
+
+## Core (`/core/`)
+
+Admin-only views for foundational Aether objects. Minimal UI — primarily used for data management.
+
+- **Accounts** (`/core/accounts/`, `/core/accounts/[account_id]/`)
+- **Activity Logs** (`/core/activity_logs/`)
+- **Addresses** (`/core/addresses/`, `/core/addresses/[address_id]/`)
+- **Contacts** (`/core/contacts/`, `/core/contacts/[contact_id]/`)
+- **Lookups** (`/core/lookups/`) — Countries, subdivisions, time zones
+- **People** (`/core/people/`, `/core/people/[person_id]/`)
+- **Sites** (`/core/sites/`, `/core/sites/[site_id]/`)
+- **Users** (`/core/users/`, `/core/users/[user_id]/`)
+
+## Events (`/events/`)
+
+The primary client-facing module for conference and event management.
+
+### Event List (`/events/`)
+
+### Event Detail (`/events/[event_id]/`)
+
+Each event has four sub-modules, each in its own SvelteKit route group:
+
+#### Presentation Management (`/(pres_mgmt)/`)
+
+Manages the full conference program.
+
+- `/events/[event_id]/pres_mgmt/` — Dashboard
+- `/events/[event_id]/locations/` — Location list
+- `/events/[event_id]/location/[event_location_id]/` — Location detail
+- `/events/[event_id]/presenter/[presenter_id]/` — Presenter detail
+- `/events/[event_id]/session/[session_id]/` — Session detail
+- `/events/[event_id]/reports/` — Presenter, session, and file reports
+
+#### Launcher (`/(launcher)/`)
+
+Kiosk display system; runs on-site to show session schedules and presenter info.
+
+- `/events/[event_id]/launcher/` — Launcher home
+- `/events/[event_id]/launcher/[event_location_id]/` — Location-specific display
+
+#### Badges (`/(badges)/`)
+
+Badge printing and management for event attendees.
+
+- `/events/[event_id]/badges/` — Badge list
+- `/events/[event_id]/badges/[badge_id]/` — Badge detail
+- `/events/[event_id]/badges/[badge_id]/print` — Print a single badge
+- `/events/[event_id]/badges/[badge_id]/review` — Review before printing
+- `/events/[event_id]/badges/print_list/` — Bulk print queue
+- `/events/[event_id]/badges/stats/` — Badge statistics
+- `/events/[event_id]/templates/` — Badge template management
+
+#### Leads (`/(leads)/`)
+
+Exhibitor lead capture via QR scan or manual entry.
+
+- `/events/[event_id]/leads/` — Exhibit list
+- `/events/[event_id]/leads/exhibit/[exhibit_id]/` — Exhibit detail and lead capture
+- `/events/[event_id]/leads/exhibit/[exhibit_id]/lead/[exhibit_tracking_id]/` — Lead detail
+
+#### Event Settings (`/settings/`)
+
+- `/events/[event_id]/settings/` — Event configuration (basic info, pres mgmt, badges, abstracts)
+
+## Journals (`/journals/`)
+
+The "frontier" module — most fully-featured and used as the canonical implementation reference.
+
+- `/journals/` — Journal list
+- `/journals/[journal_id]/` — Journal detail and entry list
+- `/journals/[journal_id]/entry/[journal_entry_id]/` — Journal entry detail and editor
+
+## IDAA (`/idaa/`)
+
+Custom module for the IDAA client. Built on core Aether objects (Events, Posts, Archives).
+
+- `/idaa/` — IDAA home / dashboard
+
+### Archives (`/idaa/archives/`)
+
+- `/idaa/archives/` — Archive list with media player
+- `/idaa/archives/[archive_id]/` — Archive detail and content list
+
+### Bulletin Board (`/idaa/bb/`)
+
+Built on the Posts and Post Comments objects.
+
+- `/idaa/bb/` — Post list
+- `/idaa/bb/[post_id]/` — Post detail and comments
+
+### Recovery Meetings (`/idaa/recovery_meetings/`)
+
+Built on the Events object.
+
+- `/idaa/recovery_meetings/` — Meeting list with search/filter
+- `/idaa/recovery_meetings/[event_id]/` — Meeting detail
+
+### Video Conferences (`/idaa/video_conferences/`)
+
+- `/idaa/video_conferences/` — Video conference list (Jitsi integration)
+- `/idaa/jitsi_reports/` — Jitsi usage reports
+
+## Hosted Files (`/hosted_files/`)
+
+- `/hosted_files/` — File list and upload management
+- `/hosted_files/video_util/` — Video processing utility
+
+## Testing (`/testing/`)
+
+Developer sandbox pages — not for production use.
+
+- `/testing/ae_obj_field_editor/` — V3 field editor playground
+- `/testing/data_store/` — Data store V3 playground
+- `/testing/editor_test/` — CodeMirror / TipTap editor tests
+- `/testing/hosted_files/` — File upload tests
+
+# How to build and deploy SvelteKit:
+
+The deployment is fully integrated into the unified **Aether Docker Environment** (`aether_container_env`). The application is built inside a clean Docker container using `vite build --mode <env>`, which reads the corresponding `.env.<env>` file for `PUBLIC_` variables.
+
+## Environments
+
+| Environment | Env file    | Vite mode | API server                |
+| ----------- | ----------- | --------- | ------------------------- |
+| dev         | `.env.dev`  | `dev`     | `dev-api.oneskyit.com`    |
+| test        | `.env.test` | `test`    | `test-api.oneskyit.com`   |
+| prod        | `.env.prod` | `prod`    | `api.oneskyit.com`        |
+
+## Commands (from `aether_app_sveltekit/`)
+
+```bash
+# Active development — Vite HMR, no Docker
+npm run dev
+
+# Build Vite output only (no Docker)
+npm run build:dev
+npm run build:test
+npm run build:prod
+
+# Build Docker image and restart container locally
+npm run build:docker:dev
+npm run build:docker:test
+npm run build:docker:prod
+
+# Deploy to remote server (SSH → linode.oneskyit.com → deploy.sh)
+npm run deploy:remote:test
+npm run deploy:remote:prod
+```
+
+### Technical Details
+
+- **Unified Orchestration**: All services (API, UI, Redis) are managed via `~/OSIT_dev/aether_container_env/docker-compose.yml`.
+- **Dockerfile**: Multi-stage build. Stage 1 (builder) runs `vite build --mode $BUILD_MODE` using `.env.$BUILD_MODE`. Stage 2 (runtime) creates the final lightweight Node image.
+- **Environment Handling**:
+    - `PUBLIC_` variables are baked into the image at build time via the `.env.<mode>` file.
+    - Private runtime variables are passed via the Docker Compose `.env` file in `aether_container_env/`.
+- **Remote deploy**: `aether_container_env/deploy.sh` handles git pull + Docker build + restart on the server. Triggered via `npm run deploy:remote:*`.
 
 ---
 
-# svelte app
+## Developing (Local HMR)
 
-This is a project template for [Svelte](https://svelte.dev) apps. It lives at https://github.com/sveltejs/template.
-
-To create a new project based on this template using [degit](https://github.com/Rich-Harris/degit):
-
-```bash
-npx degit sveltejs/template svelte-app
-cd svelte-app
-```
-
-*Note that you will need to have [Node.js](https://nodejs.org) installed.*
-
-
-## Get started
-
-Install the dependencies...
-
-```bash
-cd svelte-app
-npm install
-```
-
-...then start [Rollup](https://rollupjs.org):
+For the best developer experience with Hot Module Replacement (HMR), start a local development server on your host machine:
 
 ```bash
 npm run dev
 ```
 
-Navigate to [localhost:5000](http://localhost:5000). You should see your app running. Edit a component file in `src`, save it, and reload the page to see your changes.
+The local dev server will communicate with the **FastAPI backend running in Docker** (typically via `dev-api.oneskyit.com`). This gives you the speed of local Svelte development with the power of the full Aether stack.
 
-By default, the server will only respond to requests from localhost. To allow connections from other computers, edit the `sirv` commands in package.json to include the option `--host 0.0.0.0`.
+# Rebuild the node_modules directory and manually install extra Svelte packages
 
-If you're using [Visual Studio Code](https://code.visualstudio.com/) we recommend installing the official extension [Svelte for VS Code](https://marketplace.visualstudio.com/items?itemName=svelte.svelte-vscode). If you are using other editors you may need to install a plugin in order to get syntax highlighting and intellisense.
-
-## Building and running in production mode
-
-To create an optimised version of the app:
+Run the npm update to fix the node_modules directory and package.json
 
 ```bash
-npm run build
+npm list
+npm outdated
+npm update
+npm outdated
+npm list
 ```
 
-You can run the newly built app with `npm run start`. This uses [sirv](https://github.com/lukeed/sirv), which is included in your package.json's `dependencies` so that the app will work when you deploy to platforms like [Heroku](https://heroku.com).
-
-
-## Single-page app mode
-
-By default, sirv will only respond to requests that match files in `public`. This is to maximise compatibility with static fileservers, allowing you to deploy your app anywhere.
-
-If you're building a single-page app (SPA) with multiple routes, sirv needs to be able to respond to requests for *any* path. You can make it so by editing the `"start"` command in package.json:
-
-```js
-"start": "sirv public --single"
-```
-
-## Using TypeScript
-
-This template comes with a script to set up a TypeScript development environment, you can run it immediately after cloning the template with:
+Other installs?:
+Are both still needed? I know at least one of these is. 2024-07-23
 
 ```bash
-node scripts/setupTypeScript.js
+npm install --save-dev svelte-highlight
+npm install --save-dev typescript-svelte-plugin
 ```
 
-Or remove the script via:
+---
+
+# Set up and run
+
+## Packages and dependencies
 
 ```bash
-rm scripts/setupTypeScript.js
+npm install --save-dev svelte-highlight typescript-svelte-plugin
+npm install flowbite flowbite-svelte tailwind-merge @popperjs/core
 ```
 
-## Deploying to the web
+I am slowly switching from Font-Awesome to Lucide
 
-### With [Vercel](https://vercel.com)
+## Tiptap Editor
 
-Install `vercel` if you haven't already:
+- Eventually use Edra? https://edra.tsuzat.com/
+    - Best Rich Text Editor, made for Svelte Developers with Tiptap
+    - ShadEditor is "evolving" to be Edra.
+- ShadCN is still stuck on Tailwind 3. Waiting to upgrade to Tailwind 4.x. Tailwind 4.x was released in late January 2025. ShadCN is still being worked on as of late March 2025.
+- [https://github.com/huntabyte/shadcn-svelte/issues/1643](https://github.com/huntabyte/shadcn-svelte/issues/1643)
+
+Need to install ShadCN and Lucide for the Tiptap editor.
 
 ```bash
-npm install -g vercel
+npm install shadcn-svelte
+npm install lucide-svelte
+npm install mode-watcher
 ```
 
-Then, from within your project folder:
+Now we initialize the ShadCN and ShadEditor packages. Follow the command line instructions.
 
 ```bash
-cd public
-vercel deploy --name my-project
+npx shadcn-svelte@next init
+npx shadcn-svelte@next add dropdown-menu button tooltip input popover separator
+npx shadeditor init
 ```
 
-### With [surge](https://surge.sh/)
-
-Install `surge` if you haven't already:
+More packages related to the Tiptap editor???
 
 ```bash
-npm install -g surge
+npm install @tiptap/extension-link @tiptap/extension-bullet-list @tiptap/extension-history @tiptap/extension-typography @tiptap/extension-underline
 ```
 
-Then, from within your project folder:
+### Environment file
+
+The application uses standard SvelteKit `.env` files for build-time configuration (specifically for `PUBLIC_` prefixed variables).
+
+- **`.env.dev`**: Used by `npm run build:docker:dev` and `npm run build:dev`.
+- **`.env.test`**: Used by `npm run build:docker:test` and `npm run build:test`.
+- **`.env.prod`**: Used by `npm run build:docker:prod` and `npm run build:prod`.
+- **`.env.local`**: Used during local development (`npm run dev`).
+
+**Note:** Runtime variables (like private API keys or DB credentials) are managed in the deployment directory's `.env` file and passed to the containers via Docker Compose.
+
+---
+
+## Developing
+
+Start a local development server:
 
 ```bash
-npm run build
-surge public my-project.surge.sh
+npm run dev
+
+# or start the server and open the app in a new browser tab
+npm run dev -- --open
 ```
+
+## Deployment
+
+```bash
+# Build Docker image locally and restart container
+npm run build:docker:dev
+npm run build:docker:prod
+
+# Deploy to remote server (linode.oneskyit.com)
+npm run deploy:remote:test
+npm run deploy:remote:prod
+```
+
+These commands use the multi-stage **Dockerfile** to build the app in a clean environment and automatically restart the corresponding Docker containers.

aether_app_sveltekit.code-workspace

@@ -0,0 +1,18 @@
+{
+    "folders": [
+        {
+            "path": "."
+        }
+    ],
+    "settings": {
+        "cSpell.words": [
+            "autofetch",
+            "displayplacer",
+            "filelist",
+            "gsettings",
+            "onsave"
+        ],
+        "git.autofetch": true,
+        "editor.defaultFormatter": "svelte.svelte-vscode"
+    }
+}

aether_container_env/Dockerfile.buildkit.example

@@ -0,0 +1,27 @@
+## BuildKit-friendly multi-stage Dockerfile example for Aether frontend
+
+# Stage 1: dependencies
+FROM node:20-alpine AS deps
+WORKDIR /app
+COPY package.json package-lock.json ./
+RUN npm ci --no-audit --prefer-offline
+
+# Stage 2: build
+FROM node:20-alpine AS build
+WORKDIR /app
+# optionally reuse deps from previous stage
+COPY --from=deps /app/node_modules ./node_modules
+COPY . .
+# If you want to use BuildKit cache mounts during local development, uncomment the next line
+# RUN --mount=type=cache,target=/root/.npm npm ci
+RUN npm run build
+
+# Stage 3: runtime (static site served by nginx)
+FROM nginx:stable-alpine AS runtime
+COPY --from=build /app/build /usr/share/nginx/html
+EXPOSE 80
+CMD ["nginx", "-g", "daemon off;"]
+
+# Notes:
+# - Keep dependency installation separate from copying source to maximize cache hits when only application code changes.
+# - For backend images, follow the same pattern: install deps early, copy source later, and keep a small final runtime image.

aether_container_env/ci_buildx_example.sh

@@ -0,0 +1,33 @@
+#!/usr/bin/env bash
+set -euo pipefail
+
+# Example CI script to build and push an image with buildx using registry cache.
+# This script is provider-agnostic and intended to be run inside CI where
+# Docker and buildx are available and authenticated against the registry.
+
+REGISTRY=${REGISTRY:-ghcr.io/ORG/REPO}
+IMAGE_TAG=${IMAGE_TAG:-staging}
+CACHE_REF=${CACHE_REF:-${REGISTRY}:cache}
+
+echo "Building ${REGISTRY}:${IMAGE_TAG} using registry cache ${CACHE_REF}"
+
+docker buildx build \
+  --push \
+  --tag ${REGISTRY}:${IMAGE_TAG} \
+  --cache-from type=registry,ref=${CACHE_REF} \
+  --cache-to type=registry,ref=${CACHE_REF},mode=max \
+  .
+
+echo "Build complete. Image: ${REGISTRY}:${IMAGE_TAG}"
+
+# Optional: instruct devs how to run locally with a local cache
+cat <<'EOF'
+Local test with BuildKit and local cache:
+DOCKER_BUILDKIT=1 docker build \
+  --tag myapp:staging \
+  --cache-to=type=local,dest=/tmp/docker-cache \
+  --cache-from=type=local,src=/tmp/docker-cache .
+
+Prune local builder cache older than 72 hours:
+docker builder prune --filter "until=72h" --force
+EOF

components.json

@@ -0,0 +1,17 @@
+{
+    "$schema": "https://next.shadcn-svelte.com/schema.json",
+    "style": "default",
+    "tailwind": {
+        "config": "tailwind.config.ts",
+        "css": "src/app.css",
+        "baseColor": "gray"
+    },
+    "aliases": {
+        "components": "$lib/components",
+        "utils": "$lib/utils",
+        "ui": "$lib/components/ui",
+        "hooks": "$lib/hooks"
+    },
+    "typescript": true,
+    "registry": "https://next.shadcn-svelte.com/registry"
+}

documentation/AE_Docker_CI_cache_policy.md

@@ -0,0 +1,30 @@
+# AE Docker CI Cache Policy (recommendation)
+
+Purpose
+- Provide a straightforward policy to keep build caches useful but bounded.
+
+Recommendations
+- Primary CI cache: **registry-based buildx cache** (preferred). Use a single cache ref (e.g. `ghcr.io/ORG/REPO:cache`) reused by CI builds.
+- Local dev cache: use `--cache-to type=local` for fast iteration but prune periodically.
+- Retention: keep registry cache for 30 days by default. Implement registry GC or lifecycle rule to delete older cache blobs.
+
+Rotation strategy
+- Option A (simple): CI always writes to the same cache ref `:cache`. Periodically (monthly) run a job to `docker pull` and `docker image rm` older tags if you use date-based tagging.
+- Option B (date-tag): CI writes cache to `cache-YYYYMMDD` and a small scheduled job deletes tags older than 30 days.
+
+Pruning commands (developer)
+- Remove local build cache older than 72 hours:
+  ```bash
+  docker builder prune --filter "until=72h" --force
+  ```
+- Remove all builder cache (aggressive):
+  ```bash
+  docker builder prune --all --force
+  ```
+
+CI runner requirements
+- `docker` and `docker buildx` available in runner environment.
+- Registry credentials provided via CI secrets with permission to push/pull images.
+
+Security & Secrets
+- Do not store registry credentials in repo. Use CI secret storage.

documentation/AE__Architecture.md

@@ -0,0 +1,168 @@
+# Aether Project Architecture
+
+This document outlines the overall architecture and key technologies used in the Aether SvelteKit frontend project.
+
+## 1. Project Overview
+
+The Aether project is a Svelte and SvelteKit based application, utilizing Tailwind CSS and Skeleton for styling and UI elements. It serves as the frontend UI/UX for the Aether system, which interacts with a Python FastAPI backend.
+
+## 2. Core Technologies
+
+- **Frontend Framework:** Svelte 5 and SvelteKit v2
+    - **Routing:** SvelteKit's file-system based routing.
+- **Styling:** Tailwind CSS v4
+- **UI Component Libraries:**
+    - Skeleton (Design System, Tailwind Components, Functional Components - being phased out due to conflicts with Tailwind CSS v4)
+    - Flowbite (Tailwind Components)
+    - Custom Components (a growing library of `ae_comp__*` and `element_*` components)
+- **Text/Code Editors:**
+    - CodeMirror 6.x (`element_editor_codemirror.svelte`) — source/code editing, markdown
+    - TipTap (`element_editor_tiptap.svelte`) — WYSIWYG rich-text for content fields (IDAA, Journals, Leads notes)
+- **Icons:** Lucide Icons (SVG Icons)
+- **Markdown Parsing:** `marked` library
+- **State Management:** Svelte stores, potentially with `liveQuery` from Dexie for reactive IndexedDB interactions.
+
+## 3. Module Structure
+
+The Aether project is organized into several modules, categorized as Core, Extended, and Custom.
+
+### 3.1. Official Modules
+
+#### Core Modules
+
+These are foundational modules essential for the application's basic functionality.
+
+- **Accounts:** Minimal implementation.
+- **Files:** Manages hosted files.
+- **People:** Minimal implementation for person records.
+- **Sites:** Minimal implementation for site configurations.
+- **Users:** Minimal implementation for user management.
+
+#### Extended Modules
+
+These modules provide additional features and functionalities.
+
+- **Archives:** Minimal implementation.
+- **Events:** Includes features for Badges and Presentation Management.
+- **Posts:** Minimal implementation.
+- **Journals:** Manages journal entries.
+
+#### Custom Modules
+
+These modules are tailored for specific client needs.
+
+- **IDAA:** Includes Archives, Bulletin Board (BB), and Recovery Meetings functionalities.
+
+## 4. Data Storage Mechanisms
+
+### 4.1. Local Storage
+
+Used for client-side persistence of various application states and configurations.
+
+- `api`: API-related settings.
+- `app`: Global application settings.
+- `core`: Settings and data specific to core modules.
+- `<module>`: Settings and data specific to extended modules.
+- `<custom>`: Settings and data specific to custom modules.
+
+### 4.2. IndexedDB (Dexie.js)
+
+Used for more structured client-side data storage, often for caching and offline capabilities.
+
+- `ae_core_db`: Core database instance.
+- `<module>`: Module-specific database instances.
+- `<custom>`: Custom module-specific database instances (none currently defined).
+
+## 5. Data Sorting
+
+Standardized sorting orders are applied across various data lists.
+
+- **Default/General:** `group > priority > sort > updated_on/created_on`
+- **Specific (e.g., Events):** `type > start_date/time > code or name`
+
+## 6. Object Properties and Fields
+
+A set of standardized field names and types are used across Aether objects.
+
+### 6.1. Core Standard Fields
+
+These fields are expected to be present in most Aether objects.
+
+- `id`: Primary key for an object (internal use, often a UUID).
+- `id_random`: Randomly generated ID for an object (often used for external exposure or URL parameters).
+- `<object_type>_id_random`: Specific random ID for an object (e.g., `person_id_random`).
+- `code`: Short, unique identifier.
+- `name`: Display name.
+- `enable`: Boolean for active/inactive status.
+- `hide`: Boolean for visibility.
+- `priority`: Numeric value for ordering.
+- `sort`: Numeric value for ordering.
+- `group`: Categorization string.
+- `notes`: General notes/comments.
+- `created_on`: Timestamp of creation.
+- `updated_on`: Timestamp of last update.
+
+### 6.2. Special Use Fields
+
+Fields with specific purposes or conditional usage.
+
+- `for_type`: Indicates the type of object this object is linked to.
+- `for_id`: The ID of the object this object is linked to.
+- `archive_on`: Timestamp for archiving.
+- `passcode`: Password or access code.
+- `external_id`: ID from an external system.
+
+### 6.3. Configuration and JSON Fields
+
+Fields designed to store JSON data.
+
+- `cfg_json`: Configuration data in JSON format.
+- `data_json`: General data in JSON format.
+- `linked_li_json`: List of linked items in JSON format.
+
+### 6.4. Special Generated Fields (Client-side)
+
+Fields generated on the client-side, primarily for sorting or UI logic.
+
+- `tmp_sort_1`
+- `tmp_sort_2`
+- `tmp_sort_3`
+
+### 6.5. Future Standard Fields
+
+A list of potential future standard fields, often prefixed with `obj_`. These are currently conceptual and not yet fully integrated.
+
+- `obj_id`, `obj_ext_uid`, `obj_ext_id`, `obj_import_id`, `obj_code`, `obj_account_id`, `obj_passcode`, `obj_type`, `obj_type_ver_id`, `obj_name`, `obj_summary`, `obj_outline`, `obj_description`, `obj_enable`, `obj_enable_on`, `obj_archive_on`, `obj_hide`, `obj_priority`, `obj_sort`, `obj_group`, `obj_cfg_json`, `obj_notes`, `obj_created_on`, `obj_updated_on`.
+
+## 7. Runtime Environment: Browser vs Electron
+
+The Aether SvelteKit frontend runs in a standard web browser in almost all cases. The Electron native app is a **very specialized exception** with a narrow, specific purpose.
+
+### 7.1. Standard Browser (Default)
+
+All Aether modules run in a regular browser (Chrome, Chromium, Firefox, Safari). This includes:
+- Badge printing — `window.print()` works well across Chrome, Chromium, and Firefox. Chrome is recommended for onsite badge printing stations.
+- All CRUD operations, event management, journals, IDAA, reports, etc.
+- No special browser configuration required.
+
+### 7.2. Electron Native App (Specialized — Pres Mgmt Launcher Only)
+
+The Electron app (`aether_app_native_electron/`) exists **solely** to support the **Events Presentation Management Launcher**. It provides OS-level capabilities that a browser sandbox cannot:
+- Control of third-party presentation software (PowerPoint, Keynote, LibreOffice Impress)
+- Local filesystem access for slide file management
+- Hardware telemetry for connected devices
+
+**What Electron is NOT used for:**
+- Badge printing (browser works fine)
+- Any other Aether module
+- Any general-purpose Aether functionality
+
+The bridge is exposed as `window.aetherNative` (set by Electron's preload script). All code that calls `window.aetherNative` should degrade gracefully when it is `undefined` (i.e., in a normal browser). See: `src/lib/electron/electron_relay.ts`.
+
+**When to assume Electron is available:** Only inside the `/events/[event_id]/(launcher)/` route group, and only when the page was loaded from the native app.
+
+## 8. IndexedDB LiveQuery Usage
+
+- `lq__xyz_obj`: Used for general read-only access to liveQuery results.
+- `lqw__xyz_obj`: Used for forms and binding values, representing a writable snapshot of liveQuery results.
+    - **Note:** Care must be taken when binding to `lqw__xyz_obj` to manage updates and potential conflicts with the underlying liveQuery.

documentation/AE__Components.md

@@ -0,0 +1,146 @@
+# Aether Project Components
+
+This document details the various UI components used throughout the Aether SvelteKit frontend project, categorized by their scope and functionality.
+
+## 1. Aether Components (UI/UX)
+
+### 1.1. System Components
+
+These components are part of the core application shell and provide global functionalities.
+
+- **`header`**: Application-wide header.
+- **`main/module`s**: Main content area for modules.
+- **`footer`**: Application-wide footer.
+- **`app`**: Provides global application functionalities such as:
+    - Refresh application state.
+    - Clear IndexedDB.
+    - Clear local storage (settings).
+    - Toggle iframe visibility (also updates URL parameter).
+    - Copy current URL.
+    - Generate and display QR codes.
+- **`menu`**: Various menus for different purposes:
+    - **`mode`**: Edit mode toggle, more options (all or details).
+    - **`access_type`**: Passcode input, clear access.
+    - **`user`**: Sign in/out, reset password, email link, change username and email.
+    - **`theme`**: Mode (light/dark), name (theme list).
+- **`debug`**: Developer-facing tools:
+    - Toggle debug mode (also updates URL parameter).
+    - Show core and module storages.
+    - Manually set initial timestamp.
+- **`scroll_to`**: Navigation controls for scrolling:
+    - Scroll to top of the page.
+    - Scroll page up.
+    - Scroll page down.
+    - Scroll to bottom of the page.
+
+### 1.2. Core Components
+
+These are reusable components that provide common functionalities across different modules.
+
+- **`copy_btn`**: A button to copy content to the clipboard.
+    - Properties: `clipboard`, `bind:value`, `btn_text`, `btn_html`.
+- **`txt_editor`**: A basic text area editor.
+- **`md_editor`**: Markdown/rich-text editing handled by two active components:
+    - `element_editor_codemirror.svelte` — CodeMirror 6, used for source/code editing
+    - `element_editor_tiptap.svelte` — TipTap (WYSIWYG), used for rich-text content fields
+- **`html_editor`**: HTML editor.
+- **`media_player`**: Component for playing media files.
+    - Properties: `hosted_file`, `archive_content`, `media_player`.
+    - Bindings: `bind:host_id`, `bind:media_type`.
+    - Status: `stopped`, `paused`, `playing`.
+- **`hosted_file_li`**: Manages a list of hosted files, making them available for selection.
+- **`hosted_file_link_to`**: Lists links per object, with bindings to add/remove links.
+- **`upload_to_host`**: Component for uploading files to the host.
+    - Handles multiple files.
+    - Properties: `link_type`, `link_id`, `inner fragment` (label html).
+    - Bindings: `bind:trigger`, `bind:show_spinner`, `bind:show_percent`.
+    - Status: `started`, `uploading`, `finished`.
+- **`upload_file_tbl`**: Table for uploaded files, includes checks for duplicate file hashes and removal from the list.
+- **`download_from_host`**: Component for downloading files from the host.
+    - Bindings: `bind:host_file_id`, `bind:filename`, `bind:file_ext`.
+    - Properties: `btn inner fragment`.
+    - Bindings: `bind:trigger`, `bind:show_spinner`, `bind:show_percent`.
+    - Status: `started`, `downloading`, `finished`.
+- **`data_store`**: Component for interacting with data stores.
+- **`element_ae_obj_field_editor`**: Standard single-field inline editor. Replaces retired `ae_crud` v1/v2 components.
+    - Props: `object_type`, `object_id`, `field_name`, `field_type`, `current_value`
+    - Field types: `text`, `textarea`, `select`, `tiptap`, `checkbox`, `date`, `datetime`, `number`
+    - Callbacks: `on_success`, `on_error`
+    - Respects `$ae_loc.edit_mode` — edit trigger hidden when edit mode is off.
+- **`sql_qry`**: Component for executing SQL queries.
+- **`obj_tbl`**: Object SQL results table or similar.
+- **`qr_scanner`**: Component for scanning QR codes.
+- **`websocket`**: Component for WebSocket communication.
+
+### 1.3. Main / Module Components
+
+These are components specific to main application sections or individual modules.
+
+- **`menu`**:
+    - **`options`**: Various settings, show/hide content and options, limit, sorting options.
+    - **`actions`**: Various actions, sign in/out, email.
+
+### 1.4. Object Menu
+
+A standardized menu for interacting with objects.
+
+- **Properties Displayed:** `id`, `name`, `group`, `priority`, `sort`, `alert`, `hide`, `enable`, `note`.
+- **Future Properties:** `ext_id`, `ext_sys_id`, `code` (not yet ready).
+- **Actions:** `create`, `view`, `edit`, `update`, `hide`, `disable`, `delete`, `alert` (message), `archive` (not yet ready).
+- **Future Actions:** `copy`, `import`.
+- **Sort Options:**
+    - `[default]`: `group > priority > sort (ASC/DESC) > alert > name`
+    - `[sort_updated]`: `group > priority > sort (ASC/DESC) > alert > updated_on > created_on`
+    - `[priority_updated]`: `group > priority > updated_on (ASC/DESC) > created_on`
+    - `[priority_name]`: `group > priority > name (ASC/DESC) > sort > alert > updated_on > created_on`
+    - `[name]`: `priority > name (ASC/DESC) > sort > alert > updated_on > created_on`
+    - `[created_on]`: `priority > created_on (ASC/DESC)`
+    - `[updated_on]`: `priority > updated_on (ASC/DESC) > created_on`
+
+## 2. Pop-ups
+
+Standardized structure for various types of pop-up elements.
+
+- **`modal_header`**:
+    - `title`
+    - `close` button
+- **`modal_main`**: Main content area of the modal.
+- **`modal_meta`**: Meta-information section.
+- **`modal_footer`**:
+    - `close` button
+- **`Pop-up Modal (blocking)`**: A modal that blocks interaction with the rest of the page.
+    - `modal position`
+- **`Pop-up Modal Inline`**: A modal that appears inline with content.
+    - `inline`, `inline-block`, `block` display options.
+- **`Pop-up Dialog`**: A dialog box.
+    - `dialog position`
+
+## 3. Containers
+
+Generic container types used for layout and grouping.
+
+### 3.1. Navigation
+
+- `link`
+- `download`
+
+### 3.2. Forms
+
+- `save` button/action
+- `clear value` action
+- `set null value` action
+
+### 3.3. Other Containers
+
+- `help`: Blue themed container.
+- `info`: Blue themed container.
+- `alert`: Yellow themed container.
+- `warning`: Orange themed container.
+- `error`: Red themed container.
+- `message`: Green themed container.
+
+## 4. CSS Styling for UI Elements
+
+- **Warning/Hide Buttons:** `preset-tonal-warning hover:preset-filled-warning-500`
+- **Error/Delete/Disable Buttons:** `preset-tonal-error hover:preset-filled-error-500`
+- **Submenu:** `flex flex-row items-center justify-center gap-1`

documentation/AE__Data_Structures.md

@@ -0,0 +1,90 @@
+# Aether Project Data Structures
+
+This document outlines the key data structures and their properties used within the Aether SvelteKit frontend project. It covers object properties, field definitions, and how data is managed.
+
+## 1. Object Properties and Fields
+
+### 1.1. Core Standard Fields
+
+These fields are expected to be present in most Aether objects, providing a consistent base structure.
+
+- `id`: Primary key for an object (internal use, often a UUID).
+- `id_random`: Randomly generated ID for an object (often used for external exposure or URL parameters).
+- `<object_type>_id_random`: Specific random ID for an object (e.g., `person_id_random`).
+- `code`: Short, unique identifier.
+- `name`: Display name.
+- `enable`: Boolean for active/inactive status.
+- `hide`: Boolean for visibility.
+- `priority`: Numeric value for ordering.
+- `sort`: Numeric value for ordering.
+- `group`: Categorization string.
+- `notes`: General notes/comments.
+- `created_on`: Timestamp of creation.
+- `updated_on`: Timestamp of last update.
+
+### 1.2. Special Use Fields
+
+Fields with specific purposes or conditional usage across different object types.
+
+- `for_type`: Indicates the type of object this object is linked to (e.g., 'account', 'event').
+- `for_id`: The ID of the object this object is linked to.
+- `archive_on`: Timestamp indicating when an object was archived.
+- `passcode`: A password or access code associated with an object.
+- `external_id`: An identifier from an external system.
+
+### 1.3. Configuration and JSON Fields
+
+Fields designed to store structured data in JSON format.
+
+- `cfg_json`: Configuration data for an object, stored as a JSON string.
+- `data_json`: General purpose data for an object, stored as a JSON string.
+- `linked_li_json`: A list of linked items, stored as a JSON string.
+
+### 1.4. Special Generated Fields (Client-side)
+
+These fields are generated on the client-side, primarily for facilitating UI logic, such as sorting. They are not typically stored in the backend database.
+
+- `tmp_sort_1`: Temporary sort field 1.
+- `tmp_sort_2`: Temporary sort field 2.
+- `tmp_sort_3`: Temporary sort field 3.
+
+### 1.5. Future Standard Fields
+
+A list of potential future standard fields, often prefixed with `obj_`. These are conceptual and represent planned expansions to the data model.
+
+- `obj_id`, `obj_ext_uid`, `obj_ext_id`, `obj_import_id`, `obj_code`, `obj_account_id`, `obj_passcode`, `obj_type`, `obj_type_ver_id`, `obj_name`, `obj_summary`, `obj_outline`, `obj_description`, `obj_enable`, `obj_enable_on`, `obj_archive_on`, `obj_hide`, `obj_priority`, `obj_sort`, `obj_group`, `obj_cfg_json`, `obj_notes`, `obj_created_on`, `obj_updated_on`.
+
+## 2. Data Sorting
+
+Standardized sorting orders are applied across various data lists to ensure consistent presentation.
+
+- **Default/General Sorting:** `group > priority > sort > updated_on/created_on`
+- **Specific Sorting (e.g., for time-based events):** `type > start_date/time > code or name`
+
+## 3. Data Storage Mechanisms
+
+### 3.1. Local Storage
+
+Used for client-side persistence of various application states and configurations.
+
+- `api`: Stores API-related settings and tokens.
+- `app`: Stores global application settings and preferences.
+- `core`: Stores settings and data specific to core modules.
+- `<module>`: Stores settings and data specific to extended modules (e.g., `journals`, `events`).
+- `<custom>`: Stores settings and data specific to custom modules (e.g., `idaa`).
+
+### 3.2. IndexedDB (Dexie.js)
+
+Used for more structured client-side data storage, often for caching, offline capabilities, and larger datasets.
+
+- `ae_core_db`: The primary Dexie database instance for core application data.
+- `<module>`: Module-specific database instances (e.g., `db_journals` for journal data).
+- `<custom>`: Custom module-specific database instances (none currently defined, but reserved for future use).
+
+### 3.3. IndexedDB LiveQuery Usage
+
+Dexie's `liveQuery` is used to provide reactive data streams from IndexedDB.
+
+- `lq__xyz_obj`: Represents a read-only liveQuery result for a single object.
+- `lqw__xyz_obj`: Represents a writable liveQuery result, typically used for forms and data binding.
+    - **Note:** When using `lqw__xyz_obj`, developers must carefully manage updates to avoid conflicts with the underlying liveQuery and ensure data integrity.

documentation/AE__Naming_Conventions.md

@@ -0,0 +1,93 @@
+# Aether Project Naming Conventions
+
+## 1. General Principles
+
+- **Clarity:** Names should clearly convey their purpose and meaning.
+- **Consistency:** Adhere strictly to these guidelines across the entire codebase.
+- **Readability:** Prioritize names that are easy to read and understand.
+- **Conciseness:** Avoid unnecessary verbosity, but not at the expense of clarity.
+
+## 2. File Naming
+
+- **Logic/Service Files:** `ae_<module>__<concept>.ts` (e.g., `ae_core__account.ts`, `ae_events__event.ts`)
+- **Database Definition Files:** `db_<module>.ts` (e.g., `db_core.ts`, `db_journals.ts`)
+- **Svelte Store Files:** `ae_<module>_stores.ts` (e.g., `ae_core_stores.ts`, `ae_journals_stores.ts`)
+- **Svelte Components:**
+    - **Module-specific components:** `ae_comp__<module>__<component_name>.svelte` (e.g., `ae_comp__events__event_card.svelte`)
+    - **Generic/reusable components:** `element_<component_name>.svelte` (e.g., `element_input_file.svelte`, `element_qr_scanner_v2.svelte`)
+- **SvelteKit Routes:** Follow SvelteKit's standard routing conventions (e.g., `+page.svelte`, `+layout.svelte`, `[id]/+page.svelte`).
+- **CSS Files:** `ae-<module>-<purpose>.css` (e.g., `ae-c-idaa-light.css`, `ae-osit-default.css`)
+
+## 3. Function and Variable Naming
+
+- **Style:** Strictly `snake_case` for all function and variable names.
+    - **Deprecated:** `camelCase` should be refactored to `snake_case`.
+- **Prefixes:**
+    - `load_ae_obj_id__<object_type>`: For loading a single Aether object by ID.
+    - `load_ae_obj_li__<object_type>`: For loading a list of Aether objects.
+    - `create_ae_obj__<object_type>`: For creating an Aether object.
+    - `update_ae_obj__<object_type>`: For updating an Aether object.
+    - `delete_ae_obj_id__<object_type>`: For deleting an Aether object by ID.
+    - `db_save_ae_obj_li__<object_type>`: For saving a list of Aether objects to IndexedDB.
+    - `db_update_ae_obj_id__<object_type>`: For updating an Aether object in IndexedDB.
+    - `process_ae_obj__<object_type>_props`: For module-specific data transformation functions.
+    - **Deprecated:** Ambiguous `handle_` prefixes should be replaced with more descriptive `snake_case` names (e.g., `handle_submit_form` -> `submit_form`).
+
+## 4. Object and Property Naming
+
+- **Singularity:** Use singular nouns for objects and properties (e.g., `example.id`, not `examples.id`).
+- **IDs:**
+    - `id`: Primary key for an object (internal use, often a UUID).
+    - `<object_type>_id`: Specific ID for an object (e.g., `person_id`).
+    - `<object_type>_id_random`: Randomly generated ID for an object (often used for external exposure or URL parameters).
+    - `account_id`, `site_id`, `user_id`, etc.: Foreign keys.
+- **Common Properties:**
+    - `code`: Short, unique identifier.
+    - `name`: Display name.
+    - `description`: Longer text description.
+    - `enable`: Boolean for active/inactive status.
+    - `hide`: Boolean for visibility.
+    - `priority`: Numeric value for ordering.
+    - `sort`: Numeric value for ordering.
+    - `group`: Categorization string.
+    - `notes`: General notes/comments.
+    - `created_on`: Timestamp of creation.
+    - `updated_on`: Timestamp of last update.
+- **Special Use Properties:** `for_type`, `for_id`, `archive_on`, `passcode`, `external_id`.
+- **Config/JSON Properties:** `cfg_json`, `data_json`, `linked_li_json`.
+- **Special Generated Fields (Client-side):** `tmp_sort_1`, `tmp_sort_2`, `tmp_sort_3` (for client-side sorting).
+
+## 5. List Suffixes
+
+- **Simple Arrays:** Use `_li` suffix for simple, unordered arrays (e.g., `user_li`, `hosted_file_id_li`).
+- **Key-Value Maps/Objects:** Use `_kv` suffix for key-value objects/maps (e.g., `user_kv`, `hosted_file_obj_kv`).
+
+## 6. Interface and Type Naming
+
+- **Style:** Use `PascalCase` for interface and type names (e.g., `Account`, `HostedFile`, `GenericCrudArgs`).
+
+## 7. Constants
+
+- **Style:** Use `SCREAMING_SNAKE_CASE` for constants (e.g., `MAX_RETRIES`, `DEFAULT_TIMEOUT`).
+
+## 8. CSS Classes and IDs
+
+- **Style:** Use `kebab-case` for CSS classes and IDs (e.g., `my-component-class`, `main-header-id`).
+
+## 9. Data Sorting
+
+- **Standard Order:** `group > priority > sort > updated_on/created_on`
+- **Specific Order:** `type > start_date/time > code or name`
+
+## 10. Local Storage and IndexedDB Keys
+
+- **Local Storage:**
+    - `api`
+    - `app` (global)
+    - `core` (core modules)
+    - `<module>` (extended modules)
+    - `<custom>` (custom modules)
+- **IndexedDB:**
+    - `ae_core_db`
+    - `<module>`
+    - `<custom>`

documentation/AE__Performance_Guidelines.md

@@ -0,0 +1,240 @@
+# Performance Guidelines: Non-Blocking Load Pattern (SvelteKit + Dexie)
+
+## Overview
+To ensure instant page transitions and a high-performance feel, the Aether platform utilizes a **Non-Blocking Load Pattern** (also known as Stale-While-Revalidate or SWR). This pattern leverages Dexie's `liveQuery` for reactive UI and SvelteKit's `load` functions for background data synchronization.
+
+## 🚀 The Core Principle
+**Never block the `load` function with API calls if the data is already being observed by a `liveQuery`.**
+
+The page should render *instantly* using cached data from IndexedDB. Fresh data from the API should settle in the background and update the UI automatically via reactivity.
+
+---
+
+## ❌ Anti-Pattern (Blocking)
+This pattern causes a "white screen" or "frozen UI" while the browser waits for the API response.
+
+```typescript
+// +page.ts
+export async function load({ params, parent }) {
+    const data = await parent();
+    const event_id = params.event_id;
+
+    // BAD: This blocks the navigation until the API responds.
+    const fresh_data = await events_func.load_ae_obj_id__event({
+        event_id: event_id,
+        try_cache: true
+    });
+
+    return { ...data, event_obj: fresh_data };
+}
+```
+
+## ✅ Best Practice (Non-Blocking / SWR)
+This pattern completes the navigation immediately.
+
+```typescript
+// +page.ts
+export async function load({ params, parent }) {
+    const data = await parent();
+    const event_id = params.event_id;
+
+    if (browser) {
+        // GOOD: Fire and forget.
+        // This function updates IndexedDB in the background.
+        events_func.load_ae_obj_id__event({
+            event_id: event_id,
+            try_cache: true
+        });
+    }
+
+    return data; // Navigation completes instantly
+}
+```
+
+```svelte
+<!-- +page.svelte -->
+<script lang="ts">
+    import { liveQuery } from 'dexie';
+    import { db_events } from '$lib/ae_events/db_events';
+
+    // UI reacts automatically when the background task finishes.
+    let lq__event_obj = $derived(
+        liveQuery(() => db_events.event.get(event_id))
+    );
+</script>
+
+{#if $lq__event_obj}
+    <h1>{$lq__event_obj.name}</h1>
+{:else}
+    <p>Loading...</p>
+{/if}
+```
+
+---
+
+## 🛠️ When to use Await
+Use `await` in `load` functions ONLY for:
+1.  **Critical Auth Checks:** If you must verify a session before even showing a layout.
+2.  **Parent Data:** `const data = await parent();` is necessary to build the context.
+3.  **Server-Side Rendering (SSR):** If the data *must* be present in the initial HTML for SEO (rare for Aether feature modules).
+
+## 📈 Performance Gains
+By adopting this pattern across the Events module, we achieved:
+-   **~200-500ms reduction** in perceived page load time.
+-   **Elimination of waterfalls** (sequential API calls).
+-   **Better offline support**, as the UI is always ready to show what's in the local cache.
+
+---
+
+## Svelte 5 Runes + liveQuery: Critical Patterns
+
+These rules apply to all Svelte 5 runes-mode components (the entire Aether frontend). Violations here are a common source of subtle reactivity bugs and unnecessary re-renders.
+
+### Rule 1: Use `$derived.by()` when liveQuery depends on a reactive value
+
+**The problem:** `$derived(liveQuery(callback))` looks like it should re-run when a store value inside `callback` changes. It does NOT. Svelte tracks reactive dependencies synchronously during the expression evaluation. The `liveQuery` callback is called later inside Dexie's async context — Svelte's tracking is already finished. The dependency is never registered.
+
+```svelte
+<!-- ❌ WRONG: $events_slct.event_session_id is read inside the async callback.
+     Svelte never tracks it. The liveQuery is created once and never recreates
+     when event_session_id changes. -->
+let lq__session = $derived(
+    liveQuery(() => db_events.session.get($events_slct.event_session_id))
+);
+```
+
+```svelte
+<!-- ✅ CORRECT: $derived.by() captures the ID in the outer synchronous closure.
+     Svelte tracks it. When event_session_id changes, $derived.by() re-runs,
+     creating a new liveQuery with the updated ID. -->
+let lq__session = $derived.by(() => {
+    const id = $events_slct.event_session_id;  // tracked here, synchronously
+    return liveQuery(() => db_events.session.get(id));
+});
+```
+
+**Rule of thumb:** If the liveQuery result changes based on a reactive value (store property, `$state`, `$props`), always use `$derived.by()`. Reserve `$derived(liveQuery(...))` only for liveQueries that watch a table broadly and don't filter by a reactive value.
+
+---
+
+### Rule 2: Keep liveQuery closures pure (data-only)
+
+**The problem:** Writing to a Svelte store inside a liveQuery callback runs inside Dexie's async transaction context. Svelte's reactive tracking is undefined there. The write may fire at unpredictable times and create hard-to-debug reactivity loops.
+
+```svelte
+<!-- ❌ WRONG: Store side-effect inside liveQuery async callback. -->
+let lq__event_obj = liveQuery(async () => {
+    const obj = await db_events.event.get($events_slct.event_id);
+    if (obj) $events_slct.event_obj = obj;  // BAD: side-effect in async context
+    return obj;
+});
+```
+
+```svelte
+<!-- ✅ CORRECT: liveQuery is pure data-only. Store sync happens in a $effect. -->
+let lq__event_obj = liveQuery(async () => {
+    const id = $events_slct.event_id;
+    if (!id) return null;
+    return await db_events.event.get(id);
+});
+
+$effect(() => {
+    const result = $lq__event_obj;
+    if (result) {
+        untrack(() => {
+            // Cheap equality guard — only write if something actually changed.
+            if (result.updated_on !== $events_slct.event_obj?.updated_on ||
+                result.id !== $events_slct.event_obj?.id) {
+                $events_slct.event_obj = { ...result };
+            }
+        });
+    }
+});
+```
+
+---
+
+### Rule 3: Use cheap equality guards in `$effect` before writing to stores
+
+Every store write in a `$effect` triggers downstream reactivity. Always guard with a comparison before writing. The cost of the comparison is always less than the cost of spurious re-renders.
+
+**For single objects** — compare `id` + `updated_on` (O(1)):
+```typescript
+if (result.id !== $store.obj?.id || result.updated_on !== $store.obj?.updated_on) {
+    $store.obj = { ...result };
+}
+```
+
+**For arrays** — join IDs into a string (O(n)), not `JSON.stringify` (O(n × field_count)):
+```typescript
+const new_ids = results.map(r => r.id).join(',');
+const cur_ids = ($store.list ?? []).map(r => r.id).join(',');
+if (new_ids !== cur_ids) {
+    $store.list = [...results];
+}
+```
+
+**For flat objects** (e.g., merged config) — shallow key-by-key comparison (O(n keys)):
+```typescript
+function shallow_equal(a, b) {
+    const keys_a = Object.keys(a);
+    const keys_b = Object.keys(b);
+    if (keys_a.length !== keys_b.length) return false;
+    for (const k of keys_a) { if (a[k] !== b[k]) return false; }
+    return true;
+}
+if (!shallow_equal(current, new_val)) { $store = new_val; }
+```
+
+**Never use `JSON.stringify` for equality.** It serializes the full object tree on every reactive cycle and is O(total serialized bytes).
+
+---
+
+### Rule 4: Always use `untrack()` when writing to stores inside `$effect`
+
+Without `untrack()`, reading a store to check its current value inside `$effect` registers it as a dependency — the effect re-runs whenever it writes, creating an infinite loop.
+
+```svelte
+<!-- ❌ WRONG: Reading $store.obj inside $effect creates a dependency loop. -->
+$effect(() => {
+    const result = $lq__obj;
+    if (result.id !== $store.obj?.id) {  // Reading $store.obj here is a dependency!
+        $store.obj = result;             // This write re-triggers the effect.
+    }
+});
+```
+
+```svelte
+<!-- ✅ CORRECT: untrack() reads current store values without registering them
+     as reactive dependencies of the $effect. -->
+$effect(() => {
+    const result = $lq__obj;  // Tracked: effect re-runs when liveQuery emits
+    if (result) {
+        untrack(() => {
+            // Not tracked: reading $store.obj here won't cause a re-run.
+            if (result.id !== $store.obj?.id) {
+                $store.obj = result;
+            }
+        });
+    }
+});
+```
+
+---
+
+### Rule 5: Guard `console.log` calls with `log_lvl`
+
+Raw `console.log(obj)` eagerly serializes objects (even large ones) on every call, blocking the main thread. All debug logging must be guarded.
+
+```typescript
+let log_lvl: number = $state(0);  // Set to 0 in production; raise locally to debug.
+
+// ❌ WRONG: Always runs, always serializes.
+console.log('Result:', result_obj);
+
+// ✅ CORRECT: Zero-cost when log_lvl is 0.
+if (log_lvl) console.log('Result:', result_obj);
+if (log_lvl > 1) console.log('Verbose:', result_obj);  // Extra-verbose tier
+```
+
+**Never hardcode `log_lvl: 2` in a call-site or override `log_lvl` inside a function body.** The parameter default exists so callers can control verbosity. Overriding it forces debug logging regardless of what the caller passed.

documentation/AE__Permissions_and_Security.md

@@ -0,0 +1,176 @@
+# Aether — Permissions and Security
+
+**Last updated:** 2026-02-27
+**Source of truth:** `src/lib/ae_utils/ae_utils__perm_checks.ts`, `src/lib/stores/ae_stores.ts`
+
+---
+
+## Access Level Hierarchy
+
+Highest to lowest. Each level **inherits all access from every level below it**.
+
+| Level | `access_type` string | Typical Use |
+| --- | --- | --- |
+| Super | `super` | OSIT internal — full system access |
+| Manager | `manager` | Account managers |
+| Administrator | `administrator` | Event/account admins |
+| Trusted | `trusted` | **Onsite staff** — site passcode or AE login |
+| Public | `public` | Site-wide passcode granted |
+| Authenticated | `authenticated` | Identity verified (e.g. IDAA Novi UUID) |
+| Anonymous | `anonymous` | Default — not signed in |
+
+> **Note on Public vs Authenticated:** `public` is a *site-wide* unlock (anyone with the passcode). `authenticated` verifies a *specific identity*. In the hierarchy, public outranks authenticated because it implies broader site access.
+
+---
+
+## `$ae_loc` Store — Permission Flags
+
+`$ae_loc` is a `persisted()` store (backed by localStorage). Key fields:
+
+```typescript
+$ae_loc.access_type          // string: current access type ('anonymous', 'trusted', etc.)
+
+// Cumulative boolean flags (true = "you have AT LEAST this level")
+$ae_loc.anonymous_access     // always true
+$ae_loc.authenticated_access // true from authenticated and above
+$ae_loc.public_access        // true from public and above
+$ae_loc.trusted_access       // true from trusted and above ← most-used gate
+$ae_loc.administrator_access // true from administrator and above
+$ae_loc.manager_access       // true from manager and above
+$ae_loc.super_access         // true only at super
+
+// Exclusive check flags (true = "you are EXACTLY this level")
+$ae_loc.trusted_check        // true only if access_type === 'trusted'
+$ae_loc.administrator_check  // etc.
+// (rarely needed — prefer the _access flags)
+
+// Behavior flags
+$ae_loc.edit_mode            // boolean — user preference, see below
+$ae_loc.adv_mode             // boolean — advanced mode toggle
+```
+
+### Additional intermediate levels (in permission checks, not in hierarchy order)
+`support`, `assistant`, `verified`, `provisional` — appear in `_access` flags but are not part of the canonical `access_level_order`. Treat as internal/intermediate.
+
+---
+
+## Edit Mode — Critical Rules
+
+`$ae_loc.edit_mode` is a **user preference**, not a permission level.
+
+**Rules that must never be broken:**
+1. **Components must never write to `$ae_loc.edit_mode`** — only the system menu toggle and sign-out/permission-drop handlers may change it.
+2. Edit mode is only available to `trusted` and above in 95% of modules (the toggle is hidden from lower-access users).
+3. Edit mode persists across navigation — it is NOT reset by page loads or component mounts.
+4. Sign-out and permission drops to below `authenticated` should reset `edit_mode` to `false`.
+
+> **Background:** A bug was fixed (2026-02-27) where `ae_comp__badge_obj_view.svelte` was writing `$ae_loc.edit_mode = false` in a data-loading `$effect`, silently overriding the user's preference on every navigation to the badge print page.
+
+---
+
+## Authentication Methods
+
+| Method | Grants | Used For |
+| --- | --- | --- |
+| Site passcode (`site_access_code_kv`) | `trusted`, `public`, or `authenticated` | Onsite staff and event attendees |
+| AE Username + Password | `trusted` and above | Staff with AE accounts |
+| Novi UUID | `authenticated` | IDAA members (Novi membership system) |
+
+Passcodes are stored per-level in `$ae_loc.site_access_code_kv`:
+```typescript
+site_access_code_kv: {
+    administrator: null,  // highest passcode tier
+    trusted: null,        // onsite staff passcode
+    public: 'public1980', // example
+    authenticated: 'auth1980'
+}
+```
+
+---
+
+## Utility Functions
+
+### `process_permission_checks(access_type: string)`
+Returns a full permission object (`_check` and `_access` flags) for a given access type string. Used when access type changes to update `$ae_loc`.
+
+```typescript
+import { process_permission_checks } from '$lib/ae_utils/ae_utils__perm_checks';
+const checks = process_permission_checks('trusted');
+// checks.trusted_access === true
+// checks.administrator_access === false
+```
+
+### `compare_access_levels(level_a, level_b)`
+Returns `1` if `level_a` is higher, `-1` if lower, `0` if equal. Useful for threshold comparisons.
+
+---
+
+## Privacy and Security Rules
+
+### IDAA — International Doctors in Alcoholics Anonymous
+- **ALL IDAA content is private. Always. No exceptions.**
+- BB (Bulletin Board / Posts), Archives, Recovery Meetings — all require authentication.
+- IDAA users authenticate via Novi UUID at `authenticated` level or higher.
+- A prior agent accidentally exposed IDAA BB data publicly — treat any IDAA exposure as Sev-1.
+
+### Journals
+- Private personal data. Always authenticated. Passcode/encryption features exist.
+- Never expose journal content publicly.
+
+### `PUBLIC_AE_API_SECRET_KEY`
+- Audit closed 2026-03-11. `PUBLIC_*` prefix is by design — key is always in the client bundle.
+- Anonymous site-domain lookup uses the limited-permission `PUBLIC_AE_BOOTSTRAP_KEY` instead.
+- Security model: API key is one layer; JWT + `x-account-id` scoping provides the primary auth.
+- Do not introduce new usages. Prefer `PUBLIC_AE_BOOTSTRAP_KEY` for unauthenticated lookups.
+
+### Email Display
+Non-trusted users must never see a full email address. Obscure using:
+```typescript
+// joh***@example.com
+function obscure_email(email: string): string {
+    const at = email.indexOf('@');
+    if (at < 0) return email;
+    return `${email.slice(0, Math.min(3, at))}***${email.slice(at)}`;
+}
+```
+This pattern lives in `ae_comp__badge_obj_li.svelte` — move to `ae_utils` if needed elsewhere.
+
+---
+
+## Module-Specific Permission Patterns
+
+### Events — Badges
+
+| Scenario | Visibility | Print Action | Review Actions |
+| --- | --- | --- | --- |
+| Anonymous / below trusted | Unprinted only | None (name display only) | Email Review Link button (→ email API) |
+| Trusted, not Edit Mode | Unprinted only | Clickable (first print) | Email Review Link button |
+| Trusted, Edit Mode | All non-hidden | Clickable incl. reprint; shows `Nx` count | Email Review Link + direct Review Link (clipboard) |
+
+- Print count badge: shown as `Nx` (e.g. `2×`) next to the printer icon when `print_count >= 1`
+- Edit mode for badges: limited to `trusted_access` users (toggle hidden from lower levels)
+- `person_passcode` field (for attendee-gated review URL): **not yet in DB** as of 2026-02-27
+
+### IDAA
+- Auth gate test must be the **first test** in any test file — privacy enforcement is a hard requirement.
+- Default required permission: `trusted_access` or higher for module access.
+
+---
+
+## Common Template Patterns
+
+```svelte
+<!-- Gate on trusted access -->
+{#if $ae_loc.trusted_access}
+
+<!-- Gate on edit mode (always check trusted too — edit mode alone is insufficient) -->
+{#if $ae_loc.trusted_access && $ae_loc.edit_mode}
+
+<!-- Gate on administrator -->
+{#if $ae_loc.administrator_access}
+
+<!-- Show full vs obscured email -->
+{$ae_loc.trusted_access ? email : obscure_email(email)}
+```
+
+> Never gate purely on `$ae_loc.edit_mode` without also checking a permission level. Edit mode is a UI preference, not a permission grant.

documentation/AE__UI_Component_Patterns.md

@@ -0,0 +1,414 @@
+# Aether UI — Component Style Patterns
+> **Version:** 1.0 (2026-03-06)
+> **Author:** One Sky IT / Scott Idem
+> **Scope:** All Aether SvelteKit frontend components
+> **Related:** `GUIDE__AE_UI_Style_Guidelines.md` (color rules, token definitions, a11y)
+
+This document is a recipe book. Copy these patterns directly. Deviate only when a component's specific purpose genuinely requires it — and document why in a comment.
+
+---
+
+## 1. Hero Card
+*Used for: session identity, presenter identity, location identity — the top-of-page "Is this the right one?" card.*
+
+```svelte
+<div class="rounded-xl border border-surface-200-800 bg-surface-50-900 shadow-sm overflow-hidden">
+    <div class="px-4 pt-4 pb-3 flex flex-col gap-3">
+        <!-- primary heading (h1 / h2) -->
+        <h1 class="text-2xl font-bold leading-snug">{name}</h1>
+
+        <!-- info chips row -->
+        <div class="flex flex-wrap gap-2 items-center">
+            <!-- time chip → primary color -->
+            <span class="inline-flex items-center gap-1.5 text-sm font-semibold px-3 py-1 rounded-full bg-primary-500/10 text-primary-700 dark:text-primary-300 transition-colors duration-200">
+                <span class="fas fa-clock text-xs" aria-hidden="true"></span>
+                Mon, Jan 1 – 2:00 PM
+            </span>
+            <!-- room/location chip → tertiary color -->
+            <span class="inline-flex items-center gap-1.5 text-sm font-semibold px-3 py-1 rounded-full bg-tertiary-500/10 text-tertiary-700 dark:text-tertiary-300 transition-colors duration-200">
+                <span class="fas fa-map-marker-alt text-xs" aria-hidden="true"></span>
+                Room 201
+            </span>
+        </div>
+    </div>
+</div>
+```
+
+**Skeleton loading variant:**
+```svelte
+<!-- While liveQuery resolves -->
+<div class="h-7 w-2/3 bg-surface-200-800 animate-pulse rounded"></div>
+<div class="h-5 w-1/2 bg-surface-200-800 animate-pulse rounded-full"></div>
+```
+
+---
+
+## 2. Standard Content Card
+*Used for: description text, notes, secondary info panels.*
+
+```svelte
+<div class="rounded-lg border border-surface-200-800 bg-surface-50-900 px-4 py-3">
+    <!-- optional eyebrow label -->
+    <span class="text-xs font-bold uppercase tracking-wide opacity-40 block mb-1">Description</span>
+    <p class="whitespace-pre-wrap text-sm leading-relaxed">{description}</p>
+</div>
+```
+
+**Variant — inner secondary panel:**
+```svelte
+<div class="bg-surface-100-900 rounded-lg px-3 py-2">
+    <!-- inner content -->
+</div>
+```
+
+---
+
+## 3. Table Row
+*Used for: session search results tables, any `<tbody><tr>` list.*
+
+```svelte
+<tr
+    class="relative transition-colors duration-200"
+    class:opacity-50={obj?.hide}
+    class:preset-tonal-warning={!obj?.enable}
+>
+    <td>
+        <a
+            href="/path/to/{obj.id}"
+            class="font-bold text-lg hover:text-primary-500 transition-colors duration-200"
+        >
+            {obj.name}
+        </a>
+    </td>
+</tr>
+```
+
+- `opacity-50` for hidden/archived records
+- `preset-tonal-warning` for disabled (not enabled) records — amber background
+- `transition-colors duration-200` on both `<tr>` and `<a>`
+
+---
+
+## 4. List Item Card
+*Used for: presentation list items, session details lists, any vertical card stack.*
+
+```svelte
+<ul class="space-y-4">
+    <li class="space-y-3 border border-surface-200-800 bg-surface-50-900 p-4 rounded-xl shadow-sm transition-colors duration-200">
+
+        <!-- Card heading bar -->
+        <h4 class="text-lg font-bold rounded-lg px-3 py-2 bg-surface-100-900 flex flex-wrap items-center gap-2">
+            {name}
+            <!-- code/tag badge -->
+            <span class="text-xs preset-tonal-warning px-2 py-0.5 rounded-md leading-none">
+                {code}
+            </span>
+        </h4>
+
+        <!-- Description block -->
+        <pre class="whitespace-pre-wrap p-3 bg-surface-100-900 rounded-lg text-sm">{description}</pre>
+
+    </li>
+</ul>
+```
+
+**Rules:**
+- Background goes on `<li>`, NOT on `<ul>`
+- `<ul>` gets only spacing: `space-y-4` — never a background color
+- The `<ul>` container in components should have `overflow-x-auto`, not `overflow-x-scroll`
+
+---
+
+## 5. Info Chips
+
+### Time / Date chip (Primary — Teal)
+```svelte
+<span class="inline-flex items-center gap-1.5 text-sm font-semibold px-3 py-1 rounded-full bg-primary-500/10 text-primary-700 dark:text-primary-300 transition-colors duration-200">
+    <span class="fas fa-clock text-xs" aria-hidden="true"></span>
+    Monday, March 6 – 2:00 PM
+</span>
+```
+
+### Location / Room chip (Tertiary — Indigo)
+```svelte
+<span class="inline-flex items-center gap-1.5 text-sm font-semibold px-3 py-1 rounded-full bg-tertiary-500/10 text-tertiary-700 dark:text-tertiary-300 transition-colors duration-200">
+    <span class="fas fa-map-marker-alt text-xs" aria-hidden="true"></span>
+    Main Hall B
+</span>
+```
+
+### Code / Tag badge
+```svelte
+<span class="text-xs preset-tonal-warning px-2 py-0.5 rounded-md leading-none">
+    {code}
+</span>
+```
+
+### Status badge (edit mode only)
+```svelte
+{#if $ae_loc.edit_mode}
+    <span class="badge preset-tonal-surface text-xs">code: {obj.code}</span>
+{/if}
+```
+
+### Success count badge
+```svelte
+<span class="badge preset-tonal-success" class:hidden={!fileCount}>
+    <span class="fas fa-file-alt m-1" aria-hidden="true"></span>
+    {fileCount}×
+</span>
+```
+
+---
+
+## 6. Empty State Panel
+*Used for: "No results found", "No sessions match your search", "Nothing to show yet".*
+
+```svelte
+<section
+    class="preset-tonal-warning p-6 rounded-xl shadow-sm lg:max-w-lg mx-auto"
+    role="status"
+    aria-live="polite"
+>
+    <div class="flex flex-col items-center gap-2 text-center">
+        <span class="fas fa-search text-3xl opacity-50" aria-hidden="true"></span>
+        <strong class="text-xl">No sessions found</strong>
+        <p class="text-base opacity-80">
+            Use the search bar above to find your session.
+        </p>
+    </div>
+
+    <!-- optional details card -->
+    <div class="bg-surface-50-900/60 rounded-lg p-3 mt-4">
+        <span class="text-xs font-bold uppercase tracking-wide opacity-50 block mb-2">Search by any of:</span>
+        <ul class="space-y-1 text-sm">
+            <li class="flex items-center gap-1.5">
+                <span class="fas fa-angle-right text-xs opacity-50" aria-hidden="true"></span>
+                Session name
+            </li>
+        </ul>
+    </div>
+</section>
+```
+
+---
+
+## 7. Warning / Error Inline Banners
+*Used for: disabled records, agreement-required gates.*
+
+```svelte
+<!-- Warning (amber — disabled/inactive) -->
+<div class="bg-warning-100 p-4 border border-warning-300 rounded-md">
+    <h2 class="h3">
+        <span class="fas fa-exclamation-triangle text-warning-500 m-1" aria-hidden="true"></span>
+        Location Disabled
+    </h2>
+    <p>This location is currently disabled.</p>
+</div>
+
+<!-- Error (red — blocked/failed) -->
+<div class="bg-error-100 p-4 border border-error-300 rounded-md">
+    <h2 class="h3">
+        <span class="fas fa-exclamation-triangle text-error-500 m-1" aria-hidden="true"></span>
+        Presenter Disabled
+    </h2>
+    <p>This presenter is currently disabled.</p>
+</div>
+```
+
+---
+
+## 8. File Upload Zone (`Comp_event_files_upload`)
+
+The `class_li` prop styles the outer upload drop zone container:
+
+```svelte
+<Comp_event_files_upload
+    class_li="border border-surface-200-800 rounded-xl p-4 bg-surface-50-900 hover:bg-surface-100-900 transition-colors duration-200"
+    link_to_type="event_presenter"
+    link_to_id={presenter_id}
+>
+    {#snippet label()}
+        <span>
+            <div class="text-lg">
+                <span class="fas fa-upload" aria-hidden="true"></span>
+                <strong>Upload presenter files</strong>
+            </div>
+            <div class="text-sm opacity-60 italic">
+                Supported: pptx, key, mp4, pdf, docx, xlsx, txt
+            </div>
+        </span>
+    {/snippet}
+</Comp_event_files_upload>
+```
+
+**Note:** The label sub-description text uses `opacity-60 italic` — never `text-gray-600 dark:text-gray-400`.
+
+---
+
+## 9. Section Component Wrapper
+*Used for: `ae_comp__event_*_obj_li.svelte` outer `<section>` elements.*
+
+```svelte
+<section
+    class="ae_comp event_X_obj_li px-0.5 py-2 space-y-2 min-w-full w-full container overflow-x-auto {container_class_li}"
+>
+```
+
+**Rules:**
+- `overflow-x-auto` — never `overflow-x-scroll`
+- **Never include debug breakpoint borders** — remove before committing:
+  ```
+  sm:border-l-red-400 md:border-l-yellow-400 lg:border-l-gray-100
+  sm:dark:border-l-red-600 md:dark:border-l-yellow-600 lg:dark:border-l-gray-700
+  border-dashed border-y-transparent border-r-transparent
+  ```
+
+---
+
+## 10. Agreement / Consent Form Layout
+*Used for: `ae_comp__event_presenter_form_agree.svelte`, `ae_comp__event_session_poc_form_agree.svelte`.*
+
+```svelte
+<!-- Consent text container -->
+<div class="bg-surface-100-900 p-4 border border-surface-200-800 rounded-lg space-y-4">
+    <Element_data_store ds_code="consent_text" ds_type="html" class_li="p-2" />
+</div>
+
+<!-- Presenter name/identity highlight line -->
+<p class="text-lg preset-tonal-warning p-2 rounded-t-md">
+    <strong>{presenter_name} ({email})</strong>
+    agrees to the following terms and conditions:
+</p>
+```
+
+---
+
+## 11. Modal Usage (Flowbite-Svelte)
+
+```svelte
+<!-- ✅ Correct — no manual color class; theme handles styling -->
+<Modal title="Host Profile" bind:open={show_modal}>
+    <ProfileComponent />
+    {#snippet footer()}
+        <button onclick={() => show_modal = false} class="btn preset-tonal-warning">
+            Close
+        </button>
+    {/snippet}
+</Modal>
+
+<!-- ❌ Wrong — manual gray overrides bypass the theme -->
+<Modal class="bg-white dark:bg-gray-800 text-gray-800 dark:text-gray-200 ...">
+```
+
+**Rule:** Never set `bg-*` or `text-*` color classes on `<Modal>`. Let the Flowbite component + active theme handle it. Only structural layout classes (`shadow-md`, `relative`, `flex`, etc.) belong on the `class` prop if needed.
+
+---
+
+## 12. Muted / Secondary Text
+
+Replace all `text-gray-*` patterns with opacity wrappers on inherited text color:
+
+```svelte
+<!-- ✅ Theme-aware muted text -->
+<span class="text-sm opacity-60">Secondary label</span>
+<span class="text-sm opacity-40 italic">Hint or placeholder text</span>
+<span class="text-xs font-bold uppercase tracking-wide opacity-40">Section eyebrow</span>
+
+<!-- ❌ Fixed-color muted text -->
+<span class="text-sm text-gray-500">Secondary label</span>
+<span class="text-sm text-gray-600 dark:text-gray-400 italic">Hint text</span>
+```
+
+---
+
+## 13. QR Code (Async Toggle)
+
+```svelte
+<!-- Gate on typeof === 'string', not truthy.
+     The store holds boolean `true` as a loading placeholder, which would
+     render as a broken <img src="true"> if not guarded. -->
+{#if $lq__obj && typeof $store.qr_url?.[$lq__obj.id] === 'string'}
+    <div class="float-right ml-3 mb-1 flex flex-col items-center gap-1">
+        <button
+            type="button"
+            onclick={() => $store.qr_bigger = !$store.qr_bigger}
+            class="rounded focus-visible:ring-2 focus-visible:ring-primary-500"
+            title="Toggle QR code size"
+            aria-label="Toggle QR code size"
+        >
+            <img
+                src={$store.qr_url[$lq__obj.id]}
+                class="transition-all duration-500 rounded border border-surface-200-800"
+                class:h-20={!$store.qr_bigger}
+                class:w-20={!$store.qr_bigger}
+                class:h-40={$store.qr_bigger}
+                class:w-40={$store.qr_bigger}
+                alt="QR code link to this page"
+            />
+        </button>
+    </div>
+{/if}
+```
+
+---
+
+## 14. POC / Host Button Pattern
+
+```svelte
+<div class="flex items-center gap-2">
+    <span class="text-sm font-semibold opacity-60">Host:</span>
+    <button
+        type="button"
+        class="btn btn-sm preset-tonal-primary transition-colors duration-200"
+        onclick={() => show_profile = true}
+        aria-haspopup="dialog"
+    >
+        <span class="fas fa-id-card mr-1" aria-hidden="true"></span>
+        {full_name}
+    </button>
+</div>
+```
+
+---
+
+## 15. Icon Usage Rules
+
+| Context | Pattern |
+|---|---|
+| Decorative / visual only | `<span class="fas fa-clock" aria-hidden="true"></span>` |
+| Icon with visible adjacent text | `aria-hidden="true"` on icon, text provides meaning |
+| Icon-only button (no visible text) | `aria-label="Description"` on the `<button>` |
+| Icon used as bullet point | `aria-hidden="true"` on icon |
+
+**Never use `<i>` tags.** Always `<span class="fas ...">`.
+
+---
+
+## 16. Native `<select>` Dark Mode
+
+Browser-native `<select>` and `<option>` elements **cannot be reliably styled** with Tailwind `dark:` utilities — the browser controls `<option>` rendering and ignores most CSS overrides. This causes the "light on light hover" bug in dark mode.
+
+**Fix — add `color-scheme` directive to force OS-level dark styling:**
+
+```svelte
+<script>
+    import { ae_loc } from '$lib/ae_core/ae_stores';
+</script>
+
+<!-- Forces browser to render the select widget in dark/light OS mode matching your theme -->
+<select
+    class="select text-xs p-1"
+    style:color-scheme={$ae_loc.dark_mode ? 'dark' : 'light'}
+>
+    {#each options as opt}
+        <option value={opt.value}>{opt.label}</option>
+    {/each}
+</select>
+```
+
+**Why this works:** `color-scheme: dark` instructs the browser to use its native dark-mode widget rendering (dark `<select>`, dark `<option>` backgrounds). It's the only cross-browser mechanism that affects `<option>` hover colors.
+
+**Alternative — replace with custom Skeleton/Flowbite component** if you need full styling control (e.g., color-coded options, icons). Native `<select>` is acceptable for simple purpose dropdowns with the `color-scheme` fix above.
+
+**Store reference:** `$ae_loc.dark_mode` — boolean, set by the theme engine in `ae_stores.ts`.

documentation/CLIENT__IDAA_and_customized_mods.md

@@ -0,0 +1,563 @@
+# CLIENT: IDAA — International Doctors in Alcoholics Anonymous
+
+**Client:** International Doctors in Alcoholics Anonymous (IDAA)
+**Module Path:** `src/routes/idaa/`
+**State Stores:** `src/lib/stores/ae_idaa_stores.ts`
+**Last Updated:** 2026-03-09 (Novi UUID verification upgrade)
+
+---
+
+## ⚠️ CRITICAL PRIVACY REQUIREMENT
+
+**ALL IDAA content is PRIVATE. Authentication is required for ALL modules.**
+
+IDAA serves a sensitive population — physicians in addiction recovery. Content exposure to the public is a **severe security failure** and a violation of member trust.
+
+- A previous AI agent accidentally exposed IDAA Bulletin Board content publicly. This must never happen again.
+- Every route, component, and API call in this module must enforce authentication.
+- When in doubt: **it's private**.
+
+**Required access level:** `trusted_access` or higher for all IDAA content.
+
+---
+
+## What IDAA Is
+
+IDAA is a private membership organization for physicians in recovery. They use the Aether platform for:
+- A private document archive (historical materials, meeting records)
+- A members-only bulletin board (community posts and discussion)
+- A searchable directory of in-person and virtual recovery meetings
+- Video conferencing (Jitsi-based)
+
+IDAA's Aether instance is embedded as an **iframe inside their existing Novi-powered website** (`idaa.org`). Novi is their external Association Management System (AMS) — it handles membership records and authentication. Aether receives the member context via URL parameters on iframe load.
+
+---
+
+## Architecture: Composite Module
+
+IDAA is **not a standalone module** — it is a **composition of three existing Aether modules**, access-gated and branded for the IDAA client.
+
+| IDAA Feature | Aether Module Used | Library |
+|---|---|---|
+| Archives | Archives module | `src/lib/ae_archives/` |
+| Bulletin Board (BB) | Posts module | `src/lib/ae_posts/` |
+| Recovery Meetings | Events module (repurposed) | `src/lib/ae_events/` |
+| Video Conferences | Jitsi (external embed) | External |
+
+There is **no `src/lib/ae_idaa/`** library directory. IDAA-specific state and logic lives in `ae_idaa_stores.ts` and the route components only.
+
+This design allows the IDAA module to be removed or updated without touching core modules.
+
+---
+
+## Route Structure
+
+```
+src/routes/idaa/
+├── +layout.svelte              # Root layout: Novi UUID extraction, iframe height sync
+├── (idaa)/
+│   ├── +layout.svelte          # Access gate: blocks render if unauthorized; permission upgrade
+│   ├── +page.svelte            # IDAA dashboard — 3-module selector
+│   ├── archives/               # Archives submodule
+│   │   ├── +page.svelte        # Archive list (LiveQuery)
+│   │   └── [archive_id]/
+│   │       ├── +page.svelte    # Archive detail + content viewer
+│   │       ├── ae_idaa_comp__archive_obj_id_view.svelte
+│   │       ├── ae_idaa_comp__archive_obj_id_edit.svelte
+│   │       ├── ae_idaa_comp__archive_content_obj_id_edit.svelte
+│   │       └── ae_idaa_comp__modal_media_player.svelte
+│   ├── bb/                     # Bulletin Board (Posts) submodule
+│   │   ├── +page.svelte        # Post list (LiveQuery, archive-filtered)
+│   │   └── [post_id]/
+│   │       ├── +page.svelte    # Post detail + comments
+│   │       ├── ae_idaa_comp__post_obj_id_view.svelte
+│   │       ├── ae_idaa_comp__post_obj_id_edit.svelte
+│   │       └── ae_idaa_comp__post_comment_obj_id_edit.svelte
+│   ├── recovery_meetings/      # Recovery Meetings (Events repurposed)
+│   │   ├── +layout.ts          # Layout loader (auth, stores)
+│   │   ├── +layout.svelte      # Layout wrapper
+│   │   ├── +page.svelte        # Meeting list + search filters
+│   │   ├── ae_idaa_comp__event_obj_li_wrapper.svelte   # List container/modal host
+│   │   ├── ae_idaa_comp__event_obj_li.svelte           # Individual list item card
+│   │   ├── ae_idaa_comp__event_obj_qry.svelte          # Query/filter bar
+│   │   ├── ae_idaa_comp__event_obj_id_view.svelte      # Meeting detail (read-only)
+│   │   ├── ae_idaa_comp__event_obj_id_edit.svelte   # Meeting edit form (active)
+│   │   └── [event_id]/
+│   │       ├── +page.svelte    # Meeting detail page — renders view OR edit based on session flag
+│   │       └── +page.ts
+│   └── video_conferences/      # Jitsi video conference integration
+└── jitsi_reports/              # External Jitsi reporting
+```
+
+> **Note:** Recovery Meetings has **two UI entry points**:
+> 1. **Modal pattern** (primary list flow) — list, view, and edit components live at `recovery_meetings/`
+>    level, toggled via `$idaa_sess.recovery_meetings` session flags (`show__modal_view`, `show__modal_edit`).
+> 2. **Direct page** (`[event_id]/+page.svelte`) — navigating to `/idaa/recovery_meetings/<id>` renders
+>    the same view/edit components gated by `$idaa_sess.recovery_meetings.edit__event_obj`.
+>
+> Both patterns use `ae_idaa_comp__event_obj_id_edit.svelte`. The edit form clears **both**
+> `show__modal_edit` and `edit__event_obj` on save/cancel so it works correctly from either entry point.
+
+---
+
+## Authentication: Novi UUID System
+
+IDAA members do not log in through Aether — they log in through Novi (idaa.org), and Novi passes their identity to the Aether iframe via URL parameters.
+
+### URL Parameters (on iframe load)
+```
+?uuid=<36-char-uuid>
+&iframe=true
+&key=<site-access-key>
+```
+
+> **Security note (2026-03-09):** The iframe HTML files previously also passed `email` and `full_name`
+> via URL params. These were unverifiable claims that could be spoofed via URL. They have been removed.
+> The SvelteKit layout now fetches verified identity directly from the Novi API.
+> See "Iframe Integration" → "Novi UUID Verification Flow" below.
+
+### Verification Flow (`(idaa)/+layout.svelte`)
+
+When a `uuid` param is present in the URL, the layout performs an **async Novi API call** to verify:
+
+1. The UUID actually exists in Novi's system (prevents fake/crafted UUIDs)
+2. Gets verified name and email directly from Novi — these can't be forged via URL
+3. Sets `$idaa_loc.novi_uuid`, `$idaa_loc.novi_email`, `$idaa_loc.novi_full_name`
+4. Sets `$idaa_loc.novi_verified = true` on success
+
+A `novi_verifying` UI state prevents the "Access Denied" screen from flashing during the API round-trip.
+
+**All or nothing:** If the Novi API key is not configured, or the verification call fails, access is denied. There is no URL-param fallback.
+
+**Required `site_cfg_json` fields:**
+```json
+{
+  "novi_idaa_api_key": "Base64-encoded-key-from-Novi",
+  "novi_api_root_url": "https://www.idaa.org/api",  // optional, this is the default
+  "novi_admin_li": ["uuid-1", "uuid-2"],
+  "novi_trusted_li": ["uuid-3", "uuid-4"],
+  "novi_idaa_group_guid_li": ["group-uuid"]          // Jitsi moderators only
+}
+```
+
+## Novi API Integration — How We Use It
+
+This section documents the exact way Aether uses the Novi API for the IDAA integration so future maintainers can recreate the flow.
+
+- **Purpose:** Verify a Novi-provided `uuid` received via iframe URL parameters, obtain a verified name/email from Novi, and upgrade Aether permissions for that session when appropriate.
+
+- **All-or-nothing policy:** If the Novi API key is not configured or the verification call fails, the Novi-based access path is denied. The layout explicitly prevents child routes from rendering while verification is in-flight to avoid flashing "Access Denied".
+
+### Verification Flow (implementation)
+
+1. The IDAA iframe loads Aether pages with a `?uuid=<uuid>&iframe=true` param.
+2. When the `uuid` param is present the IDAA layout performs an authenticated GET against the Novi customers endpoint:
+
+```js
+// simplified
+fetch(`${api_root_url}/customers/${uuid}`, {
+  method: 'GET',
+  headers: { 'Authorization': `Basic ${api_key}` }
+})
+```
+
+3. On success the layout uses the returned JSON to build a display name and normalized email, then writes these values to the IDAA store and marks verification success.
+
+4. The layout then determines a target Novi permission level (`authenticated`, `trusted`, `administrator`) by checking configured UUID lists (`novi_trusted_li`, `novi_admin_li`) and upgrades the Aether session only if the Novi-derived level is higher than the current global level.
+
+5. The layout also resets a few IDAA-specific query defaults (BB filters, etc.) to safe values after verification.
+
+### Key `site_cfg_json` fields and where they are used
+
+- **`novi_idaa_api_key`**: Base64-encoded Basic auth token provided by Novi. Required for the verification request. Accessed in code as `$ae_loc.site_cfg_json.novi_idaa_api_key` and passed in the `Authorization: Basic <key>` header. If missing, Novi-based access is denied.
+
+- **`novi_api_root_url`**: Optional API root (defaults to `https://www.idaa.org/api`). Used to form the verification URL.
+
+- **`novi_admin_li`**: Array of UUIDs treated as administrators for IDAA. Merged into `$idaa_loc.novi_admin_li` during layout initialization and used to set `administrator` level.
+
+- **`novi_trusted_li`**: Array of UUIDs treated as trusted members. Merged into `$idaa_loc.novi_trusted_li` and used to set `trusted` level.
+
+- **`novi_jitsi_mod_li` / `novi_idaa_group_guid_li`**: Lists used to map Jitsi moderator privileges and group GUIDs (where applicable).
+
+- **`novi_bb_base_url`**: (optional) Base URL used to build links for Bulletin Board notification emails.
+
+- **Email config values** (`noreply_email`, `noreply_name`, `admin_email`, `admin_name`): used by functions that send notification emails (BB posts, comments, recovery meetings).
+
+### Stores / runtime fields set by verification
+
+- `$idaa_loc.novi_uuid` — the verified UUID
+- `$idaa_loc.novi_email` — verified email (normalized)
+- `$idaa_loc.novi_full_name` — display name built from Novi fields
+- `$idaa_loc.novi_verified` — boolean flag indicating successful verification
+- `$idaa_loc.novi_admin_li`, `$idaa_loc.novi_trusted_li` — merged lists from site config
+
+These fields are read elsewhere in the IDAA UI to enable flows for verified users (for example: creating meetings, posting comments, or auto-populating contact info in notifications).
+
+### Where in the codebase this runs (examples)
+
+- The Novak UUID verification and permission-upgrade logic is implemented in the IDAA layout: [src/routes/idaa/(idaa)/+layout.svelte](src/routes/idaa/(idaa)/+layout.svelte).
+- UI elements that permit actions for verified Novi users or trusted members check these values. Example: the "Create New Meeting" button allows creation when either the session has `trusted_access` or a `novi_uuid` is present — see [src/routes/idaa/(idaa)/recovery_meetings/ae_idaa_comp__event_obj_qry.svelte](src/routes/idaa/(idaa)/recovery_meetings/ae_idaa_comp__event_obj_qry.svelte).
+
+### Security notes and operational guidance
+
+- The previous implementation leaked `email` and `full_name` via URL params — this was removed because those values are unauthenticated and can be spoofed.
+- The API key is sensitive — keep it only in site config and do not expose it in client-side code or public repositories.
+- The verification request uses Basic auth with the provided `novi_idaa_api_key` (already Base64-encoded by Novi) — treat the token like a password.
+- If Novi changes their customer API shape, update the layout parsing (display name/email normalization) and this documentation.
+
+If you need a compact checklist for re-creating this flow in another integration, ask and I will add a small runbook with exact request/response field mappings.
+
+### Permission Levels (Ascending)
+| Level | Condition | Access |
+|---|---|---|
+| Anonymous | No UUID, unrecognized UUID, or verification failure | No access |
+| Authenticated | UUID verified against Novi API | View own content, limited actions |
+| Trusted | Verified UUID in `novi_trusted_li` | Full member access to all IDAA content |
+| Administrator | Verified UUID in `novi_admin_li` | Full access + edit/manage |
+
+`novi_trusted_li` and `novi_admin_li` are managed in Aether site config (not in Novi directly).
+
+### Permission Upgrade Rule
+```
+// RULE: Only UPGRADE to Novi-based permissions, NEVER downgrade.
+// If a user has a higher global Aether role (site manager, super),
+// their global role is preserved and not overwritten by Novi auth.
+```
+
+This ensures that OSIT staff with `super` or `manager` roles retain full access regardless of Novi UUID status.
+
+### Non-Novi Sign-in Paths (unaffected)
+- **User/Pass or Auth Link:** No `uuid` in URL → layout Novi block does not run
+- **Shared Passcode:** No `uuid` in URL → layout Novi block does not run
+
+### Access Gate (`(idaa)/+layout.svelte`)
+The inner layout blocks ALL rendering if the user is not authorized:
+- `novi_verifying = true` → "Verifying identity..." spinner
+- Verification failed or no UUID → "Access Denied" error page
+- Access check runs before any child routes render
+
+---
+
+## Module 1: Archives
+
+**Route:** `/idaa/archives/`
+**Library:** `src/lib/ae_archives/`
+**Types:** `ae_Archive`, `ae_ArchiveContent`
+
+The Archives module stores IDAA historical content — meeting records, conference proceedings, historical documents, and media.
+
+### Object Types
+
+**Archive (Container)**
+- Represents a collection (e.g., "2019 Conference Proceedings")
+- Key fields: `name`, `description`, `original_datetime`, `original_location`, `archive_on`
+- `archive_on` — date when this archive collection is auto-hidden (scheduled visibility control)
+
+**ArchiveContent (Items)**
+- Individual items within an archive
+- Supports multiple content types: `'text'`, `'file'`, `'url'`, `'video'`
+- Key fields: `archive_content_type`, `content_html`, `url`, `hosted_file_id`, `duration`
+- Video/audio content has a dedicated media player component
+
+### Database (Dexie)
+```
+db_archives.archive    — Archive containers
+db_archives.content    — Archive content items (linked by archive_id)
+```
+
+### Demo / Test IDs
+- Archive: `nAA2bHLv8RK` (id: 1) "One Sky Test Archive"
+- Archive Content: `UjKzrk-GKu5` (id: 1) "Hosted File Test"
+
+---
+
+## Module 2: Bulletin Board (BB)
+
+**Route:** `/idaa/bb/`
+**Library:** `src/lib/ae_posts/`
+**Types:** `ae_Post`, `ae_PostComment`
+
+The BB is the IDAA members-only community discussion board. It is the **most sensitive module** — public exposure must never occur.
+
+### Object Types
+
+**Post (Thread)**
+- Key fields: `title`, `content`, `anonymous`, `full_name`, `email`
+- `archive_on` — date after which the post is hidden from all views
+- `archive` — boolean flag for immediate archival
+- `enable_comments` — controls whether replies are allowed
+- `post_comment_count` — cached count of replies
+
+**PostComment (Reply)**
+- Key fields: `post_id`, `content`, `anonymous`, `full_name`, `email`
+- Replies inherit the parent post's visibility rules
+
+### Post Visibility / Archival Filter
+Posts with `archive_on` set to a past date are **automatically hidden** from all queries. This is enforced at the component level via a LiveQuery filter:
+
+```typescript
+// This filter is REQUIRED — do not remove it
+filter((x) => !x.archive_on || archiveDate > now)
+```
+
+Archived posts are soft-deleted — they remain in the database for audit purposes but are not shown to members.
+
+Most recent first (sorted `updated_on DESC`).
+
+### Database (Dexie)
+```
+db_posts.post      — Posts (threads)
+db_posts.comment   — Post comments (linked by post_id)
+```
+
+---
+
+## Module 3: Recovery Meetings
+
+**Route:** `/idaa/recovery_meetings/`
+**Library:** `src/lib/ae_events/` (standard Events module, repurposed)
+**Types:** `ae_Event` (standard event type, filtered for meeting context)
+
+Recovery Meetings reuses the Aether Events object to represent AA recovery meetings. These are NOT conferences — they are regular ongoing meetings (weekly, monthly, etc.) available to IDAA members.
+
+### Search Filters
+Members can filter meetings by:
+- **Fulltext search** — name, location
+- **Physical** — in-person meetings
+- **Virtual** — online meetings (Zoom, Google Meet, etc.)
+- **Meeting type** — specific meeting format categories
+
+Search is debounced (250ms) and uses the standard Aether SWR pattern.
+
+### Edit Form — Sections and Key Fields
+
+The edit form (`ae_idaa_comp__event_obj_id_edit.svelte`) is organized into these sections.
+All fields map directly to the `ae_Event` object; none are IDAA-specific custom fields.
+
+| Section | Key Fields |
+| --- | --- |
+| **General Information** | `name` (required), `description` (TipTap rich text), `type` (IDAA / Caduceus / Family Recovery) |
+| **How to Attend** | `physical` (bool), `virtual` (bool) toggles; conditionally shows: |
+| → Physical | `location_address_json` (name, line_1–3, city, state, postal, country), `location_text` (TipTap) |
+| → Virtual | Platform toggle: **Zoom** (`attend_url_code` meeting ID, `attend_url_passcode`, `attend_json.zoom.passcode_enc`, `attend_json.zoom.domain`, `attend_json.zoom.full_url`), **Jitsi** (`attend_json.jitsi.*`), **Other** (`attend_url`, `attend_url_passcode`, `attend_phone`, `attend_phone_passcode`) |
+| → Both | `attend_text` (TipTap — additional attendance instructions) |
+| **Schedule** | `recurring_pattern` (weekly/every other week/monthly/other), `weekday_*` (Sun–Sat booleans), `timezone`, `recurring_start_time`, `recurring_end_time`, `recurring_text` (optional TipTap, auto-generated with `*gen*` prefix if blank) |
+| **Contacts** | `external_person_id` (Novi UUID link), `contact_li_json[0]` (Contact 1: name, email, phone_mobile, phone_home, phone_office — name/email locked to Novi user by default), `contact_li_json[1]` (Contact 2: same fields, optional) |
+| **Admin Options** | `status`, `hide`, `priority`, `sort`, `group`, `enable`, `notes` (TipTap) — **trusted_access only** |
+
+**Rich text fields** all use `AE_Comp_Editor_TipTap` with separate `*_new_html` state variables
+(not bound to `$idaa_slct.event_obj` directly) to track change state for the save-button logic.
+
+**Zoom URL auto-generation:** Triggered by `$idaa_trig = 'update_zoom_full_url'`. An `$effect`
+reconstructs `attend_json.zoom.full_url` from domain + meeting_id + passcode_enc whenever
+the Meeting ID, Passcode, Encrypted Passcode, or Domain fields change.
+
+**Recurring text auto-generation:** If `recurring_text` is blank or contains the `*gen*` prefix,
+the submit handler generates a human-readable string (e.g., `*gen* weekly: Monday, Wednesday at 7:00 PM America/Chicago`).
+Members can opt into a custom text via "Add More Details?" (admin/trusted only).
+
+**Contact 1 lock:** Contact 1 name and email default to the logged-in Novi member's identity
+(`$idaa_loc.novi_full_name`, `$idaa_loc.novi_email`). They are `readonly` unless the user
+explicitly unlocks them via confirm dialog (or has administrator access).
+
+### Jitsi Integration
+Some virtual meetings are hosted via Jitsi. Members with a Jitsi moderator UUID (`novi_jitsi_mod_li`) have elevated permissions in video sessions.
+
+### Edit Form — Implementation Notes (v2)
+
+- The v2 edit form uses a `<style>` block with `@apply`. Tailwind v4 requires
+  `@reference "../../../../app.css";` at the top of any component `<style>` block that uses `@apply`.
+- The country subdivision lookup list (`lu_country_subdivision_list`) contains duplicate entries —
+  specifically Puerto Rico (`PR`) has two rows with `code = '-'`. The `{#each}` key must use
+  the array index (`i`) rather than `sub.code` to avoid a Svelte `each_key_duplicate` error.
+  The duplicate entries are a **backend data quality issue** that should be cleaned up in the DB.
+
+### Demo / Test IDs
+No dedicated IDAA recovery meeting demo records — uses the standard Event demo record for dev:
+- Event: `pjrcghqwert` (id: 1) "Demo One Sky IT Conference"
+
+---
+
+## Module 4: Video Conferences (Jitsi)
+
+**Route:** `/idaa/video_conferences/`
+
+Embeds Jitsi video conferences directly in the IDAA module. Separate from Recovery Meetings — this is for IDAA board meetings or special sessions, not regular AA meetings.
+
+Moderation permissions are controlled by `novi_jitsi_mod_li` in the IDAA store.
+
+---
+
+## State Management (`ae_idaa_stores.ts`)
+
+Four stores manage all IDAA state:
+
+### `idaa_loc` (localStorage — persistent across sessions)
+Stores Novi auth context and per-submodule query settings:
+```typescript
+{
+  novi_uuid: string | null          // Member UUID (set on verification success)
+  novi_email: string | null         // Verified email from Novi API
+  novi_full_name: string | null     // Verified name from Novi API
+  novi_verified: boolean            // true after successful Novi API verification
+  novi_admin_li: string[]           // Admin UUID list (from site config)
+  novi_trusted_li: string[]         // Trusted member UUID list
+  novi_jitsi_mod_li: string[]       // Jitsi moderator UUIDs
+
+  archives: { enabled, hidden, limit, offset, edit__archive_obj, edit__archive_content_obj }
+  bb: { enabled, hidden, limit, offset, edit__post_obj, edit__post_comment_obj }
+  recovery_meetings: { qry__fulltext_str, qry__physical, qry__virtual, qry__type, qry__limit, edit__event_obj }
+}
+```
+
+### `idaa_sess` (sessionStorage — cleared on tab close)
+UI state per submodule:
+```typescript
+{
+  archives: { qry__status, show__modal_edit__archive_id, show__modal_view__archive_id, obj_changed }
+  bb: { qry__status, show__modal_edit__post_id, show__modal_view__post_id, obj_changed }
+  recovery_meetings: { qry__status, show__modal_edit, show__modal_view, attend_platform, obj_changed }
+}
+```
+
+### `idaa_slct` (sessionStorage — selection tracking)
+```typescript
+{
+  event_id: string | null
+  archive_id: string | null
+  archive_content_id: string | null
+  post_id: string | null
+  post_comment_id: string | null
+}
+```
+
+### `idaa_trig` / `idaa_prom`
+Trigger flags and promise tracking for async operations (standard Aether pattern).
+
+---
+
+## Iframe Integration
+
+The IDAA module is embedded in `idaa.org` via iframe. This requires:
+
+1. **Height sync** — The root layout posts `message` events to the parent frame for dynamic height adjustment (content length varies)
+2. **URL parameter auth** — Novi passes member context via query string on load
+3. **No standard navigation** — Members navigate within the iframe; Aether's nav chrome is hidden or minimal in this context
+
+### Novi UUID Verification Flow
+
+**Iframe HTML files** (in `static/`): Pass only `uuid` to the iframe src — no Novi API calls in the browser:
+```text
+idaa_novi_iframe_archives.html
+idaa_novi_iframe_bulletin_board.html
+idaa_novi_iframe_recovery_meetings.html
+idaa_novi_iframe_jitsi_meeting.html   ← reference pattern (unchanged)
+```
+
+**SvelteKit layout** (`(idaa)/+layout.svelte`): Calls `GET /customers/{uuid}` on the Novi API using the `novi_idaa_api_key` from `site_cfg_json`. Sets verified name/email in `$idaa_loc` and grants permissions. Shows a "Verifying identity..." spinner during the async call.
+
+**Jitsi page** (`video_conferences/+page.svelte`): Checks `$idaa_loc.novi_verified` in `fetch_novi_data()`. If the layout already verified the user, it reuses `$idaa_loc.novi_email` / `$idaa_loc.novi_full_name` and skips the duplicate member details API call. The group moderator check (`get_novi_group_moderators`) always runs — it is Jitsi-specific.
+
+### ⚠️ Iframe CSS Conflicts (Bootstrap v3)
+
+When `$ae_loc.iframe = true`, the root layout (`+layout.svelte`) injects two external stylesheets from Novi's CDN:
+
+```text
+https://assets-staging.noviams.com/novi-core-assets/css/fontawesome.css  — safe, icon-only
+https://assets-staging.noviams.com/novi-core-assets/css/c/idaa/idaa.css  — Bootstrap v3.4.1 ⚠️
+```
+
+`idaa.css` is a full **Bootstrap v3.4.1** bundle. It applies global styles to bare HTML elements
+(`input`, `select`, `textarea`, `h1–h6`) and commonly named classes (`.btn`, `.badge`, `.active`,
+`.text-*`, `.bg-*`). These will compete with Tailwind v4 + Skeleton UI.
+
+**Known consequences:**
+- Bare form elements (`<input>`, `<select>`) receive Bootstrap's height/padding resets on top of Tailwind
+- `.btn` class gets Bootstrap button colors, potentially overriding `preset-*` Skeleton classes
+- `<section>` and heading elements may get unexpected margins/padding from Bootstrap's typography reset
+- Class names `.field-input` and `.field-label` (used in the v2 edit form's scoped `<style>` block)
+  also exist in `idaa.css`'s date picker — Svelte's scoped attribute selector wins, but be aware
+
+**Mitigation:** The iframe CSS conflicts existed before v2 and are not new. The v2 form uses the
+same Skeleton/Tailwind component classes as the rest of the app. Avoid using bare `<section>`,
+`<article>`, or block-level HTML5 elements as style hooks; use `<div>` with explicit classes instead.
+
+---
+
+## Testing Requirements
+
+### Auth Gate Tests Come First
+**For every IDAA submodule, the first test written must be an authentication enforcement test.**
+
+```typescript
+// ✅ Required test pattern for each IDAA module
+test('Archives - unauthenticated user cannot access content', async ({ page }) => {
+    // Inject localStorage WITHOUT trusted_access
+    // Navigate to /idaa/archives/
+    // Assert: access denied message shown, no archive content visible
+});
+
+test('Archives - trusted member can access content', async ({ page }) => {
+    // Inject localStorage WITH trusted_access + novi_uuid
+    // Navigate to /idaa/archives/
+    // Assert: archive list renders
+});
+```
+
+### Privacy in Test Data
+- Never use real member data in test fixtures
+- Use canonical demo IDs from `tests/_helpers/env.ts` only
+- Test names should document the privacy rule being enforced, not just the behavior
+
+### Trusted Access State Injection
+Tests that need authenticated IDAA access must set `trusted_access: true` and `novi_uuid` in the injected `ae_loc` localStorage:
+```typescript
+// In addInitScript or env helper
+ae_loc.trusted_access = true;
+ae_loc.idaa_loc = { novi_uuid: 'test-uuid-value', ... };
+```
+
+### Current Test Coverage (as of 2026-02-26)
+| Module | State | Notes |
+|---|---|---|
+| Archives | ⚠️ Smoke only | `archive_content.test.ts` — no auth gate test |
+| Bulletin Board | ❌ None | Priority — most sensitive module |
+| Recovery Meetings | ❌ None | — |
+| Video Conferences | ❌ None | Jitsi complexity, lower priority |
+
+---
+
+## External Links (idaa.org)
+- Archives: `https://www.idaa.org/idaa-archives`
+- Bulletin Board: `https://www.idaa.org/idaa-bulletin-board`
+- Meetings: `https://www.idaa.org/idaa-meetings`
+
+---
+
+## Related Documentation
+- [AE API V3 for Frontend](./GUIDE__AE_API_V3_for_Frontend.md)
+- [Development Guide](./GUIDE__Development.md)
+- [Naming Conventions](./AE__Naming_Conventions.md)
+- [Playwright Test README](../tests/README.md)
+
+
+---
+
+## IDAA Novi Groups and Moderators
+IDAA Couples Meeting = "e9e162f0-3d03-4241-9682-340135ec3fb8"
+
+"Gregory X Boehm" "00ee764c-7559-496b-9d18-40d3e9092c0c"
+"Kee B. PARK" "24ab3297-bfce-473c-9311-4b31e3a8974f"
+"Laura Lander" "ac697456-61fe-4f7d-a8b8-d04866032320"
+"Nancy J Duff-Boehm" "5c7c09bc-4f23-432c-bfd9-87a66b548502"
+"Owen Lander" "9671a2c4-ff95-48c2-bcde-5c6eba95cded"
+"Susan Park" "4a9f94c5-d766-4808-ab76-117c9e43903a"
+
+"Student/Resident Meeting Moderators" "d76d2c00-962d-40f6-a2e8-ed9c85594d96"
+"Melissa Eve Valasky" "182d1db3-caa9-41bc-b04a-2facc6859aeb"
+"Steven L. Klein" "5724aad7-6d89-47e7-8943-966fd22911bd"
+
+---
+
+**Document Status:** ✅ Current
+**Last Verified:** 2026-03-09 — updated for Novi UUID verification upgrade

