Changelog — w3swaps

2026-05-10 20:32:00 Template Added a tiny analytics beacon (track.js, async/defer) to public-facing templates (landing, demo, contact, guide, docs, legal, changelog, signup, login, forgot/reset password, signup_success). Beacon POSTs the visited path + cross-origin referrer to https://w3swaps.com/api/track so visitor stats roll up into the w3swaps admin Analytics tab. No PII -- visitor uniqueness uses a daily-rotating salted hash of IP+UA. Admin pages and superadmin pages intentionally not tracked.

2026-05-05 08:08:50 Template Template overhaul: removed all 'required field' indicators (stars, REQUIRED labels, red header fills, yellow row highlighting) per house style. Added stock_out_behaviour and auspost_from_postcode to the Cart Settings section with dropdowns and notes. Added a Cart & Checkout subsection to the User Guide explaining how the teal product columns and cart settings tie together, and noting that shipping options are configured in admin, not the spreadsheet. Fixed font_color default mismatch in the guide (was #1a1a1a, actual default is #333333). Updated business_info description to mention ABN as a use. Body Settings guide now lists catalog_layout, theme, and theme_mode. Removed every em dash from headings, descriptions, comments, and legends.

2026-05-04 01:05:10 Web App Market theme: reduced table-meta row padding from 6px to 3px top/bottom.

2026-05-04 00:22:20 Web App Market theme: fixed cart button and grid/table toggle not showing. The table-meta was absolutely positioned into the filter strip but was being covered by the sidebar (z-index stacking context issue). Changed to static positioning so it sits naturally above the product list.

2026-05-04 00:06:58 Web App Checkout: big red warning banner when Stripe is not connected -- tells visitors orders won't be charged and directs the store owner to the admin panel to connect Stripe. Banner only shows when neither stripe_connect_charges_enabled nor stripe_test_mode is set.

2026-05-04 00:02:53 Web App Cart visibility fix: cart_free tenants now show the cart UI even without Stripe Connect or test mode configured. Previously the cart was silently hidden for all non-demo cart_free tenants because the Stripe condition was never met.

2026-05-03 23:43:00 Web App Grid view: fixed 5 columns on desktop, 2 columns on mobile (<=600px). Replaced auto-fill minmax with explicit column counts.

2026-05-03 23:37:46 Web App Cart: Clear Cart is now a single click with no confirmation -- clears localStorage and reloads immediately.

2026-05-03 23:30:44 Web App Cart: Clear Cart no longer uses a native confirm() dialog (Chrome silently blocks location.reload() after confirm() consumes the user activation). Replaced with inline two-click confirmation -- first click changes button text to 'Are you sure?' in red, second click clears and reloads the page. Auto-resets after 3 seconds if not confirmed.

2026-05-03 23:18:28 Web App Cart: Clear Cart now reloads the page after confirming, so the empty state is immediately visible.

2026-05-03 23:08:35 Web App Cart button: moved from sidebar to the table-meta bar (next to grid/table toggle) as a proper styled button with item count badge. Removed sidebar cart link. Product page: cart nav button added to breadcrumb row; Add to cart changed from underline link to a solid primary-coloured button. Cart button also appears on product pages via breadcrumb row.

2026-05-03 22:49:04 Web App Grid view: fixed broken card layout caused by nested anchor tags. Product card changed from <a> to <div> with a stretched-link pattern -- the product name is now the anchor with a CSS ::after overlay covering the full card, so the whole card is still clickable. Cart link and attribute tags get z-index:1 to sit above the overlay. Fixes the image-beside-text two-card rendering bug on tenants with cart enabled.

2026-05-03 13:34:58 Web App Superadmin nav: consistent header links on Dashboard and Finance pages — Dashboard / Finance / Docs / Changelog / Logout on both. Current page highlighted as active. Docs and Changelog hidden on mobile.

2026-05-03 12:47:37 Web App Finance compliance + automation pass: (1) Expense categories -- new fixed dropdown on add-expense and recurring-expense forms (Hosting, Software, AI/API, Domains, Marketing, Professional, Banking, Other), shown as a column in both tables, included in expenses CSV; DO auto-pulled invoices tagged 'hosting' automatically. (2) GST threshold tracker -- new bar above stats showing rolling 12-month Stripe gross income vs A$75,000 threshold; green/amber/red traffic light at $0-60k, $60-75k, and $75k+ (must register within 21 days). (3) EOFY Pack one-click download -- new amber 'Download EOFY Pack' button next to FY selector; produces sheetdropper_eofy_FYxxxx.zip containing income.csv, expenses.csv (with categories), summary.html (printable P&L with ABN, FY dates, category totals, taxable profit), and README.txt with tax-time instructions. Hand the zip to your accountant or attach to myTax.

2026-05-01 14:41:39 Web App Finance automation: DigitalOcean invoices now auto-pull on page load once per calendar month (tracks last pull in finance_settings.json, no manual button needed). Recurring expenses system: define a template once (description, amount, frequency, start date) and entries auto-generate on every page load for any months not yet covered. Frequencies: monthly, quarterly, biannual, annual. Delete recurring template with optional bulk-delete of all its generated entries. DO manual pull button removed.

2026-05-01 14:26:13 Web App Anthropic API cost tracking: every AI import call now logs input tokens, output tokens, and calculated USD cost to data/api_costs.db. Pricing: claude-haiku-4-5-20251001 at $0.80/M input + $4.00/M output. Finance page shows Anthropic API section for selected FY with per-call log (timestamp, model, tokens, cost) and FY total in USD. Logging is silent -- never breaks the import flow.

2026-05-01 14:03:29 Web App Finance page: DigitalOcean and Cloudflare API integrations. Settings panel (collapsible) stores DO + CF tokens in data/finance_settings.json. Pull DigitalOcean button imports invoices for selected FY as expenses (de-duplicated by invoice UUID, tagged with DO badge). Cloudflare domains panel shows all registered domains with registered date, expiry date, days until renewal (colour-coded green/orange/red), and auto-renew status. CF domains sorted by days remaining.

2026-05-01 13:31:31 Web App Superadmin mobile pass: stats bar collapses to 3-col (2-col at 480px), info row stacks vertically, create form wraps to 2-col (1-col at 480px), action buttons wrap, header padding reduced, Docs/Changelog links hidden on mobile (Finance + Logout kept), pill hidden. Same mobile treatment applied to Finance page.

2026-05-01 09:05:03 Web App New Finance page at /superadmin/finance. Pulls live income data from Stripe balance_transactions API (gross, Stripe fees, net per charge). Manual expense log stored in data/expenses.json (add/delete, persists across deploys). Financial year selector (July-June, Australian). Summary stats: gross income, Stripe fees, net income, expenses, taxable profit. CSV export for both income and expenses. Finance link added to superadmin dashboard header.

2026-05-01 01:09:44 Desktop New installer built and deployed (catalog-manager-setup.exe). Includes updated Help screen: Cart Settings and Orders sections, cart/shipping columns in Spreadsheet Format, cart revenue in Analytics, Import & Backups renamed, AusPost and cart payment troubleshooting, cart tips, Cart & Checkout and Orders support topics.

2026-05-01 01:04:28 Web App Legal page: Privacy Policy updated (added end-customer order data bullet, Anthropic AI Import data sharing, order data deletion on account close; all dates to 1 May 2026). Terms of Service updated (billing section now shows all pricing tiers inc annual A$319/yr and cart add-on A$10/mo + A$110/yr; service description updated to mention cart; Cart & Checkout terms moved into new standalone section with merchant of record, Stripe Connect, refunds/disputes, customer data, taxes, prohibited use). New Cart & Checkout section added to sidebar nav. Signup form annual pricing corrected: A$290 -> A$319, A$400 -> A$429 (confirmed against Stripe live price IDs).

2026-05-01 00:52:53 Web App Docs page (/docs) full rewrite: Overview updated with Stripe/ZeptoMail stack, demo tenant notes; Admin Guide updated to tab-based layout, full product column table inc cart columns, all 8 desktop app screens, Cart & Checkout section (payment flow, status flow, AusPost, pickup codes); API Reference updated with analytics endpoint, full Orders API, Cart Config API, download-xlsx, support, updated config fields list; Developer tab updated with full file structure, new DB tables (orders/order_items/refunds/pending_order_data), complete route summary inc cart/orders/signup/webhook routes, Stripe webhook security note.

2026-05-01 00:45:36 Web App Signup page: replaced passive 'by continuing you agree' fine-print with an active checkbox requiring explicit agreement to Terms of Service and Privacy Policy (both open in new tab). Client-side validation highlights the checkbox if unchecked on submit. Server-side validation added to /create-checkout-session -- returns 400 if agree_terms != '1'.

2026-05-01 00:39:55 Template Template generator updates: cart column headers now teal (distinct from standard blue columns); Products tab legend updated to show teal = cart & checkout; User Guide PRODUCTS column intro mentions teal; WHAT THIS APP DOES section mentions cart & checkout add-on and teal columns; upload instruction updated 'Go to Upload' -> 'Go to Import'; custom column description updated 'after the blue columns' -> 'in the green section'.

2026-05-01 00:12:48 Desktop Desktop Help screen rewrite: added Cart Settings and Orders sections, updated TOC (15 entries), added cart/shipping columns to Spreadsheet Format table (stock_qty, gst_rate, weight_kg, dimensions), added cart revenue section to Analytics, renamed Restore & Backups to Import & Backups with updated copy, added AusPost and cart payment troubleshooting entries, added cart tips, added Cart & Checkout and Orders to support topic dropdown.

2026-05-01 00:12:48 Web App Guide page full rewrite: fixed 'catalogueue' typo throughout, updated column reference (added weight_kg, length_cm, width_cm, height_cm, stock_qty, gst_rate, meta_description with cart badge), rewrote admin panel section to reflect tab layout and all tabs (Import, Orders, Analytics, Settings, Cart Settings, Account), added Orders section (status flow, pickup codes, refunds, actions), updated desktop app section with all 8 current screens, expanded shopping cart section (GST, stock, AusPost with weights, pickup code flow), added Orders management sidebar link, added two new FAQ entries (AusPost setup, refunds).

2026-04-30 22:32:38 Web App Landing page: removed Coming Soon from Shopping Cart feature card, updated cart description to reflect live Stripe payments, AusPost rate quoting, and order management. Removed all emoji icons from feature cards, how-it-works steps, and industry proof strip.

2026-04-30 22:23:52 Desktop New installer built and deployed to sheetdropper.com/static/downloads/catalog-manager-setup.exe. Includes: Import screen (drop zones moved from Dashboard), Cart Settings as plain cards, shipping option column alignment, weight/dimension fields in CATALOG_FIELDS for AI Review, refund confirmation emails, mobile admin polish.

2026-04-30 21:46:10 Desktop Cart Settings screen: removed collapsible sections, replaced with plain cards. Cart Configuration and Shipping Options each get their own card. Save button sits as a plain row below the shipping card.

2026-04-30 21:46:10 Desktop Rearranged desktop app screens: moved Smart Import and Upload Template drop zones from Dashboard into the Restore screen; renamed Restore nav item and heading to Import. Dashboard now shows status, controls and quick links only. Import screen has drop zones at the top followed by server backups and local backup folder.

2026-04-30 21:33:24 Multiple Refund confirmation emails: added _send_refund_confirmation_email() helper that fires after Stripe confirms a refund. Sends customer an email with refunded items, quantities, amounts, and a note that payment will appear within 5-10 business days. Wired into both the web admin refund route and the desktop API refund route. Uses ZeptoMail via ZEPTO_API_KEY same as all other transactional emails.

2026-04-30 20:06:21 Web App Mobile CSS cleanup: removed redundant .ord-row.expanded > td:first-child and :last-child overrides (already covered by !important on the base rule); removed redundant grid-column:1/grid-row:1 on td:nth-child(1) (auto-placed there); fixed dead padding-left:4px on chevron cell by adding !important. Also fixed tab spacing (padding 10px 9px) to fit Orders badge, fixed .ord-table > tbody and .ord-table > thead selectors to not affect nested ord-items-table, fixed items table subtotal price misalignment by scoping max-width and nth-child rules to tbody only.

2026-04-30 19:42:14 Web App Admin orders: removed (priceUnit) from product name in order items table. Fixed mobile orders expanded detail -- root cause of values running together was .ord-table tbody selector matching nested ord-items-table tbody, changed to direct child selector .ord-table > tbody. Fixed .ord-table > thead to not hide ord-items-table headers. Added font-size:12px, max-width:140px on product column, centered qty values on mobile.

2026-04-30 18:32:08 Web App Admin orders expanded detail mobile fixes: all action buttons on one line (smaller font/padding/letter-spacing); customer+delivery address side-by-side (forced 1fr 1fr grid + email truncation); product names fixed (removed overflow:hidden from detail td that was collapsing width chain, changed to white-space:nowrap+ellipsis on fixed-layout table).

2026-04-30 18:14:48 Web App Admin orders mobile: col 3 changed from 1fr to auto so status/total shrinks to fit and col 2 (name) gets all remaining space; column-gap bumped to 16px for breathing room between order number and name columns.

2026-04-30 18:14:48 Web App Admin orders: fixed .ord-row-time showing on desktop. Moved display:none rule outside the 640px media block so it's globally hidden; media block only shows it on mobile.

2026-04-30 18:10:43 Web App Admin orders mobile: fixed unexpanded rows being tall/padded. Root cause: mobile media block at line ~1006 was defined before the desktop .ord-table td { padding:12px } rule at line ~1019, so the desktop rule was winning at equal specificity. Added !important to mobile td padding:0 override to force it.

2026-04-30 18:02:42 Web App Admin orders mobile: all order cards now always show with surface2 background and bordered card style (not just when expanded). Expanded state indicated by amber border colour only.

2026-04-30 17:59:42 Web App Admin orders mobile: date/time JS split into ord-ts-date and ord-ts-time spans; time hidden from date cell on mobile, shown instead in items cell via ord-row-time span (e.g. '17:30 · 3 items'). Grid back to 2-row auto/1fr/1fr/auto — col1: order#/date, col2: name/time+items, col3: status/total.

2026-04-30 17:56:11 Web App Admin orders mobile: reworked collapsed row to 3-row grid (auto 1fr 1fr auto). Order# spans all 3 rows centred in a narrow auto column. Center column: Name row1 / Date row2 / Items row3. Right column: Status row1 / Total row3. Chevron spans all rows.

2026-04-30 17:48:44 Web App Admin orders mobile: fixed amber borders on every cell (desktop expanded td border rules now overridden with !important); fixed items table overflow by adding width:100%/box-sizing on detail row td and max-width on ord-detail; product name column uses word-break instead of ellipsis; reduced row padding and gap; detail row amber accent changed to left border only.

2026-04-30 17:40:40 Web App Admin orders tab mobile: collapsed rows redesigned as 3-col x 2-row card (order+date / name+items / status+total with chevron); expanded detail gets overflow:hidden, tighter progress bar, email truncation, 2-col detail grid, fixed-width items table columns with product name truncated.

2026-04-30 17:22:15 Web App Admin cart shipping options: fixed grid back to 1fr 1fr 65px so all rows align consistently regardless of whether a value field is present; value input narrowed from 80px to 65px (fits 5 digits + decimal).

2026-04-30 17:16:13 Web App Admin cart tab shipping options: added Type/Display name/Value column headers above the option rows; cost/postcode input fixed to 80px wide; remove button tightened to 26px; grid changed from 1fr 1fr 1fr to 1fr 1fr auto so pickup/included/none rows (no value field) automatically expand type+name to fill full width.

