@jmruthers/pace-core 0.5.35 → 0.5.36

package/docs/api/interfaces/StorageFileMetadata.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / StorageFileMetadata
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / StorageFileMetadata
 
 # Interface: StorageFileMetadata
 

package/docs/api/interfaces/StorageListOptions.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / StorageListOptions
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / StorageListOptions
 
 # Interface: StorageListOptions
 

package/docs/api/interfaces/StorageListResult.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / StorageListResult
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / StorageListResult
 
 # Interface: StorageListResult
 

package/docs/api/interfaces/StorageUploadOptions.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / StorageUploadOptions
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / StorageUploadOptions
 
 # Interface: StorageUploadOptions
 

package/docs/api/interfaces/StorageUploadResult.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / StorageUploadResult
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / StorageUploadResult
 
 # Interface: StorageUploadResult
 

package/docs/api/interfaces/StorageUrlOptions.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / StorageUrlOptions
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / StorageUrlOptions
 
 # Interface: StorageUrlOptions
 

package/docs/api/interfaces/StyleImport.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / StyleImport
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / StyleImport
 
 # Interface: StyleImport
 

package/docs/api/interfaces/ToastActionElement.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / ToastActionElement
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / ToastActionElement
 
 # Interface: ToastActionElement
 

package/docs/api/interfaces/ToastProps.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / ToastProps
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / ToastProps
 
 # Interface: ToastProps
 

package/docs/api/interfaces/UnifiedAuthContextType.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / UnifiedAuthContextType
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / UnifiedAuthContextType
 
 # Interface: UnifiedAuthContextType
 

package/docs/api/interfaces/UnifiedAuthProviderProps.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / UnifiedAuthProviderProps
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / UnifiedAuthProviderProps
 
 # Interface: UnifiedAuthProviderProps
 

package/docs/api/interfaces/UseInactivityTrackerOptions.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / UseInactivityTrackerOptions
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / UseInactivityTrackerOptions
 
 # Interface: UseInactivityTrackerOptions
 

package/docs/api/interfaces/UseInactivityTrackerReturn.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / UseInactivityTrackerReturn
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / UseInactivityTrackerReturn
 
 # Interface: UseInactivityTrackerReturn
 

package/docs/api/interfaces/UsePublicEventLogoOptions.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / UsePublicEventLogoOptions
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / UsePublicEventLogoOptions
 
 # Interface: UsePublicEventLogoOptions
 

package/docs/api/interfaces/UsePublicEventLogoReturn.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / UsePublicEventLogoReturn
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / UsePublicEventLogoReturn
 
 # Interface: UsePublicEventLogoReturn
 

package/docs/api/interfaces/UsePublicEventOptions.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / UsePublicEventOptions
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / UsePublicEventOptions
 
 # Interface: UsePublicEventOptions
 

package/docs/api/interfaces/UsePublicEventReturn.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / UsePublicEventReturn
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / UsePublicEventReturn
 
 # Interface: UsePublicEventReturn
 

package/docs/api/interfaces/UsePublicRouteParamsReturn.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / UsePublicRouteParamsReturn
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / UsePublicRouteParamsReturn
 
 # Interface: UsePublicRouteParamsReturn
 

package/docs/api/interfaces/UserEventAccess.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / UserEventAccess
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / UserEventAccess
 
 # Interface: UserEventAccess
 

package/docs/api/interfaces/UserMenuProps.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / UserMenuProps
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / UserMenuProps
 
 # Interface: UserMenuProps
 

package/docs/api/interfaces/UserProfile.md

@@ -1,4 +1,4 @@
-[@jmruthers/pace-core - v0.5.35](../README.md) / [Exports](../modules.md) / UserProfile
+[@jmruthers/pace-core - v0.5.36](../README.md) / [Exports](../modules.md) / UserProfile
 
 # Interface: UserProfile
 

package/docs/api/modules.md

@@ -1,6 +1,6 @@
-[@jmruthers/pace-core - v0.5.35](README.md) / Exports
+[@jmruthers/pace-core - v0.5.36](README.md) / Exports
 
-# @jmruthers/pace-core - v0.5.35
+# @jmruthers/pace-core - v0.5.36
 
 **`File`**
 
@@ -5036,7 +5036,7 @@ ___
 
 ### PagePermissionGuard
 
-▸ **PagePermissionGuard**(`props`): `Element`
+▸ **PagePermissionGuard**(`props`): ``null`` \| `string` \| `number` \| `boolean` \| `Iterable`\<`ReactNode`, `any`, `any`\> \| `Element`
 
 PagePermissionGuard - Enforces page-level permissions
 
@@ -5052,13 +5052,13 @@ prevent apps from bypassing permission checks.
 