documentation/GEMINI__Svelte_and_Me.md

@@ -0,0 +1,99 @@
+# Gemini's Svelte 5 Learnings and Best Practices
+
+This document outlines key insights and strategies developed during Svelte 5 (with runes mode) refactoring and bug-fixing tasks. It specifically addresses common pitfalls and effective patterns for an AI agent working with Svelte.
+
+## 1. Async/Await in Svelte (Runes Mode)
+
+The most frequent source of errors has been related to asynchronous operations and the `await` keyword.
+
+- **Rule:** Any function or block containing `await` _must_ be explicitly marked `async`.
+    - This applies to callbacks within promise chains (`.then()`, `.catch()`, `.finally()`), DOM event handlers (`onclick`, `onchange`), and Svelte lifecycle functions (`onMount`).
+    - **Common Error:** `Cannot use keyword 'await' outside an async function`. This happens when `await` is used in a function/block that is not `async`.
+    - **Solution:** Ensure the surrounding function or the callback itself is declared `async`.
+        - `somePromise.finally(async () => { await someAsyncOperation(); });`
+        - `onclick={async () => { await someAsyncOperation(); }}`
+        - `onMount(async () => { await someAsyncOperation(); });`
+
+- **Asynchronous Navigation (`goto`):**
+    - The correct pattern for asynchronous navigation using `goto` in Svelte 5 is `await goto(await resolve(path), options);`.
+    - `import { resolve } from '$app/paths';` is crucial when using `resolve()`. A missing import will lead to `no-undef` errors for `resolve`.
+    - `resolve(path)` is crucial to ensure the path is correctly resolved before navigation, especially in universal applications.
+    - The `await` before `goto` is necessary if subsequent code depends on the navigation completing or if `invalidateAll` is used.
+- **Clearing Stale Caches:** When encountering confusing linting or build errors that don't seem to match the current code, especially after significant refactorings or dependency changes, always try running `npm run clean` to clear stale build artifacts and then re-lint/re-build.
+
+- **Refactoring Promise Chains:**
+    - When converting `.then().catch().finally()` chains to `async/await` structure, encapsulate the asynchronous operation within a `try...catch...finally` block.
+    - **Incorrect:**
+        ```javascript
+        someAsyncFunc()
+            .then(() => { await anotherAsyncFunc(); }) // ERROR: .then() callback is not async
+            .catch(() => { /* ... */ })
+            .finally(() => { await lastAsyncFunc(); }); // ERROR: .finally() callback is not async
+        ```
+    - **Correct:**
+        ```javascript
+        async () => {
+            try {
+                const result = await someAsyncFunc();
+                await anotherAsyncFunc(result);
+            } catch (error) {
+                console.error(error);
+            } finally {
+                await lastAsyncFunc();
+            }
+        };
+        ```
+    - **Note:** If the entire handler (e.g., `onclick`) is already `async`, you can `await` the promise directly within it.
+
+## 2. Reactive Declarations & Scoping
+
+Svelte 5's runes mode introduces new ways of managing reactivity, and understanding variable lifecycles is key.
+
+- **`$state` for Reactive Variables:**
+    - Variables that are expected to trigger re-renders when their values change, or whose changes need to be observed, should be declared with `$state`.
+    - **Common Error:** Warnings like "This reference only captures the initial value of `data`. Did you mean to reference it inside a closure instead?" or "Variable `x` is updated, but is not declared with `$state(...)`."
+    - **Solution:** Declare the variable using `$state(initialValue)`.
+    - **Context for `data` prop:** When a `data` prop (from a SvelteKit `load` function) is accessed outside of reactive declarations (like `$effect` or event handlers), Svelte might warn that it only captures its initial value. To ensure reactivity or to correctly process it, use it within `$effect` or derive a `$state` variable from it.
+
+- **Function Scoping and Redeclaration:**
+    - **Common Error:** `Identifier 'function_name' has already been declared`. This occurs when functions with the same name are defined in overlapping scopes.
+    - **Solution:**
+        - If a function is only needed within a specific block (e.g., an `onMount` callback), define it _inside_ that block to limit its scope.
+        - If a function is truly global and needs to be accessible from templates and multiple `onMount` blocks, define it once outside of any `onMount` and ensure it doesn't conflict with other definitions.
+        - Be mindful of helper functions that might be implicitly pulled into global scope by the Svelte compiler if not correctly encapsulated.
+
+## 3. `replace` Tool Usage Strategy (Critical for AI)
+
+My efficiency heavily relies on the `replace` tool, and precision is paramount.
+
+- **Exact `old_string` Matching:**
+    - The `old_string` parameter _must_ precisely match the target text in the file, including all whitespace, indentation, newlines, and comments. Even a single character difference will cause the tool to fail with "0 occurrences found".
+    - For multi-line replacements, always copy the exact block from the `read_file` output.
+- **Contextual Specificity:**
+    - Avoid generic `old_string` patterns (e.g., `onclick={() => {`) if there are many such occurrences in a file. Instead, expand the `old_string` to include enough surrounding unique context (e.g., the entire button element or parent `div`) to ensure it matches only one instance (`expected_replacements: 1`).
+- **Iterative Refinement:**
+    - For complex refactorings involving multiple changes in a file, perform changes in small, atomic steps.
+    - **Always `read_file` before each `replace` operation.** This ensures the `old_string` is based on the absolute latest content of the file, preventing mismatches due to previous modifications or unexpected formatting.
+    - After each `replace` operation, immediately run `npm run build` (or `npm run lint`) to validate the change and catch new errors early. This is crucial for catching cascading issues introduced by partial refactorings.
+
+## 4. Error Debugging Workflow
+
+- **Prioritize Compiler/Build Errors:** These are blocking issues that prevent the application from running. Address them first.
+- **Analyze Error Messages:** Read the full error message carefully, including line numbers, and look for keywords (e.g., `await`, `async`, `declared`, `undefined`).
+- **Consult Svelte Documentation:** The Svelte compiler often provides helpful links (`https://svelte.dev/e/js_parse_error`) which should be a first point of reference if the error is unfamiliar.
+- **Re-read File Content:** If a `replace` operation fails or produces unexpected results, immediately use `read_file` to verify the exact state of the file before attempting another change.
+
+## 5. Safe Property Binding (Preventing `props_invalid_value`)
+
+Svelte 5 enforces strict contracts for bound properties (`bind:prop`). If a component expects a property to have a fallback/default value, you cannot bind `undefined` to it.
+
+- **The Error:** `Uncaught Svelte error: props_invalid_value. Cannot do bind:prop={undefined} when prop has a fallback value`.
+- **The Cause:** Attempting to bind a variable that is currently `undefined` to a component prop that has a default value (e.g., `let { prop = false } = $props()`). Svelte cannot determine whether to use the bound `undefined` or the component's internal default, so it throws an error.
+- **The Fix:** **Always initialize bound variables.**
+    - **Initialization:** Ensure the variable you are binding to is initialized to a valid value (matching the prop's type) *before* the component mounts.
+        - Example: `let myVar = $state(false);` instead of `let myVar = $state();`.
+    - **Data Fetching:** If the data comes from an asynchronous source (API, DB), ensure the object properties have default values *immediately* upon assignment, even before the data is fully populated.
+        - **Good:** `$slct.obj = { ...apiResult, myBoundProp: apiResult.myBoundProp ?? false };`
+        - **Bad:** `$slct.obj = apiResult;` (if `apiResult.myBoundProp` is missing/undefined).
+    - **Updates/resets:** When resetting or updating the object, explicitly re-initialize the bound properties.
+        - `obj = {};` -> `obj = { myBoundProp: false };`

documentation/GUIDE__AE_API_V3_for_Frontend.md

@@ -0,0 +1,482 @@
+# Aether API V3 Frontend Integration Guide (Svelte/TypeScript)
+
+This guide defines the standards for interacting with the **Aether API V3 CRUD** and **Action** endpoints.
+
+---
+
+## 1. Authentication and Security (Mandatory)
+
+V3 architecture enforces strict **Multi-Tenant Isolation** and **Machine Authorization**. Requests require two levels of validation.
+
+### A. The "Entry Ticket" (API Key)
+**Mandatory for all requests.** identifies the application or client.
+*   **Header:** `x-aether-api-key: <your_app_key>`
+*   **Status Code:** `403 Forbidden` if missing or invalid.
+
+### B. The "Visa" (Account Context)
+Required for any non-public data (Journals, Badges, Users, etc.).
+1.  **Standard Access**: Provide the `x-account-id` (the random string ID).
+    *   **Header:** `x-account-id: <account_id>`
+2.  **Administrative Bypass**: For authorized scripts needing global access.
+    *   **Header:** `x-no-account-id: bypass`
+3.  **Token Access**: Provide a **JWT** in the query string.
+    *   **Query Param:** `?jwt=<token>`
+
+> [!CAUTION]
+> **UNSUPPORTED HEADERS:** The header `x-aether-api-token` is **NOT recognized** by the V3 API. If you send it, the backend will treat you as a guest and block access to private data.
+
+---
+
+## 2. Bootstrapping (The FQDN Handshake)
+
+When the frontend first loads and doesn't know the `account_id`, it performs a "handshake" using its domain name.
+
+**Endpoint:** `POST /v3/crud/site_domain/search`
+**Body:**
+```json
+{
+  "and": [
+    { "field": "fqdn", "op": "eq", "value": "demo.oneskyit.com" }
+  ]
+}
+```
+**Results:**
+*   Returns 200 + a list containing the `account_id` (random string ID) and `site_id` (random string ID).
+*   ** デザイン Choice:** If the domain is not found, it returns **200 OK with an empty list `[]`**. It is NOT a 404.
+
+---
+
+## 3. Standard CRUD Patterns
+
+### A. GET by ID
+Used when the ID is known.
+*   **Endpoint:** `GET /v3/crud/{obj_type}/{id}`
+*   **Security:** Returns 403 if the record doesn't belong to your `x-account-id`.
+
+### B. POST Search
+The primary way to retrieve data.
+*   **Endpoint:** `POST /v3/crud/{obj_type}/search`
+*   **Security:** Automatically filters results to only show records belonging to your `x-account-id`. If no account context is provided, it will return **0 records** for private objects.
+
+### C. POST Create / PATCH Update
+Modify data in the system.
+*   **Endpoints:**
+    *   `POST /v3/crud/{obj_type}/`
+    *   `PATCH /v3/crud/{obj_type}/{id}`
+*   **Strict Mode (Default):** The API validates your payload against the Pydantic model. If you send fields that do not exist in the model, the database might return a 400 "Unknown column" error.
+*   **Permissive Mode (Header):** To allow the frontend to send "extra" fields (like local UI state) without causing errors, use the following header:
+    *   **Header:** `x-ae-ignore-extra-fields: true`
+    *   **Behavior:** When set to `true`, the backend will automatically strip any fields from the payload that are not defined in the object's model before attempting to save to the database.
+
+### D. ID Fields in Responses (Vision ID Convention)
+
+> [!IMPORTANT]
+> **V3 responses always use random string IDs — never database integers.**
+
+All V3 responses — `POST` create, `GET` single, `GET` list, search, and `PATCH` update — contain:
+
+| Field | Type | Use |
+| :--- | :--- | :--- |
+| `{obj_type}_id` | `string` | **Primary public ID.** Use this for subsequent `PATCH` calls and UI routing. |
+| `{obj_type}_id_random` | `string` | Legacy alias. Same value as `{obj_type}_id`. Present for backward compat only. |
+
+**Example — create then immediately PATCH:**
+```ts
+const created = await postArchiveContent(archiveId, payload);
+const newId = created.data.archive_content_id; // random string e.g. "xK9mP3qRtL2"
+
+// Use it directly in the PATCH URL — no lookup needed
+await patchArchiveContent(newId, { name: 'Updated Name' });
+// PATCH /v3/crud/archive/{archive_id}/archive_content/{newId}
+```
+
+> **Note on `_id_random` suffix:** The `{obj_type}_id_random` field is a legacy artifact from the pre-Vision model. Once you confirm `{obj_type}_id` is a random string (length 11–22), you do not need `_id_random` as a fallback. New code should only read `{obj_type}_id`.
+
+---
+
+## 4. V3 Uniform Lookup System
+
+The V3 Lookup system provides a hierarchical, deduplicated interface for standardized reference tables (Countries, Timezones, etc.). It supports global defaults, account-level overrides, and object-level overrides, with optional site-specific whitelisting.
+
+### How the hierarchy works
+
+Each lookup table (`lu_v3_country`, `lu_v3_time_zone`, etc.) can hold multiple rows for the same logical item at different scopes:
+
+| Scope | `account_id` | `for_type` / `for_id` | Wins over |
+|---|---|---|---|
+| Global default | `NULL` | `NULL` / `NULL` | nothing |
+| Account override | set | `NULL` / `NULL` | Global default |
+| Object override | set | set | Account override + Global default |
+
+The API uses `ROW_NUMBER() PARTITION BY group` to collapse all rows for the same item down to the single highest-priority winner before returning results. **`group` is the identity key** — it is what makes two rows "the same item competing for priority."
+
+> [!IMPORTANT]
+> **The `group` field is not a display label.** It is the deduplication key. Each lookup type uses a different natural key for `group`:
+>
+> | Lookup type | `group` value | Example |
+> |---|---|---|
+> | `country` | ISO alpha-2 code | `"US"`, `"CA"`, `"GB"` |
+> | `country_subdivision` | subdivision code | `"US-NY"`, `"CA-ON"` |
+> | `time_zone` | IANA timezone name | `"America/New_York"`, `"US/Eastern"` |
+>
+> For `time_zone`, `group` and `name` must always be identical — there is no concept of "override all US timezones as a group." Each timezone is its own identity.
+
+### A. List Lookups
+
+Retrieve the deduplicated, ranked list for a lookup type.
+
+*   **Endpoint:** `GET /v3/lookup/{lu_type}/list`
+*   **Available Types:** `country`, `country_subdivision`, `time_zone`
+*   **Parameters:**
+    *   `site_id` (Optional): Random ID of the site — applies a **Whitelist Policy** (see §C).
+    *   `only_priority` (Optional): `true` returns only `priority=1` items (e.g., common time zones).
+    *   `for_type` / `for_id` (Optional): Object context — activates object-level override matching.
+    *   `include_disabled` (Optional): `true` includes shadowed/disabled records (useful for admin views).
+
+**Frontend keying:** Always key Svelte `{#each}` blocks on `group`, not `id` or `name`. `group` is guaranteed unique in the response. Keying on `id` will break if an account override wins (different `id`, same logical item).
+
+### B. Resolve Identity
+
+Resolves a string to a single lookup record.
+
+*   **Endpoint:** `GET /v3/lookup/{lu_type}/resolve?q=VALUE`
+*   **Usage:** Use when you have an external code (e.g., ISO `"US"`) and need the full Aether record. Scans `name`, `group`, and other identity fields.
+
+### C. Site Whitelist Policy
+
+To restrict which lookup items appear for a specific site, add a `lookup_policy` to `site.cfg_json`:
+
+```json
+{
+  "lookup_policy": {
+    "country": ["US", "CA", "GB"],
+    "time_zone": ["America/New_York", "US/Eastern"]
+  }
+}
+```
+
+> **Whitelist values must match the `group` field** — i.e., the natural key for that type (ISO code for country, IANA name for time zone). Using a display name will silently return no results for that item.
+
+### D. Adding and managing client overrides
+
+When a client needs a customized label or wants to hide/reorder lookup items, create override records rather than modifying global defaults.
+
+**Rules:**
+1. **Never modify global default rows** (`account_id = NULL`). Those are shared across all accounts. Any change there affects every client.
+2. **Set `group` to the exact same value as the global default row** for the item you are overriding. If `group` doesn't match, the override creates a new item instead of replacing the existing one.
+3. **Set `account_id`** to the client's account ID. Leave `for_type` / `for_id` null unless the override is specific to a single object (e.g., one site).
+
+**Example — rename "US/Eastern" for one account:**
+
+```sql
+INSERT INTO lu_v3_time_zone
+  (account_id, name, name_override, `group`, enable, priority, sort)
+VALUES
+  (42, 'US/Eastern', 'Eastern Time (Client Label)', 'US/Eastern', 1, 1, 50);
+```
+
+The `name_override` field is the display label the frontend should prefer when set. `group = 'US/Eastern'` ensures this row competes with — and wins over — the global default in the `PARTITION BY group` deduplication.
+
+**To disable an item for one account** (hide it from their dropdowns):
+
+```sql
+INSERT INTO lu_v3_time_zone
+  (account_id, name, `group`, enable)
+VALUES
+  (42, 'US/Samoa', 'US/Samoa', 0);
+```
+
+Setting `enable = 0` on an account-scoped row shadows the global default for that account only.
+
+**To remove a client override** (revert to global default):
+
+Simply delete the row where `account_id = <client>` and `group = '<item>'`. The global default row is unaffected and immediately resumes winning.
+
+### E. Adding new global lookup items
+
+When seeding new lookup data (e.g., adding timezones in bulk):
+
+1. Set `group = name` for every row (for `time_zone`). This is a hard invariant — if `group` is set to a regional label like `"United States"` instead of the timezone name, the entire group collapses to a single winner and all but one entry disappear from the API response.
+2. Set `account_id = NULL` and `for_type = NULL` / `for_id = NULL` for global defaults.
+3. After seeding, verify with:
+   ```sql
+   -- Should return 0 rows; any result means multiple items will collapse into one
+   SELECT `group`, COUNT(*) AS cnt
+   FROM lu_v3_time_zone
+   WHERE account_id IS NULL
+   GROUP BY `group`
+   HAVING cnt > 1;
+   ```
+
+---
+
+## 5. Event File Data Retrieval (Hosted Files)
+
+Every Event File (`event_file`) **must** have a linked Hosted File (`hosted_file`). The Hosted File itself is a metadata record for binary content (files), which is accessed via separate Action endpoints (e.g., `/v3/action/hosted_file/download`). This API endpoint provides metadata about the associated hosted file. To retrieve this additional metadata:
+
+*   **Endpoint:** `GET /v3/crud/event_file/{event_file_id}`
+*   **Query Parameter:** Add `inc_hosted_file=true`
+    *   Example: `/v3/crud/event_file/<event_file_id>?inc_hosted_file=true`
+
+**Response Impact:**
+
+1.  **Top-Level Convenience Fields:** The response will include top-level fields for commonly needed hosted file data. These are populated directly from the SQL view via JOINs.
+    *   `hosted_file_hash_sha256` (string)
+    *   `hosted_file_subdirectory_path` (string)
+    *   `hosted_file_content_type` (string)
+    *   `hosted_file_size` (string - in bytes)
+2.  **Nested Hosted File Object:** A full `hosted_file` object will be nested under the `hosted_file` key. This object (`Hosted_File_Base` model) will contain all its standard fields, including `id` (random string ID), `hash_sha256`, `content_type`, `size`, etc.
+
+---
+
+## 6. Hosted File Actions: Convert & Clip (Frontend Notes)
+
+These helper endpoints let the frontend request small server-side transformations without uploading new blobs. They return a newly-created `hosted_file` metadata object on success.
+
+- **Convert (PDF → Image)**
+  - Method: `GET`
+  - Path: `/v3/action/hosted_file/{hosted_file_id}/convert_file`
+  - Required query params: `link_to_type`, `link_to_id`
+  - Optional query params: `filename_no_ext` (defaults to `automated_hosted_file_conversion`), `to_type` (defaults to `webp`)
+  - Auth: standard V3 headers (`x-aether-api-key`, `x-account-id` / `x-no-account-id` / `?jwt=`)
+  - Behavior: converts the first page of a PDF to `webp` or `png`, saves a new `hosted_file`, and returns its metadata. Returns 400 on failure.
+
+- **Clip Video**
+  - Method: `GET`
+  - Path: `/v3/action/hosted_file/{hosted_file_id}/clip_video`
+  - Required query params: `link_to_type`, `link_to_id`, `start_time`, `end_time` (format `HH:MM:SS`)
+  - Optional query params: `filename_no_ext` (defaults to `automated_hosted_file_clip_video`), `reencode` (bool), `scale_down` (bool)
+  - Auth: standard V3 headers
+  - Behavior: extracts a clip using `ffmpeg` and saves it as a new `hosted_file`. Defaults to stream-copying to be fast; set `reencode=true` to force H.264 or `scale_down=true` to resize. Returns 400 on failure.
+   - Behavior: extracts a clip using `ffmpeg` and saves it as a new `hosted_file`.
+     - Defaults to stream-copying to be fast; set `reencode=true` to force H.264 or `scale_down=true` to resize.
+     - For longer-running clips you can schedule the job in the background by adding `?background=true`. When scheduled the API returns `202 Accepted` and the clip runs asynchronously on the server; check the returned `hosted_file` record later via the standard V3 `hosted_file` endpoints.
+     - Returns 400 on synchronous failure; returns 202 when scheduled successfully.
+
+Frontend guidance:
+
+- Call these routes with the same `link_to_type` / `link_to_id` you plan to associate the resulting hosted_file with — the server resolves random IDs for you.
+- After a successful response, use the V3 `hosted_file` action endpoints (download/delete) to manage or retrieve the new file.
+- These endpoints run synchronously and can take time for large inputs; for heavy or batch workloads use a queued job pattern instead.
+ - These endpoints may take time for large inputs. Prefer using `?background=true` to schedule work and receive a `202 Accepted` response for async processing. For heavy or batch workloads use a queued job pattern instead.
+
+---
+
+## 7. User Actions (`/v3/action/user/`)
+
+Stateful user account operations that are not standard CRUD. All require `x-aether-api-key`.
+
+> [!IMPORTANT]
+> **Migration from legacy `/user/*` routes:** The table below maps each legacy endpoint to its V3 replacement. Run both in parallel during transition; remove legacy routes once traffic logs confirm they are quiet.
+>
+> | Legacy | V3 Replacement |
+> |---|---|
+> | `GET /user/authenticate` | `POST /v3/action/user/authenticate` |
+> | `POST /user/verify_password` | `POST /v3/action/user/verify_password` |
+> | `PATCH /user/{id}/change_password` | `POST /v3/action/user/{id}/change_password` |
+> | `GET /user/{id}/new_auth_key` | `GET /v3/action/user/{id}/new_auth_key` |
+> | `GET /user/{id}/email_auth_key_url` | `GET /v3/action/user/{id}/email_auth_key_url` |
+> | `GET /user/lookup` | `POST /v3/crud/user/search` |
+> | `GET /user/lookup_email` | `POST /v3/crud/user/search` |
+> | `GET /user/lookup_username` | `POST /v3/crud/user/search` |
+
+### A. Authenticate
+
+Authenticate a user by **username + password** or **user_id + auth_key**.
+
+- **Method:** `POST`
+- **Path:** `/v3/action/user/authenticate`
+- **Auth:** `x-aether-api-key` + `x-account-id` (scopes username lookups to the correct account)
+- **Security improvement:** Credentials are in the **POST body**, not query params — safe from URL logging.
+
+**Request body:**
+```json
+{ "username": "scott", "password": "MyPassword123!" }
+```
+or:
+```json
+{ "user_id": "<user_id_random>", "auth_key": "<one_time_key>", "valid_email": true }
+```
+
+- `valid_email` (optional `bool`): if `true`, marks `email_verified = true` on success.
+- `inc_user_role_list` (optional query param, default `false`): include role list in the returned user object.
+
+**Response on success:** Full user object (same shape as `GET /v3/crud/user/{id}`).
+
+**Errors:** `400` missing credentials, `403` wrong password or account disabled, `404` user not found.
+
+> **Auth key flow:** Auth keys are one-time-use — the key is cleared from the DB immediately on successful authentication. Request a new one via `GET /v3/action/user/{id}/new_auth_key`.
+
+---
+
+### B. Verify Password
+
+Check a user's current password without changing it.
+
+- **Method:** `POST`
+- **Path:** `/v3/action/user/verify_password`
+- **Auth:** `x-aether-api-key` + `x-account-id`
+
+**Request body:**
+```json
+{ "user_id": "<user_id_random>", "current_password": "MyPassword123!" }
+```
+or use `"username"` instead of `"user_id"` to look up by username within the account.
+
+**Response:** `data: true` on match. `403` on mismatch, `404` if user not found.
+
+---
+
+### C. Change Password
+
+Change a user's password. Optionally verify the current password first.
+
+- **Method:** `POST`
+- **Path:** `/v3/action/user/{user_id}/change_password`
+- **Auth:** `x-aether-api-key` + `x-account-id`
+
+**Request body:**
+```json
+{ "new_password": "NewPassword456!", "current_password": "MyPassword123!" }
+```
+
+- `new_password` is required (minimum 10 characters).
+- `current_password` is optional. If provided, it is verified before the change is applied. Omit it for admin-driven resets.
+
+**Response:** `data: true` on success. `403` if `current_password` provided but wrong.
+
+---
+
+### D. Generate New Auth Key
+
+Generate a fresh one-time-use auth key for the user and write it to the DB.
+
+- **Method:** `GET`
+- **Path:** `/v3/action/user/{user_id}/new_auth_key`
+- **Auth:** `x-aether-api-key` + `x-account-id`
+
+**Response:**
+```json
+{ "data": { "auth_key": "<new_key>" } }
+```
+
+The returned key can then be passed to `/authenticate` (as `auth_key`) or embedded in a login URL. The user record must have `allow_auth_key = true` for key-based authentication to work.
+
+---
+
+### E. Email Auth Key URL
+
+Generate a new auth key and email a one-time login link to the user's email address.
+
+- **Method:** `GET`
+- **Path:** `/v3/action/user/{user_id}/email_auth_key_url`
+- **Auth:** `x-aether-api-key` + `x-account-id`
+
+**Query Parameters:**
+
+| Parameter | Type | Default | Description |
+|---|---|---|---|
+| `root_url` | `string` | `null` | Base URL the login link is built from. |
+| `key_param_name` | `string` | `auth_key` | Query param name used for the auth key in the generated link. |
+
+**Response:** `data: true` on success (email sent). `500` if delivery failed (check account email config and that the user account is enabled with `allow_auth_key = true`).
+
+---
+
+### F. User Lookups via V3 CRUD Search
+
+The three legacy lookup routes (`lookup`, `lookup_email`, `lookup_username`) are replaced by standard V3 CRUD search:
+
+```typescript
+// Look up by user_id (Vision ID)
+POST /v3/crud/user/search
+{ "and": [{ "field": "id_random", "op": "eq", "value": "<user_id>" }] }
+
+// Look up by email
+POST /v3/crud/user/search
+{ "and": [{ "field": "email", "op": "eq", "value": "user@example.com" }] }
+
+// Look up by username
+POST /v3/crud/user/search
+{ "and": [{ "field": "username", "op": "eq", "value": "scott" }] }
+```
+
+Results are automatically scoped to the `x-account-id` provided in the request.
+
+---
+
+## 9. Event Exhibit Tracking Export (Leads Export)
+
+Allows an exhibitor to download all lead-capture records for their exhibit as a CSV or XLSX file.
+
+- **Method:** `GET`
+- **Path:** `/v3/action/event_exhibit/{exhibit_id}/tracking_export`
+- **Auth:** Standard V3 headers (`x-aether-api-key` + `x-account-id` or `?jwt=`)
+
+### Query Parameters
+
+| Parameter | Type | Default | Description |
+| :--- | :--- | :--- | :--- |
+| `file_type` | `CSV` \| `XLSX` | `CSV` | Output format. |
+| `return_file` | bool | `true` | `true` → file download response. `false` → JSON body with row data. |
+
+### Response
+
+- `Content-Type: text/csv` (CSV) or `application/vnd.openxmlformats-officedocument.spreadsheetml.sheet` (XLSX)
+- `Content-Disposition: attachment; filename="leads_export_<timestamp>.csv"`
+- If there are no tracking records, a valid file with headers only is returned (not a 404).
+
+### Columns Returned
+
+Fixed columns (always present), followed by any custom question columns flattened from `responses_json`:
+
+`event_exhibit_tracking_id`, `created_on`, `updated_on`, `event_exhibit_name`, `event_badge_full_name`, `event_badge_email`, `event_badge_professional_title`, `event_badge_affiliations`, `event_badge_location`, `event_badge_country`, `external_person_id`, `exhibitor_notes`, `priority`, `enable`, `hide`, `[custom question codes…]`
+
+> **Note:** `exhibitor_notes` has HTML tags stripped automatically for clean CSV output.
+
+### Permission Requirement — `leads_api_access`
+
+> [!IMPORTANT]
+> This endpoint enforces a **per-exhibit permission flag**. The `event_exhibit` record **must** have `leads_api_access = true` set in the database, OR the caller must have manager-level account access (JWT with `manager: true`).
+>
+> If `leads_api_access` is `false` or `null` on the exhibit, the API returns:
+> ```json
+> { "detail": "Access denied: leads API access is not enabled for this exhibit." }
+> ```
+> **Fix:** Enable the flag on the exhibit record via `PATCH /v3/crud/event_exhibit/{id}` with `{ "leads_api_access": true }`, or set it directly in the database/admin panel.
+
+#### Dual purpose of `leads_api_access`
+
+This flag serves two related but distinct roles:
+
+1. **3rd-party API access (original intent):** Controls whether external systems (exhibitor apps, badge-scanning devices, etc.) are permitted to push or pull lead data for this exhibit via the API.
+2. **UI export gate (new):** The frontend should read `leads_api_access` from the exhibit record and use it to show or hide the export/download button. Only render the button when the flag is `true` — this prevents users from triggering a request that will always 403.
+
+The recommended pattern is to fetch the exhibit record first and gate the UI on this field before the user ever sees the export option. The API enforces the same check server-side as a safety net.
+
+### Example Request
+
+```ts
+const resp = await fetch(
+  `https://dev-api.oneskyit.com/v3/action/event_exhibit/${exhibitId}/tracking_export?file_type=CSV&return_file=true`,
+  {
+    headers: {
+      'x-aether-api-key': API_KEY,
+      'x-account-id': accountId,
+    },
+  }
+);
+// resp is a file blob — use URL.createObjectURL() or trigger a download
+const blob = await resp.blob();
+const url = URL.createObjectURL(blob);
+```
+
+---
+
+## 10. Troubleshooting 403 Forbidden
+
+If you receive a 403 on a valid ID:
+1.  Verify `x-aether-api-key` is correct.
+2.  Ensure you are sending `x-account-id` and NOT `x-aether-api-token`.
+3.  Verify the record actually belongs to the account ID you are sending.
+4.  Check if the object is marked `public_read: True` in the registry. (Posts and Archive Content allow guest access; Journals and Badges do not).

documentation/GUIDE__AE_API_V3_for_Frontend_websockets.md

@@ -0,0 +1,201 @@
+# Aether API V3 WebSocket Integration Guide
+
+This guide explains how to implement real-time communication using the **Aether API V3 WebSocket** protocol. V3 introduces granular routing, strict message schemas, and improved multi-tenant isolation compared to previous versions.
+
+---
+
+## 1. Key Improvements (V2 vs V3)
+
+| Feature | WebSocket V2 (Legacy) | WebSocket V3 (Modern) |
+| :--- | :--- | :--- |
+| **URL Prefix** | `/ws/` or `/ws_redis/` | `/v3/ws/` |
+| **Routing** | **Global**: Every client receives every message. | **Granular**: Redis filters messages before sending. |
+| **Performance**| Low efficiency at scale (Python filtering). | High efficiency (Redis native pub/sub). |
+| **Schema** | Loose JSON objects. | Strict Pydantic-validated models. |
+| **Presence** | None / Manual. | Automatic Redis-backed presence sets. |
+
+---
+
+## 2. Connection Strategy
+
+### A. Endpoint URL
+The V3 WebSocket path requires both a `group_id` and a `client_id`. Both are treated as **opaque unique strings** by the backend — no specific format is enforced.
+
+```text
+wss://[api_domain]/v3/ws/group/{group_id}/client/{client_id}
+```
+
+**`group_id`** — identifies the shared channel (e.g., an event ID, a room name, or a Vision ID random string). All clients using the same `group_id` receive group-targeted messages together.
+
+**`client_id`** — uniquely identifies this specific connection. The backend accepts any unique string (UUID, timestamp, Vision ID — no format validation). The **recommended pattern** is a UUID v4 generated once and persisted in `localStorage` so the same identity is reused across page reloads and sessions on that browser.
+
+> Use `ws://` for local development and `wss://` in production (any HTTPS site). The Nginx config must include the Upgrade block — see Section 6.
+
+### B. Authentication
+Browsers **cannot** set custom HTTP headers on WebSocket connections. Pass the API Key and account context as **query parameters** instead:
+
+| Parameter | Purpose | Example |
+| :--- | :--- | :--- |
+| `api_key` | Entry Ticket (machine auth) | `?api_key=<your_app_key>` |
+| `jwt` | Visa (user / account context) | `&jwt=<token>` |
+| `x_account_id` | Alt account context | `&x_account_id=<account_id>` |
+
+**Full example URL:**
+```text
+wss://dev-api.oneskyit.com/v3/ws/group/{group_id}/client/{client_id}?api_key=<key>&jwt=<token>
+```
+
+### C. Connection Example (TypeScript)
+```ts
+// client_id: generated once, persisted in localStorage for stable identity across reloads
+if (!localStorage.getItem('controller_client_id')) {
+    localStorage.setItem('controller_client_id', crypto.randomUUID());
+}
+const client_id = localStorage.getItem('controller_client_id')!; // UUID v4, e.g. "550e8400-e29b-41d4-a716-446655440000"
+
+const group_id = "event_abc123"; // Any unique string identifying the shared channel
+const api_key = import.meta.env.VITE_API_KEY;
+const jwt = getSessionToken(); // your JWT helper
+
+const ws_url = `wss://dev-api.oneskyit.com/v3/ws/group/${group_id}/client/${client_id}?api_key=${api_key}&jwt=${jwt}`;
+
+const socket = new WebSocket(ws_url);
+
+socket.onopen = () => {
+    console.log("Connected to Aether WS V3");
+};
+```
+
+---
+
+## 3. The V3 Message Schema
+
+All messages sent and received over V3 must follow the standardized **WS_Message_V3** structure.
+
+### Message Fields
+| Field | Type | Required | Description |
+| :--- | :--- | :--- | :--- |
+| `version` | string | Auto | Always `"3"`. Set by server. |
+| `msg_type` | string | Yes | `'msg'`, `'cmd'`, `'heartbeat'`, `'presence'` |
+| `target` | string | Yes | `'direct'`, `'group'`, `'broadcast'`, `'echo'` |
+| `from_id` | string | Auto | **Server fills this from the URL path** — do not send. |
+| `to_id` | string | Conditional | Target Client ID. Required when `target` is `'direct'`. |
+| `group_id` | string | Auto | **Server fills this from the URL path** — do not send. |
+| `cmd` | string | No | Specific action keyword (e.g., `'RELOAD'`). |
+| `msg` | string | No | Human-readable text content. |
+| `payload` | object | No | Flexible key-value data. |
+| `sent_at` | string | Auto | ISO 8601 Timestamp. Set by server. |
+
+> **Frontend tip:** Only send `msg_type`, `target`, and whatever content fields you need (`msg`, `cmd`, `payload`, `to_id`). The server enforces `from_id`, `group_id`, and `sent_at` from the connection context, preventing spoofing.
+
+---
+
+## 4. Message Targeting Logic
+
+V3 uses the `target` field to determine which Redis channel to use, ensuring only the intended recipients receive the data.
+
+### A. Group Broadcast
+Sends the message to every client connected to the same `group_id`.
+```json
+{
+  "msg_type": "msg",
+  "target": "group",
+  "msg": "Hello team!"
+}
+```
+
+### B. Direct Message (DM)
+Sends the message to one specific client ID, regardless of their group.
+```json
+{
+  "msg_type": "msg",
+  "target": "direct",
+  "to_id": "target_client_random_id",
+  "msg": "Private message just for you."
+}
+```
+
+### C. System Broadcast
+Sends the message to **every** connected client on the platform (use sparingly).
+```json
+{
+  "msg_type": "cmd",
+  "target": "broadcast",
+  "cmd": "MAINTENANCE_WARNING"
+}
+```
+
+### D. Echo
+Sends the message back only to the sender (useful for testing round-trip latency).
+```json
+{
+  "msg_type": "msg",
+  "target": "echo",
+  "msg": "Ping!"
+}
+```
+
+---
+
+## 5. Specialized Message Types
+
+### Commands (`cmd`)
+Used for remote control or orchestration.
+```json
+{
+  "msg_type": "cmd",
+  "target": "group",
+  "cmd": "RELOAD_UI",
+  "payload": { "force": true }
+}
+```
+
+### Heartbeats (`heartbeat`)
+Keep the connection alive and **refresh presence** in the backend. Should be sent every 30-60 seconds.
+
+- The server intercepts `heartbeat` messages and refreshes the Redis presence TTL (1 hour window) before echoing back.
+- Without periodic heartbeats, a client idle for >1 hour may disappear from the presence set even while still connected.
+- Use `target: 'echo'` so the server sends the heartbeat straight back — useful for measuring round-trip latency.
+
+```json
+{
+  "msg_type": "heartbeat",
+  "target": "echo"
+}
+```
+
+---
+
+## 6. Infrastructure Requirements (Nginx)
+
+Unlike standard REST endpoints, WebSockets require explicit "Upgrade" handling in the Nginx gateway. If you are deploying to a new server, ensure the following block is present in your Nginx configuration:
+
+```nginx
+location /v3/ws {
+    proxy_pass http://fastapi_backend;
+    proxy_http_version 1.1;
+    proxy_set_header Upgrade $http_upgrade;
+    proxy_set_header Connection "upgrade";
+    proxy_set_header Host $http_host;
+    proxy_read_timeout 2100s; # Match your app's max heartbeat/session time
+}
+```
+
+---
+
+## 7. Common Pitfalls & Troubleshooting
+
+- **HTTP 404 Errors**: This almost always means Nginx is missing the `location /v3/ws` block and is trying to serve the request as a static file from the disk.
+- **HTTP 400 Errors**: Check your `Host` header. Nginx routes requests based on the `server_name` directive. If you connect to an IP or a non-standard hostname (like `localhost`), ensure it is explicitly listed in your Nginx config.
+- **Connection Drops**: If the connection drops exactly after 60 seconds, check your Nginx `proxy_read_timeout`. It should be set high (e.g., `2100s`) to allow for long-lived WebSocket sessions.
+
+---
+
+## 8. Migration Guide (V2 to V3)
+
+If you are upgrading from the legacy V2 WebSocket (`/ws/group/...`):
+
+1.  **Change the URL**: Prepend `/v3/` to your WebSocket path.
+2.  **Wrap your JSON**: In V2, you might have sent `{"msg": "hi"}`. In V3, this must be `{"msg_type": "msg", "target": "group", "msg": "hi"}`.
+3.  **Use unique string IDs**: Both `group_id` and `client_id` in the path are opaque strings — any unique value works (timestamp, UUID, Vision ID random string). Just don't use raw database integer IDs. For `to_id` in direct messages, use whatever `client_id` that target client registered with.
+4.  **Listen for `msg_type`**: Update your frontend handlers to switch logic based on the `msg_type` field instead of proprietary keys.

documentation/GUIDE__AE_UI_Style_Guidelines.md

@@ -0,0 +1,276 @@
+# Aether UI — Design System Style Guidelines
+> **Version:** 1.2 (2026-03-20)
+> **Author:** One Sky IT / Scott Idem
+> **Scope:** All Aether SvelteKit frontend components
+> **Related:** `AE__UI_Component_Patterns.md`, `ae-firefly.css`, `documentation/AE__Components.md`
+
+---
+
+## 1. Design Philosophy
+
+**"Shiny serenity, like a firefly."**
+
+The Aether UI is calm, focused, and softly luminous. It must be immediately readable under conference-room lighting, at a glance, by presenters who are nervous and in a hurry. Staff in the Speaker Ready Room need scan-speed identity confirmation. Remote presenters uploading files from home need a clear, unambiguous interface that doesn't waste their time.
+
+Core principles:
+- **Identity first.** The user's first question is always *"Am I in the right place?"* Answer it with the hero card — name, time, room — before anything else is shown.
+- **Progressive disclosure.** Admin fields (codes, IDs, passcodes) are hidden unless `edit_mode` is active.
+- **Theme-aware always.** Zero hardcoded colors. Every background, border, and text color must respond to light/dark mode and the active theme via CSS variables.
+- **Transitions, not pops.** Every interactive state change is smoothed with `transition-colors duration-200`.
+- **Section 508 / WCAG 2.1 AA** compliance is non-negotiable. Contrast ratios, focus indicators, ARIA labels, and screen-reader regions are required everywhere.
+
+---
+
+## 2. Technical Stack Mandates (2026 Standard)
+
+To maintain codebase health and performance, all new development must adhere to the following stack:
+
+### 🚀 Svelte 5 Runes
+- **Mandatory**: Use `$state`, `$derived`, and `$effect`.
+- **Snippet pattern**: Use `{@render snippet()}` for reusable UI blocks within components.
+- **Avoid**: Legacy `export let` (use `$props()`), `onMount` for reactive derived state (use `$derived` or `$effect`), and `$$slots` (use Snippets).
+
+### 🎨 Tailwind 4 + Skeleton v4
+- **Mandatory**: Use `preset-*` classes for interactive elements (e.g., `preset-tonal-primary`).
+- **Forbidden**: Legacy Skeleton v3 `variant-*` classes.
+- **Customization**: Use Tailwind 4 `@theme` blocks for project-wide overrides.
+- **URLs**: Skeleton for Svelte for LLMs docs: https://www.skeleton.dev/llms-svelte.txt
+
+### 🔣 Lucide Icons
+- **Mandatory**: Use `@lucide/svelte` components (e.g., `<Calendar size="1em" />`).
+- **Migration**: Replaced all FontAwesome `fas fa-*` icons in general modules.
+- **🚨 Exception: IDAA Module**: The IDAA module **must** retain FontAwesome and Bootstrap classes. It integrates with Novi CMS which relies on these legacy standards. **Do not migrate IDAA icons.**
+
+---
+
+## 3. The AE_Firefly Theme
+
+**App default since 2026-03-06.** Set in `ae_stores.ts` as `theme_name = 'AE_Firefly'`.
+File: `src/ae-firefly.css` | Activated by: `data-theme="AE_Firefly"`
+
+| Role | Palette Name | Hue | Use Case |
+|---|---|---|---|
+| **Primary** | Luminescent Teal | ~184° | Primary actions, date/time chips, focus rings, anchor links |
+| **Secondary** | Warm Amber-Gold | ~90° | Secondary actions, copy/email buttons, soft highlights |
+| **Tertiary** | Night-Sky Indigo | ~277° | Location/room chips, depth accents |
+| **Surface** | Moonlit Slate | ~215–233° | All backgrounds — off-white (light) → midnight slate (dark) |
+| **Warning** | Amber semantic | n/a | Disabled/inactive records, "no results" states, code badges |
+| **Success** | Green semantic | n/a | Active/complete states, file count badges |
+| **Error** | Red semantic | n/a | Errors, disabled-presenter states |
+
+### Contrast Guarantees
+- Body text (`surface-950` on `surface-50`): > 15:1 in light mode ✓
+- Primary buttons: ≥ 3:1 for interactive component threshold ✓
+- Designed using OKLCH perceptual lightness — not HSL estimates
+
+---
+
+## 4. Color Token Rules
+
+### ✅ Always Use Theme Tokens
+
+**Backgrounds / surfaces:**
+```
+bg-surface-50-900      ← card faces (light: near-white, dark: deep slate)
+bg-surface-100-900     ← inner sections, code blocks, secondary panels
+bg-surface-50-950      ← page-level containers
+bg-surface-200-800     ← skeleton pulse placeholders, dividers
+```
+
+**Borders:**
+```
+border-surface-200-800  ← standard card/panel borders
+border-primary-500      ← focus rings (via focus-visible:ring)
+border-warning-500      ← warning/caution interactive zones
+border-surface-500/20   ← subtle section dividers
+```
+
+**Primary color accents (teal):**
+```
+bg-primary-500/10       ← tinted chip background (time chips)
+text-primary-700 dark:text-primary-300  ← chip text with auto dark mode
+hover:text-primary-500  ← link hover color
+```
+
+**Tertiary color accents (indigo):**
+```
+bg-tertiary-500/10      ← tinted chip background (room/location chips)
+text-tertiary-700 dark:text-tertiary-300
+```
+
+**Skeleton presets:**
+```
+preset-tonal-warning    ← "no results", disabled rows, code tag badges
+preset-tonal-primary    ← primary action buttons
+preset-tonal-surface    ← neutral/secondary actions, status badges
+preset-tonal-success    ← success states, file count badges
+preset-tonal-error      ← error/blocked states
+preset-filled-*-500     ← solid-fill buttons (hover state for tonal)
+```
+
+**Warning/error semantic backgrounds:**
+```
+bg-warning-100 border border-warning-300  ← inline warning banners
+bg-error-100 border border-error-300      ← inline error banners
+```
+
+---
+
+### ❌ Never Use These
+
+| Forbidden | Reason | Replace With |
+|---|---|---|
+| `bg-gray-*` | Fixed color, breaks dark mode | `bg-surface-*` tokens |
+| `bg-neutral-*` | Same — fixed hue | `bg-surface-*` tokens |
+| `bg-white` | Light-mode only | `bg-surface-50-900` |
+| `text-gray-*` | Breaks dark mode | `opacity-60` on inherited text |
+| `text-neutral-*` | Same | `opacity-*` |
+| `border-gray-*` | Non-theme border | `border-surface-200-800` |
+| `bg-yellow-*`, `text-yellow-*` | Bypasses warning semantic | `preset-tonal-warning` |
+| `bg-red-*`, `text-red-*` | Bypasses error semantic | `bg-error-100` / `preset-tonal-error` |
+| `bg-white dark:bg-gray-800` | Manual light/dark pair | Let theme tokens handle it — remove entirely |
+| `text-gray-600 dark:text-gray-400` | Manual light/dark pair | `opacity-60` |
+| `rounded-container-token` | Skeleton v3 class | `rounded-xl` |
+| `variant-*` (v3) | Skeleton v3 class | `preset-*` (v4) |
+| `preset-filled-surface-300-700` | v3 dual-shade notation | `bg-surface-200-800` or `bg-surface-100-900` |
+| `preset-filled-surface-400-600` | v3 dual-shade notation | `bg-surface-100-900` |
+| `overflow-x-scroll` | Forces scrollbar visible | `overflow-x-auto` |
+
+---
+
+## 5. Transitions & Animation
+
+All interactive state changes must be smoothed — no hard pops.
+
+| Element | Classes |
+|---|---|
+| Table row | `transition-colors duration-200` on `<tr>` |
+| List item card | `transition-colors duration-200` on `<li>` |
+| Link hover | `transition-colors duration-200` on `<a>` |
+| Info chips | `transition-colors duration-200` on `<span>` |
+| QR code toggle (size) | `transition-all duration-500` on `<img>` |
+| Collapsible sections | Use Skeleton `Accordion` or CSS `transition-all` — don't add custom unless needed |
+| Buttons | Handled automatically by Skeleton preset classes |
+
+---
+
+## 6. Loading / Skeleton States
+
+When `liveQuery` data is still resolving, show pulse placeholders instead of nothing:
+
+```svelte
+<!-- Title placeholder -->
+<div class="h-7 w-2/3 bg-surface-200-800 animate-pulse rounded"></div>
+
+<!-- Chip/pill placeholder -->
+<div class="h-5 w-1/2 bg-surface-200-800 animate-pulse rounded-full"></div>
+
+<!-- Icon placeholder -->
+<div class="h-5 w-5 bg-surface-200-800 animate-pulse rounded-full"></div>
+```
+
+Always wrap in `{#if $lq__obj}{...}{:else}...skeleton...{/if}` — **never** show real content structure before data exists.
+
+---
+
+## 7. Dark Mode Rules
+
+- **Never write `dark:` overrides for background or text colors.** The Firefly theme handles both modes through CSS variables. Writing `dark:bg-gray-800` or `dark:text-gray-400` bypasses the theme and breaks if the user switches themes.
+- **Exception allowed:** `dark:text-primary-300` and `dark:text-tertiary-300` in info chips are intentional — they reference theme variables that gracefully degrade.
+- **Exception allowed:** `dark:border-surface-700` in fine-grained border work when `border-surface-200-800` isn't strong enough.
+
+---
+
+## 8. Accessibility (Section 508 / WCAG 2.1 AA)
+
+| Requirement | Implementation |
+|---|---|
+| Decorative icons | `aria-hidden="true"` on all icons |
+| Icon-only buttons | `aria-label="..."` or `title="..."` + visible context |
+| Async content regions | `role="status" aria-live="polite"` on loading/empty sections |
+| Focus indicators | `focus-visible:ring-2 focus-visible:ring-primary-500` on custom interactive elements |
+| Interactive dialogs | `aria-haspopup="dialog"` on trigger buttons |
+| Form inputs | Visible `<label>` linked via `for` / `id`, or explicit `aria-label` |
+| Color-only information | Always pair color coding with icon or text — never color alone |
+| Minimum touch target | 44×44px effective hit area for all tap targets |
+| Button label + icon | All buttons should include **both a Lucide icon and text label**. Icon-only is acceptable for space-constrained toolbar/header actions (with `title` attribute); text-only is acceptable when layout is extremely tight. The icon+text combination aids non-English-native users who may not read the label fluently. |
+
+---
+
+## 9. Debug Code — Remove Before Committing
+
+These patterns are breakpoint debuggers added during development. **Never commit them:**
+
+```html
+<!-- Breakpoint border debugger — REMOVE before commit -->
+sm:border-l-red-400 md:border-l-yellow-400 lg:border-l-gray-100
+sm:dark:border-l-red-600 md:dark:border-l-yellow-600 lg:dark:border-l-gray-700
+```
+
+Also flag on code review:
+- `console.log(...)` that isn't behind a `log_lvl` guard
+- `border-dashed border-y-transparent border-r-transparent` left on production components
+- `overflow-x-scroll` (should be `overflow-x-auto`)
+
+---
+
+## 10. QR Code Pattern — Critical Bug Prevention
+
+The async QR generation code uses a boolean `true` as a loading placeholder:
+
+```typescript
+$events_sess.pres_mgmt.session_qr_url[$lq__obj.id] = true;   // ← loading
+// ... async ...
+$events_sess.pres_mgmt.session_qr_url[$lq__obj.id] = result; // ← URL string
+```
+
+**Always gate display on `typeof ... === 'string'`**, not just truthy:
+
+```svelte
+<!-- ✅ Correct -->
+{#if typeof $events_sess.pres_mgmt.session_qr_url?.[$lq__obj.id] === 'string'}
+
+<!-- ❌ Wrong — renders broken <img src="true"> during load -->
+{#if $events_sess.pres_mgmt.session_qr_url[$lq__obj.id]}
+```
+
+---
+
+## 11. Tailwind Utility Usage Notes
+
+- **`opacity-*` for muted text**: Use `opacity-60` (secondary) or `opacity-40` (tertiary/hint) instead of `text-gray-*`. This works in any theme and both modes.
+- **`/` opacity modifier**: `bg-primary-500/10` is preferred over separate `opacity-10` — it targets only the background.
+- **`text-sm leading-relaxed`**: Standard for body-level descriptive text in cards.
+- **`tracking-wide uppercase`**: Use for section label/eyebrow text with `opacity-40`.
+- **`whitespace-pre-wrap`**: Required for any `<pre>` or `<p>` displaying user-entered multi-line text (preserves breaks without horizontal overflow).
+
+---
+
+## 12. Known Issues & Workarounds
+
+### `btn` + `preset-filled-*` resolves to transparent inside `card` components
+
+**Symptom:** A button using `btn preset-filled-primary` (or any `preset-filled-*`) inside a `card` div renders with `background-color: transparent`, making it invisible against the card surface.
+
+**Root cause:** The Skeleton v4 `btn` class sets a transparent background via a CSS variable chain. When nested inside a `card` element, the `preset-filled-*` class fails to win the specificity battle and the button appears invisible. This affects both light and dark mode.
+
+**Workaround:** Skip `btn` and `preset-filled-*` entirely for buttons inside `card` elements. Use direct Tailwind token classes instead:
+
+```svelte
+<!-- ✅ Correct — works reliably inside cards -->
+<button class="w-full rounded-xl py-5 font-bold flex items-center justify-center gap-2
+               bg-primary-500 text-white hover:brightness-110 transition-all cursor-pointer">
+    ...
+</button>
+
+<!-- Secondary / cancel button inside a card -->
+<button class="w-full rounded-lg py-3 text-sm font-medium flex items-center justify-center gap-2
+               border border-surface-500/40 hover:bg-surface-200-800 transition-colors cursor-pointer opacity-70">
+    ...
+</button>
+
+<!-- ❌ Broken inside card — do not use -->
+<button class="btn btn-xl preset-filled-primary">...</button>
+```
+
+**Scope:** `btn` + `preset-*` classes work correctly on standalone buttons (e.g. page headers, nav bars). The issue is specific to the `card` component context. If we migrate away from Skeleton `card`/`btn`, this issue goes away.

documentation/GUIDE__Development.md

@@ -0,0 +1,191 @@
+# Aether Development SOP (Frontend)
+> **Version:** 1.2 (2026-03-17)
+> **Location:** documentation/GUIDE__Development.md
+
+## 1. Verification (The "Test-First" Mandate)
+**Rule:** No code is to be committed unless it has passed local verification.
+
+### Required Checks
+1. **Svelte Integrity:** `npx svelte-check`
+   - **Zero Tolerance:** If a task introduces even a single svelte-check warning or error, it must not be merged. Resolve all warnings before committing.
+2. **Type Safety:** Ensure interfaces in `src/lib/types/ae_types.ts` match backend schemas.
+3. **Reactivity Check:** Verify Svelte 5 runes (`$state`, `$derived`) are not creating race conditions with Dexie `liveQuery`.
+4. **Build Check:** For major changes, run `npm run build:dev` to ensure no SSR or build-time failures.
+5. **Integration Tests:** For changes to badge print, event layouts, or auth/store logic, run the relevant Playwright test file(s):
+   ```bash
+   npx playwright test tests/event_badge_render.test.ts tests/event_badge_attendee_workflow.test.ts
+   ```
+   Run the full suite with `npm run test:integration`. The badge tests (`event_badge_*.test.ts`) are the canonical integration test template.
+
+## 2. Commit Policy
+- **Atomic Commits:** One component or one logic fix per commit. Do not batch unrelated changes.
+- **Safety:** Use `~/tmp/gemini_trash` for file removal; never use `rm` directly on source files.
+- **Secrets:** Never commit `.env`, API keys, or passwords.
+
+## 3. Coordination (The Handshake)
+You are not working in a vacuum. Coordinate with the Backend Agent via MCP tools.
+
+### Mandatory Messaging Triggers
+- **Data Requirements:** When a UI feature requires a new field or endpoint.
+- **API Failures:** When a V3 endpoint returns unexpected data or errors.
+- **Blocked:** If stuck in a loop or lacking information, use `ae_send_message` to ask the Backend Agent, or flag for Scott.
+
+### Tools
+- `ae_send_message` / `ae_inbox` — agent-to-agent messaging
+- `ae_task_list` / `ae_task_add` / `ae_task_complete` — shared Kanban board
+- `ae_log_work` — log activity to daily journal
+
+## 4. Continuity (Before Starting Work)
+1. Review `documentation/TODO__Agents.md` for active tasks.
+2. Check `~/agents_sync/README.md` for fleet status and cross-agent tasks.
+3. Describe your plan before making code changes across multiple files.
+
+## 5. Key Documentation
+
+| File | Purpose |
+| --- | --- |
+| `documentation/TODO__Agents.md` | Active task list — read first |
+| `documentation/GUIDE__AE_API_V3_for_Frontend.md` | V3 API reference (authoritative) |
+| `documentation/GUIDE__SvelteKit2_Svelte5_DexieJS.md` | Dexie + liveQuery patterns |
+| `documentation/GEMINI__Svelte_and_Me.md` | Svelte 5 runes patterns |
+| `documentation/AE__Architecture.md` | System architecture overview |
+| `documentation/AE__Naming_Conventions.md` | Naming rules |
+| `documentation/PROJECT__AE_Events_Launcher_Native_integration.md` | Electron/Launcher reference |
+| `tests/README.md` | Playwright test guide — shared helpers, hard-won lessons, demo IDs |
+
+## 6. Inline Field Editing — `element_ae_obj_field_editor`
+
+The standard component for single-field inline editing throughout the platform. Wraps a `PATCH /v3/crud/{obj_type}/{obj_id}` call behind a click-to-edit UI that respects `$ae_loc.edit_mode`.
+
+```svelte
+import Element_ae_obj_field_editor from '$lib/elements/element_ae_obj_field_editor.svelte';
+```
+
+### Basic usage — text field with custom display
+
+Wrap the display content in the default snippet. The component renders it in view mode and swaps in the input on edit.
+
+```svelte
+<Element_ae_obj_field_editor
+    object_type={'event_session'}
+    object_id={session.id}
+    field_name={'name'}
+    field_type={'text'}
+    current_value={session.name}
+    on_success={() => events_func.load_ae_obj_id__event_session({ api_cfg: $ae_api, event_session_id: session.id })}
+>
+    <h1 class="text-2xl font-bold">{session.name}</h1>
+</Element_ae_obj_field_editor>
+```
+
+### Field types
+
+| `field_type` | Input rendered |
+| --- | --- |
+| `text` (default) | `<input type="text">` — Enter key saves |
+| `textarea` | `<textarea>` — use `textarea_rows` prop |
+| `select` | `<select>` — pass `select_options={{ value: 'Label' }}` |
+| `checkbox` | `<input type="checkbox">` — shows Enabled/Disabled |
+| `tiptap` | TipTap rich-text editor |
+| `date` | `<input type="date">` |
+| `datetime` | `<input type="datetime-local">` |
+| `number` | `<input type="number">` — Enter key saves |
+
+### Select with nullable FK
+
+```svelte
+<Element_ae_obj_field_editor
+    object_type={'event_presenter'}
+    object_id={presenter.event_presenter_id}
+    field_name={'person_id'}
+    field_type={'select'}
+    current_value={presenter.person_id}
+    select_options={$slct.person_obj_kv}
+    allow_null={$ae_loc.administrator_access}
+    on_success={() => events_func.load_ae_obj_id__event_presenter({ api_cfg: $ae_api, event_presenter_id: presenter.event_presenter_id })}
+>
+    {presenter.person_id ?? 'Not linked'}
+</Element_ae_obj_field_editor>
+```
+
+### Key props
+
+| Prop | Default | Notes |
+| --- | --- | --- |
+| `current_value` | — | Required. Bound with `$bindable` — liveQuery updates flow through automatically |
+| `allow_null` | `false` | Shows a "Set Null" button in edit mode |
+| `display_block` | `false` | Makes the wrapper `display: block` instead of `inline-block` |
+| `on_success` | — | Callback after successful PATCH — use to trigger SWR cache refresh |
+| `object_reload` | `true` | Triggers internal SWR reload after patch (in addition to `on_success`) |
+
+### Behavior notes
+- The edit trigger button is `visibility: hidden` (not `display: none`) when `$ae_loc.edit_mode` is off — this preserves layout so the page doesn't shift when edit mode toggles.
+- Optimistic display: draft value is shown immediately after save; cleared once liveQuery confirms the update came back from the DB.
+- `on_success` should always call the relevant `load_ae_obj_id__*` function to keep Dexie in sync.
+
+---
+
+## 7. URL Parameters
+
+URL params consumed by the app. Params are read by layouts and applied on mount.
+
+### Global (active on all routes — read by `src/routes/+layout.svelte`)
+
+| Param | Values | Effect |
+| --- | --- | --- |
+| `iframe` | `true` / `false` | Enables iframe mode — hides the AE system bar for all users by default, suppresses sign-in/passcode UI |
+| `show_menu` | `true` | Override: show the AE system bar inside an iframe. Intended for admins/trusted users who need menu access while testing an embed. |
+| `hide_menu` | `true` | Explicitly hide the AE system bar outside of iframe mode (e.g. fullscreen kiosk pages). |
+| `theme` | theme name | Applies a theme on load, then removes param from URL (no history entry) |
+| `theme_mode` | `light` / `dark` | Applies theme mode on load, then removes param from URL |
+
+### IDAA Module (`/idaa/` routes)
+
+| Param | Values | Consumed by | Effect |
+| --- | --- | --- | --- |
+| `iframe` | `true` | `idaa/+layout.svelte` | Hides IDAA nav chrome |
+| `uuid` | Novi UUID | `idaa/(idaa)/+layout.svelte` | Sets Novi UUID → triggers member auth lookup |
+
+### IDAA Video Conferences (`/idaa/video_conferences`)
+
+| Param | Values | Effect |
+| --- | --- | --- |
+| `uuid` | Novi UUID | Member identity for Jitsi JWT |
+| `key` | site key string | Site auth key |
+| `room` | room name | Jitsi room name |
+| `moderator` | `true` | Grants moderator role + JWT, enables lobby and activity logging |
+| `domain` | hostname | Jitsi server (default: `jitsi.dgrzone.com`) |
+| `start_muted` | `true` | Start audio muted |
+| `start_hidden` | `true` | Start video off |
+| `incoming_msg_sound` | `true` | Disable incoming message sound |
+| `participant_joined_sound` | `true` | Disable participant joined sound |
+| `participant_left_sound` | `true` | Disable participant left sound |
+| `reaction_sound` | `true` | Disable reaction sound |
+| `raise_hand_sound` | `true` | Disable raise hand sound |
+
+### Events Launcher (`/events/[id]/launcher`)
+
+| Param | Values | Effect |
+| --- | --- | --- |
+| `session_id` | session ID | Pre-selects a session on load |
+| `iframe` | `true` | Iframe mode flag |
+| `launcher_menu` | show/hide | Show/hide launcher menu chrome |
+| `launcher_header` | show/hide | Show/hide launcher header |
+| `launcher_footer` | show/hide | Show/hide launcher footer |
+
+### Events Sign-In (`/events/[id]/sign_in_out`)
+
+| Param | Values | Effect |
+| --- | --- | --- |
+| `person_id` | person ID | Pre-fill attendee |
+| `person_pass` | passphrase | Auto-authenticate attendee |
+| `presentation_id` | ID | Pre-select presentation |
+| `presenter_id` | ID | Pre-select presenter |
+| `session_id` | ID | Pre-select session |
+
+### Badges (`/events/[id]/badges/print_list`)
+
+| Param | Values | Effect |
+| --- | --- | --- |
+| `printed_status` | filter value | Filter badge list by print status |
+| `badge_type_code` | code string | Filter badge list by type |

documentation/GUIDE__SvelteKit2_Svelte5_DexieJS.md

@@ -0,0 +1,409 @@
+# Stability Patterns for liveQuery + Svelte 5
+
+Dexie's `liveQuery` works well with Svelte 5 runes, but the combination requires a few stable patterns so queries don't get recreated unintentionally and components render correctly on a "cold start" (empty IndexedDB).
+- Keep the observable instance stable: wrap `liveQuery` in a stable `$derived` so the observable isn't recreated on every render. Recreate the `liveQuery` only when explicit dependencies change (IDs, filters, or search keys).
+
+```typescript
+// stable derived wrapper — only recreated when `id` changes
+let lq__obj = $derived(
+    (() => {
+    // capture the dependency(s) in a single stable closure
+    const id = url_id;
+    return liveQuery(async () => {
+            if (!id) return null;
+            console.log('[LQ] running for id=', id);
+            return await db.table.get(id);
+        });
+    })()
+);
+```
+
+- Use `$derived.by(() => ...)` where available in your runes shim to build queries from a computed set of inputs (IDs list, search params). This preserves a stable observable instance while still reacting to explicit dependency changes.
+
+- Avoid capturing mutable objects or inline expressions in the `liveQuery` closure. If the closure captures a changing reference, the query may be recreated unexpectedly or miss the first write.
+## Common Gotchas and Fixes (Why things sometimes need multiple refreshes)
+
+- Cold start (IDB empty) + non-blocking API writes: If you mount a component before data is written to IDB, `liveQuery` may run against an empty DB. The API write will populate IDB later, but sometimes a chain of dependent queries (e.g., presentations -> presenters) won't all rerun in the order you expect. The symptoms you described — session shows after one refresh, presenters only after a second — are consistent with either (a) queries recreated in the wrong order or (b) dependent store values being set only after some subscriptions are already created.
+
+### Critical Discovery (2026-02-26): The "try_cache: false" Bug
+
+**Symptom:** Nested data (e.g., Session → Presentations → Presenters) requires multiple manual refreshes to display on cold-start, even when using blocking loads.
+
+**Root Cause:** Two interconnected issues in nested data loaders:
+1. **Disabled caching in nested loads**: Parent loads were passing `try_cache: false` to child loads, meaning presentations and presenters were fetched from API but **never written to IndexedDB**.
+2. **Missing microtask yields**: Even when caching was enabled, components would mount and subscribe to liveQuery *before* IndexedDB writes completed, causing race conditions.
+
+**Example of the Bug:**
+```typescript
+// Session loader (BROKEN)
+await db_save_ae_obj_li__ae_obj({ table: 'session', obj_li: [session] });
+// Loads presentations but disables caching ❌
+return await load_presentations({ ..., try_cache: false });
+  // Presentations fetch from API ✅
+  // Presentations SKIP IndexedDB write ❌
+  // Presenters SKIP IndexedDB write ❌
+// Component mounts, liveQuery finds only session ❌
+```
+
+**The Fix:**
+```typescript
+// Session loader (FIXED)
+await db_save_ae_obj_li__ae_obj({ table: 'session', obj_li: [session] });
+await Promise.resolve(); // Yield to observers
+// Preserve parent's try_cache value ✅
+return await load_presentations({ ..., try_cache });
+  // Presentations fetch AND write to IDB ✅
+  await Promise.resolve(); // Yield to observers
+  // Presenters fetch AND write to IDB ✅
+  await Promise.resolve(); // Yield to observers
+// Component mounts, liveQuery finds all data ✅
+```
+
+**Key Lessons:**
+1. **Always preserve `try_cache` through nested loads** unless you have a specific reason to disable caching for that operation
+2. **Add `await Promise.resolve()` after IndexedDB writes** to ensure Dexie's liveQuery observers fire before the function returns
+3. **Block on nested loads with `await Promise.all()`** instead of fire-and-forget `forEach()` when the page needs complete data for first render
+
+Fixes:
+- Prefer the "Blocking Loader" when you can: `await` the API call in `+page.ts` so IDB is populated before Svelte mounts.
+- If you cannot block, return an `initial_*` object from `+page.ts` and use it as an immediate fallback in your component so the UI renders from that payload while `liveQuery` takes over for subsequent updates. Example from Aether:
+
+```svelte
+<Comp_event_presentation_obj_li
+    lq__event_presentation_obj_li={$lq__event_presentation_obj_li ?? data.initial_session_obj?.event_presentation_li ?? []}
+    {log_lvl}
+/>
+```
+
+- Ensure store IDs are set before subscribers that depend on them are created. Use `untrack()` (or an equivalent non-reactive assignment) to set IDs in stores during initialization so components subscribe to the correct IDs immediately:
+
+```typescript
+$effect(() => {
+    if (!ae_acct) return;
+    untrack(() => {
+        $events_slct.event_id = url_event_id;
+        $events_slct.event_session_id = url_session_id;
+    });
+});
+```
+
+- When you have chains (presentations depend on session; presenters depend on presentation.person_id), make the dependent liveQuery explicitly wait for the upstream ID and log inside each query to verify the order — adding a small `await Promise.resolve()` or `await 0` inside the `liveQuery` is sometimes useful during debugging to ensure the JS microtask queue has a chance to settle after DB writes.
+
+## Practical Patterns from Aether (Journals & Events)
+- Journals: The journaling pages use SWR-style background refreshes but reliably render because either (a) the page `+page.ts` blocks to populate DB for critical views, or (b) components accept `data.initial_*` fallback values until `liveQuery` emits. This hybrid approach avoids the "refresh twice" problem while keeping navigation snappy.
+
+- Sessions / Presentations: The session page demonstrates several best practices:
+    - Use `url_*` constants (derived from `data.params`) so the `liveQuery` closure captures a stable value instead of the reactive store directly.
+    - Provide `initial_session_obj` from `+page.ts` as a first-draw fallback to child components.
+    - Use `$derived.by(() => liveQuery(...))` for presentation lists so the observable instance is stable across renders and recreated only when `event_session_id` or `search` changes.
+
+Example (presentation list pattern):
+```typescript
+let lq__event_presentation_obj_li = $derived(
+    liveQuery(async () => {
+        if (!url_session_id) return [];
+        console.log('[LQ] Querying Presentations for Session:', url_session_id);
+        return await db_events.presentation.where('event_session_id').equals(url_session_id).sortBy('name');
+    })
+);
+```
+
+## Debugging Checklist
+
+- Add a small `console.log` inside each `liveQuery` closure to confirm when it runs and what `id` it sees.
+- Verify that `+page.ts` either `await`s critical loads or returns `initial_*` payloads for first-render hydration.
+- Confirm that dependent store values (selected IDs) are assigned before components subscribe — use `untrack` to prevent extra reactive cycles.
+- Ensure your `liveQuery` closures return quickly and do not throw; any exception inside the query can stop updates.
+- If a dependent query appears stale, temporarily add `await 0` in the upstream query or an explicit `Promise.resolve()` after the IDB write to force the microtask queue to flush during debugging.
+
+## Summary Recommendations
+
+- Prefer blocking loads for primary views when first-render correctness matters.
+- Use `initial_*` fallback data when non-blocking loads are required.
+- Wrap `liveQuery` in stable `$derived` instances and only recreate when explicit inputs change.
+- Use `untrack` to set selection IDs during initialization to avoid subscribe-order bugs.
+- Add targeted logs inside `liveQuery` closures to diagnose ordering and subscription behavior.
+
+These patterns are deliberately conservative — they trade minimal blocking or small explicit fallbacks for predictable first-render behaviour. The Aether app's Journals and Event session pages are working examples of these techniques in practice.
+
+## Examples in this repository
+
+The following files demonstrate stable `liveQuery` usage, `initial_*` fallbacks, and stable `$derived` wrappers used across the Aether app. Inspect these for copy/paste patterns and concrete implementations.
+
+- Journals page (stable LQ + search patterns): [src/routes/journals/[journal_id]/+page.svelte](src/routes/journals/[journal_id]/+page.svelte#L51)
+- Journals layout (blocking background loader): [src/routes/journals/[journal_id]/+layout.ts](src/routes/journals/[journal_id]/+layout.ts#L1)
+- Session page with URL capture + initial fallback: [src/routes/events/[event_id]/(pres_mgmt)/session/[session_id]/+page.svelte](src/routes/events/[event_id]/(pres_mgmt)/session/[session_id]/+page.svelte#L41)
+- Presentation management overview (stable derived + search): [src/routes/events/[event_id]/(pres_mgmt)/pres_mgmt/+page.svelte](src/routes/events/[event_id]/(pres_mgmt)/pres_mgmt/+page.svelte#L70)
+- Event settings example (simple observable): [src/routes/events/[event_id]/settings/+page.svelte](src/routes/events/[event_id]/settings/+page.svelte#L51)
+- Badge/detail pages (examples of nested LQ): [src/routes/events/[event_id]/(badges)/badges/+page.svelte](src/routes/events/[event_id]/(badges)/badges/+page.svelte#L66)
+
+Refer to these files when you need concrete code examples to adopt the patterns described above.
+
+## References
+
+This document provides a guide to integrating Svelte (with a focus on Runes) and Dexie.js for building reactive web applications. It covers key concepts and best practices for managing reactivity between Svelte components and the Dexie.js database.
+
+## Svelte 5 Migration Guide
+
+Svelte 5 introduces "runes" as a new way to manage reactivity. This is a major change from previous versions of Svelte, and it's important to understand the breaking changes before migrating.
+
+### Key Breaking Changes
+
+- **`let` is no longer reactive:** In Svelte 4, any `let` variable declared in the top-level scope of a component was automatically reactive. In Svelte 5, you must explicitly declare reactive state using the `$state` rune.
+- **`$:` is replaced by `$derived` and `$effect`:** The `$` label is no longer used for reactive statements. Instead, you should use the `$derived` rune for computed values and the `$effect` rune for side effects.
+- **`export let` is replaced by `$props`:** Component props are now declared using the `$props` rune, which provides a more flexible and explicit way to define component APIs.
+- **Event handling:** The `on:` directive is replaced by event attributes (e.g., `onclick`). Component events are now handled using callback props instead of `createEventDispatcher`.
+- **Slots are replaced by snippets:** The `<slot>` element is replaced by the `{#snippet ...}` block, which provides a more powerful and flexible way to pass content to components.
+
+For a complete list of breaking changes, refer to the [Svelte 5 migration guide](https://svelte.dev/docs/svelte/v5-migration-guide).
+
+## Dexie.js Quick Reference
+
+Dexie.js is a lightweight, minimalistic wrapper for IndexedDB that makes it easier to work with client-side databases.
+
+### Key Classes and Methods
+
+- **`Dexie`:** The main class for creating and managing IndexedDB databases.
+    - `new Dexie(databaseName)`: Creates a new database instance.
+    - `version(versionNumber).stores({ ... })`: Defines the database schema.
+- **`Table`:** Represents an object store (table) in the database.
+    - `add(item)`: Adds a new item to the table.
+    - `put(item)`: Adds or updates an item in the table.
+    - `update(key, changes)`: Updates an existing item.
+    - `delete(key)`: Deletes an item by its primary key.
+    - `get(key)`: Retrieves an item by its primary key.
+    - `where(index)`: Starts a query using an index.
+    - `toArray()`: Retrieves all items from the table as an array.
+- **`Collection`:** Represents a collection of items resulting from a query.
+    - `toArray()`: Retrieves all items in the collection as an array.
+    - `first()`: Retrieves the first item in the collection.
+    - `last()`: Retrieves the last item in the collection.
+    - `each(callback)`: Iterates over each item in the collection.
+    - `modify(changes)`: Updates all items in the collection.
+    - `delete()`: Deletes all items in the collection.
+
+For a complete list of API methods, refer to the [Dexie.js API Reference](https://dexie.org/docs/API-Reference).
+
+## Integrating Svelte Runes and Dexie.js
+
+The combination of Svelte Runes and Dexie.js allows for the creation of highly reactive and efficient web applications.
+
+### The `liveQuery` Function
+
+Dexie.js provides a `liveQuery` function that returns an observable of the query result. This observable can be used to automatically update the UI whenever the data in the database changes.
+
+### Using `liveQuery` with Svelte Runes
+
+To use `liveQuery` with Svelte Runes, you can create a custom readable store that wraps the `liveQuery` observable. This store can then be used in your Svelte components to display and interact with the data.
+
+**1. Create a `liveQuery` store:**
+
+```typescript
+import { liveQuery } from 'dexie';
+import { readable } from 'svelte/store';
+import { db } from './db'; // Your Dexie database instance
+
+export function createLiveQueryStore<T>(query: () => T | Promise<T>) {
+    return readable<T | undefined>(undefined, (set) => {
+        const subscription = liveQuery(query).subscribe({
+            next: (result) => set(result),
+            error: (error) => console.error(error)
+        });
+        return () => subscription.unsubscribe();
+    });
+}
+```
+
+**2. Use the `createLiveQueryStore` in your component:**
+
+```html
+<script>
+    import { createLiveQueryStore } from './stores';
+    import { db } from './db';
+
+    const friends = createLiveQueryStore(() => db.friends.toArray());
+</script>
+
+<ul>
+    {#if $friends} {#each $friends as friend}
+    <li>{friend.name}</li>
+    {/each} {/if}
+</ul>
+```
+
+The `createLiveQueryStore` function creates a readable store that automatically updates whenever the data in the `friends` table changes. The `$friends` variable in the component will always contain the latest data from the database.
+
+## Page Load Strategies (Avoiding the "Waterfall")
+
+When loading data for a primary page view (e.g., viewing a specific Journal, Session, or Person), you must choose a synchronization strategy to ensure the UI renders correctly on the first load.
+
+### ❌ The "Fire & Forget" Anti-Pattern (AVOID)
+Triggering a background load in `+page.ts` without `await` leads to race conditions.
+1. `+page.svelte` mounts immediately.
+2. `liveQuery` runs against an empty IndexedDB.
+3. API data arrives later and writes to IndexedDB.
+4. **Failure:** Svelte 5 + Dexie `liveQuery` may not automatically detect this first "cold start" update without a manual refresh.
+
+### ✅ The "Blocking Loader" Pattern (RECOMMENDED)
+Ensure the data is in IndexedDB **before** the component mounts.
+1. In `+page.ts`, `await` the API load function.
+2. In `+page.svelte`, the `liveQuery` will see the data immediately upon mount.
+
+**Example (+page.ts):**
+```typescript
+export async function load({ params }) {
+    // Blocking await ensures IDB is populated
+    await journals_func.load_ae_obj_id__journal({
+        journal_id: params.journal_id,
+        try_cache: true
+    });
+    return {};
+}
+```
+
+### ✅ The "Hydrate & Subscribe" Pattern (ADVANCED)
+If you must use non-blocking loads, you must pass the initial data to the component to "hydrate" the state before the subscription takes over.
+
+1. In `+page.ts`, `await` the load and **return the object**.
+2. In `+page.svelte`, use the returned object as a fallback or initial state.
+
+**Example (+page.svelte):**
+```svelte
+<script>
+    let { data } = $props();
+    let lq__obj = $derived(liveQuery(async () => db.table.get(id)));
+</script>
+
+<!-- Use fallback to handle the gap before liveQuery emits -->
+{#if $lq__obj || data.initial_obj}
+    <View object={$lq__obj ?? data.initial_obj} />
+{/if}
+```
+
+## The `untrack()` Reactive-Tracking Trap
+
+`untrack()` is used inside `$effect` to read reactive values without registering them as tracked dependencies of that effect. This is correct for most "read-once" values (params, IDs) where you don't want the effect re-running on every change. But it has a silent failure mode: if a value you *need* to re-read is consumed inside `untrack()`, the effect becomes a one-shot and never retries when that value changes.
+
+### Symptom
+
+An effect runs once, reads a store value inside `untrack()`, takes an early-exit path (e.g. "no API key → skip"), and never retries — even after the store value is updated by a background process.
+
+### Real Example (IDAA Novi Verification Bug — 2026-03-25)
+
+The IDAA layout verifies Novi UUIDs. `site_cfg_json` (which contains the Novi API key) was read **inside** `untrack()`:
+
+```typescript
+// BUG: site_cfg_json read inside untrack → one-shot, never retries
+$effect(() => {
+    if (!browser) return;
+    const uuid = data.url.searchParams.get('uuid'); // tracked ✓
+
+    untrack(() => {
+        const site_cfg_json = $ae_loc.site_cfg_json; // ← NOT tracked ✗
+        const api_key = site_cfg_json?.novi_idaa_api_key ?? null;
+        if (!api_key) return; // exits silently on first load with stale cache
+        verify_novi_uuid(uuid, api_key, ...);
+    });
+});
+```
+
+On first load, the Dexie cache returned a stale `site_cfg_json` missing the API key. The effect exited early. The background refresh later updated `$ae_loc.site_cfg_json`, but because `site_cfg_json` was consumed inside `untrack()`, the effect never re-ran.
+
+**Fix:** Move the dependency read **outside** `untrack()`:
+
+```typescript
+// FIX: site_cfg_json tracked outside untrack → effect re-runs when it changes
+$effect(() => {
+    if (!browser) return;
+    const uuid = data.url.searchParams.get('uuid'); // tracked ✓
+    const site_cfg_json = $ae_loc.site_cfg_json;    // tracked ✓ — effect re-runs on change
+
+    untrack(() => {
+        // Guard: already verified for this UUID — don't repeat the round-trip
+        if ($idaa_loc.novi_verified && $idaa_loc.novi_uuid === uuid) return;
+
+        const api_key = site_cfg_json?.novi_idaa_api_key ?? null;
+        if (!api_key) return;
+        verify_novi_uuid(uuid, api_key, ...);
+    });
+});
+```
+
+The guard inside `untrack()` is important: without it, every unrelated change to `$ae_loc` would re-trigger verification.
+
+### Rule of Thumb
+
+Before wrapping a store read in `untrack()`, ask: **"Do I need this effect to re-run if this value changes?"**
+
+- If yes → read it **outside** `untrack()`, and add a guard inside to prevent redundant work.
+- If no → `untrack()` is correct.
+
+---
+
+## Svelte 5 Binding Pitfalls
+
+### 1. `props_invalid_value` (The "Expression Binding" Error)
+Svelte 5's `bind:` directive is more restrictive than previous versions. You can only bind to a simple **Identifier** or **MemberExpression**.
+
+**❌ Invalid Pattern (Causes Compile Error):**
+Attempting to normalize a value *inside* the binding will fail.
+```svelte
+<!-- Error: Can only bind to an Identifier or MemberExpression -->
+<Launcher_menu bind:slct__event_session_id={$events_slct.event_session_id || null} />
+```
+
+**✅ Correct Pattern:**
+Ensure the source value is already normalized before binding, or use a reactive effect to handle the fallback.
+```typescript
+// Normalize in an effect or derivation
+$effect(() => {
+    if ($events_slct.event_session_id === undefined) {
+        $events_slct.event_session_id = null;
+    }
+});
+```
+```svelte
+<!-- Bind directly to the normalized property -->
+<Launcher_menu bind:slct__event_session_id={$events_slct.event_session_id} />
+```
+
+---
+
+## Safe Data Processing for IndexedDB Sorting
+
+When preparing data for IndexedDB, especially when creating composite sort keys, it is critical to handle `null` or `undefined` values safely to prevent runtime crashes that can interrupt the data synchronization process.
+
+### 1. Safe String Padding
+Attempting to call `.toString()` or `.padStart()` on a `null` or `undefined` value will throw a `TypeError`. This is a common pitfall when processing optional fields like `sort` or `group`.
+
+**Bad Pattern (Crash Risk):**
+```typescript
+// Crashes if obj.sort is null or undefined
+obj.tmp_sort_1 = `${obj.sort.toString().padStart(3, '0')}`;
+obj.tmp_sort_2 = `${obj.sort?.toString().padStart(3, '0') ?? ''}`; // Still risky if chaining is misunderstood
+```
+
+**Good Pattern (Safe):**
+```typescript
+// Safely handle null/undefined by defaulting to 0 or an empty string BEFORE string manipulation
+const sort_val = (obj.sort ?? 0).toString().padStart(3, '0');
+```
+
+### 2. Correct Sorting with Dexie
+Dexie's `sortBy()` method returns a new array sorted by the specified key. It **ignores** previous `reverse()` calls on the collection. To achieve a descending sort, you must sort first and then reverse the resulting array.
+
+**Incorrect (Ascending Sort Result):**
+```typescript
+// .reverse() is ignored by .sortBy()
+let results = await db.table.where('id').equals(id).reverse().sortBy('sort_key');
+```
+
+**Correct (Descending Sort Result):**
+```typescript
+// Sort ascending first, then reverse the array
+let results = await db.table.where('id').equals(id).sortBy('sort_key');
+return results.reverse();
+```
+
+## References
+* https://dexie.org/llms.txt - Dexie.js and Dexie Cloud — LLM Guide and Documentation Summary

documentation/MODULE__AE Journals_config_map.md

@@ -0,0 +1,61 @@
+# Aether Journals: Configuration & Settings Map
+
+This document tracks all available settings across the three levels of the Journals module.
+
+## 1. Module Level (Global)
+*   **Scope:** Applied across the entire journals application for the current site/user.
+*   **Storage:** Browser Local Storage (via `journals_loc` persisted store).
+*   **UI Location:** Journals Landing Page -> Settings Icon (Top Right).
+
+| Setting | Type | Description | Save Type |
+| :--- | :--- | :--- | :--- |
+| `datetime_format` | enum | Preferred display for date/time strings. | Manual (Save Changes) |
+| `time_format` | enum | Preferred display for time-only strings. | Manual (Save Changes) |
+| `entry.auto_save` | boolean | If true, entry edits are debounced and saved to DB. | Manual (Save Changes) |
+| `show_id_random` | boolean | Display technical UUIDs in metadata footers. | Manual (Save Changes) |
+| `enable_session_passcode_cache`| boolean | If true, private passcodes are held in session store. | Manual (Save Changes) |
+
+## 2. Journal Level (Specific Journal)
+*   **Scope:** Applied to a specific journal object and its metadata.
+*   **Storage:** Remote MariaDB (via `update_ae_obj__journal`).
+*   **UI Location:** Journal View -> Menu -> Edit Journal.
+
+| Setting | Type | Description | Save Type |
+| :--- | :--- | :--- | :--- |
+| `name` | string | Display name of the journal. | Manual (Save Changes) |
+| `description` | markdown | Detailed purpose/notes for the journal. | Manual (Save Changes) |
+| `type_code` | enum | Category of journal (Diary, Log, etc.). | Manual (Save Changes) |
+| `group` | string | Sorting group for the journal list. | Manual (Save Changes) |
+| `sort` | integer | Manual sort order weight. | Manual (Save Changes) |
+| `priority` | boolean | Flag for "Starred" or "Pinned" status. | Manual (Save Changes) |
+| `enable` | boolean | Global activation flag for the journal. | Manual (Save Changes) |
+| `hide` | boolean | If true, journal is hidden from standard views. | Manual (Save Changes) |
+| `passcode` | string | Module-level encryption passcode. | Manual (Save Changes) |
+| `private_passcode`| string | User-specific secondary encryption secret. | Manual (Save Changes) |
+| `cfg_json.*` | JSON | UI/UX overrides (colors, default viewers, etc.). | Manual (Save Changes) |
+
+## 3. Journal Entry Level (Specific Entry)
+*   **Scope:** Applied to an individual entry within a journal.
+*   **Storage:** Remote MariaDB (via `update_ae_obj__journal_entry`).
+*   **UI Location:** Entry View -> Settings Button.
+
+| Setting | Type | Description | Save Type |
+| :--- | :--- | :--- | :--- |
+| `name` | string | Entry title. | Auto-Save (if enabled) |
+| `content` | markdown | Main text body. | Auto-Save (if enabled) |
+| `category_code` | enum | User-defined category for the entry. | Auto-Save / Manual |
+| `tags` | string | Comma-separated list of tags. | Auto-Save / Manual |
+| `priority` | boolean | If true, entry is pinned or highlighted. | Manual (Done) |
+| `enable` | boolean | Activation flag for the entry. | Manual (Done) |
+| `hide` | boolean | If true, entry is hidden from standard lists. | Manual (Done) |
+| `sort` | integer | Manual sort order weight. | Manual (Done) |
+| `archive_on` | datetime | Scheduled date for automatic archiving. | Manual (Done) |
+| `private` | boolean | Trigger for E2EE (Encryption). | Manual (Done) |
+| `alert` | boolean | Trigger for visual "Alert" state. | Manual (Done) |
+| `group` | string | Grouping key for the list view. | Manual (JSON only) |
+
+## 📐 Data Normalization Rules
+To prevent infinite reactivity loops and trivial save cycles, the following normalizations are applied before comparison:
+1.  **Strings:** Trimmed and `null` treated as `""`.
+2.  **Booleans:** Forced to `true/false` (no nulls).
+3.  **JSON:** Deep stringification comparison (`JSON.stringify`).