2026-04-30 17:04:41 Web App Admin cart tab: select/dropdown elements now match the height of text inputs (both locked to 34px with box-sizing:border-box). Most noticeable in shipping options rows where the type dropdown was visibly shorter than the name input.

2026-04-30 16:50:35 Web App Admin account tab mobile fixes: password inputs constrained to their grid cell width (width:100% box-sizing:border-box) so they no longer overflow the card; embed section Copy Code button drops below snippet on mobile and snippet expands to full width.

2026-04-30 16:25:40 Web App Merged Backups tab into Import tab to reduce admin nav from 7 to 6 tabs. Restore Previous Data section now appears at the bottom of the Import tab. Backups tab button removed.

2026-04-30 14:12:42 Multiple Mobile layout fixes: cart item table wrapped in overflow-x:auto div so long product names scroll rather than breaking layout; checkout order summary panel moved above payment form on mobile via CSS order:-1 so users see total before paying; admin tab bar now horizontally scrollable on mobile instead of squishing 7 tabs; admin settings rows stack label above input at 700px; orders table wrapped in overflow-x:auto; order progress step labels shrink to 8px at 640px; converter mapping table gets overflow-x:auto. CSS v102.

2026-04-30 09:09:39 Web App Code quality fixes from review: moved _num() helper above the row loop in apply_human_mapping (was being redefined on every iteration); fixed products_to_xlsx writing falsy numeric values (stock_qty=0, gst_rate=0) as blank by replacing `val or ''` with explicit None check; fixed desktop API saved-mapping auto-promotion using stale saved sheet name instead of the resolved selected_sheet variable.

2026-04-30 09:05:34 Web App Fixed weight_kg/length_cm/width_cm/height_cm/stock_qty/gst_rate still appearing in Section 2 on saved-mapping uploads. Root cause: converter_saved.html had its own catalog_fields list with only the original 9 fields, so Section 1 never rendered dropdowns for the new fields and syncRemainingTable() never hid them in Section 2. Updated catalog_fields and _fieldLabels in converter_saved.html to match converter_review.html.

2026-04-30 09:02:36 Web App Fixed saved mapping flow not auto-mapping weight_kg/length_cm/width_cm/height_cm/stock_qty/gst_rate when column names exactly match field names. Both the web and desktop API saved-mapping paths now auto-promote any catalog field that's missing from the saved mapping but present as an exact-name column in the uploaded file, before building col_to_field.

2026-04-30 08:58:10 Web App Fixed AI converter not auto-mapping weight_kg, length_cm, width_cm, height_cm, stock_qty, gst_rate -- these fields were missing from the JSON response template in the AI prompt so Claude never returned mappings for them. Added all 6 to the column_mapping block in the prompt.

2026-04-30 08:52:57 Web App Fixed Smart Import (AI converter) not saving weight_kg, length_cm, width_cm, height_cm, stock_qty, gst_rate. These fields were missing from _CATALOG_FIELDS in convert/confirm route, not extracted in apply_human_mapping, and not shown in the mapping review UI. All four fixed: converter_review.html now shows all 6 shipping/inventory fields in Section 1; apply_human_mapping extracts them as numeric values; products_to_xlsx writes them as a teal-coloured column group; _CATALOG_FIELDS includes them so the confirm route reads them from the form.

2026-04-30 08:30:11 Web App Admin import tab: fixed converter review elements (mapping table, section summaries, AI note, dropdowns, sample values) rendering with light backgrounds and dark text on the dark admin theme. Added body.admin-page overrides in admin.html for converter-ai-note, converter-section-details summary, mapping-table headers/cells/selects, field-select dropdowns, converter-attrs, converter-action-note, sample-vals, and emergency-section background.

2026-04-29 22:20:34 Web App Guide page: rewrote Shopping Cart section to reflect live product (add to cart, checkout, shipping options, AusPost rates, pickup/click & collect, order emails, GST). Removed all asterisk placeholders and the 'not yet available' footnote. Updated FAQ cart entry to reflect live feature.

2026-04-29 22:02:40 Multiple Removed Reset to New button from order detail on both website and desktop. Desktop orders now update in-place after status changes -- progress bar, status dot in collapsed row, filter counts, Cancel/Refund button visibility all update without closing the expanded order or re-rendering the list.

2026-04-29 22:02:40 Web App Orders tab: progress line steps now update in-place without page reload. Clicking a step updates the dot, fill width, status badge in the collapsed row, filter data attributes, and utility button visibility. Order stays expanded. Uses JS ordUpdateInPlace() with IDs on row, status cell, progress bar, cancelled message, and utility button wrappers.

2026-04-29 21:47:20 Web App Added cart revenue and order stats to website admin analytics tab: Today/7d/30d/all-time revenue + order counts + avg order value (30d). Only shows for tenants with cart active. Also ensures init_cart_tables is called before analytics loads on the admin page.

2026-04-29 21:22:29 Multiple Bug fixes: progress line steps now individually clickable (click any step to jump to that status) on both desktop and website admin. Desktop order detail loading now shows actual error message instead of staying on Loading. Cart metrics section shows whenever orders table exists, not just when revenue is non-zero.

2026-04-29 20:54:27 Multiple Phase 4: cart revenue/order metrics on desktop Analytics screen (Today/7d/30d/all-time for both revenue and order count, plus avg order value last 30 days). Order status progress line on both desktop and web admin -- visual timeline replaces individual action buttons, click right 2/3 to advance, left 1/3 to step back, pickup-ready confirms before sending email, cancelled state shows all steps dimmed. Copy Address button added to order detail on both desktop and web admin. Added cart stats query to get_analytics() in database.py.

2026-04-29 18:50:51 Multiple Phase 3 cart port: added Orders screen to desktop app. Filter tabs (All/New/Processing/Shipped/Ready for Pickup/Done/Cancelled with counts), clickable order rows that expand inline, full detail panel with customer info, items table with refund indicators, totals, internal notes, and action buttons. Context-sensitive forward-progress buttons (Mark Processing/Shipped/Delivered/Picked Up/Ready for Pickup), Print (writes temp HTML file opened in browser, marks new as processing first), Refund panel with per-item qty inputs + Refund All, Reset to New, Delete. Added GET /api/orders/<num>/print-html server endpoint.

2026-04-29 18:40:55 Multiple Cart Settings fixes: api_cart_config now uses cart_is_active() (respects cart_free flag for demo/comped tenants). Live-checks Stripe Connect charges_enabled when DB flag is stale and updates it. Not-enabled card in desktop app now shows Enable Cart & Checkout button opening web admin #tab-cart instead of a mailto.

2026-04-29 18:31:26 Desktop Phase 2 cart port: added Cart Settings screen to desktop app. Stripe Connect status + connect/disconnect flow (opens browser), GST source/display selects, stock-out behaviour, AusPost postcode, and a dynamic shipping options builder (flat rate, free over, pickup, delivery included, no shipping, AusPost). Wired via 4 new IPC handlers and preload entries.

2026-04-29 18:21:46 Web App Added cart/orders API layer for desktop app: GET /api/orders (list with optional status filter), GET /api/orders/<number> (detail with refunds), POST status/refund/notes/pickup-ready/delete per order, POST /api/orders/mark-new-printed, GET+POST /api/cart-config (GST, shipping options, AusPost postcode), POST /api/cart/connect (generate Stripe Connect onboarding URL), POST /api/cart/disconnect. Also added /c/<slug>/cart/connect/done landing page and /api/cart/connect/refresh for AccountLink expiry.

2026-04-29 18:00:19 Web App Removed admin link from catalogue header.

2026-04-29 17:53:21 Web App Removed flash message after clicking Ready for Pickup -- pickup code is visible on the order itself.

2026-04-29 17:47:31 Web App Order confirmation page: click & collect orders show an extra line telling the customer they'll receive another email with their pickup code when the order is ready.

2026-04-29 17:41:15 Web App Customer order confirmation email: click & collect orders now show a green notice that the order is being packed and a pickup code will be sent when ready.

2026-04-29 17:34:44 Web App Business order email: always show shipping method. Flat rate shows name + price, AusPost shows name with note that it was quoted at checkout, pickup shows name only. Click & collect orders include the pickup code inline with customer details.

2026-04-29 17:24:53 Web App Pickup orders: generate pickup code at order placement so it appears on the print slip immediately. Ready for Pickup button reuses the existing code instead of regenerating. Customer is still only notified when tenant clicks Ready for Pickup.

2026-04-29 16:58:55 Web App Demo tenant cart fix: _cart_context() now allows stripe_test_mode tenants to show cart UI without a connected Stripe account.

2026-04-29 15:22:47 Web App Per-tenant Stripe test mode: added stripe_test_mode column to tenants table. When set, the tenant's cart uses test Stripe keys per-call (bypasses Connect, no transfer_data/application_fee). Checkout page shows test card notice (4242...). Refunds also use test key. Global server mode and all other tenants unaffected.

2026-04-28 23:49:40 Web App Orders detail polish: Total border shortened (skips Product column, aligns with subtotal text width); sset-input CSS rule added so notes textarea and refund qty inputs match admin theme instead of white browser default; notes textarea gets extra top padding.

2026-04-28 23:38:47 Web App Refunds: track shipping refunds via shipping_refunded column on refunds table. save_refund() accepts shipping_refunded flag. Refund panel replaces shipping checkbox with 'Shipping already refunded' message once shipping has been refunded on an order.

2026-04-28 23:30:29 Web App Partial refunds: qty column shows remaining qty (original struck through), line totals recalculated to remaining qty x price. Totals section adds a red Refunded deduction row and grand total shows net amount. Applied to both admin expand and print page.

2026-04-28 23:18:02 Web App Refunded items: fully refunded rows now show a red 'Refunded' label alongside the strikethrough in both admin and print views.

2026-04-28 23:13:19 Web App Refund panel: qty inputs default to 0; max adjusted for already-refunded qty; disabled when fully refunded. Added Refund all button (sets all inputs to max, checks shipping). Admin items table and print page show refunded badge on partial refunds and strikethrough + faded row on full refunds. Refund data aggregated per order on admin page load.

2026-04-28 23:05:19 Web App Orders tab: Refund button now scrolls the refund panel into view when opened, so it's visible without manual scrolling.

2026-04-28 22:46:34 Web App Orders tab: added Reset to New button in the right button group (between Refund and Delete). Visible for any order not already New or Pending. Reuses existing status endpoint.

2026-04-28 22:42:25 Web App Print pages: mark as processing fires on Print button click (not afterprint). API call happens in background immediately, then window.print() opens the dialog. No prompts, no manual buttons.

2026-04-28 22:38:41 Web App Print pages: replace afterprint auto-mark with manual 'Mark as Processing' button. afterprint fires on cancel too so auto-mark was unreliable. Button only appears for new orders, shows feedback states (Marking.../Done).

2026-04-28 22:29:25 Web App Print new orders page: carousel mode -- shows one order at a time with Prev/Next buttons and a counter. View all button stacks all orders for bulk printing. Print button prints whatever is currently visible.

2026-04-28 22:15:11 Web App Orders tab: replaced 'Clear all orders' with 'Print new orders' button (visible only when new orders exist). Opens order_print_new.html with all new orders one per page. afterprint event fires POST /admin/orders/mark-new-printed which marks all new orders as processing. Removed the clear-all route.

2026-04-28 22:06:04 Web App Orders list: Status heading padded 25px left to align with status text in cells (accounts for 8px dot + 5px margin-right).

2026-04-28 22:01:58 Web App Orders list: total column left-aligned; date cell shows DD Mon YYYY HH:MM in browser local time (JS converts stored UTC timestamp using data-ts attribute).

2026-04-28 21:51:38 Web App Orders tab expanded detail: hover titles on all buttons; Print moved next to workflow buttons, Cancel/Refund/Delete grouped right; edge-to-edge blue divider under buttons and between totals and internal notes; notes textarea gets left padding; print page fires afterprint event to auto-mark 'new' orders as 'processing' via new POST /admin/orders/<num>/mark-printed route.

2026-04-28 21:39:12 Web App Orders tab: moved action buttons to top of expanded order detail. Added Delete button (with confirmation) to delete an individual order via new POST route /admin/orders/<order_number>/delete.

2026-04-28 21:29:32 Web App Orders tab: detail panel gets full border in adm-border colour on all 4 sides (was bottom only).

2026-04-28 21:24:57 Web App Orders tab: amber border now only on the title row when expanded (all 4 sides). Removed amber from detail panel below.

2026-04-28 21:19:23 Web App Orders tab: fix amber borders bleeding into nested items table. Changed descendant selectors (space) to direct child selectors (>) so only the outer expanded tr's own td cells get the amber border, not the inner ord-items-table cells.

2026-04-28 20:18:21 Web App Orders table: switch to border-collapse:separate with border-spacing:0 so expanded row borders render correctly. Left padding moved directly into th/td base rules. 4-sided amber border on expanded rows now works without collapse interference.

2026-04-28 20:14:36 Web App Orders tab: switch expanded row border to inset box-shadow (immune to border-collapse:collapse). Full 4-sided amber box: header row gets inset top + left/right on first/last cell; detail row gets inset bottom + sides. Padding on first column uses !important to override specificity conflict.

2026-04-28 20:09:32 Web App Orders tab: complete 4-sided amber border on expanded order (header row top/left/right, detail row left/right/bottom via adjacent sibling selector). Added left padding to first column header and cells.

2026-04-28 20:06:06 Web App Orders tab: expanded order row gets amber top/left/right border and amber chevron to clearly distinguish the open header from collapsed rows. Border and amber chevron removed on collapse.

2026-04-28 19:56:12 Web App Fix confirm-order and _finalise_order: (1) Remove broken stripe.PaymentIntent.retrieve call from confirm-order -- SDK v15 StripeObject does not support .get(), causing 'Could not verify payment' error on every order. (2) Rewrite _finalise_order with BEGIN EXCLUSIVE transaction: single connection handles check-existing + insert + stock decrement + delete pending atomically, eliminating race condition between webhook and confirm-order. Emails sent after commit so the lock is not held during network calls.

2026-04-28 19:38:45 Web App confirm-order: remove stripe.PaymentIntent.retrieve call (SDK v15 incompatibility). Security is maintained by requiring the pi_id to exist in pending_order_data (only created by our server). Webhook remains the real payment confirmation.

2026-04-28 19:30:44 Web App Fix confirm-order race condition: check for existing order (created by webhook) before calling Stripe API. Also fix Stripe SDK v5 StripeObject access using .to_dict().

2026-04-28 19:24:31 Web App Critical fix: orders and emails now only created AFTER payment is confirmed, not at PaymentIntent creation. New flow: /cart/payment-intent stores order data in pending_order_data table and returns client_secret + payment_intent_id. After stripe.confirmCardPayment succeeds, client calls /cart/confirm-order which verifies PI status with Stripe, creates the order, sends emails. Stripe webhook (payment_intent.succeeded) serves as backup via shared _finalise_order helper. Eliminates premature emails and phantom orders.

2026-04-28 19:12:11 Web App Cart/checkout split revised: cart page is now just items + subtotal + Proceed link (no shipping). Checkout page has full address form, shipping options (AusPost rate fetched from postcode field), and payment. No more AusPost inline postcode input.

2026-04-28 19:03:12 Web App Split cart and checkout into separate pages. /cart now shows items, shipping selection and totals with a Proceed to checkout button. /checkout is a new page with customer details, delivery address (shown when shipping requires it), and Stripe payment. Selected shipping persists via localStorage between pages. cart.js gains cartShippingSave/Load/Clear helpers.

2026-04-28 18:49:43 Web App Orders tab: added 'Clear all orders' button next to the Orders heading. Shows only when orders exist, requires confirmation, deletes all orders via new POST route /admin/orders/clear.

2026-04-28 13:47:53 Web App Cart checkout: Pay button now requires street, suburb, and postcode when shipping type is not pickup/none/included. Address fields wire into updatePayBtn on input so the button enables as soon as all required fields are filled.

2026-04-28 10:14:55 Web App Order print page: added a bordered 'Ship to' block at the bottom showing customer name, street, suburb/state/postcode, and shipping method/cost. Appears only when an address is present.

2026-04-28 00:39:19 Web App Orders chevron cell: removed top/bottom padding and set line-height:1 so row height matches other rows.

2026-04-28 00:37:32 Web App Orders chevron size doubled from 16px to 32px.

2026-04-28 00:29:56 Web App Orders table: added chevron column on right side of each row. Chevron rotates 90deg (CSS transition) when row is expanded. Row has title='Click to expand' tooltip on hover. Detail row colspan updated from 6 to 7.

2026-04-28 00:24:05 Web App Monthly summaries table: all column headings and values center-aligned so headings sit directly above their values.

2026-04-28 00:20:09 Web App Monthly summaries table: date now shows as 'April 2026' instead of '2026-04' (Jinja2 dict lookup on month/year parts). Added View button (inline expand row with 4-stat grid: orders, revenue, GST, fees), Email button (resends summary email via new tenant_resend_summary POST route), Delete button. New route: POST /c/slug/admin/orders/resend-summary/<id>.

2026-04-28 00:14:17 Web App Fix monthly summary month selector: loop started at i=1 (last month) so the current month was never selectable. Changed to i=0 so the current month appears first. All test orders are from April 2026 so this was the reason nothing could be generated.

2026-04-28 00:04:40 Web App Orders tab split into two cards: Orders (order list) and Monthly Summaries (reporting). Monthly summary month selector replaced: native input[type=month] (rendered as dashes when empty) replaced with a sset-select styled dropdown populated by JS with the last 13 completed months by name (e.g. March 2026). Button wording changed to 'Generate & email to me'. Added explanation paragraph. GST column renamed to 'GST collected'.

2026-04-27 23:54:03 Web App Shipping options builder redesign. Columns reordered: Type first, Name second, extra field third. Dropdowns use sset-select / sset-text matching Site Settings style. Name field auto-fills with a sensible default when type changes (Standard Shipping, Free Shipping, Click & Collect, Delivery Included, No Shipping Required, AusPost) -- only auto-fills if name is empty or still a default, never overwrites custom names. Expanded explanation with bullet list describing each type. Add option and Save buttons on one line.

2026-04-27 23:44:24 Web App Admin Cart Settings: dropdowns now use sset-row / sset-label / sset-select / sset-hint pattern matching Site Settings style. Each setting has an explanatory hint below the label. Dropdown option wording improved: 'Exc GST -- my prices don't include tax', 'Show price with GST included', 'Show as Out of stock -- hides Add to cart button', 'Keep taking orders -- ignore stock level', etc.

2026-04-27 23:35:58 Web App Admin Cart tab: Disable card was gated behind 'not cart_free' so Ryan never saw it while testing with the free cart flag. Now shown whenever cart is active regardless of cart_free. cart_free users see a different note ('enabled free of charge'). Enable card still hidden for cart_free users since they don't need billing.

2026-04-27 23:31:10 Web App Admin Cart tab: split from one large card into four separate admin-section cards matching the Account tab style. Card 1: Cart & Checkout status (active/inactive/stripe status). Card 2: Connect Stripe (only shown when active but not connected). Card 3: Cart Settings -- GST, stock, AusPost postcode, shipping options (only shown when active). Card 4: Enable/Disable toggle.

2026-04-27 23:23:27 Web App Admin Cart tab: merged two separate green status blocks (cart active + Stripe connected) into one combined banner. When both are true it shows 'Active -- accepting payments' with the Disconnect button inline. Payments section only renders when Stripe is not yet connected, so there's no duplication. When cancelling (cart_period_end) the amber banner still shows and the Payments section still shows as normal.

2026-04-27 20:36:09 Web App Shipping option builder cleanup: removed dead hidden fields. Fields are now conditionally rendered in the DOM based on type -- flat_rate gets cost input, free_threshold gets threshold input, auspost gets postcode input, others get nothing. typeChange() replaces the field wrap innerHTML rather than show/hide. Form submit reads only the fields that exist. No hidden dead inputs.

2026-04-27 20:31:44 Web App Free threshold shipping reworked: option is either unlocked (free, selectable) or locked (greyed out, not selectable). No shipping cost field for orders under threshold -- if the threshold isn't met the option simply cannot be selected. Shows 'Spend $X more for free shipping' on the locked option. Cost field removed from admin for free_threshold type. CSS v101.

2026-04-27 20:26:12 Web App Free threshold shipping fixes. Cart now shows 'Spend $X more for free shipping' when the order is under the threshold, instead of always showing Free (which happened when cost field was left at $0). Admin cost field now shows placeholder 'Cost when under threshold' for free_threshold type so its purpose is clear. typeChange() also updates the placeholder dynamically when switching types.

2026-04-27 20:15:29 Web App AusPost UX overhaul. Single AusPost shipping option now automatically shows both Regular Post and Express Post rates in the cart (no need to create two separate options). Shipping endpoint returns two synthetic options per AusPost entry with IDs like auspost_21_AUS_PARCEL_REGULAR; payment intent recalculates the rate server-side using the customer's postcode for security. Admin shipping option builder: removed Regular/Express service dropdown, replaced with a dispatch postcode field that auto-syncs with the top Cart Settings postcode field (type in one, both update). Saving either field persists to the global auspost_from_postcode config.

2026-04-27 20:03:45 Web App Fix AusPost showing Free: effectiveCost() did not handle auspost type so it fell through to return 0. Added auspost case alongside flat_rate.

2026-04-27 20:00:06 Web App Fix AusPost rate calculation: fetchShipping was defined inside the DOMContentLoaded callback but called from renderShipping which is in the outer IIFE scope -- ReferenceError was silently caught, so the fetch never fired. Moved fetchShipping to the outer IIFE scope so all functions can access it.

2026-04-27 19:44:42 Web App AusPost UX fix: postcode input is now embedded directly inside the AusPost shipping option row rather than relying on the address section postcode field. Previously, if Click and Collect was auto-selected first the address fields were hidden making it impossible to enter a postcode for AusPost. Now the postcode field appears right in the AusPost option, typing a valid 4-digit postcode triggers rate calculation (600ms debounce), and the resolved rate replaces the pending row. CSS v100.

2026-04-27 19:36:42 Web App Phase 6 complete -- inventory display, refunds, AusPost. (1) Inventory: stock_qty=0 now shows 'Out of stock' in table/grid/product page when tenant setting is 'show_oos'; setting added to Cart Settings with 'continue taking orders' alternative. (2) Refunds: Refund button added to order detail for non-pending/non-cancelled orders; inline form lets tenant select item quantities + optional shipping refund; Stripe partial refund API called with reverse_transfer=True and refund_application_fee=True; refunds saved to new refunds DB table; order marked cancelled if fully refunded. (3) AusPost: new shipping option type 'auspost' with Regular/Express service selector; tenant sets dispatch postcode in Cart Settings; cart fetches rate from AusPost PAC API when customer enters their postcode (4-digit listener with 600ms debounce); AusPost options show 'Enter postcode to calculate' placeholder until postcode entered. AUSPOST_API_KEY added to server env. CSS v99.

2026-04-27 18:53:40 Web App Fix webhook and remaining order.items bugs. Webhook handler now parses raw JSON payload (json.loads) for all data access instead of using Stripe SDK StripeObject -- StripeObject does not expose .get() or iterate like a dict, causing AttributeError and KeyError on metadata access. Entire webhook rewritten to use plain dicts. Also fixed order.items in order_print.html (same dict.items() method collision as order_confirmation.html and admin.html).

2026-04-27 18:44:00 Web App Fix 3 bugs introduced with cart orders. (1) Admin orders tab 500 error: order.items in admin.html resolved to Python dict.items() method instead of the items key -- changed to order['items'] in both places (item count and items loop). (2) Webhook 500 error: Stripe SDK StripeObject does not expose .get() as an attribute, so metadata.get('source') failed -- now converts metadata StripeObject to a plain dict via dict comprehension before access. (3) Registered test mode Stripe webhook via API and added STRIPE_TEST_WEBHOOK_SECRET to server .env so test mode orders complete correctly.

2026-04-27 18:18:47 Web App Fix: order confirmation page crashed with 500 error. order_confirmation.html used order.items which Jinja2 resolved to Python's built-in dict.items() method instead of the items key. Changed to order['items'] to force dict key lookup.

2026-04-27 18:00:14 Web App Cart payment card redesigned using Stripe's official co-branding approach. Header changed to 'Payment details' with a lock icon -- no longer impersonating Stripe. Removed fake Stripe wordmark. Added official 'Powered by Stripe' link (links to stripe.com per Stripe brand guidelines) at bottom of payment card. Card itself is now plain white with subtle shadow and neutral border rather than blue-tinted. CSS v98.

2026-04-27 17:46:11 Web App Cart payment card: replaced broken Stripe logo SVG (was rendering as garbled text) with a styled text wordmark. CSS v97.

2026-04-27 17:39:05 Web App Cart payment section redesigned as a distinct Stripe-branded card. Card fields (number, expiry, CVC) are now wrapped in a visually separate panel with a light blue-grey background, Stripe blue border, and a header showing a lock icon ('Secure payment') and the Stripe wordmark -- so it reads as Stripe's domain rather than part of the site form. Stripe Elements inputs use a white inset style with subtle box shadow. CSS v96.

2026-04-27 17:33:54 Web App Cart sidebar fixes. Section headers (Order summary, Your details, Payment) were inheriting the theme's --text CSS variable which is light-coloured on dark themes -- added explicit #1a1a1a override scoped to .cart-summary-panel so they are always readable. Stripe card input split from a single combined element into three separate fields (Card number, Expiry, CVC) with labels and a two-column grid for expiry/cvc, so all inputs are clearly visible. Place order button now requires all three card fields to be complete before enabling. CSS v95.

2026-04-27 17:19:43 Web App Cart fixes: CSS was SCP'd to wrong path (/var/www/sheetdropper/ instead of /var/www/sheetdropper/static/) causing layout to render single-column -- redeployed to correct path. Added hidePostalCode:true to Stripe card element so Stripe's built-in ZIP field does not block checkout (delivery address postcode is already collected in the form). Cart summary panel, form inputs, and card element container now use explicit white backgrounds and dark text so they are readable on all themes including dark mode. CSS v94.

2026-04-27 08:05:27 Web App Cart Phase 5 -- Orders admin tab. New Orders tab in admin nav (only shown when cart active or orders exist; shows badge count of New orders). Orders list: table with order number, date, customer, item count, total, colour-coded status dot. Status filter buttons: All/New/Processing/Shipped/Ready for Pickup/Done/Cancelled. Click a row to expand inline detail: customer info, delivery address, items table with GST breakdown, internal notes field (auto-saves on blur), action buttons for status workflow. Status workflows: physical (New > Processing > Shipped > Delivered > cancel at any point) and click & collect (New > Processing > Ready for Pickup [generates 6-digit code + sends pickup email] > Picked Up). Resend Code button on ready_pickup orders. Reopen button on cancelled orders. Print button opens clean printable A4 page (order_print.html). Monthly summary section: month picker + Generate & email summary button saves to DB and emails business owner; previous summaries listed with delete button. Auto-generate: if today is 2nd+ of month and previous month has no summary but had orders, summary is auto-generated and emailed on first admin page load. New DB tables: order_summaries; new columns on orders: notes_internal, shipping_type, pickup_code (via ALTER TABLE upgrade). New app.py routes: order status update, internal notes, pickup-ready, print, generate-summary, delete-summary. Email helpers: _send_pickup_ready_email, _send_monthly_summary_email. New templates: order_print.html.

2026-04-27 07:46:14 Web App Cart Phase 3 -- full cart + checkout + orders. CSS fix: cart-link color changed from var(--primary) to var(--text) with underline so it is always readable regardless of theme. Cart page fully rebuilt: item table with qty +/- controls and remove buttons, shipping option selection (radio cards loaded from /c/slug/cart/shipping), GST breakdown in order summary, full checkout form (name, email, phone, address, notes), Stripe Elements card input, Place Order button. Backend: /c/slug/cart/shipping returns active shipping options as JSON; /c/slug/cart/payment-intent validates cart server-side, calculates totals with GST, creates Stripe PaymentIntent with 0.5% application fee to tenant's Connect account, saves pending order to DB, returns client_secret + order_number; tenant_cart_settings POST saves gst_source, gst_display config values and shipping options; Stripe webhook now handles payment_intent.succeeded to mark order complete, decrement stock, send emails; /c/slug/order/<order_num> shows order confirmation page. New DB tables: shipping_options and orders in tenant catalog.db (auto-created via init_cart_tables). New email helpers: _send_order_confirmation_email (customer), _send_order_business_email (merchant). Admin Cart tab: GST settings section (two dropdowns for price source and display), shipping options manager (add/edit/remove options with name, type, cost, free threshold) with Save cart settings button. CSS v93.

2026-04-26 21:48:49 Web App Cart Phase 2 -- catalogue UI. _cart_context() helper added: returns cart_enabled (requires both cart_is_active and stripe_connect_charges_enabled), gst_source, gst_display. All 4 catalogue routes (standalone, embed, product page, HTMX partial) now pass cart context. product_table.html: GST display macros added (converts price based on gst_source/gst_display settings), 'Add to cart' text link added under price in table and grid views, 'ex GST' label shown when displaying exc prices. product_page.html: same GST display + Add to cart button. catalog.html: cart count badge added to sidebar, Cart button added to mobile bottom bar, cart.js loaded conditionally when cart_enabled. new static/cart.js: localStorage cart management (cartAdd, cartLoad, cartSave, cartClear, updateBadges). cart.html stub: shows cart contents from localStorage with remove buttons. CSS: cart-link, cart-count-badge, sidebar-cart styles added (v92). GET /c/slug/cart route added.

2026-04-26 21:22:37 Web App Stripe Connect Express onboarding built. New routes: GET /c/slug/admin/cart/connect (creates Express account + generates Account Link, redirects to Stripe hosted onboarding), GET /c/slug/admin/cart/connect/return (checks charges_enabled after onboarding), GET /c/slug/admin/cart/connect/refresh (generates fresh link if expired), POST /c/slug/admin/cart/disconnect (removes account). Cart tab now shows: Connect button when no account, Finish setup warning when account exists but incomplete, Connected status with Disconnect button when charges_enabled. _stripe_connect_ready() helper checks Stripe API for account status. stripe_connect_id and stripe_connect_ready passed to admin template.

2026-04-26 21:06:08 Web App Stripe test mode support added. STRIPE_TEST_MODE env var (0/1) swaps all Stripe keys, price IDs, and webhook secret to test equivalents. Test prices created in Stripe test mode: base monthly/annual and cart monthly/annual. Admin panel shows a purple 'Test mode' banner when active so it's obvious no real payments will process. stripe_test_mode and stripe_publishable_key passed to admin template for use with Stripe.js in upcoming Connect and checkout work.

2026-04-26 20:35:07 Web App Admin: Cart tab moved after Account, green dot removed from tab title. Plan & Billing card updated to show cart add-on status (billed line, active until date, or 'no add-on' with link to Cart tab) covering active/cancelling/wind-down states. Superadmin preview mode: visiting /c/slug/admin?preview=paying while logged into superadmin injects mock subscription data so the billing card can be reviewed as if the tenant is on a paid plan.

