src/Meezi.API/Models/Auth/AuthDtos.cs

namespace Meezi.API.Models.Auth;

public record SendOtpRequest(string Phone);

/// <summary>Username + password login (alternative to OTP). Optional cafeId to scope to a specific café.</summary>
public record LoginWithPasswordRequest(string Username, string Password, string? CafeId = null);

public record VerifyOtpRequest(string Phone, string Code, string? CafeId = null);

public record RefreshTokenRequest(string RefreshToken);

public record SwitchCafeRequest(string CafeId);

/// <summary>Switch the active branch within the current café. Null = café-wide (Owner only).</summary>
public record SwitchBranchRequest(string? BranchId);

/// <summary>Step 1 of self-registration: send OTP to a new phone number.</summary>
/// <param name="Slug">Optional custom Koja slug (e.g. "lamiz-enghelab"). Auto-derived from CafeName if omitted.</param>
public record RegisterRequest(string Phone, string CafeName, string? Slug = null);

/// <summary>Step 2 of self-registration: verify OTP and create the cafe account.</summary>
public record VerifyRegisterRequest(string Phone, string Code);

/// <summary>One café membership entry returned when user belongs to multiple cafés.</summary>
public record CafeMembershipDto(string CafeId, string CafeName, string Role, string PlanTier);

/// <summary>A branch the signed-in employee may operate as, with their role there.</summary>
public record BranchMembershipDto(string BranchId, string BranchName, string Role);

public record AuthTokenResponse(
    string AccessToken,
    string RefreshToken,
    DateTime ExpiresAt,
    string UserId,
    string CafeId,
    string Role,
    string PlanTier,
    string Language,
    string Actor = Meezi.Core.Constants.MeeziActorKinds.Merchant,
    string? BranchId = null,
    List<CafeMembershipDto>? Memberships = null,
    string? BranchName = null,
    bool IsCafeWide = false,
    List<BranchMembershipDto>? Branches = null,
    /// <summary>Effective capabilities for the active role — drives client-side page/action gating.</summary>
    List<string>? Permissions = null);

public record SendOtpResponse(bool Sent, int ExpiresInSeconds);

/// <summary>Returned when a phone number belongs to multiple cafés and no CafeId was specified.</summary>
public record CafeChoicesResponse(List<CafeMembershipDto> Cafes);
feat(api): .NET 10 multi-tenant REST API 2026-05-27 21:33:48 +03:30			`namespace Meezi.API.Models.Auth;`

			`public record SendOtpRequest(string Phone);`

feat: username/password authentication for admin and merchant panels 2026-05-31 19:58:54 +03:30			`/// <summary>Username + password login (alternative to OTP). Optional cafeId to scope to a specific café.</summary>`
			`public record LoginWithPasswordRequest(string Username, string Password, string? CafeId = null);`

feat(api): .NET 10 multi-tenant REST API 2026-05-27 21:33:48 +03:30			`public record VerifyOtpRequest(string Phone, string Code, string? CafeId = null);`

			`public record RefreshTokenRequest(string RefreshToken);`

Add OTP login flow and multi-cafe role switching 2026-05-29 17:14:46 +03:30			`public record SwitchCafeRequest(string CafeId);`

first commit 2026-05-31 11:06:24 +03:30			`/// <summary>Switch the active branch within the current café. Null = café-wide (Owner only).</summary>`
			`public record SwitchBranchRequest(string? BranchId);`

feat : kavenegar otp added 2026-05-29 10:18:47 +03:30			`/// <summary>Step 1 of self-registration: send OTP to a new phone number.</summary>`
fix: sidebar accordion + koja slug + support ticket LINQ crash 2026-05-31 22:28:25 +03:30			`/// <param name="Slug">Optional custom Koja slug (e.g. "lamiz-enghelab"). Auto-derived from CafeName if omitted.</param>`
			`public record RegisterRequest(string Phone, string CafeName, string? Slug = null);`
feat : kavenegar otp added 2026-05-29 10:18:47 +03:30
			`/// <summary>Step 2 of self-registration: verify OTP and create the cafe account.</summary>`
			`public record VerifyRegisterRequest(string Phone, string Code);`

Add OTP login flow and multi-cafe role switching 2026-05-29 17:14:46 +03:30			`/// <summary>One café membership entry returned when user belongs to multiple cafés.</summary>`
			`public record CafeMembershipDto(string CafeId, string CafeName, string Role, string PlanTier);`

first commit 2026-05-31 11:06:24 +03:30			`/// <summary>A branch the signed-in employee may operate as, with their role there.</summary>`
			`public record BranchMembershipDto(string BranchId, string BranchName, string Role);`

feat(api): .NET 10 multi-tenant REST API 2026-05-27 21:33:48 +03:30			`public record AuthTokenResponse(`
			`string AccessToken,`
			`string RefreshToken,`
			`DateTime ExpiresAt,`
			`string UserId,`
			`string CafeId,`
			`string Role,`
			`string PlanTier,`
			`string Language,`
			`string Actor = Meezi.Core.Constants.MeeziActorKinds.Merchant,`
Add OTP login flow and multi-cafe role switching 2026-05-29 17:14:46 +03:30			`string? BranchId = null,`
first commit 2026-05-31 11:06:24 +03:30			`List<CafeMembershipDto>? Memberships = null,`
			`string? BranchName = null,`
			`bool IsCafeWide = false,`
			`List<BranchMembershipDto>? Branches = null,`
			`/// <summary>Effective capabilities for the active role — drives client-side page/action gating.</summary>`
			`List<string>? Permissions = null);`
feat(api): .NET 10 multi-tenant REST API 2026-05-27 21:33:48 +03:30
			`public record SendOtpResponse(bool Sent, int ExpiresInSeconds);`
Add OTP login flow and multi-cafe role switching 2026-05-29 17:14:46 +03:30
			`/// <summary>Returned when a phone number belongs to multiple cafés and no CafeId was specified.</summary>`
			`public record CafeChoicesResponse(List<CafeMembershipDto> Cafes);`