feat: latin-only slugs, server-side avatar generation, remove unused User fields

server/src/routes/auth.js

@@ -8,6 +8,7 @@ import {
   validatePassword,
   verifyEmailCode,
 } from '../lib/auth.js'
+import { generateAvatar } from '../lib/generate-avatar.js'
 import { prisma } from '../lib/prisma.js'
 import { checkLoginRateLimit } from '../lib/rate-limit.js'
 
@@ -18,9 +19,6 @@ export function mapUserForClient(user) {
     id: user.id,
     email: user.email,
     displayName: user.displayName,
-    firstName: user.firstName,
-    lastName: user.lastName,
-    gender: user.gender,
     avatar: user.avatar,
     avatarStyle: user.avatarStyle,
     isAdmin: Boolean(adminEmail) && userEmail === adminEmail,
@@ -55,10 +53,11 @@ export async function registerAuthRoutes(fastify) {
     const ok = await verifyEmailCode({ email, purpose: 'login', code })
     if (!ok) return reply.code(401).send({ error: 'Неверный или истёкший код' })
 
+    const avatarUri = await generateAvatar(email)
     const user = await prisma.user.upsert({
       where: { email },
       update: {},
-      create: { email },
+      create: { email, avatar: avatarUri, avatarStyle: 'avataaars' },
     })
 
     // Ensure notification preference exists
@@ -88,12 +87,13 @@ export async function registerAuthRoutes(fastify) {
     if (exists) return reply.code(409).send({ error: 'Эта почта уже зарегистрирована' })
 
     const passwordHash = await hashPassword(password)
+    const avatarUri = await generateAvatar(email)
     const user = await prisma.user.create({
       data: {
         email,
         passwordHash,
         displayName: displayName || null,
-        avatar: null,
+        avatar: avatarUri,
         avatarStyle: 'avataaars',
       },
     })