From a10836d41278f200cae7a09f793bd3bd1ae904b8 Mon Sep 17 00:00:00 2001
From: Ryan Kegel <ryan.kegel@gmail.com>
Date: Thu, 5 Mar 2026 15:47:42 -0500
Subject: [PATCH] feat: allow bypass of reset-password and verify routes for
 logged-in users

---
 .../src/router/__tests__/authGuard.spec.ts       | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/frontend/vue-app/src/router/__tests__/authGuard.spec.ts b/frontend/vue-app/src/router/__tests__/authGuard.spec.ts
index ef57fcd..eab508f 100644
--- a/frontend/vue-app/src/router/__tests__/authGuard.spec.ts
+++ b/frontend/vue-app/src/router/__tests__/authGuard.spec.ts
@@ -78,6 +78,22 @@ describe('router auth guard', () => {
     expect(path).toBe('/child')
   })
 
+  it('allows logged-in parent user to access /auth/reset-password', async () => {
+    isUserLoggedInMock.value = true
+    isParentAuthenticatedMock.value = true
+
+    const path = await navigate('/auth/reset-password')
+    expect(path).toBe('/auth/reset-password')
+  })
+
+  it('allows logged-in child user to access /auth/reset-password', async () => {
+    isUserLoggedInMock.value = true
+    isParentAuthenticatedMock.value = false
+
+    const path = await navigate('/auth/reset-password')
+    expect(path).toBe('/auth/reset-password')
+  })
+
   // ── Unauthenticated users may access /auth ────────────────────────────────
 
   it('allows unauthenticated user to access /auth', async () => {