feat(auth): implement user authentication and profile management

- Added authentication context and provider to manage user state.
- Created login and registration forms with validation and error handling.
- Implemented user profile component for updating user information and changing passwords.
- Introduced user settings in the database for notification preferences.
- Updated translations for authentication-related strings in English and German.
- Enhanced styles for authentication components and user profile.
- Added middleware for optional and required authentication checks.

backend/src/db/schema.ts

@@ -1,18 +1,27 @@
-import { sqliteTable, text, integer, real } from "drizzle-orm/sqlite-core";
+import { sqliteTable, text, integer } from "drizzle-orm/sqlite-core";
 import { sql } from "drizzle-orm";
 
+// =============================================================================
+// Users - Simple auth, no roles (every user is equal)
+// =============================================================================
 export const users = sqliteTable("users", {
   id: integer("id").primaryKey({ autoIncrement: true }),
-  email: text("email", { length: 255 }).notNull().unique(),
-  passwordHash: text("password_hash", { length: 255 }).notNull(),
-  role: text("role", { length: 50 }).notNull().default("user"),
+  username: text("username", { length: 100 }).notNull().unique(),
+  passwordHash: text("password_hash", { length: 255 }),
+  authProvider: text("auth_provider", { length: 50 }).notNull().default("local"),
+  isActive: integer("is_active", { mode: "boolean" }).notNull().default(true),
+  lastLoginAt: integer("last_login_at", { mode: "timestamp" }),
   createdAt: integer("created_at", { mode: "timestamp" }).notNull().default(sql`CURRENT_TIMESTAMP`),
   updatedAt: integer("updated_at", { mode: "timestamp" }).notNull().default(sql`CURRENT_TIMESTAMP`),
 });
 
+// =============================================================================
+// Medications - Per user
+// =============================================================================
 export const medications = sqliteTable("medications", {
   id: integer("id").primaryKey({ autoIncrement: true }),
-  name: text("name", { length: 100 }).notNull().unique(),
+  userId: integer("user_id").notNull().references(() => users.id, { onDelete: "cascade" }),
+  name: text("name", { length: 100 }).notNull(),
   genericName: text("generic_name", { length: 100 }),
   takenBy: text("taken_by", { length: 100 }),
   count: integer("count").notNull().default(0),
@@ -33,6 +42,42 @@ export const medications = sqliteTable("medications", {
   updatedAt: integer("updated_at", { mode: "timestamp" }).notNull().default(sql`CURRENT_TIMESTAMP`),
 });
 
+// =============================================================================
+// User Settings - Per user (email, push, thresholds, language)
+// =============================================================================
+export const userSettings = sqliteTable("user_settings", {
+  id: integer("id").primaryKey({ autoIncrement: true }),
+  userId: integer("user_id").notNull().unique().references(() => users.id, { onDelete: "cascade" }),
+  // Email notifications
+  emailEnabled: integer("email_enabled", { mode: "boolean" }).notNull().default(false),
+  notificationEmail: text("notification_email"),
+  emailStockReminders: integer("email_stock_reminders", { mode: "boolean" }).notNull().default(true),
+  emailIntakeReminders: integer("email_intake_reminders", { mode: "boolean" }).notNull().default(true),
+  // Push notifications (shoutrrr/ntfy)
+  shoutrrrEnabled: integer("shoutrrr_enabled", { mode: "boolean" }).notNull().default(false),
+  shoutrrrUrl: text("shoutrrr_url"),
+  shoutrrrStockReminders: integer("shoutrrr_stock_reminders", { mode: "boolean" }).notNull().default(true),
+  shoutrrrIntakeReminders: integer("shoutrrr_intake_reminders", { mode: "boolean" }).notNull().default(true),
+  // Reminder settings
+  reminderDaysBefore: integer("reminder_days_before").notNull().default(7),
+  repeatDailyReminders: integer("repeat_daily_reminders", { mode: "boolean" }).notNull().default(false),
+  // Stock thresholds (days)
+  lowStockDays: integer("low_stock_days").notNull().default(30),
+  normalStockDays: integer("normal_stock_days").notNull().default(90),
+  highStockDays: integer("high_stock_days").notNull().default(180),
+  // UI preferences
+  language: text("language", { length: 10 }).notNull().default("en"),
+  // Last notification tracking
+  lastAutoEmailSent: text("last_auto_email_sent"),
+  lastNotificationType: text("last_notification_type"),
+  lastNotificationChannel: text("last_notification_channel"),
+  // Timestamps
+  updatedAt: integer("updated_at", { mode: "timestamp" }).notNull().default(sql`CURRENT_TIMESTAMP`),
+});
+
+// =============================================================================
+// Refresh Tokens - For JWT rotation
+// =============================================================================
 export const refreshTokens = sqliteTable("refresh_tokens", {
   id: integer("id").primaryKey({ autoIncrement: true }),
   userId: integer("user_id").notNull().references(() => users.id, { onDelete: "cascade" }),
@@ -42,18 +87,3 @@ export const refreshTokens = sqliteTable("refresh_tokens", {
   revoked: integer("revoked", { mode: "boolean" }).notNull().default(false),
   createdAt: integer("created_at", { mode: "timestamp" }).notNull().default(sql`CURRENT_TIMESTAMP`),
 });
-
-export const settings = sqliteTable("settings", {
-  id: integer("id").primaryKey({ autoIncrement: true }),
-  smtpHost: text("smtp_host"),
-  smtpPort: integer("smtp_port"),
-  smtpUser: text("smtp_user"),
-  smtpPassEncrypted: text("smtp_pass_encrypted"),
-  smtpFrom: text("smtp_from"),
-  smtpSecure: integer("smtp_secure", { mode: "boolean" }).notNull().default(false),
-  // Email notification settings
-  emailEnabled: integer("email_enabled", { mode: "boolean" }).notNull().default(false),
-  notificationEmail: text("notification_email"),
-  reminderDaysBefore: integer("reminder_days_before").notNull().default(7),
-  updatedAt: integer("updated_at", { mode: "timestamp" }).notNull().default(sql`CURRENT_TIMESTAMP`),
-});