 #### Returns
 
-`Element`
+``null`` \| `string` \| `number` \| `boolean` \| `Iterable`\<`ReactNode`, `any`, `any`\> \| `Element`
 
 React element with permission enforcement
 
 #### Defined in
 
-[packages/core/src/rbac/components/PagePermissionGuard.tsx:673](https://github.com/jmruthers/pace-core/blob/main/packages/core/src/rbac/components/PagePermissionGuard.tsx#L673)
+[packages/core/src/rbac/components/PagePermissionGuard.tsx:489](https://github.com/jmruthers/pace-core/blob/main/packages/core/src/rbac/components/PagePermissionGuard.tsx#L489)
 
 ___
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@jmruthers/pace-core",
-  "version": "0.5.35",
+  "version": "0.5.36",
   "description": "Clean, modern React component library with Tailwind v4 styling and native utilities",
   "private": false,
   "publishConfig": {

package/src/components/DataTable/components/DataTableCore.tsx

@@ -333,13 +333,6 @@ function DataTableInternal<TData extends DataRecord>({
   // Get scope from useUnifiedAuth hook instead of user metadata
   const { selectedOrganisationId, selectedEventId, supabase } = useUnifiedAuth();
   
-  // DEBUG: Log what we get from useUnifiedAuth
-  console.log('[DataTable] useUnifiedAuth values:', {
-    selectedOrganisationId,
-    selectedEventId,
-    hasUser: !!user,
-    userId: user?.id
-  });
   
   // Create scope the same way as PagePermissionGuard - with event-based resolution
   const [resolvedScope, setResolvedScope] = useState<Scope | null>(null);
@@ -385,42 +378,35 @@ function DataTableInternal<TData extends DataRecord>({
       if (supabase) {
         const appName = getCurrentAppName();
         if (appName) {
-          try {
-            console.log('[DataTable] Resolving app name to ID:', appName);
-            const { data: app, error } = await supabase
+        try {
+          const { data: app, error } = await supabase
+            .from('rbac_apps')
+            .select('id, name, is_active')
+            .eq('name', appName)
+            .eq('is_active', true)
+            .single() as { data: { id: string; name: string; is_active: boolean } | null; error: any };
+          
+          if (error) {
+            // Check if app exists but is inactive
+            const { data: inactiveApp } = await supabase
               .from('rbac_apps')
               .select('id, name, is_active')
               .eq('name', appName)
-              .eq('is_active', true)
-              .single() as { data: { id: string; name: string; is_active: boolean } | null; error: any };
+              .single() as { data: { id: string; name: string; is_active: boolean } | null };
             
-            if (error) {
-              console.error('[DataTable] Database error resolving app ID:', error);
-              // Check if app exists but is inactive
-              const { data: inactiveApp } = await supabase
-                .from('rbac_apps')
-                .select('id, name, is_active')
-                .eq('name', appName)
-                .single() as { data: { id: string; name: string; is_active: boolean } | null };
-              
-              if (inactiveApp) {
-                console.error(`[DataTable] App "${appName}" exists but is inactive (is_active: ${inactiveApp.is_active})`);
-              } else {
-                console.error(`[DataTable] App "${appName}" not found in rbac_apps table`);
-              }
-            } else if (app) {
-              appId = app.id;
-              console.log('[DataTable] Successfully resolved app ID:', app.id);
+            if (inactiveApp) {
+              console.error(`[DataTable] App "${appName}" exists but is inactive (is_active: ${inactiveApp.is_active})`);
             } else {
-              console.error('[DataTable] No app data returned for:', appName);
+              console.error(`[DataTable] App "${appName}" not found in rbac_apps table`);
             }
-          } catch (error) {
-            console.error('[DataTable] Unexpected error resolving app ID:', error);
+          } else if (app) {
+            appId = app.id;
           }
-        } else {
-          console.warn('[DataTable] No app name available for resolution');
+        } catch (error) {
+          console.error('[DataTable] Unexpected error resolving app ID:', error);
         }
       }
+      }
 