documentation/MODULE__AE_Events_Badge_Templates.md

@@ -0,0 +1,364 @@
+# MODULE: Aether Events — Badge Templates
+
+**Module Path:** `src/routes/events/[event_id]/(badges)/templates/`
+**API Module:** `src/lib/ae_events/ae_events__event_badge_template.ts`
+**Database Table:** `event_badge_template`
+**Last Updated:** 2026-03-02
+
+---
+
+## Overview
+
+Badge templates define the visual and structural configuration for printing event badges.
+Each template applies to one category of badge (e.g., general attendees, workshops,
+exhibitors). An event typically has 1–3 templates.
+
+**Key principle:** One template per badge stock type/audience. Do not use flags on a
+single template to drive multiple layouts — create a separate template instead.
+
+**Common template sets:**
+- **General Attendees** — main conference badge (most attendees)
+- **Workshops / Pre-conference** — alternate header, possibly different badge type list
+- **Exhibitors** — distinct footer stripe colors, exhibitor-specific badge types
+
+Each template uses the same physical badge stock and printer configuration.
+
+---
+
+## DB Field Reference
+
+### Core Identity
+| Field | Type | Notes |
+|---|---|---|
+| `id` | int | Internal PK |
+| `id_random` | str | External-facing ID (AE Triple ID pattern) |
+| `event_id` | str | Parent event |
+| `name` | str | Template display name |
+| `description` | str | Optional description |
+
+### Image Assets
+| Field | Type | Notes |
+|---|---|---|
+| `logo_path` | str (URL) | Org logo — fallback when no header image |
+| `logo_filename` | str | **Deprecated** — redundant with logo_path; do not use |
+| `header_path` | str (URL) | Front-of-badge header image — primary branding |
+| `secondary_header_path` | str (URL) | Back-of-badge header image (falls back to header_path) |
+| `footer_path` | str (URL) | Optional footer image — rarely used |
+| `header_row_1` | str/HTML | Text fallback line 1 when no header image |
+| `header_row_2` | str/HTML | Text fallback line 2 |
+| `footer_title`, `footer_left`, `footer_right` | str | Legacy Flask-era fields — not used |
+| `header_background`, `footer_background` | str | Legacy — not used; do not add to new templates |
+
+### Network / WiFi
+| Field | Type | Notes |
+|---|---|---|
+| `wireless_ssid` | str | WiFi network name — displayed on badge back |
+| `wireless_password` | str | WiFi password — displayed on badge back |
+
+### QR Code Behavior
+| Field | Type | Notes |
+|---|---|---|
+| `show_qr_front` | bool (0/1) | Show attendee QR code on front of badge |
+| `show_qr_back` | bool (0/1) | Show attendee QR code (+ ID text) on back of badge |
+
+### Badge Type List
+| Field | Type | Notes |
+|---|---|---|
+| `badge_type_list` | JSON string | List of `{code, name}` objects for this template |
+
+**Format:**
+```json
+[
+  {"code": "current_member", "name": "Member"},
+  {"code": "guest", "name": "Guest"},
+  {"code": "staff", "name": "Staff"},
+  {"code": "test", "name": "Test"}
+]
+```
+
+The badge type footer stripe color is driven by CSS rules targeting the `code` value
+as a class on the footer element. Each event/template defines its own list — there is
+no global default. The component derives this list from the template at render time.
+
+### Ticket Definitions
+| Field | Type | Notes |
+|---|---|---|
+| `ticket_list` | JSON string | List of `{num, code, name}` for this template's tickets |
+| `ticket_1_text` – `ticket_8_text` | HTML | Ticket block HTML printed on badge back |
+
+**ticket_list format:**
+```json
+[
+  {"num": 1, "code": "foundation_reception", "name": "Foundation Reception"},
+  {"num": 2, "code": "volunteer_reception", "name": "Volunteer Reception"}
+]
+```
+
+The `ticket_N_code` field on the badge object references a ticket by its `code`. The
+corresponding `ticket_N_text` on the template provides the HTML rendered on the badge.
+
+### Print Layout / Styling
+| Field | Type | Notes |
+|---|---|---|
+| `layout` | str | Layout code — see Layout Codes below |
+| `style_filename` | str | CSS filename for locally-served stylesheets |
+| `style_href` | str (URL) | **Preferred** — external URL for custom CSS |
+| `script_src` | str (URL) | **Do not use** — Flask-era arbitrary script injection |
+
+### Access Control
+| Field | Type | Notes |
+|---|---|---|
+| `passcode` | str | Shared passcode for template management access |
+| `enable` | bool | Standard AE enable flag |
+| `hide` | bool | Standard AE hide flag |
+| `priority`, `sort`, `group` | int/str | Standard AE sort fields |
+| `notes` | str | Internal notes |
+
+### New Field (pending backend addition)
+| Field | Type | Notes |
+|---|---|---|
+| `duplex` | bool | **Planned** — when `false`, back section is hidden from print (`@media print`) |
+
+The `duplex` field controls whether the back-of-badge section renders during printing.
+When `false` (single-sided), `badge_back` gets `print:hidden` applied so only the front
+prints. The back section still displays on screen for configuration reference.
+
+The first event using this system (Axonius, NYC, mid-April 2026) uses single-sided PVC
+cards on a Zebra ZC10L — `duplex` will be `false` for that event's templates.
+
+---
+
+## External CSS Approach
+
+### Why External
+
+Badge templates may need visual adjustments mid-event (e.g., a color correction, a
+footer fix) without deploying a new SvelteKit build. Hosting the CSS at an external URL
+allows changes to take effect on next page load without any deployment.
+
+### How It Works
+
+The `style_href` field contains a full URL to a CSS file hosted on the static server
+(e.g., `https://static.oneskyit.com/c/ISHLT/css/badges_custom_ishlt.css`).
+
+The print page (`print/+page.svelte`) or the badge view should conditionally add a
+`<link>` element via `<svelte:head>` when `style_href` is populated:
+
+```svelte
+<svelte:head>
+    {#if $lq__event_badge_template_obj?.style_href}
+        <link
+            rel="stylesheet"
+            href={$lq__event_badge_template_obj.style_href}
+        />
+    {/if}
+</svelte:head>
+```
+
+This is not yet implemented — tracked as a pending Phase 1 item.
+
+### CSS Scope
+
+External badge CSS should scope all rules under `.badge_front`, `.badge_back`, etc.
+to avoid bleeding into the rest of the app. The classes used in
+`ae_comp__badge_obj_view.svelte` are the canonical hook points:
+
+- `.badge_front` — entire front card
+- `.badge_back` — entire back card
+- `.badge_header` — front header area
+- `.badge_body` — front content area (name, title, affiliations, location)
+- `.badge_footer` — front footer stripe
+- `.badge_back_header` — back header area
+- `.badge_back_content` — back content area
+- `.badge_footer_center.<code>` — footer text per badge type code (for color stripes)
+
+### layout field
+
+The `layout` field encodes physical badge stock dimensions. Standard codes to use:
+
+| Code | Dimensions | CSS file | Description |
+| --- | --- | --- | --- |
+| `badge_4x5_fanfold` | 4" × 5" (101.6 × 127mm) | `badge_layout_epson_4x5_fanfold.css` | Epson ColorWorks C3500 / ExpoBadge fanfold — preferred for general conference use (ISHLT, demos) |
+| `badge_3.5x5.5_pvc` | 3.5" × 5.5" (88.9 × 139.7mm) | `badge_layout_zebra_zc10l_pvc.css` | PVC card, Zebra ZC10L — single-sided, set `duplex=0` |
+| `badge_4x6_fanfold` | 4" × 6" (101.6 × 152.4mm) | *(none — Tailwind defaults)* | Generic fanfold fallback; dimensions match the hardcoded Tailwind values |
+| `badge_4x6_fanfold_tickets` | 4" × 6" + tear-offs | *(pending)* | Fanfold with ticket stubs |
+
+Layout CSS files live in `src/lib/ae_events/badges/css/` and are imported by
+`ae_comp__badge_obj_view.svelte`. Rules are scoped under `[data-layout="..."]` on the
+wrapper so multiple layouts can coexist in the bundle without conflict.
+
+`@page` paper size rules are injected per-layout from `print/+page.svelte <svelte:head>`
+(attribute selectors cannot scope `@page` rules, so they're handled dynamically).
+
+---
+
+## Template-Derived Features (component behavior)
+
+### badge_type_list → badge type select
+The badge type dropdown shown when editing a badge is derived from the template's
+`badge_type_list` JSON, not a hardcoded list. This was a bug (fixed 2026-03-02).
+See `ae_comp__badge_obj_view.svelte` — `badge_type_code_li` is now `$derived.by()`.
+
+### "Info section" flags (exhibitor_info, presenter_info, etc.)
+These flags (`exhibitor_info`, `presenter_info`, `staff_info`, `vip_info`, `vote_info`)
+**do not exist as DB columns**. They appeared as placeholder `{#if}` blocks in the
+badge view component from Flask-era development and were never implemented.
+
+The correct approach is **one template per badge audience** — an Exhibitor template will
+have exhibitor-specific `badge_type_list`, header images, and CSS. No flags needed.
+
+The dead `{#if $lq__event_badge_template_obj.exhibitor_info}` blocks in
+`ae_comp__badge_obj_view.svelte` should be removed in a future cleanup pass.
+
+---
+
+## Properties Saved to IDB (Dexie)
+
+The `properties_to_save` array in `ae_events__event_badge_template.ts` controls what
+gets cached locally. Current state — fields **NOT** in properties_to_save that exist
+in DB and may be needed:
+
+- `style_href` — needed once external CSS is wired via `<svelte:head>`
+- `passcode` — not needed client-side
+- `footer_title`, `footer_left`, `footer_right` — not needed (legacy)
+- `header_background`, `footer_background` — not needed (legacy)
+- `script_src` — do not add; this field should not be used
+- `duplex` — **add when backend adds the field**
+
+---
+
+## Standard Template Setup (per event)
+
+### 1. General Attendees template
+- `header_path`: event-specific conference header image
+- `secondary_header_path`: back-of-badge header (often same or related image)
+- `wireless_ssid` + `wireless_password`: venue WiFi
+- `show_qr_back`: `1` (back QR is standard for most events)
+- `show_qr_front`: `0` (usually off for front)
+- `badge_type_list`: full list of member/guest/staff/test types
+- `ticket_list` + `ticket_N_text`: event-specific tickets if applicable
+- `style_href`: client-specific CSS URL
+- `layout`: appropriate layout code
+- `duplex`: `1` (or `0` for single-sided events like Axonius 2026)
+
+### 2. Workshop / Pre-conference template
+- Same as above but with workshop-specific header images
+- `badge_type_list`: reduced list (workshop-relevant types only)
+- `ticket_list`: may be empty `[]`
+- `duplex`: match main template
+
+### 3. Exhibitor template
+- Exhibitor-specific header images
+- `badge_type_list`: exhibitor-only types (`ex_all`, `ex_booth`, `guest`, `staff`, `test`)
+- `ticket_list`: `[]` (exhibitors typically don't have event tickets)
+- `show_qr_back`: may be `0` (exhibitors scan others, they don't need their own QR prominent)
+- `wireless_ssid` + `wireless_password`: same venue WiFi
+
+---
+
+## Print Layout Architecture
+
+### How the print CSS works
+
+The print page (`print/+page.svelte`) injects `<style>` blocks into `<svelte:head>` that
+take effect only in `@media print`. Multiple layers of the SvelteKit layout chain must
+be neutered to get a clean print surface.
+
+**`#ae_main_content` — cannot dissolve, must passthrough:**
+`#ae_main_content` has `overflow: auto` (it is the events layout scroll container). CSS
+spec prohibits `display: contents` from overriding elements with overflow clipping —
+Firefox enforces this strictly, Chrome is lenient. Workaround: strip all its visual/layout
+effects with explicit `display: block; overflow: visible; position: static; width: 100%`.
+
+**Wrappers dissolved via `display: contents` (safe — no overflow constraints):**
+| Selector | Source | Why dissolved |
+|---|---|---|
+| `.main_content` | `events/+layout.svelte` | `pb-48`, `pt-20+`, `grow` |
+| `#badge_render_area` | `print/+page.svelte` | Screen-only right-padding offset for controls panel |
+
+**App chrome hidden via `print:hidden`:**
+- `nav.submenu` (events layout nav bar)
+- `footer.footer` (events layout footer)
+- Scroll-to-top / scroll-to-bottom button div
+- Kiosk header (`<header>` in print page)
+- Controls panel (`<div>` fixed right in print page)
+- Debug info section (edit mode only)
+- Root layout: offline banner, session expired banner, hydration overlay, sys/debug menus
+
+**Badge centering — `position: fixed`:**
+`.event_badge_wrapper` uses `position: fixed; top: 50%; left: 50%; transform: translate(-50%, -50%)`.
+In print, `position: fixed` anchors relative to the `@page` content area, bypassing the entire
+ancestor hierarchy (no containing-block height dependency, no overflow-clip interference).
+
+**Future per-template margins:** `print_margin_cfg` is already parsed from `cfg_json`
+in `print/+page.svelte`. A dynamic `@page { margin: ... }` injection can be built from
+that value when a UI for it exists.
+
+---
+
+### Cross-browser print behavior — IMPORTANT
+
+Verified 2026-03-12 by comparing print-to-PDF output from both browsers across multiple
+print dialog settings.
+
+#### `@page { size }` — paper size
+
+| Browser | Save to PDF | Physical printer |
+|---|---|---|
+| **Firefox** | Paper size locked — cannot change in dialog; CSS `@page { size }` used ✅ | Can select paper size in dialog |
+| **Chrome/Chromium** | Paper size locked — cannot change in dialog; uses system default (letter, A4, etc.) ❌ | Can select paper size under "More settings" |
+
+Chrome intentionally does not honor `@page { size }` for Save as PDF. It uses the system
+default paper size. This is a Chrome design decision, not a bug in our code.
+
+For actual printing to Epson/Zebra hardware: the printer driver controls paper size from
+the loaded badge stock. CSS `@page { size }` is advisory only. Real badge printing is
+unaffected by Chrome's behavior.
+
+Use Firefox for accurate print-to-PDF proofing — it produces a correctly-sized PDF that
+matches the badge stock dimensions exactly.
+
+#### Margins — Chrome "Default" causes layout problems
+
+| Chrome margin setting | Result |
+|---|---|
+| **Default** | ❌ Adds URL, date, and page-number headers/footers into the printable area. These eat into the space that `position: fixed; top: 50%` references, making the badge appear off-center or clipped against the footer. |
+| **None** | ✅ Correct — badge centered cleanly |
+| **Minimum** | ✅ Correct — small margins, badge still centered |
+| **Custom (reasonable values)** | ✅ Correct |
+
+The badge content itself is **not** distorted. Verified: Chrome "None" margins on an A4
+page produces the badge perfectly horizontally centered (page center 297.5 pts, badge
+content center 297.5 pts). The CSS centering logic is correct.
+
+**Staff guidance for Chrome:**
+- Set **Margins → None** (or Minimum) in Chrome's print dialog.
+- Optionally set paper size to match badge stock under "More settings" when printing to PDF.
+- For physical printer: select correct paper size under "More settings".
+
+Firefox users can use "Save to PDF" directly — it just works.
+
+---
+
+## Related Files
+
+| File | Role |
+|---|---|
+| `ae_events__event_badge_template.ts` | API + IDB functions; `properties_to_save` |
+| `db_events.ts` | Dexie schema for `badge_template` table |
+| `templates/+page.svelte` | Template list + create/edit/delete UI |
+| `templates/ae_comp__badge_template_form.svelte` | Template create/edit form |
+| `[badge_id]/ae_comp__badge_obj_view.svelte` | Badge render — consumes template data |
+| `[badge_id]/print/+page.svelte` | Print page — loads template, hosts `<svelte:head>` CSS |
+| `documentation/MODULE__AE_Events_Badges.md` | Badge object reference |
+
+---
+
+## Pending / TODO
+
+- [x] Wire `style_href` via `<svelte:head>` in print page — done in `print/+page.svelte`; also in `properties_to_save`. (2026-03-18 verified)
+- [x] Add `duplex` to `properties_to_save` — done. (2026-03-18 verified)
+- [x] Add `duplex`-driven suppression to `badge_back` section — done in `ae_comp__badge_obj_view.svelte`; `show_badge_back` derived from `duplex` field.
+- [ ] Make `layout` field drive actual card dimensions in the badge component — currently the Zebra ZC10L layout CSS (`badge_layout_zebra_zc10l_pvc.css`) sets dimensions correctly via `[data-layout="..."]` scoping, but fanfold layouts still use Tailwind defaults. Needs proper CSS for each layout code.
+- [ ] Remove dead `exhibitor_info` / `presenter_info` / `staff_info` / `vip_info` / `vote_info` `{#if}` blocks from `ae_comp__badge_obj_view.svelte` (if they were carried over from v1)
+- [ ] Improve `ae_comp__badge_template_form.svelte` to edit all relevant fields (currently minimal)

documentation/MODULE__AE_Events_Badges.md

@@ -0,0 +1,843 @@
+# MODULE: Aether Events — Badges
+
+**Module Path:** `src/routes/events/[event_id]/(badges)/badges/`
+**API Module:** `src/lib/ae_events/ae_events__event_badge.ts`
+**Database:** `db_events.badge` (Dexie IndexedDB table)
+**Last Updated:** 2026-02-27 (rev 6)
+**Related Docs:** `documentation/PROJECT__AE_Events_Badges_Review_Print.md` (implementation guide)
+
+---
+
+## Overview
+
+The Badges module manages event attendee badges with support for:
+- **External system imports as needed** (CSV/Excel, iMIS, Zoom, Novi, Impexium, Confex, Cvent, and others)
+- **Field override protection** to prevent staff/attendee edits from being overwritten by automated syncs
+- **Multi-tier access control** for field editing
+- **QR code generation** for badge scanning
+- **Print tracking** (count, first/last print datetime)
+- **Advanced search and filtering**
+- **HTML rendering** in display fields for rich text formatting
+- **Accessibility features** (text enlargement toggle)
+
+---
+
+## Critical Design Pattern: Override Fields
+
+### Purpose
+The `*_override` fields pattern protects data from being overwritten during scheduled cron syncs from external systems. This is essential because:
+1. Staff may need to correct imported data
+2. Attendees may be allowed to self-update certain fields (e.g., preferred name, pronouns)
+3. External systems often have outdated or incorrect data
+4. Changes should persist across multiple sync cycles
+
+### How It Works
+
+**Import Behavior:**
+```
+External System → Aether API → Populates REGULAR fields only
+                                (never touches *_override fields)
+```
+
+**Display Behavior:**
+```
+UI Display Logic:
+1. IF `*_override` field has value → USE IT (highest priority)
+2. ELSE IF regular field has value → USE IT (fallback)
+3. ELSE → Display placeholder/empty
+```
+
+**HTML Rendering (implemented 2026-02-27):**
+
+Certain fields support HTML markup for rich text formatting. When viewing (not editing), these fields use Svelte's `{@html}` directive to render the markup:
+- `full_name` / `full_name_override`
+- `professional_title` / `professional_title_override`
+- `affiliations` / `affiliations_override`
+- `location` / `location_override`
+
+This allows for formatting like:
+- Bold/italic: `<b>Dr.</b> Jane Smith` or `<i>Chief Medical Officer</i>`
+- Line breaks: `Hospital Name<br>Department Name`
+- Special characters and entities
+
+**Example — Full Name:**
+```typescript
+// API imports from iMIS
+badge.given_name = "Robert"
+badge.family_name = "Smith"
+badge.full_name = "Robert Smith"  // Auto-computed
+
+// Staff edits to preferred name with HTML
+badge.full_name_override = "<b>Bob</b> Smith"
+
+// Display in UI (review form)
+{@html badge.full_name_override || badge.full_name || "— no name —"}
+// Result: **Bob** Smith (bold rendered)
+
+// Edit mode shows raw HTML
+<input bind:value={editable_full_name_override} />
+// Shows: <b>Bob</b> Smith (editable as text)
+
+// Next cron sync from iMIS
+// ✅ badge.full_name updated to "Robert J. Smith" (middle initial added)
+// ✅ badge.full_name_override remains "<b>Bob</b> Smith" (PROTECTED)
+// ✅ Display still shows **Bob** Smith (bold rendered)
+```
+
+### Override Fields
+
+| Regular Field | Override Field | Purpose | Editable By | HTML Rendering |
+|---|---|---|---|---|
+| `pronouns` | `pronouns_override` | Preferred pronouns | Staff, Attendee | No |
+| `professional_title` | `professional_title_override` | Job title display | Staff, Attendee | ✅ Yes |
+| `full_name` | `full_name_override` | Preferred name display | Staff, Attendee | ✅ Yes |
+| `affiliations` | `affiliations_override` | Organization display | Staff, Attendee | ✅ Yes |
+| `phone` | `phone_override` | Phone number | Staff, Attendee | No |
+| `email` | `email_override` | Contact email override | Staff only | No |
+| `location` | `location_override` | City/State/Country display | Staff, Attendee | ✅ Yes |
+| `badge_type` | `badge_type_override` | Badge category label text | Staff only | No |
+| `badge_type_code` | `badge_type_code_override` | Badge access level code | Staff only | No |
+| `registration_type` | `registration_type_override` | Registration category label text | Staff only | No |
+| `registration_type_code` | `registration_type_code_override` | Registration category code | Staff only | No |
+
+> **Note:** `phone`, `phone_override`, `pronouns_override`, `registration_type`, `registration_type_code`, `registration_type_override`, `registration_type_code_override` may need to be confirmed against the DB schema via `ae_describe event_badge` and added to `properties_to_save` in `ae_events__event_badge.ts` if not already present.
+
+### Sync Safety Rules
+
+**Automated Sync (Cron Jobs):**
+- ✅ CAN update: All regular fields (`given_name`, `family_name`, `email`, `affiliations`, etc.)
+- ❌ CANNOT update: Any `*_override` field
+- ❌ CANNOT delete: Any `*_override` value
+
+**Manual Staff Edit:**
+- ✅ CAN update: Any field (including overrides)
+- ✅ CAN clear: Override fields (reverts to regular field)
+
+**Attendee Self-Service Edit:**
+- ✅ CAN update: Only specific override fields (per event config)
+- ✅ CAN clear: Their own override fields
+- ❌ CANNOT edit: Regular fields, badge_type, email_override
+
+---
+
+## External System Integration
+
+### Supported Import Sources
+- **iMIS** (Association Management)
+- **Zoom** (Virtual event registration)
+- **Novi AMS** (Association Management)
+- **Impexium** (Association Management)
+- **Confex** (Event abstract management)
+- **Cvent** (Event registration)
+- **Custom CSV/Excel** imports
+
+### Data Flow Direction
+```
+External Systems ─────────> Aether
+    (READ ONLY)          (WRITE + DISPLAY)
+```
+
+**Important:** Aether is **pull-only** — does not push changes back to external systems. This prevents sync conflicts and maintains external systems as the source of truth for base data.
+
+### Sync Behavior
+- **Frequency:** Scheduled cron jobs (typically hourly, daily, or on-demand)
+- **Method:** Full sync or incremental (depends on external system API)
+- **Conflict Resolution:** Override fields always win
+
+**Pseudocode:**
+```python
+def sync_badge_from_external(external_badge_data, existing_badge):
+    # Update regular fields from external source
+    existing_badge.given_name = external_badge_data.first_name
+    existing_badge.family_name = external_badge_data.last_name
+    existing_badge.email = external_badge_data.email
+    existing_badge.affiliations = external_badge_data.organization
+    existing_badge.badge_type_code = external_badge_data.registration_type
+
+    # NEVER TOUCH OVERRIDE FIELDS
+    # existing_badge.full_name_override ← PROTECTED
+    # existing_badge.affiliations_override ← PROTECTED
+    # existing_badge.email_override ← PROTECTED
+
+    return existing_badge
+```
+
+---
+
+## Access Control & Edit Permissions
+
+### Access Levels (Ascending)
+1. **Anonymous** — No access to badges
+2. **Public** — View public event info only (no badge access)
+3. **Authenticated** — View own badge, limited self-edit
+4. **Trusted** — Search all badges, view all, edit own
+5. **Administrator** — Full CRUD, bulk operations, override any field
+6. **Manager** — All administrator + event configuration
+7. **Super** — All manager + cross-event operations
+
+### Current Implementation (v3) — 2026-02-27
+
+#### Badge Search Results Visibility
+
+| Access Level | Sees |
+| --- | --- |
+| Below Trusted (incl. anonymous) | Only badges where `print_count < 1` and not hidden |
+| Trusted, not Edit Mode | Only badges where `print_count < 1` and not hidden |
+| Trusted + Edit Mode | All badges where `hide === false` (including already-printed) |
+
+#### Print Button Behavior (per result row)
+
+| Access Level | Print Action |
+| --- | --- |
+| Below Trusted | No print action — name shown with User icon, non-interactive |
+| Trusted, `print_count < 1` | Clickable link → `/print` page, Printer icon |
+| Trusted, `print_count >= 1`, not Edit Mode | Disabled (already printed safety lock), shows `Nx` count |
+| Trusted, `print_count >= 1`, Edit Mode | Clickable reprint — shows `Nx` count badge next to icon |
+
+Print count displayed as `[Printer][2×] Name` when `print_count >= 1`.
+
+#### Review Area Buttons (per result row, up to 3 buttons total)
+
+| Button | Visible To | Behavior |
+| --- | --- | --- |
+| Email Review Link | All users | Placeholder `alert()` — will trigger email API |
+| Review Link (clipboard) | Trusted + Edit Mode only | Copies `/review` URL to clipboard; shows `Copied!` feedback |
+| *(direct Review link)* | *(future)* | *(not yet implemented as separate nav button)* |
+
+#### Badge Edit Form (`ae_comp__badge_obj_view.svelte`)
+
+**Currently editable fields (local `edit_mode_active`, not global `edit_mode`):**
+```typescript
+editable_full_name_override: string | null
+editable_professional_title_override: string | null
+editable_affiliations_override: string | null  // textarea
+editable_location_override: string | null
+editable_allow_tracking: boolean | null
+editable_email: string | null
+editable_badge_type_code: string | null
+```
+
+- Save button → `handle_save_changes()` — only changed fields sent to API
+- Cancel button → `handle_cancel_changes()` — reverts to IDB values
+- **IMPORTANT:** This component must NEVER write to `$ae_loc.edit_mode` — it uses its own local `edit_mode_active` flag only. (Bug fixed 2026-02-27)
+
+#### Badge Review Form (`ae_comp__badge_review_form.svelte`)
+
+Form-based review (NOT a badge render). Used by the `/review` page.
+
+**Props:**
+- `can_edit_fields: string[]` prop controls which fields are editable per user level
+- `['*']` = administrator (all fields)
+- `is_staff: boolean` prop shows/hides the staff-only fields
+- Fields show "(overridden)" label when an override value differs from the base field
+
+**Features (implemented 2026-02-27):**
+- **HTML Rendering**: `full_name_override`, `professional_title_override`, `affiliations_override`, and `location_override` fields render HTML markup using `{@html}` directive when viewing (not when editing)
+- **Accessibility**: Text enlargement toggle button switches between text-2xl (normal) and text-4xl (enlarged) for improved readability
+- **Help Modal**: Flowbite Modal component with 6 help sections (Reviewing Badge, Editing Info, Accessibility, QR Code, Lead Scanning, Assistance)
+- **QR Code Display**: Generates QR code using `core_func.js_generate_qr_code()` with badge ID, supports hover zoom and click-to-expand
+- **Print Status**: Shows print count, first print datetime, and last print datetime at top of form
+- **Local Edit Mode**: Independent `local_edit_active` state (never writes to `$ae_loc.edit_mode`)
+- **Save/Cancel**: Only changed fields sent to API; revert button for override fields
+
+**Editable Fields:**
+- Pronouns, Full Name, Professional Title, Affiliations, Phone, Location (all with override support)
+- Allow Tracking checkbox (lead scanning permission)
+- Staff-only: Email, Badge Type, Registration Type, Hide, Priority, Notes
+- Staff-only: Options (`other_1_code` through `other_8_code`) and Tickets (`ticket_1_code` through `ticket_8_code`)
+- Agree to Terms & Conditions checkbox (attendee-visible when in can_edit_fields)
+
+#### Badge Review Page — Header Buttons (implemented 2026-02-27)
+
+| Button | Visible To | Behavior |
+| --- | --- | --- |
+| Back → Search (ArrowLeft) | Staff (`has_staff_access`) only | `<a href="/events/{id}/badges">` |
+| Print (Printer icon) | Trusted+, not printed OR Trusted+Edit if printed | `<a href="/print">`, shows `Nx` count if reprinting |
+| Copy Link (clipboard) | Trusted + Edit Mode only | Copies review URL to clipboard; `Copied!` feedback for 2s |
+| Email Link (Mail icon) | All if not printed; Trusted+Edit if printed | Placeholder `alert()` — email API pending |
+
+#### Badge Print Page — Header Buttons (implemented 2026-02-27)
+
+| Button | Visible To | Behavior |
+| --- | --- | --- |
+| Back → Search (ArrowLeft) | Always (when badge loaded) | `<a href="/events/{id}/badges">` |
+| Print Now (Printer icon) | Trusted+, not printed OR Trusted+Edit if printed | Calls `window.print()` directly (convenience duplicate); print count tracked by component button |
+| Review (Eye icon) | Trusted + Edit Mode only | `<a href="/review">` nav link |
+| Email Link (Mail icon) | All if not printed; Trusted+Edit if printed | Placeholder `alert()` — email API pending |
+
+#### Badge Review Page — Display Sections (implemented 2026-02-27)
+
+The review form (`ae_comp__badge_review_form.svelte`) displays:
+
+1. **Print status** ✅ — print count + first/last print timestamps (read-only, hidden if never printed)
+2. **QR Code** ✅ — the attendee's badge QR code for scanning at the badge kiosk (for automatic badge search + print flow). Generated using `core_func.js_generate_qr_code()` with `obj_type: 'event_badge'` and badge ID. Supports hover zoom overlay and click-to-expand.
+3. **Editable Fields** ✅ — all fields with access-level gating, override support, and HTML rendering for display fields
+4. **Options** ✅ (`other_1_code` through `other_8_code`) — Staff: editable text inputs; Attendees: shown as `[✓] Option X` checkmark display only when value exists
+5. **Tickets** ✅ (`ticket_1_code` through `ticket_8_code`) — Staff: editable text inputs; Attendees: shown as `[✓] Ticket X` checkmark display only when value exists
+6. **Accessibility Toggle** ✅ — Font size enlargement button in sticky header (text-2xl ↔ text-4xl)
+7. **Help Modal** ✅ — Attendee guidance modal with 6 sections explaining the review process, editing, QR codes, and lead scanning
+
+#### Default Field Permissions (hardcoded for now — Axonius first show, mid-April 2026)
+
+These are hardcoded in `review/+page.svelte` pending connection to `mod_badges_json.edit_permissions`.
+
+**Attendee (passcode-authenticated / anonymous with link):**
+```typescript
+[
+  'pronouns_override',
+  'full_name_override',
+  'professional_title_override',
+  'affiliations_override',
+  'phone_override',
+  'location_override',
+  'allow_tracking',   // Exhibitor Leads opt-in
+  'agree_to_tc',      // Terms & Conditions placeholder
+]
+```
+
+**Trusted Staff and above:**
+```typescript
+[
+  'pronouns_override',
+  'full_name_override',
+  'professional_title_override',
+  'affiliations_override',
+  'email_override',
+  'phone_override',
+  'location_override',
+  'badge_type_code_override',   // + badge_type_override (text label)
+  'registration_type_code_override',  // + registration_type_override (text label)
+  'option_1' ... 'option_8',    // i.e. other_1_code ... other_8_code
+  'ticket_1_code' ... 'ticket_8_code',
+  'allow_tracking',
+  'agree_to_tc',
+  'hide',
+  'priority',
+  'notes',
+]
+```
+
+**Administrator** — `can_edit_fields = ['*']` (all fields)
+
+**Badge type options (hardcoded for now):** `member`, `non-member`, `guest`, `exhibitor`, `staff`, `test`
+(In future: read from Event Badge Template's configured list)
+
+**Registration type options:** Same list as badge type for now — identical select options.
+
+#### Future: Per-Event Configuration
+
+`event.mod_badges_json.edit_permissions` — placeholder settings UI exists in
+`ae_comp__event_settings_badges_form.svelte`. Review page uses hardcoded defaults for now.
+The settings form and review page are not yet connected.
+
+```json
+{
+  "authenticated": {
+    "can_edit": ["pronouns_override", "full_name_override", "professional_title_override", "affiliations_override", "phone_override", "location_override", "allow_tracking", "agree_to_tc"]
+  },
+  "trusted": {
+    "can_edit": ["*attendee_fields", "email_override", "badge_type_code_override", "registration_type_code_override", "option_x", "ticket_x_code", "allow_tracking", "agree_to_tc", "hide", "priority", "notes"]
+  }
+}
+```
+
+---
+
+## Search & Filter Capabilities
+
+### Search Component
+**File:** `ae_comp__badge_search.svelte`
+
+### Multi-Word Search Fix (2026-02-26)
+Fulltext search now correctly handles multi-word queries by splitting on whitespace and applying AND logic per word:
+```typescript
+// "scott idem" → LIKE '%scott%' AND LIKE '%idem%'
+// Previously: LIKE '%scott idem%' (failed to match)
+const words = qry.split(/\s+/).filter(w => w.length > 0);
+for (const word of words) {
+    search_query.and.push({ field: 'default_qry_str', op: 'like', value: `%${word}%` });
+}
+```
+**Committed:** dc0f3066
+
+### Available Filters
+
+**Fulltext Search** (All Users)
+- Searches: `default_qry_str` database field
+- Includes: Name, email, external IDs
+- Type: `LIKE %query%` (case-insensitive)
+- Trigger: Enter key or 3+ characters typed
+
+**Advanced Filters** (Trusted Access & Above)
+```typescript
+// Badge Type Filter
+badge_type_code: 'current_member' | 'inactive_member' | 'ex_all' | 'staff' | etc.
+// Note: Badge types are defined per Event and Event Badge Template in database table records.
+// Common types include: member, nonmember, guest, exhibitor, staff
+// This is a work in progress - types vary by event configuration.
+
+// Print Status Filter
+qry_printed_status: 'all' | 'printed' | 'not_printed'
+
+// Affiliations Search
+qry_affiliations: string  // Separate filter for organization search
+
+// Sort Options
+qry_sort_order:
+  - 'name_asc' / 'name_desc'
+  - 'updated_desc' / 'updated_asc'
+  - 'print_count_desc'
+  - 'print_first_desc' / 'print_last_desc'
+  - 'badge_type_asc'
+  - 'affiliations_asc'
+```
+
+### QR Scan Search
+- Scans badge QR code
+- Extracts badge ID
+- Auto-fills search with ID
+- Jumps to badge detail view
+
+### Search Implementation Pattern
+**File:** `badges/+page.svelte` (Lines 117-365)
+
+**Strategy:** Standardized Reactive Search Pattern (Aether UI V3)
+1. **Isolate dependencies** into stable `$derived` object
+2. **Debounced effect** (300ms) triggers search
+3. **Fast Path:** Search IDB first (if not `remote_first`)
+4. **Revalidate:** API request updates IDB
+5. **LiveQuery:** UI auto-updates from IDB changes
+
+**Search API:** `events_func.search__event_badge()`
+```typescript
+await search__event_badge({
+  api_cfg: $ae_api,
+  event_id: event_id,
+  fulltext_search_qry_str: qry_str || null,
+  type_code: type_code || null,
+  printed_status: printed_status,
+  affiliations_qry_str: aff_str || null,
+  order_by_li: order_by_li,
+  limit: 150,
+  log_lvl: 0
+})
+```
+
+---
+
+## Badge Display Logic
+
+### Name Display Priority
+```typescript
+// Component: ae_comp__badge_obj_li.svelte (Lines 113-121)
+if (event_badge_obj?.full_name_override)
+    display: full_name_override
+else if (event_badge_obj?.full_name)
+    display: full_name
+else
+    display: given_name + ' ' + family_name
+```
+
+### Badge View Page
+**Route:** `/events/[event_id]/badges/[badge_id]`
+
+**Components:**
+- `+page.svelte` — Container with LiveQuery for badge data
+- `ae_comp__badge_obj_view.svelte` — Full badge display + edit UI
+
+**LiveQueries:**
+```typescript
+lq__event_badge_obj = liveQuery(() => db_events.badge.get(event_badge_id))
+lq__event_badge_template_obj = liveQuery(() =>
+  db_events.badge_template.get(badge.event_badge_template_id)
+)
+```
+
+**Loading States:**
+- `is_loading_idb` — Waiting for initial IDB lookup
+- If badge not found → "Badge Not Found" error with reload button
+- Loader spinner while fetching
+
+---
+
+## Badge Templates
+
+### Purpose
+Badge templates define the visual layout and content structure for printed badges:
+- Header images/logos
+- Field positions and font sizes
+- QR code placement
+- Ticket/option indicator display
+- WiFi credentials display
+
+### Template Selection
+Each badge references an `event_badge_template_id`. The template controls:
+- Layout (front/back)
+- Branding elements
+- Which fields to show
+- Field formatting rules
+
+### Template Loading
+Templates are loaded alongside badges via `inc_template` parameter:
+```typescript
+load_ae_obj_id__event_badge({
+  event_badge_id: badge_id,
+  inc_template: true  // Also loads template
+})
+```
+
+---
+
+## Print Tracking
+
+### Print Fields
+```typescript
+print_count: number             // Increments each print
+print_first_datetime: string    // ISO datetime of first print
+print_last_datetime: string     // ISO datetime of most recent print
+```
+
+### Print Button (Implemented 2026-02-26)
+The `handle_print_badge()` function in `ae_comp__badge_obj_view.svelte` increments the count and records timestamps:
+```typescript
+async function handle_print_badge() {
+    const now = new Date().toISOString();
+    const current_print_count = $lq__event_badge_obj.print_count ?? 0;
+    const data_to_update = {
+        print_count: current_print_count + 1,
+        print_last_datetime: now
+    };
+    if (current_print_count === 0) {
+        data_to_update.print_first_datetime = now;  // Only set on first print
+    }
+    await events_func.update_ae_obj__event_badge({ ... });
+}
+```
+
+Button has `data-testid="badge-print-btn"` and shows loading/done/error states with icon feedback.
+
+### Print Workflow
+1. **Pre-Print:** Badge print page (`/print`) shows "Already printed N times" warning in screen-only header if `print_count >= 1`
+2. **Record:** `handle_print_badge()` updates `print_count`, `print_last_datetime`, and `print_first_datetime` (first print only) via API before printing
+3. **Print:** `window.print()` — standard browser print dialog, wired and working (2026-02-27)
+4. **Redirect:** After 1 second, `goto(/events/{id}/badges)` returns to search
+5. **Audit:** `print_first_datetime` and `print_last_datetime` visible in Edit Mode debug row
+
+**Browser vs Electron:** Badge printing does NOT require the Electron native app. The standard browser print dialog works well across Chrome, Chromium, and Firefox. The Electron native app is specialized for the **Events Pres Mgmt Launcher only** and should not be assumed available for badge stations.
+
+---
+
+## Database Schema
+
+### IndexedDB Table: `badge`
+**File:** `src/lib/ae_events/db_events.ts` (Lines 841-852)
+
+**Indexed Fields:**
+```typescript
+badge: `
+  event_badge_id, id,
+  event_id,
+  full_name, full_name_override, email, email_override,
+  affiliations, affiliations_override,
+  badge_type, badge_type_code, badge_type_code_override, badge_type_override,
+  external_event_id, external_id, external_person_id,
+  default_qry_str,
+  alert,
+  tmp_sort_1, tmp_sort_2,
+  print_count, print_first_datetime, print_last_datetime,
+  enable, hide, priority, sort, group, notes, created_on, updated_on
+`
+```
+
+### Saved Properties
+**File:** `ae_events__event_badge.ts` (Lines 495-563)
+
+**Complete field list** (67 fields total):
+- Identity: `id`, `event_badge_id`, `event_id`, `event_badge_template_id`
+- Name: `pronouns`, `informal_name`, `title_names`, `given_name`, `middle_name`, `family_name`, `designations`
+- Professional: `professional_title`, `professional_title_override`
+- Display: `full_name`, `full_name_override`
+- Organization: `affiliations`, `affiliations_override`
+- Contact: `email`, `email_override`
+- Address: `address_line_1`, `address_line_2`, `address_line_3`, `city`, `country_subdivision_code`, `state_province`, `state_province_abb`, `postal_code`, `country_alpha_2_code`, `country`, `full_address`
+- Location: `location`, `location_override`
+- Classification: `badge_type`, `badge_type_code`, `badge_type_override`, `badge_type_code_override`
+- External: `external_event_id`, `external_id`, `external_person_id`
+- Search: `query_str`, `default_qry_str`
+- System: `alert`, `enable`, `hide`, `priority`, `sort`, `group`, `notes`, `created_on`, `updated_on`
+- Print: `print_count`, `print_first_datetime`, `print_last_datetime`
+- Sorting: `tmp_sort_1`, `tmp_sort_2`
+- Person Link: `person_external_id`, `person_external_sys_id`, `person_given_name`, `person_family_name`, `person_full_name`, `person_professional_title`, `person_affiliations`, `person_primary_email`, `person_passcode`
+
+---
+
+## API Functions
+
+### CRUD Operations
+**File:** `src/lib/ae_events/ae_events__event_badge.ts`
+
+```typescript
+// Load single badge
+load_ae_obj_id__event_badge({ event_badge_id, event_id, inc_template })
+
+// Load badge list
+load_ae_obj_li__event_badge({ event_id, view, limit, order_by_li })
+
+// Search badges (V3 API)
+search__event_badge({
+  event_id,
+  fulltext_search_qry_str,
+  type_code,
+  printed_status,
+  affiliations_qry_str,
+  order_by_li
+})
+
+// Create badge
+create_ae_obj__event_badge({ event_id, data_kv })
+
+// Update badge
+update_ae_obj__event_badge({ event_badge_id, event_id, data_kv })
+
+// Delete badge
+delete_ae_obj_id__event_badge({ event_badge_id, event_id, method })
+```
+
+### Field Processing
+**Function:** `process_ae_obj__event_badge_props()`
+
+**Processing Steps:**
+1. Map `*_random` fields to clean names (`event_badge_id_random` → `event_badge_id`)
+2. Set primary `id` field from `event_badge_id`
+3. Ensure `event_id` is set (from function parameter if missing)
+4. Calculate `tmp_sort_1` and `tmp_sort_2` for efficient sorting
+5. Return processed objects
+
+**Critical Fix (2026-02-26):** All CRUD functions now return **processed** data (matches IDB cache) instead of raw API responses. This ensures consistency between function return values and cached data.
+
+---
+
+## Component Architecture
+
+### Route Structure
+```
+/events/[event_id]/(badges)/badges/
+├── +layout.svelte                      # Layout wrapper (minimal)
+├── +page.svelte                        # Badge list + search
+├── ae_comp__badge_search.svelte        # Search form + filters
+├── ae_comp__badge_obj_li.svelte        # Badge list display (results)
+├── ae_comp__badge_create_form.svelte   # (Not actively used)
+├── ae_comp__badge_upload_form.svelte   # Bulk CSV upload
+└── [badge_id]/
+    ├── ae_comp__badge_obj_view.svelte  # Badge rendering + staff edit + print button
+    ├── ae_comp__badge_review_form.svelte  # Form-based field review/edit (attendee + staff)
+    ├── print/
+    │   ├── +page.ts                    # Non-blocking badge loader (inc_template: true)
+    │   └── +page.svelte                # Print-focused page — screen header + badge render
+    └── review/
+        ├── +page.ts                    # Non-blocking badge loader (inc_template: false)
+        └── +page.svelte                # Passcode-gated review page
+```
+
+> **Note:** The old `[badge_id]/+page.svelte` placeholder was removed (2026-02-27). The name link in the search results list now goes directly to `/print`.
+
+#### Badge Print Page (`/print`)
+- Screen-only header (`print:hidden`): "Back to Search" link + "Already printed N times" warning
+- Badge rendered via `ae_comp__badge_obj_view` with `is_review_mode={false}`
+- Print button inside `ae_comp__badge_obj_view` handles count update → `window.print()` → redirect to search
+- Page `<title>` includes badge name + event name
+
+#### Badge Review Page (`/review`)
+- Passcode-gated for attendees — URL `?passcode=...` matched against `badge.person_passcode`
+  - **Note:** `person_passcode` field is not yet in the DB (as of 2026-02-27). Review page accessible to staff via `trusted_access` without a passcode.
+- Access hierarchy (checked in order):
+  1. Administrator → full access (`can_edit_fields = ['*']`)
+  2. Trusted Staff → staff field set
+  3. Attendee with valid passcode → attendee field set
+  4. No access → passcode entry form shown
+- Uses `ae_comp__badge_review_form.svelte` (NOT badge render)
+- "Back to Search" link shown for staff only
+
+### Key Components
+
+**Badge List Page** (`+page.svelte`)
+- **LiveQuery:** Reactive badge list from IDB
+- **Search Pattern:** Debounced search with fast path + revalidation
+- **ID List:** `event_badge_id_li` drives LiveQuery
+- **Loading State:** Shows spinner when `search_status === 'loading'`
+
+**Badge Search** (`ae_comp__badge_search.svelte`)
+- **Form Mode:** Toggle between search form and QR scanner
+- **Filters:** Badge type, print status, affiliations, sort order (trusted+ only)
+- **Fulltext:** Name/email search (all users)
+- **QR Scan:** Integrated QR scanner for badge ID lookup
+
+**Badge List Display** (`ae_comp__badge_obj_li.svelte`)
+- **Visibility Filter:** Respects `hide` flag (trusted+ sees all)
+- **Display Logic:** Override → regular → fallback pattern
+- **Print Indicator:** Green checkmark badge shows `print_count`
+- **Metadata:** ID, created/updated timestamps (edit mode only)
+
+**Badge Detail View** (`ae_comp__badge_obj_view.svelte`)
+- **Edit Mode:** Activated by edit button (or `#review` URL hash for future self-service)
+- **Condition:** Renders only when BOTH `$lq__event_badge_obj` AND `$lq__event_badge_template_obj` are non-null
+- **Form Binding:** Direct `bind:value` on editable fields
+- **Dynamic Sizing:** Font size adjusts based on text length
+- **Print Preview:** Full badge layout with template
+- **Save Handler:** Only sends changed fields to API
+- **`data-testid` attributes:** `badge-edit-btn`, `badge-save-btn`, `badge-cancel-btn`, `badge-print-btn`, `badge-professional-title-input` — use these in tests
+
+---
+
+## Testing Status
+
+### Current Test Coverage
+- ✅ Badge list loads (all 6 data integrity tests passing)
+- ✅ Badge template list loads and displays
+- ✅ Badge template form renders and populates correctly
+- ✅ Badge template values persist in edit form
+- ✅ Electron bridge compatibility (graceful degradation in browser)
+- ✅ Badge field processor handles missing optional fields
+- ✅ Badge type filter tests
+- ✅ Badge template relationship tests
+- ✅ **Attendee workflow test** — navigate → edit professional title → print → return (d1ded2d4)
+
+### Key Test Lessons Learned
+
+**Search API path is FLAT, not nested.** `search_ae_obj` builds `/v3/crud/{obj_type}/search` — always flat regardless of the parent relationship. Mocks must match this:
+```typescript
+// CORRECT — flat path
+url.includes('/v3/crud/event_badge/search') && method === 'POST'
+// WRONG — nested path, mock will never fire
+url.includes(`/v3/crud/event/${event_id}/event_badge/search`) && method === 'POST'
+```
+
+**List API (GET) is also FLAT with query params.** `get_ae_obj_li` builds `/v3/crud/{obj_type}/?for_obj_id=...` — always flat. Mocks must check `url.includes('/v3/crud/event_badge_template/') && url.includes('for_obj_id')`.
+
+**CSS `input[value*=...]` selectors don't work with Svelte bind:value.** The CSS selector checks the HTML *attribute*; Svelte's `bind:value` sets the DOM *property* only. In Playwright tests, use `page.getByLabel()` or `locator.inputValue()` instead.
+
+**Dexie requires `_random` ID fields.** Badge objects saved to IDB must include:
+```typescript
+event_badge_id_random: string  // Must be present or Dexie skips the object
+id_random: string              // Also checked
+// Error: "Object is missing a valid ID for table 'badge'"
+```
+All API mock responses in tests need these fields.
+
+**Badge view requires both badge AND template.** `ae_comp__badge_obj_view.svelte` wraps everything in `{#if $lq__event_badge_obj && $lq__event_badge_template_obj}` — if the template isn't loaded, edit/print buttons and the badge itself don't render. Tests must mock the badge template endpoint.
+
+**Badge GET endpoint (single object):** `/v3/crud/event_badge/{id}` (NOT nested under event). Matches `api.get_ae_obj()` which uses the flat path.
+
+**Badge PATCH endpoint (update):** `/v3/crud/event/${event_id}/event_badge/${badge_id}` (nested under event). Matches `api.patch_ae_obj()` which uses the nested path.
+
+**Use `data-testid` for test selectors.** Key buttons have targets: `badge-edit-btn`, `badge-save-btn`, `badge-cancel-btn`, `badge-print-btn`, `badge-professional-title-input`.
+
+### Remaining Test Issues
+None — all current badge tests passing as of 2026-02-26 (f5e98b8c).
+
+---
+
+## Known Issues & Future Enhancements
+
+### Known Issues
+1. **Session Cold-Start:** Potential race condition on first load (same as pres mgmt module)
+2. **Type Definitions:** Some pre-existing TypeScript errors on external package types (not introduced by badge work)
+3. **`person_passcode` not in DB:** Attendee-gated review URL (`?passcode=...`) cannot function until this field is added to the `event_badge` schema. The review page falls back to passcode entry form for non-staff.
+4. **Print page CSS:** Badge print rendering and `@page` print styles not yet fine-tuned — expected to need work
+5. **`mod_badges_json.edit_permissions` not connected:** Settings UI exists but review page uses hardcoded field defaults
+
+### Implemented (2026-02-27)
+- ✅ `window.print()` wired to print button (records count first, then prints, then redirects)
+- ✅ Dedicated `/print` page — replaces old `[badge_id]/+page.svelte` placeholder
+- ✅ Dedicated `/review` page — passcode-gated, access-tiered
+- ✅ `ae_comp__badge_review_form.svelte` — stub created, full form fields pending
+- ✅ Badge search results visibility rules (unprinted-only for non-edit, all for trusted+edit)
+- ✅ Badge list: 4 action buttons per row (Print, Review nav, Copy Link, Email Link) — all Lucide icons
+- ✅ Print page: 3 action buttons in header (Print Now, Review nav, Email Link) — all Lucide icons
+- ✅ Review page: 3 action buttons in header (Print nav, Copy Link, Email Link) — all Lucide icons
+- ✅ Print button: not shown when already printed (unless Edit Mode)
+- ✅ Print count shown as `Nx` badge next to printer icon
+- ✅ Email obscuring for non-trusted users
+- ✅ Email Review Link button (placeholder alert — email API pending)
+- ✅ Direct Review Link clipboard copy (trusted + Edit Mode only)
+- ✅ Fixed: components no longer write to `$ae_loc.edit_mode`
+- ✅ Settings UI for `edit_permissions` per event (`ae_comp__event_settings_badges_form.svelte`)
+- ✅ All badge module icons converted to Lucide (Font Awesome removed from badge routes)
+
+### Recently Completed (2026-02-27)
+- ✅ **Badge Review Form** — `ae_comp__badge_review_form.svelte` fully implemented (fields, QR, save/cancel, options/tickets, accessibility, help modal)
+- ✅ **Print font size controls (v1)** — Screen-only `[−]/[+]/[↺]` panel on print page; 4 px props added to `ae_comp__badge_obj_view.svelte`; auto-sizing unchanged when props absent
+- ✅ **Bug fix** — `default_authenticated_fields` / `default_trusted_fields` in `review/+page.svelte` corrected (wrong field names caused silent save drops)
+
+### Still Needed — HIGH PRIORITY (first show: April 2026)
+
+### Still Needed — MEDIUM PRIORITY
+1. **Email API for review links:** `send_review_email()` is a placeholder `alert()`. Needs actual email send endpoint.
+2. **`person_passcode` DB field:** Add to `event_badge` schema to enable attendee-gated review URLs.
+3. **Connect `edit_permissions` config:** Read `mod_badges_json.edit_permissions` in review page instead of hardcoded defaults.
+4. **Print page CSS / `@page` styles:** Badge rendering, sizing, and print-specific stylesheet.
+
+### Still Needed — FUTURE / LOW PRIORITY
+1. **Batch Operations:** Bulk update, bulk print, bulk export
+2. **Audit Log:** Track who edited which fields and when
+3. **Photo Badges:** Support badge photo upload and display
+4. **Real-Time Sync:** WebSocket updates for multi-device badge printing stations
+
+---
+
+## Development Guidelines
+
+### Adding New Override Fields
+1. Add `{field}_override` to database schema
+2. Add to `properties_to_save` array in `ae_events__event_badge.ts`
+3. Update display logic to check override first
+4. Add to editable fields in `ae_comp__badge_obj_view.svelte`
+5. Update access control config
+6. Document in this file
+
+### Testing Override Fields
+```typescript
+// Simulate external sync
+badge.given_name = "External Value"
+
+// User edits
+badge.given_name_override = "User Value"
+
+// Next sync (should NOT change override)
+badge.given_name = "Updated External Value"
+
+// Display should still show "User Value"
+assert(display === badge.given_name_override)
+```
+
+### Debugging Search Issues
+```typescript
+// Enable search logging
+log_lvl: 2
+
+// Check search params object
+console.log('Search params:', search_params)
+
+// Verify API request
+console.log('API request:', { event_id, fulltext_search_qry_str, type_code })
+
+// Check returned IDs
+console.log('Badge IDs:', event_badge_id_li)
+
+// Verify IDB contents
+db_events.badge.toArray().then(console.log)
+```
+
+---
+
+## Related Documentation
+- [AE API V3 for Frontend](./GUIDE__AE_API_V3_for_Frontend.md)
+- [Development Guide](./GUIDE__Development.md)
+- [Events Launcher Native Integration](./PROJECT__AE_Events_Launcher_Native_integration.md)
+- [Naming Conventions](./AE__Naming_Conventions.md)
+
+---
+
+**Document Status:** 🔄 In Progress
+**Last Verified:** 2026-02-27 (rev 5 — field permissions spec added, header buttons implemented, review form fields pending)
+**Verified Against:** Code as of 2026-02-27 (branch ae_app_3x_llm)

documentation/MODULE__AE_Events_Badges_Onsite.md

@@ -0,0 +1,207 @@
+# Aether Events — Onsite Badge Printing
+
+Notes on setup, process, hardware, and browser behavior for onsite badge printing at events.
+
+---
+
+## Overview
+
+Aether badge printing uses the browser's native `window.print()` — no special software or print
+server needed. The badge render page (`/events/[event_id]/badges/print/[badge_id]`) outputs
+print-ready HTML/CSS, and the browser sends it directly to the connected printer via CUPS (Linux)
+or the OS print system (macOS/Windows).
+
+Chrome (Chromium) is the recommended browser for onsite kiosk stations.
+Firefox is a solid alternative, especially for Save-to-PDF workflows.
+
+---
+
+## Recommended Workflow — Onsite Kiosk
+
+1. Open the event's badge printing page: `/events/[event_id]/badges`
+2. Search for the attendee (name, badge ID, or QR scan)
+3. Open the badge print page — review the rendered badge
+4. Click **Print Badge** in the controls panel (or use keyboard shortcut)
+5. In the browser print dialog:
+   - Set Margins to **None** (Chrome) or leave defaults (Firefox)
+   - Confirm paper/card size matches the stock loaded in the printer
+   - Print
+6. `print_count` increments automatically on each print via the Print Badge button
+
+For high-volume events, consider the **rapid QR scan** mode in the Leads module or using a
+dedicated kiosk session where the operator only handles physical card handoff.
+
+---
+
+## Browser Settings
+
+### Chrome / Chromium (Recommended for kiosk use)
+
+Chrome is recommended for onsite badge printing stations. Key print dialog settings:
+
+| Setting | Correct value | Notes |
+|---|---|---|
+| Margins | **None** or **Minimum** | Default margins add URL/date headers — breaks badge centering |
+| Paper size | Match card stock (e.g. 3.5" × 5.5") | Zebra driver may override this automatically |
+| Background graphics | **On** | Required for colored header/footer stripe to print |
+| Pages | 1 | PVC single-sided — only front should print |
+
+**Important:** Chrome ignores CSS `@page { size }` for Save to PDF — it defaults to letter/A4.
+For physical printer output, the printer driver controls paper size. This is expected behavior.
+
+To lock Chrome settings for a kiosk, set Margins to "None" once and Chrome remembers per-printer.
+
+### Firefox
+
+Firefox honors CSS `@page { size }` which makes it ideal for PDF generation.
+For physical printing, Firefox generally "just works" without margin adjustments.
+
+| Setting | Notes |
+|---|---|
+| Paper size | Can be set in dialog, but CSS `@page { size }` is honored |
+| Margins | Default is usually fine; remove headers/footers if they appear |
+| Background graphics | Enable for colored stripes and header images to print |
+
+### General Notes
+
+- **Background graphics must be enabled** in any browser — otherwise header images, footer
+  color stripes, and tonal backgrounds will not print.
+- Private/incognito mode blocks PWA install prompts — use normal browser sessions for kiosk.
+- For highest reliability, set the kiosk machine to auto-login and open Chrome to the event URL.
+
+---
+
+## Linux / CUPS Setup
+
+For Linux workstations and dedicated kiosk machines running Linux:
+
+1. Install CUPS if not already present: `sudo pacman -S cups` (Arch) or equivalent
+2. Start the CUPS service: `sudo systemctl enable --now cups`
+3. Open the CUPS web UI: `http://localhost:631`
+4. Add the printer and install the appropriate driver (see per-printer sections below)
+5. Print a test page from CUPS to confirm card feed and quality
+6. In Chrome: select the CUPS printer name under Destination in the print dialog
+
+On macOS and Windows, use the vendor-provided driver installer.
+
+---
+
+## Printers
+
+---
+
+### Zebra ZC10L — PVC Card Printer
+
+**Card stock:** 3.5" × 5.5" PVC cards (CR80 extended)
+**Tested:** 2026-03-17 (rental test day, Arch Linux)
+**Status:** Working. Confirmed suitable for Axonius NYC (mid-April 2026).
+
+#### Physical Setup
+
+- Connect via USB (the ZC10L supports USB and Ethernet)
+- Load PVC card stock per the Zebra loading instructions — cards face-up, landscape
+- The ZC10L prints one side (single-sided dye-sub thermal); do not attempt duplex on PVC stock
+
+#### Linux Driver
+
+- Download the Zebra ZC10L CUPS driver from zebra.com (ZC Series Linux support)
+- Install the `.deb` or extract the PPD file and add to CUPS manually
+- In CUPS (`http://localhost:631`), add the printer and select the ZC10L PPD
+- Set default paper size to **3.5" × 5.5"** (or CR80 Extended if listed)
+- Print a blank test page from CUPS before using Chrome
+
+> **Note:** Driver version tested: *(update here after confirming)*
+> CUPS printer name used: *(update here after setup)*
+
+#### Chrome Print Settings (ZC10L)
+
+| Setting | Value |
+|---|---|
+| Destination | Zebra ZC10L (CUPS name) |
+| Paper size | 3.5 × 5.5 in (or as set in CUPS) |
+| Margins | **None** |
+| Background graphics | On |
+| Pages | 1 (front only) |
+
+#### CSS Layout
+
+The ZC10L uses the `badge_3.5x5.5_pvc` layout. The PVC layout CSS is at:
+`src/routes/events/[event_id]/(badges)/badges/print/badge_layout_zebra_zc10l_pvc.css`
+
+This layout hides `.badge_back` in `@media print` — only the front face prints.
+`@page { size: 3.5in 5.5in; margin: 0; }` is set in the CSS.
+
+#### Known Behaviors / Watch-outs
+
+- Chrome with **Default** margins: inserts URL/date headers, offsets badge — use **None**
+- Chrome with **None** or **Minimum** margins: correct output
+- Firefox: works correctly out of the box with this layout
+- Physical card alignment: if the badge appears offset on the card, a CSS margin tweak may
+  be needed in the PVC layout file — note the offset and adjust `print_margin_cfg` once that
+  field is wired to the UI
+- Font sizes: if name/affiliation text appears too small at physical scale, adjust via the
+  font size controls (+ / −) in the print controls panel; note the preferred values for this
+  event's template
+
+#### Test Results (2026-03-19)
+
+- Card feeds and prints without jam: ✅
+- Single-sided PVC confirmed (back does not print): ✅
+- Chrome margins None/Minimum: correct output ✅
+- Firefox: correct output ✅
+- QR code scannable from printed card: ✅
+- Print tracking (`print_count` increment): ✅
+- Font sizes / visual quality: tested; specific calibration pending client design direction
+- Driver version: *(record here)*
+- Physical offset needed: *(record if any)*
+
+---
+
+### Epson — Fan-Fold / Label Printer
+
+**Status:** Not yet tested. Section to be filled in after testing.
+
+Common Epson models used for fan-fold name badge stock: TM-T88 series, C3500, LX series.
+Fan-fold stock is typically 4" × 3" or 4" × 6" paper labels.
+
+#### CSS Layout
+
+Fan-fold badges would use a layout sized to the specific label stock.
+A new CSS layout file will need to be created per stock size if not already present.
+Naming convention: `badge_layout_epson_[model]_[size].css`
+
+#### Setup Notes
+
+*(To be filled in after testing — cover: driver source, CUPS setup, paper size, Chrome settings)*
+
+#### Known Behaviors
+
+*(To be filled in after testing)*
+
+---
+
+## Print Tracking
+
+The badge print page tracks print counts per badge:
+
+- `print_count` — increments on each **Print Badge** button click
+- `print_first_datetime` — timestamp of first print
+- An amber "Printed N×" chip appears in the print page header after the first print
+
+The reprint shortcut (trusted access + edit mode) does **not** increment the count.
+Only the **Print Badge** button path increments the count. This is intentional — reprints
+for alignment or quality checks should not inflate the print count.
+
+---
+
+## Troubleshooting
+
+| Symptom | Cause | Fix |
+|---|---|---|
+| White border around printed badge | Chrome Default margins | Change to None or Minimum |
+| URL / date printed at top or bottom | Chrome Default margins | Change to None |
+| Header image / stripe not printing | Background graphics disabled | Enable in print dialog |
+| Badge appears on wrong-size output | Paper size mismatch | Set correct size in CUPS and/or print dialog |
+| Card jams | Card stock misloaded | Re-seat cards per printer manual; check stock orientation |
+| Badge content clipped | Layout overflow | Check font size — use − control to reduce if needed |
+| Second blank card ejected | Duplex triggered on PVC | Confirm `.badge_back { display: none }` in print CSS for this layout |

documentation/MODULE__AE_Events_Exhibitor_Leads.md

@@ -0,0 +1,262 @@
+# Aether Events — Exhibitor Leads Module (v3)
+
+**Status:** Implemented and ready for demo. Core lead capture flow works end-to-end.
+**Platform:** PWA only — mobile-first, offline-capable.
+**Target users:** Conference exhibitors scanning attendee badges at their booths.
+
+---
+
+## What It Does
+
+The Exhibitor Leads module lets conference exhibitors capture and manage attendee leads directly
+from their booth. Exhibitors scan or search attendee badges and build a list of contacts they met.
+All data is cached locally (IndexedDB / Dexie.js) for spotty or offline venue Wi-Fi, with
+background SWR revalidation against the API when the network is available.
+
+Key capabilities:
+
+- **Badge scanning** — QR scan or text search (name, email, affiliations, badge ID)
+- **Lead list** — filterable/sortable, per-exhibitor or per-staff-member view
+- **Lead detail** — custom question responses, notes (rich text), priority flag, hide/unhide
+- **Export** — CSV/XLSX download of all leads for an exhibit
+- **License management** — assign staff accounts (email + passcode) per max license count
+- **Custom questions** — configurable per-exhibit follow-up questions (ratings, dropdowns, text)
+- **Offline-first** — IndexedDB cache survives network drops; syncs on reconnect
+- **PWA install** — Chrome/Android native install prompt; iOS Safari "Add to Home Screen" nudge
+
+---
+
+## Access Levels
+
+Three sign-in levels are supported within this module:
+
+| Level | How to sign in | What they can do |
+|---|---|---|
+| **Aether Platform Auth** | Standard Aether login (manager/trusted access) | Full admin bypass; all exhibit data |
+| **Shared Exhibit Passcode** | Enter booth's `staff_passcode` | Manage licenses, view/add leads |
+| **Licensed User** | Email + individual passcode from `license_li_json` | Add and manage leads for this booth |
+
+Auth state is persisted in `$events_loc.leads.auth_exhibit_kv[exhibit_id]` (localStorage-backed).
+
+A booth only shows in the landing page search to non-admins if it is marked `priority = true` (i.e. paid).
+
+### `allow_tracking` Opt-In
+
+Attendees must have `allow_tracking = true` on their badge record to be added as a lead.
+Attendees without this flag are blocked at both the QR scanner and the manual search:
+- QR scan shows a "Tracking Blocked" warning card (`ShieldOff` icon)
+- Manual search shows an "Opt-Out" badge per result row; the "Add as Lead" button is suppressed
+
+---
+
+## Route Structure
+
+```
+/events/[event_id]/leads/
+    → Exhibit search / landing page — find your booth
+
+/events/[event_id]/leads/exhibit/[exhibit_id]/
+    → Main exhibitor view — all 4 tabs
+
+/events/[event_id]/leads/exhibit/[exhibit_id]/lead/[exhibit_tracking_id]/
+    → Lead detail view — edit notes, custom responses, flags
+```
+
+---
+
+## Module Tabs
+
+### Tab 1 — Start / Sign In
+
+The only tab visible when not signed in as a licensed leads user.
+
+- **Sign in with shared passcode** — grants booth management access (license management, passcode change)
+- **Sign in as licensed user** — grants lead capture access (email + passcode)
+- **PWA install prompt** — Chrome/Android native install button; iOS "Share → Add to Home Screen" instructions
+- **License list** — shown when signed in via shared passcode or Aether admin; add/edit/remove staff slots
+
+### Tab 2 — Add Leads
+
+Visible only when signed in (licensed user or Aether auth).
+
+- **Text search** — search by name, email, affiliations, badge ID
+- **QR scan** — three modes (persisted per exhibit in `tab_scan_qualify`):
+  - **Confirm** (`rapid`) — scan, then choose per badge: **Add & Scan Next** (resets after 2s) or **Add & View Lead** (navigates to detail)
+  - **Auto** — no confirmation tap; adds immediately and auto-resets (high-throughput)
+  - **Multi** — BarcodeDetector batch scan; up to 4 badges in one frame as a confirm grid
+- Previously-removed leads detected on scan — shown a "Previously Removed" card with **Restore & Scan Next** / **Restore & View Lead** buttons
+- Results show "Add as Lead" or "View Lead" depending on whether already captured
+- `external_person_id` and `group` resolved by auth type — see [Capture Identity](#capture-identity) below
+
+### Tab 3 — Leads List
+
+The main lead management view.
+
+- **Search** — full-text across name, email, notes (local IDB fast path + API revalidation)
+- **Sort** — Newest first, Oldest first, Name A→Z, Name Z→A
+- **Filter by staff member** — "All Leads" or filter by individual licensed user
+- **Show/hide hidden records** — toggles `hide` filter on IDB and API results
+- **Export** — downloads CSV/XLSX for the exhibit (`leads_api_access` required)
+
+### Tab 4 — Manage / Config
+
+Exhibit configuration and app settings.
+
+**Admin Tools** (manager_access only):
+- Payment status toggle (`priority` field)
+- Max licenses, small/large device counts
+
+**Booth Profile** (all signed-in users):
+- Exhibitor name, booth description (rich text)
+
+**Access & Security**:
+- View/change shared staff passcode
+- Sign out button
+
+**Lead Retrieval Config**:
+- Exhibit Leads Licensees — manage staff accounts (`administrator_access` only; gap: should also allow shared-passcode users — see Known Gaps)
+- Qualifiers & Questions — custom question config
+- Licenses & Billing — stub (Stripe not yet implemented)
+
+**App Settings**:
+- Auto-hide header/footer toggle
+- Show Payment Tab toggle
+- Show Extra Details toggle
+- Refresh interval (1–120 seconds, default 25s), countdown timer, last-refresh timestamp
+- Reload App, Clear IDB, Hard Reset (clears localStorage)
+
+---
+
+## Data Model
+
+### `event_exhibit`
+One exhibitor's presence at an event.
+
+| Field | Purpose |
+|---|---|
+| `event_exhibit_id` | Primary / URL-safe ID |
+| `name` | Exhibitor display name |
+| `code` | Booth number |
+| `staff_passcode` | Shared sign-in code |
+| `priority` | `1` = paid/active |
+| `license_max` | Max licensed staff slots |
+| `license_li_json` | Array of `{ full_name, email, passcode }` |
+| `leads_custom_questions_json` | Array of question definitions |
+| `leads_device_sm_qty` / `leads_device_lg_qty` | Device count tracking |
+
+### `event_exhibit_tracking`
+One captured lead — links an exhibit to a badge.
+
+| Field | Purpose |
+|---|---|
+| `event_exhibit_tracking_id` | Primary key |
+| `event_exhibit_id` | Parent exhibit |
+| `event_badge_id` | Captured attendee's badge |
+| `external_person_id` | Capturing staff's email (from license) |
+| `exhibitor_notes` | Rich text notes (HTML via TipTap) |
+| `responses_json` | `{ [question_code]: { response: value } }` |
+| `priority` | Star/flag for high-priority leads |
+| `hide` | Soft-delete / hide from list |
+| Denormalized badge fields | `event_badge_full_name`, `event_badge_email`, `event_badge_affiliations`, `event_badge_professional_title` |
+
+---
+
+## Key Files
+
+### Routes
+
+| File | Role |
+|---|---|
+| `leads/+page.svelte` | Exhibit search/landing |
+| `leads/exhibit/[exhibit_id]/+page.svelte` | Main exhibitor view — orchestrates all tabs |
+| `leads/exhibit/[exhibit_id]/+layout.svelte` / `+layout.ts` | Layout / data load |
+| `leads/exhibit/[exhibit_id]/lead/[exhibit_tracking_id]/+page.svelte` | Lead detail |
+
+### Components
+
+| File | Role |
+|---|---|
+| `ae_tab__start.svelte` | Tab 1 — welcome, sign-in, license list |
+| `ae_tab__add.svelte` | Tab 2 — QR scan + text search toggle |
+| `ae_tab__manage.svelte` | Tab 4 — admin tools, booth config, app settings |
+| `ae_comp__exhibit_signin.svelte` | Sign-in UI (shared passcode + licensed user) |
+| `ae_comp__lead_qr_scanner.svelte` | QR scanner (rapid / qualify mode) |
+| `ae_comp__lead_manual_search.svelte` | Manual badge search + add |
+| `ae_comp__exhibit_tracking_search.svelte` | Lead list search/filter/sort bar |
+| `ae_comp__exhibit_tracking_obj_li.svelte` | Lead list item renderer |
+| `ae_comp__exhibit_license_list.svelte` | License slot manager |
+| `ae_comp__exhibit_custom_questions.svelte` | Custom question config editor |
+| `ae_comp__exhibit_payment.svelte` | **STUB** — Stripe placeholder |
+| `ae_comp__exhibit_search.svelte` | Exhibit search on the landing page |
+| `lead/ae_comp__lead_detail_form.svelte` | Custom question response editor |
+
+### Lib Functions
+
+| File | Role |
+|---|---|
+| `src/lib/ae_events/ae_events__exhibit.ts` | Exhibit load, search, create, update |
+| `src/lib/ae_events/ae_events__exhibit_tracking.ts` | Tracking load, search, create, update, export |
+
+Both aggregated into `events_func` via `src/lib/ae_events/ae_events_functions.ts`.
+
+---
+
+## Offline / PWA Notes
+
+- All data is stored in `db_events` (Dexie.js) — `exhibit` and `exhibit_tracking` tables
+- SWR pattern: IDB cache returned immediately; background API fetch updates IDB and triggers UI refresh
+- Search: local IDB first pass (fast), then API revalidation via `search__exhibit_tracking`
+- `beforeinstallprompt` event captured at module load time (`src/lib/pwa/pwa_install.svelte.ts`)
+  — fires within ~1 second of page load, before any Svelte `$effect` runs
+- iOS Safari: no native install prompt; shows "Share → Add to Home Screen" instructions instead
+
+---
+
+## Capture Identity
+
+`external_person_id` and `group` on every `event_exhibit_tracking` record record who captured the lead. Resolved at capture time in all three lead capture components (single scanner, multi scanner, manual search):
+
+| Auth type | `kv.type` | Value stored |
+| --- | --- | --- |
+| Licensed exhibit user | `'licensed'` | Their email address (`kv.key`) |
+| Shared exhibit passcode | `'shared'` | `'shared_passcode'` (label — raw passcode is NOT stored) |
+| Aether user (admin bypass, no kv) | `undefined` | `$ae_loc.access_type` — e.g. `'trusted'`, `'manager'`, `'super'` |
+
+`kv` = `$events_loc.leads.auth_exhibit_kv[exhibit_id]` (localStorage-persisted exhibit sign-in state).
+
+---
+
+## Lead Soft-Delete / Re-enable
+
+Leads are never hard-deleted. "Remove Lead" sets `enable = false`. Key behaviors:
+
+- **Leads list** always filters out `enable = false` records (both IDB fast-path and API results) — no flash of removed records
+- **QR scanner**: if a previously-removed badge is scanned, the scanner detects it via `existing_leads_map` (IDB) or API fallback search (`search__exhibit_tracking` with `qry_badge_id` + `enabled: 'not_enabled'`) and shows the reenable card instead of an error
+- **Lead detail page**: "Remove Lead" button (two-click confirm in header) sets `enable = false` and navigates back. "Restore Lead" card appears at the bottom of the right sidebar when `enable` is falsy.
+- `search__exhibit_tracking` supports `qry_badge_id` param (added) and `enabled: 'not_enabled'` to find disabled records for a specific badge + exhibit combination
+
+---
+
+## Known Gaps
+
+### Payment / Stripe
+`ae_comp__exhibit_payment.svelte` is a stub. The Stripe integration is not implemented.
+The payment tab can be hidden via "Show Payment Tab" in App Settings.
+
+### License Management — Shared Passcode Access
+Implemented. The license section in the Manage tab is visible to Aether admins and to anyone
+signed in via the shared exhibit passcode (`auth_exhibit_kv[exhibit_id].type === 'shared'`).
+Guard in [ae_tab__manage.svelte](src/routes/events/[event_id]/(leads)/leads/exhibit/[exhibit_id]/ae_tab__manage.svelte):
+```svelte
+{#if $ae_loc.administrator_access || $events_loc.leads.auth_exhibit_kv?.[exhibit_id]?.type === 'shared'}
+```
+
+---
+
+## OSIT Admin Notes
+
+- Mark `priority = 1` on an exhibit to make it visible in public search and to enable lead capture
+- `license_max` controls how many licensed staff slots an exhibit can have
+- Export endpoint: `GET /v3/action/event_exhibit/{id}/tracking_export` — requires `leads_api_access`
+- Custom questions are stored per-exhibit in `leads_custom_questions_json` (not global)
+- The exhibitor landing page link format: `/events/[event_id]/leads/exhibit/[exhibit_exhibit_id]/`

documentation/PROJECT__AE_Docker_CI_BuildKit_implement.md

@@ -0,0 +1,53 @@
+# Project: AE Docker + CI BuildKit Implementation
+
+**Status:** Proposed
+
+**Goal:** Make Docker image builds for Aether cache-friendly using BuildKit/buildx and CI registry caching, while keeping local developer caches small and manageable.
+
+Summary
+- Implement a BuildKit-friendly multi-stage `Dockerfile` pattern for frontend and API images.
+- Add CI `buildx` examples that push/read registry-based cache to avoid local disk bloat.
+- Provide cache retention/rotation guidance and developer commands for safe pruning.
+
+Scope
+- Repository areas: `aether_container_env/`, root `Dockerfile` (if present), and CI pipeline definitions (Gitea/Drone or other).
+- Non-goal: full CI pipeline migration to a new provider. This work provides CI snippets and a PR-ready set of files for your CI team.
+
+Deliverables (this PR)
+- `documentation/PROJECT__AE_Docker_CI_BuildKit_implement.md` (this file)
+- `aether_container_env/Dockerfile.buildkit.example` — BuildKit-friendly multi-stage Dockerfile example.
+- `aether_container_env/ci_buildx_example.sh` — standalone CI script examples (registry cache + local cache usage).
+- `documentation/AE_Docker_CI_cache_policy.md` — cache rotation and prune guidance.
+
+Tasks (implementation checklist)
+- [ ] Review existing `Dockerfile`(s) under `aether_container_env/` and repository root.
+- [ ] Replace/extend Dockerfile with multi-stage BuildKit-friendly layout (use example as guide).
+- [ ] Ensure `.dockerignore` (already added) excludes large build artifacts.
+- [ ] Add CI step using `docker buildx build` with `--cache-from` and `--cache-to` pointed at a registry cache.
+- [ ] Add a scheduled job or registry lifecycle rule to delete old cache images (30 days default).
+- [ ] Document required CI secrets and permissions (registry write/read) for the operations team.
+- [ ] Run verification builds (dev local with BuildKit; CI runs with cache) and record timings.
+
+Verification
+- Local dev: `DOCKER_BUILDKIT=1` build with `--cache-to`/`--cache-from` shows cache hits on second run and faster build time.
+- CI: subsequent CI runs log `cache hit` from `buildx` and total build time reduced vs baseline.
+- Confirm registry contains `cache` image tags and that rotation job/prune removes old entries.
+
+Notes about Gitea/CI
+- Gitea does not include native Actions like GitHub; teams typically use Drone CI, Tekton, or a self-hosted runner that can execute the `docker`/`buildx` CLI.
+- The provided `ci_buildx_example.sh` is intentionally provider-agnostic — pasteable into Drone, Jenkins, GitLab CI, or any shell-capable runner.
+
+Risks & Mitigations
+- Risk: Unbounded registry cache growth. Mitigation: enforce retention policy and rotation job; prefer a single `cache` tag reused by CI.
+- Risk: Developers unfamiliar with BuildKit. Mitigation: examples show simple `DOCKER_BUILDKIT=1` usage and local cache prune commands.
+
+Next steps for the container team
+1. Review examples in `aether_container_env/` and adapt the Dockerfile to your runtime constraints (ssl certs, env injection, secrets).
+2. Add a CI job using the `ci_buildx_example.sh` snippet; configure registry credentials as secrets.
+3. Add a scheduled job to rotate/delete old cache images or configure registry lifecycle rules.
+4. Run a before/after benchmark of `time npm run build:prod` inside the build stage to quantify improvement.
+
+Files included in this PR for reference:
+- `aether_container_env/Dockerfile.buildkit.example`
+- `aether_container_env/ci_buildx_example.sh`
+- `documentation/AE_Docker_CI_cache_policy.md`

