fix: correct avatar upload and DiceBear URL version

- Add api.upload() to client.ts that passes FormData without setting Content-Type, letting the browser set multipart/form-data with the correct boundary (was causing 422 on the upload endpoint) - Use api.upload() instead of api.post() for avatar file upload - Update DiceBear URLs from v6 to 9.x in both frontend and backend Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-03-30 20:17:21 +02:00
parent da051be673
commit cd6fabb31c
3 changed files with 11 additions and 6 deletions
--- a/web/src/api/client.ts
+++ b/web/src/api/client.ts
@@ -14,13 +14,16 @@ export function clearToken(): void {

 async function request<T>(
  path: string,
-  options: RequestInit = {}
+  options: RequestInit = {},
+  isFormData = false
 ): Promise<T> {
  const token = getToken();
  const headers: Record<string, string> = {
-    "Content-Type": "application/json",
    ...(options.headers as Record<string, string>),
  };
+  if (!isFormData) {
+    headers["Content-Type"] = "application/json";
+  }
  if (token) {
    headers["Authorization"] = `Bearer ${token}`;
  }
@@ -42,6 +45,8 @@ export const api = {
  get: <T>(path: string) => request<T>(path),
  post: <T>(path: string, body: unknown) =>
    request<T>(path, { method: "POST", body: JSON.stringify(body) }),
+  upload: <T>(path: string, formData: FormData) =>
+    request<T>(path, { method: "POST", body: formData }, true),
  patch: <T>(path: string, body: unknown) =>
    request<T>(path, { method: "PATCH", body: JSON.stringify(body) }),
  delete: (path: string) => request<void>(path, { method: "DELETE" }),