2026-04-26 20:19:58 Web App Superadmin: Cart free toggle added to tenant action buttons. Clicking 'Cart' grants complimentary cart access (no billing), clicking 'Cart ✓' revokes it. cart_free column added to tenants DB. cart_is_active() checks cart_free first -- if set, cart is always active regardless of subscription. cart_free passed to admin template; Cart tab hides the enable/disable billing toggle when cart_free is active so tenant just sees the cart as on. Platform fee note updated to remove 'for high-traffic stores'.

2026-04-26 20:06:21 Web App Cart tab added to admin nav. Cart & Checkout section moved from Account tab to new dedicated Cart tab with a full info/features card when inactive and status card when active. Account tab billing card updated to show cart add-on status with Manage link. Billing alignment fixed: when enabling cart mid-cycle, Stripe subscription item is created with trial_end set to the first billing date >= 1 month away, preventing short months. A flat upfront charge ($10 or $110) is immediately invoiced via Stripe InvoiceItem to cover the gap period. Cart disable also redirects to Cart tab now.

2026-04-26 19:44:29 Web App Cart add-on Phase 1B -- billing infrastructure. Created Stripe product (prod_UPDZ8tWqONzoRs) with monthly (price_1TQP8nB5LhyOKZr8DhKlzUh7, $10/mo) and annual (price_1TQP8nB5LhyOKZr8yv0ga5Lm, $110/yr) prices. Added CART_PRICE_ID and CART_ANNUAL_PRICE_ID env vars and app constants. Added cart_period_end column to tenants DB. Added set_cart_enabled() and cart_is_active() helpers to tenant_manager. Added /c/slug/admin/cart/enable and /c/slug/admin/cart/disable POST routes -- enable adds Stripe subscription item, disable deletes item (with proration) and stores period_end so cart stays active until billing period ends. Added cart_active and cart_period_end to admin template context with lazy expiry check. Added Cart & Checkout section to admin Account tab (enable/disable UI, pricing, status). Updated create_checkout_session to accept include_cart form field and add cart price as second line item. Updated webhook to set cart_enabled on provisioning if cart was included at signup. Added cart add-on checkbox to signup form with live price calculation JS and CSS.

2026-04-26 19:27:01 Multiple Cart add-on Phase 1A -- schema and template groundwork. csv_parser.py: added gst_rate, stock_qty, weight_kg, length_cm, width_cm, height_cm to FIXED_COLUMNS with full validation (gst_rate 0-1 float, stock_qty non-negative int, dimensions positive float). database.py: added all 6 columns to products table fixed_col_defs and insert_cols. converter.py: added all 6 columns to _FIXED_COLUMNS_INFO so AI import is aware of them. tenant_manager.py: added cart_enabled, stripe_connect_account_id, cart_subscription_item_id columns to tenants table via ALTER TABLE. template_generator.py: added 6 new product columns (gst_rate through height_cm) as blue fixed columns between sort_order and attribute examples; added Cart Settings section to Config tab (gst_source, gst_display with dropdowns); added column explanations to User Guide. All changes are purely additive -- no existing catalogue functionality affected.

2026-04-26 15:49:29 Web App guide.html: standardised all descriptive uses of 'catalog' to 'catalogue' throughout. sort_order column description changed from 'Integer for manually...' to 'A number for manually...' for non-technical readers. Config key catalog_layout and app name Catalog Manager preserved as-is.

2026-04-26 14:58:11 Multiple Desktop app installer added to server at /static/downloads/catalog-manager-setup.exe. Welcome email updated: desktop app section now includes a download button, SmartScreen bypass instructions, and the API key labelled clearly. Admin account tab API key section updated: download button added above the key, SmartScreen warning note added below it.

2026-04-26 13:51:42 Multiple Support form added to desktop app Help screen. Topic dropdown (Upload issue, Settings, Analytics, Billing, Bug report, Other) and message textarea. Sends via new POST /api/support Flask endpoint which emails info@sheetdropper.com via ZeptoMail with tenant name, slug and reply-to set to tenant email. Help screen also updated: TOC links now have amber border only (not amber text/background), back-to-top link centered, removed from Quick Start card.

2026-04-26 13:24:39 Desktop Help screen complete rewrite. New table of contents with anchor links to 13 sections. Quick Start step-by-step. Full spreadsheet format documentation including core columns, product page columns, attribute filter columns, and the Config tab. Detailed Smart Import explanation. Upload Settings modal explained. AI Review screen guide. Configure & Preview broken down by every settings group (Header, Body, Theme, Footer). Analytics screen documentation. Restore + local backups. Dashboard controls. Images & Logos section with hosting tips. Tips & Tricks. Comprehensive troubleshooting (upload failed, images not showing, settings not applying, can't connect, preview vs live, AI mapping issues). Support section. CSS additions: help-toc grid, help-steps numbered list, help-section-sub headings, help-table for data tables, code/strong styling for inline elements.

2026-04-26 12:38:45 Multiple Analytics: sparkline, top search terms, and most viewed products now shown for all three source tabs (Combined, Standalone, Embed) in both the web admin and the desktop app. Previously sparkline and top products were combined-only. database.py updated to return per-source spark and top_products dicts.

2026-04-26 12:25:14 Multiple Analytics screen added to desktop app: page views and unique visitor stats (today/7d/30d/all time), 30-day sparkline, top search terms, most viewed products, with combined/standalone/embed source tabs. New GET /api/analytics Flask endpoint added to serve analytics JSON to the desktop app. Desktop app package.json branding fixed (appId and description updated from w3swaps to SheetDropper). icon.ico generated from SheetDropper logo PNG, icon path corrected in build config. Files array in build config corrected (removed non-existent root assets/ reference).

2026-04-21 07:43:09 Web App Fix: Stripe webhook handler used .get() on StripeObject which is not supported in Stripe SDK v15 -- changed to 'key' in obj checks with bracket access throughout. Also moved 'import requests as _requests' to module top-level (was a late import at line 2651 and a local import in the contact route), fixing test mock isolation.

2026-04-21 07:24:19 Web App Fix: AI Converter smart upload returning 403 Forbidden on web -- all JavaScript fetch() POST calls in admin.html now include csrf_token (checkConfig, sendFile/converter upload, deleteBackup, logo upload). These calls build FormData manually and didn't include the CSRF token that Flask's before_request check requires.

2026-04-20 19:42:38 Web App Security: fixed three vulnerabilities -- (1) X-Forwarded-For rate-limiter bypass: _client_ip() now uses the last XFF entry (nginx-appended, unspoof-able) instead of the first (attacker-controlled), closing brute-force bypass on all login endpoints; (2) hardcoded SECRET_KEY fallback removed -- app now raises RuntimeError at startup if SECRET_KEY env var is absent, preventing session-cookie forgery; (3) hardcoded SUPERADMIN_PASSWORD fallback 'superadmin' removed -- app now raises RuntimeError at startup if SUPERADMIN_PASSWORD env var is absent.

2026-04-20 19:19:43 Web App Self-host htmx 1.9.12 -- moved from unpkg CDN to local static/htmx.min.js, eliminating CDN dependency and supply chain risk.

2026-04-20 18:54:20 Web App Security hardening: CSRF protection added to all POST forms (custom HMAC-based before_request check); session cookies hardened (Secure, HttpOnly, SameSite=Lax); rate limiter fixed to use X-Forwarded-For behind Nginx proxy; security headers added (X-Frame-Options, X-Content-Type-Options, Referrer-Policy); SVG uploads blocked for logos; secure_filename applied to logo uploads; XLSX magic-byte validation added; CSS/color injection hardening in settings (color fields validated against hex regex, font fields stripped of dangerous chars); api/rollback NameError fixed (backup_id -> newest.id); Stripe webhook updated to use verified event object, empty secret now rejected; debug=True disabled in production; email HTML-escape applied to all user-supplied content in outbound emails; admin page Cache-Control: no-store added; converter temp files moved to app-local restricted directory with path-traversal check; .gitignore added to pricelist-app; stripe and requests added to requirements.txt

2026-04-19 22:55:09 Desktop Full visual overhaul of the Electron desktop app to match the web admin aesthetic. Phase 1: CSS design system -- sharpened border-radius (8-12px down to 4-5px), matched web admin card/button/modal shapes. Phase 2: Sidebar -- amber gradient top-rule, SheetDropper icon + two-tone wordmark (Sheet white, Dropper amber), mono uppercase nav buttons with amber left-border active state, cleaned-up activity log and disconnect button. Phase 3: panel-label hierarchy (amber mono tag above Barlow uppercase heading) added to all view headers and cards across Dashboard, Restore, AI Review, Configure, and Help screens. Status bar items centered. Live badge on restore cards sized to match Restore buttons. Phase 4: Setup screen rebuilt with brand header (icon + wordmark), amber top-rule, and panel-label layout. Modals cleaned up (no emojis, panel-label + uppercase Barlow title, mono option buttons, amber top-rule). Right-click on API key input now auto-pastes from clipboard.

2026-04-19 22:02:35 Web App Logo settings added to web admin Settings tab: Logo URL field, position dropdown (left/right/both), width and height number inputs. All four fields saved via tenant_save_settings route and applied to the catalog header.

2026-04-19 21:09:35 Multiple Logo size setting: new logo_width and logo_height config fields (pixels, leave blank for defaults). Applied as inline styles on the catalog header logo. Added to xlsx template Config sheet with descriptions. Desktop app configure panel gains Width/Height number inputs in the logo section, wired into getCurrentConfigFromForm, loadConfigIntoForm, and generatePreviewHTML.

2026-04-19 20:43:01 Web App Superadmin Phase 6: (1) Trial accounts flagged in tenant table with amber Trial badge and days remaining. (2) Site-wide analytics section: aggregate page views (today/week/month/all time), top catalogs by total views, top search terms across all tenants. (3) Server stats section: RAM usage with progress bar, disk usage with progress bar, load average (1-min and 5-min). Stats bar extended to 5 tiles with On Trial count. All read from /proc on the server.

2026-04-19 20:26:33 Web App Trial code signup flow: enter a promo code at signup to bypass Stripe entirely. Code fullofsheet1 = 30-day trial, fullofsheet3 = 90-day trial. Account provisioned immediately, trial_end date stored in DB. Admin shows amber trial banner with days remaining and Subscribe button. Trial expiry checked on admin and catalogue load -- auto-deactivates when expired. Signup form re-enabled and promo code field added.

2026-04-19 20:04:00 Web App Inactive tenant handling: catalogue shows a 'temporarily unavailable' page with an owner note instead of 404. Admin login and panel remain accessible. Admin panel shows a prominent expired banner (Resubscribe / Download data / Delete account) when subscription has lapsed. Resubscribe creates a new Stripe checkout session pre-filled with their email. New catalog_inactive.html template.

2026-04-19 19:05:47 Web App Account tab: subscription management card (plan, next renewal date, cancel button -- or cancellation scheduled banner if already cancelled). Cancellation flow: dedicated cancel page with data export email choice, cancellation reason checkboxes, comments field. On confirm: Stripe set to cancel_at_period_end, xlsx + analytics CSV emailed to chosen address, confirmation to account email, feedback to info@sheetdropper.com. Delete account section: type DELETE to confirm, cancels Stripe immediately and wipes all data.

2026-04-19 17:18:40 Web App Switched Stripe to live mode: updated STRIPE_SECRET_KEY, STRIPE_PUBLISHABLE_KEY, STRIPE_PRICE_ID, and STRIPE_WEBHOOK_SECRET on server to live values. New live webhook endpoint created at https://sheetdropper.com/stripe/webhook listening for checkout.session.completed, customer.subscription.deleted, customer.subscription.paused. SheetDropper is now taking real payments.

2026-04-19 15:51:51 Web App Signup page (/signup) full revamp: two-column layout (pitch left, form right) with shared nav and footer matching all other public pages. Left column has headline, what-you-get checklist, pricing block (A$29/mo), and trust signals. Form card updated to match design system (IBM Plex Mono labels, amber accent). Nav 'Get started' button replaced with 'Log in' since user is already on signup.

2026-04-19 15:51:51 Web App Superadmin delete route: metro-industrial tenant is now protected from deletion -- returns an error flash and redirects without deleting. It is the demo tenant powering /demo.

2026-04-18 22:41:46 Web App New /demo page: SheetDropper nav and footer wrapping an embedded iframe of the metro-industrial catalogue. All 'Live demo' links across landing, guide, and login now point to /demo instead of the standalone catalogue URL.

2026-04-18 22:04:14 Web App Consistent header/footer across landing, guide, and login pages: guide footer replaced with full landing footer (logo, links, copyright); login page gets same nav and footer, body restructured around <main> so login card stays centred.

2026-04-18 21:53:10 Web App Guide page: full nav replaced to exactly match landing page -- same logo, same links (How it works/Features/Guide/Live demo/Log in), same Get started button style, same mobile behaviour.

2026-04-18 21:49:53 Web App Guide page: nav logo updated to match landing page -- SVG square icon at 36px, plain 'SheetDropper' text, flex layout with gap.

2026-04-18 21:45:20 Web App Landing page: nav logo enlarged to 36px (fills 60px header without increasing height); footer dot replaced with SVG logo at 16px.

2026-04-18 21:42:57 Web App Landing page nav: replaced CSS dot with Sheetdroppersquare.svg logo (22px, served from static).

2026-04-18 21:11:20 Web App Admin mobile fixes: tabs font reduced + padding tightened at ≤640px so all 5 fit without horizontal scroll. Stat strip switches to 2×2 grid on mobile. CSS v78.

2026-04-18 21:02:53 Web App Admin tab sections reorganised: Quick Actions moved to top of Overview tab; Downloads moved to bottom of Settings tab; API Key moved to top of Account tab. CSS v77.

2026-04-18 19:09:43 Web App Admin header: replaced 'Catalog Admin' h1 + meta with amber mono slug. Added hero section below header (─── Admin label, big business name H1, last upload sub text). Overview tab (first): stat strip (Status/Products/Views/Last Upload) + analytics combined. Tabs: Overview|Import|Settings|Backups|Account. CSS v75.

2026-04-18 18:15:22 Web App Admin panel: horizontal tab navigation added (Import / Settings / Backups / Analytics / Account). Tab state persists in localStorage. Existing sections grouped into tabs, styles kept. CSS v74.

2026-04-18 18:00:00 Web App SheetDropper theme: filters now rendered inside sidebar below categories (template change in catalog.html). Right col hidden for sheetdropper. Products fill full width. Dark filter select styling added for sidebar context. CSS v89.

2026-04-18 17:45:00 Web App Theme picker: modal no longer does an immediate fetch/save. Selecting a theme + Apply/Keep now only updates the form fields in-page. Changes go live only when Upload Settings is clicked. Reset to theme defaults also only updates form fields, not DB directly.

2026-04-18 17:30:00 Web App Theme system overhaul: (1) THEME_PRESETS dict + /apply-theme-preset route. (2) Bulletin renamed Mosaic — gradient card accents, gradient table header. (3) SheetDropper: filter panel repositioned to left via CSS. (4) Market: filter strip nowrap+scrollable. (5) Theme picker: radio inputs replaced with click-based divs + modal. (6) Reset to theme defaults button. (7) Mosaic thumbnail updated. CSS v88.

2026-04-18 16:15:00 Web App Search input background: switched from var(--bg) to var(--surface) in color-mix so it follows table background colour, not page background. CSS v87.