documentation/PROJECT__AE_Events_Badges_Review_Print.md

@@ -0,0 +1,625 @@
+# PROJECT: AE Events Badges — Review Form & Print Font Controls
+
+**Created:** 2026-02-27
+**Last Updated:** 2026-03-18
+**Branch:** `ae_app_3x_llm`
+**Priority:** HIGH — first live event is Axonius, NYC, mid-April 2026
+**Owner:** Scott Idem / One Sky IT
+**Status:** ✅ TASK 1 COMPLETE | ✅ TASK 2 COMPLETE | ✅ TASK 3 COMPLETE | ✅ TASK 4.1 COMPLETE | ⏳ TASK 4.0 OPEN
+
+---
+
+## Design Intent — Two Complementary Flows
+
+### Flow 1: Remote Badge Review (email link)
+- Staff emails a review link to the attendee before the event.
+- Attendee opens the link on their own device, reviews their badge info, and edits permitted fields.
+- **Email address rule:** Always send to `event_badge.email` — never `email_override`.
+  `email_override` is a display/badge field only. It cannot be trusted as a delivery address
+  (attendee may have changed it to something different for badge display purposes).
+- Component: `ae_comp__badge_review_form.svelte` — plain form, no badge render.
+- Route: `/events/[event_id]/badges/[badge_id]/review/`
+
+### Flow 2: Kiosk / Onsite Badge Station (print page)
+- Hardware: a laptop + badge printer (Epson fanfold or Zebra PVC card) at the check-in table.
+- At the event, an attendee walks up to a badge station (check-in kiosk).
+- A staff member or volunteer pulls up the attendee's badge on the print page.
+- The **print page is a kiosk tool**, not just a print queue:
+  - Attendee reviews their badge info and can edit permitted fields **in real time**,
+    with the live badge render updating as they make changes.
+  - Staff/volunteers are present to assist with any questions.
+  - Once satisfied, staff prints the badge.
+- The key differentiator vs the review form: **the live badge render** shows exactly how
+  the badge will print. Attendees and staff can see changes immediately.
+- Component: `ae_comp__badge_obj_view.svelte`
+- Route: `/events/[event_id]/badges/[badge_id]/print/`
+
+### Permission Model — Same Logic, Both Flows
+Both flows should respect the same permission model:
+- **Attendee-level** (basic Authenticated access): can edit `pronouns_override`,
+  `full_name_override`, `professional_title_override`, `affiliations_override`,
+  `location_override`, `phone_override`, `email_override`, `allow_tracking`, `agree_to_tc`.
+- **Staff-level** (trusted_access+): all attendee fields + `email`, `badge_type_code_override`,
+  `badge_type_override`, `hide`, `priority`, `notes`, and font size controls.
+- Permissions are configured per-event in `event.mod_badges_json.edit_permissions`.
+  Hardcoded defaults are used until that config is implemented.
+
+**Current gap (TASK 4):** The print page edit button is currently gated to trusted_access only.
+It needs to be accessible to attendees at the kiosk (with appropriate field-level gating),
+matching the permission model already implemented in `ae_comp__badge_review_form.svelte`.
+
+---
+
+## Next Up for Badges (TASK 4)
+
+### 0. Kiosk Editing — Print Page Permission Model Alignment
+**This is the most important gap before the first live event.**
+
+Currently the print page edit button is staff-only (trusted_access gate). At the kiosk,
+attendees need to be able to edit their own fields (same attendee-level permissions as the
+review form), with staff-only fields gated appropriately.
+
+Work needed:
+- Wire the same `can_edit_fields` / `can_edit(field)` permission logic into the print page
+  that `ae_comp__badge_review_form.svelte` already uses.
+- The edit panel on the print page should show attendee-editable fields to all authenticated
+  users, and staff-only fields to trusted_access+.
+- The badge render (v1 or v2) should update live as the attendee edits fields.
+- Consider whether the print page needs its own inline edit panel (sidebar or overlay)
+  or whether it should share/reuse the review form component alongside the badge render.
+- **Do NOT use `email_override` as the send-to address** — always use `event_badge.email`.
+
+### 1. Auto-Scaling Badge Text — In Progress
+`ae_comp__badge_obj_view.svelte` using `element_fit_text.svelte` (binary search auto-scale).
+Toggle between v1 (heuristic) and v2 (auto-scale) on the print page via the `v1`/`v2` header button.
+Heights tuned per layout in `fit_heights` derived object. Still needs visual tuning with real badges.
+
+### 2. QR Code on Badge Front — `ae_comp__badge_obj_view.svelte`
+The badge template has a `show_qr` flag (or similar). When toggled on, the QR code should
+appear on the front face of the printed badge. Currently QR is only shown on the review form.
+
+- Check the badge template fields for the QR toggle field name (`show_qr`, `qr_enabled`, etc.)
+  via `ae_describe event_badge_template` and inspect `ae_comp__badge_obj_view.svelte`.
+- The QR code data URL is generated with:
+  ```typescript
+  qr_data_url = await core_func.js_generate_qr_code('obj', {
+      obj_type: 'event_badge',
+      obj_id: event_badge_id
+  });
+  ```
+  See `ae_comp__badge_review_form.svelte` for the working pattern.
+- Position on badge: typically bottom-right corner of the badge face, sized to fit within
+  the template's layout constraints. Do NOT alter structural badge dimensions.
+- Must be hidden on `ae_comp__badge_obj_view.svelte` when `show_qr` is falsy.
+
+### 2. Badge Print Controls — UX Improvements (ae_comp__badge_print_controls.svelte)
+- Consider: keyboard shortcuts (+ / -) for font sizing while a field is active
+- Consider: "Apply to all badges" workflow for font size presets
+
+### 4. Leads Module
+Next major work after badge polish. See `documentation/MODULE__AE_Events_Leads.md` (if it
+exists) for context. Exhibitor lead scanning via QR code at exhibitor booth → capture attendee
+badge data, gated by `allow_tracking` on the badge.
+
+---
+
+## Implementation Status
+
+### ⏳ TASK 4.0: Kiosk Editing — NOT STARTED (updated 2026-03-18)
+Print page edit access needs to be opened to attendee-level permissions, not just trusted_access.
+The permission model, field list, and `can_edit()` helper from `ae_comp__badge_review_form.svelte`
+should be the reference. See Design Intent section above.
+
+**Note (2026-03-18):** `style_href` and `duplex` are both fully implemented and verified in code —
+the MODULE doc TODO list was stale. `duplex` is in `properties_to_save`; v2 badge render gates
+`show_badge_back` on it. `style_href` loads via `<svelte:head>` in `print/+page.svelte`.
+
+### ✅ TASK 4.1: Auto-Scaling Badge Text v2 — COMPLETE (2026-03-12)
+**Files created/updated:**
+- `src/lib/elements/action_fit_text.ts` — Svelte action
+- `src/lib/elements/element_fit_text.svelte` — Component wrapper
+- `src/routes/events/.../ae_comp__badge_obj_view.svelte` — V2 badge render (canonical)
+  Debug blocks gated behind `$ae_loc.edit_mode` (hidden in production).
+- `print/+page.svelte` — Always uses v2 now. v1/v2 toggle removed. Header redesigned for kiosk UX.
+- `ae_comp__badge_print_controls.svelte` — Identity card at top, pronouns moved to attendee section,
+  "Staff adjustments" divider before badge_type field.
+- `print_list/+page.svelte` — Updated to import v2.
+- `ae_comp__badge_obj_view.svelte` (v1) — **Moved to ~/tmp/gemini_trash/**
+
+**Kiosk UX improvements (2026-03-12):**
+- Print page header: cleaner, shows name + "Ready"/"Printed N×" status chip, event name.
+  Header Print Now button removed (duplicate); only Re-print shortcut visible in trusted+edit mode.
+- Controls right panel: identity card at top confirms who the badge belongs to before printing.
+  Pronouns field is now an attendee-level field (was trusted-only). Staff section labelled.
+- Debug JSON blocks in v2 badge render hidden behind global edit_mode flag.
+
+**Print page CSS centering work (also 2026-03-12) — ⚠️ Chromium PDF issue pending:**
+Multiple iterations to center the badge on the printed page, working around SvelteKit layout
+hierarchy issues. Current approach: `position: fixed; top: 50%; left: 50%; transform: translate(-50%, -50%)`
+on `.event_badge_wrapper`. Key findings:
+
+- `#ae_main_content` has `overflow: auto` — Firefox (spec-compliant) won't let `display: contents`
+  dissolve it. Workaround: explicit passthrough block (`display: block; overflow: visible; width: 100%`).
+- `app.css` global `overflow: hidden` on `html, body` creates a BFC that collapses body to badge-width.
+  Override with `overflow: visible !important` in print CSS.
+- **Chrome ignores `@page { size }` for Save as PDF** — verified 2026-03-12. Firefox honors it.
+  Chrome uses the system default paper size; Firefox locks to the CSS `@page { size }` value.
+  Neither browser lets you change paper size in "Save to PDF" mode — only when printing to a
+  physical printer. For actual Epson/Zebra printing, the driver controls paper size; unaffected.
+- **Chrome "Default" margins cause the "squish"** — Chrome's Default margin setting inserts
+  URL/date/page-number headers and footers into the printable area. These eat into the space
+  that `position: fixed; top: 50%` references, making the badge off-center or clipped. Fix:
+  set **Margins → None** (or Minimum) in Chrome's print dialog. Content centering verified
+  correct: Chrome A4 + None margins produces badge center = 297.5 pts on a 297.5 pt wide page.
+  Use Firefox for accurate PDF proofing.
+- See `documentation/MODULE__AE_Events_Badge_Templates.md` → "Print Layout Architecture" for full
+  technical details.
+
+### ✅ TASK 3: Badge Print Controls Panel — COMPLETE (2026-03-02)
+
+**Files created/modified:**
+- `ae_comp__badge_print_controls.svelte` — NEW. Right-edge control panel with per-field
+  accordion sections. Font size controls + inline edit forms gated by access level.
+- `print/+page.svelte` — layout changed from `flex-row` to fixed right panel.
+
+**Design decisions:**
+- Controls panel is `position: fixed right-0 top-20 bottom-0 w-64` — out of normal flow,
+  always visible regardless of viewport width. `top-20` (80px) clears the page header.
+- Badge area gets `pr-64` to prevent content from hiding under the fixed panel.
+  `print:pr-0` and `print:hidden` on the panel restore a clean print layout.
+- `bg-white dark:bg-zinc-900` gives the panel a solid background to prevent bleed-through.
+
+**Per-field accordion structure (one open at a time):**
+
+| Field | Access | Font Controls |
+| --- | --- | --- |
+| Name | Trusted+ edit | ✅ |
+| Professional Title | All auth edit | ✅ |
+| Affiliations | All auth edit (textarea) | ✅ |
+| Location | All auth edit | ✅ |
+| Lead Scanning (allow_tracking) | All auth edit | — |
+| Pronouns | Trusted+ edit | — |
+| Badge Type | Trusted+, only when template has badge_type_list | — |
+
+**Access level note:**
+`is_trusted = $derived($ae_loc.trusted_access === true)` — covers Trusted, Administrator,
+Manager, Super (cascade). No need to OR in `administrator_access`.
+
+**badge_type_override coupling:**
+When badge type is changed via dropdown, both `badge_type_code_override` AND
+`badge_type_override` are saved together (name comes from template list). Same behavior in
+`ae_comp__badge_obj_view.svelte` and `ae_comp__badge_review_form.svelte`.
+Edge case: custom names (e.g. code=`member`, name=`"Life Member"`) must be set manually in DB.
+
+**Font size config (moved from print page to controls component):**
+
+| Field        | Default px | Range    | Step |
+|--------------|------------|----------|------|
+| Name         | 58px       | 20–80px  | 2px  |
+| Title        | 34px       | 14–56px  | 2px  |
+| Affiliations | 38px       | 14–60px  | 2px  |
+| Location     | 34px       | 14–56px  | 2px  |
+
+Font sizes flow back to the parent via `$bindable()` props so `ae_comp__badge_obj_view`
+stays in sync without prop-drilling through a third component.
+
+---
+
+### ✅ TASK 1: Badge Review Form — COMPLETE
+
+The badge review form (`ae_comp__badge_review_form.svelte`) is now fully functional with:
+- ✅ All editable fields with access-level gating
+- ✅ Print status display section
+- ✅ QR code generation and display (hover zoom + click expand)
+- ✅ Options and Tickets fields (staff edit / attendee view)
+- ✅ Save/Cancel with change detection
+- ✅ Override field revert buttons
+- ✅ **HTML rendering** for full_name, professional_title, affiliations, location
+- ✅ **Accessibility toggle** for text enlargement (text-2xl ↔ text-4xl)
+- ✅ **Help modal** with 6 sections of attendee guidance (Flowbite Modal component)
+- ✅ Local edit mode (never writes to `$ae_loc.edit_mode`)
+
+**Bug fixed (2026-02-27):** `default_authenticated_fields` and `default_trusted_fields` in
+`review/+page.svelte` had incorrect field names causing `can_edit()` to silently drop saves.
+Fixed to use exact names matching the form's `can_edit()` checks.
+
+### ✅ TASK 2: Badge Print Font Controls — COMPLETE (v1)
+
+Implemented in commit `3d7279da`. This is a **first draft** — auto font scaling using
+mm/inch units is planned as a future iteration.
+
+**What was built:**
+- `ae_comp__badge_obj_view.svelte`: 4 new optional props (`font_size_name`, `font_size_title`,
+  `font_size_affiliations`, `font_size_location`, all `number` in px). When provided, replaces
+  auto inch-based Tailwind class sizing with an inline `font-size: Npx` style. Existing
+  auto-sizing behavior is completely unchanged when props are absent.
+- `print/+page.svelte`: Screen-only (`print:hidden`) control panel with 4 rows, one per field.
+  Each row: label, `[−]` button, value display (`58px` or `Auto`), `[+]` button, `[↺]` reset.
+  Step: 2px. `null` state = auto (uses existing inch-based auto-sizing). First `+` click
+  activates at a sensible default that approximates the current auto inch values.
+
+**Default px values when first activated (≈ inch equivalents at 96dpi):**
+
+| Field        | Default px | Approx. inch | Range    |
+|--------------|------------|--------------|----------|
+| Name         | 58px       | ≈ .60in      | 20–80px  |
+| Title        | 34px       | ≈ .35in      | 14–56px  |
+| Affiliations | 38px       | ≈ .40in      | 14–60px  |
+| Location     | 34px       | ≈ .35in      | 14–56px  |
+
+**Future:** Auto font scaling using mm/inch units (physical paper stock measurements).
+Will likely need to revisit the inch ↔ mm conversion and potentially expose the auto-sizing
+logic as adjustable rather than replacing it with px overrides.
+
+---
+
+## Context
+
+The Events Badges module is mostly complete for navigation and search. Two key pieces of
+functional UI were needed before the first show:
+
+1. **Badge Review Form** ✅ — `ae_comp__badge_review_form.svelte` now has complete field
+   rendering, edit inputs gated by access level, save/cancel API calls, and display-only
+   sections (QR code, print status, option/ticket checkmarks). Also includes accessibility
+   features (text enlargement) and help modal for attendee guidance.
+
+2. **Badge Print Font Controls** ⏳ — The print page header needs screen-only controls
+   (hidden during `window.print()`) to bump font sizes for the name, professional title,
+   affiliations, and location sections before printing. These only affect the `ae_comp__badge_obj_view.svelte` render — not the page layout/template structural dimensions.
+
+Read `documentation/MODULE__AE_Events_Badges.md` for full module context before starting.
+
+---
+
+## MANDATORY: Before You Start
+
+1. Run `ae_describe event_badge` (MCP tool) to confirm which fields actually exist in the
+   DB. Several fields in the spec below may need to be added to `properties_to_save` in
+   `src/lib/ae_events/ae_events__event_badge.ts` if they are not already saved to IDB.
+
+2. Fields to specifically confirm exist in `event_badge` schema:
+   - `pronouns`, `pronouns_override`
+   - `phone`, `phone_override`
+   - `allow_tracking`
+   - `agree_to_tc`
+   - `other_1_code` through `other_8_code` (the "option" fields)
+   - `ticket_1_code` through `ticket_8_code`
+   - `registration_type`, `registration_type_code`
+   - `registration_type_override`, `registration_type_code_override`
+
+3. Run `npx svelte-check` before committing. Baseline is **77 errors** (all pre-existing,
+   none in the badge module files). Do not introduce new errors.
+
+4. Do NOT write to `$ae_loc.edit_mode` from any badge component. This was a critical
+   bug (fixed 2026-02-27). See `documentation/AE__Permissions_and_Security.md`.
+
+---
+
+## TASK 1: Badge Review Form (HIGH PRIORITY)
+
+### File to build
+`src/routes/events/[event_id]/(badges)/badges/[badge_id]/ae_comp__badge_review_form.svelte`
+
+This component is already imported and used by `review/+page.svelte`. Props it receives:
+
+```typescript
+interface Props {
+    event_id: string;
+    event_badge_id: string;
+    lq__event_badge_obj: any;       // Svelte 5 store from liveQuery
+    can_edit_fields: string[];      // Which fields this user can edit
+    is_staff: boolean;              // True if trusted_access or higher
+    log_lvl?: number;
+}
+```
+
+`can_edit_fields` values:
+- `['*']` — administrator (all fields)
+- Array of field names — specific editable fields
+- `[]` — read-only (shouldn't normally reach this component, but handle it)
+
+### Helper
+
+Use a helper derived inside the component:
+```typescript
+function can_edit(field: string): boolean {
+    return can_edit_fields.includes('*') || can_edit_fields.includes(field);
+}
+```
+
+### Save / Cancel Pattern
+
+Follow the Journals module pattern (`src/lib/ae_journals/`). Key points:
+- Use `import { events_func } from '$lib/ae_events_functions'`
+- Call `events_func.update_ae_obj__event_badge({ event_badge_id, event_id, data_kv })`
+- Only send changed fields in `data_kv` (compare against `$lq__event_badge_obj` values)
+- Show save/cancel buttons only when something has changed (`has_changes` derived)
+- Show a success/error state briefly after save (1-2 seconds, then reset)
+- Cancel resets local state back to `$lq__event_badge_obj` values
+- Use `data-testid="badge-review-save-btn"` and `data-testid="badge-review-cancel-btn"`
+
+### Save API Call
+
+```typescript
+await events_func.update_ae_obj__event_badge({
+    api_cfg: $ae_api,  // from ae_loc store or passed as prop — check how ae_comp__badge_obj_view.svelte does it
+    event_badge_id: event_badge_id,
+    event_id: event_id,
+    data_kv: { /* only changed fields */ }
+});
+```
+
+Check `ae_comp__badge_obj_view.svelte` for the existing save pattern — it already works
+and can be used as reference.
+
+---
+
+### Section 1: Display-Only Status Bar (all access levels) ✅ IMPLEMENTED
+
+Always show at top of form. Read-only. No edit controls.
+
+```
+Print Status: [Not yet printed] OR [Printed 3× — first: Jan 5 2026, last: Jan 5 2026]
+```
+
+**Implemented:** Shows print count with first/last print datetimes. Hidden if `print_count < 1`.
+Uses `$lq__event_badge_obj.print_count`, `print_first_datetime`, `print_last_datetime`.
+Format datetimes with `ae_util.iso_datetime_formatter(dt, 'datetime_iso_12_no_seconds')`.
+Import `ae_util` from `$lib/ae_utils/ae_utils`.
+
+---
+
+### Section 2: QR Code (all access levels) ✅ IMPLEMENTED
+
+Display the attendee's badge QR code. This is the same QR code shown on the printed badge
+itself — scanning it at the badge station triggers automatic badge search and print.
+
+**Implemented using `core_func.js_generate_qr_code()`:**
+```typescript
+qr_data_url = await core_func.js_generate_qr_code('obj', {
+  obj_type: 'event_badge',
+  obj_id: event_badge_id
+});
+```
+
+**Features:**
+- Hover: Zoom overlay effect (`qr_hovered` state)
+- Click: Expand/collapse that pushes content down (`qr_expanded` state)
+- Displays as data URL image from QR code generation
+- Reactive: automatically regenerates when `event_badge_id` changes
+
+---
+
+### Section 3: Editable Fields ✅ IMPLEMENTED
+
+Render each field as: read-only display when `!can_edit(field)`, or an `<input>` /
+`<select>` / `<textarea>` when `can_edit(field)`.
+
+Show `(overridden)` label next to override fields when the override value differs from
+the base field value.
+
+**HTML Rendering (implemented 2026-02-27):**
+The following fields render HTML markup using `{@html}` when viewing (not when editing):
+- `full_name_override` / `full_name`
+- `professional_title_override` / `professional_title`
+- `affiliations_override` / `affiliations`
+- `location_override` / `location`
+
+This allows for rich text formatting (bold, italic, line breaks, etc.) in badge displays.
+
+**Accessibility Features (implemented 2026-02-27):**
+- Text enlargement toggle button in sticky header
+- Normal size: `text-2xl` on field values
+- Enlarged size: `text-4xl` on field values
+- Button shows visual feedback (gray → blue, "Larger" → "Normal" label)
+- Applied consistently across all text fields
+
+**Help Modal (implemented 2026-02-27):**
+- Flowbite Modal component with 6 sections
+- Sections: Reviewing Badge, Editing Info, Accessibility, QR Code, Lead Scanning, Assistance
+- Triggered by Help button (BadgeQuestionMark icon) in sticky header
+- Currently has placeholder text — can be customized per event/client
+
+#### Attendee-Editable Fields (shown to all access levels with link)
+
+| Field | Input Type | Notes |
+|---|---|---|
+| `pronouns_override` | text input | Fallback display: `pronouns` |
+| `full_name_override` | text input | Fallback display: `full_name`; **renders HTML** when viewing |
+| `professional_title_override` | text input | Fallback display: `professional_title`; **renders HTML** when viewing |
+| `affiliations_override` | textarea | Fallback display: `affiliations`; **renders HTML** when viewing |
+| `phone_override` | text input (tel) | Fallback display: `phone` |
+| `location_override` | text input | Fallback display: `location`; **renders HTML** when viewing |
+| `allow_tracking` | checkbox | Label: "Allow exhibitor lead scanning" |
+| `agree_to_tc` | checkbox | Label: "I agree to the Terms and Conditions" + placeholder T&C text block |
+
+#### Staff-Only Additional Fields (shown when `is_staff === true`) ✅ IMPLEMENTED
+
+| Field | Input Type | Notes |
+|---|---|---|
+| `email_override` | email input | Fallback display: `email` |
+| `badge_type_code_override` | select | Options: member, non-member, guest, exhibitor, staff, test; also updates `badge_type_override` text |
+
+> **Edge case — custom badge type name:** If an attendee needs a standard badge type code (for
+> CSS styling) but a slightly different displayed name (e.g. code=`member`, name=`"Life Member"`),
+> set `badge_type_override` directly in the DB. Do **not** use the dropdown — selecting from the
+> dropdown in the UI overwrites `badge_type_override` with the standard name from the template
+> list. This is an intentional trade-off: coded for the normal case (dropdown keeps both fields in
+> sync), special cases handled manually by Scott in the DB.
+| `registration_type_code_override` | select | Same options as badge_type for now; also updates `registration_type_override` |
+| `hide` | checkbox | Label: "Hidden from search results" |
+| `priority` | number input | |
+| `notes` | textarea | |
+
+#### Staff-Only: Options & Tickets (read-edit, shown when `is_staff === true`) ✅ IMPLEMENTED
+
+**Other/Options** (`other_1_code` through `other_8_code`):
+- If field has a value: show as editable text input with label "Option X"
+- If field is empty/null: show faintly as "Option X (empty)" — staff can still set it
+- These represent event-specific add-ons or membership indicators
+
+**Tickets** (`ticket_1_code` through `ticket_8_code`):
+- Same pattern as options above, label "Ticket X"
+
+#### Attendee-Only: Options & Tickets (display only) ✅ IMPLEMENTED
+
+When `!is_staff` and the field has a value: show `[✓] Option X` or `[✓] Ticket X`.
+When the field is empty: hide entirely (attendees don't see empty slots).
+
+---
+
+### Section 4: Terms & Conditions Block (all, only when `agree_to_tc` in can_edit_fields) ✅ IMPLEMENTED
+
+Placeholder text for now:
+```
+By checking this box, I confirm that the information on my badge is correct to the best
+of my knowledge. I agree that this badge may be used for identification purposes during
+the event and that my attendance may be recorded by exhibitors using the lead scanning
+feature if I permit it.
+```
+
+Show this before the `agree_to_tc` checkbox. If `agree_to_tc` is not in `can_edit_fields`,
+hide the entire block.
+
+---
+
+### Field State Pattern (Svelte 5 runes)
+
+```typescript
+// Initialize local editable state from badge object
+let local_full_name_override = $state($lq__event_badge_obj?.full_name_override ?? '');
+let local_pronouns_override = $state($lq__event_badge_obj?.pronouns_override ?? '');
+// ... etc for each editable field
+
+// Detect changes
+let has_changes = $derived(
+    local_full_name_override !== ($lq__event_badge_obj?.full_name_override ?? '')
+    || local_pronouns_override !== ($lq__event_badge_obj?.pronouns_override ?? '')
+    // ... etc
+);
+
+// Build changed-fields-only payload
+function build_save_payload(): Record<string, any> {
+    const payload: Record<string, any> = {};
+    if (local_full_name_override !== ($lq__event_badge_obj?.full_name_override ?? ''))
+        payload.full_name_override = local_full_name_override || null;  // empty string → null
+    // ... etc
+    return payload;
+}
+```
+
+**Important:** Empty string inputs should save as `null` (clears the override, falls back
+to base field). Use `value || null` in the payload.
+
+---
+
+## TASK 2: Badge Print Font Size Controls (MEDIUM PRIORITY)
+
+### Where to add
+
+`src/routes/events/[event_id]/(badges)/badges/[badge_id]/print/+page.svelte`
+
+Add a screen-only (`print:hidden`) control panel between the header and the badge render.
+This panel lets staff adjust font sizes for the four text-heavy sections before clicking Print.
+
+### Controls needed
+
+```
+Font Size Controls (screen only, hidden during print):
+[Name]     [−] [14px] [+]
+[Title]    [−] [12px] [+]
+[Affiliations] [−] [11px] [+]
+[Location]     [−] [10px] [+]
+```
+
+- Start with sensible defaults (match what `ae_comp__badge_obj_view.svelte` currently uses)
+- Min/max per field (e.g., 8px–24px for name, 7px–18px for others)
+- Pass the sizes as props into `ae_comp__badge_obj_view`
+
+### Props to add to `ae_comp__badge_obj_view.svelte`
+
+`ae_comp__badge_obj_view.svelte` currently has internal font size logic. It needs to
+accept optional override props:
+
+```typescript
+// New optional props:
+font_size_name?: number;            // px
+font_size_title?: number;           // px
+font_size_affiliations?: number;    // px
+font_size_location?: number;        // px
+```
+
+When these props are provided, use them instead of the internally computed sizes.
+When not provided, fall back to existing auto-sizing behavior.
+
+**IMPORTANT:** Do NOT touch structural dimensions (overall badge width/height, header/footer
+sizes, template layout). Only the text content font sizes.
+
+---
+
+## Key Files
+
+| File | Role |
+|---|---|
+| `[badge_id]/ae_comp__badge_review_form.svelte` | **BUILD THIS** — review form stub |
+| `[badge_id]/ae_comp__badge_obj_view.svelte` | Badge render + print button; add font size props |
+| `[badge_id]/print/+page.svelte` | Print page; add font size control panel |
+| `[badge_id]/review/+page.svelte` | Review page; already wired, passes `can_edit_fields` |
+| `src/lib/ae_events/ae_events__event_badge.ts` | API functions: `update_ae_obj__event_badge` |
+| `src/lib/ae_events/db_events.ts` | Dexie schema — `properties_to_save` for badge |
+| `src/lib/ae_utils/ae_utils.ts` | `ae_util.iso_datetime_formatter()` |
+| `documentation/MODULE__AE_Events_Badges.md` | Full module reference |
+| `documentation/AE__Permissions_and_Security.md` | Permission flags, edit_mode rules |
+| `documentation/GUIDE__AE_API_V3_for_Frontend.md` | V3 API reference |
+
+## Access Level Reference
+
+```typescript
+// From $ae_loc store (persisted localStorage)
+$ae_loc.trusted_access       // true = trusted and above (onsite staff)
+$ae_loc.administrator_access // true = administrator and above
+$ae_loc.edit_mode            // boolean — user preference toggle (NEVER write to this from components)
+```
+
+`is_staff` prop on the review form = `$ae_loc.trusted_access`.
+`trusted_access` is `true` for Trusted and every level above it (Administrator, Manager, Super)
+— no need to OR in `administrator_access` since it's already implied by the cascade.
+
+---
+
+## Patterns to Follow
+
+- **Canonical module reference:** `src/lib/ae_journals/` — most complete, most advanced
+- **Svelte 5 runes:** `$state`, `$derived`, `$derived.by()`, `$effect` — no legacy `$:` syntax
+- **Icons:** Lucide Svelte only — `import { Save, X, Check, ... } from 'lucide-svelte'`
+- **No Font Awesome** (`fas fa-*`) anywhere in the badge module
+- **Styling:** Tailwind CSS v4 + Skeleton UI utility classes (`btn`, `preset-tonal-*`, `input`, `card`)
+- **Commits:** Atomic — one component per commit; run `npx svelte-check` before every commit
+
+---
+
+## What NOT to Do
+
+- Do NOT touch `@page` CSS or badge template structural dimensions — print layout is out of scope
+- Do NOT write to `$ae_loc.edit_mode` from any component
+- Do NOT connect `mod_badges_json.edit_permissions` yet — hardcoded field lists are intentional for now
+- Do NOT implement the email API — `send_review_email()` placeholder stays as `alert()`
+- Do NOT add `person_passcode` DB field — out of scope for this sprint
+
+---
+
+## Testing
+
+Run existing badge tests after any changes:
+```bash
+npm run test:unit
+npx playwright test tests/events/badges/
+```
+
+Baseline: all badge tests passing as of 2026-02-26 (`f5e98b8c`).
+
+Add `data-testid` attributes to key interactive elements:
+- `badge-review-save-btn`
+- `badge-review-cancel-btn`
+- `badge-review-full-name-input`
+- `badge-review-agree-to-tc-checkbox`

documentation/PROJECT__AE_Events_Launcher_Native_integration.md

@@ -0,0 +1,180 @@
+# Aether Events Launcher: Native Electron Integration
+
+> **Status:** Operational / Phase 5 Implementation
+> **Last Updated:** 2026-03-11
+> **Primary Platform:** macOS (Darwin)
+> **Fallback Platform:** Linux / Windows
+
+## 1. Overview
+The Aether Events Launcher utilizes an Electron-based "Native Shell" to provide OS-level capabilities that are normally restricted by browser sandboxing. This enables persistent file caching, direct control of presentation software (Keynote, PowerPoint), and hardware telemetry.
+
+### Operational Modes
+| Mode | Purpose | File Handling |
+| :--- | :--- | :--- |
+| **Default** | Standard web browser access. | Direct downloads; no local caching. |
+| **Onsite** | Web access on event networks. | Faster polling; browser-based file management. |
+| **Native** | Dedicated Podium Kiosk (Electron). | Full background pre-caching; atomic safe-handover. |
+
+---
+
+## 2. Architecture: The Three-Layer Bridge
+
+The integration is built on a decoupled three-layer communication model to ensure security and cross-platform flexibility.
+
+### 2.1 Layer 1: The Engine (Main Process)
+- **Repo:** `~/OSIT_dev/aether_app_native_electron/` (separate git repo)
+- **File:** `aether_app_native_electron/src/main/*.ts`
+- **Role:** Performs the heavy lifting (Filesystem, Shell, AppleScript).
+- **Responsibilities:**
+    - Managing the **Hashed Cache** directory.
+    - Executing `osascript` intents for presentation control.
+    - Spawn/Kill process management.
+
+### 2.2 Layer 2: The Gatekeeper (Preload Script)
+- **Namespace:** `window.aetherNative`
+- **Role:** Securely exposes whitelisted IPC channels to the Renderer.
+- **Standards:** Uses `contextBridge.exposeInMainWorld` to prevent arbitrary code execution.
+
+### 2.3 Layer 3: The Messenger (SvelteKit Relay)
+- **File:** `src/lib/electron/electron_relay.ts`
+- **Role:** Provides a clean, typed API for Svelte components.
+- **Responsibilities:**
+    - Mapping `camelCase` UI triggers to `snake_case` IPC calls.
+    - Implementing "Smart Fallbacks" (e.g., resolving `[home]` placeholders if the bridge is partially hydrated).
+
+---
+
+## 3. The "Zero-Config" Lifecycle
+
+To support rapid onsite deployment, the native app requires zero manual setup.
+
+1.  **Seed:** On launch, the Main process reads a local `seed.json` (Device ID + API Key).
+2.  **Identity:** Calls `GET /v3/data_store/code/{device_code}` or `GET /v3/crud/event_device/{id}` to pull operational context.
+3.  **Hydrate:** Authenticates with the Aether V3 API and injects the **JWT** and **Device Config** into the UI environment.
+4.  **Launch:** Navigates the SvelteKit frontend directly to the assigned Event Launcher route.
+
+---
+
+## 4. Podium Reliability Protocol
+
+The system is designed to ensure that a presentation never fails due to network instability.
+
+### 4.1 Hashed Cache Pattern
+Files are stored persistently using their SHA-256 hash to prevent filename collisions and handle versioning.
+- **Root:** `~/Library/Caches/OSIT/file_cache/`
+- **Subdirectory:** First 2 characters of hash (e.g., `ab/`)
+- **Filename:** `{hash}.file`
+
+### 4.2 Background Sync (File Warming)
+When a user navigates to a session in the Launcher UI, the `LauncherBackgroundSync` component:
+1.  Extracts all `event_file_id` values for that session.
+2.  Checks the native cache via `aetherNative.check_cache`.
+3.  Triggers background downloads for missing files via `aetherNative.download_to_cache`.
+
+### 4.3 Safe Handover (Launch Sequence)
+When a user clicks "Open", the system follows a non-destructive sequence:
+1.  **Verify:** Confirm hash exists in the permanent cache.
+2.  **Copy:** Create an atomic copy in the system `[tmp]` directory.
+3.  **Restore:** Rename the copy to its original filename (e.g., `Abstract_101.pptx`).
+4.  **Execute:** Launch the file via the OS.
+
+---
+
+## 5. Automation & Actuators (Phase 5)
+
+The native shell provides specialized handlers for controlling the "Podium Experience."
+
+### 5.1 Presentation Acts
+| Action | Handler | Actuator (macOS) |
+| :--- | :--- | :--- |
+| **Launch** | `launch_presentation` | `open` or `osascript` (slideshow start) |
+| **Control** | `control_presentation` | `osascript` (next/prev slide) |
+| **Clean Up**| `kill_processes` | `killall -INT` (graceful exit) |
+
+### 5.2 System Management
+- **Telemetry:** Pushes `cpu_usage`, `memory_free_gb`, and `foreground_app` via heartbeats using the `get_device_info` relay.
+- **Self-Update (Roadmap):** Plan to monitor Syncthing `admin_share` for newer `.app` versions and perform atomic swaps.
+
+### 5.3 Implemented Actuators (Phase 5 Complete)
+- **Recording:** `manage_recording({action})` — Aperture session capture (`start`, `stop`, `status`). macOS only.
+- **Display Layouts:** `set_display_layout({mode})` — Mirror / Extend via `displayplacer`. macOS only.
+- **Power Control:** `power_control({action})` — Shutdown, reboot, sleep. macOS + Linux.
+- **Window Control:** `window_control({action})` — Maximize, minimize, fullscreen, kiosk mode.
+- **Wallpaper:** `set_wallpaper({path})` — macOS (AppleScript) + Linux (gsettings).
+
+> **Note:** `update_app` is implemented as a stub — downloads but does not install. Not yet functional for end users.
+
+---
+
+## 6. Launcher Configuration & Management
+
+The Launcher features a standardized, responsive configuration interface designed for onsite technical management.
+
+### 6.1 UI Architecture
+- **Tabbed Navigation:** Categorized into System, Sync, and General settings.
+- **Section Wrapper (`Launcher_Cfg_Section`):** A shared component providing a consistent header, icon, and responsive grid container.
+
+### 6.2 3-Way State Logic
+To manage screen real estate on varying laptop resolutions, all configuration sections utilize a 3-way visibility state:
+- **`collapsed`**: Content is hidden.
+- **`auto`**: Expanded by default, but automatically closes if another "auto" section is opened.
+- **`pinned`**: Expanded and remains open regardless of other section interactions.
+
+### 6.3 Technical Mode (`edit_mode`)
+The UI dynamically filters fields based on the user's focus. Enabling Technical Mode (`$ae_loc.edit_mode`) reveals advanced diagnostic and writeable fields.
+
+| Category | Standard View (Read-Only) | Technical Mode (Read/Write) |
+| :--- | :--- | :--- |
+| **Health** | Heartbeat, RAM Usage, Sync Stats | Hostname, IP List, Raw Device JSON |
+| **OS Bridge** | Folder Buttons, Recording Toggle | Manual Terminal Commands, Reset Wallpaper |
+| **Sync** | Sync Completion Status | Millisecond Timers, Cache Prefix Logic |
+| **Update** | Current Version Status | Manual Update Paths, URL Overrides |
+
+---
+
+## 7. Implementation Reference (IPC Whitelist)
+
+All functions below are exported from `src/lib/electron/electron_relay.ts` and safely
+no-op when `window.aetherNative` is not present (i.e., in browser/non-native mode).
+
+### Config & Info
+- `get_device_config()` — Returns hydrated device settings injected by the native shell on startup.
+- `get_device_info()` — Returns OS metadata, IP list, hostname, and path placeholders (`[home]`, `[tmp]`).
+
+### File Cache
+- `check_hash_file_cache({cache_root, hash, hash_prefix_length?})` — Verifies a file exists in the local hashed cache.
+- `download_to_cache({url, cache_root, hash, api_key, account_id, hash_prefix_length?})` — Streams a file download to the hashed cache with SHA-256 integrity check.
+- `launch_from_cache({cache_root, hash, temp_root, filename, hash_prefix_length?})` — Atomic "Safe Handover": copy from cache → tmp → rename → execute.
+- `cleanup_tmp_files({cache_root, max_age_minutes?})` — Removes stale `*.tmp` download artifacts. Default: 1440 min (24h). Called at launcher startup.
+
+> `hash_prefix_length` defaults to `2` throughout. Do not change without coordinating all devices — mismatched values create orphaned cache subdirectories.
+
+### Shell & OS
+- `open_folder(path)` — Opens a path in the OS file manager.
+- `run_cmd({cmd, timeout?, return_stdout?})` — Async shell command execution.
+- `run_cmd_sync({cmd, return_stdout?})` — Synchronous shell command execution.
+- `run_osascript(script)` — Executes an AppleScript string. macOS only.
+- `kill_processes({process_name_li})` — Gracefully terminates processes by name.
+- `open_local_file_v2(path)` — Opens a file with its default OS application.
+
+### Presentations (Phase 5)
+- `launch_presentation({path, app?, os?})` — Platform-aware launcher. macOS: PowerPoint/Keynote via AppleScript. Linux: LibreOffice Impress. Resolves `[home]`/`[tmp]` placeholders.
+- `control_presentation({app, action})` — Slide navigation (`next`/`prev`/`start`/`stop`) for PowerPoint or Keynote via AppleScript.
+
+### System Management (Phase 5)
+- `set_wallpaper({path})` — Sets desktop wallpaper. macOS (AppleScript) + Linux (gsettings).
+- `window_control({action, value?})` — Electron window management: maximize, minimize, fullscreen, kiosk.
+- `set_display_layout({mode, configStr?})` — Mirror or extend displays via displayplacer. macOS only.
+- `power_control({action})` — Shutdown, reboot, or sleep the host machine. macOS + Linux.
+- `manage_recording({action, options?})` — Aperture capture control (`start`/`stop`/`status`). macOS only.
+- `open_external({url, app?})` — Opens a URL in Chrome, Firefox, or the default browser.
+- `update_app(args)` — **Stub only.** Downloads but does not install. Not yet functional.
+- `list_tools()` — Returns a self-documenting manifest of all available native bridge functions.
+
+### Path Placeholders
+All paths passed to native handlers should use tokens rather than hardcoded OS paths:
+- `[home]` — Resolved to the user's home directory by the native bridge.
+- `[tmp]` — Resolved to the system temporary directory.
+
+### Not Exposed via Relay (intentional)
+- `get_seed_config` / `get_jwt` — Exposed in the preload but not relayed to the UI. The JWT and seed are injected into the environment at startup; components should not call these directly.

documentation/PROJECT__AE_Object_Field_Editor_V3_upgrade.md

@@ -0,0 +1,51 @@
+# Project Plan: Aether AE Obj Field Editor v3 (Consolidated)
+
+> **Status:** 🟡 Mostly Complete — Phase 3 items + GUIDE update remaining
+> **Date:** February 13, 2026 (last updated: 2026-03-20)
+> **Target Component:** `src/lib/elements/element_ae_obj_field_editor.svelte`
+> **Replaces:** `element_ae_crud.svelte` and `element_ae_crud_v2.svelte`
+
+## 1. Overview
+Consolidate the legacy CRUD components into a single, high-performance "Aether Object Field Editor" (v3). This component will be the standard for single-property editing across the platform, fully aligned with the FastAPI V3 CRUD patterns and Svelte 5 Runes.
+
+## 2. Strategic Objectives
+- **Consolidation:** Retire `v1` and `v2` components in favor of a single, unified codebase.
+- **API Alignment:** Native support for `PATCH /v3/crud/{obj_type}/{obj_id}`.
+- **Svelte 5 Runes:** Pure `$props`, `$state`, and `$derived` implementation. No legacy imports.
+- **Callback Pattern:** Replace `createEventDispatcher` with callback props (`on_patch`, `on_success`, `on_error`).
+- **Iconography:** Standardize on **Lucide-Svelte**.
+- **Mobile-First:** Improved "Tap to Edit" targets and mobile-responsive popovers.
+
+## 3. Implementation Phases
+
+### Phase 1: Foundation & Reactivity (COMPLETED)
+- [x] Create the new `v3` component shell.
+- [x] Implement strict TypeScript interface for Props.
+- [x] Use `$state` for local "draft" values to prevent reactivity loops with the global store.
+- [x] Implement the `handle_patch` logic using the central `api.patch` helper.
+
+### Phase 2: UI & UX Refinement (COMPLETED)
+- [x] Standardize Tailwind classes (using Tailwind 4 patterns).
+- [x] Implement "Edit Mode" awareness (syncing with `$ae_loc.edit_mode`).
+- [x] Add a "Save" loading state with Lucide's `LoaderCircle` spinner.
+- [x] Implement a clear "Cancel" path that restores the original value.
+
+### Phase 3: Field Type Parity (IN PROGRESS)
+- [x] Support `text`, `textarea`, `select`, `tiptap`, and `checkbox`.
+- [x] Add `datetime` support using native browser pickers — `date` and `datetime-local` inputs implemented.
+- [ ] Implement searchable dropdowns for the `select` type.
+
+### Phase 4: Migration & Cleanup
+- [x] Create a playground route for V3 verification (`/testing/ae_obj_field_editor`).
+- [x] Deprecate and remove `v1` and `v2` files — `element_ae_crud.svelte` and `element_ae_crud_v2.svelte` removed 2026-03-20.
+- [ ] Update `GUIDE__Development.md` with the new usage patterns.
+
+## ⚠️ Security & Reliability Stabilization (NEW)
+- [x] **Account Context:** Fixed 403 errors by unifying API helpers to the `/v3/crud/` standard.
+- [x] **Race Conditions:** Implemented `localStorage` scavenging for Account IDs to fix Svelte 5 hydration lags.
+- [x] **Protocol Hygiene:** Purged redundant/misplaced headers (`x-aether-api-token`, `Access-Control-Allow-Origin`).
+
+## 4. Maintenance & Standards
+- Component must respect `$ae_loc.trusted_access` for visibility of edit triggers.
+- Always use `type="button"` for internal actions to prevent form collisions.
+- Maintain the `object_reload` pattern for SWR cache invalidation.

documentation/PROJECT__AE_Style_Review.md

@@ -0,0 +1,411 @@
+# PROJECT: Aether App — Comprehensive Style Review
+
+**Status:** Phase 1 & 2 Complete — Phase 3 Deferred (post-April 2026 conference)
+**Priority:** Medium
+**Created:** 2026-03-13
+**Updated:** 2026-03-16
+**Related:** `src/app.css`, `src/routes/+layout.svelte`, `documentation/AE__UI_Component_Patterns.md`
+
+---
+
+## 1. Objective
+
+Audit and unify the visual design system across all Aether modules. The goal is consistent:
+- Color token usage (Skeleton `preset-*` / `surface-*` / semantic tokens)
+- Button and interactive element styling
+- Dark mode handling
+- Typography hierarchy
+- Layout patterns (cards, lists, tables, modals, banners)
+- Icon system (Lucide only)
+
+This review covers all modules and their distinct use cases. Changes must be sequenced to avoid breaking live-production systems (Events Launcher, IDAA).
+
+### Scope of Modules
+
+| Module | Routes | Primary Users | Notes |
+|---|---|---|---|
+| Core / App Shell | `+layout.svelte`, `e_app_sys_bar.svelte` | All users | Foundation — impacts everything |
+| Core Admin | `/core/` | OSIT staff / managers | Manager-only section |
+| Journals | `/journals/` | Authenticated users | Canonical/frontier model |
+| Events — General | `/events/`, `/events/[id]/` | Event staff, attendees | Hub page |
+| Events — Pres Mgmt | `/events/[id]/(pres_mgmt)/` | Event coordinators | Operations tool |
+| Events — Launcher | `/events/[id]/(launcher)/` | AV/tech staff (Electron kiosk) | ⚠️ Live production — April 2026 conference |
+| Events — Badges | `/events/[id]/(badges)/` | Registration desk staff | On-site kiosk use |
+| Events — Leads | `/events/[id]/(leads)/` | Exhibitor booth staff | On-site kiosk use |
+| IDAA | `/idaa/` | IDAA members (iframe) | ⚠️ Privacy-critical, iframe context |
+
+---
+
+## 2. Current State: Dual-Generation Problem
+
+The codebase has two parallel style generations that co-exist:
+
+| Era | Pattern | Where Used |
+|---|---|---|
+| **Modern** | `preset-tonal-*`, `preset-filled-*`, Lucide icons, Svelte 5 runes | `sys_bar`, Journals, IDAA dashboard |
+| **Legacy** | `variant-soft-*`, `variant-filled-*`, FontAwesome `fas fa-*` icons | Events routes (most), some Core |
+
+The Journals module is the canonical reference for modern patterns — when in doubt, match it.
+
+---
+
+## 3. Color Token Architecture
+
+Three overlapping systems are in use. The goal is to consolidate to two:
+
+### ✅ System 1: Skeleton Semantic Tokens (keep, expand usage)
+Used for colored/semantic elements.
+```
+primary, secondary, tertiary, success, warning, error, surface
+```
+Usage: `preset-tonal-primary`, `bg-primary-500/10`, `text-error-500`, `border-warning-500`
+
+### ✅ System 2: Plain Tailwind Grayscale (keep for neutrals)
+Used for neutral backgrounds, borders, and text. Predictable across all Skeleton themes.
+```
+gray-50/100/200/300/400/500/600/700/800/900
+```
+Usage: `bg-gray-50 dark:bg-gray-900`, `border-gray-200 dark:border-gray-700`
+
+### ❌ System 3: Hardcoded RGB/HSL (eliminate)
+```
+bg-orange-600/90  — root layout banner
+hsla(0, 100%, 50%, .5)  — journal entry eye icon
+rgb(243 244 246)  — form dark mode hacks in <style> blocks
+```
+These are brittle, not theme-aware, and create maintenance debt.
+
+### Decision Rule
+> **Semantic color needed?** → Use Skeleton token (`preset-*`, `text-primary-*`, etc.)
+> **Neutral background/border/text?** → Use `gray-*` with `dark:` pair
+> **Hardcoded color?** → Replace with token. No exceptions.
+
+---
+
+## 4. Dark Mode Architecture
+
+### Current Setup (already correct in app.css)
+```css
+@custom-variant dark (&:where(.dark, .dark *));  /* Tailwind v4 class-based dark mode */
+html.dark  { color-scheme: dark; }               /* Native controls follow app theme */
+html.light { color-scheme: light; }
+```
+
+### Gap: Skeleton Form Classes Lack Dark Mode
+Skeleton's `.input`, `.select`, `.textarea` classes do not include dark mode styles. This causes white text on white backgrounds in dark mode. Currently patched with inline `<style>` blocks per-component (see `e_app_sys_bar.svelte` lines 693–707).
+
+**Fix:** Global utility in `app.css` (see Phase 1, Step 1). Once added, remove per-component patches.
+
+---
+
+## 5. Button System
+
+### Standard: `preset-*` (Skeleton v4 pattern) ✅
+```html
+<button class="btn preset-tonal-secondary">Secondary</button>
+<button class="btn btn-sm preset-filled-primary">Primary</button>
+<button class="btn preset-outlined-surface">Outlined</button>
+```
+
+
+> **Note:** All legacy `variant-*` classes have been fully removed from the codebase. Use only `preset-*` classes for all buttons and interactive elements.
+
+### Custom `ae_btn_*` Classes (app.css)
+These exist in `app.css` and wrap the `preset-*` system. They are valid but underused. Consider adopting where button groups need reuse.
+
+---
+
+## 6. Icon System
+
+**Standard:** Lucide (`@lucide/svelte`) — SVG, tree-shakeable, consistent stroke weight
+**Legacy:** FontAwesome (`fas fa-*` / `far fa-*`) — CSS class-based, heavier
+
+FontAwesome is still imported (likely via global CSS). Goal: complete removal from all new work; migrate existing usage to Lucide progressively.
+
+### FontAwesome → Lucide Reference Map (events module)
+
+| FontAwesome | Lucide Component | Notes |
+|---|---|---|
+| `fa-cogs` | `Settings` | Settings/config |
+| `fa-chart-line` | `TrendingUp` | Reports/charts |
+| `fa-map-marked-alt` | `MapPinned` | Location with map |
+| `fa-map-marker-alt` | `MapPin` | Location marker |
+| `fa-tools` | `Wrench` | Tools/maintenance |
+| `fa-search` | `Search` | Search |
+| `fa-chalkboard-teacher` | `PresentationIcon` or `GraduationCap` | Presenter |
+| `fa-plane` | `Plane` | Travel/remote |
+| `fa-sync-alt fa-spin` | `RefreshCw` + CSS animation | Spinner |
+| `fa-arrow-up` | `ArrowUp` | Up arrow |
+| `fa-arrow-down` | `ArrowDown` | Down arrow |
+| `fa-list-ol` | `ListOrdered` | Ordered list |
+| `fa-file-csv` | `FileSpreadsheet` | CSV file |
+| `fa-toggle-on` | `ToggleRight` | Toggle |
+| `fa-calendar-alt` | `CalendarDays` | Calendar |
+| `fa-exclamation-triangle` | `TriangleAlert` | Warning |
+| `fa-lock` | `Lock` | Locked |
+| `fa-unlock` | `Unlock` | Unlocked |
+| `fa-eye` | `Eye` | Visible |
+| `fa-eye-slash` | `EyeOff` | Hidden |
+| `fa-trash` | `Trash2` | Delete |
+| `fa-edit` / `fa-pencil` | `Pencil` | Edit |
+| `fa-plus` | `Plus` | Add |
+| `fa-times` / `fa-close` | `X` | Close/remove |
+| `fa-check` | `Check` | Confirm |
+| `fa-ban` | `Ban` | Denied/blocked |
+| `fa-user` | `User` | Person |
+| `fa-users` | `Users` | Group |
+| `fa-tag` | `Tag` | Tag/label |
+| `fa-print` | `Printer` | Print |
+| `fa-download` | `Download` | Download |
+| `fa-upload` | `Upload` | Upload |
+| `fa-copy` | `Copy` | Copy |
+| `fa-qrcode` | `QrCode` | QR code |
+| `fa-id-card` | `IdCard` | Badge/ID |
+| `fa-file-alt` | `FileText` | File |
+| `fa-compress-arrows-alt` | `Minimize2` | Collapse |
+| `fa-expand` | `Maximize2` | Expand |
+| `fa-angle-right` | `ChevronRight` | Nav arrow |
+| `fa-angle-down` | `ChevronDown` | Accordion |
+| `fa-clock` | `Clock` | Time |
+
+### Lucide Usage Pattern
+```svelte
+<script>
+    import { Settings, Search, MapPin } from '@lucide/svelte';
+</script>
+
+<!-- Decorative icon with adjacent label -->
+<Settings size="1em" class="shrink-0" aria-hidden="true" />
+
+<!-- Icon-only button — MUST have aria-label -->
+<button aria-label="Settings" class="btn btn-sm preset-tonal-surface">
+    <Settings size="1.1em" />
+</button>
+```
+
+---
+
+## 7. Typography
+
+### Standard Hierarchy
+```html
+<!-- Page title -->
+<h1 class="text-3xl sm:text-4xl font-black tracking-tight">Title</h1>
+
+<!-- Section heading -->
+<h2 class="text-xl font-bold">Section</h2>
+
+<!-- Card/item heading -->
+<h3 class="text-lg font-semibold">Item</h3>
+
+<!-- Label / eyebrow -->
+<span class="text-xs font-bold uppercase tracking-wide opacity-40">Label</span>
+
+<!-- Muted secondary text -->
+<span class="text-sm opacity-60">Secondary info</span>
+
+<!-- Hint / placeholder text -->
+<span class="text-xs opacity-40 italic">Hint</span>
+```
+
+### Rule: Opacity Over Fixed Colors for Muted Text
+```html
+<!-- ✅ Theme-aware muted text -->
+<span class="text-sm opacity-60">Note</span>
+
+<!-- ❌ Fixed muted text — breaks in dark mode -->
+<span class="text-sm text-gray-500">Note</span>
+```
+
+> **Exception:** `text-gray-*` is acceptable in components that intentionally use plain Tailwind grayscale for neutrality (e.g., Journals list cards), as long as `dark:text-gray-*` counterpart is always included.
+
+---
+
+## 8. Card & Layout Patterns
+
+See `documentation/AE__UI_Component_Patterns.md` for the full pattern reference.
+
+Key standard patterns:
+- **List item card:** `border border-gray-200 dark:border-gray-700 border-l-4 border-l-primary-500/40` with hover intensification
+- **Content card:** `rounded-lg border border-surface-200-800 bg-surface-50-900 px-4 py-3`
+- **Glow accent:** `absolute -inset-1 bg-linear-to-r from-primary-500 to-secondary-500 rounded-2xl blur opacity-25 dark:opacity-40 group-hover:opacity-60 transition duration-1000 group-hover:duration-200 pointer-events-none`
+- **Empty state:** `preset-tonal-warning p-6 rounded-xl` centered, with icon + heading + description
+
+---
+
+## 9. Accessibility Rules
+
+- **Never remove focus rings.** `focus:ring-0` on text inputs fails WCAG 2.1 AA. Use `focus:ring-2 focus:ring-primary-500` instead.
+- **Icon-only buttons must have `aria-label`.** No exceptions.
+- **Decorative icons must have `aria-hidden="true"`.** This applies to ALL FontAwesome `<span class="fas ...">` elements too.
+- **Color is not the only status indicator.** Pair color with text or icon shape.
+- **Form labels must be explicit.** Use `<label for="...">` or `aria-label`.
+
+---
+
+## 10. Module-by-Module Status
+
+### Core / App Shell
+
+| Item | Status | Notes |
+|---|---|---|
+| Root layout banners (offline, expired) | ✅ Done | `bg-orange-600/90` → `preset-tonal-warning` (2026-03-16) |
+| `e_app_sys_bar.svelte` | ✅ Modern | Best-practice reference component |
+| `e_app_theme.svelte` | 🟡 Legacy | Redundant with sys_bar theme section; keep but no new work |
+| `core/+layout.svelte` | ✅ Done | `variant-*` → `preset-*` (2026-03-16) |
+| `core/+page.svelte` | ✅ Good | Excellent card grid template |
+| All `/core/` files (21 files) | ✅ Done | `variant-*` → `preset-*`, FA → Lucide (2026-03-16) |
+
+### Journals
+
+| Item | Status | Notes |
+|---|---|---|
+| Overall | ✅ Canonical reference | Use as template for all new work |
+| `ae_comp__journal_obj_li.svelte` | ✅ Excellent | Card pattern, icon sizing, hover states |
+| `ae_comp__journal_entry_obj_li.svelte` | ✅ Done | `bg-slate-*` → `bg-gray-*`; hardcoded HSL → Tailwind tokens (2026-03-16) |
+| `ae_comp__journal_entry_header.svelte` | ✅ Done | `focus:ring-0` restored to `focus:ring-2` (2026-03-16) |
+
+### Events — General
+
+| Item | Status | Notes |
+|---|---|---|
+| `events/+page.svelte` | ✅ Done | FA → Lucide; `variant-ghost-surface` → `preset-outlined-surface` (2026-03-16) |
+| `events/+layout.svelte` | ✅ Done | FA → Lucide (spinners, arrows) (2026-03-16) |
+| `events/ae_comp__events_menu_nav.svelte` | ✅ Done | FA → Lucide (2026-03-16) |
+| `events/[id]/+page.svelte` | ✅ Done | FA → Lucide; `variant-*` → `preset-*` (2026-03-16) |
+| `events/ae_comp__event_file_obj_tbl.svelte` | ✅ Done | FA → Lucide (2026-03-16) |
+| `events/ae_comp__event_presentation_obj_li.svelte` | ✅ Done | FA → Lucide (2026-03-16) |
+| Lucide inline flow | ✅ Done | Global `svg.lucide { display: inline }` rule in `app.css` (2026-03-16) |
+
+### Events — Pres Mgmt
+
+| Item | Status | Notes |
+| --- | --- | --- |
+| All 24 pres_mgmt files | ✅ Done | FA → Lucide; `variant-*` → `preset-*` (2026-03-16) |
+| Card styling for session/presenter lists | 🔒 Phase 3 | Deferred to post-April 2026 |
+
+### Events — Launcher ⚠️ Live Production
+
+| Item | Status | Notes |
+| --- | --- | --- |
+| FA → Lucide | ✅ Done | All FA spans were already in HTML comments — launcher is clean (verified 2026-03-16) |
+| `variant-*` | ✅ Done | The `variant-soft-secondary` at line 329 is inside a comment block — no live variants remain |
+| Card styling / UX polish | 🔒 Phase 3 | Deferred to post-April 2026 conference |
+
+### Events — Badges
+
+| Item | Status | Notes |
+| --- | --- | --- |
+| FA → Lucide | ✅ Done | All badge files migrated (2026-03-16) |
+| `badge_upload_form.svelte` | ✅ Done | `variant-*` → `preset-*` (2026-03-16) |
+| `badge_template_form.svelte` | ✅ Done | `variant-*` → `preset-*` (2026-03-16) |
+| `code_to_html` | ✅ Refactored | FA HTML string dict → `code_to_icon` Lucide component map (2026-03-16) |
+
+### Events — Leads
+
+| Item | Status | Notes |
+| --- | --- | --- |
+| FA → Lucide | ✅ Done | All leads files migrated (2026-03-16) |
+| `ae_comp__exhibit_signin.svelte` | ✅ Done | `variant-*` → `preset-*` (2026-03-16) |
+| `ae_comp__lead_qr_scanner.svelte` | ✅ Done | `variant-*` → `preset-*` (2026-03-16) |
+| `ae_tab__add.svelte` | ✅ Done | `variant-*` → `preset-*` (2026-03-16) |
+
+### IDAA ⚠️ Privacy-Critical
+
+| Item | Status | Notes |
+| --- | --- | --- |
+| `(idaa)/+page.svelte` | ✅ Modern | Semantic tokens, good access gate |
+| FA CDN | ✅ Scoped | Moved from `app.html` → `idaa/+layout.svelte` `<svelte:head>` (2026-03-16) |
+| Archives, BB, Recovery Meetings | 🔒 Deferred | Full style review deferred to Phase 3 |
+| **All IDAA FA → Lucide** | 🔒 Last priority | Review only after non-IDAA modules are complete |
+
+---
+
+## 11. Issues Ranked by Priority
+
+| # | Severity | Issue | Location | Phase |
+|---|---|---|---|---|
+| 1 | 🔴 A11y | `focus:ring-0` removes focus indicator on journal name input | `ae_comp__journal_entry_header.svelte:108` | 1 |
+| 2 | 🔴 Maintenance | No global dark mode form fix — per-component patches scattered | `e_app_sys_bar.svelte` lines 693–707; others | 1 |
+| 3 | 🟡 Consistency | FontAwesome icons throughout events module | 61 event files | 1–2 |
+| 4 | 🟡 Consistency | `variant-*` buttons used instead of `preset-*` | Events, Badges, Leads routes | 1–2 |
+| 5 | 🟡 Theme | Hardcoded `bg-orange-600/90` on root layout offline banner | `+layout.svelte` | 2 |
+| 6 | 🟡 Theme | Hardcoded HSL colors on journal entry eye icon | `ae_comp__journal_entry_obj_li.svelte` | 2 |
+| 7 | 🟢 Consistency | `bg-slate-*` used in journal entry instead of `bg-gray-*` | `ae_comp__journal_entry_obj_li.svelte` | 2 |
+| 8 | 🟢 Polish | Pres Mgmt pages lack card styling (bare `<ul>` lists) | `pres_mgmt/+page.svelte` and sub-pages | 3 |
+| 9 | 🟢 Polish | Root layout banner uses direct `font-semibold text-white` instead of preset | `+layout.svelte` | 2 |
+
+---
+
+## 12. Implementation Plan
+
+### Phase 1: Quick Wins (current)
+
+**Step 1 — Global form dark mode utility** ✅ Target: `src/app.css`
+
+Add a global utility so Skeleton `.input`, `.select`, `.textarea` classes render correctly in dark mode. This eliminates all per-component `<style>` patches.
+
+**Step 2 — FontAwesome → Lucide in events nav/layout files**
+
+Scope: Non-Launcher, non-IDAA files only. Priority order:
+1. `src/routes/events/ae_comp__events_menu_nav.svelte` — top-level navigation
+2. `src/routes/events/+layout.svelte` — spinner and sort icons
+
+**Step 3 — Standardize `variant-*` → `preset-*` in events**
+
+Scope: `+page.svelte`, `settings/+page.svelte`, `sign_in_out.svelte`
+Skip: Launcher files (frozen), IDAA files (deferred)
+
+---
+
+### Phase 2: Consolidation
+
+- Replace hardcoded banner color in root layout (`bg-orange-600/90` → `preset-tonal-warning`)
+- Fix journal entry eye icon hardcoded HSL colors
+- Fix `bg-slate-*` inconsistency in journal entry
+- Migrate `variant-*` in remaining events files: Pres Mgmt, Badges, Leads
+- Remove per-component `<style>` dark mode patches (now covered by global utility)
+- Add responsive typography to events hub and pres mgmt pages
+
+---
+
+### Phase 3: Module Refactors (post-April 2026 conference)
+
+- Events Launcher: FontAwesome → Lucide, `variant-*` → `preset-*`
+- Events Pres Mgmt: Card styling for session/presenter lists
+- IDAA: Full style review (Archives, BB, Recovery Meetings)
+- Create `.prose-journal` utility in app.css to centralize markdown prose overrides
+
+---
+
+## 13. Files to Modify (Phase 1)
+
+| File | Change |
+|---|---|
+| `src/app.css` | Add global `.dark` form element utility |
+| `src/routes/events/ae_comp__events_menu_nav.svelte` | Replace `fas fa-*` with Lucide imports |
+| `src/routes/events/+layout.svelte` | Replace `fas fa-sync-alt fa-spin` and arrow icons with Lucide |
+| `src/routes/events/+page.svelte` | Replace `variant-ghost-surface` → `preset-outlined-surface` |
+| `src/routes/events/[event_id]/settings/+page.svelte` | Replace `variant-filled-secondary/primary` → `preset-*` |
+| `src/routes/events/[event_id]/sign_in_out.svelte` | Replace `variant-soft-warning` → `preset-tonal-warning` |
+
+---
+
+## 14. Testing Notes
+
+- Run `npx svelte-check` after every file change
+- Test dark mode toggle after form utility added — confirm inputs render correctly in dark
+- Test light mode — confirm no regressions
+- Events nav: verify all Lucide icons render at correct size and with correct meaning
+- Launcher: do not touch — verify no unintended changes via `git diff`
+- IDAA: do not touch — verify no unintended changes via `git diff`
+
+---
+
+## 15. What We Are NOT Changing (Phase 1)
+
+- Events Launcher files — frozen until post-April 2026 conference
+- All IDAA files — deferred to last phase
+- Root layout banner hardcoded color — Phase 2
+- Journal entry HSL eye icon colors — Phase 2
+- Pres Mgmt card styling — Phase 3

documentation/PROJECT__AE_UI_Journals_module_update_2026.md

@@ -0,0 +1,175 @@
+# Aether Journals UI Update (2026)
+
+> **Status:** 🚧 Phase 4 Active (Security/Encryption Blockers remain; Style pass complete)
+> **Last Updated:** 2026-03-06
+> **Primary Agent:** Frontend SvelteKit Agent
+
+## 1. Project Overview
+This document outlines the modernization of the Journals module UI in the SvelteKit frontend (`aether_app_sveltekit`). The primary goals are to fully leverage the generic V3 API architecture and introduce high-velocity productivity features for journal management.
+
+**Context:** The backend transition to the generic `api_crud` router is complete. Custom legacy routers have been removed. The frontend must now fully align with this pattern and provide a frictionless user experience.
+
+---
+
+## 2. Core Objectives
+
+### 🎯 Primary Goals
+1.  **V3 API Verification:** Ensure all CRUD operations utilize the generic `api_crud` endpoints (Verified).
+2.  **Quick Add UI:** Implement a specialized interface for rapid, friction-free entry creation.
+3.  **Append/Prepend UI:** Allow users to quickly add text to the beginning or end of existing entries without full edit mode.
+4.  **Interop & Portability:** Robust import/export logic for Markdown/HTML (Nextcloud Notes compatibility).
+5.  **Security Hardening:** Review and harden client-side encryption logic (BLOCKED).
+
+---
+
+## 3. Technical Architecture
+
+### Backend (Completed)
+*   **Router:** `api_crud` (Generic)
+*   **Definitions:** `app/ae_obj_types_def.py` -> `app/object_definitions/journals.py`
+*   **Endpoints:** `/v3/crud/journal/...` and `/v3/crud/journal_entry/...`
+
+### Frontend (In Progress)
+*   **State Management:** `src/lib/ae_journals/ae_journals_stores.ts`
+*   **Local Storage:** Dexie.js (`db_journals`)
+*   **API Client:** `src/lib/api/api.ts` -> `get_ae_obj`
+*   **Export Engine:** Centralized templates in `src/lib/ae_journals/ae_journals_export_templates.ts`.
+
+---
+
+## 4. Feature Specifications
+
+### ⚡ Quick Add (Complete)
+*   **Component:** `src/routes/journals/ae_comp__journal_entry_quick_add.svelte`
+*   **Behavior:** Creates a new `journal_entry` attached to the active journal without leaving the list view.
+
+### 📝 Append / Prepend (Complete)
+*   **Interaction:** Fast text injection via `AeCompModalJournalEntryAppend`.
+*   **Logic:** Updates entry content without full editor state overhead.
+
+### 🔄 Interop (Markdown/HTML) (Complete)
+*   **Goal:** Bulk export/import for data portability.
+*   **Templates:** Standard, Personal Log, Amazon Vine.
+
+---
+
+## 5. Implementation Plan
+
+### Phase 1: Foundation (Done)
+- [x] Backend cleanup (remove legacy routers).
+- [x] Verify frontend uses V3 API (`ae_journals__journal.ts`).
+
+### Phase 2: Rapid Entry (Complete)
+- [x] Create `ae_comp__journal_entry_quick_add.svelte`.
+- [x] Integrate Quick Add into `+page.svelte`.
+
+### Phase 3: Content Manipulation & Portability (Complete)
+- [x] Implement Append/Prepend logic.
+- [x] Implement Bulk Export/Import system.
+- [x] Establish centralized Export Template engine.
+
+### Phase 4: Polish & Security (ACTIVE)
+- [x] Implement Auto-Save toggle and visual status indicators.
+- [x] Extract decryption workflow to non-reactive helper.
+- [x] **Standardize Configuration Modals:** Refactored Module, Journal, and Entry configuration into a unified tabbed UI.
+- [x] **RESOLVED:** Decryption workflow stability (Fixed via dependency isolation).
+- [x] **Style Standardization (2026-03-06):** Full Skeleton v4 `preset-*` class pass across all 17 journal components. See style token table in Lessons Learned below.
+- [x] **Dark mode fixes:** Entry content hover, journal view section/description background and text colors.
+- [x] **Modal close button:** All 3 config modals use `dismissable={false}` + explicit `<X>` button in header snippet for correct right-aligned placement.
+- [x] **Global select padding:** Added `padding-inline: 0.5rem` to `@layer base` in `app.css` (safe — utility `px-*` classes override it where intentional).
+- [ ] Solidify E2EE passcode system for Journals and Entries.
+- [ ] Audit encryption flow for Quick Added and Imported entries.
+- [ ] Integrate Outbound Email sharing.
+
+---
+
+## 🧠 Lessons Learned: Solving the Svelte 5 Reactivity Hang
+
+During the implementation of the Privacy/Decryption toggle and the new Configuration Modals, we encountered critical browser hangs caused by infinite reactivity loops. Here is how we resolved them:
+
+### 1. Rigorous Dependency Isolation (`untrack`)
+Svelte 5 runes (`$effect`, `$derived`) automatically track **every** reactive variable read inside them.
+*   **The Problem:** An effect would read `save_status` or `tmp_entry_obj.content` to decide if it should sync, but the act of syncing would update those same variables, re-triggering the effect.
+*   **The Fix:** Wrap any "check-only" state or store reads in `untrack(() => ... )`. This allows the effect to use the value without becoming a dependency of it. This is **CRITICAL** when initializing local state from props inside an effect.
+
+### 2. Standardized Modal UI ("Aether Orange") & Style Token Conventions
+We have established a unified design language for configuration interfaces and all Journals UI. **Use these as the module template.**
+
+#### Modal Chrome
+*   **Header/Footer:** `bg-orange-100 dark:bg-orange-900` with consistent orange borders.
+*   **Close button:** Always use `dismissable={false}` on the `<Modal>` and add an explicit `<button>` with `<X>` inside the `{#snippet header()}` so placement is fully in our control. The `flex-1` class on the `<h3>` pushes it right.
+*   **Tabs:** Center-aligned `btn btn-sm` with `preset-filled-primary` (active) / `preset-tonal-surface` (inactive).
+*   **Icons:** Every tab and primary action should have a Lucide icon for better scannability.
+*   **Explicit Persistence:** Follow "Edit working copy → Save Changes" pattern to prevent accidental store/API churn.
+
+#### Skeleton v4 Style Token Reference (Journals = canonical example)
+| Intent | Class |
+|---|---|
+| Primary CTA (save, create, open) | `btn preset-filled-primary` |
+| Neutral / cancel / close | `btn preset-tonal-surface` |
+| Secondary action | `btn preset-tonal-secondary` |
+| Success (confirmed save) | `btn preset-filled-success` |
+| Warning (caution action) | `btn preset-tonal-warning hover:preset-filled-warning-500` |
+| Error / danger (delete, force reset) | `btn preset-tonal-error hover:preset-filled-error-500` |
+| Active tab | `preset-filled-primary` |
+| Inactive tab | `preset-tonal-surface` |
+| Icon button | `btn-icon btn-icon-sm preset-tonal-surface` |
+| Input (base) | `input` |
+| Input (small) | `input input-sm` |
+| Select (base) | `select` |
+| Select (small) | `select select-sm` |
+| Textarea | `textarea` |
+| Badge (info/neutral) | `badge preset-tonal-surface` |
+| Badge (success) | `badge preset-tonal-success` |
+| Badge (error) | `badge preset-tonal-error` |
+
+#### Removed Patterns (never use)
+- All `variant-*` classes are now fully removed from the codebase. Use only `preset-*` classes for all buttons and interactive elements.
+- `variant-form-material` — Skeleton v2, removed from all inputs/selects/textareas
+- `input-bordered` — non-standard, removed
+- DaisyUI `modal` / `modal-box` / `modal-action` wrapper divs inside Flowbite `<Modal>` — removed
+
+#### Dark Mode Rules
+- Any `bg-{color}-100` dynamic background **must** have a `dark:bg-gray-800` (or similar) override — light shades are unreadable in dark mode.
+- Hover states on content areas need both light and dark variants: `hover:bg-blue-100 dark:hover:bg-blue-950`.
+- Text locked to `dark:text-gray-900` is almost always wrong — use `dark:text-gray-100`.
+
+### 3. Dexie LiveQuery Subscriptions
+*   **The Problem:** Accessing `liveQuery` observables directly in templates results in `[object Object]` or `undefined` property errors.
+*   **The Mandate:** ALWAYS use the `$` prefix (e.g. `$lq__obj`) when passing or using data from a Dexie `liveQuery`.
+
+### 4. Manual Deep Copying vs. Proxies
+Svelte 5 state is backed by Proxies.
+*   **The Problem:** Using `JSON.parse(JSON.stringify(proxy))` can sometimes trigger unexpected behavior or loops when used inside a reactive context.
+*   **The Fix:** Implement a manual `deep_copy` helper or selective property assignment when syncing "Original" vs "Temporary" state. This ensures `orig_entry_obj` is a plain JS object, making the `has_unsaved_changes` check stable.
+
+### 3. Concurrency Locking (`is_processing`)
+*   **The Problem:** Decryption (Async) and Auto-Save (Debounced Async) can fire nearly simultaneously.
+*   **The Fix:** Use a simple `is_processing` boolean flag. If any async workflow is active, block others from starting and prevent the `has_unsaved_changes` derived rune from reporting `true`.
+
+### 4. Comparison Normalization
+*   **The Problem:** Trivial differences (e.g., `null` vs `""` or trailing whitespace) would trigger "unsaved changes" and fire the save loop.
+*   **The Fix:** Use a `normalize()` function in the `has_unsaved_changes` derived rune to trim strings and treat `null/undefined` as empty strings during comparison.
+
+---
+
+## ⚠️ Technical Blocker: The "Decryption-Sync" Loop (Resolved)
+
+### The Issue
+The component is suffering from a **Reactive Feedback Loop** between decryption, auto-save, and background IDB refreshes.
+1.  **Decrypting content** triggers a change in `tmp_entry_obj.content`.
+2.  The **Auto-Save effect** sees this as a manual user edit and saves to the database.
+3.  **Dexie LiveQuery** detects the DB update and refreshes the object.
+4.  The **Sync effect** resets the entry to its encrypted state (from DB).
+5.  The **Auto-Decryption effect** fires again, starting the loop over.
+
+### What we tried:
+*   **`is_processing` flags:** Attempted to block reactivity during decryption.
+*   **`untrack()`:** Attempted to isolate store updates.
+*   **Reference Sync:** Attempted to update `orig_entry_obj` simultaneously with decryption to fool the change detector.
+*   **Direct Store Updates:** Switching from property assignment to `journals_sess.update()` to fix Svelte 5 notification failures.
+
+### Future Fix Ideas:
+1.  **Native Svelte 5 State:** Refactor `journals_sess` from a Svelte 4 `Writable` to a class using `$state`.
+2.  **Logic Extraction:** Move decryption logic into a non-reactive class/helper to isolate side effects from the UI render cycle.
+3.  **Hash Comparison:** Use content hashes for change detection instead of string comparisons to avoid whitespace/normalization loops.

documentation/PROJECT__Use_AE_API_V3_CRUD_upgrade.md

@@ -0,0 +1,120 @@
+# Project: CRUD V3 Final Migration
+
+> **Status:** Active / In Progress
+> **Last Updated:** 2026-01-20
+> **Goal:** Eliminate all dependency on legacy API wrappers (`create_ae_obj_crud`, `get_ae_obj_id_crud`, etc.) and ensure 100% adoption of the V3 Standard (`/v3/crud/...`).
+
+---
+
+## 1. Executive Summary
+While the **Journals** and **Identity (User/Account)** modules have been successfully migrated to the V3 architecture, a significant portion of the **Events**, **Sponsorships**, and **IDAA** modules still rely on legacy V1/V2 wrappers. This document serves as the master checklist to reach 100% V3 compliance.
+
+**Why this matters:**
+*   **Security:** V3 enforces strict multi-tenant isolation via JWT.
+*   **Maintenance:** Legacy wrappers in `api.ts` contribute to technical debt and "God Object" anti-patterns.
+*   **Performance:** V3 offers optimized search and partial updates (PATCH) that legacy endpoints lack.
+
+---
+
+## 2. Migration Audit (Findings)
+
+The following files have been identified as using legacy CRUD wrappers.
+
+### 🔴 High Priority: Events Module
+The entire `ae_events` library is heavily dependent on legacy `v2` list and `v1` CRUD wrappers.
+
+- [ ] `src/lib/ae_events/ae_events__event_session.ts`
+- [ ] `src/lib/ae_events/ae_events__event_presenter.ts`
+- [ ] `src/lib/ae_events/ae_events__event_presentation.ts`
+- [ ] `src/lib/ae_events/ae_events__event_location.ts`
+- [ ] `src/lib/ae_events/ae_events__event_badge_template.ts`
+- [ ] `src/lib/ae_events/ae_events__event_device.ts`
+- [x] `src/lib/ae_events/ae_events__exhibit.ts` (Migrated 2026-01-28)
+- [ ] `src/lib/ae_events/ae_events__event_file.ts`
+
+### 🟠 Medium Priority: Core & Sponsorships
+Legacy patterns persisting in core logic and config modules.
+
+- [ ] `src/lib/ae_sponsorships/ae_sponsorships_functions.ts`
+- [ ] `src/lib/ae_core/core__hosted_files.ts` (Uses `get_ae_obj_id_crud`)
+- [ ] `src/lib/ae_core/core__site.ts` (Uses `get_ae_obj_id_crud`)
+- [ ] `src/lib/ae_core/core__country_subdivisions.ts`
+- [ ] `src/lib/ae_core/core__time_zones.ts`
+- [ ] `src/lib/ae_core/core__countries.ts`
+
+### 🟡 Low Priority: UI Components & Routes
+Specific UI components that make direct API calls instead of using store functions.
+
+- [ ] `src/lib/elements/element_data_store.svelte` (Direct `create_ae_obj_crud`)
+- [x] `src/lib/elements/element_data_store_v2.svelte`
+- [ ] `src/routes/events/[event_id]/event_page_menu.svelte`
+- [ ] `src/routes/events/[event_id]/(pres_mgmt)/session/ae_comp__event_session_alert.svelte`
+- [ ] `src/routes/events/ae_comp__event_session_obj_li.svelte`
+- [ ] `src/routes/idaa/(idaa)/recovery_meetings/ae_idaa_comp__event_obj_id_edit.svelte`
+
+---
+
+## 3. Migration Procedure
+
+For each file listed above, follow this standard refactoring pattern:
+
+1.  **Imports:**
+    *   Remove imports of `create_ae_obj_crud`, `update_ae_obj_id_crud`, etc.
+    *   Import V3 helpers: `get_ae_obj`, `create_ae_obj`, `update_ae_obj`, `delete_ae_obj`, `search_ae_obj`.
+
+2.  **Pattern Replacement:**
+
+    *   **Get (Single):**
+        *   *Old:* `get_ae_obj_id_crud({ api_cfg, obj_type: 'event_session', obj_id: '...' })`
+        *   *New:* `get_ae_obj({ api_cfg, obj_type: 'event_session', obj_id: '...' })`
+
+    *   **Get (List):**
+        *   *Old:* `get_ae_obj_li_for_obj_id_crud_v2(...)`
+        *   *New:* `get_ae_obj_li(...)` or `search_ae_obj(...)` if complex filtering is needed.
+
+    *   **Update:**
+        *   *Old:* `update_ae_obj_id_crud({ ..., fields: { name: 'New Name' } })`
+        *   *New:* `update_ae_obj({ ..., data: { name: 'New Name' } })`
+        *   *Note:* Ensure payload whitelisting is applied! V3 will 400 Error on unknown columns.
+
+    *   **Create:**
+        *   *Old:* `create_ae_obj_crud({ ..., fields: { ... } })`
+        *   *New:* `create_ae_obj({ ..., data: { ... } })`
+
+3.  **Verification:**
+    *   Verify the module still loads data (check Network tab for `/v3/` requests).
+    *   Verify saving works (check for 400 Bad Request errors).
+
+## 4. Standard Practices (V3)
+
+### A. Permissive Update Mode
+To simplify frontend state management, V3 supports ignoring unknown fields in update payloads.
+- **Header:** `x-ae-ignore-extra-fields: true` (Enabled by default in `api_patch_object`).
+- **Use Case:** Allows syncing objects that contain read-only metadata (e.g. `created_on`, `_lq_id`) without manual scrubbing.
+
+### B. Structured Error Handling
+V3 returns detailed error metadata in the `meta.details` object.
+- **Implementation:** Core helpers automatically extract this metadata.
+- **FastAPI Fallback:** Standard `{"detail": "..."}` responses are automatically wrapped into the `meta.details` format by the frontend helpers.
+
+---
+
+## 5. Known Pitfalls
+
+### A. The "Integer Trap" (Search Mapping)
+**Issue:** The backend automatically maps certain fields (like `account_id`) from string IDs to internal integers.
+**Symptom:** Providing a string ID in a search body that the backend maps to an integer can result in **Zero Results** if the underlying view expects a string.
+
+**Final Solution (Body + Header Injection):**
+1.  **Body:** Inject the raw field name (e.g. `account_id`) into the `search_query.and` array to bypass automatic backend mapping.
+2.  **Headers:** Pass `headers: { 'x-account-id': ... }` manually to provide context for Auth validation.
+3.  **Isolation (IDAA):** Due to specific bugs in the IDAA module, it has been temporarily isolated to a legacy V2 search function (`qry_ae_obj_li__event_v2`) using `default_qry_str` for text searching, while the main module continues to use the V3 implementation.
+
+---
+
+## 6. Final Cleanup
+Once all checkboxes above are completed:
+1.  [x] Remove legacy exports from `src/lib/api/api.ts`.
+2.  [x] Delete `src/lib/ae_api/api_get__crud_obj_li_v1.ts`.
+3.  [x] Delete `src/lib/ae_api/api_get__crud_obj_li_v2.ts`.
+4.  [x] Delete `src/lib/ae_api/api_get__crud_obj_id.ts` (Legacy version).

