<feed xmlns='http://www.w3.org/2005/Atom'>
<title>food/kitchen, branch mcp-api</title>
<subtitle>Meal planning system (Django)</subtitle>
<id>https://git.tomflux.xyz/food/atom?h=mcp-api</id>
<link rel='self' href='https://git.tomflux.xyz/food/atom?h=mcp-api'/>
<link rel='alternate' type='text/html' href='https://git.tomflux.xyz/food/'/>
<updated>2026-06-23T20:24:09+00:00</updated>
<entry>
<title>Fix bulk-pantry-add crash on null unit (found in live MCP testing)</title>
<updated>2026-06-23T20:24:09+00:00</updated>
<author>
<name>Tom Flux</name>
<email>tom@tomflux.xyz</email>
</author>
<published>2026-06-23T20:24:09+00:00</published>
<link rel='alternate' type='text/html' href='https://git.tomflux.xyz/food/commit/?id=eeeb1c5b34c058f2c1a7ea2f3c6b179f503d2aa4'/>
<id>urn:sha1:eeeb1c5b34c058f2c1a7ea2f3c6b179f503d2aa4</id>
<content type='text'>
End-to-end testing (MCP client -&gt; FastMCP -&gt; Django) surfaced a 500:
adding an item with an explicit `unit: null` (as add_to_pantry sends
for items without a unit) hit a NOT NULL violation, because
`item_data.get("unit", "items")` returns None when the key is present.

- views.bulk_pantry_add: `item_data.get("unit") or "items"` — tolerate
  null/empty unit.
- mcp_server add_to_pantry: omit quantity/unit from the payload when
  unset, so the API applies its own defaults.
- test: bulk-add with unit/quantity = null returns 201 (25 pass).

Co-Authored-By: Claude Opus 4.8 &lt;noreply@anthropic.com&gt;
</content>
</entry>
<entry>
<title>Phase 3a: close the Django API gaps for the MCP server</title>
<updated>2026-06-23T20:07:18+00:00</updated>
<author>
<name>Tom Flux</name>
<email>tom@tomflux.xyz</email>
</author>
<published>2026-06-23T20:07:18+00:00</published>
<link rel='alternate' type='text/html' href='https://git.tomflux.xyz/food/commit/?id=d118726d3010d5b0133c7665fc20008c055f2757'/>
<id>urn:sha1:d118726d3010d5b0133c7665fc20008c055f2757</id>
<content type='text'>
Backend prerequisites for the FastMCP service (mcp.md §6) — no model
changes, no migration.

- log_cook: accepts `rating`, validates via full_clean (enforces the
  exactly-one-recipe rule), and returns `used_ingredients` as a
  suggestion set instead of mutating the pantry. Auto-deduct path and
  _deduct_ingredient removed — pantry state changes only via set-state
  after the user confirms.
- New POST /api/pantry/set-state/ — set in/low/out by ingredient name
  (alias-aware), optional location; registered before the router so the
  pantry detail route doesn't capture "set-state" as a pk.
- what_can_i_cook: presence-based (exclude 'out', tolerate null
  quantity) so the API matcher agrees with the web one.
- bulk-pantry-add: restocks an existing ingredient+location row to 'in'
  instead of duplicating; quantity is an optional int.

Tests cover all four + that pantry `state` is serialized (24 pass).

Co-Authored-By: Claude Opus 4.8 &lt;noreply@anthropic.com&gt;
</content>
</entry>
<entry>
<title>Phase 2: session auth for the web UI</title>
<updated>2026-06-23T19:37:48+00:00</updated>
<author>
<name>Tom Flux</name>
<email>tom@tomflux.xyz</email>
</author>
<published>2026-06-23T19:37:48+00:00</published>
<link rel='alternate' type='text/html' href='https://git.tomflux.xyz/food/commit/?id=d92deeab514a52e7c3416baef78f8969ade951cc'/>
<id>urn:sha1:d92deeab514a52e7c3416baef78f8969ade951cc</id>
<content type='text'>
Require login for /app/, with a long sliding session so you log in
once per device and effectively stay in.

- AppLoginRequiredMiddleware gates only /app/; /api/ keeps DRF token
  auth and /admin/ keeps its own login (a blanket LoginRequired would
  break token requests, whose user isn't resolved until the view runs).
- Login page (styled to the dark palette) via django.contrib.auth.urls;
  logout control in the nav.
- Session: ~1 year cookie, sliding (saved every request), survives
  browser close.
- Dropped every @csrf_exempt now that a real session + CSRF token are
  in place (HTMX already sends X-CSRFToken).
- SECRET_KEY and DEBUG now read from the environment (prod-safe
  defaults); systemd loads an optional /var/lib/food/.env.
- Tests authenticate, plus new coverage: /app/ redirects when logged
  out, login grants access, /api/ is not caught by the app gate.

Co-Authored-By: Claude Opus 4.8 &lt;noreply@anthropic.com&gt;
</content>
</entry>
<entry>
<title>Phase 1: mobile-first pantry redesign with In/Low/Out state</title>
<updated>2026-06-23T18:55:16+00:00</updated>
<author>
<name>Tom Flux</name>
<email>tom@tomflux.xyz</email>
</author>
<published>2026-06-23T18:55:16+00:00</published>
<link rel='alternate' type='text/html' href='https://git.tomflux.xyz/food/commit/?id=0aabf50834a31ff4ae9f8fd58639e444a449110b'/>
<id>urn:sha1:0aabf50834a31ff4ae9f8fd58639e444a449110b</id>
<content type='text'>
Track presence (In/Low/Out) as the primary signal instead of exact
quantities; quantity becomes an optional integer, unit optional too
(migration 0003 backfills state from quantity: 0 -&gt; out, else in).