2026-04-18 16:00:00 Web App Search input: background now uses color-mix(in srgb, var(--bg) 30%, white) — slightly brighter than surrounding bg, adapts to all themes. CSS v86.

2026-04-18 15:53:26 Web App Search input placeholder: set color to var(--text) at 75% opacity so placeholder text is clearly readable. CSS v85.

2026-04-15 22:25:03 Web App Analytics: unique visitor tracking added. visitor_hash computed server-side as SHA-256(IP|UA|date) truncated to 16 chars — no PII stored, no cookies. log_event now accepts ip param. get_analytics returns uv dict alongside views. Stat tiles redesigned: each tile is two-column (page views left, unique visitors right) divided by a thin border. 'Catalogue page views' heading removed. Fine print updated to clarify no personal information is stored and no visitor can be identified.

2026-04-15 21:54:46 Web App Analytics: server-side event logging added (pageviews, product views, searches). analytics_events table in each tenant SQLite DB. Bot UA filtering. Admin panel gets Traffic section with Combined/Standalone/Embedded tabs (default combined): today/7d/30d/all-time view counts, 30-day sparkline, top 10 searches, top 10 product views. Search terms logged at 3+ chars from the HTMX products partial.

2026-04-15 21:36:16 Web App Welcome email: replaced heading underlines with amber horizontal rules separating each section. Headings replaced with bold labels. Tighter spacing throughout.

2026-04-15 21:29:08 Web App Welcome email: URL and Password now on separate lines in admin panel section. Getting started steps rewritten — leads with AI import, ends with share/embed, avoids implying manual data entry upfront.

2026-04-15 21:22:18 Web App Superadmin create tenant: welcome email now sent automatically if an email address is entered. Flash message confirms email was sent. No email entered = existing behaviour (API key shown in flash).

2026-04-15 21:03:26 Web App Login improvements: (1) Change password section added to admin panel — requires current password, sends notification email to account email. (2) Business name shown on per-tenant login page instead of 'Catalog Admin'. (3) Stay logged in checkbox on both login pages — sets 30-day persistent session cookie. (4) Password changed notification email via ZeptoMail.

2026-04-15 20:44:18 Web App Superadmin: email field added to new tenant create form. Set Email action button added to each tenant row (prompt-based, can update or clear). set_tenant_email() added to tenant_manager. superadmin_set_email route added to app.py.

2026-04-15 20:37:29 Web App Password reset flow + general login: added /login page (email or slug + password), /forgot-password (email-based token reset, 1-hour expiry, single-use), /reset-password?token=... (new password form). Reset email sent via ZeptoMail. Forgot password link on per-tenant admin_login. Login link added to landing page nav. Superadmin dashboard gets Reset PW button per tenant (prompt-based, sets password directly). password_reset_tokens table added to tenants.db. tenant_manager: get_tenant_by_email, set_admin_password, create_reset_token, validate_reset_token, consume_reset_token.

2026-04-15 19:45:03 Web App Guide AI Import data/privacy section: removed misleading 'by default' phrasing. Clarified that API data is not used for training as a firm policy (not a default setting), and noted this is the key distinction from Claude.ai consumer usage.

2026-04-15 19:41:02 Web App Guide: added Data and privacy subsection to AI Import. Explains spreadsheet sample is sent to Anthropic API via SheetDropper's key, links to Anthropic privacy policy, notes API data is not used for training by default, and offers template method as an alternative for sensitive data.

2026-04-15 19:33:59 Web App Guide page: reworked copy across every section to shift from sales pitch to reference documentation. Removed promotional framing ("fastest way", "most businesses find…", "more powerful management experience", "for trade suppliers"). Replaced marketing card pairs with factual What/What-it-isn't framing. FAQ answers tightened to neutral reference style. Structure and sidebar unchanged.

2026-04-15 17:41:13 Web App Pricing: added annual tier at A$319/year (save 1 month) in Stripe test mode. Signup page now has monthly/annual billing toggle. Landing page has new pricing section showing both plans before the CTA.

2026-04-07 06:10:07 Web App Fix: theme save was silently resetting to 'classic' when bulletin or market was selected — validation allowlist still had old names 'clean' and 'bold' from before rename. Updated to 'bulletin' and 'market'.

2026-04-06 18:51:44 Web App Themes: replaced 'bold' theme with 'market' — fundamentally different layout. Sidebar becomes a sticky horizontal category tab bar, filters become an inline horizontal strip, grid view becomes full-width horizontal row cards (image left, content right). Page uses natural scroll instead of fixed viewport. Renamed in admin picker, template_generator, and changelog.

2026-04-06 18:04:52 Web App Themes: replaced 'clean' theme with 'bulletin' — classified-ad/newspaper aesthetic. Ruled lines instead of card boxes, double-rule borders, monospace prices in primary colour, typographic category nav. Updated admin picker, template_generator, and CSS theme thumb.

2026-04-06 13:44:55 Web App Admin: number input spinner arrows enlarged (12x18 SVG, wider triangles) and separated with 2px gap between up/down arrows.

2026-04-06 13:42:02 Web App Admin: number input spinner — replaced color-scheme and background-color approaches (unreliable in Chrome) with -webkit-appearance:none + SVG data URI drawing white up/down triangles on #060f1c background.

2026-04-06 13:34:55 Web App Admin: number input spinner — added background-color:var(--adm-bg) on webkit spin button pseudo-elements to match input box background. color-scheme:dark retained for white arrow rendering.

2026-04-06 13:29:58 Web App Admin: number input spinner styled with color-scheme:dark so browser renders spin button natively with dark bg and white arrows. Replaces failed filter:invert approach that caused always-visible spinner and wrong colours.

2026-04-06 13:23:39 Web App Admin: number input spinner arrows styled with filter:invert(1) — inverts system default (light bg, dark arrows) to dark bg and white arrows to match dark admin theme.

2026-04-06 13:20:01 Web App Admin: font size number input given explicit height:28px and box-sizing:border-box to match select and colour picker trigger heights in font rows.

2026-04-06 13:15:48 Web App Admin: colour picker trigger buttons resized from 40x32px to 28x28px square to match the natural height of font input boxes and keep label text vertically aligned.

2026-04-06 12:59:44 Web App Admin: Catalog Theme and Display Mode (light/normal/dark) moved out of Body section into their own Theme section between Body and Footer.

2026-04-06 12:52:44 Web App Light mode reworked to match dark mode approach: bg/surface/border now tinted from primary colour instead of mixing with white from bg-base/surface-base. Uses color-mix with near-white base (#f5f7f5/#ffffff) so light mode stays light but inherits brand palette. Primary still lightened 20% toward white.

2026-04-06 12:47:23 Web App Dark mode reworked: bg/surface/border/filter-bg/img-bg now tinted from user's primary colour instead of hardcoded slate-blue. Uses color-mix with #0d1117/#161b22 base so dark mode stays dark but matches the brand palette. Primary colour gently darkened by 10% in dark mode. Text/hover/tag vars unchanged.

2026-04-06 12:12:48 Desktop Ported custom colour picker to desktop app: all 9 native input[type=color] replaced with cp-wrap structure. Swatches (default) + spectrum (canvas + hue slider + HEX/RGB/HSL inputs) + eyedropper button. CSS added to style.css with desktop variable names (no --adm- prefix). Footer same-as-header logic updated to use cpSetValue. syncAllPickers called after applyConfigToForm so trigger buttons show correct colour on load.

2026-04-06 11:23:32 Web App Colour picker rebuilt as cohesive custom popup: two modes (swatches default, spectrum) toggled via bar button. Spectrum mode: canvas saturation/brightness box + hue slider, draggable cursors. Input modes cycle HEX/RGB/HSL. Eyedropper button (EyeDropper API, hidden if unsupported) in bar. No native Chrome picker. All dark admin styled.

2026-04-06 01:01:27 Web App Colour picker: restored native Chromium picker (eyedropper + spectrum) as ⊙ button in swatches popup bar. ⊙ opens native picker without closing the custom swatches popup, so swatches are still accessible after native picker closes. Reverted accidental removal of eyedropper/spectrum access.

2026-04-05 22:45:20 Web App Reworked colour picker: native input[type=color] retained (Chromium picker with saturation box, hue slider, RGB/HSL/Hex unchanged). Trigger button now opens a custom swatches popup first — 10×10 spectrum grid (100 Tailwind-palette colours, light→dark, warm→cool). Bottom bar shows current hex value and a ⊙ button that closes swatches and opens the native Chromium picker. Picking a swatch sets the colour and closes the popup.

2026-04-05 22:09:55 Web App Replaced all 9 native input[type=color] pickers in admin Settings with a custom colour picker component. Default tab is a 64-swatch palette (8×8 grid: greys, blues, teals, greens, yellows/ambers, reds/oranges, purples, warm neutrals). Additional tabs: HEX, RGB, HSL. Popup opens on click, closes on click-outside or Escape, flips up/left if near viewport edge. Selected swatch highlighted with amber ring. Footer 'same as header' checkbox and theme preset colour injection updated to use new cpSetValue API.

2026-04-05 21:44:12 Web App Light mode now shifts palette toward white using color-mix: --primary at 55% (paler header), --bg at 25% (near-white page), --surface forced to #ffffff, --border at 50%. Previously light and normal were identical; now light is a true lighter shift.

2026-04-05 21:39:55 Web App Added 'Normal' as a third Display Mode option (between Light and Dark). Normal passes configured colours through unchanged with no CSS overrides — sits in the middle of the Light/Normal/Dark toggle. Updated admin.html radio buttons, app.py validation, template_generator.py dropdown and notes, and style.css comment.

2026-04-05 20:29:03 Multiple Configure & Preview: 'Download as .xlsx' now shows a modal with three options — Config + live products, Config only, or (if a file is staged in the Upload Template drop zone) Config + staged file's products. All options merge unsaved form config over DB config so the downloaded file reflects current form state. New Flask POST /api/download-xlsx endpoint handles all three sources. Desktop: new api:download-xlsx IPC + preload wiring. Hover tooltips added to all dashboard, AI Review, Restore, and Configure buttons.

2026-04-05 16:14:03 Desktop Configure & Preview polish: preview header and footer now use a 3-column grid (sidebar-width / 1fr / filters-width) so heading and footer text always align with the product list column. Mobile view collapses left/right columns to 0. Added actual-size/scaled toggle button next to viewport size buttons. Fixed Configure & Preview heading alignment (AI Review CSS was overriding view-header-left globally — scoped to #view-ai-review). Section header/body spacing tightened. Chevron styled at 38px with overflow:hidden. flex-shrink:0 on headers to prevent compression.

2026-04-05 15:13:10 Desktop Configure screen: sections (Header Settings, Body Settings, Theme, Footer Settings, Upload/Save) are now collapsible with chevron toggle. Header Settings and Upload/Save default open; others default collapsed. Removed Revert to Last Saved button and Load from File option.

2026-04-05 15:03:53 Desktop Added contact_email field to desktop Configure screen (after Footer Subheading). Wired into load, save, live-change listener, and preview footer as a mailto: link with 1.2em left margin.

2026-04-05 14:56:42 Web App Added margin-left:1.2em to contact_email link in catalog footer to separate it from contact_info text.

2026-04-05 14:51:05 Web App Added contact_email config field. Renders as a tappable mailto: link in the catalog and product page footers. Admin footer section has a new Contact Email input with hint. Added to database defaults, app.py field lists, csv_parser CONFIG_KEYS, and template_generator guide + config rows.

2026-04-05 13:06:39 Web App Footer contact info: force color:inherit on both span and iOS auto-detected anchor tags to fix invisible phone number on dark footer backgrounds. Mobile footer stacks to single column — each element on its own line.

2026-04-05 12:47:43 Web App Footer redesign: 3-column grid matching the catalog layout (220px / 1fr / 190px). Date small (9px) pinned left under sidebar. Price note and contact info in center column — price note left, contact info pushed right with margin-left:auto. Right column (under filters) empty. Removed last-updated date from catalog header.

2026-04-05 12:23:01 Web App Removed last-updated date from catalog header. Footer updated date moved to leftmost position, font-size 10px, margin-right auto to pin it left while other footer content sits right.

2026-04-05 11:47:08 Multiple New catalog theme: Ledger — spreadsheet-style with hard cell borders on all sides, border-collapse on table, primary-color header row with white text, zero border-radius throughout. Grid view uses hard-bordered matrix layout. Added to admin theme picker with thumbnail, template_generator.py description and dropdown validation.

2026-04-03 17:36:32 Web App Removed Page Background and Table Background color pickers from admin. These were overriding the light/dark mode system via :root CSS variables. Light/dark mode now fully controls --bg and --surface. Primary color remains as accent. Removed page_bg_color and table_bg_color from server-side fields lists and base.html injection.

2026-04-03 17:08:02 Web App Fix: SheetDropper theme was rejected by save-layout validation allowlist and silently reset to classic. Added sheetdropper to allowed themes in app.py.

2026-04-03 16:59:41 Web App New catalog theme: SheetDropper — dark navy (#060f1c) background with amber (#f5a623) accents and green (#2eb87e) prices, matching the landing page aesthetic. Added to admin theme picker, style.css theme tokens, and template_generator.py spreadsheet validation list.

2026-04-03 16:36:18 Web App Contact page built: /contact — name, email, subject dropdown, message. POST sends to info@sheetdropper.com via ZeptoMail with reply-to set to sender. Dark industrial style matching guide page. Linked from admin footer.

2026-04-03 16:11:05 Web App Admin page footer added: SheetDropper (amber), Help, Legal links. Mono uppercase style matching admin dark theme.

2026-04-03 15:40:56 Web App Mobile admin header: company name and product/date info split onto separate lines. Company name 13px (up from 9px), product count + updated date stays 9px. Dot separator removed.

2026-04-03 15:23:09 Web App Mobile admin header redesign: 3-column CSS grid (SheetDropper left | Catalog Admin centered | View Catalog/Logout right) with business name/product info spanning full width below. Moved h1 out of .adm-brand in HTML. Required width:100%;max-width:none on h1 to override Chromium's phantom content-width max-width on grid items.

2026-04-03 14:35:22 Desktop Configure & Preview 'Upload to Live Site' button now checks if a spreadsheet is staged in the upload zone. If yes, shows the config choice modal (same as the green upload button) asking whether to use spreadsheet settings, form settings, or keep live settings. Products and settings upload together in one action. If no file staged, button works as before (settings only).

2026-04-03 14:26:41 Multiple Fixed: AI convert modal now correctly shows 'Use spreadsheet settings' button when file has Config tab. Backend was returning wrong field name (show_config instead of has_config), causing desktop to always hide the button. Fixed variable names: has_config=True when 'Config' in sheets_data. Desktop message 'Your file has no Config tab' now shows when !has_config. Removed em dash from button text.

2026-04-02 18:27:13 Desktop Desktop app visual redesign: full dark industrial theme matching web admin. Dark blue palette (#060f1c/#0d1f35), amber accents, IBM Plex Mono + Barlow Condensed fonts, grid overlay on body, amber left-border on active nav. Drop zones: AI zone gets amber dashed border + glow, upload zone gets teal accent. Status pills, restore cards, buttons, mapping tables all dark-themed. Config choice modal added: when uploading (template or AI import), user picks 'Use spreadsheet settings', 'Use Configure screen settings', or 'Products only — keep live settings'. Theme preset + light/dark mode selects added to Configure panel. theme/theme_mode wired into applyConfigToForm and getCurrentConfigFromForm.