documentation/TODO__Agents.md

@@ -0,0 +1,137 @@
+# Frontend Agent Task List
+> Use this file to track steps for complex features or bug fixes.
+> **Status:** Stable — ongoing development.
+
+
+## 🚧 Upcoming High Priority
+
+### [Stores] Refactor — Phase 2c (deferred)
+Phases 1, 2a, 2b are complete (see ✅ Completed below). One phase remaining:
+
+- [ ] **Phase 2c — Actual separate stores (`ae_auth`, `ae_app`):** Requires touching ~471
+  `$ae_loc.*` auth-field read sites across 150+ files. Deferred until a Svelte runes migration
+  of the store layer itself (touching every component anyway makes the callsite sweep cheap).
+
+### [Backend] Join event_location_id onto event_presenter API view
+The `event_presenter` object currently has `event_session_id` but not `event_location_id`.
+When navigating from the Presenter View to the Launcher, the frontend has to do a secondary
+session lookup to discover the location (magic redirect in launcher base `+page.svelte`).
+Joining `event_session.event_location_id` into the presenter view/response would let the
+frontend pass the location directly in the Launcher URL without the extra lookup.
+- Backend: add `event_location_id` (and `event_location_id_random`) to the `event_presenter`
+  view or API response
+- Frontend: add `event_location_id` to `ae_EventPresenter` type and `properties_to_save`;
+  pass as `events__launcher_id` in `presenter_page_menu.svelte`
+
+### [Launcher] Active features (identified 2026-03-06)
+
+- [x] **Font size cycler (Launcher sidebar):** Font size cycler and light/dark toggle added to new `menu_launcher_controls.svelte` component; wired into `launcher_menu.svelte`. Visibility toggles (All Files / All Sessions) moved to same component and restyled to `preset-tonal-tertiary`. (2026-03-11)
+
+- [x] **Minor Svelte warning:** `slct_event_location_id` in `menu_location_list.svelte` — prop already has `$bindable(null)`; stale comment in file updated. (2026-03-11)
+
+### [Svelte] State reference warnings
+- [x] **`svelte-check` fully clean — 0 errors, 0 warnings.** All 42 `state_referenced_locally` warnings fixed (2026-03-11). CSS `@apply`/`@reference` warnings in `ae_idaa_comp__event_obj_id_edit.svelte` also resolved — Tailwind utilities inlined, `<style>` block removed. (2026-03-16)
+
+### [Badges] Remaining badge work before first live event
+- **Badge print controls UX polish:** Scott has improvements in mind — TBD next session.
+  File: `ae_comp__badge_print_controls.svelte`.
+
+### [Badges] Zebra ZC10L Hardware Testing — ~week of 2026-03-16
+Scott is renting a Zebra ZC10L for one day to do real-world badge printing tests before
+Axonius (mid-April). See `documentation/PROJECT__AE_Events_Zebra_Hardware_Test_Day.md`
+for the full checklist and prep plan.
+
+**Pre-test work (do before printer arrives):**
+- [x] **Debug outlines are gated** — `print/+page.svelte` prints nothing; outlines live in
+  `static/ae-print-badge.css` behind `html.debug_outlines` class (toggled by the "Show debug
+  outlines" checkbox in the controls panel, trusted-only). Won't appear in print unless explicitly
+  enabled. No action needed. (verified 2026-03-18)
+- [ ] **Zebra ZC10L Linux driver** — install CUPS driver package ahead of time; verify card prints
+  before burning rental time on driver setup. Check Zebra's site for Linux/CUPS driver.
+- [x] **`style_href` wired** — `print/+page.svelte` already loads `style_href` via `<svelte:head>`
+  and it's in `properties_to_save`. (verified 2026-03-18)
+- [x] **`duplex=0` hides badge back** — `duplex` is in `properties_to_save`; v2 badge render
+  gates `{#if show_badge_back}` on `duplex != null && !!duplex`. Set `duplex=0` on the template
+  to suppress the back section for single-sided PVC. (verified 2026-03-18)
+- [ ] **Set up test event + PVC template** in dev DB with `layout: badge_3.5x5.5_pvc`,
+  `duplex=0`, a few badge records with varied name lengths, HTML in fields, different badge_type_codes.
+- [ ] **Test data set:** include edge cases — very long name, HTML markup in name/affiliations,
+  badge with no affiliations, badge with all ticket/option codes set.
+
+### [Leads] Exhibitor Lead Scanning — IN PROGRESS (demo-ready prep)
+Module is substantially built as a PWA (no Electron). Core flow works end-to-end.
+Spec: `documentation/PROJECT__AE_Events_Exhibitor_Leads_v3.md` and `_detail.md`.
+Full audit: `src/routes/events/[event_id]/(leads)/` and `src/lib/ae_events/ae_events__exhibit*.ts`.
+
+**What's working:**
+- Exhibit search/landing (`/leads/`) — SWR, local + API search, sort
+- Exhibit detail page — 4-tab layout, sticky header with Add/List toggle, auto-refresh timer
+- Tab 1 (Start): sign-in via shared passcode OR licensed user (email + passcode)
+- Tab 2 (Add): QR scan (rapid vs. qualify mode) + manual badge search; duplicate detection on both
+- Tab 3 (List): SWR lead list, licensee filter (All / My Leads), sort options, export button
+- Tab 4 (Manage): admin tools, booth profile edit, passcode, license mgmt, custom questions config, app settings (refresh interval, clear IDB/localStorage, reload)
+- Lead detail page: view/edit custom question responses, exhibitor notes (TipTap), priority/enable flags
+- Export wired to V3 action endpoint `/v3/action/event_exhibit/{id}/tracking_export` (CSV/XLSX)
+
+**Remaining before demo:**
+- [x] **Export endpoint** — V3 action endpoint confirmed live on backend (2026-03-16). Returns 403 if
+  `leads_api_access` is not enabled on the exhibit — expected behavior. Export button now gated in
+  UI: only renders when `$lq__exhibit_obj?.leads_api_access === true`. Enable via:
+  `PATCH /v3/crud/event_exhibit/{id}` with `{ "leads_api_access": true }`.
+- [x] **`allow_tracking` gate** — implemented (2026-03-16). QR scanner shows a warning card and
+  blocks the add. Manual search shows a ShieldOff "Opt-Out" badge per row and guards `add_as_lead`.
+  Opt-in model: `allow_tracking` must be explicitly `true` on the badge. Also added `allow_tracking`
+  and `agree_to_tc` to `ae_EventBadge` in `ae_types.ts`.
+  **Demo note:** ensure test badges have `allow_tracking = true` or no one can be added.
+- [ ] **Payment component** — `ae_comp__exhibit_payment.svelte` is a stub (Stripe placeholder only);
+  omit from demo or hide the payment tab via "Show Payment Tab" toggle in Manage settings
+- [ ] **End-to-end smoke test** — sign in with shared passcode, scan/search a badge, add a lead,
+  view detail, add notes/responses, export CSV; verify on mobile (Chrome/Safari PWA)
+- [x] **Install prompt** — PWA install nudge implemented (2026-03-16). `pwa_install.svelte.ts`
+  singleton captures `beforeinstallprompt` (Chrome/Android/desktop) and detects iOS Safari
+  for manual "Share → Add to Home Screen" instructions. Reusable `element_pwa_install_prompt.svelte`
+  placed on the Leads Start tab between the feature grid and sign-in. `pwa_install.init()` wired
+  into root `+layout.svelte`; dismiss persists 7 days via localStorage. svelte-check: 0 errors.
+
+### [DevOps] Remaining deployment items
+- [x] **Wire AE_APP_REPLICAS:** `docker-compose.yml` line 147 already has `scale: ${AE_APP_REPLICAS:-1}`. (verified 2026-03-11)
+- [x] **Archive ae_env_node_app:** Archived as tar.gz under `~/OSIT_dev/backups/`; old history/docs moved to `~/OSIT_dev/for_reference_only/`. (2026-03-11)
+- [x] **Build Optimization:** Current state finalized. Local Gitea instance stood up at `git.dgrzone.com` (Docker, home server) — future: migrate repos from Bitbucket, verify Backblaze/restic backups cover Gitea data. (2026-03-11)
+
+
+### [General]
+- [x] **Temp Cleanup:** `cleanup_tmp_files` wired in `launcher_background_sync.svelte`; called at launcher startup. Confirmed working. (2026-03-11)
+- [x] **`window.print()` for badge print button:** Wired in `ae_comp__badge_print_controls.svelte` — increments count, fires `window.print()`, redirects to badge search. (done)
+- **Input Field Audit:** Several input fields are missing `name`/`id` attributes or `data-testid`. Known examples: badge override fields in `ae_comp__badge_obj_view.svelte`; template name input in `ae_comp__badge_template_form.svelte`. Matters for: accessibility, autofill, label associations, and test targeting. (For tests, use `getByLabel()` rather than `input[value*=...]` which only checks the HTML attribute, not the Svelte-bound DOM property.)
+
+## ✅ Completed (2026-03)
+- [x] **[Stores] Phase 1 — Dead code cleanup** (`ae_stores.ts`, `ae_events_stores.ts`, `ae_idaa_stores.ts`): removed `ver_idb`, stale comments, `console.log` lines, Stripe button block (zero consumers), personal Novi UUIDs, dead alternatives. Net: −202 lines across 3 files. svelte-check: 0 errors. (2026-03-16)
+- [x] **[Stores] Phase 2a — Split defaults into domain sub-files**: `ae_stores__auth_loc_defaults.ts`; `ae_events_stores__badges/launcher/leads/pres_mgmt_defaults.ts`. Spread-merged back into store structs — zero consumer changes. (2026-03-16)
+- [x] **[Stores] Phase 2b — TypeScript interfaces for defaults sub-files**: `SiteCfgJson`, `AePerson`, `AeUser`, `AccessType`, `AuthLocState`; `BadgesLocState/SessState`; `SectionState`, `LauncherLocState/SessState`; `LeadsLocState/SessState`, `TmpLicense`; `PresMgmtLocState/SessState`. svelte-check: 0 errors. (2026-03-16)
+- [x] **[UI]** Style Review Phase 1 & 2 complete — all non-frozen, non-IDAA routes migrated: FA→Lucide (events, pres_mgmt, core, badges, leads, hosted_files), `variant-*`→`preset-*` (all modules), `code_to_html` badge dict refactored to Lucide component map, FA CDN scoped to IDAA layout, global `svg.lucide { display: inline }` CSS rule added to fix icon inline flow. See `documentation/PROJECT__AE_Style_Review.md`. (2026-03-16)
+- [x] **[UI]** Pres Mgmt Phase 3 — FA→Lucide icon migration across all 24 pres_mgmt files. (2026-03-16)
+- [x] **[IDAA]** `ae_idaa_comp__event_obj_id_edit.svelte` — inlined Tailwind utilities, removed `<style>` block; eliminated all 23 `@apply`/`@reference` svelte-check warnings. (2026-03-16)
+- [x] **[Badges]** Badge print page svelte-check fix: extracted print CSS to `static/ae-print-badge.css`; fixed unclosed `<script>` tag in `print/+page.svelte`. (2026-03-16)
+- [x] **[Svelte/Tests]** svelte-check cleanup: fixed `select_ref_badge_type` `$state()` declaration; two `<svelte:component>` deprecations in launcher components; `page.evaluate()` two-arg pattern in `badge_print_layout.test.ts`. (2026-03-16)
+- [x] **[Launcher]** Hosted file download button `require_auth` prop — added `require_auth?: boolean` (default `true`) to `ae_comp__hosted_files_download_button.svelte`; all existing consumers unchanged. Launcher `launcher_file_cont.svelte` passes `require_auth={false}` so unauthenticated kiosk users can open/download files without being blocked. (2026-03-16)
+- [x] **[Security]** `PUBLIC_AE_API_SECRET_KEY` audit complete. Key is `PUBLIC_*` by design (always in client bundle). Highest-risk anonymous path uses limited-permission `PUBLIC_AE_BOOTSTRAP_KEY`. Full server-side migration not justified given JWT + account_id auth layers. Current state acceptable. (2026-03-11)
+- [x] **[UX]** Session Expired banner — `ae_auth_error` store wired to API helpers; root layout sets `flag_expired` on 401/403; non-blocking dismissible banner rendered. (2026-03-12)
+- [x] **[UX]** Access Denied UI standardized — `element_access_denied.svelte` created; `/core` layout, `/events/settings`, and `/events/badges/review` updated to use it. (2026-03-12)
+- [x] **[Build]** Rollup/Vite circular dependency warnings eliminated — `manualChunks` in `vite.config.ts` colocates all `svelte/*` internals into a single `svelte-vendor` chunk, preventing `runtime.js` / `index-client.js` split (~35 warnings gone). (2026-03-11)
+- [x] **[Refactor]** `try_cache` audit + sponsorship/event_file/hosted_file SWR alignment — removed vestigial `try_cache` params from `generate_qr_code`, `ae_core_functions` wrappers; added SWR fast/slow path to sponsorship loaders; changed `event_file` and `hosted_file` single-object loader defaults from `false` → `true` for consistency. (2026-03-11)
+- [x] **[DevOps]** Frontend + Backend unified into single `aether_container_env` Docker Compose. `ae_app` service live with healthcheck, single exposed port (`AE_APP_NODE_PORT`), internal `ae_api` networking. Deploy scripts in `package.json` both target `../aether_container_env/docker-compose.yml`. (2026-03-10)
+- [x] **[DevOps]** `/health` endpoint live at `src/routes/health/+server.ts`. Docker `HEALTHCHECK` uses it. (2026-03-10)
+- [x] **[UI]** Dark mode `color-scheme` fix — `html.dark/light { color-scheme }` in `app.css`; all native browser controls now sync to app dark mode. (2026-03-10)
+- [x] **[Launcher]** Location select → session auto-load bug fixed via `$derived.by()` liveQuery pattern. (2026-03-10)
+- [x] **[Svelte]** `state_referenced_locally` warning fixes — 10 warnings resolved in IDAA archives/BB. (2026-03-09)
+- [x] **[TypeScript]** Sign In/Out TS errors fixed — `user_id` / `person_id` typed as `string | null`. (2026-03-09)
+- [x] **[Tests]** All badge data integrity and attendee workflow Playwright tests passing. Root causes documented in `tests/README.md`. (2026-03)
+- [x] **[Badges]** Badge print controls panel, QR code, duplex wiring, review form, print button, multi-word fulltext search, `data-testid` attributes. (2026-03)
+- [x] **[UI]** Firefly Theme + Pres Mgmt Visual Redesign (5 files). (2026-03-06)
+- [x] **[Docs]** UI Style Guidelines + Component Patterns docs created. (2026-03-06)
+- [x] **[API]** V3 Lookup system integration; Event File V3 mapping; `event_session` search 400-error fix. (2026-02/03)
+- [x] **[API]** All CRUD helpers on V3 `/v3/crud/...` paths. (2026-02)
+- [x] **[Security]** Purged `x-aether-api-token`; fixed misplaced CORS headers; Account ID Scavenging. (2026-02)
+- [x] **[Security]** Playwright integration tests replace `verify_jwt_logic.js` simulation tests. (2026-03)
+- [x] **[Framework]** `AE_Obj_Field_Editor_V3` with Svelte 5 Runes. CRUD v2 fully retired. (2026-03-05)
+- [x] **[IDAA]** Bulletin Board and Recovery Meetings functionality verified. (2026-02)

documentation/history/PROJECT__AE_Access_Control_UX.md

@@ -0,0 +1,289 @@
+# PROJECT: Access Control UX — Session Expired & Access Denied
+
+**Status:** Complete
+**Priority:** Medium-High
+**Created:** 2026-02
+**Updated:** 2026-03-11
+**Related:** `src/routes/+layout.svelte`, `src/lib/ae_api/`, `src/lib/stores/ae_stores.ts`
+
+---
+
+## 1. Objective
+
+Clean up inconsistent access-denied and session-expired UX across the app:
+
+1. **Session Expired banner** — When the API returns 401/403, show a non-blocking dismissible banner in the root layout rather than silently failing. The `flag_expired` placeholder in the root layout is already wired for this but nothing sets it.
+2. **Standardize Access Denied display** — Replace the one-off browser `alert()` in event settings with a proper in-page gate. Create a small reusable component for inline denial cards.
+3. **Maintain intentional special cases** — IDAA Novi UUID gate and the Root Site Access Key gate are correct and must not be touched.
+
+---
+
+## 2. Current State Inventory
+
+### Pattern A — Root Layout: Site Access Key Gate ✅ Working, keep as-is
+
+**File:** `src/routes/+layout.svelte` lines 130–135, 299–305
+**Type:** Full-screen blocker
+**Logic:** If `site_access_key` is set and `allow_access` key doesn't match + user is not `trusted_access`, `flag_denied = true`.
+**Current UI:** Minimal full-screen `<h1>Access Denied</h1>` + Reload button.
+**Verdict:** Works correctly. The minimal styling is intentional (it's a hard site gate). Keep but no code change needed unless you want to polish the styling later.
+
+---
+
+### Pattern B — Root Layout: Session Expired Banner 🔴 Declared, never set
+
+**File:** `src/routes/+layout.svelte` line 63
+**Variable:** `let flag_expired: boolean = $state(false)` — **never set anywhere.**
+**Intent:** This should show a non-blocking dismissible banner whenever the API returns 401/403, signaling a stale JWT/session.
+**Gap:** API helpers detect 401/403 and log diagnostic info but never fire any store event.
+**Fix:** See Implementation Plan step 1.
+
+---
+
+### Pattern C — Core Layout: Manager Access Gate ✅ Already correct
+
+**File:** `src/routes/core/+layout.svelte` lines 13–20, 62–75
+**Logic:**
+- `onMount`: 500ms delay then `goto('/')` if still not `manager_access` (handles slow hydration)
+- `{:else}` block: Shows a styled "Access Restricted" card with Lock icon, description, "Return Home" button while waiting/denied
+
+**Verdict:** This pattern is correct and consistent. The `{:else}` visual gate prevents flashing. The delayed redirect is a graceful fallback. **No changes needed.**
+
+---
+
+### Pattern D — IDAA Layout: Novi UUID Gate ✅ Intentionally custom, keep as-is
+
+**File:** `src/routes/idaa/(idaa)/+layout.svelte`
+**Logic:** Async POST to `https://www.idaa.org/api` to verify Novi UUID. `novi_verifying` flag prevents Access Denied flash during network round-trip.
+**Verdict:** Intentionally custom to IDAA's member verification flow. **Do not standardize or touch this.**
+
+---
+
+### Pattern E — Event Settings: browser `alert()` 🟡 Needs fix
+
+**File:** `src/routes/events/[event_id]/settings/+page.svelte` lines 44–47
+**Current code:**
+```ts
+if (!$ae_loc.administrator_access) {
+    if (browser) {
+        alert('Access Denied: Administrative privileges and Edit Mode required.');
+        goto(`/events/${event_id}`);
+    }
+}
+```
+**Problems:**
+1. `alert()` is a blocking browser dialog — ugly, inconsistent with app UX
+2. Runs in module-level `if` block (not `onMount`) — can fire before hydration is fully complete
+3. No visual component shown; just redirects
+
+**Fix:** Remove `alert()`, move check into `onMount` with a small delay (like `/core` pattern), or add an inline gate using a reusable component.
+
+---
+
+### Pattern F — Badge Review: Inline "Access Denied" Card 🟡 Acceptable, minor polish
+
+**File:** `src/routes/events/[event_id]/(badges)/badges/[badge_id]/review/+page.svelte` lines 315–330
+**Context:** Passcode check failure — attendee entered wrong passcode
+**Current UI:**
+```html
+<div class="card p-6 space-y-4 max-w-sm">
+    <div class="flex items-center gap-2 text-error-500">
+        <h3 class="text-lg font-semibold">Access Denied</h3>
+    </div>
+    <p class="text-sm text-gray-700">{passcode_error}</p>
+    <button ... >Try Again</button>
+</div>
+```
+**Verdict:** Contextually appropriate and functional. The "Try Again" button is good UX. This is a prime candidate to be replaced with a reusable component once one exists, but it is not broken.
+
+---
+
+### Pattern G — API Helpers: 401/403 Detection Without UI Feedback 🔴 Gap
+
+**Files:** `src/lib/ae_api/api_get_object.ts`, `api_post_object.ts`, `api_patch_object.ts` (all ~line 237)
+**Current behavior:** Logs auth diagnostics to console, returns `false` or `null`. No store event fired.
+**Gap:** When a JWT expires mid-session, the user sees requests silently fail (data doesn't load/save) with no explanation. They may think the app broke.
+**Fix:** On 401/403, set `ae_auth_error` store → root layout watches it and sets `flag_expired = true`.
+
+---
+
+### Pattern H — Presenter Auth (`auth__person`) — Existing system, no UX issues to fix now
+
+**Store:** `$events_loc.auth__person` — stores authenticated presenter identity
+**URL params:** `?person_id=...&person_pass=...&presentation_id=...&presenter_id=...`
+**Anonymous toggle:** Per-event config allows presenters to upload files without signing in
+**Verdict:** Auth system is working. The gating UI in the presenter pages is contextually managed. Not in scope for this cleanup. Revisit when building out the Leads feature or a future auth refactor.
+
+---
+
+## 3. Issues Ranked by Priority
+
+| # | Severity | Issue | File | Fix |
+|---|---|---|---|---|
+| 1 | 🔴 High | API 401/403 silently fails — users have no feedback | `api_*.ts` | Wire to `ae_auth_error` store |
+| 2 | 🔴 High | `flag_expired` never set — session expired banner never shows | `+layout.svelte` | Watch `ae_auth_error`, render banner |
+| 3 | 🟡 Medium | `alert()` in event settings — ugly, blocking, not idiomatic | `settings/+page.svelte` | Replace with `onMount` gate + reusable component |
+| 4 | 🟢 Low | Badge review inline card — not reusing a component | `badges/.../review/+page.svelte` | Replace when `element_access_denied.svelte` is ready |
+
+---
+
+## 4. Design Decisions
+
+### 4a. Session Expired Banner Design
+
+- **Non-blocking top bar** — similar to the existing `is_offline` and `api_unreachable` banners in the root layout
+- **Dismissible** — user clicks X to clear; or auto-hides after signing back in
+- **Message:** "Your session has expired. Please reload or sign in again." with a Reload button
+- **Trigger:** Any 401 or 403 from any of the three API helpers
+
+### 4b. `ae_auth_error` Store
+
+Simple writable in `ae_stores.ts`:
+```ts
+export const ae_auth_error = writable<{ type: 'expired' | 'denied' | null, ts: number | null }>({ type: null, ts: null });
+```
+This is intentionally minimal — just enough to signal the root layout.
+
+### 4c. Reusable `element_access_denied.svelte`
+
+A small card component for inline access denial within a page:
+```
+Props:
+  - title?: string        (default: "Access Denied")
+  - message?: string      (default: "You do not have permission to view this content.")
+  - show_reload?: boolean
+  - show_return_home?: boolean
+  - action_label?: string  (optional extra button)
+  - on_action?: () => void
+```
+Location: `src/lib/elements/element_access_denied.svelte`
+
+### 4d. Event Settings Fix
+
+The settings page check should mirror the `/core` pattern:
+- Move to `onMount` with 500ms grace delay
+- No `alert()` — if not authorized, the redirect fires silently after the delay
+- Add inline gate (`{:else}` block with "Access Restricted" message) if the user somehow lands here
+
+### 4e. What We Are NOT Changing
+
+- Root Layout site access key gate — working correctly
+- `/core` layout — already correct
+- IDAA Novi UUID gate — intentionally custom
+- Presenter auth system (`auth__person`) — not in scope
+
+---
+
+## 5. Implementation Plan
+
+### Step 1: Add `ae_auth_error` store ✅ DONE (2026-03-11)
+
+**File:** `src/lib/stores/ae_stores.ts`
+
+Add after the existing store declarations:
+```ts
+// Auth error signal — set by API helpers on 401/403 to trigger root layout session-expired banner
+export const ae_auth_error = writable<{ type: 'expired' | null, ts: number | null }>({ type: null, ts: null });
+```
+
+---
+
+### Step 2: Wire API helpers to `ae_auth_error` ✅ DONE (2026-03-11)
+
+**Files:** `src/lib/ae_api/api_get_object.ts`, `api_post_object.ts`, `api_patch_object.ts` (same pattern in all three)
+
+In the existing `if (response.status === 401 || response.status === 403)` block, add one line after the existing `console.warn(...)`:
+```ts
+import { ae_auth_error } from '$lib/stores/ae_stores';
+// ...
+ae_auth_error.set({ type: 'expired', ts: Date.now() });
+```
+
+**Note:** Only import `ae_auth_error` — no other store changes. Do NOT import `ae_auth_error` at module level if the API helpers are used SSR-side. Use a dynamic import or guard with `browser` check if needed.
+
+---
+
+### Step 3: Wire `flag_expired` in root layout ✅ DONE (2026-03-11)
+
+**File:** `src/routes/+layout.svelte`
+
+Add an `$effect` that watches `$ae_auth_error` and sets `flag_expired`:
+```ts
+$effect(() => {
+    if ($ae_auth_error?.type === 'expired' && $ae_auth_error?.ts) {
+        untrack(() => { flag_expired = true; });
+    }
+});
+```
+
+Add the dismissible banner to the template (after/near the existing `is_offline` banner, in the `{#if browser && $ae_loc?.allow_access}` block):
+```html
+{#if flag_expired}
+    <div class="fixed top-0 left-0 right-0 z-50 bg-warning-500 text-white px-4 py-2 flex items-center justify-between">
+        <p class="text-sm font-semibold">Your session has expired. Please reload or sign in again.</p>
+        <div class="flex gap-2">
+            <button class="btn btn-sm preset-filled-surface" onclick={() => window.location.reload()}>Reload</button>
+            <button class="btn btn-sm" onclick={() => { flag_expired = false; ae_auth_error.set({ type: null, ts: null }); }}>Dismiss</button>
+        </div>
+    </div>
+{/if}
+```
+
+---
+
+### Step 4: Create `element_access_denied.svelte` ✅ DONE (2026-03-11)
+
+**File:** `src/lib/elements/element_access_denied.svelte`
+
+Reusable card for inline access denial. Props per design decision 4c.
+
+---
+
+### Step 5: Fix Event Settings `alert()` ✅ DONE (2026-03-11)
+
+**File:** `src/routes/events/[event_id]/settings/+page.svelte`
+
+Replace the module-level `if (!$ae_loc.administrator_access)` + `alert()` block with:
+1. Move check into `onMount` with the same 500ms grace-delay pattern as `/core`
+2. Add `{:else}` gate in the template using `element_access_denied.svelte`
+3. Remove the `browser` guard (not needed inside `onMount`)
+
+---
+
+### Step 6 (Optional / Low Priority): Swap badge review inline card ✅ DONE (2026-03-11)
+
+**File:** `src/routes/events/[event_id]/(badges)/badges/[badge_id]/review/+page.svelte`
+
+Replace inline access denied card with `element_access_denied.svelte` once the component exists. Keep "Try Again" action via `on_action` prop.
+
+---
+
+## 6. Files to Modify Summary
+
+| File | Change |
+|---|---|
+| `src/lib/stores/ae_stores.ts` | Add `ae_auth_error` writable store |
+| `src/lib/ae_api/api_get_object.ts` | Set `ae_auth_error` on 401/403 |
+| `src/lib/ae_api/api_post_object.ts` | Set `ae_auth_error` on 401/403 |
+| `src/lib/ae_api/api_patch_object.ts` | Set `ae_auth_error` on 401/403 |
+| `src/routes/+layout.svelte` | Watch `ae_auth_error`, render session-expired banner |
+| `src/routes/events/[event_id]/settings/+page.svelte` | Remove `alert()`, fix auth gate pattern |
+| `src/lib/elements/element_access_denied.svelte` | **NEW** — reusable inline denial card |
+| `src/routes/events/[event_id]/(badges)/badges/[badge_id]/review/+page.svelte` | Swap inline card with component (low priority) |
+
+---
+
+## 7. Testing Notes
+
+- **Session expired banner:** Force a 401 by testing with an expired JWT or by calling an API with wrong credentials. Banner should appear. Dismiss should clear it. Reload should reload browser.
+- **Event settings gate:** Navigate to `/events/{id}/settings` without `administrator_access`. Should redirect without any `alert()` dialog.
+- **Badge review:** Enter a bad passcode — Access Denied card should appear with "Try Again".
+- **IDAA, /core, root site key gate:** Verify no regressions.
+
+---
+
+## 8. Risks & Notes
+
+- The API helpers (`api_get_object.ts` etc.) run in a module context that is imported across many components. The `ae_auth_error` store must only be imported/used inside a `browser` guard or dynamically if the helpers are ever called SSR-side. Check `src/lib/ae_core/ae_core__site.ts` (which uses these helpers during SSR hydration) — **do not set the store from SSR context.** Add `if (browser)` before the `ae_auth_error.set(...)` call.
+- The root layout sync effect runs `untrack()` to prevent circular store updates. The new `$effect` for `ae_auth_error` must also use `untrack()` to be safe.
+- `flag_expired` should NOT permanently gate the UI — it should only show a top banner. The user may have been mid-editing and should not lose their work. The current `flag_denied` full-screen block is for site key access only.

documentation/history/PROJECT__AE_Events_Exhibitor_Leads_v3.md

@@ -0,0 +1,175 @@
+Aether Events Exhibitor Leads v3
+=======
+
+
+## Overview:
+* Mobile first!
+* Offline caching for spotty network connections
+* Clean and simple
+* Exhibitors have between 0 and X license
+* Sign in and "claim" an assigned license linked to an Exhibitor
+* Collect and manage Leads per Exhibitor
+* Export Leads data to CSV or XLSX
+* Exhibitors will have the link to their Exhibit sent to them or they can use the Exhibit Search to find their Exhibit and sign in with the shared passcode or their assigned licensed user credentials.
+
+---
+
+
+## Primary Leads Pages/Tabs
+1. start - Sign In / Licenses
+    * Exhibit passcode sign in
+    * Exhibitor Leads user sign in
+    * Payment - Leads Payment
+2. add - Add (Search/QR)
+    * Text search
+    * QR scan
+3. leads - Leads List
+    * List of Attendees (Event Badge ID) linked to Exhibit
+    * Click to view/edit Exhibit Tracking entry
+4. manage - Leads (app and exhibit) Manage
+
+
+---
+
+
+## Exhibitor Sign In and Licenses:
+* An Exhibit needs to have a "Shared exhibit passcode" for primary sign in.
+* A Licensed Exhibit staff person needs to have a License assigned to them. It is important that the email address not be changed per license. Or if they do, be aware of the affects on tracked attendees. They can then sign in with that email address and passcode assigned. And/Or we need to make the email sign in link work as well.
+* Once signed in with the Exhibit passcode, they can change it (passcode) and assign Exhibit Leads licenses once they have paid.
+* An exhibitor marked as "priority" means they have paid. Only OSIT admins can mark them as paid.
+* Should at least claim/assign one initial user license so an Exhibit related staff can sign in (without the shared Exhibit passcode). Then add, update, or remove licenses based on max allowed per Exhitibor.
+
+Payment:
+* Not Paid: <span class="fas fa-question text-red-500 m-1"></span> <span class="fas fa-credit-card mx-1"></span> Waiting for payment
+* Paid: <span class="fas fa-check text-green-500 m-1"></span> <span class="fas fa-credit-card mx-1"></span> Marked as paid
+
+### Licenses:
+A client staff (Trusted Access or above) or someone signed in with an Exhibit passcode can add/edit/remove icenses.
+
+License:
+* full_name
+* email
+* passcode
+
+
+---
+
+
+## Structure Overview
+* There are 4 primary tabs for the Event Exhibit Leads module.
+* The overall header/footer should hide by default once signed in.
+* If not signed in, only the first tab, to start and sign in is shown.
+
+
+---
+
+
+## [tab 1] Start / Sign In / Payment
+* Only shows when not signed in as Exhibit Licensed Leads User
+* Sign in with Exhibit passcode
+    * This will then allow them to Manage the Exhibit License
+* Sign in with Exhibit Licensed user
+
+### [tab section] Payment
+* Shows if signed in with Exhibit Passcode and not marked as paid / priority
+* Field for license info - event_exhibit.license_li_json
+* Use Exhibit passcode first?
+* Select number of licenses
+* Select number of small/large devices
+* Make payment (Stripe)
+
+### [tab section] Licensed Users
+* Shows if signed in with Exhibit Passcode and are marked as paid / priority
+* Fill in Exhibit staff users per max licenses
+
+
+## [tab 2] Add - Search / QR Scan
+* One button that toggles between showing and hiding the QR add mode? The text search is always shown above or below the QR scan camera image area.
+* Search - Essentially the same as the Badge search. Full name, email, affiliations, ID, etc
+* QR Scan - Allow for auto add toggle instead of confirming per scan. Allow for manual entire of Badge ID
+* The QR scan is basically just using the Event Badge ID encoded in the persons QR code on their badge. In fact it can probably just populate the text search field?
+* Must include the Leads licensed user's email address when adding to the Exhibitor Tracking list. Linked using event_exhibit_tracking with the Licensed user's email address.
+
+
+## [tab 3] Leads - List of Attendee Leads for Exhibitor
+* Allow for toggle between showing all per Exhibit and per licensed user based on their email address. Not perfect, but works well enough.
+* Allow for easy edit or remove
+* Button to Export Data - CSV or XLSX
+
+* Toggle for show/hide Hidden records
+* Select options for sorting: Newest added first, Oldest added first, Alpha ascending, Alpha descending, Last updated first
+
+
+## [tab 4] Manage / Config
+### Exhibit Specific
+* Priority/payment toggle - Administrator Access or above
+* Max licenses (number) - readonly or edit for Administrator Access or above
+* Small devices (number) - readonly or edit for Administrator Access or above
+* Large devices (number) - readonly or edit for Administrator Access or above
+* Exhibit (shared) Passcode
+* Same Exhibit Leads License list component as the Start tab's Licensed Users section
+
+### App Specific
+
+* Show/Hide Payment Tab
+* Additional Settings:
+    * List refresh interval in seconds - default 25 seconds; 1 second to 2 minutes (120000)
+    * Basic reload/refresh
+    * Clear Indexed DB
+    * Clear localStorage
+    * Auto hide header/footer on sign in - default true
+    * (?) Turn on iframe mode
+    * (?) Show or hide additional details - Use "$events_loc.show_details"?
+
+
+## [page] View / Edit Tracked Attendee (event_exhbit_id, event_badge_id
+* Able to edit the obvious things
+* Can add custom exhibitor_notes and custom responses_json
+* Can set Priority (Star/Flag)
+* Can set Sort (number)
+* Can set Hide (toggle)
+
+
+---
+
+
+## App Specific - Leads Module Config Options and Stored Data
+* Signed in using Shared Exhibit Passcode
+    * Can make payment and manage user licenses
+    * Need to be able to sign in with Shared Passcode and Leads License passcode.
+* Signed in using one Leads License slot they were assigned to
+    * Things will be tied to their email address
+    * Can add, edit, remove, etc the Leads specific to an Exhibit.
+    * This list is shared among all Licensed staff for a specific Exhibit. It is recommended they stay toggled to only showing their additions by default.
+    * Need to be able to sign in with Shared Passcode and Leads License passcode.
+* Show and Hide payment tab (override sort of)
+* Show and Hide header/footer (override sort of)
+* Use iframe mode??
+* Light and Dark mode??
+* List refresh interval
+* Tracking list sorting
+* Show and hide hidden records
+* Show and hide enabled records (Administrator Access or above)
+
+There are essentially 3 ways to "Sign In":
+1. Aether Platform in general using a defined Core User or using a Client Site specific passcode.
+2. Exhibit shared passcode for general Exhibitor management. Should only be briefly needed to pay and assign license slots
+3. Licensed Leads User using the email address and passcode assigned by the Exhibitor manager or OSIT/client staff person.
+
+
+---
+
+
+## First Steps for Leads v3
+Create stub directories, pages, and other supporting files for each primary tab, and each primary section within each tab, and for viewing a specific Lead (Exhibit Tracking).
+
+Once we have that looking good, then we can add the functionality. So we are kind of laying out the framework and pre-documenting (commenting) the files as we go.
+
+
+---
+
+
+## For Reference if Needed
+Known goodish reference version of Leads v2ish:
+d1021e28227db6d49b16cc48e324872b1a322da3 November 19, 2025 at 10:45 PM
+Hopefully that is not needed...

documentation/history/PROJECT__AE_Events_Exhibitor_Leads_v3_detail.md

@@ -0,0 +1,153 @@
+Aether Events Exhibitor Leads v3 - Details
+=======
+
+## [root page] Leads for Exhibitors Main Landing
+* Has a search for Exhibits section that allows for searching Exhibits by name or code.
+* Results can be sortable. They can be sorted by name, booth number, or last created/updated.
+* This is for exhibitors to find their Exhibit and sign in with the shared passcode or their assigned licensed user credentials.
+* If not signed in with Administrator Access or above, then only show results for Exhibitors that have been marked as "priority" (paid). Otherwise show all Exhibitors (to admins).
+* Has a list of Exhibits with basic info and link to Exhibit Leads management page for each Exhibit. Do not show results by default or if less than 3 characters in search and they are not signed in with Trusted Access or above.
+
+
+## [exhibit_id page] Exhibit Leads Module
+* This is minimalistic. Only the tabs and content needed.
+
+### Header/Footer
+* Overall header/footer should hide by default once signed in. Use Aether iframe mode?
+* Leads module header should show the Exhibit name and booth number. It should also have a button to toggle the Add Lead tab and Lead List tab. There should also be a button to show the Manage/Config tab for the Exhibit.
+Header: [Name and Booth # text] [Add Lead / Lead List toggle] [Manage/Config button]
+
+
+### Tabs:
+I am probably using the term "tab" loosely here. It may just be sections that show/hide based on buttons or whatever. The main thing is to keep the UI simple and not overwhelm the user with too many options at once. The main flow should be to easily add leads and then view/manage those leads. The Manage/Config tab is more for the person managing the Exhibit and should be separate from the lead capture and management interface.
+
+1. Start - Sign In / Licenses / Payment
+2. Add - Search/QR
+3. Leads - List of Attendee Leads for Exhibitor
+4. Manage - Leads (app and exhibit) Manage
+
+
+### [tab 1] Start / Sign In / Payment
+* Only shows when not signed in as Exhibit Licensed Leads User
+* Show notification and or message that this is a PWA and can be installed on their device for easier access.
+
+* Sign in with Exhibit passcode
+    * This will then allow them to Manage the Exhibit License
+* Sign in with Exhibit Licensed user
+    * This will then allow them to Manage the Exhibit License
+* Payment - Leads Payment
+* Not Paid: <span class="fas fa-question text-red-500 m-1"></span> <span class="fas fa-credit-card mx-1"></span> Waiting for payment
+* Paid: <span class="fas fa-check text-green-500 m-1"></span> <span class="fas fa-credit-card mx-1"></span> Marked as paid
+* Need to switch to Lucide icons
+* Sections:
+    * Sign in with Exhibit "shared" passcode
+        * This will then allow them to Manage the Exhibit License
+        * Change to Sign Out once signed in
+        * Once signed in, show message to the Exhibit person. Allow them to select number of Licenses, make a payment, and manage the Licenses if paid.
+    * Sign in with Exhibit Licensed user
+        * This will then allow them to Manage the Exhibit License
+        * Change to Sign Out once signed in
+        * Once signed in, show message to the Leads user. A big button should allow them to then start adding leads.
+    * Payment (Stripe) - Leads Payment
+        * Only show if signed in with Exhibit "shared" passcode and not marked as paid.
+    * Licenses (table):
+        * A client staff (Trusted Access or above) or someone signed in with an Exhibit passcode can add/edit/remove licenses.
+        * License:
+            * full_name
+            * email
+            * passcode
+* Buttons and Inputs:
+    * Sign in with Exhibit passcode
+    * Sign in with Exhibit Licensed user
+    * Payment - Leads Payment
+    * Add/Edit/Remove Licenses (if signed in with Exhibit passcode or Trusted Access or above)
+
+### [tab 2] Add - Search/QR
+* Show only when signed in as Exhibit Licensed Leads User or Trusted Access or above.
+* Allow for text search of Attendee Badge ID, QR code, name, email, or affiliations.
+* Allow for QR code scan to add Attendee Badge as Lead.
+* Once found, show basic Attendee Badge info and button to "Add as Lead".
+* If already added as Lead, show message and button to "View Lead".
+* Sections:
+    * Text search
+    * QR scan
+    * Results with "Add as Lead" or "View Lead" button
+* Buttons and Inputs:
+    * Text input for search
+    * Button to trigger search
+    * Button to trigger QR scan (opens camera and scans QR code on badge)
+    * Button to "Add as Lead" if Attendee Badge found and not already a Lead
+    * Button to "View Lead" if Attendee Badge found and already a Lead
+Functions needed:
+    * Search function to find Attendee Badge by Badge ID, QR code, name, email, or affiliations.
+    * QR code scan function to read QR code and find Attendee Badge.
+    * Add Lead function to create Exhibit_tracking entry linking Exhibit and Attendee Badge.
+
+### [tab 3] Leads - List of Attendee Leads for Exhibitor
+* Allow for toggle between showing all per Exhibit and per licensed user based on their email address. Not perfect, but works well enough.
+* Allow for easy edit or remove
+* Sections:
+    * List of Leads with basic info and buttons to Edit or Remove
+    * Options:
+        * Filter by Licensed user email address (dropdown of emails that have added leads for this Exhibit)
+        * Toggle for show/hide Hidden records
+        * Select options for sorting: Newest added first, Oldest added first, Alpha ascending, Alpha descending, Last updated first
+* Buttons and Inputs:
+    * Button to Export Data - CSV or XLSX
+    * Toggle for show/hide Hidden records
+    * Select options for sorting: Newest added first, Oldest added first, Alpha ascending, Alpha descending, Last updated first
+    * Should it have a text search?
+* NOTE: It is probably easiest for them to us the search tab to find a lead that has already been added. It will show "View Lead" button if already added.
+Functions needed:
+    * Load Leads function to get Exhibit_tracking entries for the Exhibit.
+    * Filter function to filter by Licensed user email address.
+    * Sort function to sort by selected option.
+    * Export function to export displayed Leads to CSV or XLSX.
+
+### [tab 4] Manage - Leads (app and exhibit) Manage / Config
+#### Exhibit Specific
+* Priority/payment toggle - Administrator Access or above
+* Max licenses (number) - readonly or edit for Administrator Access or above
+* Small devices (number) - readonly or edit for Administrator Access or above
+* Large devices (number) - readonly or edit for Administrator Access or above
+* Exhibit (shared) Passcode
+* Same Exhibit Leads License list component as the Start tab's Licensed Users section
+
+#### App Specific
+
+* Show/Hide Payment Tab
+* Additional Settings:
+    * List refresh interval in seconds - default 25 seconds; 1 second to 2 minutes (120000)
+    * Basic reload/refresh
+    * Clear Indexed DB
+    * Clear localStorage
+    * Auto hide header/footer on sign in - default true
+    * (?) Turn on iframe mode
+    * (?) Show or hide additional details - Use "$events_loc.show_details"?
+
+* Sections:
+    * Exhibit Specific Manage/Config
+    * App Specific Manage/Config
+* Buttons and Inputs:
+    * Exhibit Specific:
+        * Priority/payment toggle - Administrator Access or above
+        * Max licenses (number) - readonly or edit for Administrator Access or above
+        * Small devices (number) - readonly or edit for Administrator Access or above
+        * Large devices (number) - readonly or edit for Administrator Access or above
+        * Exhibit (shared) Passcode
+        * Same Exhibit Leads License list component as the Start tab's Licensed Users section
+    * App Specific:
+        * Show/Hide Payment Tab
+        * Show last refresh time and counter for next refresh based on the List refresh interval setting.
+        * Additional Settings:
+            * List refresh interval in seconds - default 25 seconds; 1 second to 2 minutes (120000)
+            * Basic reload/refresh (F5)
+            * Clear Indexed DB
+            * Clear localStorage
+            * Auto hide header/footer on sign in - default true
+            * (?) Turn on iframe mode
+            * (?) Show or hide additional details - Use "$events_loc.show_details"?
+* Functions:
+    * Update Exhibit configuration function to update the Exhibit with the new settings.
+    * Update App configuration function to update the app-wide settings for the Leads module.
+

documentation/history/PROJECT__AE_Events_Zebra_Hardware_Test_Day.md

@@ -0,0 +1,200 @@
+# PROJECT: Zebra ZC10L Hardware Test Day
+
+**Created:** 2026-03-12
+**Planned date:** ~week of 2026-03-16 (printer rented for one day)
+**Hardware:** Zebra ZC10L, 3.5" × 5.5" PVC card stock
+**Goal:** Validate real-world badge printing before Axonius (NYC, mid-April 2026)
+**Owner:** Scott Idem / One Sky IT
+
+---
+
+## Before the Printer Arrives — Pre-Test Checklist
+
+These must be done before the printer is on-site so you're not burning rental time on setup.
+
+- [ ] **Remove debug outlines** from `print/+page.svelte` print CSS.
+  The lime/blue/red/orange/purple/cyan debug outlines are still in the file. Remove the
+  entire `TEMPORARY DEBUG OUTLINES` block. Commit before the test day.
+
+- [ ] **Zebra ZC10L Linux driver** — install CUPS driver ahead of time.
+  - Check Zebra's site for the Linux CUPS driver for ZC10L.
+  - Install, configure in CUPS (`http://localhost:631`), do a test page print with a spare card.
+  - Confirm the card feeds without jam and ink/dye-sub layer applies cleanly.
+  - Driver may need the printer set to the correct card stock size (3.5" × 5.5").
+
+- [ ] **Wire `style_href`** — add `<link rel="stylesheet" href={...}>` to `<svelte:head>` in
+  `print/+page.svelte` when `$lq__event_badge_template_obj?.style_href` is set.
+  Without this, any client-specific external CSS won't load.
+  See `documentation/MODULE__AE_Events_Badge_Templates.md` → "External CSS Approach".
+
+- [ ] **Confirm single-sided print (duplex=0)** — `duplex` backend field doesn't exist yet.
+  For PVC cards, the badge back must NOT print. Verify this works by checking that
+  `.badge_back` is hidden in `@media print` when the layout is `badge_3.5x5.5_pvc`.
+  The PVC CSS (`badge_layout_zebra_zc10l_pvc.css`) may already handle this — confirm.
+  If not, add a print rule: `[data-layout="badge_3.5x5.5_pvc"] .badge_back { display: none !important; }`
+
+- [ ] **Test event + template in dev DB** — create/confirm:
+  - Event with `mod_badges_json` configured
+  - PVC template: `layout: badge_3.5x5.5_pvc`, `duplex: 0` (once backend supports it),
+    `header_path` set to a real image URL, `badge_type_list` JSON populated
+  - Test badge records (see "Test Data Set" below)
+
+- [ ] **Test data set** — create badge records covering:
+  - Short name: "Kim Lee"
+  - Long name: "Bartholomew Vandenberghe-Christopoulos"
+  - HTML in name: `<b>Dr.</b> Patricia Adams`
+  - HTML in affiliations: `University of Minnesota<br>Dept. of Surgery`
+  - Badge with no affiliations, no location
+  - Badge with all 8 ticket codes set
+  - Three different badge_type_codes (e.g. member, staff, guest) — to verify footer
+    stripe color for each
+
+- [ ] **Browser setup on kiosk machine** — confirm Chrome and Firefox both installed.
+  Test print dialog settings once driver is working:
+  - Chrome: Margins → None (required), paper size set to 3.5×5.5 if available
+  - Firefox: should just work — `@page { size: 3.5in 5.5in }` is honored
+
+---
+
+## Test Day Checklist
+
+### 1. Basic Print Path
+
+- [ ] Card feeds and prints without jam
+- [ ] Badge fills the card edge-to-edge (no white border, no clipping)
+- [ ] Content horizontally centered on the card
+- [ ] Content vertically centered on the card
+- [ ] No debug outlines visible (confirm cleanup commit applied)
+
+**Chrome:**
+- [ ] Print → Margins: **None** → correct output
+- [ ] Print → Margins: **Default** → bad (expected — documents the known issue)
+- [ ] Print → Margins: **Minimum** → correct output
+- [ ] "More settings" → paper size: does selecting 3.5×5.5 matter, or does Zebra driver override?
+
+**Firefox:**
+- [ ] Print → just works out of the box
+
+### 2. Single-Sided PVC
+
+- [ ] Only the front face prints — back does NOT print
+- [ ] No second card ejected or blank card printed for the back
+
+### 3. Visual Quality
+
+- [ ] Font sizes readable at 3.5×5.5 physical scale (name, title, affiliations, location)
+- [ ] Auto-scaling text (v2) — does it look natural, not crunched?
+- [ ] Header image renders correctly (colors, resolution, no pixelation)
+- [ ] Footer stripe color correct for each badge_type_code tested
+- [ ] HTML in name/affiliations renders correctly (bold, line break, etc.)
+- [ ] Badge with no affiliations — no awkward blank space
+
+### 4. Edge Cases — Badge Content
+
+- [ ] Long name auto-scales without overflow or clipping
+- [ ] HTML markup in name field: `<b>Dr.</b>` renders bold on the physical card
+- [ ] HTML line break in affiliations: two-line org renders cleanly
+- [ ] Badge with no location — layout doesn't break
+- [ ] Badge with all 8 ticket/option codes — back of badge (if applicable) lays out cleanly
+
+### 5. Print Tracking
+
+- [ ] `print_count` increments after printing via the **Print Badge** button
+- [ ] `print_first_datetime` set on first print
+- [ ] "Printed N×" amber chip appears in print page header after first print
+- [ ] Reprint via Re-print shortcut (trusted + edit mode) does NOT increment count
+- [ ] Second print via Print Badge button DOES increment count (to 2)
+
+### 6. QR Code
+
+- [ ] QR on printed card is scannable with a phone camera
+- [ ] QR scans to the correct badge ID (test with `/events/[id]/badges` search by QR scan)
+- [ ] QR on back (if `show_qr_back=1`) also scans correctly
+- [ ] If `show_qr_back=0` — no QR code visible on back
+
+### 7. Font Size Controls
+
+- [ ] Manual font size override (+ / − in controls panel) changes the badge render live
+- [ ] Change is visible on the physical printed card
+- [ ] Reset (↺) returns to auto-sizing
+- [ ] Auto-sizing produces a reasonable default for all test names without manual adjustment
+
+### 8. Edit Fields at Kiosk
+
+- [ ] Badge info editable before printing: change full_name_override, verify change appears on card
+- [ ] Save change → re-print → new value printed
+- [ ] Cancel reverts to saved value
+- [ ] Badge type dropdown changes footer stripe color on the rendered badge
+
+---
+
+## Known Limitations on Test Day
+
+These are not bugs — just gaps that won't be addressed during the test day:
+
+- **`style_href` external CSS**: Must be wired before test day (see pre-checklist). If not
+  done, client-specific CSS from the template won't load — fall back to default styles.
+- **`duplex` backend field**: Not yet in the backend schema. Single-sided behavior depends
+  on the PVC CSS hiding `.badge_back` in print. Verify manually.
+- **Per-template print margins (`print_margin_cfg`)**: UI doesn't exist yet. If the card
+  needs a physical offset for the Zebra's feed, apply a manual CSS tweak to the PVC layout
+  CSS file and revert after testing.
+- **Kiosk attendee editing (TASK 4.0)**: Edit panel is currently trusted_access only.
+  Attendee self-edit at kiosk isn't finished — staff will need to do all edits on test day.
+- **`@page { size }` in Chrome**: Chrome ignores the CSS page size for Save as PDF.
+  For physical Zebra printing the driver controls paper size — this is fine.
+
+---
+
+## Known Print Dialog Behavior (for reference)
+
+| Browser | Save to PDF | Physical Printer |
+|---|---|---|
+| Firefox | Paper size locked to CSS `@page { size }` ✅ | Can select paper size in dialog |
+| Chrome | Paper size = system default (letter/A4) ❌ | Can select paper size under "More settings" |
+
+| Chrome Margin Setting | Result |
+|---|---|
+| Default | ❌ Inserts URL/date/page chrome, offsets badge centering |
+| None | ✅ Badge centered correctly |
+| Minimum | ✅ Badge centered correctly |
+
+---
+
+## Things to Note / Capture During Testing
+
+Use this section to log observations on the day:
+
+```
+DATE: ___________
+
+Driver version: ___________
+Card stock type: ___________
+CUPS printer name: ___________
+
+Observations:
+-
+-
+-
+
+Font size adjustments needed:
+  Name default: was __px, adjusted to __px
+  Title default: was __px, adjusted to __px
+  Affiliations: was __px, adjusted to __px
+  Location: was __px, adjusted to __px
+
+Physical offset needed (crop/margin): ___________
+
+Bugs found:
+-
+-
+```
+
+---
+
+## Follow-Up After Test Day
+
+- [ ] Update font size defaults in `ae_comp__badge_print_controls.svelte` based on observations
+- [ ] Note any physical margin/offset needed into `cfg_json: { print_margin: {...} }` once that UI exists
+- [ ] Document driver version and CUPS config that worked in this file
+- [ ] Commit any fixes, re-run `npx svelte-check`, commit clean

documentation/history/PROJECT__AE_Firefly_Theme_Repair_SUMMARY.md

@@ -0,0 +1,45 @@
+**AE Firefly Theme Repair — Summary (Recovery & Integration Complete)**
+
+- **Summary**: Investigation, targeted repair, and successful integration of the AE Firefly theme family and key UI components. This document records the final resolution, the migration of the Svelte 5 Modal component, and the validation of the `ae_app_3x_llm` branch as the project's stable baseline.
+
+### 1. Root Cause Resolution (Themes)
+- **Variables outside selectors**: Fixed. Custom-property declarations in `src/ae-firefly*.css` were moved into proper `[data-theme='AE_Firefly*']` selector blocks.
+- **Variable precedence**: Resolved by enforcing `--background: ... !important` within the theme-specific selectors to ensure they override global `:root` defaults.
+- **Files Repaired**: 
+  - `src/ae-firefly.css`
+  - `src/ae-firefly-steelblue.css`
+  - `src/ae-firefly-indigo.css`
+  - `src/ae-firefly-rainbow.css`
+
+### 2. Actions Taken (Recovery Phase)
+- **Surgical Integration**: Selective harvesting of "90% done" work from WIP branches while preserving the integrity of the Lucide migration and Svelte 5 baseline.
+- **`element_modal_v1.svelte`**: 
+  - Successfully imported from `wip-modal-fix-attempt`.
+  - **Full Refactor**: Migrated from deprecated `svelte/legacy` and `<slot>` patterns to **Svelte 5 Snippets** and `{@render}` tags.
+  - Verified and tested as the new standard modal component.
+- **Selective Vetting**:
+  - **Abandoned**: `element_input_v2.svelte` and legacy Badge View v1 (rejected due to legacy FontAwesome regressions and high error counts).
+  - **Removed**: Redundant `element_data_store_v2.svelte` (superseded by `v3`).
+  - **Kept**: Clean, Lucide-based versions of all core components already present on `ae_app_3x_llm`.
+
+### 3. Repository State (Final Validation)
+- **Baseline**: `ae_app_3x_llm` is now the unified, verified "known-good" state.
+- **Validation**: `npx svelte-check` performed on the merged state returned **0 errors and 0 warnings**.
+- **Cleanup**: Temporary integration branches have been deleted.
+- **Backups**: `wip-modal-fix-attempt` and `wip/theme-fix` remain as reference points but are no longer active.
+
+### 4. Merged Files (Key Updates)
+- `src/ae-firefly*.css` (Repaired themes)
+- `src/lib/elements/element_modal_v1.svelte` (New Svelte 5 Modal)
+- `documentation/PROJECT__AE_Firefly_Theme_Repair_SUMMARY.md` (This document)
+
+### 5. Final Status
+- **Status**: **COMPLETE / STABLE**
+- **Branch**: `ae_app_3x_llm`
+- **Verification**: Verified via `svelte-check` and theme inspections.
+
+---
+*Prepared by: Gemini CLI (March 17, 2026)*
+
+---
+*Archival note (2026-03-20): `element_modal_v1.svelte` (referenced in §2 as "new standard modal") was subsequently retired — it had zero active importers. Modal usage in the codebase relies on Flowbite `<Modal>` component. See `AE__UI_Component_Patterns.md` §11.*

documentation/history/PROJECT__AE_Pres_Mgmt_Session_view_refactor_2026-02.md

@@ -0,0 +1,163 @@
+PRES-MGMT Session View — Refactor Plan
+
+**STATUS: ✅ RESOLVED (2026-02-26)**
+
+## Resolution Summary
+
+The "refresh twice" bug was fixed by addressing **two root causes** in the nested data loader chain:
+
+1. **Disabled caching in nested loads**: Changed `try_cache: false` to `try_cache` (preserve parent value) in:
+   - `ae_events__event_session.ts` → `_refresh_session_id_background()`
+   - `ae_events__event_presentation.ts` → `_refresh_presentation_li_background()`
+
+2. **Missing microtask yields**: Added `await Promise.resolve()` after each `db_save_ae_obj_li__ae_obj()` call to ensure Dexie liveQuery observers fire before functions return.
+
+3. **Fire-and-forget nested loads**: Changed `forEach()` to `await Promise.all()` in presentation loader to block until all presenter loads complete.
+
+**Result:** Session view now renders presentations AND presenters on first load without manual refresh.
+
+**Performance Impact:** Adds ~100-200ms to initial navigation (time to write 1-5 presenter records + microtask yields), but guarantees correct first-render.
+
+**Files Modified:**
+- `src/lib/ae_events/ae_events__event_session.ts` (lines 100-107)
+- `src/lib/ae_events/ae_events__event_presentation.ts` (lines 187-198)
+- `src/lib/ae_events/ae_events__event_presenter.ts` (line 157-161)
+
+**Documentation Updated:**
+- `documentation/GUIDE__SvelteKit2_Svelte5_DexieJS.md` - Added "try_cache: false" bug section with detailed explanation
+- Code comments added explaining the critical fixes in all modified loader functions
+- Journals module updated with microtask yields for consistency (already preserved try_cache correctly)
+
+**Test Status:**
+- Manual testing: ✅ Confirmed working (session + presentations + presenters render on first load)
+- Playwright test: Created at `tests/coldstart_event_session.test.ts` (requires valid session ID to run)
+
+**Lessons Learned:**
+1. **Always preserve `try_cache` through nested data loads** - Disabling caching at any level breaks the entire chain
+2. **Add microtask yields after IndexedDB writes** - Ensures liveQuery observers fire before functions return
+3. **Block on nested loads with `await Promise.all()`** - Fire-and-forget forEach() causes race conditions
+4. **Journals module was already correct** - It preserved `try_cache` for nested entry loads; only added yields for consistency
+5. **The existing blocking pattern was sufficient** - No special helper function needed; the bug was in the loader implementation, not the architecture
+
+**What We Implemented:**
+We effectively implemented **Option A (Blocking Hydration)** but at a lower level than originally planned. Instead of creating a new `load_session_with_relations()` helper, we fixed the existing loader chain to properly block and cache nested data. The `+page.ts` already used `await` for the session load - it just wasn't working because the underlying loaders weren't caching nested data.
+
+---
+
+## Original Plan (For Reference)
+
+Goal
+
+Make the Presentation Management Session view deterministic on cold-start (empty IndexedDB). The page must render Presentations, Presenters, and Hosted Files without requiring manual refreshes.
+
+Constraints
+
+- Svelte 5 runes and Dexie `liveQuery` behavior (observable recreation, subscription timing).
+- Minimize user-perceived latency — keep navigation snappy where possible.
+- Avoid large architectural changes unless necessary.
+
+Options (high level)
+
+A) Blocking Hydration (recommended for correctness)
+- Block the route `+page.ts` load until the session and all directly required related objects are fetched from the backend and written into IndexedDB. Return `initial_session_obj` in the load data for immediate rendering.
+- Pros: simplest to guarantee first-draw correctness; minimal component changes.
+- Cons: adds latency to navigation (can be mitigated with optimistic UI or progress indicator).
+
+B) Prefetch Related Records + Hydrate Fallback (hybrid)
+- Non-blocking load but `+page.ts` returns `initial_session_obj` and small related-objects payloads (presentations, presenter IDs, hosted_file metadata). Components use these fallbacks while `liveQuery` takes over.
+- Pros: keeps navigation responsive; often sufficient.
+- Cons: requires careful payload shaping and DB write ordering.
+
+C) Explicit Dependency Chaining in UI (advanced)
+- Keep non-blocking loads and use explicit dependency chaining: write session -> await write completion -> then write presentations -> await -> then presenters, ensuring microtask queue flushes between writes. Use targeted `liveQuery` re-creation only when upstream dependency fully resolved.
+- Pros: minimal route latency; deterministic ordering.
+- Cons: more complex to implement and test.
+
+Recommendation
+
+Start with Option A (Blocking Hydration) for the session page to restore deterministic behavior quickly. After correctness is achieved, consider converting to Option B or C for improved perceived performance if needed.
+
+Detailed Steps (Option A - Blocking Hydration)
+
+1) Add a small helper in `events_func` (e.g., `load_session_with_relations`) that:
+   - fetches session by ID from API
+   - fetches related presentations (limit/filters as needed)
+   - fetches presenters referenced by those presentations (deduplicate IDs)
+   - fetches hosted_file metadata for presentation files (if required for the view)
+   - writes all results to IndexedDB in a controlled order (session -> presentations -> presenters -> hosted_files)
+   - returns a compact `initial_session_obj` payload containing fields needed for first-draw (session, presentation list, presenter summary)
+
+   Implementation note: Use `await db.transaction('rw', db_events.session, db_events.presentation, db_events.presenter, async () => {...})` if atomicity helps. Alternatively write in sequential awaits and call `await Promise.resolve()` after each write to let the microtask queue settle.
+
+2) Update route loader: `src/routes/events/[event_id]/(pres_mgmt)/session/[session_id]/+page.ts` (create if missing) to call and `await` the helper, then return `initial_session_obj` on `data`.
+
+   Example pseudo-code:
+
+   export async function load({ params, parent }) {
+     const data = await parent();
+     if (browser) {
+       const init = await events_func.load_session_with_relations({ api_cfg: data[data.account_id].api, session_id: params.session_id, log_lvl: 0 });
+       data.initial_session_obj = init;
+     }
+     return data;
+   }
+
+3) Ensure the page component `+page.svelte` uses the `initial_session_obj` as immediate fallback (it already does in Aether).
+
+4) Add instrumentation logs inside `liveQuery` closures and the helper to verify ordering during QA.
+
+5) Add tests (see below) and manual verification steps.
+
+Alternative (Option B - Hybrid) Implementation Notes
+
+- If you cannot block the route, return an `initial_session_obj` that includes minimal related object arrays (IDs + small metadata) and have `+page.svelte` write those into IDB before mounting heavy child components.
+- Use `untrack()` to set selection IDs so stores are updated without causing premature reactivity loops.
+
+Explicit Dependency Chaining (Option C) Notes
+
+- Implement a single `prefetch` function that sequentially performs writes and `await Promise.resolve()` between stages.
+- For debugging, add microtask delays (e.g., `await 0`) between writes to observe behaviour.
+
+Testing and Verification
+
+1) Integration test (Playwright recommended)
+   - Clear IndexedDB for the app origin.
+   - Navigate to `/events/<event_id>/.../session/<session_id>` and assert that the presentation list and presenters are visible within N ms without manual refresh.
+   - Repeat on subsequent navigations to ensure no regressions.
+
+2) Unit tests
+   - For `events_func.load_session_with_relations`, stub API responses and assert DB writes are made in expected order.
+
+3) Manual QA
+   - With a cold profile or after clearing Site storage, navigate to the session page and confirm content is present after the initial navigation and that no manual refreshes are required.
+
+Migration and Rollout
+
+- Implement Option A behind a feature flag if you want to control rollout.
+- Short-term: apply Option A to the single problematic route to reduce blast radius.
+- Long-term: consider a library-level helper to standardize "blocking prefetch for nested related records" across other pages.
+
+Rollback Plan
+
+- Because changes are additive and limited to one route and helper, revert the `+page.ts` modification and helper call to restore prior behavior.
+
+Deliverables for tomorrow
+
+- `events_func.load_session_with_relations` helper (TS) + unit tests
+- Updated `+page.ts` loader for session route to `await` helper and return `initial_session_obj`
+- Small test harness / Playwright test that reproduces the cold-start issue and verifies the fix
+- Instrumentation logs temporarily enabled for QA
+
+Estimated effort
+
+- Blocking hydration implementation + tests: 2-4 hours
+- Hybrid or chaining implementations: additional 2-6 hours depending on thoroughness
+
+Notes about Svelte 5 + Dexie specifics
+
+- Keep `liveQuery` closures stable; capture primitive IDs rather than reactive objects.
+- Use `$derived` and `$derived.by` to keep observable instances stable across renders.
+- Use `untrack()` when setting selection values to avoid premature subscriptions.
+- After DB writes, allowing the microtask queue to settle (`await Promise.resolve()`) helps ensure observers are notified in the expected order during development and debugging.
+
+If you want I can implement Option A for the session route tomorrow (create helper, update loader, add test).

documentation/history/PROJECT__AE_combined_front_back_Docker.md

@@ -0,0 +1,106 @@
+# Project: Unified Aether Platform Orchestration (V3)
+> **Status: ✅ COMPLETE (2026-03-10)**
+> `ae_app` is live in `aether_container_env/docker-compose.yml`. Both frontend and backend deploy together via `npm run deploy:staging` / `npm run deploy:prod`. Internal `ae_api` networking active. Healthcheck wired. Old `ae_env_node_app` is superseded (archive when ready).
+
+> **Goal:** Consolidate the SvelteKit Frontend and FastAPI Backend into a single Docker Compose environment within `aether_container_env`.
+
+## 1. Overview & Benefits
+Currently, the platform runs in two separate Docker environments (`ae_env_node_app` and `aether_container_env`). Combining them into one allows for:
+- **Unified Lifecycle:** Start/Stop/Update the entire stack with one command.
+- **Internal Networking:** The Frontend (SvelteKit) can communicate with the Backend (FastAPI) via the high-speed internal Docker network (`ae_api:5005`) instead of routing through external IPs.
+- **Shared Infrastructure:** Single instances of Redis, Dozzle, and Nginx serving both tiers.
+- **Simplified Deployment:** Reduces the need for sibling directory dependencies on production servers.
+
+---
+
+## 2. Target Architecture (Workstation & Prod)
+The unified environment will reside in `~/OSIT_dev/aether_container_env/`.
+
+### Directory Mapping
+- **API Source:** `~/OSIT_dev/aether_api_fastapi` -> Mounted to `ae_api`
+- **App Source:** `~/OSIT_dev/aether_app_sveltekit` -> Mounted to `ae_app`
+- **Nginx Config:** `~/OSIT_dev/aether_container_env/conf/nginx/`
+- **Logs:** `~/OSIT_dev/aether_container_env/logs/`
+
+---
+
+## 3. Implementation Plan
+
+### Step 1: Update `aether_container_env/.env`
+Add these new variables to the master `.env` file:
+```bash
+# --- SvelteKit Frontend settings ---
+AE_APP_SRC=/home/scott/OSIT_dev/aether_app_sveltekit
+CONTAINER_AE_APP=ae_app_dev
+AE_APP_REPLICAS=4
+AE_APP_NODE_PORT=3001
+# Note: Use internal DNS 'ae_api' for PUBLIC_AE_API_SERVER_INTERNAL
+```
+
+### Step 2: Integrate `ae_app` into `docker-compose.yml`
+Add the consolidated SvelteKit service. This replaces the legacy Flask service:
+```yaml
+    ae_app:
+        restart: always
+        build:
+            context: ${AE_APP_SRC}
+            dockerfile: Dockerfile
+            target: deploy-node
+        scale: ${AE_APP_REPLICAS}
+        env_file:
+            - ./.env
+        ports:
+            - "${AE_APP_NODE_PORT}:3000"
+        extra_hosts:
+            - "${DOCKER_AE_SERVER_EXTRA_HOST}"
+            - "${DOCKER_AE_APP_SERVER_EXTRA_HOST}"
+            - "${DOCKER_AE_API_SERVER_EXTRA_HOST}"
+        volumes:
+            # Mount source for real-time dev (Optional for production)
+            - ${AE_APP_SRC}:/srv/aether_app
+            - ${HOSTED_FILES_SRC}:/srv/hosted_files
+            - ${HOSTED_TMP_SRC}:/srv/hosted_tmp
+        depends_on:
+            - ae_api
+            - redis
+        logging:
+            driver: "json-file"
+            options:
+                max-size: "10m"
+                max-file: "3"
+```
+
+### Step 3: Nginx Gateway Configuration
+Update (or create) the Nginx template in `conf/nginx/` to route traffic to the internal `ae_app` service.
+
+**Example Upstream Block:**
+```nginx
+upstream svelte_backend {
+    # Internal Docker DNS handles load balancing across replicas
+    server ae_app:3000;
+    # ip_hash; # Enable if session persistence is needed
+}
+```
+
+### Step 4: Verification & Migration
+1. **Healthcheck:** Ensure `src/routes/health/+server.ts` is active.
+2. **Internal Proxy Test:** Update SvelteKit's `PUBLIC_AE_API_SERVER` to `ae_api` (internal) and verify connectivity.
+3. **Clean Up:** Once verified, the old `ae_env_node_app` directory can be archived.
+
+---
+
+## 4. Scaling & Performance
+- **API Scaling:** Controlled by `AE_API_REPLICAS`.
+- **App Scaling:** Controlled by `AE_APP_REPLICAS`.
+- **Memory Management:** Each replica is isolated. Shared state (caching) is handled via the internal **Redis** service.
+- **Healthchecks:** Docker will automatically restart any `ae_app` replica that fails the `/health` check.
+
+---
+
+## 5. Deployment Commands (Unified)
+```bash
+# From aether_container_env/
+docker compose up -d --build --remove-orphans
+docker compose ps
+docker compose logs -f ae_app
+```

eslint.config.js

@@ -0,0 +1,40 @@
+// @ts-check
+
+import eslint from '@eslint/js';
+import tseslint from 'typescript-eslint';
+import svelte from 'eslint-plugin-svelte';
+import prettier from 'eslint-config-prettier';
+import globals from 'globals';
+
+export default tseslint.config(
+    eslint.configs.recommended,
+    ...tseslint.configs.recommended,
+    svelte.configs['flat/recommended'],
+    prettier,
+    {
+        languageOptions: {
+            globals: {
+                ...globals.browser,
+                ...globals.node
+            }
+        }
+    },
+    {
+        files: ['**/*.svelte'],
+        languageOptions: {
+            parserOptions: {
+                parser: tseslint.parser
+            }
+        }
+    },
+    {
+        ignores: ['build/', '.svelte-kit/', 'node_modules/']
+    },
+    {
+        rules: {
+            '@typescript-eslint/no-unused-vars': 'warn',
+            // No base path configured — this rule is not applicable to this project
+            'svelte/no-navigation-without-resolve': 'off'
+        }
+    }
+);

package.json

@@ -1,31 +1,125 @@
 {
-  "name": "svelte-app",
-  "version": "1.0.0",
-  "private": true,
-  "scripts": {
-    "build": "rollup -c",
-    "dev": "rollup -c -w",
-    "start": "sirv public --single --port 5555",
-    "validate": "svelte-check"
-  },
-  "devDependencies": {
-    "@rollup/plugin-commonjs": "^17.0.0",
-    "@rollup/plugin-node-resolve": "^11.0.0",
-    "@rollup/plugin-typescript": "^8.0.0",
-    "@tsconfig/svelte": "^1.0.0",
-    "rollup": "^2.3.4",
-    "rollup-plugin-css-only": "^3.1.0",
-    "rollup-plugin-livereload": "^2.0.0",
-    "rollup-plugin-svelte": "^7.0.0",
-    "rollup-plugin-terser": "^7.0.0",
-    "svelte": "^3.0.0",
-    "svelte-check": "^1.0.0",
-    "svelte-preprocess": "^4.0.0",
-    "tslib": "^2.0.0",
-    "typescript": "^4.0.0"
-  },
-  "dependencies": {
-    "axios": "^0.21.1",
-    "sirv-cli": "^1.0.0"
-  }
+    "name": "osit-aether-app-svelte",
+    "version": "3.00.07",
+    "description": "One Sky IT's Aether App created with Svelte, SvelteKit, Tailwind CSS, Lucide, Font Awesome, and Skeleton UI. -Scott Idem",
+    "homepage": "https://oneskyit.com/",
+    "private": true,
+    "scripts": {
+        "dev": "vite dev",
+        "build": "vite build",
+        "build:dev": "vite build --mode dev",
+        "build:test": "vite build --mode test",
+        "build:prod": "vite build --mode prod",
+        "preview": "vite preview",
+        "test": "npm run test:integration && npm run test:unit",
+        "check": "svelte-kit sync && svelte-check --tsconfig ./tsconfig.json",
+        "check:watch": "svelte-kit sync && svelte-check --tsconfig ./tsconfig.json --watch",
+        "lint": "prettier --check . && eslint .",
+        "format": "prettier --write .",
+        "test:integration": "playwright test",
+        "test:unit": "vitest",
+        "build:docker:dev": "docker compose -f ../aether_container_env/docker-compose.yml build ae_app && docker compose -f ../aether_container_env/docker-compose.yml up -d ae_app",
+        "build:docker:test": "docker compose -f ../aether_container_env/docker-compose.yml build --build-arg BUILD_MODE=test ae_app && docker compose -f ../aether_container_env/docker-compose.yml up -d ae_app",
+        "build:docker:prod": "docker compose -f ../aether_container_env/docker-compose.yml build --build-arg BUILD_MODE=prod ae_app && docker compose -f ../aether_container_env/docker-compose.yml up -d --remove-orphans ae_app",
+        "compose:down": "docker compose -f ../aether_container_env/docker-compose.yml --profile database down",
+        "deploy:remote:test": "ssh linode.oneskyit.com 'bash /srv/env/test_aether/deploy.sh test'",
+        "deploy:remote:prod": "ssh linode.oneskyit.com 'bash /srv/env/prod_aether/deploy.sh prod'"
+    },
+    "devDependencies": {
+        "@eslint/js": "^9.39.1",
+        "@playwright/test": "^1.56.1",
+        "@skeletonlabs/skeleton": "^4.*.*",
+        "@skeletonlabs/skeleton-svelte": "^4.*.*",
+        "@sveltejs/adapter-auto": "^7.0.0",
+        "@sveltejs/adapter-node": "^5.0.0",
+        "@sveltejs/adapter-static": "^3.0.1",
+        "@sveltejs/kit": "^2.48.5",
+        "@sveltejs/vite-plugin-svelte": "^6.0.0",
+        "@tailwindcss/forms": "^0.5.7",
+        "@tailwindcss/typography": "^0.5.10",
+        "@types/eslint": "^9.0.0",
+        "@types/node": "^25.0.0",
+        "@types/qrcode": "^1.5.5",
+        "@typescript-eslint/eslint-plugin": "^8.47.0",
+        "@typescript-eslint/parser": "^8.47.0",
+        "bits-ui": "^2.14.3",
+        "clsx": "^2.1.1",
+        "eslint": "^9.0.0",
+        "eslint-config-prettier": "^10.0.0",
+        "eslint-plugin-svelte": "^3.13.0",
+        "flowbite": "^4.0.0",
+        "globals": "^16.5.0",
+        "highlight.js": "^11.10.0",
+        "lowlight": "^3.2.0",
+        "mode-watcher": "^1.0.0",
+        "prettier": "^3.6.2",
+        "prettier-plugin-svelte": "^3.2.6",
+        "sass-embedded": "^1.81.0",
+        "svelte": "^5.43.10",
+        "svelte-awesome-color-picker": "^4.0.0",
+        "svelte-check": "^4.0.0",
+        "svelte-highlight": "^7.8.4",
+        "svelte-idle": "^3.0.1",
+        "tailwind-merge": "^3.0.0",
+        "tailwind-variants": "^3.*.*",
+        "tailwindcss": "^4.1.10",
+        "tailwindcss-animate": "^1.0.7",
+        "tslib": "^2.4.1",
+        "typescript": "^5.5.0",
+        "typescript-svelte-plugin": "^0.3.50",
+        "vite": "^7.0.0",
+        "vitest": "^4.0.0"
+    },
+    "vitest": {
+        "exclude": [
+            "tests"
+        ]
+    },
+    "type": "module",
+    "overrides": {
+        "@codemirror/state": "^6.5.2",
+        "@codemirror/view": "^6.38.8",
+        "@codemirror/language": "^6.11.3",
+        "@codemirror/commands": "^6.10.0",
+        "@codemirror/lang-markdown": "^6.5.0",
+        "@codemirror/autocomplete": "^6.20.0",
+        "@codemirror/search": "^6.5.11",
+        "@codemirror/lint": "^6.9.2",
+        "@lezer/common": "^1.4.0",
+        "@lezer/highlight": "^1.2.3",
+        "@lezer/lr": "^1.4.4"
+    },
+    "dependencies": {
+        "@codemirror/autocomplete": "^6.20.0",
+        "@codemirror/commands": "^6.10.0",
+        "@codemirror/lang-css": "^6.3.1",
+        "@codemirror/lang-html": "^6.4.9",
+        "@codemirror/lang-javascript": "^6.2.3",
+        "@codemirror/lang-json": "^6.0.1",
+        "@codemirror/lang-markdown": "^6.5.0",
+        "@codemirror/language": "^6.11.3",
+        "@codemirror/language-data": "^6.5.1",
+        "@codemirror/lint": "^6.9.2",
+        "@codemirror/search": "^6.5.11",
+        "@codemirror/state": "^6.5.2",
+        "@codemirror/theme-one-dark": "^6.1.2",
+        "@codemirror/view": "^6.38.8",
+        "@floating-ui/dom": "^1.6.0",
+        "@lucide/svelte": "^0.*.0",
+        "@popperjs/core": "^2.11.0",
+        "@tailwindcss/vite": "^4.1.10",
+        "axios": "^1.7.0",
+        "dayjs": "^1.11.10",
+        "dexie": "^4.0.0",
+        "flowbite-svelte": "^1.28.1",
+        "html5-qrcode": "^2.3.8",
+        "lucide-svelte": "^0.*.0",
+        "marked": "^17.0.0",
+        "openai": "^6.10.0",
+        "prettier-plugin-tailwindcss": "^0.7.2",
+        "qrcode": "^1.5.4",
+        "shadcn-svelte": "^1.0.11",
+        "svelte-persisted-store": "^0.12.0",
+        "typescript-eslint": "^8.47.0"
+    }
 }

playwright.config.ts

@@ -0,0 +1,25 @@
+import type { PlaywrightTestConfig } from '@playwright/test';
+
+const config: PlaywrightTestConfig = {
+    webServer: {
+        command: 'npm run dev',
+        port: 5173,
+        reuseExistingServer: true,
+    },
+    testDir: 'tests',
+    testMatch: 'tests/**/*.test.ts',
+    testIgnore: ['tests/disabled/**'],
+    reporter: 'list',
+    use: {
+        baseURL: 'http://demo.localhost:5173',
+        // baseURL: 'https://dev-demo.oneskyit.com',
+        trace: 'on-first-retry',
+        // Arch Linux: Playwright's downloaded Chromium requires Ubuntu system libs (libicu74 etc.)
+        // that don't exist on Arch. Use the system Chromium package instead.
+        launchOptions: {
+            executablePath: '/usr/bin/chromium',
+        },
+    }
+};
+
+export default config;

public/app_global.css

@@ -1,88 +0,0 @@
-html, body {
-    position: relative;
-    /* width: 100%; */
-    height: 100%;
-
-    max-width: 100%;
-}
-
-body {
-    /* color: #333;
-    margin: 0;
-    padding: 8px;
-    box-sizing: border-box;
-    font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Oxygen-Sans, Ubuntu, Cantarell, "Helvetica Neue", sans-serif; */
-}
-
-h1 {
-    color: hsla(0, 0%, 5%, 1);
-    /*text-transform: uppercase;*/
-    /* font-size: 4rem; */
-    /* font-weight: 100; */
-}
-
-h2 {
-    color: hsla(0, 0%, 10%, 1);
-    /*text-transform: uppercase;*/
-    /* font-size: 4rem; */
-    /* font-weight: 100; */
-}
-
-
-a {
-    /* color: rgb(0,100,200);
-    text-decoration: none; */
-}
-
-a:hover {
-    /* text-decoration: underline; */
-}
-
-a:visited {
-    /* color: rgb(0,80,160); */
-}
-
-label {
-    /* display: block; */
-}
-
-input, button, select, textarea {
-    /* font-family: inherit;
-    font-size: inherit;
-    -webkit-padding: 0.4rem 0;
-    padding: 0.4rem;
-    margin: 0 0 0.5rem 0;
-    box-sizing: border-box;
-    border: 1px solid #ccc;
-    border-radius: 2px; */
-}
-
-input:disabled {
-    color: hsla(0, 0%, 50%, 1);
-}
-
-button {
-    /* color: #333;
-    background-color: #f4f4f4;
-    outline: none; */
-}
-
-button:disabled {
-    color: hsla(0, 0%, 50%, 1);
-}
-
-button:not(:disabled):active {
-    background-color: hsla(0, 0%, 50%, 1);
-}
-
-button:focus {
-    /* border-color: #666; */
-}
-
-button:hover {
-    /* background-color: green; */
-}
-
-#my_body {
-    /* outline: solid thin red; */
-}

public/index.html

@@ -1,35 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-	<meta charset='utf-8'>
-	<meta name='viewport' content='width=device-width,initial-scale=1'>
-
-	<title>Index - Svelte</title>
-
-	<link rel='icon' type='image/png' href='/favicon.png'>
-    <link rel="stylesheet" href="https://use.fontawesome.com/releases/v5.15.2/css/all.css">
-    <link rel='stylesheet' href='https://static.oneskyit.com/css/global.css'>
-	<link rel='stylesheet' href='/app_global.css'>
-	<link rel='stylesheet' href='/build/bundle.css'>
-
-    <script src="https://cdnjs.cloudflare.com/ajax/libs/dayjs/1.9.4/dayjs.min.js" integrity="sha512-XZSHSEFj4QeE0G4pwy4tToyAhF2VXoEcF9CP0t1PSZMP2XHhEEB9PjM9knsdzcEKbi6GRMazdt8tJadz0JTKIQ==" crossorigin="anonymous"></script>
-    <script defer src='https://static.oneskyit.com/js/utilities.js'></script>
-	<script defer src='/build/bundle.js'></script>
-</head>
-
-<body>
-    <header><h1>Index - Dev Svelte App</h1></header>
-
-    <main>
-        <a href="log_client_viewing">log_client_viewing</a>
-        <a href="membership_member_manage">membership_member_manage</a>
-        <a href="user_person">user_person</a>
-        <div id="test_container" class="svelte_container">
-        </div>
-    </main>
-
-    <footer>
-        This is the footer
-    </footer>
-</body>
-</html>

public/log_client_viewing.html

@@ -1,32 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-	<meta charset='utf-8'>
-	<meta name='viewport' content='width=device-width,initial-scale=1'>
-
-	<title>Log Client Viewing - Dev Svelte App</title>
-
-	<link rel='icon' type='image/png' href='/favicon.png'>
-    <link rel="stylesheet" href="https://use.fontawesome.com/releases/v5.15.2/css/all.css">
-    <link rel='stylesheet' href='https://static.oneskyit.com/css/global.css'>
-	<link rel='stylesheet' href='/app_global.css'>
-	<link rel='stylesheet' href='/build/bundle.css'>
-
-    <script src="https://cdnjs.cloudflare.com/ajax/libs/dayjs/1.9.4/dayjs.min.js" integrity="sha512-XZSHSEFj4QeE0G4pwy4tToyAhF2VXoEcF9CP0t1PSZMP2XHhEEB9PjM9knsdzcEKbi6GRMazdt8tJadz0JTKIQ==" crossorigin="anonymous"></script>
-    <script defer src='https://static.oneskyit.com/js/utilities.js'></script>
-	<script defer src='/build/bundle.js'></script>
-    <script>
-        let account_id = 'TblpWmPauKw';
-    </script>
-</head>
-
-<body>
-    <header><h1>Log Client Viewing - Dev Svelte App</h1></header>
-
-    <main>
-        <div id="log_client_viewing_list_container" class="svelte_container">
-        </div>
-    </main>
-
-</body>
-</html>

public/membership_member_manage.html

@@ -1,33 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-	<meta charset='utf-8'>
-	<meta name='viewport' content='width=device-width,initial-scale=1'>
-
-	<title>Membership Member Manage - Dev Svelte App</title>
-
-	<link rel='icon' type='image/png' href='/favicon.png'>
-    <link rel="stylesheet" href="https://use.fontawesome.com/releases/v5.15.2/css/all.css">
-    <link rel='stylesheet' href='https://static.oneskyit.com/css/global.css'>
-	<link rel='stylesheet' href='/app_global.css'>
-	<link rel='stylesheet' href='/build/bundle.css'>
-
-    <script src="https://cdnjs.cloudflare.com/ajax/libs/dayjs/1.9.4/dayjs.min.js" integrity="sha512-XZSHSEFj4QeE0G4pwy4tToyAhF2VXoEcF9CP0t1PSZMP2XHhEEB9PjM9knsdzcEKbi6GRMazdt8tJadz0JTKIQ==" crossorigin="anonymous"></script>
-    <script defer src='https://static.oneskyit.com/js/utilities.js'></script>
-	<script defer src='/build/bundle.js'></script>
-    <script>
-        let account_id = '_PRgRxSkzu-Xg-V4Ft1RGg';
-        let membership_member_id = '6jMd9WwnMbs';
-    </script>
-</head>
-
-<body>
-    <header><h1>Membership Member Manage - Dev Svelte App</h1></header>
-
-    <main>
-        <div id="membership_member_manage_container" class="svelte_container">
-        </div>
-    </main>
-
-</body>
-</html>

public/user_person.html

@@ -1,36 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-	<meta charset='utf-8'>
-	<meta name='viewport' content='width=device-width,initial-scale=1'>
-
-	<title>User Person - Dev Svelte App</title>
-
-	<link rel='icon' type='image/png' href='/favicon.png'>
-    <link rel="stylesheet" href="https://use.fontawesome.com/releases/v5.15.2/css/all.css">
-    <link rel='stylesheet' href='https://static.oneskyit.com/css/global.css'>
-	<link rel='stylesheet' href='/app_global.css'>
-	<link rel='stylesheet' href='/build/bundle.css'>
-
-    <script src="https://cdnjs.cloudflare.com/ajax/libs/dayjs/1.9.4/dayjs.min.js" integrity="sha512-XZSHSEFj4QeE0G4pwy4tToyAhF2VXoEcF9CP0t1PSZMP2XHhEEB9PjM9knsdzcEKbi6GRMazdt8tJadz0JTKIQ==" crossorigin="anonymous"></script>
-    <script defer src='https://static.oneskyit.com/js/utilities.js'></script>
-	<script defer src='/build/bundle.js'></script>
-    <script>
-        let account_id = '_PRgRxSkzu-Xg-V4Ft1RGg';
-        let person_id = 'OfcrSXX_evI';
-        let user_id = 'VMvg8X3QnZM';
-    </script>
-</head>
-
-<body>
-    <header><h1>User Person - Dev Svelte App</h1></header>
-
-    <main>
-        <div id="user_container" class="svelte_container">
-        </div>
-        <div id="person_container" class="svelte_container">
-        </div>
-    </main>
-
-</body>
-</html>

rollup.config.js

@@ -1,83 +0,0 @@
-import svelte from 'rollup-plugin-svelte';
-import commonjs from '@rollup/plugin-commonjs';
-import resolve from '@rollup/plugin-node-resolve';
-import livereload from 'rollup-plugin-livereload';
-import { terser } from 'rollup-plugin-terser';
-import sveltePreprocess from 'svelte-preprocess';
-import typescript from '@rollup/plugin-typescript';
-import css from 'rollup-plugin-css-only';
-
-const production = !process.env.ROLLUP_WATCH;
-
-function serve() {
-	let server;
-
-	function toExit() {
-		if (server) server.kill(0);
-	}
-
-	return {
-		writeBundle() {
-			if (server) return;
-			server = require('child_process').spawn('npm', ['run', 'start', '--', '--dev'], {
-				stdio: ['ignore', 'inherit', 'inherit'],
-				shell: true
-			});
-
-			process.on('SIGTERM', toExit);
-			process.on('exit', toExit);
-		}
-	};
-}
-
-export default {
-	input: 'src/main.ts',
-	output: {
-		sourcemap: true,
-		format: 'iife',
-		name: 'app',
-		file: 'public/build/bundle.js'
-	},
-	plugins: [
-		svelte({
-			preprocess: sveltePreprocess({ sourceMap: !production }),
-			compilerOptions: {
-				// enable run-time checks when not in production
-				dev: !production
-			}
-		}),
-		// we'll extract any component CSS out into
-		// a separate file - better for performance
-		css({ output: 'bundle.css' }),
-
-		// If you have external dependencies installed from
-		// npm, you'll most likely need these plugins. In
-		// some cases you'll need additional configuration -
-		// consult the documentation for details:
-		// https://github.com/rollup/plugins/tree/master/packages/commonjs
-		resolve({
-			browser: true,
-			dedupe: ['svelte']
-		}),
-		commonjs(),
-		typescript({
-			sourceMap: !production,
-			inlineSources: !production
-		}),
-
-		// In dev mode, call `npm run start` once
-		// the bundle has been generated
-		!production && serve(),
-
-		// Watch the `public` directory and refresh the
-		// browser on changes when not in production
-		!production && livereload('public'),
-
-		// If we're building for production (npm run build
-		// instead of npm run dev), minify
-		production && terser()
-	],
-	watch: {
-		clearScreen: false
-	}
-};