       // If we have both organisation and event, use them directly
       if (selectedOrganisationId && selectedEventId) {
@@ -472,39 +458,11 @@ function DataTableInternal<TData extends DataRecord>({
     resolveScope();
   }, [selectedOrganisationId, selectedEventId, supabase]);
   
-  // DEBUG: Log the exact parameters being passed to useCan
-  console.log('[DataTable] useCan parameters:', {
-    userId: user?.id || '',
-    stableScope,
-    permission: `read:page.${effectivePageId}`,
-    effectivePageId,
-    useCache: true,
-    hasValidScope: !!(stableScope && stableScope.organisationId)
-  });
-  
-  // DEBUG: Log stableScope details separately to avoid console collapsing
-  console.log('[DataTable] stableScope details:');
-  console.log('  organisationId:', stableScope?.organisationId);
-  console.log('  eventId:', stableScope?.eventId);
-  console.log('  appId:', stableScope?.appId);
-  console.log('  stableScope type:', typeof stableScope);
-  console.log('  stableScope keys:', stableScope ? Object.keys(stableScope) : 'null');
-
   // Always call useCan hooks (React rules), but use a fallback scope if needed
   const fallbackScope = { organisationId: '', eventId: undefined, appId: undefined };
   const effectiveScope = stableScope && stableScope.organisationId ? stableScope : fallbackScope;
 
-  // TEMPORARY TEST: Bypass useCan to see if the issue is with the hook itself
-  const testBypass = false; // Set to true to test bypassing useCan
-  
-  const permissions = testBypass ? {
-    canRead: { can: true, isLoading: false, error: null, refetch: async () => {} },
-    canCreate: { can: true, isLoading: false, error: null, refetch: async () => {} },
-    canUpdate: { can: true, isLoading: false, error: null, refetch: async () => {} },
-    canDelete: { can: true, isLoading: false, error: null, refetch: async () => {} },
-    canExport: { can: true, isLoading: false, error: null, refetch: async () => {} },
-    canImport: { can: true, isLoading: false, error: null, refetch: async () => {} },
-  } : {
+  const permissions = {
     canRead: useCan(user?.id || '', effectiveScope, `read:page.${effectivePageId}` as any, effectivePageId, true),
     canCreate: useCan(user?.id || '', effectiveScope, `create:page.${effectivePageId}` as any, effectivePageId, true),
     canUpdate: useCan(user?.id || '', effectiveScope, `update:page.${effectivePageId}` as any, effectivePageId, true),
@@ -512,10 +470,6 @@ function DataTableInternal<TData extends DataRecord>({
     canExport: useCan(user?.id || '', effectiveScope, `manage:page.${effectivePageId}` as any, effectivePageId, true), // Using manage for export/import
     canImport: useCan(user?.id || '', effectiveScope, `manage:page.${effectivePageId}` as any, effectivePageId, true), // Using manage for export/import
   };
-  
-  if (testBypass) {
-    console.log('[DataTable] TEST BYPASS: Using hardcoded can: true for all permissions');
-  }
 
   // ============================================================================
   // CONFIGURATION RESOLUTION - ALWAYS call these hooks
@@ -949,50 +903,11 @@ function DataTableInternal<TData extends DataRecord>({
     throw new Error('DataTable requires authenticated user for RBAC');
   }
 
-  const scope = {
-    organisationId: user?.user_metadata?.organisationId || user?.app_metadata?.organisationId,
-    eventId: user?.user_metadata?.eventId || user?.app_metadata?.eventId,
-    appId: user?.user_metadata?.appId || user?.app_metadata?.appId,
-  };
 
