mrmd-server 0.2.7 → 0.2.9

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "mrmd-server",
-  "version": "0.2.7",
+  "version": "0.2.9",
   "description": "HTTP server for mrmd - run mrmd in any browser, access from anywhere",
   "type": "module",
   "main": "src/index.js",
@@ -46,6 +46,7 @@
     "multer": "^1.4.5-lts.1",
     "chokidar": "^3.6.0",
     "fzf": "^0.5.2",
+    "mrmd-electron": "^0.5.4",
     "mrmd-project": "^0.1.2",
     "mrmd-sync": "^0.3.3"
   }

package/static/index.html

@@ -65,28 +65,27 @@
   </div>
 
   <script>
-    // Validate token and load the full UI
+    // Validate token (or no-auth mode) and load the full UI
     async function init() {
       const params = new URLSearchParams(window.location.search);
-      const token = params.get('token');
-
-      if (!token) {
-        showError('No token provided. Add ?token=YOUR_TOKEN to the URL.');
-        return;
-      }
+      const token = params.get('token') || '';
 
       try {
-        // Validate token
-        const response = await fetch(`/auth/validate?token=${encodeURIComponent(token)}`);
+        // Ask the server — it returns { valid: true } when --no-auth is set
+        const url = token
+          ? `/auth/validate?token=${encodeURIComponent(token)}`
+          : `/auth/validate`;
+        const response = await fetch(url);
         const result = await response.json();
 
         if (!result.valid) {
-          showError('Invalid token. Check your access URL.');
+          showError(token
+            ? 'Invalid token. Check your access URL.'
+            : 'No token provided. Add ?token=YOUR_TOKEN to the URL.');
           return;
         }
 
-        // Token is valid - load the full UI
-        // We'll redirect to the main app or load it inline
+        // Auth passed — load the full UI
         loadMainApp();
 
       } catch (err) {