Not logged in — token-dependent tests will fail.
Log in first, then return here.
Auth SDK
Verifies SDK is loaded, bearer token is present and valid, and cloudprototype.org accepts it. Tests both BetterAuth and custom session endpoints to compare role field behavior.
#
Test
Status
Detail
CORS
Verifies cloudprototype.org sends correct CORS headers so static sites on any origin can make authenticated requests. Checks both /api/auth/get-session and /api/session (custom).
#
Test
Status
Detail
Roles
Verifies role/permission data works via bearer token. No cookies — pure cross-origin SDK auth. Shows diagnostic dump of user ID, role, and field presence.
#
Test
Status
Detail
Storage
Verifies D1/R2/KV bindings are reachable. 200=success, 401/403=auth gate (expected), 5xx=server error, network error=CORS blocked. Check debug log for full response headers.
#
Test
Status
Detail
SDK Proxy
Verifies the learn-secrets-sdk proxy endpoint is reachable cross-origin and forwards requests correctly.
#
Test
Status
Detail
Music APIs
Tests Apple Music token generation and Spotify client credentials via the secrets proxy. All secrets are stored server-side — no keys in client code.
#
Test
Status
Detail
GitHub API
Tests GitHub API connectivity using the stored token from the secrets proxy. Checks rate limit and authenticated identity.