Update Docker Compose and backend settings; enhance Vite configuration for reverse proxy and improve API error handling. Removed VITE_ALLOWED_HOSTS from Docker Compose, clarified allowed hosts in settings.py, and added handling for 403 Forbidden responses in api.ts to clear invalid tokens.

frontend/vite.config.ts

@@ -179,12 +179,14 @@ export default defineConfig(({ mode, command }) => {
         usePolling: true, // Needed for file watching in Docker
       },
       hmr: {
-        // Behind reverse proxy - use same origin strategy
+        // Behind reverse proxy - explicitly set host and port to public domain
         // Client connects via public domain on default HTTPS port (443)
         // Caddy automatically proxies WebSocket upgrades from 443 to dev port
         protocol: "wss",
-        // Don't specify host/port - Vite will use same origin as page
-        // This ensures client connects to wss://domain.com (port 443 implicit)
+        host: isMarketingDev ? "igny8.com" : "app.igny8.com", // Marketing uses igny8.com, main app uses app.igny8.com
+        clientPort: 443, // Explicitly set to 443 (HTTPS default) to prevent localhost fallback
+        // This ensures client connects to wss://domain.com:443
+        // and prevents fallback to localhost:5173/5174
       },
       // Increase timeout for slow connections and dependency pre-bundling
       timeout: 120000, // 120 seconds (2 minutes) to match Caddy timeout