2026-04-02 14:01:49 Web App Fix flash messages not showing after fetch-based uploads: switched to redirect:'manual' so fetch doesn't follow the server redirect and consume the flash message before the browser navigates. All unified upload and converter confirm fetches now navigate to the admin URL directly. Renamed 'Keep current site settings' to 'Keep existing live settings' to avoid confusion with settings currently shown on the page.

2026-04-02 13:35:58 Web App AI converter confirm: 'Upload to Live Site' button now shows the same settings choice modal as the regular upload. showConfigModal() refactored to accept hasConfig + callback so both flows share one modal. Converter never has a Config tab so spreadsheet option is always hidden. 'Use settings from this page' merges admin form fields into the converter confirm POST. Backend tenant_admin_convert_confirm now reads config_source and applies admin form settings if requested.

2026-04-02 13:23:17 Web App Upload settings modal reworked: now always shows when a file is staged (not just when file has Config tab). Three options: 'Use spreadsheet settings' (only shown if Config tab present), 'Use settings from this page' (applies admin form values), 'Keep current site settings' (preserves existing DB settings unchanged). Backend handles new config_source='current' by calling load_data with empty config dict, leaving DB settings intact.

2026-04-02 13:06:11 Web App Unified upload: both 'Upload & Go Live' (drop zone) and 'Upload Settings' (site settings) buttons now call the same doUnifiedUpload() function. It builds FormData from the settings form, appends the staged file if one is dropped, and POSTs to save-settings. Both domains (products + settings) always go live together. Removed submitWithFile() and the old form submit interceptor — upload zone button is now type=button with onclick.

2026-04-02 08:53:05 Web App Upload reworked to use fetch+FormData instead of DataTransfer file copying (which browsers block). File object stored in window._stagedUploadFile on drop. submitWithFile() builds FormData from settings form + file and POSTs to save-settings. Upload template button and settings upload button both use this path. Config choice modal also uses submitWithFile.

2026-04-02 08:42:59 Web App Upload Template form submit is now intercepted by JS and routed through the settings form — products and settings always go live together in one action. File is copied to sset-pending-file, config_source set to admin, settings form submitted. If file has a Config tab, choice modal appears instead.

2026-04-02 08:36:56 Web App Settings upload reworked: button label now updates immediately (sync) when file is dropped, not waiting for async check-config. Settings save now re-applies products.csv from disk with new settings when no new file is dropped and products exist — products and settings always stay in sync. New file with config tab still shows choice modal.

2026-04-02 08:22:29 Web App Upload Settings button can now include products: when a file is staged in the Upload Template drop zone, button becomes 'Upload Settings + Products' and submits both together via load_data. If the file has a Config tab, a modal asks whether to use spreadsheet settings or admin settings. Both drop zones now call check-config on file drop to detect config tabs. config_source field added to settings form.

2026-04-02 07:26:55 Web App Settings save now always creates a new backup (same as xlsx upload): apply config changes, call _backup_current from DB, mark as live. Previously it only updated the existing live snapshot in-place, which meant settings changes never produced a backup.

2026-04-02 07:20:36 Web App Upload config merge: load_data() now reads existing DB config before wiping and uses it as a fallback layer (defaults < existing DB < non-empty uploaded config). Uploads with no config tab (AI converter) now preserve current site settings instead of reverting to hardcoded defaults.

2026-04-01 23:03:29 Web App Backup system: deleting the Live backup card now clears the live catalog (drops products table, clears current CSV files, clears last_restored_backup_id). Added database.clear_products() which wipes only the products table leaving config intact. Settings save no longer creates a pre-backup — only updates the live snapshot in place.

2026-04-01 22:40:47 Web App Backup system: saving site settings now re-exports the live snapshot backup from the DB so the Live card always reflects the current config (business name, colours, fonts etc), not just the state at last upload.

2026-04-01 22:28:57 Web App Backup system: every upload now creates a live snapshot backup after loading and marks it as last_restored_backup_id, so the current live dataset always appears as a card in the Restore section. Rollback drops the live badge and restore button appears on old cards. API rollback now also sets last_restored_backup_id. _backup_current returns the backup ID and handles same-second timestamp collisions.

2026-04-01 22:06:24 Web App Admin Smart Import: upgraded to rotating conic-gradient border beam (amber light sweeps the border every 3s), section breathes with pulsing outer glow, drop zone pulses independently, scan-line overlay retained.

2026-04-01 22:01:34 Web App Admin Smart Import section: premium 'charged cell' styling — amber gradient background tint, centred amber top-bar accent, fine horizontal scan lines, AI-Powered label as amber badge, Smart Import heading with white-to-amber gradient text, drop zone pulses slowly with amber glow (4s cycle), stronger glow on hover/drag.

2026-04-01 21:56:28 Web App Admin restore cards: Restore and Delete buttons now equal fixed width (95px), centred text, space-between layout so Restore sits left and Delete sits right with a gap between them.

2026-04-01 21:35:54 Web App Admin restore: added Delete button to each backup card. Confirms before deleting, calls new POST /c/<slug>/admin/delete-backup route which removes the backup folder server-side. Card fades out and removes from DOM on success.

2026-04-01 21:29:35 Web App Admin site settings: Header, Body, Footer subsections are now collapsible. Clicking the orange group header expands/collapses the rows. Hint text (right-justified) shows 'Click to expand' or 'Click to collapse'. All three start collapsed by default.

2026-04-01 21:16:44 Web App Admin embed section: added Copy Code button (matches Copy Key button style — btn-secondary). Copies iframe snippet to clipboard, shows Copied! for 2 seconds then resets.

2026-04-01 20:52:27 Web App Admin mobile header: SheetDropper and Catalog Admin now stack vertically on mobile. Catalog Admin resized to ~11px Barlow Condensed to match SheetDropper width. Right separator removed on mobile. Links (View Catalog / Logout) switch to column layout with padding for breathing room from header edges. Meta info hidden on mobile.

2026-04-01 20:39:42 Web App Admin site settings: Default Layout toggle now uses mode-option/mode-toggle classes to match Light/Dark button style. Row is sset-color-row so label and buttons stay on one line. Hint text removed.

2026-04-01 17:56:01 Web App Admin site settings: Default Layout changed from select dropdown to two radio button toggle (Table/Grid) with selected one highlighted amber. Currency Symbol row stays inline on mobile (sset-inline-row). Standalone colour pickers (Header/Page BG/Table BG) now align with Font Colour pickers — font colour picker changed to margin-left:auto to be flush right.

2026-04-01 17:47:05 Web App Admin mobile site settings: fixed colour pickers going off-screen (sset-color-row label was width:100% in row flex mode — fixed with flex:1). Fixed currency symbol input rendering 100px tall (style.css sset-text-sm had flex:0 0 100px which set height in column flex — fixed with flex:none width:80px align-self:flex-start).

2026-04-01 17:39:18 Web App Admin mobile font rows: SIZE column fixed to 50px, FONT COLOUR column fixed to 68px, FONT column takes remaining width (flex:1). Sub-labels set to white-space:nowrap so FONT COLOUR stays on one line.

2026-04-01 17:33:34 Web App Admin mobile font rows: all three columns (FONT/SIZE/FONT COLOUR) now equal width (flex:1), same height (32px), no-wrap, and FONT column left-aligns with the row label above. Colour picker centred under its label. Font-col color picker now explicitly styled (was using browser default).

2026-04-01 17:23:12 Web App Admin mobile: reduced outer viewport gap (admin-content sides 24px→10px) and section inner padding (24px 26px→16px 14px) so sections use more screen width on mobile.

2026-04-01 17:07:22 Web App Admin mobile site settings: sset-row and sset-group-header restored to 12px left/right padding (down from 16px) so text has breathing room from box edges without being flush.

2026-04-01 17:07:22 Web App Admin site settings: sset-group-box padding zeroed out (style.css had padding:6px 16px 12px leaking in) — HEADER/BODY/FOOTER amber bars now span the full width of their group box instead of being inset 16px on each side.

2026-04-01 17:07:22 Web App Admin mobile site settings: sset-row and sset-group-header left/right padding removed so labels, inputs, and HEADER bars all align to the same left edge. sset-label now full-width (width:100%) on mobile. Business Info label text expanded to proper two-line description. Font size held at 11px.

2026-04-01 16:21:52 Web App Mobile header: logo now vertically centered with business name (was pinned to top). Logo height increased to 60px on mobile (was 48px). CSS v=74.

2026-04-01 16:11:41 Web App Mobile catalog: sticky shrinking header on scroll. After 50px of scroll the header collapses to a compact bar showing only the logo and company name (single line, ellipsis). Subheading, Admin link and date are hidden. Smooth CSS transitions on padding and font-size. Expands back to full size when scrolling to top. CSS v=73.

2026-04-01 16:00:47 Web App Mobile catalog header: header-inner now wraps on mobile so Admin link and upload date drop to their own full-width row below the heading and above the search bar. Prevents large heading fonts from pushing them off screen. CSS v=72.

2026-04-01 15:37:21 Web App Admin: quick actions and downloads sections now match — both use flex wrap with fit-content cards. Download button arrows spaced and slightly larger/bolder via adm-arr span.

2026-04-01 15:33:07 Web App Admin quick actions: removed symbols from button text, centered buttons in cards. Downloads: cards now shrink-wrap to content, buttons centred, text updated to 'Download Blank Template' and 'Download Current Data'.

2026-04-01 08:32:36 Web App Admin panel full visual redesign: dark navy (#060f1c) background with grid texture, amber (#f5a623) accents, Barlow Condensed display headings, IBM Plex Mono for labels/data/code. Sticky header with amber top border. All sections styled as dark cards with amber section identifiers. Emergency/download/restore cards have distinct accent colours. Dark form inputs with amber focus rings. Matches landing page aesthetic. Login page (admin_login.html) redesigned to match.

2026-04-01 07:11:54 Web App Catalog: layout toggle (table/grid) buttons moved to right side of product count row. Removed border line between search and Categories in sidebar. Dark mode filter dropdown: explicit background (#1e293b) and text (#e2e8f0) set on select and option elements so dropdown is readable. CSS v=71.

2026-03-31 22:25:07 Web App Catalog layout: moved search bar and grid/table toggle buttons to top of sidebar above Categories. On mobile (≤700px) sidebar is hidden so a duplicate mobile-only search bar appears in main-content and syncs to the primary HTMX input. CSS v=70.

2026-03-31 22:14:34 Web App Theme background consistency: Clean theme main-content now uses #f8f9ff to match sidebar/right-col (no more gray gap behind search bar). Bold theme main-content uses var(--surface) to unify search area with table rows. Clean+Dark main-content uses var(--bg) to stay consistent with its dark sidebar/right-col. CSS v=69.

2026-03-31 22:05:57 Web App Catalog: hidden scrollbars on all catalog pages (.catalog-page) — scroll still works, bars just not visible. Clean+Dark mode fix: sidebar and right-col now use var(--surface)/var(--border) instead of hardcoded light-blue colours. CSS v=68.

2026-03-31 21:59:19 Web App Theme CSS overhaul: all 4 themes now visually distinct. Clean — light table header with uppercase labels (overrode thead background, not just th). Bold — dark primary-color sidebar with white text, dense layout, uppercase heavy type. Minimal — site header uses var(--bg) with !important to override inline style, thead background cleared to var(--surface) so table header renders light with dark uppercase labels, transparent sidebar. Dark mode confirmed working. CSS bumped to v=67.

2026-03-31 21:06:45 Web App Theme picker: fixed radio button visibility (added appearance:none + !important on width/height). Added ?v=62 to style.css URL in base.html to force browser cache bust. Theme preset colors now auto-fill the Header Colour picker on theme selection. Thumbnails updated with distinct colors: Classic=navy, Clean=sky-blue, Bold=deep-red, Minimal=stark black.

2026-03-31 21:06:45 Web App Catalog theme presets: 4 themes (Classic/Clean/Bold/Minimal) + Light/Dark mode toggle. theme and theme_mode config fields added to database defaults, save-settings route, template_generator config rows (with xlsx dropdown validation), and base.html body attributes. CSS updated with new themeable tokens (--card-radius, --grid-gap, --row-hover, --tag-bg, --tag-color, --table-row-border, --cat-hover-bg, --cat-active-bg, --filter-bg, --img-bg) plus full theme and dark mode CSS blocks. Admin site settings form gets visual theme picker cards and a Light/Dark toggle.

2026-03-31 20:27:57 Web App Preview drop zone: column chip source name colour changed from --text-faint to --text-dim for readability.

2026-03-31 20:10:29 Web App Preview badge text changed from 'Live preview' to 'Drop your .xlsx and see it live'.

2026-03-31 20:08:03 Web App Preview drop zone: show 6 products instead of 5 (better for 3x2 grid). Drop hint text now amber always, not just on hover.

2026-03-31 20:03:38 Web App Landing page live preview: hero-demo becomes a drop zone (dashed border, drop hint). Drop an .xlsx to replace the mock with your own products — AI maps columns silently, shows detection strip, table/grid toggle, first 5 products, and Get started CTA. Rate limited to 3 requests per 15 min per IP. New route: POST /preview/analyse. Added /legal to footer, removed /docs.

2026-03-31 19:43:55 Web App Legal page: data retention changed to immediate deletion on cancellation (was 30 days). Added Australian Consumer Law carve-out to limitation of liability clause.

2026-03-30 14:14:28 Web App Added /legal page: Privacy Policy, Terms of Service, Acceptable Use Policy, and Fair Use. Styled to match landing/guide aesthetic. Route added to app.py.

2026-03-29 22:02:40 Web App Guide page: removed all em dashes, replaced with colons, commas, or semicolons as appropriate.

2026-03-29 21:54:22 Web App Guide page full visual redesign: matches landing page aesthetic — dark navy, amber accents, Barlow Condensed headings, IBM Plex Mono labels, noise texture, grid background, sticky frosted nav and sidebar with scroll-based active highlighting. Content updated: All Categories → All Products, contact email → info@sheetdropper.com, all Get started links → /signup.

2026-03-29 21:45:45 Web App Landing page: removed all 'free' references. Nav, hero, and CTA buttons now say 'Get started' and link to /signup. Removed 'No credit card required' from CTA note.

2026-03-29 21:30:14 Web App Superadmin dashboard full visual redesign: matches landing page aesthetic — dark navy (#060f1c), amber accents, Barlow Condensed headings, IBM Plex Mono labels/code, noise texture overlay, grid background. Stats bar with coloured top borders. Dense data table with monospaced data cells, amber slug badges, precise action buttons. All functionality preserved.

2026-03-29 21:07:08 Web App Superadmin dashboard redesign: stats bar (total tenants, active, MRR, suspended), collapsible create form, full-width table layout for 1920px. New columns: email, billing status (Paying/Manual/Past Due/Canceled/Paused pulled live from Stripe API), next billing date, separate active/suspended status. Billing and active status are independent — billing is informational, active is the manual override. Route now fetches Stripe subscription data per tenant on load.

2026-03-29 20:37:02 Web App Superadmin create tenant now calls _seed_new_tenant instead of init_db — new tenants created via superadmin panel now get a sample product and correct business name, matching the Stripe signup flow.

2026-03-29 20:08:17 Web App last_updated timestamp format changed from '2026-03-29T09:19:48Z' to '2026-03-29 09:19' — removed T separator, Z suffix, and seconds.

2026-03-29 20:00:03 Web App Security fixes: (1) Path traversal in tenant_admin_rollback — backup_id now validated against \d{8}T\d{6} pattern before path construction. (2) XSS in product page — long_description now HTML-escaped before newlines are converted to <br>. (3) api_rollback (desktop app) now calls _backup_current before overwriting live data, matching the web admin rollback behaviour. (4) superadmin_delete_tenant now cleans up uploads/ and data/ directories on disk after removing the DB row. (5) src_count in converter confirm route wrapped in try/except to prevent 500 on invalid input. Added top-level import re; removed duplicate import re as _re from Stripe section.