   // MANDATORY: No data access without read permission
-  console.log('[DataTable] RBAC DEBUG - Basic Info:', {
-    effectivePageId,
-    pageId,
-    pageName,
-    userId: user?.id,
-    permission: `read:page.${effectivePageId}`
-  });
-  
-  console.log('[DataTable] RBAC DEBUG - CanRead Details:');
-  console.log('  can:', permissions.canRead.can);
-  console.log('  isLoading:', permissions.canRead.isLoading);
-  console.log('  error:', permissions.canRead.error);
-  console.log('  refetch type:', typeof permissions.canRead.refetch);
-  
-    console.log('[DataTable] RBAC DEBUG - Scope (FIXED):');
-    console.log('  resolvedScope:', resolvedScope);
-    console.log('  stableScope:', stableScope);
-    console.log('  organisationId:', stableScope?.organisationId);
-    console.log('  eventId:', stableScope?.eventId);
-    console.log('  appId:', stableScope?.appId);
-  
   if (!permissions.canRead.can) {
-    console.error('[DataTable] ACCESS DENIED - DataTable RBAC failing!');
-    console.error('  effectivePageId:', effectivePageId);
-    console.error('  canRead.can:', permissions.canRead.can);
-    console.error('  canRead.isLoading:', permissions.canRead.isLoading);
-    console.error('  canRead.error:', permissions.canRead.error);
-    console.error('  permission:', `read:page.${effectivePageId}`);
-    console.error('  Full canRead object:', permissions.canRead);
     return <AccessDeniedPage resource={effectivePageId || 'unknown-page'} operation="read" />;
   }
-  
-  console.log('[DataTable] ACCESS GRANTED - DataTable RBAC working!');
-  console.log('  effectivePageId:', effectivePageId);
-  console.log('  canRead.can:', permissions.canRead.can);
-  console.log('  canRead.isLoading:', permissions.canRead.isLoading);
-  console.log('  canRead.error:', permissions.canRead.error);
 
   // ============================================================================
   // RENDER

package/src/rbac/components/PagePermissionGuard.tsx

@@ -135,28 +135,10 @@ const PagePermissionGuardComponent = ({
   const renderCountRef = useRef(0);
   renderCountRef.current += 1;
   
-  console.log(`[PagePermissionGuard] RENDER #${renderCountRef.current} for ${pageName}:${operation}`, {
-    instanceId,
-    timestamp: new Date().toISOString()
-  });
   
-  // Track component lifecycle
-  useEffect(() => {
-    console.log(`[PagePermissionGuard] MOUNTED: ${pageName}:${operation}`, { instanceId });
-    return () => {
-      console.log(`[PagePermissionGuard] UNMOUNTED: ${pageName}:${operation}`, { instanceId });
-    };
-  }, [pageName, operation, instanceId]);
   
   const { user, selectedOrganisationId, selectedEventId, supabase } = useUnifiedAuth();
   
-  // DEBUG: Log what we get from useUnifiedAuth
-  console.log('[PagePermissionGuard] useUnifiedAuth values:', {
-    selectedOrganisationId,
-    selectedEventId,
-    hasUser: !!user,
-    userId: user?.id
-  });
   const [hasChecked, setHasChecked] = useState(false);
   const [checkError, setCheckError] = useState<Error | null>(null);
   const [resolvedScope, setResolvedScope] = useState<Scope | null>(null);
@@ -216,7 +198,6 @@ const PagePermissionGuardComponent = ({
         const appName = getCurrentAppName();
         if (appName) {
           try {
-            console.log('[PagePermissionGuard] Resolving app name to ID:', appName);
             const { data: app, error } = await supabaseRef.current
               .from('rbac_apps')
               .select('id, name, is_active')
@@ -240,7 +221,6 @@ const PagePermissionGuardComponent = ({
               }
             } else if (app) {
               appId = app.id;
-              console.log('[PagePermissionGuard] Successfully resolved app ID:', app.id);
             } else {
               console.error('[PagePermissionGuard] No app data returned for:', appName);
             }
@@ -281,7 +261,6 @@ const PagePermissionGuardComponent = ({
           eventId: selectedEventId,
           appId: appId
         };
-        console.log('[PagePermissionGuard] Setting resolved scope:', resolvedScope);
         setResolvedScope(resolvedScope);
         setCheckError(null); // Clear any previous errors
         return;
@@ -316,7 +295,6 @@ const PagePermissionGuardComponent = ({
           eventId: selectedEventId || undefined,
           appId: appId
         };
-        console.log('[PagePermissionGuard] Setting resolved scope (org only):', resolvedScope);
         setResolvedScope(resolvedScope);
         setCheckError(null); // Clear any previous errors
         return;
@@ -373,22 +351,6 @@ const PagePermissionGuardComponent = ({
     return `${operation}:page.${pageName}` as Permission;
   }, [operation, pageName]);
 