- Pantry rebuilt as a phone-first card list: colored state rail,
  segmented In/Low/Out switch (server-driven HTMX), greyed out-items,
  live summary counts.
- Fast add: bottom add bar with type-ahead autocomplete, location
  picker, and quick-add chips for things you've run out of.
- Per-item menu (move / set expiry / delete); expiry is now an
  optional quiet pill, never required.
- New endpoints: pantry search + set-state; dropped the old
  edit-expiry/cancel flow and its partial.
- Recipes matcher made presence-based (have-it beats have-enough);
  state added to admin. Tests cover state, add/restock, search,
  presence matching, and page rendering.

Co-Authored-By: Claude Opus 4.8 &lt;noreply@anthropic.com&gt;
</content>
</entry>
<entry>
<title>Add planning docs: research, requirements, redesign plan</title>
<updated>2026-06-23T18:55:16+00:00</updated>
<author>
<name>Tom Flux</name>
<email>tom@tomflux.xyz</email>
</author>
<published>2026-06-23T18:55:16+00:00</published>
<link rel='alternate' type='text/html' href='https://git.tomflux.xyz/food/commit/?id=e34081ce36d1993912dad514127924440437a2e9'/>
<id>urn:sha1:e34081ce36d1993912dad514127924440437a2e9</id>
<content type='text'>
Research of current state, requirements for the web-first pivot
(pantry polish -&gt; auth -&gt; MCP), and the phased implementation plan.

Co-Authored-By: Claude Opus 4.8 &lt;noreply@anthropic.com&gt;
</content>
</entry>
<entry>
<title>Simplify from claude</title>
<updated>2026-06-22T21:50:48+00:00</updated>
<author>
<name>Tom Flux</name>
<email>tom@tomflux.xyz</email>
</author>
<published>2026-06-22T21:50:48+00:00</published>
<link rel='alternate' type='text/html' href='https://git.tomflux.xyz/food/commit/?id=cdbfabf0ea855df854b2357dc124df03f18d0514'/>
<id>urn:sha1:cdbfabf0ea855df854b2357dc124df03f18d0514</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Pantry move/expiry edit + smart shopping list with summary</title>
<updated>2026-04-02T22:18:01+00:00</updated>
<author>
<name>Caine</name>
<email>caine@jihakuz.xyz</email>
</author>
<published>2026-04-02T22:18:01+00:00</published>
<link rel='alternate' type='text/html' href='https://git.tomflux.xyz/food/commit/?id=f8eaa224d560c61c4003cafbbafe437882dc9a1b'/>
<id>urn:sha1:f8eaa224d560c61c4003cafbbafe437882dc9a1b</id>
<content type='text'>
- Move items between fridge↔freezer (freezer→fridge sets +7d or shelf life expiry, fridge→freezer clears expiry)
- Inline expiry date editor on fridge items (📅 button)
- Smart shopping list now shows recipe gaps (missing required slot ingredients)
- Summary card shows breakdown: X staple restocks, Y expiring, Z recipe gaps
</content>
</entry>
<entry>
<title>CSRF exempt HTMX views (localhost-only app)</title>
<updated>2026-04-02T22:12:16+00:00</updated>
<author>
<name>Caine</name>
<email>caine@jihakuz.xyz</email>
</author>
<published>2026-04-02T22:12:16+00:00</published>
<link rel='alternate' type='text/html' href='https://git.tomflux.xyz/food/commit/?id=678650292c3bbeb576da16344e3c2fe3ad4f7e07'/>
<id>urn:sha1:678650292c3bbeb576da16344e3c2fe3ad4f7e07</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Fix CSRF for HTMX POST requests</title>
<updated>2026-04-02T22:10:52+00:00</updated>
<author>
<name>Caine</name>
<email>caine@jihakuz.xyz</email>
</author>
<published>2026-04-02T22:10:52+00:00</published>
<link rel='alternate' type='text/html' href='https://git.tomflux.xyz/food/commit/?id=1410108ac62e4edf90a313dd38f1b66bcc847037'/>
<id>urn:sha1:1410108ac62e4edf90a313dd38f1b66bcc847037</id>
<content type='text'>
</content>
</entry>
<entry>
<title>Phase 4: HTMX frontend with dark palette</title>
<updated>2026-04-02T22:08:43+00:00</updated>
<author>
<name>Caine</name>
<email>caine@jihakuz.xyz</email>
</author>
<published>2026-04-02T22:08:43+00:00</published>
<link rel='alternate' type='text/html' href='https://git.tomflux.xyz/food/commit/?id=f7f9e7057c4f2593bb78df654c1b85cc6e59573f'/>
<id>urn:sha1:f7f9e7057c4f2593bb78df654c1b85cc6e59573f</id>
<content type='text'>
- 4 pages: Pantry, Recipes, Shopping List, Cook Log
- HTMX-powered: add/delete pantry items, toggle shopping, generate smart list
- Custom 13-colour palette from Lospec (dark bg, yellow accent)
- Mobile-responsive
- Whitenoise for static files in production
- All routes under /app/
- API (/api/) stays internal, frontend (/app/) for browser use
</content>
</entry>
</feed>
