Updates

Track improvements to the Ask Mark Auto KeyLab experience.

April 26, 2026

Moved WhatsApp magic-link creation out to YorkieVehicleWebhook.Api while keeping this site redeem-only.

Prepared a standalone webhook endpoint file that creates Ask Mark users, starter tokens, and /r/{token} links.

Changed WhatsApp login so unknown numbers are not auto-created by this website.

Removed the obsolete WhatsApp query-string helper so /signup?whatsappnumber=... is not supported.

April 22, 2026

Updated the default SQL Server connection string for both development and release runs.

Removed localhost launch URLs in favor of explicit 127.0.0.1 bindings.

Fixed HttpClient base address for server-rendered components to avoid invalid URI errors.

Resolved MudBlazor analyzer warnings for text field autocomplete, hero grid alignment, and admin table row clicks.

Made the admin sign-in error state more prominent and added clearer role guidance.

Admin access checks now honor a configurable list of allowed roles and sanitize return URLs.

Added an admin recovery CLI to set or reset admin passwords and roles.

Increased mobile drawer navigation text size for better readability.

Added one-time WhatsApp magic link resolution at /r/{token} with expiry checks and server-side sign-in.

Removed WhatsApp number query-parameter auto-login flows to keep phone numbers out of URLs.

Sign-up now checks the current session and shows token balance when already authenticated.

Pinned header and hero logo heights to prevent oversized branding from breaking layouts.

Token balance page now redirects unknown WhatsApp numbers to signup before showing balances.

Admin users table supports row-click selection again, with a pointer cursor for clarity.

April 20, 2026

Aligned MudBlazor variant usage with enum-qualified values.

Updated navigation menu markup to match the latest MudMenu child content model.

Typed the updates list so it renders cleanly on MudBlazor 9.

Removed Event Log logging to keep local runs stable in restricted environments.

Persisted data protection keys in the workspace to avoid profile permission issues.

Changed the default local dev HTTP port to 5080.

Moved SQL tables into the AskMark schema for clean separation.

Added token usage logging and a secure API endpoint to consume tokens.

Introduced admin user management and usage log pages secured by ASKMARK_ADMIN.

Logged system activity in a new usage table for auditing and filtering.

Separated admin access to use ASP.NET Identity logins (no WhatsApp admins).

Added dedicated admin sign-in, sign-out, and access-denied pages.

Gated admin navigation with a server-side admin status check.

April 19, 2026

Launched the neon-inspired landing page and refreshed navigation layout.

Added WhatsApp signup, token balance, and top-up flows.

Integrated PayPal checkout with server-side token credits.

Created an MSSQL schema script for users, payments, and token transactions.

Introduced PWA assets, manifest, and service worker for installability.

Added Docker, compose, and README guidance for builds and runs.