-  // DEBUG: Log the exact parameters being passed to useCan
-  console.log('[PagePermissionGuard] useCan parameters:', {
-    userId: user?.id || '',
-    stableScope,
-    permission,
-    effectivePageId,
-    useCache: true
-  });
-  
-  // DEBUG: Log stableScope details separately to avoid console collapsing
-  console.log('[PagePermissionGuard] stableScope details:');
-  console.log('  organisationId:', stableScope?.organisationId);
-  console.log('  eventId:', stableScope?.eventId);
-  console.log('  appId:', stableScope?.appId);
-  console.log('  stableScope type:', typeof stableScope);
-  console.log('  stableScope keys:', stableScope ? Object.keys(stableScope) : 'null');
 
   // Check if user has permission - only call useCan when we have a resolved scope
   // If resolvedScope is null, we're still resolving, so show loading state
@@ -400,17 +362,6 @@ const PagePermissionGuardComponent = ({
     true // Use cache
   );
   
-  // Debug useCan results
-  console.log(`[PagePermissionGuard] useCan result for ${pageName}:${operation}`, {
-    instanceId,
-    can,
-    canIsLoading,
-    canError: !!canError,
-    userId: user?.id,
-    stableScope,
-    permission,
-    effectivePageId
-  });
   
   // Combine loading states - we're loading if either scope is resolving OR permission check is loading
   const isLoading = !resolvedScope || canIsLoading;
@@ -445,6 +396,7 @@ const PagePermissionGuardComponent = ({
     }
   }, [auditLog, hasChecked, isLoading, pageName, operation, user?.id, resolvedScope, can]);
 
+
   // Handle strict mode violations
   useEffect(() => {
     if (strictMode && hasChecked && !isLoading && !can) {
@@ -471,166 +423,30 @@ const PagePermissionGuardComponent = ({
   const scopeKey = resolvedScope ? `${resolvedScope.organisationId}-${resolvedScope.eventId}-${resolvedScope.appId}` : 'no-scope';
   const permissionKey = `${scopeKey}-${can}-${isLoading}-${!!checkError}-${hasChecked}`;
   
-  // Debug logging for state transitions
-  useEffect(() => {
-    console.log('[PagePermissionGuard] State transition:', {
-      instanceId,
-      isLoading,
-      hasChecked,
-      resolvedScope: !!resolvedScope,
-      checkError: !!checkError,
-      can,
-      shouldShowAccessDenied,
-      shouldShowContent,
-      permissionKey
-    });
-  }, [isLoading, hasChecked, resolvedScope, checkError, can, shouldShowAccessDenied, shouldShowContent, permissionKey, instanceId]);
-  
-  // CRITICAL DEBUG: Log every render decision with full context
-  const renderDecision = {
-    instanceId,
-    timestamp: new Date().toISOString(),
-    renderCount: renderCountRef.current,
-    // State values
-    isLoading,
-    hasValidScope,
-    hasValidUser,
-    hasChecked,
-    checkError: !!checkError,
-    can,
-    // Calculated values
-    shouldShowAccessDenied,
-    shouldShowContent,
-    // Render conditions
-    willShowLoading: isLoading || !hasValidScope || !hasValidUser || !hasChecked,
-    willShowError: checkError && !can,
-    willShowDenied: shouldShowAccessDenied,
-    willShowContent: shouldShowContent,
-    // Raw data for debugging
-    resolvedScope: resolvedScope ? {
-      organisationId: resolvedScope.organisationId,
-      eventId: resolvedScope.eventId,
-      appId: resolvedScope.appId
-    } : null,
-    user: user ? { id: user.id, email: user.email } : null
-  };
-  
-  console.log('[PagePermissionGuard] RENDER DECISION:', renderDecision);
   
-  // CRITICAL: If we have permission but shouldShowContent is false, this is the bug!
-  if (can && !shouldShowContent) {
-    console.error('[PagePermissionGuard] CRITICAL BUG DETECTED: Has permission but shouldShowContent is false!', {
-      ...renderDecision,
-      bug: 'PERMISSION_GRANTED_BUT_CONTENT_NOT_SHOWING'
-    });
-  }
-  
-  // CRITICAL: If shouldShowContent is true but we're not rendering content, this is the bug!
-  if (shouldShowContent && !(isLoading || !hasValidScope || !hasValidUser || !hasChecked) && !(checkError && !can) && !shouldShowAccessDenied) {
-    console.log('[PagePermissionGuard] SHOULD RENDER CONTENT - This is the correct path!', {
-      ...renderDecision,
-      status: 'CONTENT_SHOULD_BE_RENDERED'
-    });
-  }
 
