feat: Enrich DTOs and UI to display member names instead of UUIDs for task assignees, creators, and shift signups.

frontend/src/auth/auth.ts

@@ -33,16 +33,30 @@ export const { handlers, signIn, signOut, auth } = NextAuth({
   providers: [
     KeycloakProvider({
       clientId: process.env.KEYCLOAK_CLIENT_ID!,
-      clientSecret: process.env.KEYCLOAK_CLIENT_SECRET!,
       issuer: issuerPublic,
-      authorization: {
-        url: `${oidcPublic}/auth`,
-        params: { scope: "openid email profile" },
-      },
-      token: `${oidcInternal}/token`,
-      userinfo: `${oidcInternal}/userinfo`,
     })
   ],
+  cookies: {
+    pkceCodeVerifier: {
+      name: "authjs.pkce.code_verifier",
+      options: {
+        httpOnly: true,
+        sameSite: "lax",
+        path: "/",
+        secure: false,
+      },
+    },
+    state: {
+      name: "authjs.state",
+      options: {
+        httpOnly: true,
+        sameSite: "lax",
+        path: "/",
+        secure: false,
+      },
+    },
+  },
+  debug: true,
   callbacks: {
     async jwt({ token, account }) {
       if (account && account.access_token) {