scripts/migrate_fa_to_lucide.py

@@ -0,0 +1,320 @@
+#!/usr/bin/env python3
+"""
+migrate_fa_to_lucide.py — Replace FontAwesome <span class="fas fa-X"> with Lucide components.
+
+Usage:
+  python3 scripts/migrate_fa_to_lucide.py src/routes/events/[event_id]/\(pres_mgmt\)/
+
+Skips content inside HTML comments. Adds/merges lucide-svelte imports.
+"""
+import re
+import sys
+import os
+from pathlib import Path
+
+# ── FA icon → Lucide component name ─────────────────────────────────────────
+FA_TO_LUCIDE = {
+    'fa-spinner':            'LoaderCircle',
+    'fa-cog':                'LoaderCircle',    # only when fa-spin
+    'fa-sync-alt':           'RefreshCw',
+    'fa-times':              'X',
+    'fa-exclamation-triangle': 'TriangleAlert',
+    'fa-check':              'Check',
+    'fa-check-circle':       'CheckCircle',
+    'fa-plus':               'Plus',
+    'fa-minus':              'Minus',
+    'fa-save':               'Save',
+    'fa-edit':               'Pencil',
+    'fa-eye':                'Eye',
+    'fa-eye-slash':          'EyeOff',
+    'fa-toggle-on':          'ToggleRight',
+    'fa-toggle-off':         'ToggleLeft',
+    'fa-star-of-life':       'Asterisk',
+    'fa-id-card':            'IdCard',
+    'fa-paper-plane':        'Send',
+    'fa-map-marker-alt':     'MapPin',
+    'fa-file-alt':           'FileText',
+    'fa-envelope':           'Mail',
+    'fa-book':               'BookOpen',
+    'fa-angle-right':        'ChevronRight',
+    'fa-user':               'User',
+    'fa-tasks':              'ListChecks',
+    'fa-plane':              'Plane',
+    'fa-list':               'List',
+    'fa-link':               'Link',
+    'fa-file-archive':       'Archive',
+    'fa-comment-dots':       'MessageCircle',
+    'fa-chevron-up':         'ChevronUp',
+    'fa-chevron-down':       'ChevronDown',
+    'fa-camera':             'Camera',
+    'fa-barcode':            'Barcode',
+    'fa-upload':             'Upload',
+    'fa-search':             'Search',
+    'fa-mail-bulk':          'Mails',
+    'fa-laptop-code':        'Laptop',
+    'fa-copy':               'Copy',
+    'fa-user-tag':           'Tag',
+    'fa-user-secret':        'UserRound',
+    'fa-users':              'Users',
+    'fa-user-circle':        'CircleUser',
+    'fa-sort':               'ArrowUpDown',
+    'fa-question':           'HelpCircle',
+    'fa-map-marked':         'MapPinned',
+    'fa-list-ol':            'ListOrdered',
+    'fa-laptop':             'Laptop',
+    'fa-info':               'Info',
+    'fa-building':           'Building2',
+    'fa-user-slash':         'UserX',
+    'fa-user-check':         'UserCheck',
+    'fa-unlink':             'Unlink',
+    'fa-star':               'Star',
+    'fa-search-location':    'MapPin',
+    'fa-remove-format':      'RemoveFormatting',
+    'fa-qrcode':             'QrCode',
+    'fa-key':                'Key',
+    'fa-heartbeat':          'HeartPulse',
+    'fa-hat-wizard':         'Wand2',
+    'fa-fingerprint':        'Fingerprint',
+    'fa-file-csv':           'FileSpreadsheet',
+    'fa-file':               'File',
+    'fa-clock':              'Clock',
+    'fa-clipboard-list':     'ClipboardList',
+    'fa-chart-line':         'TrendingUp',
+    'fa-chalkboard-teacher': 'Presentation',
+    'fa-calendar-day':       'CalendarDays',
+    'fa-bell-slash':         'BellOff',
+    'fa-bell':               'Bell',
+    # ── Additional mappings ──────────────────────────────────────────────────
+    'fa-arrow-left':         'ArrowLeft',
+    'fa-arrow-right':        'ArrowRight',
+    'fa-arrow-up':           'ArrowUp',
+    'fa-arrow-down':         'ArrowDown',
+    'fa-ban':                'Ban',
+    'fa-broom':              'Trash2',       # closest semantic match
+    'fa-calendar-alt':       'CalendarDays',
+    'fa-database':           'Database',
+    'fa-door-open':          'DoorOpen',
+    'fa-download':           'Download',
+    'fa-exchange-alt':       'ArrowLeftRight',
+    'fa-file-image':         'FileImage',
+    'fa-lock':               'Lock',
+    'fa-magic':              'Sparkles',
+    'fa-print':              'Printer',
+    'fa-sticky-note':        'StickyNote',
+    'fa-sync':               'RefreshCw',
+    'fa-tag':                'Tag',
+    'fa-trash':              'Trash2',
+    'fa-user-ninja':         'UserRound',
+    'fa-user-tie':           'UserRound',
+    'fa-video':              'Video',
+    'fa-archive':            'Archive',
+    'fa-link-slash':         'Unlink',
+    'fa-question-circle':    'HelpCircle',
+    # ── Additional unmapped icons ──────────────────────────────────────────────
+    'fa-compress-arrows-alt':'Minimize2',
+    'fa-expand-arrows-alt':  'Maximize2',
+    'fa-secret':             'ShieldCheck',
+    'fa-user-shield':        'ShieldUser',
+    'fa-user-nurse':         'UserRound',
+    'fa-user-friends':       'Users',
+    'fa-user-plus':          'UserPlus',
+    'fa-user-edit':          'UserRoundPen',
+    'fa-palette':            'Palette',
+    'fa-eraser':             'Eraser',
+    'fa-code':               'Code',
+    'fa-lock-open':          'LockOpen',
+    'fa-unlock':             'LockOpen',
+    'fa-trash-alt':          'Trash2',
+    'fa-folder-open':        'FolderOpen',
+    'fa-minus-circle':       'MinusCircle',
+    'fa-plus-circle':        'PlusCircle',
+    'fa-window-close':       'X',
+    'fa-cut':                'Scissors',
+    'fa-caret-down':         'ChevronDown',
+    'fa-caret-right':        'ChevronRight',
+    'fa-cogs':               'Settings2',
+    'fa-phone':              'Phone',
+    'fa-phone-slash':        'PhoneOff',
+    'fa-flag':               'Flag',
+    'fa-calendar-week':      'CalendarDays',
+    'fa-address-book':       'BookUser',
+    'fa-info-circle':        'Info',
+    'fa-comment-slash':      'MessageX',
+    'fa-paperclip':          'Paperclip',
+    'fa-keyboard':           'Keyboard',
+    'fa-crosshairs':         'Crosshair',
+    'fa-redo':               'RotateCcw',
+    'fa-tools':              'Wrench',
+    'fa-video-slash':        'VideoOff',
+    'fa-home':               'House',
+    'fa-calendar':           'Calendar',
+    'fa-check-square':       'SquareCheck',
+    'fa-square':             'Square',
+    'fa-times-circle':       'CircleX',
+    'fa-undo':               'RotateCcw',
+    'fa-trash-restore':      'ArchiveRestore',
+    'fa-lock-open':          'LockOpen',
+    'fa-compress':           'Minimize2',
+    'fa-expand':             'Maximize2',
+    'fa-grip-lines':         'GripHorizontal',
+    'fa-bars':               'Menu',
+    'fa-refresh':            'RefreshCw',
+}
+
+# Skip modifiers — not real icon names
+FA_MODIFIERS = {'fas', 'far', 'fab', 'fa-spin', 'fa-fw', 'fa-lg', 'fa-2x', 'fa-sm'}
+
+# ── Pattern: <span class="fas fa-X [extras]" [other-attrs]></span> ───────────
+# [^>]* matches newlines too (character class, not dot)
+SPAN_RE = re.compile(
+    r'<span\s+class="((?:fas|far|fab)\s+fa-[^"]*)"[^>]*>\s*</span>'
+)
+
+# ── Comment splitter ─────────────────────────────────────────────────────────
+COMMENT_RE = re.compile(r'(<!--[\s\S]*?-->)')
+
+# ── Lucide import line ────────────────────────────────────────────────────────
+IMPORT_RE = re.compile(r"import\s*\{([^}]+)\}\s*from\s*'@lucide/svelte'\s*;?")
+
+
+def parse_fa_class(class_str):
+    """Return (icon_name, extra_classes, has_spin) from a FA class string."""
+    parts = class_str.split()
+    icon_name = None
+    has_spin = 'fa-spin' in parts
+    extra = []
+    for p in parts:
+        if p in FA_MODIFIERS:
+            continue
+        elif p.startswith('fa-'):
+            if icon_name is None:
+                icon_name = p  # first real icon name wins
+            extra.append(p)
+    return icon_name, extra, has_spin
+
+
+def replace_span(m):
+    """Regex sub callback: replace a single FA span with a Lucide component."""
+        """
+    if icon_name is None:
+        return m.group(0)
+
+    lucide = FA_TO_LUCIDE.get(icon_name)
+    if lucide is None:
+        print(f'  ⚠  no mapping for {icon_name!r} — left as-is', file=sys.stderr)
+        return m.group(0)
+
+    classes = extra[:]
+    if has_spin:
+        classes.append('animate-spin')
+
+    class_attr = f' class="{" ".join(classes)}"' if classes else ''
+    return f'<{lucide} size="1em"{class_attr} />'
+
+
+def process_content(content):
+    """Replace FA spans, skip HTML comments. Return (new_content, used_icons)."""
+    used_icons = set()
+
+    def track_and_replace(m):
+        result = replace_span(m)
+        if result != m.group(0):
+            # Extract lucide name from result
+            lucide_name = result.split()[0].lstrip('<')
+            used_icons.add(lucide_name)
+        return result
+
+    # Split by comments; only process non-comment segments
+    parts = COMMENT_RE.split(content)
+    new_parts = []
+    for part in parts:
+        if part.startswith('<!--'):
+            new_parts.append(part)
+        else:
+            new_parts.append(SPAN_RE.sub(track_and_replace, part))
+
+    return ''.join(new_parts), used_icons
+
+
+def add_import(content, icons):
+    """Add/merge lucide-svelte import line inside <script>."""
+    if not icons:
+        return content
+
+    sorted_icons = sorted(icons)
+
+    existing = IMPORT_RE.search(content)
+    if existing:
+        current = [s.strip() for s in existing.group(1).split(',') if s.strip()]
+        merged = sorted(set(current) | set(sorted_icons))
+        new_import = f"import {{ {', '.join(merged)} }} from '@lucide/svelte';"
+        return content[:existing.start()] + new_import + content[existing.end():]
+    else:
+        # Insert after the last COMPLETE import statement (handles multiline imports).
+        # A complete import statement ends with: } from '...'; or import '...';
+        complete_import_re = re.compile(
+            r'^[ \t]*import\b[\s\S]*?(?:from\s*[\'"][^\'"]+[\'"]|[\'"][^\'"]+[\'"])\s*;?',
+            re.MULTILINE
+        )
+        all_imports = list(complete_import_re.finditer(content))
+        if all_imports:
+            pos = all_imports[-1].end()
+            new_line = f"\n    import {{ {', '.join(sorted_icons)} }} from '@lucide/svelte';"
+            return content[:pos] + new_line + content[pos:]
+        # Fallback: add after <script> tag
+        script_tag = content.find('<script')
+        if script_tag != -1:
+            end = content.index('>', script_tag) + 1
+            return content[:end] + f"\n    import {{ {', '.join(sorted_icons)} }} from 'lucide-svelte';" + content[end:]
+        return content
+
+
+def migrate_file(filepath):
+    path = Path(filepath)
+    original = path.read_text()
+    new_content, used_icons = process_content(original)
+
+    if used_icons:
+        new_content = add_import(new_content, used_icons)
+
+    if new_content != original:
+        path.write_text(new_content)
+        print(f'  ✓  {path.name}  ({len(used_icons)} icon types: {", ".join(sorted(used_icons))})')
+        return True
+    else:
+        print(f'  –  {path.name}  (no changes)')
+        return False
+
+
+def main():
+    if len(sys.argv) < 2:
+        print('Usage: migrate_fa_to_lucide.py <directory_or_file ...>')
+        sys.exit(1)
+
+
+    # IDAA Guardrail: Abort if any target is src/routes/idaa or a subdirectory
+    for arg in sys.argv[1:]:
+        if Path(arg).resolve().as_posix().endswith('src/routes/idaa') or '/src/routes/idaa/' in Path(arg).resolve().as_posix():
+            print('ABORT: This script must not be run against src/routes/idaa or its subdirectories. IDAA content is private and protected.')
+            sys.exit(1)
+
+    targets = []
+    for arg in sys.argv[1:]:
+        p = Path(arg)
+        if p.is_dir():
+            targets.extend(sorted(p.rglob('*.svelte')))
+        elif p.is_file():
+            targets.append(p)
+        else:
+            print(f'Not found: {arg}', file=sys.stderr)
+
+    changed = 0
+    for t in targets:
+        if migrate_file(t):
+            changed += 1
+
+    print(f'\n{changed}/{len(targets)} files modified.')
+
+
+if __name__ == '__main__':
+    main()

src/App.svelte

@@ -1,21 +0,0 @@
-<script lang="ts">
-    import Test from './test.svelte';
-    export let name: string;
-</script>
-
-<section>
-    <p>Name: {name}</p>
-
-    <Test />
-
-</section>
-
-<style>
-    section {
-        text-align: center;
-    }
-
-    p {
-        color: green;
-    }
-</style>

src/App.svelte.bak

@@ -1,75 +0,0 @@
-<script lang="ts">
-    export let name: string;
-
-	let count = 0;
-
-	function handleClick() {
-		count += 1;
-	}
-
-    let m = { x: 0, y: 0 };
-
-    function handle_mousemove(event) {
-        m.x = event.clientX;
-        m.y = event.clientY;
-    }
-
-
-    let first_name = '';
-	let last_name = '';
-	let full_name = 'Not Here';
-	$: full_name = first_name + ' ' + last_name;
-
-    let name_checked = false;
-</script>
-
-<main>
-    <input bind:value={first_name}>
-    <input bind:value={last_name}>
-    <label>Check me <input type=checkbox bind:checked={name_checked}></label>
-
-    <h1>Hello {full_name}!</h1>
-    {#if name_checked}
-        <p>Thank you. We will bombard your inbox and sell your personal details.</p>
-    {:else}
-        <p>You must opt in to continue. If you're not paying, you're the product.</p>
-    {/if}
-
-    <button disabled={!name_checked}>
-        Subscribe
-    </button>
-
-    <p>This is a new app using Svelte.</p>
-    <button on:click={handleClick}>
-        Clicked {count} {count === 1 ? 'time' : 'times'}
-    </button>
-
-    <div class="my_class">My fancy class!</div>
-
-    <div on:mousemove={handle_mousemove}>
-        The mouse position is {m.x} x {m.y}
-    </div>
-</main>
-
-<style>
-    main {
-        text-align: center;
-        padding: 1rem;
-        max-width: 240px;
-        margin: 0 auto;
-    }
-
-    h1 {
-        color: hsla(0, 50%, 50%, 1);
-        /*text-transform: uppercase;*/
-        font-size: 4rem;
-        font-weight: 100;
-    }
-
-    @media (min-width: 640px) {
-        main {
-            max-width: none;
-        }
-    }
-
-</style>

src/ae-c-idaa-light.css

@@ -0,0 +1,166 @@
+[data-theme='AE_c_IDAA_light'] {
+    --text-scaling: 1.067;
+    --base-font-color: var(--color-surface-950);
+
+    --base-font-family: system-ui, sans-serif;
+    --base-font-size: inherit;
+    --base-line-height: inherit;
+    --base-font-weight: normal;
+    --base-font-style: normal;
+    --base-letter-spacing: 0em;
+    --heading-font-color: inherit;
+
+    --heading-font-family: inherit;
+    --heading-font-weight: bold;
+    --heading-font-style: normal;
+    --heading-letter-spacing: inherit;
+    --anchor-font-color: var(--color-primary-600);
+
+    --anchor-font-family: inherit;
+    --anchor-font-size: inherit;
+    --anchor-line-height: inherit;
+    --anchor-font-weight: inherit;
+    --anchor-font-style: inherit;
+    --anchor-letter-spacing: inherit;
+    --anchor-text-decoration: none;
+    --anchor-text-decoration-hover: underline;
+    --anchor-text-decoration-active: none;
+    --anchor-text-decoration-focus: none;
+    --spacing: 0.25rem;
+    --radius-base: 0.375rem;
+    --radius-container: 0.75rem;
+    --default-border-width: 1px;
+    --default-divide-width: 1px;
+    --default-ring-width: 1px;
+    --body-background-color: var(--color-surface-50);
+
+    --color-primary-50: oklch(85.73% 0.07 251.8deg);
+    --color-primary-100: oklch(78.5% 0.09 252.03deg);
+    --color-primary-200: oklch(71.06% 0.1 253.6deg);
+    --color-primary-300: oklch(63.76% 0.12 253.85deg);
+    --color-primary-400: oklch(56.32% 0.14 255.25deg);
+    --color-primary-500: oklch(49.23% 0.15 256.36deg);
+    --color-primary-600: oklch(43.11% 0.14 258.86deg);
+    --color-primary-700: oklch(36.85% 0.14 261.54deg);
+    --color-primary-800: oklch(30.41% 0.13 263.99deg);
+    --color-primary-900: oklch(23.91% 0.12 265.91deg);
+    --color-primary-950: oklch(16.96% 0.12 264.05deg);
+
+    --color-primary-contrast-light: var(--color-primary-50);
+
+    --color-primary-contrast-500: var(--color-primary-contrast-light);
+    --color-primary-contrast-600: var(--color-primary-contrast-light);
+    --color-primary-contrast-700: var(--color-primary-contrast-light);
+    --color-primary-contrast-800: var(--color-primary-contrast-light);
+    --color-primary-contrast-900: var(--color-primary-contrast-light);
+    --color-primary-contrast-950: var(--color-primary-contrast-light);
+    --color-secondary-50: oklch(96.26% 0.06 196.24deg);
+    --color-secondary-100: oklch(89.14% 0.07 220.79deg);
+    --color-secondary-200: oklch(82.13% 0.08 234.87deg);
+    --color-secondary-300: oklch(75.03% 0.11 245.33deg);
+    --color-secondary-400: oklch(68.15% 0.14 250.72deg);
+    --color-secondary-500: oklch(61.37% 0.16 255.34deg);
+    --color-secondary-600: oklch(55.1% 0.16 256.81deg);
+    --color-secondary-700: oklch(48.64% 0.15 258.4deg);
+    --color-secondary-800: oklch(41.84% 0.15 260.39deg);
+    --color-secondary-900: oklch(35.05% 0.14 262.03deg);
+    --color-secondary-950: oklch(28.12% 0.14 262.47deg);
+
+    --color-secondary-contrast-light: var(--color-secondary-50);
+
+    --color-secondary-contrast-600: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-700: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-800: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-900: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-950: var(--color-secondary-contrast-light);
+    --color-tertiary-50: oklch(100% 0 none);
+    --color-tertiary-100: oklch(96.07% 0.01 251.15deg);
+    --color-tertiary-200: oklch(91.88% 0.03 252.69deg);
+    --color-tertiary-300: oklch(87.99% 0.05 253.24deg);
+    --color-tertiary-400: oklch(83.81% 0.06 253.57deg);
+    --color-tertiary-500: oklch(79.93% 0.08 253.32deg);
+    --color-tertiary-600: oklch(72.53% 0.08 251.75deg);
+    --color-tertiary-700: oklch(64.93% 0.08 249.75deg);
+    --color-tertiary-800: oklch(57.14% 0.09 247.99deg);
+    --color-tertiary-900: oklch(49.18% 0.09 246.55deg);
+    --color-tertiary-950: oklch(41.1% 0.09 246.54deg);
+
+    --color-tertiary-contrast-light: var(--color-tertiary-50);
+
+    --color-tertiary-contrast-800: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-900: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-950: var(--color-tertiary-contrast-light);
+    --color-success-50: oklch(95.82% 0.06 184.52deg);
+    --color-success-100: oklch(91.55% 0.08 172.29deg);
+    --color-success-200: oklch(87.44% 0.11 165.22deg);
+    --color-success-300: oklch(83.26% 0.13 161.2deg);
+    --color-success-400: oklch(79.56% 0.16 157.13deg);
+    --color-success-500: oklch(76.12% 0.18 153.61deg);
+    --color-success-600: oklch(69.31% 0.17 151.81deg);
+    --color-success-700: oklch(62.07% 0.16 149.95deg);
+    --color-success-800: oklch(54.9% 0.15 147.65deg);
+    --color-success-900: oklch(47.26% 0.14 145.54deg);
+    --color-success-950: oklch(39.64% 0.13 143.79deg);
+
+    --color-success-contrast-light: var(--color-success-50);
+
+    --color-success-contrast-800: var(--color-success-contrast-light);
+    --color-success-contrast-900: var(--color-success-contrast-light);
+    --color-success-contrast-950: var(--color-success-contrast-light);
+    --color-warning-50: oklch(98.26% 0.1 108.02deg);
+    --color-warning-100: oklch(95.84% 0.12 104.66deg);
+    --color-warning-200: oklch(93.48% 0.13 102.21deg);
+    --color-warning-300: oklch(91.49% 0.15 100.17deg);
+    --color-warning-400: oklch(89.28% 0.16 98.19deg);
+    --color-warning-500: oklch(87.14% 0.17 96.01deg);
+    --color-warning-600: oklch(79.88% 0.16 96.31deg);
+    --color-warning-700: oklch(72.35% 0.14 95.62deg);
+    --color-warning-800: oklch(64.73% 0.13 95.92deg);
+    --color-warning-900: oklch(56.77% 0.11 94.87deg);
+    --color-warning-950: oklch(48.63% 0.1 95.22deg);
+
+    --color-warning-contrast-light: var(--color-warning-50);
+
+    --color-warning-contrast-800: var(--color-warning-contrast-light);
+    --color-warning-contrast-900: var(--color-warning-contrast-light);
+    --color-warning-contrast-950: var(--color-warning-contrast-light);
+    --color-error-50: oklch(81.88% 0.1 38.14deg);
+    --color-error-100: oklch(75.88% 0.13 31.15deg);
+    --color-error-200: oklch(70.29% 0.16 27.32deg);
+    --color-error-300: oklch(65.15% 0.19 25.65deg);
+    --color-error-400: oklch(60.98% 0.21 25.56deg);
+    --color-error-500: oklch(57.86% 0.22 26.62deg);
+    --color-error-600: oklch(52.52% 0.2 26.86deg);
+    --color-error-700: oklch(46.81% 0.18 27.02deg);
+    --color-error-800: oklch(41.15% 0.16 27.63deg);
+    --color-error-900: oklch(35.01% 0.14 27.9deg);
+    --color-error-950: oklch(28.69% 0.12 29.23deg);
+
+    --color-error-contrast-light: var(--color-error-50);
+
+    --color-error-contrast-400: var(--color-error-contrast-light);
+    --color-error-contrast-500: var(--color-error-contrast-light);
+    --color-error-contrast-600: var(--color-error-contrast-light);
+    --color-error-contrast-700: var(--color-error-contrast-light);
+    --color-error-contrast-800: var(--color-error-contrast-light);
+    --color-error-contrast-900: var(--color-error-contrast-light);
+    --color-error-contrast-950: var(--color-error-contrast-light);
+    --color-surface-50: oklch(100% 0 none);
+    --color-surface-100: oklch(93.98% 0 105.57deg);
+    --color-surface-200: oklch(87.66% 0 67.88deg);
+    --color-surface-300: oklch(81.35% 0 106.1deg);
+    --color-surface-400: oklch(74.79% 0 84.45deg);
+    --color-surface-500: oklch(68.29% 0 91.36deg);
+    --color-surface-600: oklch(60.99% 0 91.38deg);
+    --color-surface-700: oklch(53.5% 0 84.49deg);
+    --color-surface-800: oklch(46.03% 0 91.43deg);
+    --color-surface-900: oklch(37.94% 0 84.52deg);
+    --color-surface-950: oklch(29.34% 0 84.54deg);
+
+    --color-surface-contrast-light: var(--color-surface-50);
+
+    --color-surface-contrast-700: var(--color-surface-contrast-light);
+    --color-surface-contrast-800: var(--color-surface-contrast-light);
+    --color-surface-contrast-900: var(--color-surface-contrast-light);
+    --color-surface-contrast-950: var(--color-surface-contrast-light);
+}

src/ae-c-lci.css

@@ -0,0 +1,205 @@
+[data-theme='AE_c_LCI'] {
+    --text-scaling: 1.067;
+    --base-font-color: var(--color-surface-950);
+    --base-font-color-dark: var(--color-surface-50);
+    --base-font-family: system-ui, sans-serif;
+    --base-font-size: inherit;
+    --base-line-height: inherit;
+    --base-font-weight: normal;
+    --base-font-style: normal;
+    --base-letter-spacing: 0em;
+    --heading-font-color: inherit;
+    --heading-font-color-dark: inherit;
+    --heading-font-family: inherit;
+    --heading-font-weight: bold;
+    --heading-font-style: normal;
+    --heading-letter-spacing: inherit;
+    --anchor-font-color: var(--color-primary-500);
+    --anchor-font-color-dark: var(--color-primary-500);
+    --anchor-font-family: inherit;
+    --anchor-font-size: inherit;
+    --anchor-line-height: inherit;
+    --anchor-font-weight: inherit;
+    --anchor-font-style: inherit;
+    --anchor-letter-spacing: inherit;
+    --anchor-text-decoration: none;
+    --anchor-text-decoration-hover: underline;
+    --anchor-text-decoration-active: none;
+    --anchor-text-decoration-focus: none;
+    --spacing: 0.25rem;
+    --radius-base: 0.375rem;
+    --radius-container: 0.75rem;
+    --default-border-width: 1px;
+    --default-divide-width: 1px;
+    --default-ring-width: 1px;
+    --body-background-color: var(--color-surface-50);
+    --body-background-color-dark: var(--color-surface-950);
+    --color-primary-50: oklch(85.1% 0.07 265.19deg);
+    --color-primary-100: oklch(77.89% 0.08 264.31deg);
+    --color-primary-200: oklch(70.32% 0.08 264.44deg);
+    --color-primary-300: oklch(62.86% 0.09 263.87deg);
+    --color-primary-400: oklch(54.96% 0.1 263.8deg);
+    --color-primary-500: oklch(47.12% 0.11 262.88deg);
+    --color-primary-600: oklch(40.9% 0.1 264.73deg);
+    --color-primary-700: oklch(34.53% 0.1 267.34deg);
+    --color-primary-800: oklch(28.16% 0.09 268.81deg);
+    --color-primary-900: oklch(21.29% 0.09 271.12deg);
+    --color-primary-950: oklch(12.88% 0.09 264.05deg);
+    --color-primary-contrast-dark: var(--color-primary-950);
+    --color-primary-contrast-light: var(--color-primary-50);
+    --color-primary-contrast-50: var(--color-primary-contrast-dark);
+    --color-primary-contrast-100: var(--color-primary-contrast-dark);
+    --color-primary-contrast-200: var(--color-primary-contrast-dark);
+    --color-primary-contrast-300: var(--color-primary-contrast-dark);
+    --color-primary-contrast-400: var(--color-primary-contrast-dark);
+    --color-primary-contrast-500: var(--color-primary-contrast-light);
+    --color-primary-contrast-600: var(--color-primary-contrast-light);
+    --color-primary-contrast-700: var(--color-primary-contrast-light);
+    --color-primary-contrast-800: var(--color-primary-contrast-light);
+    --color-primary-contrast-900: var(--color-primary-contrast-light);
+    --color-primary-contrast-950: var(--color-primary-contrast-light);
+    --color-secondary-50: oklch(96.14% 0.06 196.21deg);
+    --color-secondary-100: oklch(89.81% 0.07 212.45deg);
+    --color-secondary-200: oklch(83.71% 0.08 223.06deg);
+    --color-secondary-300: oklch(77.42% 0.1 231.73deg);
+    --color-secondary-400: oklch(71.44% 0.12 237.59deg);
+    --color-secondary-500: oklch(65.39% 0.14 243.22deg);
+    --color-secondary-600: oklch(58.93% 0.13 245.07deg);
+    --color-secondary-700: oklch(52.09% 0.12 248.03deg);
+    --color-secondary-800: oklch(45.27% 0.12 250.54deg);
+    --color-secondary-900: oklch(38.01% 0.11 254.24deg);
+    --color-secondary-950: oklch(30.67% 0.11 256.73deg);
+    --color-secondary-contrast-dark: var(--color-secondary-950);
+    --color-secondary-contrast-light: var(--color-secondary-50);
+    --color-secondary-contrast-50: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-100: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-200: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-300: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-400: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-500: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-600: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-700: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-800: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-900: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-950: var(--color-secondary-contrast-light);
+    --color-tertiary-50: oklch(87.75% 0.12 326.52deg);
+    --color-tertiary-100: oklch(80.92% 0.13 323.93deg);
+    --color-tertiary-200: oklch(73.87% 0.14 321.55deg);
+    --color-tertiary-300: oklch(66.9% 0.15 319.41deg);
+    --color-tertiary-400: oklch(59.72% 0.16 317.25deg);
+    --color-tertiary-500: oklch(52.73% 0.17 315.13deg);
+    --color-tertiary-600: oklch(46.6% 0.16 314.18deg);
+    --color-tertiary-700: oklch(40.43% 0.14 312.8deg);
+    --color-tertiary-800: oklch(33.85% 0.13 309.88deg);
+    --color-tertiary-900: oklch(27.23% 0.12 306.83deg);
+    --color-tertiary-950: oklch(19.83% 0.1 302.7deg);
+    --color-tertiary-contrast-dark: var(--color-tertiary-950);
+    --color-tertiary-contrast-light: var(--color-tertiary-50);
+    --color-tertiary-contrast-50: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-100: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-200: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-300: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-400: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-500: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-600: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-700: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-800: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-900: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-950: var(--color-tertiary-contrast-light);
+    --color-success-50: oklch(95.23% 0.07 195.99deg);
+    --color-success-100: oklch(90.22% 0.09 189.46deg);
+    --color-success-200: oklch(85.11% 0.1 186.03deg);
+    --color-success-300: oklch(80.35% 0.12 181.75deg);
+    --color-success-400: oklch(75.55% 0.12 178.92deg);
+    --color-success-500: oklch(71.19% 0.13 174.73deg);
+    --color-success-600: oklch(64.29% 0.12 173.65deg);
+    --color-success-700: oklch(57.46% 0.11 171.75deg);
+    --color-success-800: oklch(50.18% 0.1 170.68deg);
+    --color-success-900: oklch(42.87% 0.09 167.65deg);
+    --color-success-950: oklch(34.91% 0.07 164.42deg);
+    --color-success-contrast-dark: var(--color-success-950);
+    --color-success-contrast-light: var(--color-success-50);
+    --color-success-contrast-50: var(--color-success-contrast-dark);
+    --color-success-contrast-100: var(--color-success-contrast-dark);
+    --color-success-contrast-200: var(--color-success-contrast-dark);
+    --color-success-contrast-300: var(--color-success-contrast-dark);
+    --color-success-contrast-400: var(--color-success-contrast-dark);
+    --color-success-contrast-500: var(--color-success-contrast-dark);
+    --color-success-contrast-600: var(--color-success-contrast-dark);
+    --color-success-contrast-700: var(--color-success-contrast-light);
+    --color-success-contrast-800: var(--color-success-contrast-light);
+    --color-success-contrast-900: var(--color-success-contrast-light);
+    --color-success-contrast-950: var(--color-success-contrast-light);
+    --color-warning-50: oklch(95.67% 0.05 84.56deg);
+    --color-warning-100: oklch(92.83% 0.06 82.16deg);
+    --color-warning-200: oklch(90.12% 0.08 80.33deg);
+    --color-warning-300: oklch(87.59% 0.1 80.01deg);
+    --color-warning-400: oklch(85.03% 0.12 78.35deg);
+    --color-warning-500: oklch(82.46% 0.14 76.71deg);
+    --color-warning-600: oklch(76.34% 0.13 72.25deg);
+    --color-warning-700: oklch(70.34% 0.13 68.09deg);
+    --color-warning-800: oklch(63.99% 0.13 63.18deg);
+    --color-warning-900: oklch(57.91% 0.13 57.97deg);
+    --color-warning-950: oklch(51.69% 0.13 51.44deg);
+    --color-warning-contrast-dark: var(--color-warning-950);
+    --color-warning-contrast-light: var(--color-warning-50);
+    --color-warning-contrast-50: var(--color-warning-contrast-dark);
+    --color-warning-contrast-100: var(--color-warning-contrast-dark);
+    --color-warning-contrast-200: var(--color-warning-contrast-dark);
+    --color-warning-contrast-300: var(--color-warning-contrast-dark);
+    --color-warning-contrast-400: var(--color-warning-contrast-dark);
+    --color-warning-contrast-500: var(--color-warning-contrast-dark);
+    --color-warning-contrast-600: var(--color-warning-contrast-light);
+    --color-warning-contrast-700: var(--color-warning-contrast-light);
+    --color-warning-contrast-800: var(--color-warning-contrast-light);
+    --color-warning-contrast-900: var(--color-warning-contrast-light);
+    --color-warning-contrast-950: var(--color-warning-contrast-light);
+    --color-error-50: oklch(84.29% 0.09 46.91deg);
+    --color-error-100: oklch(78.63% 0.12 39.19deg);
+    --color-error-200: oklch(72.92% 0.14 34.35deg);
+    --color-error-300: oklch(67.88% 0.17 31.48deg);
+    --color-error-400: oklch(63.09% 0.19 30.02deg);
+    --color-error-500: oklch(59.32% 0.21 29.47deg);
+    --color-error-600: oklch(53.56% 0.19 29.25deg);
+    --color-error-700: oklch(47.75% 0.17 29.2deg);
+    --color-error-800: oklch(41.51% 0.15 28.7deg);
+    --color-error-900: oklch(35.35% 0.14 28.7deg);
+    --color-error-950: oklch(28.69% 0.12 29.23deg);
+    --color-error-contrast-dark: var(--color-error-950);
+    --color-error-contrast-light: var(--color-error-50);
+    --color-error-contrast-50: var(--color-error-contrast-dark);
+    --color-error-contrast-100: var(--color-error-contrast-dark);
+    --color-error-contrast-200: var(--color-error-contrast-dark);
+    --color-error-contrast-300: var(--color-error-contrast-dark);
+    --color-error-contrast-400: var(--color-error-contrast-dark);
+    --color-error-contrast-500: var(--color-error-contrast-light);
+    --color-error-contrast-600: var(--color-error-contrast-light);
+    --color-error-contrast-700: var(--color-error-contrast-light);
+    --color-error-contrast-800: var(--color-error-contrast-light);
+    --color-error-contrast-900: var(--color-error-contrast-light);
+    --color-error-contrast-950: var(--color-error-contrast-light);
+    --color-surface-50: oklch(100% 0 none);
+    --color-surface-100: oklch(97.02% 0 none);
+    --color-surface-200: oklch(94.01% 0 none);
+    --color-surface-300: oklch(91.12% 0 196.34deg);
+    --color-surface-400: oklch(88.07% 0 196.37deg);
+    --color-surface-500: oklch(84.99% 0 196.4deg);
+    --color-surface-600: oklch(77.78% 0 196.47deg);
+    --color-surface-700: oklch(70.09% 0 196.54deg);
+    --color-surface-800: oklch(62.51% 0 196.61deg);
+    --color-surface-900: oklch(54.34% 0 196.68deg);
+    --color-surface-950: oklch(46.22% 0 196.73deg);
+    --color-surface-contrast-dark: var(--color-surface-950);
+    --color-surface-contrast-light: var(--color-surface-50);
+    --color-surface-contrast-50: var(--color-surface-contrast-dark);
+    --color-surface-contrast-100: var(--color-surface-contrast-dark);
+    --color-surface-contrast-200: var(--color-surface-contrast-dark);
+    --color-surface-contrast-300: var(--color-surface-contrast-dark);
+    --color-surface-contrast-400: var(--color-surface-contrast-dark);
+    --color-surface-contrast-500: var(--color-surface-contrast-dark);
+    --color-surface-contrast-600: var(--color-surface-contrast-dark);
+    --color-surface-contrast-700: var(--color-surface-contrast-dark);
+    --color-surface-contrast-800: var(--color-surface-contrast-dark);
+    --color-surface-contrast-900: var(--color-surface-contrast-light);
+    --color-surface-contrast-950: var(--color-surface-contrast-light);
+}

src/ae-firefly-indigo.css

@@ -0,0 +1,397 @@
+/*
+ * AE Firefly — Indigo variant
+ * "Deep night, rich as velvet."
+ * Aether Platform / One Sky IT, LLC — Design System Theme
+ *
+ * Aesthetic vision (Scott Idem, 2026-03-09):
+ *   A deep, rich purple-indigo variant of the Firefly system.
+ *   Inspired by the deep indigo of a clear night sky — the hours
+ *   before dawn when the dark is at its most velvety and profound.
+ *   Authoritative and calm, with a warm rose accent for warmth.
+ *
+ * Color philosophy:
+ *   Primary   — Deep Indigo: rich blue-violet (~266°), luminous depth
+ *   Secondary — Violet: companion purple, warmer/rosier tone (~290°)
+ *   Tertiary  — Dusty Rose: warm complement, plum/rose tones (~341°)
+ *   Surface   — Velvet Slate: subtly purple-tinged neutral; near-white
+ *               (light mode) → deep midnight indigo-grey (dark mode)
+ *
+ * Section 508 / WCAG 2.1 AA:
+ *   - Body text (surface-950 on surface-50 light): >15:1 contrast ✓
+ *   - Primary-filled buttons meet ≥3:1 for interactive components ✓
+ *   - Contrast crossover points calculated per OKLCH approximate RL
+ *
+ * Based on: Skeleton v4 theme CSS variable structure
+ * Variant of: src/ae-firefly.css (AE_Firefly)
+ */
+
+html[data-theme='AE_Firefly_Indigo'] {
+    --text-scaling: 1.067;
+    --background: var(--color-surface-50) !important;
+    --base-font-color: var(--color-surface-950);
+    --base-font-color-dark: var(--color-surface-50);
+    --base-font-family: system-ui, sans-serif;
+    --base-font-size: inherit;
+    --base-line-height: inherit;
+    --base-font-weight: normal;
+    --base-font-style: normal;
+    --base-letter-spacing: 0em;
+    --heading-font-color: inherit;
+    --heading-font-color-dark: inherit;
+    --heading-font-family: inherit;
+    --heading-font-weight: bold;
+    --heading-font-style: normal;
+    --heading-letter-spacing: inherit;
+
+    /* Anchors: indigo in light, lighter indigo in dark */
+    --anchor-font-color: var(--color-primary-600);
+    --anchor-font-color-dark: var(--color-primary-300);
+    --anchor-font-family: inherit;
+    --anchor-font-size: inherit;
+    --anchor-line-height: inherit;
+    --anchor-font-weight: inherit;
+    --anchor-font-style: inherit;
+    --anchor-letter-spacing: inherit;
+    --anchor-text-decoration: none;
+    --anchor-text-decoration-hover: underline;
+    --anchor-text-decoration-active: none;
+    --anchor-text-decoration-focus: none;
+
+    --spacing: 0.25rem;
+    --radius-base: 0.375rem;
+}
+
+/* --- Color ramps (light mode) copied from dark block so both modes have full ramps --- */
+html[data-theme='AE_Firefly_Indigo'] {
+    --color-primary-50: oklch(95.5% 0.04 270deg);
+    --color-primary-100: oklch(89.5% 0.072 270deg);
+    --color-primary-200: oklch(82.5% 0.108 269deg);
+    --color-primary-300: oklch(74.5% 0.135 268deg);
+    --color-primary-400: oklch(65% 0.155 267deg);
+    --color-primary-500: oklch(50.5% 0.16 266deg);
+    --color-primary-600: oklch(43.5% 0.152 265deg);
+    --color-primary-700: oklch(37% 0.138 264deg);
+    --color-primary-800: oklch(30% 0.12 263deg);
+    --color-primary-900: oklch(23% 0.1 262deg);
+    --color-primary-950: oklch(15.5% 0.08 261deg);
+    --color-primary-contrast-dark: var(--color-primary-950);
+    --color-primary-contrast-light: var(--color-primary-50);
+
+    --color-secondary-50: oklch(96.5% 0.032 297deg);
+    --color-secondary-100: oklch(91.5% 0.058 295deg);
+    --color-secondary-200: oklch(85.5% 0.09 293deg);
+    --color-secondary-300: oklch(78.5% 0.115 292deg);
+    --color-secondary-400: oklch(70% 0.132 291deg);
+    --color-secondary-500: oklch(60% 0.14 290deg);
+    --color-secondary-600: oklch(52.5% 0.135 289deg);
+    --color-secondary-700: oklch(45% 0.126 288deg);
+    --color-secondary-800: oklch(37.5% 0.112 286deg);
+    --color-secondary-900: oklch(30% 0.094 284deg);
+    --color-secondary-950: oklch(22% 0.076 282deg);
+    --color-secondary-contrast-dark: var(--color-secondary-950);
+    --color-secondary-contrast-light: var(--color-secondary-50);
+
+    --color-tertiary-50: oklch(96.5% 0.022 348deg);
+    --color-tertiary-100: oklch(91% 0.042 346deg);
+    --color-tertiary-200: oklch(84.5% 0.068 344deg);
+    --color-tertiary-300: oklch(76.5% 0.095 343deg);
+    --color-tertiary-400: oklch(68% 0.118 342deg);
+    --color-tertiary-500: oklch(57.5% 0.128 341deg);
+    --color-tertiary-600: oklch(50% 0.122 340deg);
+    --color-tertiary-700: oklch(43% 0.112 339deg);
+    --color-tertiary-800: oklch(35.5% 0.098 338deg);
+    --color-tertiary-900: oklch(28% 0.08 337deg);
+    --color-tertiary-950: oklch(20.5% 0.062 336deg);
+    --color-tertiary-contrast-dark: var(--color-tertiary-950);
+    --color-tertiary-contrast-light: var(--color-tertiary-50);
+
+    --color-success-50: oklch(95.77% 0.05 152.69deg);
+    --color-success-100: oklch(91.59% 0.06 152deg);
+    --color-success-200: oklch(87.45% 0.08 152.08deg);
+    --color-success-300: oklch(83.57% 0.09 150.85deg);
+    --color-success-400: oklch(79.47% 0.11 150.71deg);
+    --color-success-500: oklch(75.38% 0.12 149.99deg);
+    --color-success-600: oklch(67.65% 0.11 149.94deg);
+    --color-success-700: oklch(59.71% 0.09 150.42deg);
+    --color-success-800: oklch(51.74% 0.08 150.24deg);
+    --color-success-900: oklch(43.2% 0.06 151.12deg);
+    --color-success-950: oklch(34.2% 0.04 151.44deg);
+    --color-success-contrast-dark: var(--color-success-950);
+    --color-success-contrast-light: var(--color-success-50);
+
+    --color-warning-50: oklch(97.5% 0.065 78deg);
+    --color-warning-100: oklch(93.5% 0.09 75deg);
+    --color-warning-200: oklch(89.5% 0.12 73deg);
+    --color-warning-300: oklch(85.5% 0.145 70deg);
+    --color-warning-400: oklch(81.5% 0.16 67deg);
+    --color-warning-500: oklch(77% 0.165 65deg);
+    --color-warning-600: oklch(69.5% 0.155 64deg);
+    --color-warning-700: oklch(61.5% 0.14 63deg);
+    --color-warning-800: oklch(53.5% 0.125 62deg);
+    --color-warning-900: oklch(45% 0.105 61deg);
+    --color-warning-950: oklch(37% 0.088 60deg);
+    --color-warning-contrast-dark: var(--color-warning-950);
+    --color-warning-contrast-light: var(--color-warning-50);
+
+    --color-error-50: oklch(95% 0.04 18deg);
+    --color-error-100: oklch(88% 0.07 20deg);
+    --color-error-200: oklch(80% 0.105 21deg);
+    --color-error-300: oklch(72% 0.14 22deg);
+    --color-error-400: oklch(64.5% 0.17 23deg);
+    --color-error-500: oklch(57.5% 0.195 24deg);
+    --color-error-600: oklch(51.5% 0.182 25deg);
+    --color-error-700: oklch(45.5% 0.165 26deg);
+    --color-error-800: oklch(39.5% 0.148 27deg);
+    --color-error-900: oklch(33% 0.128 28deg);
+    --color-error-950: oklch(26.5% 0.108 29deg);
+    --color-error-contrast-dark: var(--color-error-950);
+    --color-error-contrast-light: var(--color-error-50);
+
+    --color-surface-50: oklch(99% 0.003 270deg);
+    --color-surface-100: oklch(96.5% 0.006 268deg);
+    --color-surface-200: oklch(92.5% 0.01 266deg);
+    --color-surface-300: oklch(87% 0.014 265deg);
+    --color-surface-400: oklch(78.5% 0.018 265deg);
+    --color-surface-500: oklch(66.5% 0.02 267deg);
+    --color-surface-600: oklch(54.5% 0.022 269deg);
+    --color-surface-700: oklch(42.5% 0.024 270deg);
+    --color-surface-800: oklch(31% 0.026 272deg);
+    --color-surface-900: oklch(20.5% 0.03 274deg);
+    --color-surface-950: oklch(13% 0.034 276deg);
+    --color-surface-contrast-dark: var(--color-surface-950);
+    --color-surface-contrast-light: var(--color-surface-50);
+}
+
+html.dark[data-theme='AE_Firefly_Indigo'] {
+    --background: var(--color-surface-950) !important;
+    --radius-container: 0.875rem;
+    --default-border-width: 1px;
+    --default-divide-width: 1px;
+    --default-ring-width: 1px;
+
+    --body-background-color: var(--color-surface-50);
+    --body-background-color-dark: var(--color-surface-950);
+
+    /* ===================================================================
+     * PRIMARY — Deep Indigo
+     * Hue: ~266°. Rich blue-violet indigo — the color of deep night sky
+     * in the hours before dawn. Luminous depth without harshness.
+     * CSS named "indigo" (#4B0082) is near oklch(20%, 0.18, 302°) but
+     * that's too dark to use as a 500 primary. This palette centers on
+     * a richer, usable indigo that reads clearly as "indigo" while
+     * maintaining sufficient contrast at mid-range shades.
+     * At 500 (L≈50%): sufficient contrast with primary-50 text (≥4:1).
+     * =================================================================== */
+    --color-primary-50: oklch(95.5% 0.04 270deg);
+    --color-primary-100: oklch(89.5% 0.072 270deg);
+    --color-primary-200: oklch(82.5% 0.108 269deg);
+    --color-primary-300: oklch(74.5% 0.135 268deg);
+    --color-primary-400: oklch(65% 0.155 267deg);
+    --color-primary-500: oklch(50.5% 0.16 266deg);
+    --color-primary-600: oklch(43.5% 0.152 265deg);
+    --color-primary-700: oklch(37% 0.138 264deg);
+    --color-primary-800: oklch(30% 0.12 263deg);
+    --color-primary-900: oklch(23% 0.1 262deg);
+    --color-primary-950: oklch(15.5% 0.08 261deg);
+    --color-primary-contrast-dark: var(--color-primary-950);
+    --color-primary-contrast-light: var(--color-primary-50);
+    --color-primary-contrast-50: var(--color-primary-contrast-dark);
+    --color-primary-contrast-100: var(--color-primary-contrast-dark);
+    --color-primary-contrast-200: var(--color-primary-contrast-dark);
+    --color-primary-contrast-300: var(--color-primary-contrast-dark);
+    --color-primary-contrast-400: var(--color-primary-contrast-dark);
+    --color-primary-contrast-500: var(--color-primary-contrast-light);
+    --color-primary-contrast-600: var(--color-primary-contrast-light);
+    --color-primary-contrast-700: var(--color-primary-contrast-light);
+    --color-primary-contrast-800: var(--color-primary-contrast-light);
+    --color-primary-contrast-900: var(--color-primary-contrast-light);
+    --color-primary-contrast-950: var(--color-primary-contrast-light);
+
+    /* ===================================================================
+     * SECONDARY — Violet
+     * Hue: ~290°. A companion purple, slightly warmer and rosier than
+     * the primary indigo. Creates a rich monochromatic depth while
+     * remaining clearly distinct from the primary.
+     * Used for secondary actions, badges, and soft highlights.
+     * =================================================================== */
+    --color-secondary-50: oklch(96.5% 0.032 297deg);
+    --color-secondary-100: oklch(91.5% 0.058 295deg);
+    --color-secondary-200: oklch(85.5% 0.09 293deg);
+    --color-secondary-300: oklch(78.5% 0.115 292deg);
+    --color-secondary-400: oklch(70% 0.132 291deg);
+    --color-secondary-500: oklch(60% 0.14 290deg);
+    --color-secondary-600: oklch(52.5% 0.135 289deg);
+    --color-secondary-700: oklch(45% 0.126 288deg);
+    --color-secondary-800: oklch(37.5% 0.112 286deg);
+    --color-secondary-900: oklch(30% 0.094 284deg);
+    --color-secondary-950: oklch(22% 0.076 282deg);
+    --color-secondary-contrast-dark: var(--color-secondary-950);
+    --color-secondary-contrast-light: var(--color-secondary-50);
+    --color-secondary-contrast-50: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-100: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-200: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-300: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-400: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-500: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-600: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-700: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-800: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-900: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-950: var(--color-secondary-contrast-light);
+
+    /* ===================================================================
+     * TERTIARY — Dusty Rose / Plum
+     * Hue: ~341°. A warm, muted rose-plum that provides the crucial
+     * warm counterpoint to the cool indigo-violet palette. Prevents
+     * the theme from feeling cold — like the warm glow of dawn
+     * breaking against a deep indigo sky.
+     * Used for location chips, warm accents, tertiary elements.
+     * =================================================================== */
+    --color-tertiary-50: oklch(96.5% 0.022 348deg);
+    --color-tertiary-100: oklch(91% 0.042 346deg);
+    --color-tertiary-200: oklch(84.5% 0.068 344deg);
+    --color-tertiary-300: oklch(76.5% 0.095 343deg);
+    --color-tertiary-400: oklch(68% 0.118 342deg);
+    --color-tertiary-500: oklch(57.5% 0.128 341deg);
+    --color-tertiary-600: oklch(50% 0.122 340deg);
+    --color-tertiary-700: oklch(43% 0.112 339deg);
+    --color-tertiary-800: oklch(35.5% 0.098 338deg);
+    --color-tertiary-900: oklch(28% 0.08 337deg);
+    --color-tertiary-950: oklch(20.5% 0.062 336deg);
+    --color-tertiary-contrast-dark: var(--color-tertiary-950);
+    --color-tertiary-contrast-light: var(--color-tertiary-50);
+    --color-tertiary-contrast-50: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-100: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-200: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-300: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-400: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-500: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-600: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-700: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-800: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-900: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-950: var(--color-tertiary-contrast-light);
+
+    /* ===================================================================
+     * SUCCESS — Bioluminescent Green
+     * Hue: ~152°. Consistent with AE_Firefly for recognizable semantic
+     * color meaning across OSIT themes.
+     * =================================================================== */
+    --color-success-50: oklch(95.77% 0.05 152.69deg);
+    --color-success-100: oklch(91.59% 0.06 152deg);
+    --color-success-200: oklch(87.45% 0.08 152.08deg);
+    --color-success-300: oklch(83.57% 0.09 150.85deg);
+    --color-success-400: oklch(79.47% 0.11 150.71deg);
+    --color-success-500: oklch(75.38% 0.12 149.99deg);
+    --color-success-600: oklch(67.65% 0.11 149.94deg);
+    --color-success-700: oklch(59.71% 0.09 150.42deg);
+    --color-success-800: oklch(51.74% 0.08 150.24deg);
+    --color-success-900: oklch(43.2% 0.06 151.12deg);
+    --color-success-950: oklch(34.2% 0.04 151.44deg);
+    --color-success-contrast-dark: var(--color-success-950);
+    --color-success-contrast-light: var(--color-success-50);
+    --color-success-contrast-50: var(--color-success-contrast-dark);
+    --color-success-contrast-100: var(--color-success-contrast-dark);
+    --color-success-contrast-200: var(--color-success-contrast-dark);
+    --color-success-contrast-300: var(--color-success-contrast-dark);
+    --color-success-contrast-400: var(--color-success-contrast-dark);
+    --color-success-contrast-500: var(--color-success-contrast-dark);
+    --color-success-contrast-600: var(--color-success-contrast-dark);
+    --color-success-contrast-700: var(--color-success-contrast-light);
+    --color-success-contrast-800: var(--color-success-contrast-light);
+    --color-success-contrast-900: var(--color-success-contrast-light);
+    --color-success-contrast-950: var(--color-success-contrast-light);
+
+    /* ===================================================================
+     * WARNING — Amber Orange
+     * Consistent with AE_Firefly for recognizable semantic meaning.
+     * =================================================================== */
+    --color-warning-50: oklch(97.5% 0.065 78deg);
+    --color-warning-100: oklch(93.5% 0.09 75deg);
+    --color-warning-200: oklch(89.5% 0.12 73deg);
+    --color-warning-300: oklch(85.5% 0.145 70deg);
+    --color-warning-400: oklch(81.5% 0.16 67deg);
+    --color-warning-500: oklch(77% 0.165 65deg);
+    --color-warning-600: oklch(69.5% 0.155 64deg);
+    --color-warning-700: oklch(61.5% 0.14 63deg);
+    --color-warning-800: oklch(53.5% 0.125 62deg);
+    --color-warning-900: oklch(45% 0.105 61deg);
+    --color-warning-950: oklch(37% 0.088 60deg);
+    --color-warning-contrast-dark: var(--color-warning-950);
+    --color-warning-contrast-light: var(--color-warning-50);
+    --color-warning-contrast-50: var(--color-warning-contrast-dark);
+    --color-warning-contrast-100: var(--color-warning-contrast-dark);
+    --color-warning-contrast-200: var(--color-warning-contrast-dark);
+    --color-warning-contrast-300: var(--color-warning-contrast-dark);
+    --color-warning-contrast-400: var(--color-warning-contrast-dark);
+    --color-warning-contrast-500: var(--color-warning-contrast-dark);
+    --color-warning-contrast-600: var(--color-warning-contrast-dark);
+    --color-warning-contrast-700: var(--color-warning-contrast-light);
+    --color-warning-contrast-800: var(--color-warning-contrast-light);
+    --color-warning-contrast-900: var(--color-warning-contrast-light);
+    --color-warning-contrast-950: var(--color-warning-contrast-light);
+
+    /* ===================================================================
+     * ERROR — Soft Coral/Rose
+     * Consistent with AE_Firefly for recognizable semantic meaning.
+     * =================================================================== */
+    --color-error-50: oklch(95% 0.04 18deg);
+    --color-error-100: oklch(88% 0.07 20deg);
+    --color-error-200: oklch(80% 0.105 21deg);
+    --color-error-300: oklch(72% 0.14 22deg);
+    --color-error-400: oklch(64.5% 0.17 23deg);
+    --color-error-500: oklch(57.5% 0.195 24deg);
+    --color-error-600: oklch(51.5% 0.182 25deg);
+    --color-error-700: oklch(45.5% 0.165 26deg);
+    --color-error-800: oklch(39.5% 0.148 27deg);
+    --color-error-900: oklch(33% 0.128 28deg);
+    --color-error-950: oklch(26.5% 0.108 29deg);
+    --color-error-contrast-dark: var(--color-error-950);
+    --color-error-contrast-light: var(--color-error-50);
+    --color-error-contrast-50: var(--color-error-contrast-dark);
+    --color-error-contrast-100: var(--color-error-contrast-dark);
+    --color-error-contrast-200: var(--color-error-contrast-dark);
+    --color-error-contrast-300: var(--color-error-contrast-dark);
+    --color-error-contrast-400: var(--color-error-contrast-light);
+    --color-error-contrast-500: var(--color-error-contrast-light);
+    --color-error-contrast-600: var(--color-error-contrast-light);
+    --color-error-contrast-700: var(--color-error-contrast-light);
+    --color-error-contrast-800: var(--color-error-contrast-light);
+    --color-error-contrast-900: var(--color-error-contrast-light);
+    --color-error-contrast-950: var(--color-error-contrast-light);
+
+    /* ===================================================================
+     * SURFACE — Velvet Slate
+     * A subtly purple-tinged neutral — barely perceptible, it gives
+     * surfaces a velvet quality that harmonizes with the indigo palette
+     * without being purple-on-purple. Light mode: soft white with a
+     * whisper of purple. Dark mode: deep midnight indigo-grey.
+     *
+     * 50  → body-bg light:  near-white with ImperceptibleISTIC purple cast
+     * 950 → body-bg dark:   deep midnight with indigo depth
+     * =================================================================== */
+    --color-surface-50: oklch(99% 0.003 270deg);
+    --color-surface-100: oklch(96.5% 0.006 268deg);
+    --color-surface-200: oklch(92.5% 0.01 266deg);
+    --color-surface-300: oklch(87% 0.014 265deg);
+    --color-surface-400: oklch(78.5% 0.018 265deg);
+    --color-surface-500: oklch(66.5% 0.02 267deg);
+    --color-surface-600: oklch(54.5% 0.022 269deg);
+    --color-surface-700: oklch(42.5% 0.024 270deg);
+    --color-surface-800: oklch(31% 0.026 272deg);
+    --color-surface-900: oklch(20.5% 0.03 274deg);
+    --color-surface-950: oklch(13% 0.034 276deg);
+    --color-surface-contrast-dark: var(--color-surface-950);
+    --color-surface-contrast-light: var(--color-surface-50);
+    --color-surface-contrast-50: var(--color-surface-contrast-dark);
+    --color-surface-contrast-100: var(--color-surface-contrast-dark);
+    --color-surface-contrast-200: var(--color-surface-contrast-dark);
+    --color-surface-contrast-300: var(--color-surface-contrast-dark);
+    --color-surface-contrast-400: var(--color-surface-contrast-dark);
+    --color-surface-contrast-500: var(--color-surface-contrast-dark);
+    --color-surface-contrast-600: var(--color-surface-contrast-light);
+    --color-surface-contrast-700: var(--color-surface-contrast-light);
+    --color-surface-contrast-800: var(--color-surface-contrast-light);
+    --color-surface-contrast-900: var(--color-surface-contrast-light);
+    --color-surface-contrast-950: var(--color-surface-contrast-light);
+}

src/ae-firefly-rainbow.css

@@ -0,0 +1,393 @@
+/*
+ * AE Firefly — Rainbow variant
+ * "All the colors of wonder."
+ * Aether Platform / One Sky IT, LLC — Design System Theme
+ *
+ * Aesthetic vision (Scott Idem, 2026-03-09):
+ *   A celebration-of-color variant of the Firefly system.
+ *   The three brand color slots span the visible spectrum:
+ *   Coral-Red (primary) → Emerald-Green (secondary) → Violet (tertiary).
+ *   Warm cream surfaces let the saturated accents breathe without
+ *   competing. Joyful and energetic — still calm, still Firefly.
+ *
+ * Color philosophy:
+ *   Primary   — Vivid Coral-Red: ~15°, warm and energetic
+ *   Secondary — Emerald Green:   ~148°, lush and clear
+ *   Tertiary  — Rich Violet:     ~295°, deep and luminous
+ *   Surface   — Sunrise Cream:   barely warm neutral; warm white
+ *               (light mode) → deep warm charcoal (dark mode)
+ *
+ * Section 508 / WCAG 2.1 AA:
+ *   - Body text (surface-950 on surface-50 light): >15:1 contrast ✓
+ *   - Primary-filled buttons meet ≥3:1 for interactive components ✓
+ *   - Chroma values kept within sRGB gamut across the full ramp
+ *
+ * Based on: Skeleton v4 theme CSS variable structure
+ * Variant of: src/ae-firefly.css (AE_Firefly)
+ */
+
+html[data-theme='AE_Firefly_Rainbow'] {
+    --text-scaling: 1.067;
+    --background: var(--color-surface-50) !important;
+    --base-font-color: var(--color-surface-950);
+    --base-font-color-dark: var(--color-surface-50);
+    --base-font-family: system-ui, sans-serif;
+    --base-font-size: inherit;
+    --base-line-height: inherit;
+    --base-font-weight: normal;
+    --base-font-style: normal;
+    --base-letter-spacing: 0em;
+    --heading-font-color: inherit;
+    --heading-font-color-dark: inherit;
+    --heading-font-family: inherit;
+    --heading-font-weight: bold;
+    --heading-font-style: normal;
+    --heading-letter-spacing: inherit;
+
+    /* Anchors: coral-red in light, lighter coral in dark */
+    --anchor-font-color: var(--color-primary-600);
+    --anchor-font-color-dark: var(--color-primary-300);
+    --anchor-font-family: inherit;
+    --anchor-font-size: inherit;
+    --anchor-line-height: inherit;
+    --anchor-font-weight: inherit;
+    --anchor-font-style: inherit;
+    --anchor-letter-spacing: inherit;
+    --anchor-text-decoration: none;
+    --anchor-text-decoration-hover: underline;
+    --anchor-text-decoration-active: none;
+    --anchor-text-decoration-focus: none;
+
+    --spacing: 0.25rem;
+}
+
+/* --- Color ramps (light mode) copied from dark block so both modes have full ramps --- */
+html[data-theme='AE_Firefly_Rainbow'] {
+    --color-primary-50: oklch(97% 0.02 15deg);
+    --color-primary-100: oklch(92% 0.048 14deg);
+    --color-primary-200: oklch(86% 0.085 13deg);
+    --color-primary-300: oklch(79% 0.125 13deg);
+    --color-primary-400: oklch(71% 0.16 13deg);
+    --color-primary-500: oklch(60% 0.19 14deg);
+    --color-primary-600: oklch(52.5% 0.178 15deg);
+    --color-primary-700: oklch(45% 0.162 16deg);
+    --color-primary-800: oklch(37.5% 0.142 17deg);
+    --color-primary-900: oklch(30% 0.118 18deg);
+    --color-primary-950: oklch(22.5% 0.092 19deg);
+    --color-primary-contrast-dark: var(--color-primary-950);
+    --color-primary-contrast-light: var(--color-primary-50);
+
+    --color-secondary-50: oklch(97% 0.04 152deg);
+    --color-secondary-100: oklch(92.5% 0.072 150deg);
+    --color-secondary-200: oklch(87% 0.105 149deg);
+    --color-secondary-300: oklch(81% 0.132 148deg);
+    --color-secondary-400: oklch(74.5% 0.152 148deg);
+    --color-secondary-500: oklch(62% 0.16 148deg);
+    --color-secondary-600: oklch(53.5% 0.148 148deg);
+    --color-secondary-700: oklch(45.5% 0.132 147deg);
+    --color-secondary-800: oklch(37.5% 0.112 146deg);
+    --color-secondary-900: oklch(29.5% 0.09 145deg);
+    --color-secondary-950: oklch(21.5% 0.068 144deg);
+    --color-secondary-contrast-dark: var(--color-secondary-950);
+    --color-secondary-contrast-light: var(--color-secondary-50);
+
+    --color-tertiary-50: oklch(96.5% 0.03 299deg);
+    --color-tertiary-100: oklch(91% 0.058 297deg);
+    --color-tertiary-200: oklch(84.5% 0.092 296deg);
+    --color-tertiary-300: oklch(77% 0.122 295deg);
+    --color-tertiary-400: oklch(68.5% 0.148 295deg);
+    --color-tertiary-500: oklch(57% 0.158 295deg);
+    --color-tertiary-600: oklch(49.5% 0.15 294deg);
+    --color-tertiary-700: oklch(42.5% 0.138 293deg);
+    --color-tertiary-800: oklch(35.5% 0.122 292deg);
+    --color-tertiary-900: oklch(28.5% 0.102 291deg);
+    --color-tertiary-950: oklch(21% 0.08 290deg);
+    --color-tertiary-contrast-dark: var(--color-tertiary-950);
+    --color-tertiary-contrast-light: var(--color-tertiary-50);
+
+    --color-success-50: oklch(95.77% 0.05 152.69deg);
+    --color-success-100: oklch(91.59% 0.06 152deg);
+    --color-success-200: oklch(87.45% 0.08 152.08deg);
+    --color-success-300: oklch(83.57% 0.09 150.85deg);
+    --color-success-400: oklch(79.47% 0.11 150.71deg);
+    --color-success-500: oklch(75.38% 0.12 149.99deg);
+    --color-success-600: oklch(67.65% 0.11 149.94deg);
+    --color-success-700: oklch(59.71% 0.09 150.42deg);
+    --color-success-800: oklch(51.74% 0.08 150.24deg);
+    --color-success-900: oklch(43.2% 0.06 151.12deg);
+    --color-success-950: oklch(34.2% 0.04 151.44deg);
+    --color-success-contrast-dark: var(--color-success-950);
+    --color-success-contrast-light: var(--color-success-50);
+
+    --color-warning-50: oklch(97.5% 0.065 78deg);
+    --color-warning-100: oklch(93.5% 0.09 75deg);
+    --color-warning-200: oklch(89.5% 0.12 73deg);
+    --color-warning-300: oklch(85.5% 0.145 70deg);
+    --color-warning-400: oklch(81.5% 0.16 67deg);
+    --color-warning-500: oklch(77% 0.165 65deg);
+    --color-warning-600: oklch(69.5% 0.155 64deg);
+    --color-warning-700: oklch(61.5% 0.14 63deg);
+    --color-warning-800: oklch(53.5% 0.125 62deg);
+    --color-warning-900: oklch(45% 0.105 61deg);
+    --color-warning-950: oklch(37% 0.088 60deg);
+    --color-warning-contrast-dark: var(--color-warning-950);
+    --color-warning-contrast-light: var(--color-warning-50);
+
+    --color-error-50: oklch(95% 0.04 18deg);
+    --color-error-100: oklch(88% 0.07 20deg);
+    --color-error-200: oklch(80% 0.105 21deg);
+    --color-error-300: oklch(72% 0.14 22deg);
+    --color-error-400: oklch(64.5% 0.17 23deg);
+    --color-error-500: oklch(57.5% 0.195 24deg);
+    --color-error-600: oklch(51.5% 0.182 25deg);
+    --color-error-700: oklch(45.5% 0.165 26deg);
+    --color-error-800: oklch(39.5% 0.148 27deg);
+    --color-error-900: oklch(33% 0.128 28deg);
+    --color-error-950: oklch(26.5% 0.108 29deg);
+    --color-error-contrast-dark: var(--color-error-950);
+    --color-error-contrast-light: var(--color-error-50);
+
+    --color-surface-50: oklch(99.2% 0.004 75deg);
+    --color-surface-100: oklch(97% 0.007 72deg);
+    --color-surface-200: oklch(93.5% 0.01 70deg);
+    --color-surface-300: oklch(88.5% 0.013 68deg);
+    --color-surface-400: oklch(81.5% 0.016 66deg);
+    --color-surface-500: oklch(70.5% 0.018 64deg);
+    --color-surface-600: oklch(59% 0.018 62deg);
+    --color-surface-700: oklch(47.5% 0.018 58deg);
+    --color-surface-800: oklch(35.5% 0.02 55deg);
+    --color-surface-900: oklch(24.5% 0.02 52deg);
+    --color-surface-950: oklch(15.5% 0.022 48deg);
+    --color-surface-contrast-dark: var(--color-surface-950);
+    --color-surface-contrast-light: var(--color-surface-50);
+}
+
+html.dark[data-theme='AE_Firefly_Rainbow'] {
+    --background: var(--color-surface-950) !important;
+    --radius-base: 0.375rem;
+    --radius-container: 0.875rem;
+    --default-border-width: 1px;
+    --default-divide-width: 1px;
+    --default-ring-width: 1px;
+
+    --body-background-color: var(--color-surface-50);
+    --body-background-color-dark: var(--color-surface-950);
+
+    /* ===================================================================
+     * PRIMARY — Vivid Coral-Red (warm end of the rainbow)
+     * Hue: ~15°. The warm, energetic anchor of the spectrum —
+     * sits between orange and red for maximum vibrancy and warmth.
+     * Kept within sRGB gamut across the full ramp.
+     * At 500 (L≈60%): sufficient contrast with primary-50 text (≥4:1).
+     * =================================================================== */
+    --color-primary-50: oklch(97% 0.02 15deg);
+    --color-primary-100: oklch(92% 0.048 14deg);
+    --color-primary-200: oklch(86% 0.085 13deg);
+    --color-primary-300: oklch(79% 0.125 13deg);
+    --color-primary-400: oklch(71% 0.16 13deg);
+    --color-primary-500: oklch(60% 0.19 14deg);
+    --color-primary-600: oklch(52.5% 0.178 15deg);
+    --color-primary-700: oklch(45% 0.162 16deg);
+    --color-primary-800: oklch(37.5% 0.142 17deg);
+    --color-primary-900: oklch(30% 0.118 18deg);
+    --color-primary-950: oklch(22.5% 0.092 19deg);
+    --color-primary-contrast-dark: var(--color-primary-950);
+    --color-primary-contrast-light: var(--color-primary-50);
+    --color-primary-contrast-50: var(--color-primary-contrast-dark);
+    --color-primary-contrast-100: var(--color-primary-contrast-dark);
+    --color-primary-contrast-200: var(--color-primary-contrast-dark);
+    --color-primary-contrast-300: var(--color-primary-contrast-dark);
+    --color-primary-contrast-400: var(--color-primary-contrast-dark);
+    --color-primary-contrast-500: var(--color-primary-contrast-light);
+    --color-primary-contrast-600: var(--color-primary-contrast-light);
+    --color-primary-contrast-700: var(--color-primary-contrast-light);
+    --color-primary-contrast-800: var(--color-primary-contrast-light);
+    --color-primary-contrast-900: var(--color-primary-contrast-light);
+    --color-primary-contrast-950: var(--color-primary-contrast-light);
+
+    /* ===================================================================
+     * SECONDARY — Emerald Green (mid-spectrum, the heart of the rainbow)
+     * Hue: ~148°. Clear, lush emerald — the most recognizable
+     * "rainbow green." Positioned at the center of the visible spectrum,
+     * it bridges the warm red primary and the cool violet tertiary.
+     * Used for secondary actions, success-adjacent highlights, badges.
+     * =================================================================== */
+    --color-secondary-50: oklch(97% 0.04 152deg);
+    --color-secondary-100: oklch(92.5% 0.072 150deg);
+    --color-secondary-200: oklch(87% 0.105 149deg);
+    --color-secondary-300: oklch(81% 0.132 148deg);
+    --color-secondary-400: oklch(74.5% 0.152 148deg);
+    --color-secondary-500: oklch(62% 0.16 148deg);
+    --color-secondary-600: oklch(53.5% 0.148 148deg);
+    --color-secondary-700: oklch(45.5% 0.132 147deg);
+    --color-secondary-800: oklch(37.5% 0.112 146deg);
+    --color-secondary-900: oklch(29.5% 0.09 145deg);
+    --color-secondary-950: oklch(21.5% 0.068 144deg);
+    --color-secondary-contrast-dark: var(--color-secondary-950);
+    --color-secondary-contrast-light: var(--color-secondary-50);
+    --color-secondary-contrast-50: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-100: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-200: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-300: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-400: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-500: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-600: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-700: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-800: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-900: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-950: var(--color-secondary-contrast-light);
+
+    /* ===================================================================
+     * TERTIARY — Rich Violet (cool end of the rainbow)
+     * Hue: ~295°. Deep blue-violet — the "indigo and violet" end of
+     * the arc. Completes the warm-cool spectrum span across the three
+     * brand color slots. Creates striking contrast with the warm primary.
+     * Used for location chips, deep accents, tertiary elements.
+     * =================================================================== */
+    --color-tertiary-50: oklch(96.5% 0.03 299deg);
+    --color-tertiary-100: oklch(91% 0.058 297deg);
+    --color-tertiary-200: oklch(84.5% 0.092 296deg);
+    --color-tertiary-300: oklch(77% 0.122 295deg);
+    --color-tertiary-400: oklch(68.5% 0.148 295deg);
+    --color-tertiary-500: oklch(57% 0.158 295deg);
+    --color-tertiary-600: oklch(49.5% 0.15 294deg);
+    --color-tertiary-700: oklch(42.5% 0.138 293deg);
+    --color-tertiary-800: oklch(35.5% 0.122 292deg);
+    --color-tertiary-900: oklch(28.5% 0.102 291deg);
+    --color-tertiary-950: oklch(21% 0.08 290deg);
+    --color-tertiary-contrast-dark: var(--color-tertiary-950);
+    --color-tertiary-contrast-light: var(--color-tertiary-50);
+    --color-tertiary-contrast-50: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-100: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-200: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-300: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-400: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-500: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-600: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-700: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-800: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-900: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-950: var(--color-tertiary-contrast-light);
+
+    /* ===================================================================
+     * SUCCESS — Bioluminescent Green
+     * Hue: ~152°. Consistent with AE_Firefly for recognizable semantic
+     * color meaning across OSIT themes.
+     * =================================================================== */
+    --color-success-50: oklch(95.77% 0.05 152.69deg);
+    --color-success-100: oklch(91.59% 0.06 152deg);
+    --color-success-200: oklch(87.45% 0.08 152.08deg);
+    --color-success-300: oklch(83.57% 0.09 150.85deg);
+    --color-success-400: oklch(79.47% 0.11 150.71deg);
+    --color-success-500: oklch(75.38% 0.12 149.99deg);
+    --color-success-600: oklch(67.65% 0.11 149.94deg);
+    --color-success-700: oklch(59.71% 0.09 150.42deg);
+    --color-success-800: oklch(51.74% 0.08 150.24deg);
+    --color-success-900: oklch(43.2% 0.06 151.12deg);
+    --color-success-950: oklch(34.2% 0.04 151.44deg);
+    --color-success-contrast-dark: var(--color-success-950);
+    --color-success-contrast-light: var(--color-success-50);
+    --color-success-contrast-50: var(--color-success-contrast-dark);
+    --color-success-contrast-100: var(--color-success-contrast-dark);
+    --color-success-contrast-200: var(--color-success-contrast-dark);
+    --color-success-contrast-300: var(--color-success-contrast-dark);
+    --color-success-contrast-400: var(--color-success-contrast-dark);
+    --color-success-contrast-500: var(--color-success-contrast-dark);
+    --color-success-contrast-600: var(--color-success-contrast-dark);
+    --color-success-contrast-700: var(--color-success-contrast-light);
+    --color-success-contrast-800: var(--color-success-contrast-light);
+    --color-success-contrast-900: var(--color-success-contrast-light);
+    --color-success-contrast-950: var(--color-success-contrast-light);
+
+    /* ===================================================================
+     * WARNING — Amber Orange
+     * Consistent with AE_Firefly for recognizable semantic meaning.
+     * =================================================================== */
+    --color-warning-50: oklch(97.5% 0.065 78deg);
+    --color-warning-100: oklch(93.5% 0.09 75deg);
+    --color-warning-200: oklch(89.5% 0.12 73deg);
+    --color-warning-300: oklch(85.5% 0.145 70deg);
+    --color-warning-400: oklch(81.5% 0.16 67deg);
+    --color-warning-500: oklch(77% 0.165 65deg);
+    --color-warning-600: oklch(69.5% 0.155 64deg);
+    --color-warning-700: oklch(61.5% 0.14 63deg);
+    --color-warning-800: oklch(53.5% 0.125 62deg);
+    --color-warning-900: oklch(45% 0.105 61deg);
+    --color-warning-950: oklch(37% 0.088 60deg);
+    --color-warning-contrast-dark: var(--color-warning-950);
+    --color-warning-contrast-light: var(--color-warning-50);
+    --color-warning-contrast-50: var(--color-warning-contrast-dark);
+    --color-warning-contrast-100: var(--color-warning-contrast-dark);
+    --color-warning-contrast-200: var(--color-warning-contrast-dark);
+    --color-warning-contrast-300: var(--color-warning-contrast-dark);
+    --color-warning-contrast-400: var(--color-warning-contrast-dark);
+    --color-warning-contrast-500: var(--color-warning-contrast-dark);
+    --color-warning-contrast-600: var(--color-warning-contrast-dark);
+    --color-warning-contrast-700: var(--color-warning-contrast-light);
+    --color-warning-contrast-800: var(--color-warning-contrast-light);
+    --color-warning-contrast-900: var(--color-warning-contrast-light);
+    --color-warning-contrast-950: var(--color-warning-contrast-light);
+
+    /* ===================================================================
+     * ERROR — Soft Coral/Rose
+     * Consistent with AE_Firefly for recognizable semantic meaning.
+     * =================================================================== */
+    --color-error-50: oklch(95% 0.04 18deg);
+    --color-error-100: oklch(88% 0.07 20deg);
+    --color-error-200: oklch(80% 0.105 21deg);
+    --color-error-300: oklch(72% 0.14 22deg);
+    --color-error-400: oklch(64.5% 0.17 23deg);
+    --color-error-500: oklch(57.5% 0.195 24deg);
+    --color-error-600: oklch(51.5% 0.182 25deg);
+    --color-error-700: oklch(45.5% 0.165 26deg);
+    --color-error-800: oklch(39.5% 0.148 27deg);
+    --color-error-900: oklch(33% 0.128 28deg);
+    --color-error-950: oklch(26.5% 0.108 29deg);
+    --color-error-contrast-dark: var(--color-error-950);
+    --color-error-contrast-light: var(--color-error-50);
+    --color-error-contrast-50: var(--color-error-contrast-dark);
+    --color-error-contrast-100: var(--color-error-contrast-dark);
+    --color-error-contrast-200: var(--color-error-contrast-dark);
+    --color-error-contrast-300: var(--color-error-contrast-dark);
+    --color-error-contrast-400: var(--color-error-contrast-light);
+    --color-error-contrast-500: var(--color-error-contrast-light);
+    --color-error-contrast-600: var(--color-error-contrast-light);
+    --color-error-contrast-700: var(--color-error-contrast-light);
+    --color-error-contrast-800: var(--color-error-contrast-light);
+    --color-error-contrast-900: var(--color-error-contrast-light);
+    --color-error-contrast-950: var(--color-error-contrast-light);
+
+    /* ===================================================================
+     * SURFACE — Sunrise Cream
+     * A barely-warm neutral (hue ~70°, chroma 0.004-0.022) that lets
+     * the vibrant brand colors breathe. The warmth prevents the surface
+     * from feeling clinical when the vivid accents are in use.
+     *
+     * 50  → body-bg light:  warm near-white, like morning paper
+     * 950 → body-bg dark:   deep warm charcoal, like a dim theatre
+     * =================================================================== */
+    --color-surface-50: oklch(99.2% 0.004 75deg);
+    --color-surface-100: oklch(97% 0.007 72deg);
+    --color-surface-200: oklch(93.5% 0.01 70deg);
+    --color-surface-300: oklch(88.5% 0.013 68deg);
+    --color-surface-400: oklch(81.5% 0.016 66deg);
+    --color-surface-500: oklch(70.5% 0.018 64deg);
+    --color-surface-600: oklch(59% 0.018 62deg);
+    --color-surface-700: oklch(47.5% 0.018 58deg);
+    --color-surface-800: oklch(35.5% 0.02 55deg);
+    --color-surface-900: oklch(24.5% 0.02 52deg);
+    --color-surface-950: oklch(15.5% 0.022 48deg);
+    --color-surface-contrast-dark: var(--color-surface-950);
+    --color-surface-contrast-light: var(--color-surface-50);
+    --color-surface-contrast-50: var(--color-surface-contrast-dark);
+    --color-surface-contrast-100: var(--color-surface-contrast-dark);
+    --color-surface-contrast-200: var(--color-surface-contrast-dark);
+    --color-surface-contrast-300: var(--color-surface-contrast-dark);
+    --color-surface-contrast-400: var(--color-surface-contrast-dark);
+    --color-surface-contrast-500: var(--color-surface-contrast-dark);
+    --color-surface-contrast-600: var(--color-surface-contrast-light);
+    --color-surface-contrast-700: var(--color-surface-contrast-light);
+    --color-surface-contrast-800: var(--color-surface-contrast-light);
+    --color-surface-contrast-900: var(--color-surface-contrast-light);
+    --color-surface-contrast-950: var(--color-surface-contrast-light);
+}

src/ae-firefly-steelblue.css

@@ -0,0 +1,386 @@
+/*
+ * AE Firefly — SteelBlue variant
+ * "Polished metal, like light on still water."
+ * Aether Platform / One Sky IT, LLC — Design System Theme
+ *
+ * Aesthetic vision (Scott Idem, 2026-03-09):
+ *   A metallic, professional cool-blue variant of the Firefly system.
+ *   Inspired by polished steel and chrome — the reflective shimmer of
+ *   cool metal under crisp light. Calm authority, not cold distance.
+ *
+ * Color philosophy:
+ *   Primary   — Steel Blue: polished metallic blue (~214°), cool and precise
+ *   Secondary — Burnished Gold: warm metallic contrast (~52°), brass/copper
+ *   Tertiary  — Cobalt Navy: deeper blue for depth and dimension (~229°)
+ *   Surface   — Chrome Silver: barely-cool neutral with a subtle blue cast
+ *               (light mode: bright chrome) → (dark mode: gunmetal slate)
+ *
+ * Section 508 / WCAG 2.1 AA:
+ *   - Body text (surface-950 on surface-50 light): >15:1 contrast ✓
+ *   - Primary-filled buttons meet ≥3:1 for interactive components ✓
+ *   - Contrast crossover points calculated per OKLCH approximate RL
+ *
+ * Based on: Skeleton v4 theme CSS variable structure
+ * Variant of: src/ae-firefly.css (AE_Firefly)
+ */
+
+html[data-theme='AE_Firefly_SteelBlue'] {
+    --text-scaling: 1.067;
+    --background: var(--color-surface-50) !important;
+    --base-font-color: var(--color-surface-950);
+    --base-font-color-dark: var(--color-surface-50);
+    --base-font-family: system-ui, sans-serif;
+    --base-font-size: inherit;
+    --base-line-height: inherit;
+    --base-font-weight: normal;
+    --base-font-style: normal;
+    --base-letter-spacing: 0em;
+    --heading-font-color: inherit;
+    --heading-font-color-dark: inherit;
+    --heading-font-family: inherit;
+    --heading-font-weight: bold;
+    --heading-font-style: normal;
+    --heading-letter-spacing: inherit;
+
+    /* Anchors: steel blue in light, lighter steel blue in dark */
+    --anchor-font-color: var(--color-primary-600);
+    --anchor-font-color-dark: var(--color-primary-300);
+    --anchor-font-family: inherit;
+    --anchor-font-size: inherit;
+    --anchor-line-height: inherit;
+    --anchor-font-weight: inherit;
+    --anchor-font-style: inherit;
+    --anchor-letter-spacing: inherit;
+    --anchor-text-decoration: none;
+    --anchor-text-decoration-hover: underline;
+    --anchor-text-decoration-active: none;
+    --anchor-text-decoration-focus: none;
+
+    --spacing: 0.25rem;
+    --radius-base: 0.375rem;
+    --radius-container: 0.875rem;
+    /* --- Color ramps (light mode) copied from dark block so both modes have full ramps --- */
+    --color-primary-50: oklch(96.5% 0.022 214deg);
+    --color-primary-100: oklch(91% 0.045 213deg);
+    --color-primary-200: oklch(84.5% 0.072 212deg);
+    --color-primary-300: oklch(76.5% 0.097 212deg);
+    --color-primary-400: oklch(67% 0.115 213deg);
+    --color-primary-500: oklch(56% 0.115 214deg);
+    --color-primary-600: oklch(49% 0.112 214deg);
+    --color-primary-700: oklch(41.5% 0.105 213deg);
+    --color-primary-800: oklch(34% 0.095 212deg);
+    --color-primary-900: oklch(26.5% 0.08 211deg);
+    --color-primary-950: oklch(18.5% 0.065 210deg);
+    --color-primary-contrast-dark: var(--color-primary-950);
+    --color-primary-contrast-light: var(--color-primary-50);
+
+    --color-secondary-50: oklch(97.5% 0.055 56deg);
+    --color-secondary-100: oklch(93.5% 0.09 55deg);
+    --color-secondary-200: oklch(89.5% 0.12 54deg);
+    --color-secondary-300: oklch(85.5% 0.148 53deg);
+    --color-secondary-400: oklch(81.5% 0.162 52deg);
+    --color-secondary-500: oklch(76.5% 0.162 51deg);
+    --color-secondary-600: oklch(68.5% 0.152 50deg);
+    --color-secondary-700: oklch(60.5% 0.138 49deg);
+    --color-secondary-800: oklch(52% 0.122 48deg);
+    --color-secondary-900: oklch(43.5% 0.102 47deg);
+    --color-secondary-950: oklch(35% 0.084 46deg);
+    --color-secondary-contrast-dark: var(--color-secondary-950);
+    --color-secondary-contrast-light: var(--color-secondary-50);
+
+    --color-tertiary-50: oklch(95.5% 0.025 232deg);
+    --color-tertiary-100: oklch(89.5% 0.048 231deg);
+    --color-tertiary-200: oklch(82.5% 0.072 230deg);
+    --color-tertiary-300: oklch(74.5% 0.095 229deg);
+    --color-tertiary-400: oklch(65.5% 0.12 229deg);
+    --color-tertiary-500: oklch(54.5% 0.135 230deg);
+    --color-tertiary-600: oklch(47% 0.132 230deg);
+    --color-tertiary-700: oklch(39.5% 0.122 229deg);
+    --color-tertiary-800: oklch(32% 0.108 228deg);
+    --color-tertiary-900: oklch(25% 0.09 227deg);
+    --color-tertiary-950: oklch(17.5% 0.072 226deg);
+    --color-tertiary-contrast-dark: var(--color-tertiary-950);
+    --color-tertiary-contrast-light: var(--color-tertiary-50);
+
+    --color-success-50: oklch(95.77% 0.05 152.69deg);
+    --color-success-100: oklch(91.59% 0.06 152deg);
+    --color-success-200: oklch(87.45% 0.08 152.08deg);
+    --color-success-300: oklch(83.57% 0.09 150.85deg);
+    --color-success-400: oklch(79.47% 0.11 150.71deg);
+    --color-success-500: oklch(75.38% 0.12 149.99deg);
+    --color-success-600: oklch(67.65% 0.11 149.94deg);
+    --color-success-700: oklch(59.71% 0.09 150.42deg);
+    --color-success-800: oklch(51.74% 0.08 150.24deg);
+    --color-success-900: oklch(43.2% 0.06 151.12deg);
+    --color-success-950: oklch(34.2% 0.04 151.44deg);
+    --color-success-contrast-dark: var(--color-success-950);
+    --color-success-contrast-light: var(--color-success-50);
+
+    --color-warning-50: oklch(97.5% 0.065 78deg);
+    --color-warning-100: oklch(93.5% 0.09 75deg);
+    --color-warning-200: oklch(89.5% 0.12 73deg);
+    --color-warning-300: oklch(85.5% 0.145 70deg);
+    --color-warning-400: oklch(81.5% 0.16 67deg);
+    --color-warning-500: oklch(77% 0.165 65deg);
+    --color-warning-600: oklch(69.5% 0.155 64deg);
+    --color-warning-700: oklch(61.5% 0.14 63deg);
+    --color-warning-800: oklch(53.5% 0.125 62deg);
+    --color-warning-900: oklch(45% 0.105 61deg);
+    --color-warning-950: oklch(37% 0.088 60deg);
+    --color-warning-contrast-dark: var(--color-warning-950);
+    --color-warning-contrast-light: var(--color-warning-50);
+
+    --color-error-50: oklch(95% 0.04 18deg);
+    --color-error-100: oklch(88% 0.07 20deg);
+    --color-error-200: oklch(80% 0.105 21deg);
+    --color-error-300: oklch(72% 0.14 22deg);
+    --color-error-400: oklch(64.5% 0.17 23deg);
+    --color-error-500: oklch(57.5% 0.195 24deg);
+    --color-error-600: oklch(51.5% 0.182 25deg);
+    --color-error-700: oklch(45.5% 0.165 26deg);
+    --color-error-800: oklch(39.5% 0.148 27deg);
+    --color-error-900: oklch(33% 0.128 28deg);
+    --color-error-950: oklch(26.5% 0.108 29deg);
+    --color-error-contrast-dark: var(--color-error-950);
+    --color-error-contrast-light: var(--color-error-50);
+
+    --color-surface-50: oklch(99% 0.004 220deg);
+    --color-surface-100: oklch(96.5% 0.008 218deg);
+    --color-surface-200: oklch(92.5% 0.012 217deg);
+    --color-surface-300: oklch(87% 0.016 216deg);
+    --color-surface-400: oklch(78.5% 0.02 215deg);
+    --color-surface-500: oklch(66.5% 0.022 217deg);
+    --color-surface-600: oklch(54.5% 0.025 220deg);
+    --color-surface-700: oklch(42.5% 0.028 223deg);
+    --color-surface-800: oklch(31% 0.032 226deg);
+    --color-surface-900: oklch(20.5% 0.035 228deg);
+    --color-surface-950: oklch(13% 0.04 232deg);
+    --color-surface-contrast-dark: var(--color-surface-950);
+    --color-surface-contrast-light: var(--color-surface-50);
+}
+
+html.dark[data-theme='AE_Firefly_SteelBlue'] {
+    --background: var(--color-surface-950) !important;
+    --default-border-width: 1px;
+    --default-divide-width: 1px;
+    --default-ring-width: 1px;
+
+    --body-background-color: var(--color-surface-50);
+    --body-background-color-dark: var(--color-surface-950);
+
+    /* ===================================================================
+     * PRIMARY — Polished Steel Blue
+     * Hue: ~214°. Cool metallic blue — the shine of polished steel
+     * under directional light. Professional, precise, and distinctive.
+     * Approx: #4682B4 (CSS SteelBlue) sits at oklch(56%, 0.113, 214°).
+     * At 500 (L≈56%): sufficient contrast with primary-50 text (≥4:1).
+     * =================================================================== */
+    --color-primary-50: oklch(96.5% 0.022 214deg);
+    --color-primary-100: oklch(91% 0.045 213deg);
+    --color-primary-200: oklch(84.5% 0.072 212deg);
+    --color-primary-300: oklch(76.5% 0.097 212deg);
+    --color-primary-400: oklch(67% 0.115 213deg);
+    --color-primary-500: oklch(56% 0.115 214deg);
+    --color-primary-600: oklch(49% 0.112 214deg);
+    --color-primary-700: oklch(41.5% 0.105 213deg);
+    --color-primary-800: oklch(34% 0.095 212deg);
+    --color-primary-900: oklch(26.5% 0.08 211deg);
+    --color-primary-950: oklch(18.5% 0.065 210deg);
+    --color-primary-contrast-dark: var(--color-primary-950);
+    --color-primary-contrast-light: var(--color-primary-50);
+    --color-primary-contrast-50: var(--color-primary-contrast-dark);
+    --color-primary-contrast-100: var(--color-primary-contrast-dark);
+    --color-primary-contrast-200: var(--color-primary-contrast-dark);
+    --color-primary-contrast-300: var(--color-primary-contrast-dark);
+    --color-primary-contrast-400: var(--color-primary-contrast-dark);
+    --color-primary-contrast-500: var(--color-primary-contrast-light);
+    --color-primary-contrast-600: var(--color-primary-contrast-light);
+    --color-primary-contrast-700: var(--color-primary-contrast-light);
+    --color-primary-contrast-800: var(--color-primary-contrast-light);
+    --color-primary-contrast-900: var(--color-primary-contrast-light);
+    --color-primary-contrast-950: var(--color-primary-contrast-light);
+
+    /* ===================================================================
+     * SECONDARY — Burnished Gold (warm metallic contrast)
+     * Hue: ~52°. Warm brass/copper tones that complement the coolness
+     * of steel blue. The classic "metal on metal" contrast pairing —
+     * used for secondary actions, badges, and call-to-action highlights.
+     * =================================================================== */
+    --color-secondary-50: oklch(97.5% 0.055 56deg);
+    --color-secondary-100: oklch(93.5% 0.09 55deg);
+    --color-secondary-200: oklch(89.5% 0.12 54deg);
+    --color-secondary-300: oklch(85.5% 0.148 53deg);
+    --color-secondary-400: oklch(81.5% 0.162 52deg);
+    --color-secondary-500: oklch(76.5% 0.162 51deg);
+    --color-secondary-600: oklch(68.5% 0.152 50deg);
+    --color-secondary-700: oklch(60.5% 0.138 49deg);
+    --color-secondary-800: oklch(52% 0.122 48deg);
+    --color-secondary-900: oklch(43.5% 0.102 47deg);
+    --color-secondary-950: oklch(35% 0.084 46deg);
+    --color-secondary-contrast-dark: var(--color-secondary-950);
+    --color-secondary-contrast-light: var(--color-secondary-50);
+    --color-secondary-contrast-50: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-100: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-200: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-300: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-400: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-500: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-600: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-700: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-800: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-900: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-950: var(--color-secondary-contrast-light);
+
+    /* ===================================================================
+     * TERTIARY — Cobalt Navy
+     * Hue: ~229°. A deeper, richer blue for depth and dimension —
+     * like the heavy cobalt-blue depths under polished chrome.
+     * Used for accents, location chips, and depth elements.
+     * =================================================================== */
+    --color-tertiary-50: oklch(95.5% 0.025 232deg);
+    --color-tertiary-100: oklch(89.5% 0.048 231deg);
+    --color-tertiary-200: oklch(82.5% 0.072 230deg);
+    --color-tertiary-300: oklch(74.5% 0.095 229deg);
+    --color-tertiary-400: oklch(65.5% 0.12 229deg);
+    --color-tertiary-500: oklch(54.5% 0.135 230deg);
+    --color-tertiary-600: oklch(47% 0.132 230deg);
+    --color-tertiary-700: oklch(39.5% 0.122 229deg);
+    --color-tertiary-800: oklch(32% 0.108 228deg);
+    --color-tertiary-900: oklch(25% 0.09 227deg);
+    --color-tertiary-950: oklch(17.5% 0.072 226deg);
+    --color-tertiary-contrast-dark: var(--color-tertiary-950);
+    --color-tertiary-contrast-light: var(--color-tertiary-50);
+    --color-tertiary-contrast-50: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-100: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-200: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-300: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-400: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-500: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-600: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-700: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-800: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-900: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-950: var(--color-tertiary-contrast-light);
+
+    /* ===================================================================
+     * SUCCESS — Bioluminescent Green
+     * Hue: ~152°. Consistent with AE_Firefly for recognizable semantic
+     * color meaning across OSIT themes.
+     * =================================================================== */
+    --color-success-50: oklch(95.77% 0.05 152.69deg);
+    --color-success-100: oklch(91.59% 0.06 152deg);
+    --color-success-200: oklch(87.45% 0.08 152.08deg);
+    --color-success-300: oklch(83.57% 0.09 150.85deg);
+    --color-success-400: oklch(79.47% 0.11 150.71deg);
+    --color-success-500: oklch(75.38% 0.12 149.99deg);
+    --color-success-600: oklch(67.65% 0.11 149.94deg);
+    --color-success-700: oklch(59.71% 0.09 150.42deg);
+    --color-success-800: oklch(51.74% 0.08 150.24deg);
+    --color-success-900: oklch(43.2% 0.06 151.12deg);
+    --color-success-950: oklch(34.2% 0.04 151.44deg);
+    --color-success-contrast-dark: var(--color-success-950);
+    --color-success-contrast-light: var(--color-success-50);
+    --color-success-contrast-50: var(--color-success-contrast-dark);
+    --color-success-contrast-100: var(--color-success-contrast-dark);
+    --color-success-contrast-200: var(--color-success-contrast-dark);
+    --color-success-contrast-300: var(--color-success-contrast-dark);
+    --color-success-contrast-400: var(--color-success-contrast-dark);
+    --color-success-contrast-500: var(--color-success-contrast-dark);
+    --color-success-contrast-600: var(--color-success-contrast-dark);
+    --color-success-contrast-700: var(--color-success-contrast-light);
+    --color-success-contrast-800: var(--color-success-contrast-light);
+    --color-success-contrast-900: var(--color-success-contrast-light);
+    --color-success-contrast-950: var(--color-success-contrast-light);
+
+    /* ===================================================================
+     * WARNING — Amber Orange
+     * Consistent with AE_Firefly for recognizable semantic meaning.
+     * =================================================================== */
+    --color-warning-50: oklch(97.5% 0.065 78deg);
+    --color-warning-100: oklch(93.5% 0.09 75deg);
+    --color-warning-200: oklch(89.5% 0.12 73deg);
+    --color-warning-300: oklch(85.5% 0.145 70deg);
+    --color-warning-400: oklch(81.5% 0.16 67deg);
+    --color-warning-500: oklch(77% 0.165 65deg);
+    --color-warning-600: oklch(69.5% 0.155 64deg);
+    --color-warning-700: oklch(61.5% 0.14 63deg);
+    --color-warning-800: oklch(53.5% 0.125 62deg);
+    --color-warning-900: oklch(45% 0.105 61deg);
+    --color-warning-950: oklch(37% 0.088 60deg);
+    --color-warning-contrast-dark: var(--color-warning-950);
+    --color-warning-contrast-light: var(--color-warning-50);
+    --color-warning-contrast-50: var(--color-warning-contrast-dark);
+    --color-warning-contrast-100: var(--color-warning-contrast-dark);
+    --color-warning-contrast-200: var(--color-warning-contrast-dark);
+    --color-warning-contrast-300: var(--color-warning-contrast-dark);
+    --color-warning-contrast-400: var(--color-warning-contrast-dark);
+    --color-warning-contrast-500: var(--color-warning-contrast-dark);
+    --color-warning-contrast-600: var(--color-warning-contrast-dark);
+    --color-warning-contrast-700: var(--color-warning-contrast-light);
+    --color-warning-contrast-800: var(--color-warning-contrast-light);
+    --color-warning-contrast-900: var(--color-warning-contrast-light);
+    --color-warning-contrast-950: var(--color-warning-contrast-light);
+
+    /* ===================================================================
+     * ERROR — Soft Coral/Rose
+     * Consistent with AE_Firefly for recognizable semantic meaning.
+     * =================================================================== */
+    --color-error-50: oklch(95% 0.04 18deg);
+    --color-error-100: oklch(88% 0.07 20deg);
+    --color-error-200: oklch(80% 0.105 21deg);
+    --color-error-300: oklch(72% 0.14 22deg);
+    --color-error-400: oklch(64.5% 0.17 23deg);
+    --color-error-500: oklch(57.5% 0.195 24deg);
+    --color-error-600: oklch(51.5% 0.182 25deg);
+    --color-error-700: oklch(45.5% 0.165 26deg);
+    --color-error-800: oklch(39.5% 0.148 27deg);
+    --color-error-900: oklch(33% 0.128 28deg);
+    --color-error-950: oklch(26.5% 0.108 29deg);
+    --color-error-contrast-dark: var(--color-error-950);
+    --color-error-contrast-light: var(--color-error-50);
+    --color-error-contrast-50: var(--color-error-contrast-dark);
+    --color-error-contrast-100: var(--color-error-contrast-dark);
+    --color-error-contrast-200: var(--color-error-contrast-dark);
+    --color-error-contrast-300: var(--color-error-contrast-dark);
+    --color-error-contrast-400: var(--color-error-contrast-light);
+    --color-error-contrast-500: var(--color-error-contrast-light);
+    --color-error-contrast-600: var(--color-error-contrast-light);
+    --color-error-contrast-700: var(--color-error-contrast-light);
+    --color-error-contrast-800: var(--color-error-contrast-light);
+    --color-error-contrast-900: var(--color-error-contrast-light);
+    --color-error-contrast-950: var(--color-error-contrast-light);
+
+    /* ===================================================================
+     * SURFACE — Chrome Silver
+     * A cool-blue-tinted neutral with slightly more chromatic presence
+     * than AE_Firefly's Moonlit Slate — leaning further toward the
+     * steel palette. Light mode: bright chrome. Dark mode: gunmetal.
+     *
+     * 50  → body-bg light:  brilliant near-white with a chrome whisper
+     * 950 → body-bg dark:   deep gunmetal with subtle cool-blue depth
+     * =================================================================== */
+    --color-surface-50: oklch(99% 0.004 220deg);
+    --color-surface-100: oklch(96.5% 0.008 218deg);
+    --color-surface-200: oklch(92.5% 0.012 217deg);
+    --color-surface-300: oklch(87% 0.016 216deg);
+    --color-surface-400: oklch(78.5% 0.02 215deg);
+    --color-surface-500: oklch(66.5% 0.022 217deg);
+    --color-surface-600: oklch(54.5% 0.025 220deg);
+    --color-surface-700: oklch(42.5% 0.028 223deg);
+    --color-surface-800: oklch(31% 0.032 226deg);
+    --color-surface-900: oklch(20.5% 0.035 228deg);
+    --color-surface-950: oklch(13% 0.04 232deg);
+    --color-surface-contrast-dark: var(--color-surface-950);
+    --color-surface-contrast-light: var(--color-surface-50);
+    --color-surface-contrast-50: var(--color-surface-contrast-dark);
+    --color-surface-contrast-100: var(--color-surface-contrast-dark);
+    --color-surface-contrast-200: var(--color-surface-contrast-dark);
+    --color-surface-contrast-300: var(--color-surface-contrast-dark);
+    --color-surface-contrast-400: var(--color-surface-contrast-dark);
+    --color-surface-contrast-500: var(--color-surface-contrast-dark);
+    --color-surface-contrast-600: var(--color-surface-contrast-light);
+    --color-surface-contrast-700: var(--color-surface-contrast-light);
+    --color-surface-contrast-800: var(--color-surface-contrast-light);
+    --color-surface-contrast-900: var(--color-surface-contrast-light);
+    --color-surface-contrast-950: var(--color-surface-contrast-light);
+}

