- clean up expired auth and notifications
- setup run daily at 2am via cleanup_transient_data()

- add errorHandler for proper 401s to auth
- fix null throw & erorr-handler-throws edge cases in error
- match test env limits in rateLimit

- connection fails, timeouts, pool exhaust
- constraint violated, key errors

- test auth, validation, error handling
- validate pages
- test platform support
- test edge cases: lrg arr, response struc

- shared workspace dependency
- fix config paths and constraints for imports
- index for clean exports

- fix header handling for hono, cookies
- handle expected oauth failures

- test follow and status endpoints
- validate DID format
- test array bounds, type check, error handling, etc.

- validate input, option follow param
- test auth requirements
- test error handling

- oauth cleint metadata, loopback v production
- jwks endpoint validation
- get, logout session
- oauth flow parameter validation
- validate input, errors, session lifetime

- now use appenv interface
- update results and search to use ^

- saves session to .env.test

- seeded sessions: standard, power, new, expired users
- add helpers for authRequest vs realAuthRequest