Summary

Adds server-side logging across the invite flow to diagnose why invitees sometimes return to the collection as guests after verifying sign-in.

This branch is for troubleshooting only; it does not change behavior.

What’s Logged

• join route: token (truncated), session presence, cookies set, and redirect target.
• SSR gate: session present, param, invite cookie match, allow-guest vs redirect decision.
• : unauthorized (401), private-without-invite, membership creation/reactivation, invite acceptance, and errors.
• : session + cookie presence, invite lookup/expiry, membership upsert, invite acceptance, cookies cleared, and final redirect.

How to Test

1. Generate a invite and open it while signed out.
2. Confirm logs show guest cookies and redirect to .
3. Click “Join Library” and complete email code sign-in.
4. Confirm runs and upserts membership; on return, collection API should report role .

Notes

• Intended to run in staging or a debug deploy to capture logs.
• Safe to revert after we confirm the root cause.