   // Show loading state - if we're still loading or don't have valid state
   if (isLoading || !hasValidScope || !hasValidUser || !hasChecked) {
-    console.log('[PagePermissionGuard] RENDERING: LOADING STATE');
-    return (
-      <div key={`loading-${permissionKey}`} style={{ border: '3px solid orange', padding: '5px', backgroundColor: 'lightyellow' }}>
-        <div style={{ color: 'orange', fontWeight: 'bold' }}>🔄 LOADING STATE</div>
-        {loading}
-      </div>
-    );
+    return loading || <div>Checking permissions...</div>;
   }
 
   // Show error state - only if we have an error AND no permission
   if (checkError && !can) {
-    console.log('[PagePermissionGuard] RENDERING: ERROR STATE');
-    return (
-      <div key={`error-${permissionKey}`} style={{ border: '3px solid red', padding: '5px', backgroundColor: 'lightcoral' }}>
-        <div style={{ color: 'red', fontWeight: 'bold' }}>❌ ERROR STATE</div>
-        {fallback}
-      </div>
-    );
+    return fallback;
   }
 
   // Show access denied - if permission check is complete and user doesn't have permission
   if (shouldShowAccessDenied) {
-    console.log('[PagePermissionGuard] RENDERING: ACCESS DENIED STATE');
-    return (
-      <div key={`denied-${permissionKey}`} style={{ border: '3px solid red', padding: '5px', backgroundColor: 'lightcoral' }}>
-        <div style={{ color: 'red', fontWeight: 'bold' }}>🚫 ACCESS DENIED STATE</div>
-        {fallback}
-      </div>
-    );
+    return fallback;
   }
 
   // Show protected content - if permission check is complete and user has permission
   if (shouldShowContent) {
-    console.log('[PagePermissionGuard] RENDERING: CONTENT STATE - SHOWING CHILDREN');
-    console.log('[PagePermissionGuard] CONTENT RENDER SUCCESS - This should fix the Access Denied issue!');
-    
-    // FORCE RENDER: Create a very obvious visual indicator that cannot be missed
-    const forceRenderContent = (
-      <div 
-        key={`content-${permissionKey}`}
-        style={{ 
-          border: '5px solid red', 
-          padding: '10px', 
-          margin: '10px',
-          backgroundColor: 'yellow',
-          position: 'relative',
-          zIndex: 9999
-        }}
-      >
-        <div style={{ 
-          background: 'red', 
-          color: 'white',
-          padding: '10px', 
-          fontSize: '16px', 
-          fontWeight: 'bold',
-          marginBottom: '10px',
-          textAlign: 'center'
-        }}>
-          🚨 FORCE RENDER: PagePermissionGuard Content is ACTUALLY RENDERING! 🚨
-        </div>
-        <div style={{ 
-          background: 'lightgreen', 
-          padding: '5px', 
-          fontSize: '14px', 
-          marginBottom: '10px',
-          border: '2px solid green'
-        }}>
-          ✅ This proves the PagePermissionGuard is working correctly!
-        </div>
-        <div style={{ border: '2px solid blue', padding: '5px' }}>
-          <strong>Original Children:</strong>
-          {children}
-        </div>
-      </div>
-    );
-    
-    console.log('[PagePermissionGuard] RETURNING FORCE RENDER CONTENT');
-    return forceRenderContent;
+    return <>{children}</>;
   }
 
   // Fallback: This should never happen, but just in case
-  // If we get here, something went wrong with our state logic
-  console.error('[PagePermissionGuard] CRITICAL: UNEXPECTED STATE - FALLING BACK TO LOADING', {
-    instanceId,
-    isLoading,
-    hasValidScope,
-    hasValidUser,
-    hasChecked,
-    checkError: !!checkError,
-    can,
-    shouldShowAccessDenied,
-    shouldShowContent,
-    resolvedScope,
-    user: user ? { id: user.id, email: user.email } : null
-  });
-  return <div key={`fallback-${permissionKey}`}>{loading}</div>;
+  return fallback;
 }
 
 /**