Test lab

TSI dev checks against …. Sign in with Dynamic (ZeroDev wallet) and the legacy Supabase user model; the BFF stores the main-api bearer JWT in an httpOnly cookie.

Login

Same flow as legacy co2trust storefront: Dynamic widget → validate JWT (server) → upsert users / users_to_dynamic in Supabase → POST /co2trust-services/v1/users/auth with backend secret → httpOnly co2t_console_jwt.

Loading Dynamic login…

Session: not signed in

Test data

Requires signed-in admin JWT. Seeds tagged rows: user tsi-console-test-user, supplier tsi-console-test-supplier, product SKU prefix. Wipe only deletes tsi-console-test-* ids.

Parity checks

Mirrors test:admin-smoke GETs; uses JWT cookie when set.

Console URL: · env: dev