2026-03-29 19:33:33 Web App Backup system hardening for new tenants: _backup_current now always exports from DB when db_path is provided (captures admin panel config changes, not just on-disk CSV state). Save-settings and all upload routes now pass db_path. export_backup_csvs handles missing products table gracefully. Backup/restore validation ignores 'No valid product rows' error so config-only backups are restorable. New tenant provisioning seeds a sample product so catalog, backups, and restore all work from day one. Code cleanup: imports moved to module level, docstrings updated.

2026-03-29 19:01:02 Web App Stripe + onboarding: signup page (/signup), Stripe checkout session, webhook handler for auto-provisioning tenants on payment (checkout.session.completed), tenant suspension on subscription cancellation. ZeptoMail welcome email sent on provisioning with catalog URL, admin URL, password, API key, guide link. Tenant DB initialised on creation. Bug fix: upload without Config tab now preserves existing DB settings instead of resetting to defaults. Bug fix: empty-catalog page had broken url_for('admin') — fixed to url_for('tenant_admin').

2026-03-29 03:46:50 Web App Redesigned landing page (sheetdropper.com homepage): dark navy/amber industrial aesthetic, Barlow Condensed display type, IBM Plex Mono labels, scrolling proof bar, CSS spreadsheet-to-catalogue demo with animated AI progress, 3-step how-it-works, 6-feature grid, stats row, 8-industry tiles, CTA section.

2026-03-29 02:47:40 Web App Rewrote /docs page with current accurate information — SheetDropper branding, correct server paths, current route list, API reference, backup system, security notes, deploy workflow. Removed all stale w3swaps references. Page remains behind superadmin auth.

2026-03-29 02:35:07 Web App Security hardening: replaced placeholder SECRET_KEY and default superadmin password with strong generated values in server .env. Added 10 MB file size limit to /admin/upload (converter already had it). Added in-memory rate limiting to tenant admin and superadmin login routes (10 failed attempts per IP per 5 minutes → 429). Added automatic cleanup of temp converter files older than 2 hours.

2026-03-29 00:05:48 Web App Code cleanup: removed ?v= cache-busting from all CSS links (base.html, admin.html, superadmin_dashboard.html) — Cloudflare dev mode used instead. Removed dead confirm-saved converter route (never called — converter_saved.html already posts to the main confirm route). Removed dead cfg_overrides block from converter confirm route (quick-config fields no longer exist in partials). Fixed base.html and superadmin_dashboard.html which were still on stale CSS version reference.

2026-03-28 22:48:55 Multiple Drop zone mutual exclusion: dropping a file into either drop zone (AI Smart Import or Upload Template) now clears the other. Web admin: AI zone clears any pending upload file; upload zone clears the AI converter result. Desktop app: AI zone resets upload zone and clears aiReviewData/nav button; upload zone resets AI zone state.

2026-03-28 22:41:26 Web App Admin Site Settings: 'Header Background Colour' renamed 'Header Colour'. Save button replaced with two-column action area: 'Upload Settings' (saves to DB only) and 'Download xlsx' (downloads filled template with form settings + live catalog data). Download action merges form config over DB config so unsaved tweaks appear in the file. New 'download_with_file' action: if a file is selected in the Upload zone but not yet submitted, clicking Download xlsx shows a modal asking whether to use the pending file's products or the live site data. Flask route updated to handle action=upload/download/download_with_file. CSS v=75.

2026-03-28 22:15:35 Web App Admin: Site Settings and Restore Previous Data headings centered in their sections. Site Settings moved to its own box with Header/Body/Footer sub-boxes. Row dividing lines removed from Site Settings. 'Footer Background Colour' renamed 'Footer Colour'. CSS v=74.

2026-03-28 21:58:18 Web App Admin: Display Settings section replaced with a full Site Settings form covering all config fields (Header, Body, Footer sections) — business name, tagline, all colours, fonts, sizes, currency, layout, and footer text. The upload form's temporary quick-config section removed (it's redundant now). The per-converter Site Settings quick-config sections removed from both converter partials. New /c/<slug>/admin/save-settings route saves all fields via database.set_config_values(). Footer Background Colour has a 'Same as header' checkbox. CSS v=74.

2026-03-28 10:20:55 Multiple Desktop: added 'Download Current Data' button on dashboard — downloads live products + config as a filled SheetDropper xlsx via new /api/download-filled route. Desktop: uploading via the Upload Template drop zone now also pushes Configure screen settings live at the same time. AI Review download already included config via cfg_overrides. Flask: added GET /api/download-filled.

2026-03-28 10:12:22 Multiple Desktop: Configure screen 'Download as .xlsx' button now downloads the live config as a filled SheetDropper template xlsx (via new /api/download-config route) instead of a CSV. Desktop: 'Save to Live Site' renamed 'Upload to Live Site' to match AI screen. Desktop: AI Review screen Site Settings section replaced with a simple link to the Configure & Preview screen — AI upload now always includes current Configure screen settings. Flask: added GET /api/download-config and fill_config_tab() in template_generator.py.

2026-03-28 09:41:06 Web App Converter: '(click to expand)' hint moved to sit inline just after the section title, not pushed to the far right. CSS v=73.

2026-03-28 09:37:01 Web App Converter section headers: '(click to expand)' hint appears on the right side of collapsed section bars, disappears when open. CSS v=72.

2026-03-28 09:28:45 Web App Converter: rewrote Remaining Columns section note to clearly explain what Attribute Filter and Ignore do on the live site.

2026-03-28 05:00:31 Web App Converter: renamed 'Sample Values' column header to 'Example Values' in both converter partials.

2026-03-28 04:57:43 Web App Sample values column: text now wraps instead of overflowing on mobile (was incorrectly hidden — reverted). CSS v=71.

2026-03-28 04:54:24 Web App Converter mapping tables: both Catalog Fields and Remaining Columns now use table-layout:fixed with matching column widths (26%/38%/rest), and all selects share the same styling — no more mismatched dropdown widths. Sample Values column hidden on mobile (≤700px) to prevent horizontal overflow. CSS v=70.

2026-03-28 04:40:59 Web App Removed remaining em dashes: column labels in converter now use 'Col S: Notes' format instead of 'Col S — Notes' (app.py, 4 occurrences); fixed section notes in converter_review.html and converter_saved.html.

2026-03-28 04:25:21 Web App Converter section headers: darker grey background (#dde3ef), arrow moved back to left. CSS v=69.

2026-03-28 04:20:39 Web App Converter collapsible sections: summary bars now have a light background, hover state, and a larger coloured chevron on the right — much more obvious that sections can be collapsed. CSS v=68.

2026-03-28 04:09:15 Web App Admin polish: removed all em dashes (replaced with colons, commas, or middots); fixed Smart Import section blurb so it no longer implies the mapping is already saved before it's been confirmed; clicking the drop zone no longer opens the file picker (only the 'click to browse' link does, drag-and-drop unchanged); AI Analysis notes box now shows a labelled badge so it's clearly AI output; rewrote Catalog Fields and Remaining Columns section notes in both converter partials to better explain what each column/dropdown does. CSS v=67.

2026-03-27 15:52:28 Web App converter.py: fixed two bugs when re-feeding a SheetDropper template back into the AI converter. (1) The legend row ('★ Red = required...') was included in AI sample data, confusing column mapping — now skipped. (2) Legend text still said 'Red = required' — changed to 'Red = core columns' to match template_generator.py.

2026-03-27 15:46:18 Desktop AI Review nav button: a persistent 'AI Review' nav item now appears in the sidebar as soon as a file has been analysed, so you can navigate away and come back without re-importing. Removed the back button from the AI Review screen — use the sidebar instead.

2026-03-27 14:57:01 Multiple Removed all mandatory/required field language: desktop index.html note, CSS dead rules (.required-star, .req-star), template_generator.py (Products legend, column guide labels, header comments, User Guide text, Config legend), docs.html. Colours unchanged — red/yellow kept but no longer labelled required. CSS v=66.

2026-03-27 14:32:54 Multiple Removed all mandatory/required field indicators from the AI converter mapping UI — web (converter_review.html, converter_saved.html) and desktop app. Removed req-star (✱), recommended-field CSS class, and submit-time warnings. Also fixed: deploy /api/convert/start and /api/convert/confirm routes to sheetdropper.com (were never deployed); fixed apiPostForm silent crash when server returns non-JSON (wraps in try/catch now).

2026-03-26 22:37:08 Multiple Desktop app redesign: replaced Upload & Backups view with two dashboard drop zones (Smart Import AI and Upload Template). Added Restore view with server-side backup cards (3-slot, with Live badge and per-backup Restore buttons). Added new server API routes: GET /api/backups (all backups), POST /api/convert/start (AI analysis), POST /api/convert/confirm (apply mapping — upload or download). Updated POST /api/rollback to accept optional backup_id in request body. Added converter IPC handlers to desktop main.js and preload.js. New AI Review view with catalog field mapping table, remaining columns table, and optional Site Settings section.

2026-03-26 22:02:05 Web App Fix: restoring the oldest backup (slot 3) caused a 500 error. _backup_current() would prune to 3 slots, deleting the folder being restored before shutil.copy2 could read it. Fix: all backup files are now read into memory before _backup_current runs, then written from memory — folder existence no longer matters.

2026-03-26 21:42:48 Web App Restore cards: restored backup now shows a green 'Live' badge and its Restore button is replaced (so you can see at a glance which dataset is active). CSS v=65.

2026-03-26 21:35:42 Web App Restore: now backs up the current live data before overwriting (so you can undo a restore). Flash message now shows which backup was restored — business name, timestamp, and product count.

2026-03-26 21:30:19 Web App AI converter: downloading the xlsx no longer clears the session. You can now download to review, then click Upload to Live Site without getting a session expired error.

2026-03-26 21:25:47 Web App AI converter: Site Settings fields (business name, contact, colours) now carried through to the downloaded xlsx when action is Download. Previously they were only applied on Upload to Live Site.

2026-03-26 21:11:20 Web App Upload section Site Settings: now hidden by default, appears expanded automatically when the dropped file has no Config tab (matches AI converter behaviour). Quick server-side check fires on file selection.

2026-03-26 21:06:09 Web App Upload section: added collapsible Site Settings (business name, contact details, font/header/table colours) for files with no Config tab. Config tab values always take priority — form fields only fill in what's missing. CSS v=64.

2026-03-26 20:54:44 Web App Restore cards: each card now shows the business name stored in that backup's config.csv, not the current live business name. Falls back to 'Catalog Backup' if no name is stored.

2026-03-26 20:48:40 Web App AI converter: Site Settings fields now start blank when the uploaded file has no Config tab. Previously the existing DB config (last used name, contact details, colours) pre-filled the form — now those fields are empty so the user fills in fresh details for the new catalog.

2026-03-26 20:43:37 Web App Restore cards: business name now shows as the heading (replacing the date). Date and product count moved to a single smaller line below, matching style. CSS v=63.

2026-03-26 20:09:17 Web App AI converter: added quick Site Settings section (business name, contact details, font colour, header/footer colour, table background) that appears when the uploaded file has no Config tab. Page background auto-calculated from table background (RGB -10). Settings are applied at import time alongside the product data. CSS v=62.

2026-03-26 19:34:46 Web App AI import now uses the same pipeline as green upload: mapped products are converted to a full SheetDropper xlsx (with Config tab pre-filled from existing DB config), then parsed through parse_xlsx to produce both CSVs. Both products.csv and config.csv are written to current/ before load_data is called.

2026-03-26 19:18:36 Web App AI import now writes products.csv + config.csv back to current/ after loading into DB, keeping current/ in sync. Previously current/ was only updated by green uploads, so backups after AI imports captured stale data.

2026-03-26 19:00:43 Web App Fixed AI import not creating backups. When no products.csv exists in current/ (AI import never writes CSVs), _backup_current now exports products + config directly from the DB into the backup folder instead of silently skipping.

2026-03-26 18:31:16 Web App Backup system overhauled: now stores up to 3 timestamped backups per tenant. AI import routes now also trigger a backup before going live. Restore section redesigned as blue cards showing up to 3 backups. API rollback updated to use newest backup. CSS v=61.

2026-03-26 18:07:50 Web App Admin: upload section heading/wording updated, darker green, left badge + centered heading layout for both AI and upload sections. CSS v=60.

2026-03-26 17:59:24 Web App Admin Upload section redesigned: green drop zone (drag-and-drop + click), shows filename + Upload & Go Live button on file select, whole section is the drop target. CSS v=59.

2026-03-26 17:43:09 Web App Admin Smart Import: entire purple section is now the drag-and-drop and click target — not just the dashed inner zone. Guards prevent re-triggering when clicking links, buttons, or the result area. CSS v=58.

2026-03-26 17:36:58 Web App Admin AI Import section: renamed to 'Smart Import', AI-POWERED label and heading on same line centered, dividing line removed, new description text explaining the review/confirm flow. CSS v=57.

2026-03-26 17:09:56 Web App Admin page: AI Import section redesigned with purple theme — '✦ AI-POWERED' label, purple border and background, purple drop zone, ✨ icon, loading text mentions Claude AI. CSS v=56.

2026-03-26 17:01:14 Web App Emergency Controls: buttons moved to top of each card, headings removed. 'Take Catalog Offline' on left, 'Hide All Prices' on right.

2026-03-26 16:46:53 Web App Admin page: Emergency Controls redesigned as side-by-side red-themed cards (matching template download card style). Moved above the Download Templates section. CSS v=55.

2026-03-25 23:09:41 Web App Admin header: last updated format simplified to '25 Mar 2026 23:09' — no weekday, 24-hour time.

2026-03-25 23:05:57 Web App Admin header: product count and Updated date now on separate lines. Last updated shows full date with weekday and time (e.g. Wed 25 Mar 2026, 10:05 pm). Existing DB timestamps updated to ISO format so JS can parse and localise them.

2026-03-25 23:02:51 Web App Admin mobile header: 3-column layout — Catalog/Admin (two lines, left), company name bold centered with product count and updated date below it, View Catalog/Logout stacked (right).

2026-03-25 22:54:54 Web App Admin page: removed arrow symbols from View Catalog and online guide links. Online guide link now uses standard link colour and underline. Desktop header meta shows business name, product count, and last updated all on one line at 14px. Mobile: View Catalog and Logout stack vertically, business name shown bold on its own line below, stats on next line.

2026-03-25 22:45:49 Web App Admin header: now shows business name, product count, and last updated date/time. Timestamp stored as UTC ISO string and converted to browser local time via JS. Old format entries show as-is; new uploads show correct local time.

2026-03-25 22:41:59 Web App Admin page: removed Current Catalog section, moved product count and last updated into the header bar. Last updated timestamp now includes time (e.g. '25 Mar 2026 10:41 AM').

2026-03-25 22:35:15 Web App Download Templates section: card borders restored with tighter padding, both buttons same style, section heading removed.

2026-03-25 22:32:47 Web App Download Templates section: buttons moved above text, centered, no card borders or headings. Reduced padding throughout.

2026-03-25 22:26:07 Web App Admin page: Download Templates section redesigned as two side-by-side cards (stacked on mobile). Blank Template card explains the included User Guide and links to the online guide. Current Data card explains the use case (add products, update prices, re-upload). Each card has its own title, description, and button.