src/ae-firefly.css

@@ -0,0 +1,352 @@
+/*
+ * AE Firefly — "Shiny serenity, like a firefly."
+ * Aether Platform / One Sky IT, LLC — Design System Theme
+ *
+ * Aesthetic vision (Scott Idem, 2026-03-06):
+ *   Calm, focused, softly luminous. A modern Section 508–compliant
+ *   theme for One Sky IT, LLC. Inspired by bioluminescence —
+ *   the brief, cool glow of a firefly against a deep, serene night.
+ *
+ * Color philosophy:
+ *   Primary   — Luminescent Teal: cool bioluminescent shimmer
+ *   Secondary — Warm Amber-Gold: the firefly's warm body glow
+ *   Tertiary  — Night-Sky Indigo: depth and serenity of the dark
+ *   Surface   — Moonlit Slate: barely-cool neutral; crisp white
+ *               (light mode) → deep midnight blue-grey (dark mode)
+ *
+ * Section 508 / WCAG 2.1 AA:
+ *   - Body text (surface-950 on surface-50 light): >15:1 contrast ✓
+ *   - Primary-filled buttons meet ≥3:1 for interactive components ✓
+ *   - Contrast crossover points calculated per OKLCH approximate RL
+ *
+ * Based on: Skeleton v4 theme CSS variable structure
+ * Reference: src/ae-osit-default.css, Nouveau preset
+ */
+
+html[data-theme='AE_Firefly'] {
+    --text-scaling: 1.067;
+    --background: var(--color-surface-50) !important;
+    --base-font-color: var(--color-surface-950);
+    --base-font-color-dark: var(--color-surface-50);
+    --base-font-family: system-ui, sans-serif;
+    --base-font-size: inherit;
+    --base-line-height: inherit;
+    --base-font-weight: normal;
+    --base-font-style: normal;
+    --base-letter-spacing: 0em;
+    --heading-font-color: inherit;
+    --heading-font-color-dark: inherit;
+    --heading-font-family: inherit;
+    --heading-font-weight: bold;
+    --heading-font-style: normal;
+    --heading-letter-spacing: inherit;
+
+    /* Anchors: teal in light, lighter teal in dark */
+    --anchor-font-color: var(--color-primary-600);
+    --anchor-font-color-dark: var(--color-primary-300);
+    --anchor-font-family: inherit;
+    --anchor-font-size: inherit;
+    --anchor-line-height: inherit;
+    --anchor-font-weight: inherit;
+    --anchor-font-style: inherit;
+    --anchor-letter-spacing: inherit;
+    --anchor-text-decoration: none;
+    --anchor-text-decoration-hover: underline;
+    --anchor-text-decoration-active: none;
+    --anchor-text-decoration-focus: none;
+
+    --spacing: 0.25rem;
+    --radius-base: 0.375rem;
+    --radius-container: 0.875rem; /* slightly more rounded than default for modern feel */
+    --default-border-width: 1px;
+}
+
+/* --- Color ramps (light mode) copied from dark block so both modes have full ramps --- */
+html[data-theme='AE_Firefly'] {
+    --color-primary-50: oklch(96.5% 0.025 192deg);
+    --color-primary-100: oklch(91% 0.05 190deg);
+    --color-primary-200: oklch(84.5% 0.078 188deg);
+    --color-primary-300: oklch(76.5% 0.105 186deg);
+    --color-primary-400: oklch(67.5% 0.125 185deg);
+    --color-primary-500: oklch(50.5% 0.13 184deg);
+    --color-primary-600: oklch(44% 0.125 183deg);
+    --color-primary-700: oklch(37.5% 0.115 182deg);
+    --color-primary-800: oklch(30.5% 0.105 181deg);
+    --color-primary-900: oklch(23.5% 0.09 180deg);
+    --color-primary-950: oklch(16% 0.075 179deg);
+    --color-primary-contrast-dark: var(--color-primary-950);
+    --color-primary-contrast-light: var(--color-primary-50);
+
+    --color-secondary-50: oklch(97.5% 0.06 102deg);
+    --color-secondary-100: oklch(93.5% 0.095 100deg);
+    --color-secondary-200: oklch(89.5% 0.128 98deg);
+    --color-secondary-300: oklch(85.5% 0.155 95deg);
+    --color-secondary-400: oklch(81% 0.17 93deg);
+    --color-secondary-500: oklch(76% 0.17 90deg);
+    --color-secondary-600: oklch(68.5% 0.16 87deg);
+    --color-secondary-700: oklch(60.5% 0.145 85deg);
+    --color-secondary-800: oklch(52% 0.13 83deg);
+    --color-secondary-900: oklch(43.5% 0.11 81deg);
+    --color-secondary-950: oklch(35% 0.09 79deg);
+    --color-secondary-contrast-dark: var(--color-secondary-950);
+    --color-secondary-contrast-light: var(--color-secondary-50);
+
+    --color-tertiary-50: oklch(95.5% 0.042 283deg);
+    --color-tertiary-100: oklch(89% 0.068 281deg);
+    --color-tertiary-200: oklch(81.5% 0.092 279deg);
+    --color-tertiary-300: oklch(73.5% 0.112 278deg);
+    --color-tertiary-400: oklch(65% 0.132 277deg);
+    --color-tertiary-500: oklch(55.5% 0.142 276deg);
+    --color-tertiary-600: oklch(48.5% 0.138 275deg);
+    --color-tertiary-700: oklch(41.5% 0.128 274deg);
+    --color-tertiary-800: oklch(34.5% 0.112 273deg);
+    --color-tertiary-900: oklch(27.5% 0.098 272deg);
+    --color-tertiary-950: oklch(20% 0.082 271deg);
+    --color-tertiary-contrast-dark: var(--color-tertiary-950);
+    --color-tertiary-contrast-light: var(--color-tertiary-50);
+
+    --color-success-50: oklch(95.77% 0.05 152.69deg);
+    --color-success-100: oklch(91.59% 0.06 152deg);
+    --color-success-200: oklch(87.45% 0.08 152.08deg);
+    --color-success-300: oklch(83.57% 0.09 150.85deg);
+    --color-success-400: oklch(79.47% 0.11 150.71deg);
+    --color-success-500: oklch(75.38% 0.12 149.99deg);
+    --color-success-600: oklch(67.65% 0.11 149.94deg);
+    --color-success-700: oklch(59.71% 0.09 150.42deg);
+    --color-success-800: oklch(51.74% 0.08 150.24deg);
+    --color-success-900: oklch(43.2% 0.06 151.12deg);
+    --color-success-950: oklch(34.2% 0.04 151.44deg);
+    --color-success-contrast-dark: var(--color-success-950);
+    --color-success-contrast-light: var(--color-success-50);
+
+    --color-warning-50: oklch(97.5% 0.065 78deg);
+    --color-warning-100: oklch(93.5% 0.09 75deg);
+    --color-warning-200: oklch(89.5% 0.12 73deg);
+    --color-warning-300: oklch(85.5% 0.145 70deg);
+    --color-warning-400: oklch(81.5% 0.16 67deg);
+    --color-warning-500: oklch(77% 0.165 65deg);
+    --color-warning-600: oklch(69.5% 0.155 64deg);
+    --color-warning-700: oklch(61.5% 0.14 63deg);
+    --color-warning-800: oklch(53.5% 0.125 62deg);
+    --color-warning-900: oklch(45% 0.105 61deg);
+    --color-warning-950: oklch(37% 0.088 60deg);
+    --color-warning-contrast-dark: var(--color-warning-950);
+    --color-warning-contrast-light: var(--color-warning-50);
+
+    --color-error-50: oklch(95% 0.04 18deg);
+    --color-error-100: oklch(88% 0.07 20deg);
+    --color-error-200: oklch(80% 0.105 21deg);
+    --color-error-300: oklch(72% 0.14 22deg);
+    --color-error-400: oklch(64.5% 0.17 23deg);
+    --color-error-500: oklch(57.5% 0.195 24deg);
+    --color-error-600: oklch(51.5% 0.182 25deg);
+    --color-error-700: oklch(45.5% 0.165 26deg);
+    --color-error-800: oklch(39.5% 0.148 27deg);
+    --color-error-900: oklch(33% 0.128 28deg);
+    --color-error-950: oklch(26.5% 0.108 29deg);
+    --color-error-contrast-dark: var(--color-error-950);
+    --color-error-contrast-light: var(--color-error-50);
+
+    --color-surface-50: oklch(99.2% 0.003 220deg);
+    --color-surface-100: oklch(97% 0.006 217deg);
+    --color-surface-200: oklch(93.5% 0.009 215deg);
+    --color-surface-300: oklch(88.5% 0.012 213deg);
+    --color-surface-400: oklch(81.5% 0.015 212deg);
+    --color-surface-500: oklch(70.5% 0.016 215deg);
+    --color-surface-600: oklch(59% 0.018 218deg);
+    --color-surface-700: oklch(47.5% 0.02 222deg);
+    --color-surface-800: oklch(30.5% 0.022 226deg);
+    --color-surface-900: oklch(24.5% 0.025 229deg);
+    --color-surface-950: oklch(15.5% 0.028 233deg);
+    --color-surface-contrast-dark: var(--color-surface-950);
+    --color-surface-contrast-light: var(--color-surface-50);
+}
+
+html.dark[data-theme='AE_Firefly'] {
+    --background: var(--color-surface-950) !important;
+    --default-divide-width: 1px;
+    --default-ring-width: 1px;
+
+    --body-background-color: var(--color-surface-50);
+    --body-background-color-dark: var(--color-surface-950);
+
+    /* ===================================================================
+     * PRIMARY — Luminescent Firefly Teal
+     * ...existing code...
+     */
+    --color-primary-50: oklch(96.5% 0.025 192deg);
+    --color-primary-100: oklch(91% 0.05 190deg);
+    --color-primary-200: oklch(84.5% 0.078 188deg);
+    --color-primary-300: oklch(76.5% 0.105 186deg);
+    --color-primary-400: oklch(67.5% 0.125 185deg);
+    --color-primary-500: oklch(50.5% 0.13 184deg);
+    --color-primary-600: oklch(44% 0.125 183deg);
+    --color-primary-700: oklch(37.5% 0.115 182deg);
+    --color-primary-800: oklch(30.5% 0.105 181deg);
+    --color-primary-900: oklch(23.5% 0.09 180deg);
+    --color-primary-950: oklch(16% 0.075 179deg);
+    --color-primary-contrast-dark: var(--color-primary-950);
+    --color-primary-contrast-light: var(--color-primary-50);
+    --color-primary-contrast-50: var(--color-primary-contrast-dark);
+    --color-primary-contrast-100: var(--color-primary-contrast-dark);
+    --color-primary-contrast-200: var(--color-primary-contrast-dark);
+    --color-primary-contrast-300: var(--color-primary-contrast-dark);
+    --color-primary-contrast-400: var(--color-primary-contrast-dark);
+    --color-primary-contrast-500: var(--color-primary-contrast-light);
+    --color-primary-contrast-600: var(--color-primary-contrast-light);
+    --color-primary-contrast-700: var(--color-primary-contrast-light);
+    --color-primary-contrast-800: var(--color-primary-contrast-light);
+    --color-primary-contrast-900: var(--color-primary-contrast-light);
+    --color-primary-contrast-950: var(--color-primary-contrast-light);
+
+    /* ...existing code for secondary, tertiary, success, warning, error, surface... */
+    --color-secondary-50: oklch(97.5% 0.06 102deg);
+    --color-secondary-100: oklch(93.5% 0.095 100deg);
+    --color-secondary-200: oklch(89.5% 0.128 98deg);
+    --color-secondary-300: oklch(85.5% 0.155 95deg);
+    --color-secondary-400: oklch(81% 0.17 93deg);
+    --color-secondary-500: oklch(76% 0.17 90deg);
+    --color-secondary-600: oklch(68.5% 0.16 87deg);
+    --color-secondary-700: oklch(60.5% 0.145 85deg);
+    --color-secondary-800: oklch(52% 0.13 83deg);
+    --color-secondary-900: oklch(43.5% 0.11 81deg);
+    --color-secondary-950: oklch(35% 0.09 79deg);
+    --color-secondary-contrast-dark: var(--color-secondary-950);
+    --color-secondary-contrast-light: var(--color-secondary-50);
+    --color-secondary-contrast-50: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-100: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-200: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-300: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-400: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-500: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-600: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-700: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-800: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-900: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-950: var(--color-secondary-contrast-light);
+
+    --color-tertiary-50: oklch(95.5% 0.042 283deg);
+    --color-tertiary-100: oklch(89% 0.068 281deg);
+    --color-tertiary-200: oklch(81.5% 0.092 279deg);
+    --color-tertiary-300: oklch(73.5% 0.112 278deg);
+    --color-tertiary-400: oklch(65% 0.132 277deg);
+    --color-tertiary-500: oklch(55.5% 0.142 276deg);
+    --color-tertiary-600: oklch(48.5% 0.138 275deg);
+    --color-tertiary-700: oklch(41.5% 0.128 274deg);
+    --color-tertiary-800: oklch(34.5% 0.112 273deg);
+    --color-tertiary-900: oklch(27.5% 0.098 272deg);
+    --color-tertiary-950: oklch(20% 0.082 271deg);
+    --color-tertiary-contrast-dark: var(--color-tertiary-950);
+    --color-tertiary-contrast-light: var(--color-tertiary-50);
+    --color-tertiary-contrast-50: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-100: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-200: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-300: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-400: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-500: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-600: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-700: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-800: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-900: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-950: var(--color-tertiary-contrast-light);
+
+    --color-success-50: oklch(95.77% 0.05 152.69deg);
+    --color-success-100: oklch(91.59% 0.06 152deg);
+    --color-success-200: oklch(87.45% 0.08 152.08deg);
+    --color-success-300: oklch(83.57% 0.09 150.85deg);
+    --color-success-400: oklch(79.47% 0.11 150.71deg);
+    --color-success-500: oklch(75.38% 0.12 149.99deg);
+    --color-success-600: oklch(67.65% 0.11 149.94deg);
+    --color-success-700: oklch(59.71% 0.09 150.42deg);
+    --color-success-800: oklch(51.74% 0.08 150.24deg);
+    --color-success-900: oklch(43.2% 0.06 151.12deg);
+    --color-success-950: oklch(34.2% 0.04 151.44deg);
+    --color-success-contrast-dark: var(--color-success-950);
+    --color-success-contrast-light: var(--color-success-50);
+    --color-success-contrast-50: var(--color-success-contrast-dark);
+    --color-success-contrast-100: var(--color-success-contrast-dark);
+    --color-success-contrast-200: var(--color-success-contrast-dark);
+    --color-success-contrast-300: var(--color-success-contrast-dark);
+    --color-success-contrast-400: var(--color-success-contrast-dark);
+    --color-success-contrast-500: var(--color-success-contrast-dark);
+    --color-success-contrast-600: var(--color-success-contrast-dark);
+    --color-success-contrast-700: var(--color-success-contrast-light);
+    --color-success-contrast-800: var(--color-success-contrast-light);
+    --color-success-contrast-900: var(--color-success-contrast-light);
+    --color-success-contrast-950: var(--color-success-contrast-light);
+
+    --color-warning-50: oklch(97.5% 0.065 78deg);
+    --color-warning-100: oklch(93.5% 0.09 75deg);
+    --color-warning-200: oklch(89.5% 0.12 73deg);
+    --color-warning-300: oklch(85.5% 0.145 70deg);
+    --color-warning-400: oklch(81.5% 0.16 67deg);
+    --color-warning-500: oklch(77% 0.165 65deg);
+    --color-warning-600: oklch(69.5% 0.155 64deg);
+    --color-warning-700: oklch(61.5% 0.14 63deg);
+    --color-warning-800: oklch(53.5% 0.125 62deg);
+    --color-warning-900: oklch(45% 0.105 61deg);
+    --color-warning-950: oklch(37% 0.088 60deg);
+    --color-warning-contrast-dark: var(--color-warning-950);
+    --color-warning-contrast-light: var(--color-warning-50);
+    --color-warning-contrast-50: var(--color-warning-contrast-dark);
+    --color-warning-contrast-100: var(--color-warning-contrast-dark);
+    --color-warning-contrast-200: var(--color-warning-contrast-dark);
+    --color-warning-contrast-300: var(--color-warning-contrast-dark);
+    --color-warning-contrast-400: var(--color-warning-contrast-dark);
+    --color-warning-contrast-500: var(--color-warning-contrast-dark);
+    --color-warning-contrast-600: var(--color-warning-contrast-dark);
+    --color-warning-contrast-700: var(--color-warning-contrast-light);
+    --color-warning-contrast-800: var(--color-warning-contrast-light);
+    --color-warning-contrast-900: var(--color-warning-contrast-light);
+    --color-warning-contrast-950: var(--color-warning-contrast-light);
+
+    --color-error-50: oklch(95% 0.04 18deg);
+    --color-error-100: oklch(88% 0.07 20deg);
+    --color-error-200: oklch(80% 0.105 21deg);
+    --color-error-300: oklch(72% 0.14 22deg);
+    --color-error-400: oklch(64.5% 0.17 23deg);
+    --color-error-500: oklch(57.5% 0.195 24deg);
+    --color-error-600: oklch(51.5% 0.182 25deg);
+    --color-error-700: oklch(45.5% 0.165 26deg);
+    --color-error-800: oklch(39.5% 0.148 27deg);
+    --color-error-900: oklch(33% 0.128 28deg);
+    --color-error-950: oklch(26.5% 0.108 29deg);
+    --color-error-contrast-dark: var(--color-error-950);
+    --color-error-contrast-light: var(--color-error-50);
+    --color-error-contrast-50: var(--color-error-contrast-dark);
+    --color-error-contrast-100: var(--color-error-contrast-dark);
+    --color-error-contrast-200: var(--color-error-contrast-dark);
+    --color-error-contrast-300: var(--color-error-contrast-dark);
+    --color-error-contrast-400: var(--color-error-contrast-light);
+    --color-error-contrast-500: var(--color-error-contrast-light);
+    --color-error-contrast-600: var(--color-error-contrast-light);
+    --color-error-contrast-700: var(--color-error-contrast-light);
+    --color-error-contrast-800: var(--color-error-contrast-light);
+    --color-error-contrast-900: var(--color-error-contrast-light);
+    --color-error-contrast-950: var(--color-error-contrast-light);
+
+    --color-surface-50: oklch(99.2% 0.003 220deg);
+    --color-surface-100: oklch(97% 0.006 217deg);
+    --color-surface-200: oklch(93.5% 0.009 215deg);
+    --color-surface-300: oklch(88.5% 0.012 213deg);
+    --color-surface-400: oklch(81.5% 0.015 212deg);
+    --color-surface-500: oklch(70.5% 0.016 215deg);
+    --color-surface-600: oklch(59% 0.018 218deg);
+    --color-surface-700: oklch(47.5% 0.02 222deg);
+    --color-surface-800: oklch(35.5% 0.022 226deg);
+    --color-surface-900: oklch(24.5% 0.025 229deg);
+    --color-surface-950: oklch(15.5% 0.028 233deg);
+    --color-surface-contrast-dark: var(--color-surface-950);
+    --color-surface-contrast-light: var(--color-surface-50);
+    --color-surface-contrast-50: var(--color-surface-contrast-dark);
+    --color-surface-contrast-100: var(--color-surface-contrast-dark);
+    --color-surface-contrast-200: var(--color-surface-contrast-dark);
+    --color-surface-contrast-300: var(--color-surface-contrast-dark);
+    --color-surface-contrast-400: var(--color-surface-contrast-dark);
+    --color-surface-contrast-500: var(--color-surface-contrast-dark);
+    --color-surface-contrast-600: var(--color-surface-contrast-light);
+    --color-surface-contrast-700: var(--color-surface-contrast-light);
+    --color-surface-contrast-800: var(--color-surface-contrast-light);
+    --color-surface-contrast-900: var(--color-surface-contrast-light);
+    --color-surface-contrast-950: var(--color-surface-contrast-light);
+}

src/ae-osit-default.css

@@ -0,0 +1,205 @@
+[data-theme='AE_OSIT_default'] {
+    --text-scaling: 1.067;
+    --base-font-color: var(--color-surface-950);
+    --base-font-color-dark: var(--color-surface-50);
+    --base-font-family: system-ui, sans-serif;
+    --base-font-size: inherit;
+    --base-line-height: inherit;
+    --base-font-weight: normal;
+    --base-font-style: normal;
+    --base-letter-spacing: 0em;
+    --heading-font-color: inherit;
+    --heading-font-color-dark: inherit;
+    --heading-font-family: inherit;
+    --heading-font-weight: bold;
+    --heading-font-style: normal;
+    --heading-letter-spacing: inherit;
+    --anchor-font-color: var(--color-primary-600);
+    --anchor-font-color-dark: var(--color-primary-400);
+    --anchor-font-family: inherit;
+    --anchor-font-size: inherit;
+    --anchor-line-height: inherit;
+    --anchor-font-weight: inherit;
+    --anchor-font-style: inherit;
+    --anchor-letter-spacing: inherit;
+    --anchor-text-decoration: none;
+    --anchor-text-decoration-hover: underline;
+    --anchor-text-decoration-active: none;
+    --anchor-text-decoration-focus: none;
+    --spacing: 0.25rem;
+    --radius-base: 0.375rem;
+    --radius-container: 0.75rem;
+    --default-border-width: 1px;
+    --default-divide-width: 1px;
+    --default-ring-width: 1px;
+    --body-background-color: var(--color-surface-50);
+    --body-background-color-dark: var(--color-surface-950);
+    --color-primary-50: oklch(85.73% 0.07 251.8deg);
+    --color-primary-100: oklch(78.5% 0.09 252.03deg);
+    --color-primary-200: oklch(71.06% 0.1 253.6deg);
+    --color-primary-300: oklch(63.76% 0.12 253.85deg);
+    --color-primary-400: oklch(56.32% 0.14 255.25deg);
+    --color-primary-500: oklch(49.23% 0.15 256.36deg);
+    --color-primary-600: oklch(43.11% 0.14 258.86deg);
+    --color-primary-700: oklch(36.85% 0.14 261.54deg);
+    --color-primary-800: oklch(30.41% 0.13 263.99deg);
+    --color-primary-900: oklch(23.91% 0.12 265.91deg);
+    --color-primary-950: oklch(16.96% 0.12 264.05deg);
+    --color-primary-contrast-dark: var(--color-primary-950);
+    --color-primary-contrast-light: var(--color-primary-50);
+    --color-primary-contrast-50: var(--color-primary-contrast-dark);
+    --color-primary-contrast-100: var(--color-primary-contrast-dark);
+    --color-primary-contrast-200: var(--color-primary-contrast-dark);
+    --color-primary-contrast-300: var(--color-primary-contrast-dark);
+    --color-primary-contrast-400: var(--color-primary-contrast-dark);
+    --color-primary-contrast-500: var(--color-primary-contrast-light);
+    --color-primary-contrast-600: var(--color-primary-contrast-light);
+    --color-primary-contrast-700: var(--color-primary-contrast-light);
+    --color-primary-contrast-800: var(--color-primary-contrast-light);
+    --color-primary-contrast-900: var(--color-primary-contrast-light);
+    --color-primary-contrast-950: var(--color-primary-contrast-light);
+    --color-secondary-50: oklch(96.26% 0.06 196.24deg);
+    --color-secondary-100: oklch(89.14% 0.07 220.79deg);
+    --color-secondary-200: oklch(82.13% 0.08 234.87deg);
+    --color-secondary-300: oklch(75.03% 0.11 245.33deg);
+    --color-secondary-400: oklch(68.15% 0.14 250.72deg);
+    --color-secondary-500: oklch(61.37% 0.16 255.34deg);
+    --color-secondary-600: oklch(55.1% 0.16 256.81deg);
+    --color-secondary-700: oklch(48.64% 0.15 258.4deg);
+    --color-secondary-800: oklch(41.84% 0.15 260.39deg);
+    --color-secondary-900: oklch(35.05% 0.14 262.03deg);
+    --color-secondary-950: oklch(28.12% 0.14 262.47deg);
+    --color-secondary-contrast-dark: var(--color-secondary-950);
+    --color-secondary-contrast-light: var(--color-secondary-50);
+    --color-secondary-contrast-50: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-100: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-200: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-300: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-400: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-500: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-600: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-700: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-800: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-900: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-950: var(--color-secondary-contrast-light);
+    --color-tertiary-50: oklch(100% 0 none);
+    --color-tertiary-100: oklch(96.07% 0.01 251.15deg);
+    --color-tertiary-200: oklch(91.88% 0.03 252.69deg);
+    --color-tertiary-300: oklch(87.99% 0.05 253.24deg);
+    --color-tertiary-400: oklch(83.81% 0.06 253.57deg);
+    --color-tertiary-500: oklch(79.93% 0.08 253.32deg);
+    --color-tertiary-600: oklch(72.53% 0.08 251.75deg);
+    --color-tertiary-700: oklch(64.93% 0.08 249.75deg);
+    --color-tertiary-800: oklch(57.14% 0.09 247.99deg);
+    --color-tertiary-900: oklch(49.18% 0.09 246.55deg);
+    --color-tertiary-950: oklch(41.1% 0.09 246.54deg);
+    --color-tertiary-contrast-dark: var(--color-tertiary-950);
+    --color-tertiary-contrast-light: var(--color-tertiary-50);
+    --color-tertiary-contrast-50: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-100: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-200: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-300: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-400: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-500: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-600: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-700: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-800: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-900: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-950: var(--color-tertiary-contrast-light);
+    --color-success-50: oklch(95.82% 0.06 184.52deg);
+    --color-success-100: oklch(91.55% 0.08 172.29deg);
+    --color-success-200: oklch(87.44% 0.11 165.22deg);
+    --color-success-300: oklch(83.26% 0.13 161.2deg);
+    --color-success-400: oklch(79.56% 0.16 157.13deg);
+    --color-success-500: oklch(76.12% 0.18 153.61deg);
+    --color-success-600: oklch(69.31% 0.17 151.81deg);
+    --color-success-700: oklch(62.07% 0.16 149.95deg);
+    --color-success-800: oklch(54.9% 0.15 147.65deg);
+    --color-success-900: oklch(47.26% 0.14 145.54deg);
+    --color-success-950: oklch(39.64% 0.13 143.79deg);
+    --color-success-contrast-dark: var(--color-success-950);
+    --color-success-contrast-light: var(--color-success-50);
+    --color-success-contrast-50: var(--color-success-contrast-dark);
+    --color-success-contrast-100: var(--color-success-contrast-dark);
+    --color-success-contrast-200: var(--color-success-contrast-dark);
+    --color-success-contrast-300: var(--color-success-contrast-dark);
+    --color-success-contrast-400: var(--color-success-contrast-dark);
+    --color-success-contrast-500: var(--color-success-contrast-dark);
+    --color-success-contrast-600: var(--color-success-contrast-dark);
+    --color-success-contrast-700: var(--color-success-contrast-dark);
+    --color-success-contrast-800: var(--color-success-contrast-light);
+    --color-success-contrast-900: var(--color-success-contrast-light);
+    --color-success-contrast-950: var(--color-success-contrast-light);
+    --color-warning-50: oklch(98.26% 0.1 108.02deg);
+    --color-warning-100: oklch(95.84% 0.12 104.66deg);
+    --color-warning-200: oklch(93.48% 0.13 102.21deg);
+    --color-warning-300: oklch(91.49% 0.15 100.17deg);
+    --color-warning-400: oklch(89.28% 0.16 98.19deg);
+    --color-warning-500: oklch(87.14% 0.17 96.01deg);
+    --color-warning-600: oklch(79.88% 0.16 96.31deg);
+    --color-warning-700: oklch(72.35% 0.14 95.62deg);
+    --color-warning-800: oklch(64.73% 0.13 95.92deg);
+    --color-warning-900: oklch(56.77% 0.11 94.87deg);
+    --color-warning-950: oklch(48.63% 0.1 95.22deg);
+    --color-warning-contrast-dark: var(--color-warning-950);
+    --color-warning-contrast-light: var(--color-warning-50);
+    --color-warning-contrast-50: var(--color-warning-contrast-dark);
+    --color-warning-contrast-100: var(--color-warning-contrast-dark);
+    --color-warning-contrast-200: var(--color-warning-contrast-dark);
+    --color-warning-contrast-300: var(--color-warning-contrast-dark);
+    --color-warning-contrast-400: var(--color-warning-contrast-dark);
+    --color-warning-contrast-500: var(--color-warning-contrast-dark);
+    --color-warning-contrast-600: var(--color-warning-contrast-dark);
+    --color-warning-contrast-700: var(--color-warning-contrast-dark);
+    --color-warning-contrast-800: var(--color-warning-contrast-light);
+    --color-warning-contrast-900: var(--color-warning-contrast-light);
+    --color-warning-contrast-950: var(--color-warning-contrast-light);
+    --color-error-50: oklch(81.88% 0.1 38.14deg);
+    --color-error-100: oklch(75.88% 0.13 31.15deg);
+    --color-error-200: oklch(70.29% 0.16 27.32deg);
+    --color-error-300: oklch(65.15% 0.19 25.65deg);
+    --color-error-400: oklch(60.98% 0.21 25.56deg);
+    --color-error-500: oklch(57.86% 0.22 26.62deg);
+    --color-error-600: oklch(52.52% 0.2 26.86deg);
+    --color-error-700: oklch(46.81% 0.18 27.02deg);
+    --color-error-800: oklch(41.15% 0.16 27.63deg);
+    --color-error-900: oklch(35.01% 0.14 27.9deg);
+    --color-error-950: oklch(28.69% 0.12 29.23deg);
+    --color-error-contrast-dark: var(--color-error-950);
+    --color-error-contrast-light: var(--color-error-50);
+    --color-error-contrast-50: var(--color-error-contrast-dark);
+    --color-error-contrast-100: var(--color-error-contrast-dark);
+    --color-error-contrast-200: var(--color-error-contrast-dark);
+    --color-error-contrast-300: var(--color-error-contrast-dark);
+    --color-error-contrast-400: var(--color-error-contrast-light);
+    --color-error-contrast-500: var(--color-error-contrast-light);
+    --color-error-contrast-600: var(--color-error-contrast-light);
+    --color-error-contrast-700: var(--color-error-contrast-light);
+    --color-error-contrast-800: var(--color-error-contrast-light);
+    --color-error-contrast-900: var(--color-error-contrast-light);
+    --color-error-contrast-950: var(--color-error-contrast-light);
+    --color-surface-50: oklch(100% 0 none);
+    --color-surface-100: oklch(93.98% 0 105.57deg);
+    --color-surface-200: oklch(87.66% 0 67.88deg);
+    --color-surface-300: oklch(81.35% 0 106.1deg);
+    --color-surface-400: oklch(74.79% 0 84.45deg);
+    --color-surface-500: oklch(68.29% 0 91.36deg);
+    --color-surface-600: oklch(60.99% 0 91.38deg);
+    --color-surface-700: oklch(53.5% 0 84.49deg);
+    --color-surface-800: oklch(46.03% 0 91.43deg);
+    --color-surface-900: oklch(37.94% 0 84.52deg);
+    --color-surface-950: oklch(29.34% 0 84.54deg);
+    --color-surface-contrast-dark: var(--color-surface-950);
+    --color-surface-contrast-light: var(--color-surface-50);
+    --color-surface-contrast-50: var(--color-surface-contrast-dark);
+    --color-surface-contrast-100: var(--color-surface-contrast-dark);
+    --color-surface-contrast-200: var(--color-surface-contrast-dark);
+    --color-surface-contrast-300: var(--color-surface-contrast-dark);
+    --color-surface-contrast-400: var(--color-surface-contrast-dark);
+    --color-surface-contrast-500: var(--color-surface-contrast-dark);
+    --color-surface-contrast-600: var(--color-surface-contrast-dark);
+    --color-surface-contrast-700: var(--color-surface-contrast-light);
+    --color-surface-contrast-800: var(--color-surface-contrast-light);
+    --color-surface-contrast-900: var(--color-surface-contrast-light);
+    --color-surface-contrast-950: var(--color-surface-contrast-light);
+}

src/aeclci_v1.css

@@ -0,0 +1,205 @@
+[data-theme='aeclci'] {
+    --text-scaling: 1.067;
+    --base-font-color: var(--color-surface-950);
+    --base-font-color-dark: var(--color-surface-50);
+    --base-font-family: system-ui, sans-serif;
+    --base-font-size: inherit;
+    --base-line-height: inherit;
+    --base-font-weight: normal;
+    --base-font-style: normal;
+    --base-letter-spacing: 0em;
+    --heading-font-color: inherit;
+    --heading-font-color-dark: inherit;
+    --heading-font-family: inherit;
+    --heading-font-weight: bold;
+    --heading-font-style: normal;
+    --heading-letter-spacing: inherit;
+    --anchor-font-color: var(--color-primary-500);
+    --anchor-font-color-dark: var(--color-primary-500);
+    --anchor-font-family: inherit;
+    --anchor-font-size: inherit;
+    --anchor-line-height: inherit;
+    --anchor-font-weight: inherit;
+    --anchor-font-style: inherit;
+    --anchor-letter-spacing: inherit;
+    --anchor-text-decoration: none;
+    --anchor-text-decoration-hover: underline;
+    --anchor-text-decoration-active: none;
+    --anchor-text-decoration-focus: none;
+    --spacing: 0.25rem;
+    --radius-base: 0.375rem;
+    --radius-container: 0.75rem;
+    --default-border-width: 1px;
+    --default-divide-width: 1px;
+    --default-ring-width: 1px;
+    --body-background-color: var(--color-surface-50);
+    --body-background-color-dark: var(--color-surface-950);
+    --color-primary-50: oklch(85.1% 0.07 265.19deg);
+    --color-primary-100: oklch(77.89% 0.08 264.31deg);
+    --color-primary-200: oklch(70.32% 0.08 264.44deg);
+    --color-primary-300: oklch(62.86% 0.09 263.87deg);
+    --color-primary-400: oklch(54.96% 0.1 263.8deg);
+    --color-primary-500: oklch(47.12% 0.11 262.88deg);
+    --color-primary-600: oklch(40.9% 0.1 264.73deg);
+    --color-primary-700: oklch(34.53% 0.1 267.34deg);
+    --color-primary-800: oklch(28.16% 0.09 268.81deg);
+    --color-primary-900: oklch(21.29% 0.09 271.12deg);
+    --color-primary-950: oklch(12.88% 0.09 264.05deg);
+    --color-primary-contrast-dark: var(--color-primary-950);
+    --color-primary-contrast-light: var(--color-primary-50);
+    --color-primary-contrast-50: var(--color-primary-contrast-dark);
+    --color-primary-contrast-100: var(--color-primary-contrast-dark);
+    --color-primary-contrast-200: var(--color-primary-contrast-dark);
+    --color-primary-contrast-300: var(--color-primary-contrast-dark);
+    --color-primary-contrast-400: var(--color-primary-contrast-dark);
+    --color-primary-contrast-500: var(--color-primary-contrast-light);
+    --color-primary-contrast-600: var(--color-primary-contrast-light);
+    --color-primary-contrast-700: var(--color-primary-contrast-light);
+    --color-primary-contrast-800: var(--color-primary-contrast-light);
+    --color-primary-contrast-900: var(--color-primary-contrast-light);
+    --color-primary-contrast-950: var(--color-primary-contrast-light);
+    --color-secondary-50: oklch(73.24% 0.12 278.78deg);
+    --color-secondary-100: oklch(65.76% 0.12 276.12deg);
+    --color-secondary-200: oklch(58.15% 0.12 273.33deg);
+    --color-secondary-300: oklch(50.59% 0.12 270.28deg);
+    --color-secondary-400: oklch(42.65% 0.12 267.23deg);
+    --color-secondary-500: oklch(34.53% 0.12 264.22deg);
+    --color-secondary-600: oklch(30.3% 0.11 264.59deg);
+    --color-secondary-700: oklch(25.96% 0.09 265.69deg);
+    --color-secondary-800: oklch(21.25% 0.08 267.5deg);
+    --color-secondary-900: oklch(16.42% 0.06 269.55deg);
+    --color-secondary-950: oklch(8.85% 0.06 264.05deg);
+    --color-secondary-contrast-dark: var(--color-secondary-950);
+    --color-secondary-contrast-light: var(--color-secondary-50);
+    --color-secondary-contrast-50: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-100: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-200: var(--color-secondary-contrast-dark);
+    --color-secondary-contrast-300: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-400: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-500: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-600: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-700: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-800: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-900: var(--color-secondary-contrast-light);
+    --color-secondary-contrast-950: var(--color-secondary-contrast-light);
+    --color-tertiary-50: oklch(87.75% 0.12 326.52deg);
+    --color-tertiary-100: oklch(80.92% 0.13 323.93deg);
+    --color-tertiary-200: oklch(73.87% 0.14 321.55deg);
+    --color-tertiary-300: oklch(66.9% 0.15 319.41deg);
+    --color-tertiary-400: oklch(59.72% 0.16 317.25deg);
+    --color-tertiary-500: oklch(52.73% 0.17 315.13deg);
+    --color-tertiary-600: oklch(46.6% 0.16 314.18deg);
+    --color-tertiary-700: oklch(40.43% 0.14 312.8deg);
+    --color-tertiary-800: oklch(33.85% 0.13 309.88deg);
+    --color-tertiary-900: oklch(27.23% 0.12 306.83deg);
+    --color-tertiary-950: oklch(19.83% 0.1 302.7deg);
+    --color-tertiary-contrast-dark: var(--color-tertiary-950);
+    --color-tertiary-contrast-light: var(--color-tertiary-50);
+    --color-tertiary-contrast-50: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-100: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-200: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-300: var(--color-tertiary-contrast-dark);
+    --color-tertiary-contrast-400: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-500: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-600: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-700: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-800: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-900: var(--color-tertiary-contrast-light);
+    --color-tertiary-contrast-950: var(--color-tertiary-contrast-light);
+    --color-success-50: oklch(95.23% 0.07 195.99deg);
+    --color-success-100: oklch(90.22% 0.09 189.46deg);
+    --color-success-200: oklch(85.11% 0.1 186.03deg);
+    --color-success-300: oklch(80.35% 0.12 181.75deg);
+    --color-success-400: oklch(75.55% 0.12 178.92deg);
+    --color-success-500: oklch(71.19% 0.13 174.73deg);
+    --color-success-600: oklch(64.29% 0.12 173.65deg);
+    --color-success-700: oklch(57.46% 0.11 171.75deg);
+    --color-success-800: oklch(50.18% 0.1 170.68deg);
+    --color-success-900: oklch(42.87% 0.09 167.65deg);
+    --color-success-950: oklch(34.91% 0.07 164.42deg);
+    --color-success-contrast-dark: var(--color-success-950);
+    --color-success-contrast-light: var(--color-success-50);
+    --color-success-contrast-50: var(--color-success-contrast-dark);
+    --color-success-contrast-100: var(--color-success-contrast-dark);
+    --color-success-contrast-200: var(--color-success-contrast-dark);
+    --color-success-contrast-300: var(--color-success-contrast-dark);
+    --color-success-contrast-400: var(--color-success-contrast-dark);
+    --color-success-contrast-500: var(--color-success-contrast-dark);
+    --color-success-contrast-600: var(--color-success-contrast-dark);
+    --color-success-contrast-700: var(--color-success-contrast-light);
+    --color-success-contrast-800: var(--color-success-contrast-light);
+    --color-success-contrast-900: var(--color-success-contrast-light);
+    --color-success-contrast-950: var(--color-success-contrast-light);
+    --color-warning-50: oklch(95.67% 0.05 84.56deg);
+    --color-warning-100: oklch(92.83% 0.06 82.16deg);
+    --color-warning-200: oklch(90.12% 0.08 80.33deg);
+    --color-warning-300: oklch(87.59% 0.1 80.01deg);
+    --color-warning-400: oklch(85.03% 0.12 78.35deg);
+    --color-warning-500: oklch(82.46% 0.14 76.71deg);
+    --color-warning-600: oklch(76.34% 0.13 72.25deg);
+    --color-warning-700: oklch(70.34% 0.13 68.09deg);
+    --color-warning-800: oklch(63.99% 0.13 63.18deg);
+    --color-warning-900: oklch(57.91% 0.13 57.97deg);
+    --color-warning-950: oklch(51.69% 0.13 51.44deg);
+    --color-warning-contrast-dark: var(--color-warning-950);
+    --color-warning-contrast-light: var(--color-warning-50);
+    --color-warning-contrast-50: var(--color-warning-contrast-dark);
+    --color-warning-contrast-100: var(--color-warning-contrast-dark);
+    --color-warning-contrast-200: var(--color-warning-contrast-dark);
+    --color-warning-contrast-300: var(--color-warning-contrast-dark);
+    --color-warning-contrast-400: var(--color-warning-contrast-dark);
+    --color-warning-contrast-500: var(--color-warning-contrast-dark);
+    --color-warning-contrast-600: var(--color-warning-contrast-light);
+    --color-warning-contrast-700: var(--color-warning-contrast-light);
+    --color-warning-contrast-800: var(--color-warning-contrast-light);
+    --color-warning-contrast-900: var(--color-warning-contrast-light);
+    --color-warning-contrast-950: var(--color-warning-contrast-light);
+    --color-error-50: oklch(84.29% 0.09 46.91deg);
+    --color-error-100: oklch(78.63% 0.12 39.19deg);
+    --color-error-200: oklch(72.92% 0.14 34.35deg);
+    --color-error-300: oklch(67.88% 0.17 31.48deg);
+    --color-error-400: oklch(63.09% 0.19 30.02deg);
+    --color-error-500: oklch(59.32% 0.21 29.47deg);
+    --color-error-600: oklch(53.56% 0.19 29.25deg);
+    --color-error-700: oklch(47.75% 0.17 29.2deg);
+    --color-error-800: oklch(41.51% 0.15 28.7deg);
+    --color-error-900: oklch(35.35% 0.14 28.7deg);
+    --color-error-950: oklch(28.69% 0.12 29.23deg);
+    --color-error-contrast-dark: var(--color-error-950);
+    --color-error-contrast-light: var(--color-error-50);
+    --color-error-contrast-50: var(--color-error-contrast-dark);
+    --color-error-contrast-100: var(--color-error-contrast-dark);
+    --color-error-contrast-200: var(--color-error-contrast-dark);
+    --color-error-contrast-300: var(--color-error-contrast-dark);
+    --color-error-contrast-400: var(--color-error-contrast-dark);
+    --color-error-contrast-500: var(--color-error-contrast-light);
+    --color-error-contrast-600: var(--color-error-contrast-light);
+    --color-error-contrast-700: var(--color-error-contrast-light);
+    --color-error-contrast-800: var(--color-error-contrast-light);
+    --color-error-contrast-900: var(--color-error-contrast-light);
+    --color-error-contrast-950: var(--color-error-contrast-light);
+    --color-surface-50: oklch(100% 0 none);
+    --color-surface-100: oklch(97.02% 0 none);
+    --color-surface-200: oklch(94.01% 0 none);
+    --color-surface-300: oklch(91.12% 0 196.34deg);
+    --color-surface-400: oklch(88.07% 0 196.37deg);
+    --color-surface-500: oklch(84.99% 0 196.4deg);
+    --color-surface-600: oklch(77.78% 0 196.47deg);
+    --color-surface-700: oklch(70.09% 0 196.54deg);
+    --color-surface-800: oklch(62.51% 0 196.61deg);
+    --color-surface-900: oklch(54.34% 0 196.68deg);
+    --color-surface-950: oklch(46.22% 0 196.73deg);
+    --color-surface-contrast-dark: var(--color-surface-950);
+    --color-surface-contrast-light: var(--color-surface-50);
+    --color-surface-contrast-50: var(--color-surface-contrast-dark);
+    --color-surface-contrast-100: var(--color-surface-contrast-dark);
+    --color-surface-contrast-200: var(--color-surface-contrast-dark);
+    --color-surface-contrast-300: var(--color-surface-contrast-dark);
+    --color-surface-contrast-400: var(--color-surface-contrast-dark);
+    --color-surface-contrast-500: var(--color-surface-contrast-dark);
+    --color-surface-contrast-600: var(--color-surface-contrast-dark);
+    --color-surface-contrast-700: var(--color-surface-contrast-dark);
+    --color-surface-contrast-800: var(--color-surface-contrast-dark);
+    --color-surface-contrast-900: var(--color-surface-contrast-light);
+    --color-surface-contrast-950: var(--color-surface-contrast-light);
+}

src/api_delete.js

@@ -1,38 +0,0 @@
-import axios from 'axios';
-
-console.log('*** api_update.js ***');
-
-var axios_fastapi = axios.create({
-    //baseURL: 'https://dev-fastapi.oneskyit.com',
-    //baseURL: 'http://fastapi.localhost:5005',
-    baseURL: 'http://192.168.32.20:5005',
-    /* other custom settings */
-});
-axios_fastapi.defaults.headers['Access-Control-Allow-Origin'] = '*';
-axios_fastapi.defaults.headers['content-type'] = 'application/json';
-axios_fastapi.defaults.headers['x-aether-api-key'] = 'aaabbbcccxxxyyyzzz';
-axios_fastapi.defaults.headers['x-aether-api-token'] = 'aaabbbcccxxxyyyzzz';
-axios_fastapi.defaults.headers['x-aether-api-expire-on'] = '';
-axios_fastapi.defaults.headers['x-account-id'] = 'xxxyyyzzz111222333';
-
-
-async function delete_object({axios=axios_fastapi, endpoint='', data=[]}) {
-    console.log('*** delete_object() ***');
-
-    console.log(data)
-
-    // https://stackoverflow.com/questions/51069552/axios-delete-request-with-body-and-headers
-    let response_data = await axios.delete(endpoint, { 'data': data }) // not just data?
-    .then(function (response) {
-        console.log(response.data);
-        return response.data;
-    })
-    .catch(function (error) {
-        console.log(error);
-        return error;
-    });
-
-    return response_data;
-}
-
-export default delete_object;

src/api_get.js

@@ -1,52 +0,0 @@
-import axios from 'axios';
-
-console.log('*** api_update.js ***');
-
-var axios_fastapi = axios.create({
-    baseURL: 'https://dev-fastapi.oneskyit.com',
-    // baseURL: 'http://fastapi.localhost:5005',
-    // baseURL: 'http://192.168.32.20:5005',
-    /* other custom settings */
-});
-axios_fastapi.defaults.headers['Access-Control-Allow-Origin'] = '*';
-axios_fastapi.defaults.headers['content-type'] = 'application/json';
-axios_fastapi.defaults.headers['x-aether-api-key'] = 'aaabbbcccxxxyyyzzz';
-axios_fastapi.defaults.headers['x-aether-api-token'] = 'aaabbbcccxxxyyyzzz';
-axios_fastapi.defaults.headers['x-aether-api-expire-on'] = '';
-axios_fastapi.defaults.headers['x-account-id'] = 'xxxyyyzzz111222333';
-
-
-async function get_object({axios=axios_fastapi, endpoint='', params=[], data=[], return_meta=false, force_li=false}) {
-    console.log('*** get_object() ***');
-
-    //console.log(endpoint);
-    //console.log(params);
-    //console.log(data);
-    //console.log(return_meta);
-    //console.log(force_li);
-
-    let response_data = await axios.get(endpoint, { params: params })
-    .then(function (response) {
-        console.log(response.data);
-        if (!Array.isArray(response.data['data']) && force_li) {
-            console.log('Forcing return as a list');
-            let return_data = [];
-            return_data.push(response.data['data']);
-            return return_data;
-        } else {
-            return response.data['data'];
-        }
-        //return response.data;
-    })
-    .catch(function (error) {
-        console.log(error.response);
-        if (error.response.status === 404) {
-            return null;
-        }
-        return error;
-    });
-
-    return response_data;
-}
-
-export default get_object;

src/api_patch.js

@@ -1,45 +0,0 @@
-import axios from 'axios';
-
-console.log('*** api_update.js ***');
-
-var axios_fastapi = axios.create({
-    // baseURL: 'https://dev-fastapi.oneskyit.com',
-    baseURL: 'http://fastapi.localhost:5005',
-    // baseURL: 'http://192.168.32.20:5005',
-    /* other custom settings */
-});
-axios_fastapi.defaults.headers['Access-Control-Allow-Origin'] = '*';
-axios_fastapi.defaults.headers['content-type'] = 'application/json';
-axios_fastapi.defaults.headers['x-aether-api-key'] = 'aaabbbcccxxxyyyzzz';
-axios_fastapi.defaults.headers['x-aether-api-token'] = 'aaabbbcccxxxyyyzzz';
-axios_fastapi.defaults.headers['x-aether-api-expire-on'] = '';
-axios_fastapi.defaults.headers['x-account-id'] = 'xxxyyyzzz111222333';
-
-
-async function patch_object({axios=axios_fastapi, endpoint='', params=[], record=[], return_meta=false}) {
-    console.log('*** patch_object() ***');
-
-    //console.log(endpoint);
-    //console.log(params);
-    console.log(record);
-    //console.log(return_meta);
-    //console.log(force_li);
-
-    let response_data = await axios.patch(endpoint, record, { params: params })
-    .then(function (response) {
-        console.log(response.data);
-        return response.data['data'];
-        //return response.data;
-    })
-    .catch(function (error) {
-        console.log(error.response);
-        if (error.response.status === 404) {
-            return null;
-        }
-        return error;
-    });
-
-    return response_data;
-}
-
-export default patch_object;

src/api_post.js

@@ -1,45 +0,0 @@
-import axios from 'axios';
-
-console.log('*** api_post.js ***');
-
-var axios_fastapi = axios.create({
-    // baseURL: 'https://dev-fastapi.oneskyit.com',
-    baseURL: 'http://fastapi.localhost:5005',
-    // baseURL: 'http://192.168.32.20:5005',
-    /* other custom settings */
-});
-axios_fastapi.defaults.headers['Access-Control-Allow-Origin'] = '*';
-axios_fastapi.defaults.headers['content-type'] = 'application/json';
-axios_fastapi.defaults.headers['x-aether-api-key'] = 'aaabbbcccxxxyyyzzz';
-axios_fastapi.defaults.headers['x-aether-api-token'] = 'aaabbbcccxxxyyyzzz';
-axios_fastapi.defaults.headers['x-aether-api-expire-on'] = '';
-axios_fastapi.defaults.headers['x-account-id'] = 'xxxyyyzzz111222333';
-
-
-async function post_object({axios=axios_fastapi, endpoint='', record=[], return_meta=false}) {
-    console.log('*** post_object() ***');
-
-    //console.log(endpoint);
-    //console.log(params);
-    console.log(record);
-    //console.log(return_meta);
-    //console.log(force_li);
-
-    let response_data = await axios.post(endpoint, record)
-    .then(function (response) {
-        console.log(response.data);
-        return response.data['data'];
-        //return response.data;
-    })
-    .catch(function (error) {
-        console.log(error.response);
-        if (error.response.status === 404) {
-            return null;
-        }
-        return error;
-    });
-
-    return response_data;
-}
-
-export default post_object;

src/app.css

@@ -0,0 +1,998 @@
+@import 'tailwindcss';
+@plugin 'tailwindcss-animate';
+
+/* Enable class-based dark mode for Tailwind v4.
+   Without this, Tailwind v4 defaults to @media (prefers-color-scheme: dark),
+   which ignores the .dark class on <html> and always follows the OS setting.
+   This makes the dark/light toggle in e_app_theme.svelte actually work. */
+@custom-variant dark (&:where(.dark, .dark *));
+
+/* Sync native browser control rendering (select dropdowns, scrollbars, etc.)
+   with the app's dark/light mode toggle. Without this, native controls follow
+   the OS theme rather than the app's .dark/.light class on <html>. */
+html.dark {
+    color-scheme: dark;
+}
+html.light {
+    color-scheme: light;
+}
+
+@import '@skeletonlabs/skeleton';
+
+/* Register Preset Themes */
+/* @import '@skeletonlabs/skeleton/themes/{theme-name}'; */
+@import '@skeletonlabs/skeleton/themes/cerberus';
+@import '@skeletonlabs/skeleton/themes/concord';
+@import '@skeletonlabs/skeleton/themes/crimson';
+@import '@skeletonlabs/skeleton/themes/hamlindigo';
+@import '@skeletonlabs/skeleton/themes/modern';
+@import '@skeletonlabs/skeleton/themes/nouveau';
+@import '@skeletonlabs/skeleton/themes/rocket';
+@import '@skeletonlabs/skeleton/themes/terminus';
+@import '@skeletonlabs/skeleton/themes/vintage';
+@import '@skeletonlabs/skeleton/themes/wintry';
+
+/* @import '@skeletonlabs/skeleton/themes/ae_c_osit'; */
+/* @import '@skeletonlabs/skeleton/themes/ae_c_lci'; */
+@import './ae-osit-default.css';
+@import './ae-c-lci.css';
+@import './ae-c-idaa-light.css';
+@import './ae-firefly.css';
+@import './ae-firefly-steelblue.css';
+@import './ae-firefly-indigo.css';
+@import './ae-firefly-rainbow.css';
+
+@source '../node_modules/@skeletonlabs/skeleton-svelte/dist';
+
+/* Add your theme import for your theme: "osit-custom-theme" here */
+/* @plugin '@tailwindcss/forms'; */
+/* @plugin '@tailwindcss/typography'; */
+
+/* @import "tailwindcss/theme.css" layer(theme); */
+/* @import "tailwindcss/preflight"; */
+@import 'tailwindcss/utilities.css' layer(utilities);
+/*@tailwind utilities;*/
+
+/* Register a Custom Themes */
+/* Make sure to resolve the relative path. */
+/* Note the .css extension is optional. */
+/* @import '../{my-theme-name}'; */
+
+/* @import '@fontsource/open-sans'; */
+
+/* https://www.skeleton.dev/docs/guides/cookbook/light-switch */
+/* @custom-variant dark (&:where([data-mode="dark"], [data-mode="dark"] *)); */
+
+@layer base {
+    :root {
+        --background: 0 0% 100%;
+        --foreground: 224 71.4% 4.1%;
+        --muted: 220 14.3% 95.9%;
+        --muted-foreground: 220 8.9% 46.1%;
+        --popover: 0 0% 100%;
+        --popover-foreground: 224 71.4% 4.1%;
+        --card: 0 0% 100%;
+        --card-foreground: 224 71.4% 4.1%;
+        --border: 220 13% 91%;
+        --input: 220 13% 91%;
+        --primary: 220.9 39.3% 11%;
+        --primary-foreground: 210 20% 98%;
+        --secondary: 220 14.3% 95.9%;
+        --secondary-foreground: 220.9 39.3% 11%;
+        --accent: 220 14.3% 95.9%;
+        --accent-foreground: 220.9 39.3% 11%;
+        --destructive: 0 72.2% 50.6%;
+        --destructive-foreground: 210 20% 98%;
+        --ring: 224 71.4% 4.1%;
+        --radius: 0.5rem;
+        --sidebar-background: 0 0% 98%;
+        --sidebar-foreground: 240 5.3% 26.1%;
+        --sidebar-primary: 240 5.9% 10%;
+        --sidebar-primary-foreground: 0 0% 98%;
+        --sidebar-accent: 240 4.8% 95.9%;
+        --sidebar-accent-foreground: 240 5.9% 10%;
+        --sidebar-border: 220 13% 91%;
+        --sidebar-ring: 217.2 91.2% 59.8%;
+    }
+
+    /* .dark {
+    --background: 224 71.4% 4.1%;
+    --foreground: 210 20% 98%;
+    --muted: 215 27.9% 16.9%;
+    --muted-foreground: 217.9 10.6% 64.9%;
+    --popover: 224 71.4% 4.1%;
+    --popover-foreground: 210 20% 98%;
+    --card: 224 71.4% 4.1%;
+    --card-foreground: 210 20% 98%;
+    --border: 215 27.9% 16.9%;
+    --input: 215 27.9% 16.9%;
+    --primary: 210 20% 98%;
+    --primary-foreground: 220.9 39.3% 11%;
+    --secondary: 215 27.9% 16.9%;
+    --secondary-foreground: 210 20% 98%;
+    --accent: 215 27.9% 16.9%;
+    --accent-foreground: 210 20% 98%;
+    --destructive: 0 62.8% 30.6%;
+    --destructive-foreground: 210 20% 98%;
+    --ring: 216 12.2% 83.9%;
+	--sidebar-background: 240 5.9% 10%;
+    --sidebar-foreground: 240 4.8% 95.9%;
+    --sidebar-primary: 224.3 76.3% 48%;
+    --sidebar-primary-foreground: 0 0% 100%;
+    --sidebar-accent: 240 3.7% 15.9%;
+    --sidebar-accent-foreground: 240 4.8% 95.9%;
+    --sidebar-border: 240 3.7% 15.9%;
+    --sidebar-ring: 217.2 91.2% 59.8%;
+  } */
+}
+
+@layer base {
+    * {
+        border-color: hsl(var(--border));
+    }
+    body {
+        background-color: hsl(var(--background));
+        color: hsl(var(--foreground));
+    }
+    /* Tailwind preflight strips native select padding — restore it globally */
+    select {
+        padding-inline: 0.5rem;
+    }
+}
+
+/* ============================================================
+ * Global dark mode fix for Skeleton UI form elements.
+ *
+ * Skeleton v3 form classes (.input, .select, .textarea) do not
+ * include dark mode styles — browser renders them light even when
+ * html.dark is active, producing white text on white backgrounds.
+ *
+ * This eliminates the need for per-component <style> patches.
+ * Components that previously had local overrides for this can
+ * remove them and rely on this rule instead.
+ *
+ * Matches the gray-700 bg / gray-100 text palette used throughout
+ * the app for dark mode neutral surfaces.
+ * ============================================================ */
+.dark .input:not([type='checkbox']):not([type='radio']):not([type='range']),
+.dark .select,
+.dark .textarea {
+    color: rgb(243 244 246); /* gray-100 */
+    background-color: rgb(55 65 81); /* gray-700 */
+    border-color: rgb(75 85 99); /* gray-600 */
+}
+.dark .input::placeholder,
+.dark .textarea::placeholder {
+    color: rgb(156 163 175); /* gray-400 — legible at reduced opacity */
+}
+/* Option elements in dark selects — forces browser native dark chrome */
+.dark .select option {
+    color: rgb(243 244 246);
+    background-color: rgb(55 65 81);
+}
+
+/* ============================================================
+ * Lucide SVG icon inline flow fix.
+ *
+ * FA icon spans were display:inline and flowed naturally with adjacent text.
+ * Lucide renders <svg> elements which default to inline-block in most browsers,
+ * causing icons to break onto their own line when mixed with text.
+ *
+ * This global rule restores the FA-equivalent behavior: icons flow inline
+ * with text and are vertically centered on the text baseline.
+ * Components that already explicitly set display:flex on their parent are
+ * unaffected — flex children ignore display:inline.
+ * ============================================================ */
+svg.lucide {
+    display: inline;
+    vertical-align: middle;
+}
+
+/* There are no more Tailwind layers. */
+
+html,
+body {
+    @apply h-full overflow-hidden;
+
+    /* font-family: 'Liberation Sans', sans-serif; */
+    /* font-family: 'Noto Sans', sans-serif; */
+}
+
+/* Font size accessibility modes — cycled via the font size button in the sys menu.
+   Applied as a class on <html> by the layout DOM effect.
+   The 'default' mode has no class (browser default, typically 16px).  */
+html.font-size-larger {
+    font-size: 112.5%;
+} /* ~18px base */
+html.font-size-smaller {
+    font-size: 87.5%;
+} /* ~14px base */
+
+html.super_access #appShell {
+    background-color: hsla(0, 100%, 50%, 0.5);
+}
+
+html.manager_access #appShell {
+    background-color: hsla(0, 50%, 75%, 0.5);
+}
+html.administrator_access #appShell {
+    background-color: hsla(40, 50%, 85%, 0.25);
+}
+html.trusted_access #appShell {
+    background-color: hsla(20, 50%, 85%, 0.25);
+}
+
+/* default theme */
+/* @font-face {
+    font-family: 'Liberation Sans', sans-serif;
+    font-family: 'Noto Sans', sans-serif;
+    src: url('/fonts/liberation/LiberationSans-Regular.ttf');
+    src: url('/fonts/noto/NotoSans-Regular.ttf');
+    font-display: swap;
+} */
+
+/* modern theme */
+@font-face {
+    font-family: 'Quicksand';
+    src: url('/fonts/Quicksand.ttf');
+    font-display: swap;
+}
+
+/* :root [data-theme='modern'] { */
+/* --theme-rounded-base: 20px;
+	--theme-rounded-container: 4px; */
+
+/* --theme-font-family-base: 'Liberation Sans', sans-serif; */
+/* --theme-font-family-heading: 'Liberation Sans', sans-serif; */
+/* } */
+
+/* Using Skeleton Tailwind Presets */
+/* Built in colors (also with "contrast" option):
+* - primary
+* - secondary
+* - tertiary
+* - success
+* - warning
+* - error
+* - surface
+*/
+
+/* Built in presets:
+* - Filled - a filled preset of the primary brand color.
+* - Tonal - a tonal preset of the primary brand color.
+* - Outlined - an outlined preset of the primary brand color.
+*/
+
+/* Additional customized presets:
+* - Glass - a custom preset using background transparency and backdrop blur.
+* - Elevated - mixes a filled preset with a shadow.
+* - Ghost - has no style by default, but shows a tonal preset on hover.
+* - Ghost Icon - has no style by default, but shows a branded tonal preset on hover.
+* - Gradient - a custom preset generated using Tailwind gradient primitives.
+*/
+
+/* Generic button types needed:
+* - primary
+* - secondary
+* - tertiary
+* - success
+* - warning
+* - error
+* - neutral
+* - surface
+* - info
+* - danger
+* - normal
+* - outline
+* - text
+*/
+
+/* Aether specific button types needed:
+* - open or view
+* - close or hide
+* - help
+* - save
+* - delete
+* - cancel
+* - confirm
+* - reset
+* - submit
+* - next or previous
+* - back
+* - edit
+* - create
+* - add
+* - remove
+* - copy
+* - paste
+* - download
+* - upload
+* - print
+* - share
+* - search
+* - filter
+* - sort
+* - select
+* - clear
+* - toggle or switch
+* - expand or collapse
+* - configure or settings
+* - refresh or reload
+* - sync or synchronize
+* - play or pause
+* - stop
+* - like or dislike
+* - favorite or unfavorite
+* - follow or unfollow
+* - subscribe or unsubscribe
+* - vote or unvote
+* - rate or review
+* - report or flag
+* - block or unblock
+* - accept or decline
+* - agree or disagree
+* - confirm or cancel
+* - approve or reject
+
+
+*/
+
+/* Create a custom preset in your global stylesheet */
+/* .preset-gradient {
+    background-image: linear-gradient(-45deg, var(--color-primary-300), var(--color-primary-700));
+    color: var(--color-primary-contrast-500);
+} */
+/* .preset-glass-primary {
+    background: color-mix(in oklab, var(--color-primary-500) 40%, transparent);
+    box-shadow: 0 0px 30px color-mix(in oklab, var(--color-primary-500) 50%, transparent) inset;
+    backdrop-filter: blur(16px);
+} */
+
+/*
+* - tonal buttons - use these for most buttons
+* - filled buttons - use these for buttons that need to stand out
+* - outlined buttons - use these for buttons that need to be less prominent (sort of like TW v3 ghost)
+*/
+
+/* Buttons default to the tonal presets */
+/* Buttons based on Skeleton Tailwind preset classes */
+.ae_btn_neutral {
+    /* @apply preset-tonal hover:preset-outlined border transition-all; */
+}
+.ae_btn_primary {
+    /* @apply preset-tonal-primary border border-primary-500 transition-all; */
+}
+.ae_btn_secondary {
+    @apply preset-tonal-secondary border-secondary-500 border transition-all;
+    /* hover:preset-filled-secondary-500 */
+}
+.ae_btn_tertiary {
+    @apply preset-tonal-tertiary border-tertiary-500 border transition-all;
+}
+.ae_btn_success {
+    @apply preset-tonal-success border-success-500 border transition-all;
+}
+.ae_btn_warning {
+    @apply preset-tonal-warning border-warning-500 text-warning-950-50 border transition-all;
+}
+.ae_btn_error {
+    @apply preset-tonal-error border-error-500 border transition-all;
+}
+.ae_btn_surface {
+    @apply preset-tonal-surface border-surface-500 border transition-all;
+}
+/* Buttons customized for Aether using Skeleton Tailwind preset classes */
+.ae_btn_info {
+    @apply border border-cyan-100 bg-cyan-50 text-cyan-950 transition-all hover:bg-cyan-200 dark:border-cyan-900 dark:bg-cyan-950 dark:text-cyan-50 hover:dark:bg-cyan-800;
+}
+
+/* Buttons are for filled and outlined presets */
+.ae_btn_secondary_filled {
+    @apply preset-filled-secondary-200-800 border-secondary-500 border transition-all;
+    /* hover:preset-filled-secondary-500 */
+}
+.ae_btn_secondary_outlined {
+    @apply preset-outlined-secondary-200-800 hover:preset-filled-secondary-400-600 text-secondary-950-50 transition-all;
+}
+.ae_btn_success_filled {
+    @apply preset-filled-success-200-800 border-success-500 border transition-all;
+}
+.ae_btn_success_outlined {
+    @apply preset-outlined-success-200-800 hover:preset-filled-success-400-600 text-success-950-50 transition-all;
+}
+.ae_btn_warning_filled {
+    @apply preset-filled-warning-200-800 border-warning-500 border transition-all;
+}
+.ae_btn_warning_outlined {
+    @apply preset-outlined-warning-200-800 hover:preset-filled-warning-400-600 text-warning-950-50 transition-all;
+}
+.ae_btn_surface_filled {
+    @apply preset-filled-surface-200-800 border-surface-500 border transition-all;
+}
+.ae_btn_surface_outlined {
+    @apply preset-outlined-surface-200-800 hover:preset-filled-surface-400-600 text-surface-950-50 transition-all;
+}
+.ae_btn_error_outlined {
+    @apply preset-outlined-error-200-800 hover:preset-filled-error-400-600 text-error-950-50 transition-all;
+}
+.ae_btn_info_filled {
+    @apply border border-cyan-200 bg-cyan-200 text-cyan-950 transition-all dark:border-cyan-800 dark:bg-cyan-800 dark:text-cyan-50;
+}
+.ae_btn_info_outlined {
+    @apply border border-cyan-200 bg-cyan-50 text-cyan-950 transition-all dark:border-cyan-800 dark:bg-cyan-950 dark:text-cyan-50;
+}
+
+/* Containers customized for Aether using Skeleton Tailwind preset classes */
+.ae_container_system_menu {
+    @apply container;
+}
+.ae_container_system_options {
+    @apply container;
+}
+.ae_container_system_help {
+    @apply container;
+}
+
+.ae_container_module {
+    @apply container;
+    /* @apply container mx-auto max-w-7xl px-4 sm:px-6 lg:px-8; */
+}
+/* .ae_container_module_main {
+    @apply container;
+} */
+.ae_module_header {
+    /* LCI request 3a5997 */
+    /* bg-gray-300 */
+    @apply preset-tonal-surface flex w-full max-w-7xl flex-col flex-wrap items-center justify-between gap-0.25 rounded-md p-1 px-2 md:flex-row;
+}
+
+[data-theme='AE_c_LCI'] .ae_module_header {
+    /* LCI request 3a5997 */
+    /* bg-gray-300 */
+    @apply preset-tonal-primary;
+}
+[data-theme='AE_c_LCI'] .ae_obj__event_presenter {
+    @apply preset-filled-success-500;
+    /* --color-success-500; */
+}
+
+.ae_container_module_content {
+    @apply container;
+}
+.ae_container_module_menu {
+    @apply flex w-full max-w-7xl flex-col items-center justify-center gap-1 rounded-md border border-gray-200 p-1 transition-all duration-700 hover:bg-gray-100 hover:duration-300 dark:border-gray-800 dark:hover:bg-gray-900;
+}
+.ae_container_module_options {
+    @apply flex w-full max-w-full flex-row flex-wrap items-center justify-around rounded-md border border-cyan-200 bg-cyan-50 p-2 text-cyan-950 transition-all hover:border-cyan-400 hover:bg-cyan-100 dark:border-cyan-800 dark:bg-cyan-950 dark:text-cyan-50 dark:hover:border-cyan-600 dark:hover:bg-cyan-900;
+}
+.ae_container_module_help {
+    @apply w-lg max-w-full rounded-md border border-yellow-200 bg-yellow-50 p-2 text-yellow-950 transition-all hover:border-yellow-400 hover:bg-yellow-100 dark:border-yellow-800 dark:bg-yellow-950 dark:text-yellow-50 dark:hover:border-yellow-600 dark:hover:bg-yellow-900;
+    /* bg-yellow-100 border border-yellow-400 p-2 rounded-md max-w-xl */
+}
+
+.ae_container_actions {
+    @apply preset-tonal-success border-success-500 container my-2 flex flex-row items-center rounded-md border p-2;
+}
+.ae_container_results {
+    @apply container;
+}
+.ae_container_content {
+    @apply container;
+}
+.ae_container_content_header {
+    @apply container;
+}
+.ae_container_content_content {
+    @apply container;
+}
+.ae_container_content_footer {
+    @apply container;
+}
+
+.ae_container_alert {
+    @apply container;
+}
+.ae_container_help {
+    @apply max-w-full rounded-md border border-yellow-200 bg-yellow-50 p-2 text-yellow-950 transition-all hover:border-yellow-400 hover:bg-yellow-100 dark:border-yellow-800 dark:bg-yellow-950 dark:text-yellow-50 dark:hover:border-yellow-600 dark:hover:bg-yellow-900;
+    /* bg-yellow-100 border border-yellow-400 p-2 rounded-md max-w-xl */
+}
+.ae_container_info {
+    @apply max-w-full rounded-md border border-cyan-200 bg-cyan-50 p-2 text-cyan-950 transition-all hover:border-cyan-400 hover:bg-cyan-100 dark:border-cyan-800 dark:bg-cyan-950 dark:text-cyan-50 dark:hover:border-cyan-600 dark:hover:bg-cyan-900;
+}
+.ae_container_msg {
+    @apply container;
+}
+.ae_container_warning {
+    @apply container;
+}
+.ae_container_tag {
+    @apply container;
+}
+
+.ae_container_modal {
+    @apply container mx-auto max-w-7xl px-4 sm:px-6 lg:px-8;
+}
+.ae_container_modal_header {
+    @apply container;
+}
+.ae_container_modal_content {
+    @apply container;
+}
+.ae_container_modal_footer {
+    @apply container;
+}
+
+/* Standard Aether object properties:
+* - id
+* - name
+* - enable
+* - hide
+* - priority
+* - sort
+* - group
+* - notes
+ */
+
+.card-footer {
+    border-top: 1px solid hsla(0, 0%, 0%, 0.5);
+    margin-top: 1em;
+    padding-top: 1em;
+
+    opacity: 0.5;
+}
+
+/* Tailwind: This "fixes" Tailwind's default group button styles that do not seem to allow hiding buttons. */
+.btn-group a.hidden,
+.btn-group button.hidden {
+    display: none;
+}
+
+.ae_d_none {
+    display: none;
+}
+
+/* Allow content to scroll horizontal if too wide */
+.ae_h_scrollfix {
+    max-width: 100%;
+    overflow-x: auto;
+}
+
+/* These helps with the Skeleton Tailwind modal utility. */
+.ae_modal_scrollfix {
+    /* Allow modal content to scroll if it's too long */
+    overflow-y: auto;
+    max-height: 96vh;
+    /* max-height: 99%; */
+}
+
+.ae_debug {
+    /* A darker pink outline */
+    outline: thin dashed;
+    outline-color: hsla(0, 100%, 50%, 0.15);
+    /* A light pink background color */
+    background-color: hsla(0, 100%, 50%, 0.15);
+}
+.ae_debug:hover {
+    /* A darker pink outline */
+    outline-color: hsla(0, 100%, 50%, 0.5);
+    /* A light pink background color */
+    background-color: hsla(0, 100%, 50%, 0.4);
+}
+
+/* Deal with being in an iframe */
+#appShell #shell-header.iframe {
+    display: none;
+}
+
+#appShell #shell-footer.iframe {
+    display: none;
+}
+
+.iframe .module_header,
+.iframe .module_footer {
+    display: none;
+}
+
+/* Remove the background from the body in all cases */
+/* body[data-theme] { */
+/* background: none; */
+/* background-image: none; */
+/* } */
+
+/* Remove the background from the body if using iframes */
+/* body[data-theme]:has(#page.iframe) { */
+/* background: none; */
+/* background-image: none; */
+/* background-image: url('https://static.oneskyit.com/c/CHOW/images/CHOW_2024_yellow_background.png'); */
+/* background-size: cover; */
+/* } */
+
+main {
+    /* background: none;
+    background-color: hsla(0, 0%, 100%, 0.92); */
+}
+
+main > section {
+    background: none;
+    background-color: hsla(0, 0%, 100%, 0.92);
+    padding: 0.5em;
+}
+
+/* @media (min-width: 640px) {
+    main>div, main>section {
+        padding: 0;
+        max-width: 100%;
+    }
+} */
+
+/* @media (min-width: 768px) {
+    main>div, main>section {
+        padding: 0;
+        max-width: 100%;
+    }
+} */
+
+.ae_sponsorships {
+    /* background: none; */
+    /* background-color: hsla(0, 0%, 100%, 0.92); */
+    /* background-image: url('https://static.oneskyit.com/c/CHOW/images/CHOW_2024_yellow_background.png'); */
+    /* background-size: cover; */
+}
+
+pre.pre_wrap {
+    white-space: pre-wrap;
+    word-break: normal;
+    word-wrap: normal;
+
+    border: none;
+
+    max-width: 100%;
+    overflow-x: auto;
+}
+
+input.required {
+    /* border-right: solid medium var(--color-warning-500); */
+    /* color: var(--color-warning-500); */
+}
+
+input:required {
+    /* background-color: var(--alert-color-lightest); */
+    /* border: solid 2px red; */
+    /* outline: dashed thin var(--alert-color-lighter); */
+
+    /* border-right: solid medium var(--alert-color-mid); */
+    /* border-right: solid medium var(--warning-color-mid); */
+    /* border-right: solid medium var(--error-color-mid); */
+}
+/* input:required:hover {
+    background-color: var(--alert-color-lighter);
+    border-right: solid thick var(--alert-color-darker);
+} */
+
+/* input:required::before {
+    display: block;
+
+    content: '*';
+    color: var(--warning-color-darker);
+
+    top: 5px;
+    left: 5px;
+} */
+
+.input_required::after {
+    content: '*';
+    color: rgb(var(--color-error-500) / 0.9);
+
+    position: relative;
+    /* top: 0em; */
+    left: 0.25em;
+}
+
+/* Make the group a flex row by default */
+/* div.btn-group { */
+/* display: flex; */
+/* gap: 0; */
+/* flex-direction: row; */
+/* justify-content: space-around; */
+/* align-items: center; */
+/* margin: 0;
+    padding: 0; */
+
+/* } */
+/* Make all button elements except for the the first button element not rounded on the left. */
+/* Make all button elements except for the fhe last button element not rounded on the right. */
+/* These helps with the Skeleton (Tailwind?) button group element. */
+.btn-group button {
+    border-radius: 0;
+    border: none;
+}
+
+/* .md:btn-group button,
+.lg:btn-group button {
+    border-radius: 0;
+    border: none;
+} */
+
+/* div.btn-group button:first-child {
+    border-top-left-radius: .25rem;
+    border-bottom-left-radius: .25rem;
+}
+div.btn-group button:last-child {
+    border-top-right-radius: .25rem;
+    border-bottom-right-radius: .25rem;
+} */
+
+.ae_obj_prop .label {
+}
+
+.ae_obj_prop .value {
+    font-weight: bold;
+}
+
+.ae_md_hide {
+    /* outline: medium dashed green; */
+    /* display: none; */
+}
+
+@media (max-width: 767px) {
+    .ae_md_hide {
+        /* outline: medium dashed red; */
+        display: none;
+    }
+}
+@media (min-width: 768px) {
+    .ae_lg_hide {
+        /* outline: medium dashed blue; */
+        display: none;
+    }
+}
+
+/* Use the div.ae_quick_modal_container to block background clicks when using the section.ae_quick_popover. */
+div.ae_quick_modal_container {
+    position: fixed;
+    top: 0;
+    left: 0;
+    width: 100%;
+    height: 100%;
+    z-index: 100;
+    background-color: hsla(0, 0%, 0%, 0.5);
+}
+
+/* The section.ae_quick_popover should be above the rest of the content and centered on the page. */
+section.ae_quick_popover {
+    position: fixed;
+    top: 50%;
+    left: 50%;
+    transform: translate(-50%, -50%);
+    z-index: 100;
+    background-color: hsla(0, 0%, 100%, 0.95);
+    padding: 1rem;
+    border-radius: 0.5rem;
+    box-shadow: 0 0 1rem hsla(0, 0%, 0%, 0.5);
+
+    min-height: 98%;
+    min-width: 98%;
+}
+
+section.ae_quick_popover_small {
+    position: fixed;
+    top: 1em;
+    left: 50%;
+    transform: translate(-50%, 0%);
+    z-index: 100;
+    background-color: hsla(0, 0%, 100%, 0.95);
+    padding: 1rem;
+    border-radius: 0.5rem;
+    box-shadow: 0 0 1rem hsla(0, 0%, 0%, 0.5);
+
+    min-height: 24rem;
+    max-height: 95%;
+    min-width: 50%;
+    max-width: 95%;
+}
+
+.fade_50 {
+    opacity: 0.5;
+}
+.fade_50:hover {
+    opacity: 1;
+}
+
+.auth_view_only {
+    display: none;
+}
+.ae_root--auth_access .auth_view_only {
+    display: initial;
+}
+
+img.qr_code {
+    /* outline: solid thin hsla(30, 100%, 50%, .1); */
+    /* width: 1.50in; */
+}
+
+img.qr_code:hover {
+    /* outline: solid thin green; */
+    /* width: 2.50in; */
+}
+
+img.qr_code:focus {
+    /* outline: solid thin red; */
+    /* width: 2.50in; */
+}
+
+.dim {
+    opacity: 0.5;
+    color: hsla(0, 0%, 50%, 0.95);
+}
+.dim_warning {
+    opacity: 0.5;
+    /* color: hsla(0, 100%, 50%, .95); */
+    /* background should be hash marks */
+    background-image: repeating-linear-gradient(
+        -45deg,
+        hsla(0, 100%, 50%, 0.25),
+        hsla(0, 100%, 50%, 0.25) 10px,
+        transparent 10px,
+        transparent 20px
+    );
+}
+
+.alert {
+    /* background-color: hsla(0, 100%, 50%, .1); */
+    outline: dashed thin hsla(0, 100%, 50%, 0.5);
+}
+
+@media (max-width: 767px) {
+    .sk_header.hide_sm {
+        display: none;
+    }
+    .sk_header.show_sm {
+        display: initial;
+    }
+    .sk_header.show_md {
+        display: none;
+    }
+}
+
+@media (min-width: 768px) {
+    .sk_header.hide_md {
+        display: none;
+    }
+    .sk_header.show_md {
+        display: initial;
+    }
+    .sk_header.show_sm {
+        display: none;
+    }
+}
+
+/* We need to reset many of the styles for the reset_css class. */
+.reset_css p {
+    margin: 0.75em 0;
+}
+.reset_css ol {
+    list-style-type: decimal;
+}
+.reset_css ul {
+    list-style-type: disc;
+}
+.reset_css li {
+    margin-left: 1.5em;
+}
+/* Reset anchor tags to the default color and underline. */
+.reset_css a {
+    color: hsla(210, 100%, 50%, 1);
+    text-decoration: underline;
+}
+.reset_css a:hover {
+    color: hsla(210, 100%, 50%, 0.75);
+    text-decoration: none;
+}
+
+/* .ae_btn.btn-danger,
+.ae_btn.btn-info,
+.ae_btn.btn-warning {
+    border-radius: 60px;
+} */
+
+/* .ae_margin_xs {
+    margin: 0.25em;
+}
+.ae_margin_sm {
+    margin: 0.5em;
+}
+.ae_margin_md {
+    margin: 0.75em;
+}
+.ae_margin_lg {
+    margin: 1em;
+}
+.ae_margin_lg {
+    margin: 1.25em;
+} */
+
+/* BEGIN: Overrides and fixes specific to Novi and IDAA */
+.iframe .novi_btn {
+    border-radius: 60px;
+    /* border-color: hsla(0, 0%, 50%, .5); */
+    /* border-color: hsla(0, 0%, 0%, .15); */
+}
+
+.iframe .novi_m0 {
+    margin: 0;
+}
+.iframe .novi_p0 {
+    padding: 0;
+}
+
+.iframe .dark .novi_label {
+    color: white;
+}
+
+.iframe .dark .novi_black {
+    color: black;
+}
+
+.iframe .dark .novi_white {
+    color: white;
+}
+
+.iframe .dark .novi_bg_black {
+    background-color: black;
+}
+
+.iframe .dark .novi_bg_white {
+    background-color: white;
+}
+
+.iframe .dark .novi_bg_gray {
+    background-color: hsla(0, 0%, 50%, 1);
+}
+
+.iframe .dark .novi_bg_light_gray {
+    background-color: hsla(0, 0%, 95%, 1);
+}
+.iframe .dark .novi_bg_dark_gray {
+    background-color: hsla(0, 0%, 20%, 1);
+}
+
+.iframe .novi_bg_light {
+    background-color: hsla(0, 0%, 0%, 0.15);
+    color: hsla(0, 0%, 20%, 1);
+}
+.iframe .novi_bg_dark {
+    background-color: hsla(0, 0%, 0%, 0.25);
+    color: hsla(0, 0%, 95%, 1);
+}
+
+.iframe .novi_margin_sm {
+    /* margin: 0.5em; */
+}
+
+.iframe .novi_text_wrap {
+    /* white-space: normal; */
+    white-space: pre-wrap;
+    word-break: break-word;
+}
+
+/* END: Overrides and fixes specific to Novi and IDAA */
+
+.iframe button.ae_normal,
+.iframe .btn.ae_normal {
+    /* font: normal 1em sans-serif; */
+    font-size: 1rem;
+}
+
+.iframe button.ae_smaller,
+.iframe .btn.ae_smaller,
+.iframe button.novi_smaller,
+.iframe .btn.novi_smaller {
+    font-size: 0.8rem;
+}
+
+.iframe button.ae_smallest,
+.iframe .btn.ae_smallest,
+.iframe button.novi_smallest,
+.iframe .btn.novi_smallest {
+    font-size: 0.65rem;
+}

