From bdf76cb24d28b0f74de5d51c6f5da64e4a05a3d7 Mon Sep 17 00:00:00 2001
From: Till JS <tills95@gmail.com>
Date: Tue, 31 Mar 2026 18:07:57 +0200
Subject: [PATCH] fix(mana-auth): remove debug log, finalize EMAIL_NOT_VERIFIED
 detection

APIError.status is string 'FORBIDDEN', body.code is 'EMAIL_NOT_VERIFIED'.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
---
 services/mana-auth/src/routes/auth.ts | 16 ++--------------
 1 file changed, 2 insertions(+), 14 deletions(-)

diff --git a/services/mana-auth/src/routes/auth.ts b/services/mana-auth/src/routes/auth.ts
index d74835f9c..561b0b6fe 100644
--- a/services/mana-auth/src/routes/auth.ts
+++ b/services/mana-auth/src/routes/auth.ts
@@ -131,22 +131,10 @@ export function createAuthRoutes(
 
 			return c.json(response);
 		} catch (error) {
-			console.log(
-				'[login debug] caught error:',
-				JSON.stringify({
-					msg: (error as any)?.message,
-					status: (error as any)?.status,
-					body: (error as any)?.body,
-					name: (error as any)?.name,
-				})
-			);
-			// Better Auth throws APIError.from("FORBIDDEN", "EMAIL_NOT_VERIFIED") for unverified emails
+			// Better Auth throws APIError (status="FORBIDDEN", body.code="EMAIL_NOT_VERIFIED")
 			const isEmailNotVerified =
-				(error as any)?.status === 403 ||
 				(error as any)?.body?.code === 'EMAIL_NOT_VERIFIED' ||
-				String((error as any)?.message ?? error)
-					.toLowerCase()
-					.includes('not verified');
+				(error as any)?.status === 'FORBIDDEN';
 			if (isEmailNotVerified) {
 				return c.json({ error: 'Email not verified', code: 'EMAIL_NOT_VERIFIED' }, 403);
 			}