2026-03-25 22:18:18 Web App Admin page: moved template download buttons into a single section — 'Download Blank Template' and 'Download Current Data as Template' sit side by side with combined description text. Removed the 'Reset Column Mapping' button (redundant — Run AI Review handles that case already).

2026-03-25 22:11:47 Web App Admin page: added 'Download Current Data as Template' button in the Upload section — downloads the live catalog as a filled-in .xlsx template (same format as converter download). Converter mapping UI: Catalog Fields and Remaining Columns sections are now collapsible — click the heading to toggle. Catalog Fields expanded by default, Remaining Columns collapsed by default to reduce clutter.

2026-03-25 21:52:32 Web App Converter download: output xlsx now uses the proper SheetDropper template format instead of a bare grid. Downloaded file includes User Guide and Config tabs (with defaults), and a styled Products tab with colour-coded column headers (red=required, blue=fixed, green=attribute filters, purple=product page), legend row, alternating row colours, and frozen header. Ready to upload or hand to someone else as a proper template.

2026-03-25 21:22:17 Web App Fix converter saved mapping: ignored columns were not tracked, causing them to appear as 'new' on every subsequent upload and triggering AI every time. Now saves all column names from the file (including ignored ones) so future uploads correctly recognise them as known. Also fixed session bug where the wrong sheet name was saved when the file's sheet didn't match the saved mapping's sheet.

2026-03-25 19:30:16 Web App Converter: saved column mapping — after the first AI import, the confirmed mapping is saved per tenant. Future uploads skip the AI entirely and apply the saved mapping instantly. If new columns appear that weren't in the saved mapping, they're flagged clearly and added as attribute filters. A 'Reset Column Mapping' button lets tenants clear the saved mapping to re-run the AI review. No AI cost after the first upload.

2026-03-24 09:12:21 Web App New public guide page at /guide — full walkthrough of SheetDropper covering AI Import, getting started, spreadsheet format, column reference, design settings, admin panel, emergency controls, desktop app, catalog browsing, and embedding. No sensitive info. Linked from landing page nav and footer.

2026-03-23 22:59:54 Web App Landing page redesign — AI put front and centre. New headline 'Drop your spreadsheet. AI does the rest.' New 3-step How It Works section with the AI step visually highlighted. New AI Import section with benefits list and a visual column-mapping mockup showing what the AI does. Features section expanded with individual product pages and emergency controls cards.

2026-03-23 22:52:00 Web App Fix converter download: products_to_xlsx was missing long_description, image_2_url, image_3_url, meta_description from the output headers — mapped values for those fields were silently dropped when downloading instead of uploading. Direct upload was unaffected. Also added ?v=47 cache-bust to superadmin_dashboard.html stylesheet link.

2026-03-23 21:48:28 Web App Converter: fixed injected scripts not executing (innerHTML doesn't run scripts — now re-executed manually after fetch response). Section 2 now shows 'Used above as Product Name' text instead of hiding assigned rows, keeping the column list intact and in order.

2026-03-23 21:23:47 Web App Converter: column letters added to all column labels (e.g. 'Col A (blank)', 'Col B — Description/Qty') to eliminate confusion about which spreadsheet column is being referenced. Section 2 (Remaining Columns) now hides rows for columns already assigned in Section 1, updating live as dropdowns change. Downloaded filename now timestamped (converted_catalog_YYYYMMDD_HHMM.xlsx).

2026-03-23 21:00:20 Web App Converter UI redesign — replaced read-only mapping table + questions with two editable dropdown tables: Catalog Fields (choose which source column feeds each field) and Remaining Columns (set each to Attribute Filter or Ignore). AI pre-fills dropdowns, user can adjust anything. Recommended fields (Product Name, Category, Price) warn on submit if left as 'not mapped'. Explicitly choosing 'leave blank' bypasses the warning.

2026-03-23 19:59:45 Web App Spreadsheet converter — AI-powered import tool on the admin page. Drop in any existing .xlsx price list and Claude Haiku maps the columns to the catalog format automatically. Shows a mapping review table and answers any ambiguous questions (e.g. which price column to use) before going live. Can upload directly to the live site or download a converted .xlsx for review first.

2026-03-23 17:54:54 Web App Removed muted text — all secondary text (product counts, descriptions, filter labels, category headings) now uses the full body text colour with no dimming.

2026-03-23 17:37:04 Multiple Fix grid layout toggle: removed localStorage restore that was overriding the admin's default layout on page load; desktop app preview now renders grid card layout when grid is selected.

2026-03-23 17:24:04 Multiple Table/Grid layout toggle — visitors can switch between table view (rows and columns) and grid view (image cards) using toggle buttons in the catalog. Per-tenant default layout (table or grid) configurable via Admin page, desktop app Configure screen, and spreadsheet Config tab. Grid cards show image, name, price, and up to 3 attribute tags.

2026-03-23 14:02:52 Web App Copy API Key button added to superadmin dashboard (next to each tenant's key) and to tenant admin page — clients can now copy their key directly from their admin panel without asking

2026-03-22 08:45:28 Template metro-industrial demoset CSV updated: added long_description, image_2_url, image_3_url, and meta_description columns. All 235 products now have all three image slots filled, using the 21 existing test images cycled with offsets so each slot shows a different image.

2026-03-22 08:10:00 Web App Fix: product page links broken after HTMX category/search filter. The products partial route was not passing slug to the template, so url_for generated invalid URLs. Adding slug to the render_template call fixes product links after any filter or search interaction.

2026-03-22 07:45:00 Web App Price unit (e.g. 'each', 'per metre') now displays on its own line below the price value — applies on all screen sizes. Mobile: product name and price columns set to fixed widths (230px and 70px) so all three key columns (name, image, price) are always visible before horizontal scrolling. Product description hidden on mobile to keep the name cell clean.

2026-03-22 07:25:00 Web App Mobile: attribute columns (Size, Material, Grit, etc.) now hidden on screens ≤700px. Product name, image, and price always visible regardless of how many attribute columns a category has. Fixes categories with multiple attributes pushing the price column off screen.

2026-03-22 07:08:00 Web App Product table: image thumbnail moved from inside the product name cell to its own dedicated column between Product and Price. Removes the layout gap caused by rows with images being taller than rows without. Image column is fixed at 52px wide; thumbnail links to the product page rather than opening the image directly.

2026-03-22 06:55:26 Template metro-industrial demoset updated with real test images — 20 products now have image_url values pointing to uploaded images on the server. Confirms product page image display and thumbnail column working correctly end-to-end.

2026-03-22 06:30:00 Web App Removed bespoke placeholder image code: grey box placeholders had been added as a tenant-specific workaround for metro-industrial during product page testing. Reverted to clean multi-tenant behaviour — no image shown when image_url is blank, consistent across all tenants.

2026-03-22 05:53:53 Multiple Individual product pages: each product now has its own URL at /c/<slug>/product/<product-slug>. Slugs generated automatically from product names on upload. Product names in the catalog table are now clickable links. Product page shows name, price, short description, primary + secondary images, attribute pills, and long description — all using the client's branding from config. New spreadsheet columns added: long_description, image_2_url, image_3_url, meta_description (all optional, purple in template). SEO meta description auto-generated from description fields if not provided. Two extra example custom attribute columns (Type, Colour) added to template, giving 5 total attribute examples.

2026-03-22 05:28:23 Web App Added landing page at sheetdropper.com/ — dark-theme placeholder with nav, hero, live demo link (metro-industrial), feature cards, and CTA section. Root route now renders landing.html instead of redirecting to a tenant catalog. Placeholder sign-up/pricing section ready for onboarding flow.

2026-03-22 05:04:04 Multiple Rebranded from PriceList to SheetDropper: showcase site title, nav logo, and footer updated; changelog subtitle updated; links page section header updated; desktop app BASE_URL changed from w3swaps.com to sheetdropper.com; template download filename changed from pricelist_template.xlsx to catalog_template.xlsx.

2026-03-21 10:00:00 Web App Attribute columns (Size, Type, Rating, etc.) now centre-aligned — values sit neatly in the middle of stretched columns instead of hanging left with large gaps.

2026-03-21 09:00:00 Web App Fix: attribute columns now filtered per current result set — only columns with at least one non-blank value in the visible products are shown. Blank columns (e.g. Grit when viewing Hand Tools) are hidden automatically, removing irrelevant headers and unnecessary horizontal scroll.

2026-03-20 23:00:00 Web App Showcase site (pricelist.w3swaps.com/showcase/) completely rebuilt from scratch — replaced large fan-stack cards and verbose sections with a compact dark-theme design: horizontal pain-points strip, 3-column step cards, compact 2-column feature rows (including new Desktop App feature), In Action screenshots, Before/After comparison, and CTA. Significantly shorter on mobile.

2026-03-20 22:42:00 Template Spreadsheet template: expanded User Guide tab with full documentation — Products column guide (every column with examples and required/optional flags), Config settings guide (all header/body/footer settings explained), image URL hosting tips, colour entry guide, common mistakes, and tips for best results.

2026-03-20 22:41:00 Web App Web app: added /docs page with three-tab documentation — User Guide (catalog browsing, search, filter, embed), Admin Guide (upload, emergency controls, rollback), and Developer Reference (server setup, routes, API, config system, DB structure, CSS vars, HTMX patterns, deploy workflow).

2026-03-20 22:40:00 Desktop Desktop app: replaced placeholder Help section with full user documentation covering all screens and settings in plain language for small business owners.

2026-03-20 22:18:00 Desktop Code review pass: fixed missing .trim() on footer heading and footer subheading text fields in the desktop app — consistent with all other text fields. No other issues found.

2026-03-20 22:05:00 Desktop Desktop app preview: fixed footer being cut off on mobile size (390px) — added padding-bottom to clear the fixed mobile bar. Fixed stray scroll on all non-mobile preview sizes by locking overflow:hidden on the body; mobile keeps scroll so the sticky category/filter buttons are visible.

2026-03-20 21:55:00 Desktop Improved notification messages throughout the desktop app to be more specific: upload now says 'X products now live on site', config restore says 'Config backup restored to live site', save settings says 'Design settings applied to live site', logo upload says 'Logo uploaded to live site', local backup save says 'Config saved to local backup', template download says 'Template downloaded to your Downloads folder'.

2026-03-20 21:48:00 Desktop Desktop app: added Activity log to sidebar — every notification (upload, save, error, etc.) is logged with a timestamp and persists for the session. Shows ~5 entries at a time, scrollable without a visible scrollbar, snaps to latest on each new event.

2026-03-20 21:36:00 Desktop Desktop app: moved sidebar divider line so it sits between Help and Disconnect, rather than above both.

2026-03-20 21:30:00 Multiple Default currency changed to AU$ throughout — desktop app configure screen and spreadsheet template.

2026-03-20 21:05:00 Multiple Fix desktop app logo preview and position bugs: (1) preview panel now shows the newly selected local logo immediately, before it's uploaded; (2) unchecking both Left and Right logo position checkboxes now correctly hides the logo (previously defaulted to left); fix applied to both the desktop preview and the live catalog.

2026-03-20 20:45:00 Web App Fix logo upload bug: re-uploading a logo now correctly replaces the previous one. Old logo files are deleted before saving the new one (prevents stale files from lingering if the extension changes), and a timestamp is added to the URL on every upload to bust Cloudflare and browser cache.

2026-03-20 20:20:00 Template Spreadsheet template: colour field notes updated to clarify that the typed hex code takes priority over cell fill colour — to use fill colour, clear the cell value first.

2026-03-20 20:00:00 Template Spreadsheet template: colour fields in the Config tab now show their actual colour as the cell background, with automatically readable text (white on dark, dark on light). Makes it easy to see what each colour looks like at a glance.

2026-03-20 19:30:00 Template Spreadsheet template: Config tab pre-filled with sensible defaults — header/footer colour (#1F2D3D navy), Arial font throughout, sizes (heading 22px, subheading 13px, body 14px, footer 12px), white text on header/footer, light grey page background (#f5f6f8), white table background. Clients can now upload immediately after filling in just their business name and products.

2026-03-20 19:00:00 Multiple Spreadsheet template updated: Config tab restructured into Header, Body, Footer, and Other sections. New fields added: business_info, logo_position (left/right/both dropdown), heading_font_color, subheading_font_family, subheading_font_color, page_bg_color, table_bg_color, footer_heading_font_family/size/color, footer_subheading_font_family/size/color. All new colour fields support typed hex or cell fill colour. Font family dropdowns added for all font fields. csv_parser updated to support cell fill colour for all new colour fields.

2026-03-20 13:30:00 Multiple Configure screen overhaul: (1) Logo position changed from radio buttons to checkboxes — both Left and Right can now be selected simultaneously to display the logo on both sides of the header, applied to live catalog; (2) Footer font row labels renamed to Footer Heading Font and Footer Subheading Font; all configure screen labels standardised to the same font size; (3) Section headers (Header, Body, Footer, Upload) now display as bold filled dividers for clear visual separation between sections; (4) Vertical spacing tightened throughout the configure panel

2026-03-20 13:00:00 Desktop Configure screen font row layout: each font row now shows all labels (font name, Size, Colour) on one line above all their inputs; Size and Colour boxes made equal width (44px); all background colour pickers matched to same size (44×26px) and aligned with the Colour column in font rows; Size label centre-justified

2026-03-20 12:30:00 Multiple Configure screen — Body settings added: Page Background colour (page_bg_color) and Table Background colour (table_bg_color) fields control the outer page background and the table/sidebar/filter panel background independently; both applied to live catalog and visible in preview; settings sections reorganised to Header → Body → Footer → Upload/Save; Logo moved inside Header Settings; Footer Subheading changed from multi-line textarea to single-line text input

2026-03-20 12:00:00 Multiple Configure screen — Footer redesigned to mirror Header: Footer Heading and Footer Subheading text inputs each with their own font/size/colour row; old Contact Font, Footer Text Colour, and Footer Font Size fields replaced by the new per-element font rows; Price Note field moved into Footer Heading; new server fields: footer_heading_font_family/size/color, footer_subheading_font_family/size/color, applied to live catalog

2026-03-20 11:30:00 Desktop Configure screen UI polish: Logo position radios (Left/Right) moved to same line as Logo label; input padding reduced for a more compact layout; font select boxes made shorter; Size and Colour micro-labels added above the size/colour inputs in all font rows

2026-03-20 11:00:00 Multiple Configure screen: Logo moved to top with Left/Right position option (applied to live catalog); Business Name (heading) label update; heading/subheading/body fonts now show font+size+colour on one line; body font size field made visible (was hidden); Main Font renamed to Body Font; logo_position field added to server config

2026-03-20 10:30:00 Multiple Configure screen redesign: Business Name renamed to Business Name (header); new Business Info (subheading) field for header tagline/slogan (separate from Contact Info which is now footer-only); added Heading Font Colour and Subheading Font Colour pickers; hex text inputs removed from all colour pickers (use native picker); heading font+size and subheading font+size now on single rows each; new subheading_font_family field; all new colour/font fields applied to live catalog

2026-03-20 10:00:00 Desktop Desktop app: removed default application menu bar; added Help section to sidebar with placeholder content; currency dropdown updated to US$ and includes a Custom option for typing any symbol (points, credits, tokens, etc.)

2026-03-20 09:30:00 Desktop Configure screen: 61-char limit on business name and contact info; contact font size and colour options; Revert button to reset form to last saved state; colour pickers now inline (label + picker + hex on one line); currency symbol changed to dropdown ($, AU$, NZ$, £, €, ¥); settings reorganised into Header, Footer, and Other sections

2026-03-20 09:00:00 Web App Created changelog system — new /changelog page with JSON-backed log of all changes