src/app.d.ts

@@ -0,0 +1,24 @@
+// See https://kit.svelte.dev/docs/types#app
+// for information about these interfaces
+// and what to do when importing types
+declare namespace App {
+    interface Locals {
+        userid: string;
+    }
+    // interface PageData {}
+    // interface Error {}
+    // interface Platform {}
+}
+
+declare global {
+    namespace App {
+        interface Platform {}
+    }
+
+    interface Window {
+        native_app: any;
+    }
+
+    // eslint-disable-next-line no-var
+    var native_app: any;
+}

src/app.html

@@ -0,0 +1,32 @@
+<!doctype html>
+<html lang="en" data-theme="">
+    <head>
+        <meta charset="utf-8" />
+
+        <link rel="icon" href="%sveltekit.assets%/favicon.png" />
+        <link rel="manifest" href="/manifest.json" />
+
+        <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+
+        <link rel="preconnect" href="https://fonts.gstatic.com" />
+        <link rel="preconnect" href="https://fonts.googleapis.com" />
+        <link
+            href="https://fonts.googleapis.com/css2?family=Noto+Sans:ital,wght@0,400;0,700;1,400;1,700&display=swap"
+            rel="stylesheet" />
+        <link
+            href="https://fonts.googleapis.com/css2?family=Noto+Serif:ital,wght@0,400;0,700;1,400;1,700&display=swap"
+            rel="stylesheet" />
+        <link
+            href="https://fonts.googleapis.com/css2?family=Roboto+Mono:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;1,100;1,200;1,300;1,400;1,500;1,600;1,700&display=swap"
+            rel="stylesheet" />
+
+        <!-- <link href="app.css" rel="stylesheet"> -->
+
+        %sveltekit.head%
+    </head>
+    <!-- h-full w-full overflow-auto -->
+    <!-- overflow-x-scroll -->
+    <body data-sveltekit-preload-data="hover" class="h-full w-full">
+        <div style="display: contents" class="">%sveltekit.body%</div>
+    </body>
+</html>

src/html_input_render_templates.js

@@ -1,119 +0,0 @@
-var template = {};
-
-// NOTE address template section
-template['address'] = {};
-
-template['address']['id'] = { 'obj_type': 'address', 'obj_prop_name': 'id', 'type': 'hidden', 'placeholder': '', 'class_li': [], 'style': '', 'readonly': 'readonly', 'disabled': 'disabled', 'required': 'required', 'label': 'ID', 'label_class_li': [] };
-template['address']['id_random'] = { 'obj_type': 'address', 'obj_prop_name': 'id_random', 'type': 'hidden', 'placeholder': '', 'class_li': [], 'style': '', 'readonly': 'readonly', 'disabled': 'disabled', 'required': 'required', 'label': 'ID random', 'label_class_li': [] };
-
-template['address']['for_type'] = { 'obj_type': 'address', 'obj_prop_name': 'for_type', 'type': 'text', 'placeholder': 'For type', 'class': 'address.for_type', 'style': '', 'label': 'For type', 'label_class_li': [] };
-template['address']['for_id'] = { 'obj_type': 'address', 'obj_prop_name': 'for_id', 'type': 'text', 'placeholder': 'For ID', 'class': 'address.for_id', 'style': '', 'label': 'For ID', 'label_class_li': [] };
-
-template['address']['name'] = { 'obj_type': 'address', 'obj_prop_name': 'name', 'type': 'text', 'placeholder': 'Name', 'class': 'address.name', 'style': '', 'label': 'Name', 'label_class_li': [] };
-template['address']['attention_to'] = { 'obj_type': 'address', 'obj_prop_name': 'attention_to', 'type': 'text', 'placeholder': 'Attention to', 'class': 'address.attention_to', 'style': '', 'label': 'Attention to', 'label_class_li': [] };
-
-template['address']['organization_name'] = { 'obj_type': 'address', 'obj_prop_name': 'organization_name', 'type': 'text', 'placeholder': 'Organization name', 'class': 'address.organization_name', 'style': '', 'label': 'Organization name', 'label_class_li': [] };
-template['address']['line_1'] = { 'obj_type': 'address', 'obj_prop_name': 'line_1', 'type': 'text', 'placeholder': 'Line 1', 'class': 'address.line_1', 'style': '', 'label': 'Line 1', 'label_class_li': [] };
-template['address']['line_2'] = { 'obj_type': 'address', 'obj_prop_name': 'line_2', 'type': 'text', 'placeholder': 'Line 2', 'class': 'address.line_2', 'style': '', 'label': 'Line 2', 'label_class_li': [] };
-template['address']['line_3'] = { 'obj_type': 'address', 'obj_prop_name': 'line_3', 'type': 'text', 'placeholder': 'Line 3', 'class': 'address.line_3', 'style': '', 'label': 'Line 3', 'label_class_li': [] };
-template['address']['city'] = { 'obj_type': 'address', 'obj_prop_name': 'city', 'type': 'text', 'placeholder': 'City', 'class': 'address.city', 'style': '', 'label': 'City', 'label_class_li': [] };
-template['address']['state_province'] = { 'obj_type': 'address', 'obj_prop_name': 'state_province', 'type': 'text', 'placeholder': 'State/Province', 'class': 'address.state_province', 'style': '', 'label': 'State/Province', 'label_class_li': [] };
-template['address']['postal_code'] = { 'obj_type': 'address', 'obj_prop_name': 'postal_code', 'type': 'text', 'placeholder': 'Postal Code', 'class': 'address.postal_code', 'style': '', 'label': 'Postal code', 'label_class_li': [] };
-
-//template['address']['country_alpha_2_code'] = { 'obj_type': 'address', 'obj_prop_name': 'country_alpha_2_code', 'type': 'select', 'placeholder': 'Country alpha 2 code', 'class': 'address.country_alpha_2_code', 'style': '', 'label': 'Country alpha 2 code', 'label_class_li': [], 'select_option_li': { 'CA': 'Canada', 'MX': 'Mexico', 'US': 'United States', 'UK': 'United Kingdom' } };
-template['address']['country_alpha_2_code'] = { 'obj_type': 'address', 'obj_prop_name': 'country_alpha_2_code', 'type': 'select', 'placeholder': 'Country alpha 2 code', 'class': 'address.country_alpha_2_code', 'style': '', 'label': 'Country alpha 2 code', 'label_class_li': [], 'select_option_li': { 'CA': 'Canada', 'MX': 'Mexico', 'US': 'United States', 'UK': 'United Kingdom' } };
-template['address']['country'] = { 'obj_type': 'address', 'obj_prop_name': 'country', 'type': 'text', 'placeholder': 'Country', 'class': 'address.country', 'style': '', 'label': 'Country', 'label_class_li': [] };
-
-template['address']['timezone'] = { 'obj_type': 'address', 'obj_prop_name': 'timezone', 'type': 'text', 'placeholder': 'Timezone', 'class': 'address.timezone', 'style': '', 'label': 'Timezone', 'label_class_li': [] };
-
-template['address']['latitude'] = { 'obj_type': 'address', 'obj_prop_name': 'latitude', 'type': 'text', 'placeholder': 'Latitude', 'class': 'address.latitude', 'style': '', 'label': 'Latitude', 'label_class_li': [] };
-template['address']['longitude'] = { 'obj_type': 'address', 'obj_prop_name': 'longitude', 'type': 'text', 'placeholder': 'Longitude', 'class': 'address.longitude', 'style': '', 'label': 'Longitude', 'label_class_li': [] };
-template['address']['map_url'] = { 'obj_type': 'address', 'obj_prop_name': 'map_url', 'type': 'url', 'placeholder': 'Map URL', 'class': 'address.map_url', 'style': '', 'label': 'Map URL', 'label_class_li': [] };
-
-template['address']['congressional_district'] = { 'obj_type': 'address', 'obj_prop_name': 'congressional_district', 'type': 'text', 'placeholder': 'Congressional district', 'class': 'address.congressional_district', 'style': '', 'label': 'Congressional district', 'label_class_li': [] };
-
-template['address']['verified'] = { 'obj_type': 'address', 'obj_prop_name': 'verified', 'type': 'checkbox', 'placeholder': 'Verified', 'class': 'address.verified', 'style': '', 'label': 'Verified', 'label_class_li': [] };
-
-template['address']['created_on'] = { 'obj_type': 'address', 'obj_prop_name': 'created_on', 'type': 'text', 'placeholder': '', 'class': 'address.created_on', 'style': '', 'readonly': 'readonly', 'disabled': 'disabled', 'required': 'required', 'label': 'Created on', 'label_class_li': [] };
-template['address']['updated_on'] = { 'obj_type': 'address', 'obj_prop_name': 'updated_on', 'type': 'text', 'placeholder': '', 'class': 'address.updated_on', 'style': '', 'readonly': 'readonly', 'disabled': 'disabled', 'required': 'required', 'label': 'Updated on', 'label_class_li': [] };
-
-
-// NOTE contact section
-template['contact'] = {};
-template['contact']['name'] = { 'obj_type': 'contact', 'obj_prop_name': 'name', 'type': 'text', 'placeholder': 'Name', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': 'required', 'label': 'Name', 'label_class_li': [] };
-template['contact']['title'] = { 'obj_type': 'contact', 'obj_prop_name': 'title', 'type': 'text', 'placeholder': 'Title', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': 'required', 'label': 'Title', 'label_class_li': [] };
-template['contact']['tagline'] = { 'obj_type': 'contact', 'obj_prop_name': 'tagline', 'type': 'checkbox', 'placeholder': 'Tagline', 'class': 'contact.tagline', 'style': '', 'label': 'Tagline', 'label_class_li': [] };
-
-template['contact']['email'] = { 'obj_type': 'contact', 'obj_prop_name': 'email', 'type': 'email', 'placeholder': 'Email address', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'Email address', 'label_class_li': [] };
-template['contact']['other_site_url'] = { 'obj_type': 'contact', 'obj_prop_name': 'website_url', 'type': 'url', 'placeholder': 'Website URL', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'Website URL', 'label_class_li': [] };
-template['contact']['website_name'] = { 'obj_type': 'contact', 'obj_prop_name': 'website_name', 'type': 'text', 'placeholder': 'Website name', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'Website name', 'label_class_li': [] };
-
-template['contact']['phone_mobile'] = { 'obj_type': 'contact', 'obj_prop_name': 'phone_mobile', 'type': 'tel', 'placeholder': 'Phone mobile', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'Phone mobile', 'label_class_li': [] };
-template['contact']['phone_home'] = { 'obj_type': 'contact', 'obj_prop_name': 'phone_home', 'type': 'tel', 'placeholder': 'Phone home', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'Phone home', 'label_class_li': [] };
-template['contact']['phone_office'] = { 'obj_type': 'contact', 'obj_prop_name': 'phone_office', 'type': 'tel', 'placeholder': 'Phone office', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'Phone office', 'label_class_li': [] };
-template['contact']['phone_land'] = { 'obj_type': 'contact', 'obj_prop_name': 'phone_land', 'type': 'tel', 'placeholder': 'Phone land', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'Phone land', 'label_class_li': [] };
-template['contact']['phone_fax'] = { 'obj_type': 'contact', 'obj_prop_name': 'phone_fax', 'type': 'tel', 'placeholder': 'Phone fax', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'Phone fax', 'label_class_li': [] };
-
-template['contact']['facebook_url'] = { 'obj_type': 'contact', 'obj_prop_name': 'facebook_url', 'type': 'url', 'placeholder': 'Facebook URL', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'Facebook URL', 'label_class_li': [] };
-template['contact']['instagram_url'] = { 'obj_type': 'contact', 'obj_prop_name': 'instagram_url', 'type': 'url', 'placeholder': 'Instagram URL', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'Instagram URL', 'label_class_li': [] };
-template['contact']['twitter_url'] = { 'obj_type': 'contact', 'obj_prop_name': 'twitter_url', 'type': 'url', 'placeholder': 'Twitter URL', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'Twitter URL', 'label_class_li': [] };
-template['contact']['linkedin_url'] = { 'obj_type': 'contact', 'obj_prop_name': 'linkedin_url', 'type': 'url', 'placeholder': 'LinkedIn URL', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'LinkedIn URL', 'label_class_li': [] };
-
-template['contact']['other_site_url'] = { 'obj_type': 'contact', 'obj_prop_name': 'other_site_url', 'type': 'url', 'placeholder': 'Other site URL', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'Other site URL', 'label_class_li': [] };
-template['contact']['others_site_name'] = { 'obj_type': 'contact', 'obj_prop_name': 'others_site_name', 'type': 'text', 'placeholder': 'Other site name', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'Other site name', 'label_class_li': [] };
-
-
-template['contact']['enable'] = { 'obj_type': 'contact', 'obj_prop_name': 'enable', 'type': 'checkbox', 'placeholder': 'Enable', 'class': 'contact.enable', 'style': '', 'label': 'Enable', 'label_class_li': [] };
-
-
-
-// NOTE site template section
-template['site'] = {};
-
-template['site']['id'] = { 'obj_type': 'site', 'obj_prop_name': 'id', 'type': 'hidden', 'placeholder': '', 'class_li': [], 'style': '', 'readonly': 'readonly', 'disabled': 'disabled', 'required': 'required', 'label': 'ID', 'label_class_li': [] };
-template['site']['id_random'] = { 'obj_type': 'site', 'obj_prop_name': 'id_random', 'type': 'hidden', 'placeholder': '', 'class_li': [], 'style': '', 'readonly': 'readonly', 'disabled': 'disabled', 'required': 'required', 'label': 'ID random', 'label_class_li': [] };
-
-//template['site']['fqdn_1'] = { 'obj_type': 'site', 'obj_prop_name': 'fqdn_1', 'type': 'text', 'placeholder': 'FQDN 1', 'class': 'site.fqdn_1', 'style': '', 'label': 'FQDN 1', 'label_class_li': [] };
-//template['site']['fqdn_2'] = { 'obj_type': 'site', 'obj_prop_name': 'fqdn_2', 'type': 'text', 'placeholder': 'FQDN 2', 'class': 'site.fqdn_2', 'style': '', 'label': 'FQDN 2', 'label_class_li': [] };
-//template['site']['fqdn_3'] = { 'obj_type': 'site', 'obj_prop_name': 'fqdn_3', 'type': 'text', 'placeholder': 'FQDN 2', 'class': 'site.fqdn_3', 'style': '', 'label': 'FQDN 3', 'label_class_li': [] };
-
-template['site']['enable'] = { 'obj_type': 'site', 'obj_prop_name': 'enable', 'type': 'checkbox', 'placeholder': 'Enable', 'class': 'site.enable', 'style': '', 'label': 'Enable', 'label_class_li': [] };
-
-template['site']['name'] = { 'obj_type': 'site', 'obj_prop_name': 'name', 'type': 'text', 'placeholder': 'Name', 'class': 'site.name', 'style': '', 'label': 'Name', 'label_class_li': [] };
-template['site']['description'] = { 'obj_type': 'site', 'obj_prop_name': 'description', 'obj_prop_value_pre': true, 'type': 'textarea', 'placeholder': 'Description', 'class': 'site.description', 'style': '', 'label': 'Description', 'label_class_li': [], 'rows': 3, 'cols': 80 };
-
-template['site']['logo_path'] = { 'obj_type': 'site', 'obj_prop_name': 'logo_path', 'type': 'text', 'placeholder': 'Logo path', 'class': 'site.logo_path', 'style': '', 'label': 'Logo path' };
-template['site']['banner_image_path'] = { 'obj_type': 'site', 'obj_prop_name': 'banner_image_path', 'type': 'text', 'placeholder': 'Banner image path', 'class': 'site.banner_image_path', 'style': '', 'label': 'Banner image path' };
-//template['site']['html_menu_path'] = { 'obj_type': 'site', 'obj_prop_name': 'html_menu_path', 'type': 'text', 'placeholder': 'HTML menu path', 'class': 'site.html_menu_path', 'style': '', 'label': 'HTML menu path' };
-
-template['site']['site_body'] = { 'obj_type': 'site', 'obj_prop_name': 'site_body', 'obj_prop_value_pre': true, 'type': 'textarea', 'placeholder': 'Site body', 'class': 'site.site_body', 'style': '', 'label': 'Site body', 'label_class_li': [], 'rows': 10, 'cols': 80 };
-template['site']['site_tagline'] = { 'obj_type': 'site', 'obj_prop_name': 'site_tagline', 'type': 'text', 'placeholder': 'Site tagline', 'class': 'site.site_tagline', 'style': '', 'label': 'Site tagline', 'label_class_li': [] };
-
-template['site']['style_href'] = { 'obj_type': 'site', 'obj_prop_name': 'style_href', 'type': 'text', 'placeholder': 'Style HREF', 'class': 'site.style_href', 'style': '', 'label': 'Style HREF', 'label_class_li': [] };
-template['site']['script_src'] = { 'obj_type': 'site', 'obj_prop_name': 'script_src', 'type': 'text', 'placeholder': 'Script SRC', 'class': 'site.script_src', 'style': '', 'label': 'Script SRC', 'label_class_li': [] };
-
-template['site']['google_tracking_id'] = { 'obj_type': 'site', 'obj_prop_name': 'google_tracking_id', 'type': 'text', 'placeholder': 'Google tracking ID', 'class': 'site.google_tracking_id', 'style': '', 'label': 'Google tracking ID', 'label_class_li': [] };
-
-template['site']['created_on'] = { 'obj_type': 'site', 'obj_prop_name': 'created_on', 'type': 'text', 'placeholder': '', 'class': 'site.created_on', 'style': '', 'readonly': 'readonly', 'disabled': 'disabled', 'required': 'required', 'label': 'Created on', 'label_class_li': [] };
-template['site']['updated_on'] = { 'obj_type': 'site', 'obj_prop_name': 'updated_on', 'type': 'text', 'placeholder': '', 'class': 'site.updated_on', 'style': '', 'readonly': 'readonly', 'disabled': 'disabled', 'required': 'required', 'label': 'Updated on', 'label_class_li': [] };
-
-// NOTE person section
-template['person'] = {};
-template['person']['given_name'] = { 'obj_type': 'person', 'obj_prop_name': 'given_name', 'type': 'text', 'placeholder': 'Given name', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': 'required', 'label': 'Given name', 'label_class_li': [] };
-template['person']['middle_name'] = { 'obj_type': 'person', 'obj_prop_name': 'middle_name', 'type': 'text', 'placeholder': 'Middle name', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': 'required', 'label': 'Middle name', 'label_class_li': [] };
-template['person']['family_name'] = { 'obj_type': 'person', 'obj_prop_name': 'family_name', 'type': 'text', 'placeholder': 'Family name', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'Family name', 'label_class_li': [] };
-template['person']['title'] = { 'obj_type': 'person', 'obj_prop_name': 'title', 'type': 'text', 'placeholder': 'Title', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'Title', 'label_class_li': [] };
-template['person']['tagline'] = { 'obj_type': 'person', 'obj_prop_name': 'tagline', 'type': 'text', 'placeholder': 'Tagline', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'Tagline', 'label_class_li': [] };
-template['person']['organization_name'] = { 'obj_type': 'person', 'obj_prop_name': 'organization_name', 'type': 'text', 'placeholder': 'Organization name', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': '', 'label': 'Organization name', 'label_class_li': [] };
-
-template['person']['notes'] = { 'obj_type': 'person', 'obj_prop_name': 'notes', 'obj_prop_value_pre': true, 'type': 'textarea', 'placeholder': 'Notes', 'class': 'person.notes', 'style': '', 'label': 'Notes', 'label_class_li': [], 'rows': 3, 'cols': 80 };
-
-// NOTE user section
-template['user'] = {};
-template['user']['email'] = { 'obj_type': 'user', 'obj_prop_name': 'email', 'type': 'email', 'placeholder': 'Email address', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': 'required', 'label': 'Email address', 'label_class_li': [] };
-template['user']['name'] = { 'obj_type': 'user', 'obj_prop_name': 'name', 'type': 'text', 'placeholder': 'Name', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': 'required', 'label': 'Name', 'label_class_li': [] };
-template['user']['username'] = { 'obj_type': 'user', 'obj_prop_name': 'username', 'type': 'text', 'placeholder': 'Username', 'class_li': [], 'style': '', 'readonly': '', 'disabled': '', 'required': 'required', 'label': 'Username', 'label_class_li': [] };
-template['user']['email_verified'] = { 'obj_type': 'user', 'obj_prop_name': 'email_verified', 'type': 'checkbox', 'placeholder': 'Email verified', 'class': 'user.email_verified', 'style': '', 'label': 'Email verified', 'label_class_li': [] };
-template['user']['enable'] = { 'obj_type': 'user', 'obj_prop_name': 'enable', 'type': 'checkbox', 'placeholder': 'Enable', 'class': 'user.enable', 'style': '', 'label': 'Enable', 'label_class_li': [] };
-
-export default template;

src/input_element.svelte

@@ -1,37 +0,0 @@
-<script lang="ts">
-export let id_random: string = '';
-export let obj_type: string = '';
-export let obj_prop_name: string = '';
-
-export let name: string = obj_prop_name;
-export let id: string = `${name}--${id_random}`; // Same as the value for "for"
-
-export let value: string = '';
-
-export let readonly: string = '';
-export let disabled: string = '';
-export let required: string = '';
-
-export let type: string = 'text';
-//export let class: string = ''; // Probably not going to use
-export let class_li: Array<> = [];
-
-export let style: string = '';
-
-export let label: string = '';
-export let placeholder: string = label;
-export let label_class: string = ''; // Probably not going to use
-export let label_class_li: Array<> = [];
-
-</script>
-
-{#if type === 'text' || type === 'email' || type === 'url' || type === 'checkbox' }
-<label for={id} class={label_class_li.join(' ')}>{label}</label>
-<input {id} {name} class={class_li.join(' ')} {type} {value} {placeholder} {readonly} {disabled} {required} data-id_random={id_random} data-obj_type={obj_type} data-obj_prop_name={obj_prop_name} />
-{:else if type === 'textarea'}
-<label for={id} class={label_class_li.join(' ')}>{label}</label>
-<textarea {id} {name} class={class_li.join(' ')} {value} {placeholder} {readonly} {disabled} {required} data-id_random={id_random} data-obj_type={obj_type} data-obj_prop_name={obj_prop_name}></textarea>
-
-<!-- rows="" cols="" maxlength="" -->
-
-{/if}

src/lib/ae_api/api_delete_object.ts

@@ -0,0 +1,189 @@
+import type { key_val } from '$lib/stores/ae_stores';
+
+/**
+ * Performs a DELETE request to the Aether API.
+ * Refactored 2026-01-08 to use standard fetch with timeout, custom fetch injection,
+ * standardized kebab-case headers, and robust V3 response handling.
+ */
+export const delete_object = async function delete_object({
+    api_cfg = null,
+    endpoint = '',
+    headers = {},
+    params = {},
+    data = {},
+    timeout = 60000,
+    return_meta = false,
+    log_lvl = 0,
+    retry_count = 5
+}: {
+    api_cfg: any;
+    endpoint: string;
+    headers?: any;
+    params?: any;
+    data?: any;
+    timeout?: number;
+    return_meta?: boolean;
+    log_lvl?: number;
+    retry_count?: number;
+}) {
+    if (log_lvl) {
+        console.log(`*** delete_object() *** Endpoint: ${endpoint}`);
+        console.log('Params:', params);
+        if (log_lvl > 1) {
+            console.log('Data:', data);
+            console.log(`Base URL: ${api_cfg?.['base_url']}`);
+        }
+    }
+
+    if (!api_cfg) {
+        console.error('No API Config was provided. Returning false.');
+        return false;
+    }
+
+    // Construct the URL with query parameters
+    const url = new URL(endpoint, api_cfg['base_url']);
+    if (params) {
+        Object.keys(params).forEach((key) =>
+            url.searchParams.append(key, params[key])
+        );
+    }
+
+    // Clean and merge headers without mutating the original api_cfg
+    const headers_cleaned: key_val = {};
+    const merged_headers = { ...api_cfg['headers'], ...headers };
+
+    // Handle "Bootstrap Paradox" for unauthenticated requests
+    if (merged_headers.hasOwnProperty('x-no-account-id')) {
+        delete merged_headers['x-account-id'];
+        if (merged_headers['x-no-account-id'] === null) {
+            merged_headers['x-no-account-id'] = 'Nothing to See Here';
+        }
+    }
+
+    for (const prop in merged_headers) {
+        const prop_cleaned = prop.replaceAll('_', '-');
+        let value = merged_headers[prop];
+        if (value === null || value === undefined) continue;
+
+        if (typeof value !== 'string') {
+            value = JSON.stringify(value);
+        }
+        headers_cleaned[prop_cleaned] = value;
+    }
+
+    // Auto-inject Authorization header if JWT is present but header is missing
+    const jwt =
+        headers_cleaned['jwt'] || headers_cleaned['JWT'] || api_cfg['jwt'];
+    if (
+        jwt &&
+        !headers_cleaned['Authorization'] &&
+        !headers_cleaned['authorization']
+    ) {
+        headers_cleaned['Authorization'] = `Bearer ${jwt}`;
+    }
+
+    headers_cleaned['Content-Type'] = 'application/json';
+
+    if (log_lvl > 1) {
+        console.log('Final cleaned headers:', headers_cleaned);
+    }
+
+    let fetch_method: any = fetch;
+    if (api_cfg.fetch) {
+        if (log_lvl > 1) {
+            console.log('Using custom fetch function from api_cfg!!!');
+        }
+        fetch_method = api_cfg.fetch;
+    }
+
+    for (let attempt = 1; attempt <= retry_count; attempt++) {
+        try {
+            const controller = new AbortController();
+            const timeoutId = setTimeout(() => {
+                console.error(
+                    `API DELETE request timed out after ${timeout}ms.`
+                );
+                controller.abort();
+            }, timeout);
+
+            const fetchOptions: RequestInit = {
+                method: 'DELETE',
+                headers: headers_cleaned,
+                body:
+                    Object.keys(data).length > 0
+                        ? JSON.stringify(data)
+                        : undefined,
+                signal: controller.signal
+            };
+
+            const response = await fetch_method(
+                url.toString(),
+                fetchOptions
+            ).catch(function (error: any) {
+                console.log(
+                    'API DELETE Object *fetch* request was aborted or failed in an unexpected way.',
+                    error
+                );
+            });
+            clearTimeout(timeoutId);
+
+            if (!response) {
+                throw new Error(
+                    `HTTP fetch request was aborted or failed in an unexpected way! URL = ${url.toString()}`
+                );
+            }
+
+            if (log_lvl) {
+                console.log(
+                    `Response: status=${response.status} attempt=${attempt}`
+                );
+            }
+
+            if (!response.ok) {
+                if (response.status === 404) {
+                    console.warn('404 Not Found. Returning null.');
+                    return null;
+                }
+
+                const errorBody = await response.text();
+                console.error(
+                    `HTTP error! status: ${response.status}`,
+                    errorBody
+                );
+
+                if (response.status >= 400 && response.status < 404) {
+                    return false;
+                }
+
+                throw new Error(
+                    `HTTP error! status: ${response.status} - ${errorBody}`
+                );
+            }
+
+            const json = await response.json();
+
+            if (log_lvl > 1) {
+                console.log('Response JSON:', json);
+            }
+
+            // Return the response data or metadata
+            // Robustly handle V3 response envelopes
+            return return_meta
+                ? json
+                : json.data !== undefined
+                  ? json.data
+                  : json;
+        } catch (error) {
+            console.error(`API DELETE error on attempt ${attempt}:`, error);
+
+            if (attempt === retry_count) {
+                console.error('Max retry attempts reached. Returning false.');
+                return false;
+            }
+
+            if (log_lvl) {
+                console.log(`Retrying... (${attempt}/${retry_count})`);
+            }
+        }
+    }
+};

src/lib/ae_api/api_get__crud_obj_id.ts

@@ -0,0 +1,94 @@
+import type { key_val } from '$lib/stores/ae_stores';
+import { get_object } from './api_get_object';
+
+/**
+ * Fetches a single Aether object by its ID using the CRUD endpoint.
+ * Refactored 2026-01-08 to properly handle unauthenticated lookups (Bootstrap Paradox)
+ * and ensure clean header passing to get_object without mutating the global config.
+ */
+export async function get_ae_obj_id_crud({
+    api_cfg,
+    no_account_id = false,
+    obj_type,
+    obj_id,
+    use_alt_table = false,
+    use_alt_base = false,
+    inc = {},
+    enabled = 'enabled',
+    hidden = 'not_hidden',
+    limit = 999999,
+    offset = 0,
+    data = {},
+    headers = {},
+    params = {},
+    timeout = 60000,
+    return_meta = false,
+    log_lvl = 0
+}: {
+    api_cfg: any;
+    no_account_id?: boolean;
+    obj_type: string;
+    obj_id: string;
+    use_alt_table?: boolean;
+    use_alt_base?: boolean;
+    inc?: any;
+    enabled?: 'enabled' | 'all' | 'not_enabled' | undefined;
+    hidden?: 'hidden' | 'all' | 'not_hidden' | undefined;
+    limit?: number;
+    offset?: number;
+    data?: any;
+    headers?: any;
+    params?: key_val;
+    timeout?: number;
+    return_meta?: boolean;
+    log_lvl?: number;
+}) {
+    if (log_lvl) {
+        console.log(
+            `*** get_ae_obj_id_crud() *** Type: ${obj_type} ID: ${obj_id}`
+        );
+    }
+
+    // V3 Standard: Unified endpoint for all objects
+    const endpoint = `/v3/crud/${obj_type}/${obj_id}`;
+
+    if (log_lvl > 1) {
+        console.log('Endpoint:', endpoint);
+    }
+
+    const final_params = {
+        ...params,
+        use_alt_table: use_alt_table,
+        use_alt_base: use_alt_base
+    };
+
+    const final_headers = { ...headers };
+
+    if (no_account_id) {
+        // This instructs get_object to skip account-id requirements
+        final_headers['x-no-account-id'] = 'Nothing to See Here';
+        final_headers['x-account-id'] = null; // Explicitly null to trigger removal in get_object
+    }
+
+    const result = await get_object({
+        api_cfg: api_cfg,
+        endpoint: endpoint,
+        headers: final_headers,
+        params: final_params,
+        timeout: timeout,
+        log_lvl: log_lvl,
+        return_meta: return_meta
+    }).catch(function (error: any) {
+        console.error(
+            `API GET CRUD object ID request failed for ${obj_type}/${obj_id}`,
+            error
+        );
+        return false;
+    });
+
+    if (log_lvl > 1) {
+        console.log('GET Object result =', result);
+    }
+
+    return result;
+}

src/lib/ae_api/api_get__crud_obj_li.ts

@@ -0,0 +1,215 @@
+import type { key_val } from '$lib/stores/ae_stores';
+import { get_object } from './api_get_object';
+
+interface GetAeObjV3Params {
+    api_cfg: any;
+    obj_type: string;
+    obj_id: string;
+    view?: string;
+    params?: key_val;
+    headers?: key_val;
+    log_lvl?: number;
+}
+
+/**
+ * Get a single object by ID (V3)
+ */
+export async function get_ae_obj({
+    api_cfg,
+    obj_type,
+    obj_id,
+    view = 'default',
+    params = {},
+    headers = {},
+    log_lvl = 0
+}: GetAeObjV3Params) {
+    const endpoint = `/v3/crud/${obj_type}/${obj_id}`;
+    const query_params: key_val = { view, ...params };
+
+    if (log_lvl) {
+        console.log('*** get_ae_obj ***');
+        console.log('Endpoint:', endpoint);
+        console.log('Params:', query_params);
+    }
+
+    return await get_object({
+        api_cfg,
+        endpoint,
+        params: query_params,
+        headers,
+        log_lvl
+    });
+}
+
+interface GetNestedAeObjV3Params {
+    api_cfg: any;
+    parent_type: string;
+    parent_id: string;
+    child_type: string;
+    child_id: string;
+    view?: string;
+    params?: key_val;
+    headers?: key_val;
+    log_lvl?: number;
+}
+
+/**
+ * Get a single nested object by ID (V3)
+ */
+export async function get_nested_ae_obj({
+    api_cfg,
+    parent_type,
+    parent_id,
+    child_type,
+    child_id,
+    view = 'default',
+    params = {},
+    headers = {},
+    log_lvl = 0
+}: GetNestedAeObjV3Params) {
+    const endpoint = `/v3/crud/${parent_type}/${parent_id}/${child_type}/${child_id}`;
+    const query_params: key_val = { view, ...params };
+
+    if (log_lvl) {
+        console.log('*** get_nested_ae_obj ***');
+        console.log('Endpoint:', endpoint);
+        console.log('Params:', query_params);
+    }
+
+    return await get_object({
+        api_cfg,
+        endpoint,
+        params: query_params,
+        headers,
+        log_lvl
+    });
+}
+
+interface GetAeObjLiV3Params {
+    api_cfg: any;
+    obj_type: string;
+    for_obj_type?: string;
+    for_obj_id?: string;
+    enabled?: 'all' | 'enabled' | 'not_enabled';
+    hidden?: 'all' | 'hidden' | 'not_hidden';
+    view?: string;
+    limit?: number;
+    offset?: number;
+    order_by_li?:
+        | Record<string, 'ASC' | 'DESC'>
+        | Record<string, 'ASC' | 'DESC'>[]
+        | null;
+    delay_ms?: number;
+    params?: key_val;
+    headers?: key_val;
+    log_lvl?: number;
+}
+
+export async function get_ae_obj_li({
+    api_cfg,
+    obj_type,
+    for_obj_type,
+    for_obj_id,
+    enabled = 'enabled',
+    hidden = 'not_hidden',
+    view = 'default',
+    limit = 100,
+    offset = 0,
+    order_by_li = null,
+    delay_ms = 0,
+    params = {},
+    headers = {},
+    log_lvl = 0
+}: GetAeObjLiV3Params) {
+    // 1. Build V3 Endpoint
+    const endpoint = `/v3/crud/${obj_type}/`;
+
+    // 2. Build Query Params
+    const query_params: key_val = {
+        enabled,
+        hidden,
+        view,
+        limit,
+        offset,
+        ...params
+    };
+
+    if (for_obj_type) query_params['for_obj_type'] = for_obj_type;
+    if (for_obj_id) query_params['for_obj_id'] = for_obj_id;
+    if (order_by_li) query_params['order_by_li'] = JSON.stringify(order_by_li);
+    if (delay_ms > 0) query_params['delay_ms'] = delay_ms;
+
+    if (log_lvl) {
+        console.log('*** get_ae_obj_li ***');
+        console.log('Endpoint:', endpoint);
+        console.log('Params:', query_params);
+        console.log('Headers:', headers);
+    }
+
+    return await get_object({
+        api_cfg,
+        endpoint,
+        params: query_params,
+        headers,
+        log_lvl
+    });
+}
+
+interface GetNestedObjLiV3Params {
+    api_cfg: any;
+    parent_type: string;
+    parent_id: string;
+    child_type: string;
+    enabled?: 'all' | 'enabled' | 'not_enabled';
+    hidden?: 'all' | 'hidden' | 'not_hidden';
+    view?: string;
+    limit?: number;
+    offset?: number;
+    order_by_li?:
+        | Record<string, 'ASC' | 'DESC'>
+        | Record<string, 'ASC' | 'DESC'>[]
+        | null;
+    delay_ms?: number;
+    log_lvl?: number;
+}
+
+export async function get_nested_obj_li({
+    api_cfg,
+    parent_type,
+    parent_id,
+    child_type,
+    enabled = 'enabled',
+    hidden = 'not_hidden',
+    view = 'default',
+    limit = 100,
+    offset = 0,
+    order_by_li = null,
+    delay_ms = 0,
+    log_lvl = 0
+}: GetNestedObjLiV3Params) {
+    const endpoint = `/v3/crud/${parent_type}/${parent_id}/${child_type}/`;
+
+    const params: key_val = {
+        enabled,
+        hidden,
+        view,
+        limit,
+        offset
+    };
+
+    if (order_by_li) params['order_by_li'] = JSON.stringify(order_by_li);
+    if (delay_ms > 0) params['delay_ms'] = delay_ms;
+
+    if (log_lvl) {
+        console.log('*** get_nested_obj_li ***');
+        console.log('Endpoint:', endpoint);
+        console.log('Params:', params);
+    }
+
+    return await get_object({
+        api_cfg,
+        endpoint,
+        params,
+        log_lvl
+    });
+}

src/lib/ae_api/api_get__data_store.ts

@@ -0,0 +1,50 @@
+import type { key_val } from '$lib/stores/ae_stores';
+import { get_object } from './api_get_object';
+
+interface GetDataStoreV3Params {
+    api_cfg: any;
+    code: string;
+    for_type?: string | null;
+    for_id?: string | null;
+    no_account_id?: boolean;
+    log_lvl?: number;
+}
+
+/**
+ * Get a Data Store object by its human-friendly code (V3)
+ * Uses hierarchical fallback logic (Specific -> Account -> Global)
+ * Path: GET /v3/data_store/code/{code}
+ */
+export async function get_data_store({
+    api_cfg,
+    code,
+    for_type = null,
+    for_id = null,
+    no_account_id = false,
+    log_lvl = 0
+}: GetDataStoreV3Params): Promise<any> {
+    if (log_lvl) {
+        console.log(
+            `*** get_data_store() *** code=${code} no_account_id=${no_account_id}`
+        );
+    }
+
+    const endpoint = `/v3/data_store/code/${code}`;
+    const params: key_val = {};
+    if (for_type) params['for_type'] = for_type;
+    if (for_id) params['for_id'] = for_id;
+
+    const headers: key_val = {};
+    if (no_account_id) {
+        // This token allows bypassing the mandatory account_id requirement for global defaults
+        headers['x-no-account-id-token'] = 'Nothing to See Here';
+    }
+
+    return await get_object({
+        api_cfg,
+        endpoint,
+        params,
+        headers,
+        log_lvl
+    });
+}

src/lib/ae_api/api_get__lookup.ts

@@ -0,0 +1,68 @@
+import { get_object } from './api_get_object';
+import type { key_val } from '$lib/stores/ae_stores';
+
+/**
+ * Get a list of lookup objects (V3)
+ * Standardized lookup data like countries, timezones, and subdivisions.
+ * Updated 2026-02-20
+ *
+ * Endpoint: GET /v3/lookup/{lu_type}/list
+ */
+export async function get_ae_lookup_li({
+    api_cfg,
+    lu_type,
+    site_id,
+    for_type,
+    for_id,
+    include_disabled = false,
+    only_priority = false,
+    order_by_li = null,
+    limit = null,
+    offset = null,
+    params = {},
+    headers = {},
+    log_lvl = 0
+}: {
+    api_cfg: any;
+    lu_type: 'country' | 'country_subdivision' | 'time_zone' | string;
+    site_id?: string;
+    for_type?: string;
+    for_id?: string;
+    include_disabled?: boolean;
+    only_priority?: boolean;
+    order_by_li?: Record<string, 'ASC' | 'DESC'> | null;
+    limit?: number | null;
+    offset?: number | null;
+    params?: key_val;
+    headers?: Record<string, string>;
+    log_lvl?: number;
+}) {
+    if (log_lvl) {
+        console.log(`*** get_ae_lookup_li() *** lu_type=${lu_type}`);
+    }
+
+    const endpoint = `/v3/lookup/${lu_type}/list`;
+
+    // Build query params
+    if (site_id) params['site_id'] = site_id;
+    if (for_type) params['for_type'] = for_type;
+    if (for_id) params['for_id'] = for_id;
+    if (include_disabled) params['include_disabled'] = true;
+    if (only_priority) params['only_priority'] = true;
+    if (order_by_li) params['order_by_li'] = JSON.stringify(order_by_li);
+    if (limit != null) params['limit'] = limit;
+    if (offset != null) params['offset'] = offset;
+
+    // Lookup data is often global; ensure account context is handled if needed,
+    // but GUIDE says it uses site Whitelist Policy.
+    // If no account_id is present in api_cfg, we might need 'x-no-account-id'
+    // for some lookups if they are public.
+
+    return await get_object({
+        api_cfg,
+        endpoint,
+        params,
+        headers,
+        log_lvl
+    });
+}

src/lib/ae_api/api_get_object.ts

@@ -0,0 +1,458 @@
+import { browser } from '$app/environment';
+import { ae_auth_error } from '$lib/stores/ae_stores';
+import type { key_val } from '$lib/stores/ae_stores';
+
+export let temp_get_blob_percent_completed = 0;
+export const get_blob_percent_completed = temp_get_blob_percent_completed;
+
+export const temp_get_object_percent_completed = 0;
+export const get_object_percent_completed = temp_get_object_percent_completed;
+
+export const get_object = async function get_object({
+    api_cfg = null,
+    endpoint = '',
+    headers = {},
+    params = {},
+    data = {},
+    timeout = 90000,
+    return_meta = false,
+    return_blob = false,
+    filename = '',
+    auto_download = false,
+    as_list = false, // Is this still really needed?
+    // The task_id value should be a random string that is unique to the task. This is used to identify the task in the message event.
+    task_id = crypto.randomUUID(),
+    log_lvl = 0,
+    retry_count = 5 // Number of retry attempts
+}: {
+    api_cfg: any;
+    endpoint: string;
+    headers?: any;
+    params?: any;
+    data?: any;
+    timeout?: number;
+    return_meta?: boolean;
+    return_blob?: boolean;
+    filename?: null | string;
+    auto_download?: boolean;
+    as_list?: boolean;
+    task_id?: string;
+    log_lvl?: number;
+    retry_count?: number;
+}) {
+    if (log_lvl) {
+        console.log(
+            `*** get_object() *** Endpoint: ${endpoint} AE Task ID: ${task_id}`
+        );
+        console.log('Params:', params);
+        if (log_lvl > 1) {
+            console.log('Data:', data);
+        }
+    }
+
+    if (!api_cfg) {
+        console.log('No API Config was provided. Returning false.');
+        return false;
+    }
+
+    // FAIL FAST: Check if we are explicitly offline to avoid long browser timeouts
+    if (typeof navigator !== 'undefined' && !navigator.onLine) {
+        if (log_lvl)
+            console.log(
+                'get_object: Browser is offline. Failing fast to allow cache fallback.'
+            );
+        return false;
+    }
+
+    if (!filename && params.filename) {
+        filename = params.filename;
+    }
+
+    const url = new URL(endpoint, api_cfg['base_url']);
+    Object.keys(params).forEach((key) =>
+        url.searchParams.append(key, params[key])
+    );
+
+    const controller = new AbortController();
+    const timeoutId = setTimeout(() => controller.abort(), timeout);
+
+    // Clean and merge headers without mutating the original api_cfg
+    const headers_cleaned: key_val = {};
+    const merged_headers = { ...api_cfg['headers'], ...headers };
+
+    // Auto-promote account_id from api_cfg to header if missing
+    let account_id = merged_headers['x-account-id'] || api_cfg['account_id'];
+
+    // IMMEDIATE ACCOUNT ID SCAVENGING: Read from localStorage to avoid race conditions
+    if (!account_id && typeof localStorage !== 'undefined') {
+        try {
+            const ae_loc_raw = localStorage.getItem('ae_loc');
+            if (ae_loc_raw) {
+                const ae_loc_json = JSON.parse(ae_loc_raw);
+                if (ae_loc_json.account_id) {
+                    account_id = ae_loc_json.account_id;
+                }
+            }
+        } catch (e) {
+            // Silently fail on storage read
+        }
+    }
+
+    if (account_id) {
+        merged_headers['x-account-id'] = account_id;
+    }
+
+    // Handle "Bootstrap Paradox" for unauthenticated requests
+    const bypass_val =
+        merged_headers['x-no-account-id'] || merged_headers['x_no_account_id'];
+    const is_valid_bypass =
+        bypass_val === 'bypass' ||
+        bypass_val === 'Nothing to See Here' ||
+        params['key'] ||
+        bypass_val === 'direct-download';
+
+    if (is_valid_bypass) {
+        if (log_lvl > 1)
+            console.log(
+                'api_get_object: Valid bypass detected. Stripping account ID context.'
+            );
+        delete merged_headers['x-account-id'];
+        delete merged_headers['x_account_id'];
+    } else {
+        // If it's a placeholder (like "No_Account_ID_Here"), just remove the bypass header
+        // but DO NOT strip the valid Account ID.
+        delete merged_headers['x-no-account-id'];
+        delete merged_headers['x_no_account_id'];
+    }
+
+    // Standardize all headers to kebab-case and ensure string values
+    for (const prop in merged_headers) {
+        const prop_cleaned = prop.replaceAll('_', '-');
+        let value = merged_headers[prop];
+        if (value === null || value === undefined) continue;
+
+        if (typeof value !== 'string') {
+            value = JSON.stringify(value);
+        }
+        headers_cleaned[prop_cleaned] = value;
+    }
+
+    // Auto-inject Authorization header if JWT is present but header is missing
+    let jwt =
+        headers_cleaned['jwt'] ||
+        headers_cleaned['JWT'] ||
+        api_cfg['jwt'] ||
+        api_cfg['headers']?.['jwt'] ||
+        api_cfg['headers']?.['JWT'];
+
+    // Final Fallback: Direct check of primary ae_loc key
+    if (!jwt && typeof localStorage !== 'undefined') {
+        try {
+            const raw = localStorage.getItem('ae_loc');
+            if (raw) {
+                const json = JSON.parse(raw);
+                if (json.jwt) jwt = json.jwt;
+            }
+        } catch (e) {
+            // Silently fail on storage read
+        }
+    }
+
+    if (
+        jwt &&
+        !headers_cleaned['Authorization'] &&
+        !headers_cleaned['authorization']
+    ) {
+        headers_cleaned['Authorization'] = `Bearer ${jwt}`;
+    }
+
+    if (log_lvl > 1) {
+        console.log('Final cleaned headers:', headers_cleaned);
+    }
+
+    const fetchOptions: RequestInit = {
+        method: 'GET',
+        headers: headers_cleaned,
+        signal: controller.signal,
+        // Be explicit about CORS behavior and redirect handling to avoid
+        // environment-dependent defaults that can cause opaque failures.
+        mode: 'cors',
+        credentials: 'omit',
+        redirect: 'follow',
+        cache: 'no-store'
+    };
+
+    if (log_lvl > 1) {
+        console.log('Fetch options:', fetchOptions);
+    }
+
+    let fetch_method: any = fetch;
+    if (api_cfg.fetch) {
+        if (log_lvl > 1) {
+            console.log('Using custom fetch function from api_cfg!!!');
+        }
+        fetch_method = api_cfg.fetch;
+    }
+
+    for (let attempt = 1; attempt <= retry_count; attempt++) {
+        // FAIL FAST: Check if we are explicitly offline to avoid long browser timeouts
+        if (typeof navigator !== 'undefined' && !navigator.onLine) {
+            if (log_lvl)
+                console.log(
+                    `get_object: Browser is offline (attempt ${attempt}). Failing fast to allow cache fallback.`
+                );
+            return false;
+        }
+
+        try {
+            const response = await fetch_method(
+                url.toString(),
+                fetchOptions
+            ).catch(function (error: any) {
+                // SILENCE NOISE: Aborted requests (common in SWR/Background loads) shouldn't spam logs
+                if (
+                    error.name === 'AbortError' ||
+                    error.message?.includes('aborted') ||
+                    error.name === 'TypeError'
+                ) {
+                    if (log_lvl > 1) {
+                        console.log(
+                            'API GET: Request was aborted or terminated by browser. This is expected during navigation.',
+                            error
+                        );
+                    }
+                    return error; // Return error to be handled below
+                }
+
+                console.log(
+                    'API GET Object *fetch* request failed in an unexpected way.',
+                    error
+                );
+                return error;
+            });
+            clearTimeout(timeoutId);
+
+            // Check if we should stop due to abort or network failure
+            if (
+                response instanceof Error ||
+                (response &&
+                    (response.name === 'TypeError' ||
+                        response.name === 'AbortError'))
+            ) {
+                // If it was an explicit abort, definitely stop
+                if (response.name === 'AbortError') return false;
+
+                if (log_lvl > 1)
+                    console.log(
+                        'API GET Object: Detected NetworkError or TypeError. Failing fast.'
+                    );
+                return false;
+            }
+
+            if (!response) {
+                if (log_lvl > 1) {
+                    console.log(
+                        'API GET Object: Something went wrong with *fetch* request. Returning false? Throwing an error!'
+                    );
+                }
+                throw new Error(
+                    `HTTP fetch request was aborted or failed in an unexpected way! URL = ${url.toString()}`
+                ); // This will allow it to retry
+                // return false; // This will stop the retries
+            }
+
+            if (log_lvl) {
+                console.log(
+                    `Response: status=${response.status} statusText=${response.statusText} url=${response.url} attempt=${attempt}`
+                );
+                try {
+                    console.log(
+                        'Response headers:',
+                        Object.fromEntries(response.headers.entries())
+                    );
+                } catch (e) {
+                    /* ignore header read errors */
+                }
+            }
+            if (log_lvl > 1) {
+                console.log('Response:', response);
+            }
+
+            if (!response.ok) {
+                if (response.status === 404) {
+                    if (log_lvl) {
+                        console.log(
+                            'The response was a 404 not found "error". Returning null.'
+                        );
+                    }
+                    return null;
+                }
+
+                // FAIL FAST (Section 2D): Do not retry on Auth or Client errors (400, 401, 403, 422)
+                if (
+                    response.status === 400 ||
+                    response.status === 401 ||
+                    response.status === 403 ||
+                    response.status === 422
+                ) {
+                    if (log_lvl)
+                        console.error(
+                            `API Client Failure (${response.status}). Failing fast.`
+                        );
+
+                    if (response.status === 401 || response.status === 403) {
+                        console.warn(
+                            `AUTH DIAGNOSTICS: Headers sent for ${endpoint}:`,
+                            {
+                                has_auth: !!headers_cleaned['Authorization'],
+                                has_api_key:
+                                    !!headers_cleaned['x-aether-api-key'],
+                                has_account_id:
+                                    !!headers_cleaned['x-account-id'],
+                                jwt_preview: jwt
+                                    ? `${jwt.slice(0, 8)}...`
+                                    : 'MISSING'
+                            }
+                        );
+                        // Signal the root layout to show the session-expired banner.
+                        if (browser)
+                            ae_auth_error.set({
+                                type: 'expired',
+                                ts: Date.now()
+                            });
+                    }
+
+                    // Structured Error Handling (V3): Attempt to get rich error metadata
+                    let error_json: any = null;
+                    try {
+                        error_json = await response.json();
+                    } catch (e) {
+                        // Not JSON
+                    }
+
+                    if (log_lvl)
+                        console.log(
+                            'The response was not ok. Structured Error Check:',
+                            error_json
+                        );
+
+                    if (error_json?.meta?.details) {
+                        return error_json;
+                    }
+
+                    // Fallback for standard FastAPI "detail" errors
+                    if (error_json?.detail) {
+                        return {
+                            meta: {
+                                success: false,
+                                status_code: response.status,
+                                details: {
+                                    category: 'validation',
+                                    message:
+                                        typeof error_json.detail === 'string'
+                                            ? error_json.detail
+                                            : JSON.stringify(error_json.detail),
+                                    raw: error_json.detail
+                                }
+                            }
+                        };
+                    }
+
+                    return false;
+                }
+
+                throw new Error(`HTTP error! status: ${response.status}`);
+            }
+
+            if (!return_blob) {
+                const json = await response.json();
+                if (log_lvl > 1) {
+                    console.log('Response JSON:', json);
+                }
+                if (!Array.isArray(json.data) && as_list) {
+                    return [json.data];
+                }
+                return json.data || json;
+            } else {
+                const reader = response.body?.getReader();
+                const contentLength = +response.headers.get('Content-Length')!;
+                let receivedLength = 0;
+                const chunks = [];
+
+                while (true) {
+                    const { done, value } = await reader!.read();
+                    if (done) break;
+                    chunks.push(value);
+                    receivedLength += value.length;
+
+                    const percent_completed = Math.round(
+                        (receivedLength * 100) / contentLength
+                    );
+                    if (log_lvl > 1) {
+                        console.log(
+                            'GET Blob Progress:',
+                            percent_completed,
+                            'Total:',
+                            contentLength,
+                            'Loaded:',
+                            receivedLength,
+                            'Percent Completed',
+                            percent_completed
+                        );
+                    }
+
+                    temp_get_blob_percent_completed = percent_completed;
+
+                    try {
+                        if (typeof window !== 'undefined') {
+                            window.postMessage(
+                                {
+                                    type: 'api_download_blob',
+                                    status: 'downloading',
+                                    task_id: task_id,
+                                    endpoint: endpoint,
+                                    filename: filename,
+                                    size_total: contentLength,
+                                    size_loaded: receivedLength,
+                                    percent_completed: percent_completed
+                                },
+                                '*'
+                            );
+                        }
+                    } catch (e) {
+                        console.error('Error posting message:', e);
+                    }
+                }
+
+                const blob = new Blob(chunks);
+                if (auto_download) {
+                    const downloadUrl = window.URL.createObjectURL(blob);
+                    const link = document.createElement('a');
+                    link.href = downloadUrl;
+                    link.setAttribute('download', filename || 'download');
+                    document.body.appendChild(link);
+                    link.click();
+                    link.remove();
+                    return true;
+                } else {
+                    return blob;
+                }
+            }
+        } catch (error) {
+            console.log(
+                `API GET object request *fetch* error on attempt ${attempt}:`,
+                error
+            );
+
+            if (attempt === retry_count) {
+                console.log('Max retry attempts reached. Returning false.');
+                return false;
+            }
+
+            // Log retry information
+            if (log_lvl) {
+                console.log(`Retrying... (${attempt}/${retry_count})`);
+            }
+        }
+    }
+};

src/lib/ae_api/api_patch_object.ts

@@ -0,0 +1,308 @@
+import { browser } from '$app/environment';
+import { ae_auth_error } from '$lib/stores/ae_stores';
+import type { key_val } from '$lib/stores/ae_stores';
+
+/**
+ * Performs a PATCH request to the Aether API.
+ * Refactored 2026-01-08 to use standard fetch with timeout, custom fetch injection,
+ * standardized kebab-case headers, and robust V3 response handling.
+ */
+export const patch_object = async function patch_object({
+    api_cfg = null,
+    endpoint = '',
+    headers = {},
+    params = {},
+    data = {},
+    timeout = 60000,
+    return_meta = false,
+    log_lvl = 0,
+    retry_count = 5
+}: {
+    api_cfg: any;
+    endpoint: string;
+    headers?: any;
+    params?: any;
+    data?: any;
+    timeout?: number;
+    return_meta?: boolean;
+    log_lvl?: number;
+    retry_count?: number;
+}) {
+    if (log_lvl) {
+        console.log(`*** patch_object() *** Endpoint: ${endpoint}`);
+        console.log('Params:', params);
+        if (log_lvl > 1) {
+            console.log('Data:', data);
+            console.log(`Base URL: ${api_cfg?.['base_url']}`);
+        }
+    }
+
+    if (!api_cfg) {
+        console.error('No API Config was provided. Returning false.');
+        return false;
+    }
+
+    // Construct the URL with query parameters
+    const url = new URL(endpoint, api_cfg['base_url']);
+    if (params) {
+        Object.keys(params).forEach((key) =>
+            url.searchParams.append(key, params[key])
+        );
+    }
+
+    // Clean and merge headers without mutating the original api_cfg
+    const headers_cleaned: key_val = {};
+    const merged_headers = { ...api_cfg['headers'], ...headers };
+
+    // Auto-promote account_id from api_cfg to header if missing
+    let account_id = merged_headers['x-account-id'] || api_cfg['account_id'];
+
+    // IMMEDIATE ACCOUNT ID SCAVENGING: Read from localStorage to avoid race conditions
+    if (!account_id && typeof localStorage !== 'undefined') {
+        try {
+            const ae_loc_raw = localStorage.getItem('ae_loc');
+            if (ae_loc_raw) {
+                const ae_loc_json = JSON.parse(ae_loc_raw);
+                if (ae_loc_json.account_id) {
+                    account_id = ae_loc_json.account_id;
+                }
+            }
+        } catch (e) {
+            // Silently fail on storage read
+        }
+    }
+
+    if (account_id) {
+        merged_headers['x-account-id'] = account_id;
+    }
+
+    // Handle "Bootstrap Paradox" for unauthenticated requests
+    const bypass_val =
+        merged_headers['x-no-account-id'] || merged_headers['x_no_account_id'];
+    const is_valid_bypass =
+        bypass_val === 'bypass' ||
+        bypass_val === 'Nothing to See Here' ||
+        params['key'] ||
+        bypass_val === 'direct-download';
+
+    if (is_valid_bypass) {
+        if (log_lvl > 1)
+            console.log(
+                'api_patch_object: Valid bypass detected. Stripping account ID context.'
+            );
+        delete merged_headers['x-account-id'];
+        delete merged_headers['x_account_id'];
+    } else {
+        // If it's a placeholder (like "No_Account_ID_Here"), just remove the bypass header
+        // but DO NOT strip the valid Account ID.
+        delete merged_headers['x-no-account-id'];
+        delete merged_headers['x_no_account_id'];
+    }
+
+    for (const prop in merged_headers) {
+        const prop_cleaned = prop.replaceAll('_', '-');
+        let value = merged_headers[prop];
+        if (value === null || value === undefined) continue;
+
+        if (typeof value !== 'string') {
+            value = JSON.stringify(value);
+        }
+        headers_cleaned[prop_cleaned] = value;
+    }
+
+    // Auto-inject Authorization header if JWT is present but header is missing
+    let jwt =
+        headers_cleaned['jwt'] ||
+        headers_cleaned['JWT'] ||
+        api_cfg['jwt'] ||
+        api_cfg['headers']?.['jwt'] ||
+        api_cfg['headers']?.['JWT'];
+
+    // Final Fallback: Direct check of primary ae_loc key
+    if (!jwt && typeof localStorage !== 'undefined') {
+        try {
+            const raw = localStorage.getItem('ae_loc');
+            if (raw) {
+                const json = JSON.parse(raw);
+                if (json.jwt) jwt = json.jwt;
+            }
+        } catch (e) {
+            // Silently fail on storage read
+        }
+    }
+
+    if (
+        jwt &&
+        !headers_cleaned['Authorization'] &&
+        !headers_cleaned['authorization']
+    ) {
+        headers_cleaned['Authorization'] = `Bearer ${jwt}`;
+    }
+
+    headers_cleaned['Content-Type'] = 'application/json';
+
+    if (log_lvl > 1) {
+        console.log('Final cleaned headers:', headers_cleaned);
+    }
+
+    let fetch_method: any = fetch;
+    if (api_cfg.fetch) {
+        if (log_lvl > 1) {
+            console.log('Using custom fetch function from api_cfg!!!');
+        }
+        fetch_method = api_cfg.fetch;
+    }
+
+    for (let attempt = 1; attempt <= retry_count; attempt++) {
+        try {
+            const controller = new AbortController();
+            const timeoutId = setTimeout(() => {
+                console.error(
+                    `API PATCH request timed out after ${timeout}ms.`
+                );
+                controller.abort();
+            }, timeout);
+
+            const fetchOptions: RequestInit = {
+                method: 'PATCH',
+                headers: headers_cleaned,
+                body: JSON.stringify(data),
+                signal: controller.signal
+            };
+
+            const response = await fetch_method(
+                url.toString(),
+                fetchOptions
+            ).catch(function (error: any) {
+                console.log(
+                    'API PATCH Object *fetch* request was aborted or failed in an unexpected way.',
+                    error
+                );
+            });
+            clearTimeout(timeoutId);
+
+            if (!response) {
+                throw new Error(
+                    `HTTP fetch request was aborted or failed in an unexpected way! URL = ${url.toString()}`
+                );
+            }
+
+            if (log_lvl) {
+                console.log(
+                    `Response: status=${response.status} attempt=${attempt}`
+                );
+            }
+
+            if (!response.ok) {
+                if (response.status === 404) {
+                    if (log_lvl) {
+                        console.log(
+                            'The response was a 404 not found "error". Returning null.'
+                        );
+                    }
+                    return null;
+                }
+
+                // FAIL FAST (Section 2D): Do not retry on Auth or Client errors (400, 401, 403, 422)
+                if (
+                    response.status === 400 ||
+                    response.status === 401 ||
+                    response.status === 403 ||
+                    response.status === 422
+                ) {
+                    if (log_lvl)
+                        console.error(
+                            `API Client Failure (${response.status}). Failing fast.`
+                        );
+
+                    if (response.status === 401 || response.status === 403) {
+                        console.warn(
+                            `AUTH DIAGNOSTICS (PATCH): Headers sent for ${endpoint}:`,
+                            {
+                                has_auth: !!headers_cleaned['Authorization'],
+                                has_api_key:
+                                    !!headers_cleaned['x-aether-api-key'],
+                                has_account_id:
+                                    !!headers_cleaned['x-account-id'],
+                                jwt_preview: jwt
+                                    ? `${jwt.slice(0, 8)}...`
+                                    : 'MISSING'
+                            }
+                        );
+                        // Signal the root layout to show the session-expired banner.
+                        if (browser)
+                            ae_auth_error.set({
+                                type: 'expired',
+                                ts: Date.now()
+                            });
+                    }
+
+                    // Structured Error Handling (V3): Attempt to get rich error metadata
+                    let error_json: any = null;
+                    try {
+                        error_json = await response.json();
+                    } catch (e) {
+                        // Not JSON
+                    }
+
+                    if (log_lvl)
+                        console.log(
+                            'The response was not ok. Structured Error Check:',
+                            error_json
+                        );
+
+                    if (error_json?.meta?.details) {
+                        return error_json;
+                    }
+
+                    // Fallback for standard FastAPI "detail" errors
+                    if (error_json?.detail) {
+                        return {
+                            meta: {
+                                success: false,
+                                status_code: response.status,
+                                details: {
+                                    category: 'validation',
+                                    message:
+                                        typeof error_json.detail === 'string'
+                                            ? error_json.detail
+                                            : JSON.stringify(error_json.detail),
+                                    raw: error_json.detail
+                                }
+                            }
+                        };
+                    }
+
+                    return false;
+                }
+
+                throw new Error(`HTTP error! status: ${response.status}`);
+            }
+
+            const json = await response.json();
+
+            if (log_lvl > 1) {
+                console.log('Response JSON:', json);
+            }
+
+            // Return the response data or metadata
+            // Robustly handle V3 response envelopes
+            return return_meta
+                ? json
+                : json.data !== undefined
+                  ? json.data
+                  : json;
+        } catch (error) {
+            console.error(`API PATCH error on attempt ${attempt}:`, error);
+
+            if (attempt === retry_count) {
+                console.error('Max retry attempts reached. Returning false.');
+                return false;
+            }
+
+            if (log_lvl) {
+                console.log(`Retrying... (${attempt}/${retry_count})`);
+            }
+        }
+    }
+};

src/lib/ae_api/api_post__crud_obj.ts

@@ -0,0 +1,331 @@
+import type { key_val } from '$lib/stores/ae_stores';
+import { post_object } from './api_post_object';
+import { patch_object } from './api_patch_object';
+import { delete_object } from './api_delete_object';
+
+/**
+ * --- POST (CREATE) WRAPPERS ---
+ */
+
+interface CreateAeObjV3Params {
+    api_cfg: any;
+    obj_type: string;
+    fields: key_val;
+    params?: key_val;
+    log_lvl?: number;
+}
+
+export async function create_ae_obj({
+    api_cfg,
+    obj_type,
+    fields,
+    params = {},
+    log_lvl = 0
+}: CreateAeObjV3Params) {
+    const endpoint = `/v3/crud/${obj_type}/`;
+
+    if (log_lvl) {
+        console.log('*** create_ae_obj ***');
+        console.log('Endpoint:', endpoint);
+        console.log('Fields:', fields);
+    }
+
+    // Standard Aether Pattern: Auto-serialize any key ending in _json
+    const cleaned_fields = { ...fields };
+    for (const key in cleaned_fields) {
+        if (
+            key.endsWith('_json') &&
+            cleaned_fields[key] !== null &&
+            typeof cleaned_fields[key] === 'object'
+        ) {
+            if (log_lvl) console.log(`Auto-serializing field: ${key}`);
+            cleaned_fields[key] = JSON.stringify(cleaned_fields[key]);
+        }
+    }
+
+    if (log_lvl) {
+        console.log('Cleaned Fields (Final):', cleaned_fields);
+    }
+
+    return await post_object({
+        api_cfg,
+        endpoint,
+        params,
+        data: cleaned_fields,
+        log_lvl
+    });
+}
+
+interface CreateNestedObjV3Params {
+    api_cfg: any;
+    parent_type?: string;
+    parent_id?: string;
+    child_type?: string;
+    // Aliases for migration
+    for_obj_type?: string;
+    for_obj_id?: string;
+    obj_type?: string;
+
+    fields: key_val;
+    params?: key_val;
+    log_lvl?: number;
+}
+
+export async function create_nested_obj({
+    api_cfg,
+    parent_type,
+    parent_id,
+    child_type,
+    for_obj_type,
+    for_obj_id,
+    obj_type,
+    fields,
+    params = {},
+    log_lvl = 0
+}: CreateNestedObjV3Params) {
+    const p_type = parent_type || for_obj_type;
+    const p_id = parent_id || for_obj_id;
+    const c_type = child_type || obj_type;
+
+    const endpoint = `/v3/crud/${p_type}/${p_id}/${c_type}/`;
+
+    if (log_lvl) {
+        console.log('*** create_nested_obj ***');
+        console.log('Endpoint:', endpoint);
+        console.log('Fields:', fields);
+    }
+
+    // Standard Aether Pattern: Auto-serialize any key ending in _json
+    const cleaned_fields = { ...fields };
+    for (const key in cleaned_fields) {
+        if (
+            key.endsWith('_json') &&
+            cleaned_fields[key] !== null &&
+            typeof cleaned_fields[key] === 'object'
+        ) {
+            cleaned_fields[key] = JSON.stringify(cleaned_fields[key]);
+        }
+    }
+
+    return await post_object({
+        api_cfg,
+        endpoint,
+        params,
+        data: cleaned_fields,
+        log_lvl
+    });
+}
+
+/**
+ * --- PATCH (UPDATE) WRAPPERS ---
+ */
+
+interface UpdateAeObjV3Params {
+    api_cfg: any;
+    obj_type: string;
+    obj_id: string;
+    fields: key_val;
+    params?: key_val;
+    log_lvl?: number;
+}
+
+export async function update_ae_obj({
+    api_cfg,
+    obj_type,
+    obj_id,
+    fields,
+    params = {},
+    log_lvl = 0
+}: UpdateAeObjV3Params) {
+    const endpoint = `/v3/crud/${obj_type}/${obj_id}`;
+
+    if (log_lvl) {
+        console.log('*** update_ae_obj ***');
+        console.log('Endpoint:', endpoint);
+        console.log('Fields:', fields);
+    }
+
+    // Standard Aether Pattern: Auto-serialize any key ending in _json
+    const cleaned_fields = { ...fields };
+    for (const key in cleaned_fields) {
+        if (
+            key.endsWith('_json') &&
+            cleaned_fields[key] !== null &&
+            typeof cleaned_fields[key] === 'object'
+        ) {
+            if (log_lvl > 1) console.log(`Auto-serializing field: ${key}`);
+            cleaned_fields[key] = JSON.stringify(cleaned_fields[key]);
+        }
+    }
+
+    return await patch_object({
+        api_cfg,
+        endpoint,
+        params,
+        data: cleaned_fields,
+        log_lvl
+    });
+}
+
+interface UpdateNestedObjV3Params {
+    api_cfg: any;
+    parent_type?: string;
+    parent_id?: string;
+    child_type?: string;
+    child_id?: string;
+    // Aliases for migration
+    for_obj_type?: string;
+    for_obj_id?: string;
+    obj_type?: string;
+    obj_id?: string;
+
+    fields: key_val;
+    params?: key_val;
+    log_lvl?: number;
+}
+
+export async function update_nested_obj({
+    api_cfg,
+    parent_type,
+    parent_id,
+    child_type,
+    child_id,
+    for_obj_type,
+    for_obj_id,
+    obj_type,
+    obj_id,
+    fields,
+    params = {},
+    log_lvl = 0
+}: UpdateNestedObjV3Params) {
+    const p_type = parent_type || for_obj_type;
+    const p_id = parent_id || for_obj_id;
+    const c_type = child_type || obj_type;
+    const c_id = child_id || obj_id;
+
+    const endpoint = `/v3/crud/${p_type}/${p_id}/${c_type}/${c_id}`;
+
+    if (log_lvl) {
+        console.log('*** update_nested_obj ***');
+        console.log('Endpoint:', endpoint);
+        console.log('Fields:', fields);
+    }
+
+    // Standard Aether Pattern: Auto-serialize any key ending in _json
+    const cleaned_fields = { ...fields };
+    for (const key in cleaned_fields) {
+        if (
+            key.endsWith('_json') &&
+            cleaned_fields[key] !== null &&
+            typeof cleaned_fields[key] === 'object'
+        ) {
+            cleaned_fields[key] = JSON.stringify(cleaned_fields[key]);
+        }
+    }
+
+    return await patch_object({
+        api_cfg,
+        endpoint,
+        params,
+        data: cleaned_fields,
+        log_lvl
+    });
+}
+
+/**
+ * --- DELETE WRAPPERS ---
+ */
+
+interface DeleteAeObjV3Params {
+    api_cfg: any;
+    obj_type: string;
+    obj_id: string;
+    method?: 'delete' | 'soft_delete' | 'disable' | 'hide';
+    params?: key_val;
+    log_lvl?: number;
+}
+
+/**
+ * Delete a single object by ID (V3)
+ * Supports 'delete' (hard), 'soft_delete', 'disable' (enable=false), and 'hide' (hide=true).
+ */
+export async function delete_ae_obj({
+    api_cfg,
+    obj_type,
+    obj_id,
+    method = 'delete',
+    params = {},
+    log_lvl = 0
+}: DeleteAeObjV3Params) {
+    const endpoint = `/v3/crud/${obj_type}/${obj_id}`;
+    const query_params = { ...params, method };
+
+    if (log_lvl) {
+        console.log('*** delete_ae_obj ***');
+        console.log('Endpoint:', endpoint);
+        console.log('Params:', query_params);
+    }
+
+    return await delete_object({
+        api_cfg,
+        endpoint,
+        params: query_params,
+        log_lvl
+    });
+}
+
+interface DeleteNestedAeObjV3Params {
+    api_cfg: any;
+    parent_type?: string;
+    parent_id?: string;
+    child_type?: string;
+    child_id?: string;
+    // Aliases for migration
+    for_obj_type?: string;
+    for_obj_id?: string;
+    obj_type?: string;
+    obj_id?: string;
+
+    method?: 'delete' | 'soft_delete' | 'disable' | 'hide';
+    params?: key_val;
+    log_lvl?: number;
+}
+
+/**
+ * Delete a single nested object by ID (V3)
+ */
+export async function delete_nested_ae_obj({
+    api_cfg,
+    parent_type,
+    parent_id,
+    child_type,
+    child_id,
+    for_obj_type,
+    for_obj_id,
+    obj_type,
+    obj_id,
+    method = 'delete',
+    params = {},
+    log_lvl = 0
+}: DeleteNestedAeObjV3Params) {
+    const p_type = parent_type || for_obj_type;
+    const p_id = parent_id || for_obj_id;
+    const c_type = child_type || obj_type;
+    const c_id = child_id || obj_id;
+
+    const endpoint = `/v3/crud/${p_type}/${p_id}/${c_type}/${c_id}`;
+    const query_params = { ...params, method };
+
+    if (log_lvl) {
+        console.log('*** delete_nested_ae_obj ***');
+        console.log('Endpoint:', endpoint);
+        console.log('Params:', query_params);
+    }
+
+    return await delete_object({
+        api_cfg,
+        endpoint,
+        params: query_params,
+        log_lvl
+    });
+}

src/lib/ae_api/api_post__crud_search.ts

@@ -0,0 +1,85 @@
+import type { key_val } from '$lib/stores/ae_stores';
+import { post_object } from './api_post_object';
+
+interface SearchAeObjV3Params {
+    api_cfg: any;
+    obj_type: string;
+    search_query: any; // Complex SearchQuery object: { q: string, and: [], or: [] }
+    enabled?: 'all' | 'enabled' | 'not_enabled';
+    hidden?: 'all' | 'hidden' | 'not_hidden';
+    view?: string;
+    for_obj_type?: string;
+    for_obj_id?: string;
+    order_by_li?:
+        | Record<string, 'ASC' | 'DESC'>
+        | Record<string, 'ASC' | 'DESC'>[]
+        | null;
+    limit?: number;
+    offset?: number;
+    delay_ms?: number;
+    params?: key_val;
+    headers?: any;
+    log_lvl?: number;
+}
+
+export async function search_ae_obj({
+    api_cfg,
+    obj_type,
+    search_query,
+    enabled = 'enabled',
+    hidden = 'not_hidden',
+    view = 'default',
+    for_obj_type,
+    for_obj_id,
+    order_by_li = null,
+    limit = 100,
+    offset = 0,
+    delay_ms = 0,
+    params = {},
+    headers = {},
+    log_lvl = 0
+}: SearchAeObjV3Params) {
+    const endpoint = `/v3/crud/${obj_type}/search`;
+
+    // Hybrid search: Standard filters passed as query params
+    const query_params: key_val = {
+        enabled,
+        hidden,
+        view,
+        limit,
+        offset,
+        ...params
+    };
+
+    if (for_obj_type) query_params['for_obj_type'] = for_obj_type;
+    if (for_obj_id) query_params['for_obj_id'] = for_obj_id;
+    if (order_by_li) query_params['order_by_li'] = JSON.stringify(order_by_li);
+    if (delay_ms > 0) query_params['delay_ms'] = delay_ms;
+
+    // Serialize any complex objects in the query params (e.g. ft_qry, lk_qry)
+    for (const key in query_params) {
+        if (
+            typeof query_params[key] === 'object' &&
+            query_params[key] !== null
+        ) {
+            query_params[key] = JSON.stringify(query_params[key]);
+        }
+    }
+
+    if (log_lvl) {
+        console.log('*** search_ae_obj ***');
+        console.log('Endpoint:', endpoint);
+        console.log('Params:', query_params);
+        console.log('Search Query:', search_query);
+    }
+
+    // Note: search_query is sent in the BODY via POST
+    return await post_object({
+        api_cfg,
+        endpoint,
+        params: query_params,
+        headers,
+        data: search_query,
+        log_lvl
+    });
+}

src/lib/ae_api/api_post_object.ts

@@ -0,0 +1,408 @@
+import { browser } from '$app/environment';
+import { ae_auth_error } from '$lib/stores/ae_stores';
+import type { key_val } from '$lib/stores/ae_stores';
+
+export const temp_post_blob_percent_completed = 0;
+export const post_blob_percent_completed = temp_post_blob_percent_completed;
+export const temp_post_object_percent_completed = 0;
+export const post_object_percent_completed = temp_post_object_percent_completed;
+
+// Updated 2026-01-26 (Abort Silence)
+export const post_object = async function post_object({
+    api_cfg = null,
+    endpoint = '',
+    headers = {},
+    params = {},
+    data = {},
+    form_data = null,
+    timeout = 90000,
+    return_meta = false,
+    return_blob = false,
+    filename = '',
+    auto_download = false,
+    // The task_id value should be a random string that is unique to the task. This is used to identify the task in the message event.
+    task_id = crypto.randomUUID(),
+    log_lvl = 0,
+    retry_count = 5
+}: {
+    api_cfg: any;
+    endpoint: string;
+    headers?: any;
+    params?: any;
+    data?: any;
+    form_data?: any;
+    timeout?: number;
+    return_meta?: boolean;
+    return_blob?: boolean;
+    filename?: string;
+    auto_download?: boolean;
+    task_id?: string;
+    log_lvl?: number;
+    retry_count?: number;
+}) {
+    if (log_lvl) {
+        console.log(
+            `*** post_object() *** Endpoint: ${endpoint} Task ID: ${task_id}`
+        );
+        console.log('Params:', params);
+        if (log_lvl > 1) {
+            console.log('Data:', data);
+            console.log(typeof data);
+            console.log(`Base URL: ${api_cfg['base_url']}`);
+            console.log('API Config:', api_cfg);
+        }
+        if (log_lvl > 2) {
+            console.log(`Return Meta: ${return_meta}`);
+            console.log(`Return Blob: ${return_blob}`);
+            console.log(`Filename: ${filename}`);
+            console.log(`Auto Download: ${auto_download}`);
+        }
+    }
+
+    if (!api_cfg) {
+        console.error('No API Config was provided. Returning false.');
+        return false;
+    }
+
+    // Construct the URL with query parameters
+    const url = new URL(endpoint, api_cfg['base_url']);
+    if (params) {
+        Object.keys(params).forEach((key) =>
+            url.searchParams.append(key, params[key])
+        );
+    }
+
+    // Clean and merge headers
+    const headers_cleaned: key_val = {};
+    const merged_headers = { ...api_cfg['headers'], ...headers };
+
+    // Auto-promote account_id from api_cfg to header if missing
+    let account_id = merged_headers['x-account-id'] || api_cfg['account_id'];
+
+    // IMMEDIATE ACCOUNT ID SCAVENGING: Read from localStorage to avoid race conditions
+    if (!account_id && typeof localStorage !== 'undefined') {
+        try {
+            const ae_loc_raw = localStorage.getItem('ae_loc');
+            if (ae_loc_raw) {
+                const ae_loc_json = JSON.parse(ae_loc_raw);
+                if (ae_loc_json.account_id) {
+                    account_id = ae_loc_json.account_id;
+                }
+            }
+        } catch (e) {
+            // Silently fail on storage read
+        }
+    }
+
+    if (account_id) {
+        merged_headers['x-account-id'] = account_id;
+    }
+
+    // Handle "Bootstrap Paradox" for unauthenticated requests
+    const bypass_val =
+        merged_headers['x-no-account-id'] || merged_headers['x_no_account_id'];
+    const is_valid_bypass =
+        bypass_val === 'bypass' ||
+        bypass_val === 'Nothing to See Here' ||
+        params['key'] ||
+        bypass_val === 'direct-download';
+
+    if (is_valid_bypass) {
+        if (log_lvl > 1)
+            console.log(
+                'api_post_object: Valid bypass detected. Stripping account ID context.'
+            );
+        delete merged_headers['x-account-id'];
+        delete merged_headers['x_account_id'];
+    } else {
+        // If it's a placeholder (like "No_Account_ID_Here"), just remove the bypass header
+        // but DO NOT strip the valid Account ID.
+        delete merged_headers['x-no-account-id'];
+        delete merged_headers['x_no_account_id'];
+    }
+
+    for (const prop in merged_headers) {
+        const prop_cleaned = prop.replaceAll('_', '-');
+        let value = merged_headers[prop];
+        if (value === null || value === undefined) continue;
+
+        if (typeof value !== 'string') {
+            value = JSON.stringify(value);
+        }
+        headers_cleaned[prop_cleaned] = value;
+    }
+
+    // Auto-inject Authorization header if JWT is present but header is missing
+    let jwt =
+        headers_cleaned['jwt'] ||
+        headers_cleaned['JWT'] ||
+        api_cfg['jwt'] ||
+        api_cfg['headers']?.['jwt'] ||
+        api_cfg['headers']?.['JWT'];
+
+    // Final Fallback: Direct check of primary ae_loc key
+    if (!jwt && typeof localStorage !== 'undefined') {
+        try {
+            const raw = localStorage.getItem('ae_loc');
+            if (raw) {
+                const json = JSON.parse(raw);
+                if (json.jwt) jwt = json.jwt;
+            }
+        } catch (e) {
+            // Silently fail on storage read
+        }
+    }
+
+    if (
+        jwt &&
+        !headers_cleaned['Authorization'] &&
+        !headers_cleaned['authorization']
+    ) {
+        headers_cleaned['Authorization'] = `Bearer ${jwt}`;
+    }
+
+    if (form_data) {
+        delete headers_cleaned['content-type'];
+        delete headers_cleaned['Content-Type'];
+        if (log_lvl > 1) console.log('Form Data:', form_data);
+    } else {
+        headers_cleaned['Content-Type'] = 'application/json';
+    }
+
+    if (log_lvl > 1) {
+        console.log('Final cleaned headers:', headers_cleaned);
+    }
+
+    let fetch_method: any = fetch;
+    if (api_cfg.fetch) {
+        if (log_lvl > 1) {
+            console.log('Using custom fetch function from api_cfg!!!');
+        }
+        fetch_method = api_cfg.fetch;
+    }
+
+    for (let attempt = 1; attempt <= retry_count; attempt++) {
+        try {
+            const controller = new AbortController();
+            const timeoutId = setTimeout(() => {
+                console.error(`API POST request timed out after ${timeout}ms.`);
+                controller.abort();
+            }, timeout);
+
+            const fetchOptions: RequestInit = {
+                method: 'POST',
+                headers: headers_cleaned,
+                body: form_data ? form_data : JSON.stringify(data),
+                signal: controller.signal
+            };
+
+            if (log_lvl > 1) {
+                console.log('Fetch Options:', fetchOptions);
+            }
+
+            const response = await fetch_method(
+                url.toString(),
+                fetchOptions
+            ).catch(function (error: any) {
+                // SILENCE NOISE: Aborted requests shouldn't spam logs at log_lvl 0
+                if (
+                    error.name === 'AbortError' ||
+                    error.message?.includes('aborted') ||
+                    error.name === 'TypeError'
+                ) {
+                    if (log_lvl > 1) {
+                        console.log(
+                            'API POST: Request was aborted or terminated by browser. Expected during navigation.',
+                            error
+                        );
+                    }
+                    return error;
+                }
+
+                console.log(
+                    'API POST Object *fetch* request failed in an unexpected way.',
+                    error
+                );
+                return error;
+            });
+            clearTimeout(timeoutId);
+
+            // Check if we should stop due to abort or network failure
+            if (
+                response instanceof Error ||
+                (response &&
+                    (response.name === 'TypeError' ||
+                        response.name === 'AbortError'))
+            ) {
+                if (response.name === 'AbortError') return false;
+                if (log_lvl > 1)
+                    console.log(
+                        'API POST Object: Detected NetworkError or TypeError. Failing fast.'
+                    );
+                return false;
+            }
+
+            if (!response) {
+                throw new Error(
+                    `HTTP fetch request was aborted or failed in an unexpected way! URL = ${url.toString()}`
+                );
+            }
+
+            if (log_lvl) {
+                console.log(
+                    `Response: status=${response.status} attempt=${attempt}`
+                );
+            }
+
+            if (!response.ok) {
+                if (response.status === 404) {
+                    if (log_lvl) {
+                        console.log(
+                            'The response was a 404 not found "error". Returning null.'
+                        );
+                    }
+                    return null;
+                }
+
+                // FAIL FAST (Section 2D): Do not retry on Auth or Client errors (400, 401, 403, 422)
+                if (
+                    response.status === 400 ||
+                    response.status === 401 ||
+                    response.status === 403 ||
+                    response.status === 422
+                ) {
+                    if (log_lvl)
+                        console.error(
+                            `API Client Failure (${response.status}). Failing fast.`
+                        );
+
+                    if (response.status === 401 || response.status === 403) {
+                        console.warn(
+                            `AUTH DIAGNOSTICS (POST): Headers sent for ${endpoint}:`,
+                            {
+                                has_auth: !!headers_cleaned['Authorization'],
+                                has_api_key:
+                                    !!headers_cleaned['x-aether-api-key'],
+                                has_account_id:
+                                    !!headers_cleaned['x-account-id'],
+                                jwt_preview: jwt
+                                    ? `${jwt.slice(0, 8)}...`
+                                    : 'MISSING'
+                            }
+                        );
+                        // Signal the root layout to show the session-expired banner.
+                        if (browser)
+                            ae_auth_error.set({
+                                type: 'expired',
+                                ts: Date.now()
+                            });
+                    }
+
+                    // Structured Error Handling (V3): Attempt to get rich error metadata
+                    let error_json: any = null;
+                    try {
+                        error_json = await response.json();
+                    } catch (e) {
+                        // Not JSON
+                    }
+
+                    if (log_lvl)
+                        console.log(
+                            'The response was not ok. Structured Error Check:',
+                            error_json
+                        );
+
+                    if (error_json?.meta?.details) {
+                        return error_json;
+                    }
+
+                    // Fallback for standard FastAPI "detail" errors
+                    if (error_json?.detail) {
+                        return {
+                            meta: {
+                                success: false,
+                                status_code: response.status,
+                                details: {
+                                    category: 'validation',
+                                    message:
+                                        typeof error_json.detail === 'string'
+                                            ? error_json.detail
+                                            : JSON.stringify(error_json.detail),
+                                    raw: error_json.detail
+                                }
+                            }
+                        };
+                    }
+
+                    return false;
+                }
+
+                throw new Error(`HTTP error! status: ${response.status}`);
+            }
+
+            if (!return_blob) {
+                const json = await response.json();
+
+                if (log_lvl > 1) {
+                    console.log('Response JSON:', json);
+                }
+
+                // Post a message to the window indicating the upload is complete
+                try {
+                    if (typeof window !== 'undefined') {
+                        window.postMessage(
+                            {
+                                type: 'api_post_json_form',
+                                status: 'complete',
+                                task_id: task_id,
+                                endpoint: endpoint,
+                                size_total: 0,
+                                size_loaded: 0,
+                                percent_completed: 100,
+                                progress: 100,
+                                rate: 0
+                            },
+                            '*'
+                        );
+                    }
+                } catch (error) {
+                    console.error('Error posting message to window:', error);
+                }
+
+                // Return the response data or metadata
+                // Robustly handle V3 response envelopes
+                return return_meta
+                    ? json
+                    : json.data !== undefined
+                      ? json.data
+                      : json;
+            } else {
+                const blob = await response.blob();
+
+                if (auto_download) {
+                    const downloadUrl = window.URL.createObjectURL(blob);
+                    const link = document.createElement('a');
+                    link.href = downloadUrl;
+                    link.setAttribute('download', filename || 'download');
+                    document.body.appendChild(link);
+                    link.click();
+                    link.remove();
+                    return true;
+                } else {
+                    return blob;
+                }
+            }
+        } catch (error) {
+            console.error(`API POST error on attempt ${attempt}:`, error);
+
+            if (attempt === retry_count) {
+                console.error('Max retry attempts reached. Returning false.');
+                return false;
+            }
+
+            if (log_lvl) {
+                console.log(`Retrying... (${attempt}/${retry_count})`);
+            }
+        }
+    }
+};

src/lib/ae_archives/README.md

@@ -0,0 +1,28 @@
+# Aether (AE) Archives Module
+
+The Archives module is a system for storing and retrieving archived data. It is composed of two main data structures: `Archive` and `Archive_Content`.
+
+## Data Structures
+
+### Archive
+
+An `Archive` is a container for a collection of `Archive_Content` items. It has a name, description, and other metadata.
+
+### Archive Content
+
+An `Archive_Content` item represents a single piece of content within an `Archive`. This can be text, a file, a URL, or other data.
+
+## Functionality
+
+This module provides the following functionality:
+
+- **CRUD Operations:** Create, Read, Update, and Delete operations for both `Archive` and `Archive_Content` objects.
+- **Local Caching:** Uses Dexie.js to cache data in the browser's IndexedDB for offline access and faster load times.
+- **API Interaction:** All data operations are synced with the backend API.
+
+## Files
+
+- `ae_archives__archive.ts`: Contains functions for managing `Archive` objects.
+- `ae_archives__archive_content.ts`: Contains functions for managing `Archive_Content` objects.
+- `ae_archives_functions.ts`: Exports all the functions from the module for easy use in other parts of the application.
+- `db_archives.ts`: Defines the IndexedDB schema for the archives module using Dexie.js.

src/lib/ae_archives/ae_archives__archive.editable_fields.ts

@@ -0,0 +1,19 @@
+export const editable_fields__archive = [
+    'code',
+    'name',
+    'description',
+    'original_datetime',
+    'original_timezone',
+    'original_location',
+    'original_url',
+    'original_url_text',
+    'sort_by',
+    'sort_by_desc',
+    'cfg_json',
+    'enable',
+    'hide',
+    'priority',
+    'sort',
+    'group',
+    'notes'
+];