AMP-SCZ · erikcameron · Aug 13, 2025 · Aug 13, 2025
diff --git a/.env.sample b/.env.sample
@@ -1,7 +1,7 @@
 MONGODB_URI=mongodb://mongodb:27017/dpdmongo?authSource=admin
 SESSION_SECRET=foooo
-SMTP_HOST=your.smtpserver.com
-SMTP_PORT=587
+SMTP_HOST=mailcatcher
+SMTP_PORT=1025
 SMTP_USER=yoursmtpuser
 SMTP_PASS=yoursmtppassword
 ADMIN_EMAIL=adminaccountemail@example.com

diff --git a/.gitignore b/.gitignore
@@ -35,3 +35,6 @@ app_build
 # CDK asset staging directory
 .cdk.staging
 cdk.out
+
+# local SSL
+certs
diff --git a/make-cert.sh b/make-cert.sh
diff --git a/server/controllers/authController/index.js b/server/controllers/authController/index.js
@@ -71,6 +71,7 @@ const AuthController = {
         mail,
         account_expires,
         preferences: { config: configuration._id.toString() },
+        access: ["MA"],
       }
       const newUser = await UserModel.create(appDb, newUserAttributes)
       const registrationMailer = new RegistrationMailer(newUser)

diff --git a/server/utils/passport/ensure-authenticated.js b/server/utils/passport/ensure-authenticated.js
@@ -21,6 +21,9 @@ export default async function ensureAuthenticated(req, res, next) {
       return res
         .status(403)
         .json({ error: 'Account is blocked, please contact your admin' })
+    // this next one is the problem line--- by default the user has no access,
+    // but that cuts them off from the entire API, including for things
+    // on their dashboard
     case access.length === 0:
       return res.status(403).json({ error: 'Forbidden.' })
     default: