Feat: show top 5 incredients as options

[EdenBernhard]

No description provided.

[Copilot]

Pull request overview

This PR adds “top 5 ingredients” suggestions to the RecipeFinder ingredient popup by introducing backend usage tracking + endpoints, and wiring the frontend to fetch/cache and render suggestion badges. It also includes a few auth/network UX improvements (more specific login/forgot-password errors) and some auth/DB-related adjustments.

Changes:

• Frontend: show “Häufig verwendet” suggestion badges in the ingredient popup and persist suggestions in localStorage.
• Backend: track per-user ingredient usage, expose /ingredients/top, and return updated topIngredients from /recipes/search.
• UX: improved error messaging for sign-in and forgot-password; small accessibility improvements in password input.

Reviewed changes

Copilot reviewed 12 out of 12 changed files in this pull request and generated 4 comments.

Show a summary per file

File	Description
project/frontend/lib/auth.tsx	Clears suggestion cache on logout and changes fetchWithAuth URL handling.
project/frontend/app/recipeFinder/style.css	Adds styling for the suggestion badge list.
project/frontend/app/recipeFinder/popup.tsx	Renders clickable suggestion badges and focuses amount input after selection.
project/frontend/app/recipeFinder/page.tsx	Fetches/caches suggestions and passes them into the popup; updates suggestions from search response.
project/frontend/app/profile/page.tsx	Minor cleanup and small UI handler edit.
project/frontend/app/profile/changePasswordPopup.tsx	Adds aria attributes and strengthens required-field validation.
project/frontend/app/homepage/signin.tsx	Improves error classification for login failures.
project/frontend/app/homepage/forgotPassword.tsx	Adds proper non-OK response handling and displays server/network errors.
project/backend/Routes.py	Adds /recipes/search usage tracking + /ingredients/top endpoint with no-cache headers.
project/backend/Models.py	Adds request models for recipe search payload.
project/backend/Database.py	Adds IngredientUsage table + read/write helpers; removes WAL pragma.
project/backend/Auth.py	Introduces duplicate imports/constants (needs cleanup).

Comments suppressed due to low confidence (1)

project/frontend/lib/auth.tsx:139

• fetchWithAuth now prefixes API_URL only for the first request, but the 401 retry still calls fetch(url, ...) without the prefix. This will break token-refresh flows for relative paths (it will hit the Next.js origin) and also breaks existing callers that pass absolute URLs (they’ll get API_URL + 'http…'). Consider normalizing the request URL once (support both absolute and relative inputs) and reusing it for both the initial request and the retry.

async function fetchWithAuth(url: string, options: RequestInit = {}): Promise<Response> {
    const accessToken = getAccessToken();
    if (!accessToken) throw new Error("Nicht eingeloggt");

    // Erster Versuch mit aktuellem Access Token
    let res = await fetch(`${API_URL}`+url, {
        ...options,
        headers: {
            ...options.headers,
            Authorization: `Bearer ${accessToken}`,
        },
    });

    // Bei 401: Access Token erneuern und erneut versuchen
    if (res.status === 401) {
        const refreshToken = getRefreshToken();
        if (!refreshToken) throw new Error("Nicht eingeloggt");

        let tokens;
        try {
            tokens = await apiRefreshTokens(refreshToken);
        } catch {
            clearTokens();
            throw new Error("Session abgelaufen");
        }
        saveTokens(tokens.access_token, tokens.refresh_token);

        res = await fetch(url, {
            ...options,
            headers: {
                ...options.headers,
                Authorization: `Bearer ${tokens.access_token}`,
            },
        });

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.