Fix jwt-token

client/src/App.jsx

@@ -2,6 +2,7 @@ import React from 'react';
 import { BrowserRouter as Router, Routes, Route } from 'react-router-dom';
 import { Toaster } from 'react-hot-toast';
 import { AuthProvider } from './contexts/AuthContext';
+import { MultiTenantAuthProvider } from './contexts/MultiTenantAuthContext';
 import { SocketProvider } from './contexts/SocketContext';
 import APP_CONFIG from './config/app';
 import Layout from './components/Layout';
@@ -18,6 +19,7 @@ import ProtectedRoute from './components/ProtectedRoute';
 
 function App() {
   return (
+    <MultiTenantAuthProvider>
       <AuthProvider>
         <SocketProvider>
           <Router basename={APP_CONFIG.basePath}>
@@ -81,6 +83,7 @@ function App() {
         </Router>
       </SocketProvider>
     </AuthProvider>
+    </MultiTenantAuthProvider>
   );
 }
 

server/routes/debug.js

@@ -87,21 +87,29 @@ router.get('/heartbeat-payloads', authenticateToken, MultiTenantAuth, async (req
     const { limit = 50, offset = 0, device_id } = req.query;
     
     const whereClause = {
-      raw_payload: { [Op.ne]: null },
+      raw_payload: { [Op.ne]: null }
-      tenant_id: req.user.tenant_id  // 🔒 SECURITY: Filter by user's tenant
     };
     
     if (device_id) {
       whereClause.device_id = device_id;
     }
     
+    // 🔒 SECURITY: Filter heartbeats by user's tenant using device relationship
     const heartbeats = await Heartbeat.findAll({
       where: whereClause,
+      include: [{
+        model: Device,
+        as: 'device',
+        where: {
+          tenant_id: req.user.tenant_id
+        },
+        attributes: ['id', 'name', 'tenant_id']
+      }],
       order: [['received_at', 'DESC']],
       limit: parseInt(limit),
       offset: parseInt(offset),
       attributes: [
-        'id', 'device_id', 'device_key', 'received_at', 'raw_payload', 'tenant_id'
+        'id', 'device_id', 'device_key', 'received_at', 'raw_payload'
       ]
     });