From 7dc679567f00c1aec008cc098edcf3d04edf1f8a Mon Sep 17 00:00:00 2001
From: Simon Strandgaard <neoneye@gmail.com>
Date: Tue, 14 Apr 2026 20:48:27 +0200
Subject: [PATCH 01/13] fix: skip login on /viewplan for MachAI iframe users

Extract is_machai_user() into database_api/ so both frontend and worker
share the same check. /viewplan now looks up the task's user_id: MachAI
users (non-UUID, not in UserAccount) can view without login; regular
users still require authentication and ownership.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 database_api/is_machai_user.py         | 39 ++++++++++++++++++++++++++
 frontend_multi_user/src/plan_routes.py | 11 ++++++--
 worker_plan_database/app.py            | 25 ++---------------
 3 files changed, 50 insertions(+), 25 deletions(-)
 create mode 100644 database_api/is_machai_user.py

diff --git a/database_api/is_machai_user.py b/database_api/is_machai_user.py
new file mode 100644
index 00000000..487a3e50
--- /dev/null
+++ b/database_api/is_machai_user.py
@@ -0,0 +1,39 @@
+"""Check whether a user_id belongs to a MachAI iframe user."""
+import logging
+import os
+import uuid
+
+from database_api.planexe_db_singleton import db
+from database_api.model_user_account import UserAccount
+
+logger = logging.getLogger(__name__)
+
+
+def is_machai_user(user_id: str) -> bool:
+    """Return True if *user_id* belongs to a MachAI iframe user.
+
+    Registered users (home.planexe.org sign-ups, docker admin) use UUID
+    identifiers and exist in the UserAccount table.  MachAI iframe users
+    use opaque, non-UUID strings and are *not* in the table.
+
+    Must be called inside a Flask app context.
+    """
+    # Registered users and admins use UUIDs as their user_id.
+    try:
+        user_uuid = uuid.UUID(str(user_id))
+        user = db.session.get(UserAccount, user_uuid)
+        if user is not None:
+            logger.debug("is_machai_user: user_id %r found in database — not a MachAI user.", user_id)
+            return False
+    except (ValueError, AttributeError):
+        pass
+
+    # Fallback admin username (non-UUID string like "admin").
+    admin_username = os.environ.get("PLANEXE_FRONTEND_MULTIUSER_ADMIN_USERNAME", "")
+    if admin_username and user_id == admin_username:
+        logger.debug("is_machai_user: user_id %r matches admin username — not a MachAI user.", user_id)
+        return False
+
+    # Unknown user — likely a MachAI iframe user.
+    logger.debug("is_machai_user: user_id %r is unknown — treating as MachAI user.", user_id)
+    return True
diff --git a/frontend_multi_user/src/plan_routes.py b/frontend_multi_user/src/plan_routes.py
index 11d421f6..8be9bcba 100644
--- a/frontend_multi_user/src/plan_routes.py
+++ b/frontend_multi_user/src/plan_routes.py
@@ -877,7 +877,6 @@ def get_progress():
 
 
 @plan_routes_bp.route("/viewplan")
-@login_required
 def viewplan():
     run_id = request.args.get("run_id", "")
     logger.info("ViewPlan endpoint requested for run_id: %r", run_id)
@@ -885,7 +884,15 @@ def viewplan():
     if task is None:
         logger.error("Task not found for run_id: %r", run_id)
         return jsonify({"error": "Task not found"}), 400
-    if not current_user.is_admin and str(task.user_id) != str(current_user.id):
+
+    from database_api.is_machai_user import is_machai_user
+    if is_machai_user(str(task.user_id)):
+        # MachAI iframe users can view their plan without login.
+        logger.info("ViewPlan: MachAI user, skipping auth for run_id=%s", run_id)
+    elif not current_user.is_authenticated:
+        # Non-MachAI plan requires login.
+        return current_app.login_manager.unauthorized()
+    elif not current_user.is_admin and str(task.user_id) != str(current_user.id):
         logger.warning("Unauthorized report access attempt. run_id=%s user_id=%s", run_id, current_user.id)
         return jsonify({"error": "Forbidden"}), 403
 
diff --git a/worker_plan_database/app.py b/worker_plan_database/app.py
index 36b32819..dfebcb50 100644
--- a/worker_plan_database/app.py
+++ b/worker_plan_database/app.py
@@ -829,31 +829,10 @@ def _credits_for_usd(usd_amount: float) -> Decimal:
 def _should_send_to_machai(user_id: str) -> bool:
     """Return True only for MachAI iframe users (not registered in the database).
 
-    Registered users (home.planexe.org sign-ups, docker admin) and admin
-    accounts should NOT have their plan data sent to MachAI.
-    MachAI iframe users use non-UUID identifiers and are not in the UserAccount table.
-
     Must be called inside a Flask app context.
     """
-    # Registered users and admins use UUIDs as their user_id.
-    try:
-        user_uuid = uuid.UUID(str(user_id))
-        user = db.session.get(UserAccount, user_uuid)
-        if user is not None:
-            logger.debug("_should_send_to_machai: user_id %r found in database, skipping MachAI.", user_id)
-            return False
-    except (ValueError, AttributeError):
-        pass
-
-    # Fallback admin username (non-UUID string like "admin").
-    admin_username = os.environ.get("PLANEXE_FRONTEND_MULTIUSER_ADMIN_USERNAME", "")
-    if admin_username and user_id == admin_username:
-        logger.debug("_should_send_to_machai: user_id %r matches admin username, skipping MachAI.", user_id)
-        return False
-
-    # Unknown user — likely a MachAI iframe user.
-    logger.debug("_should_send_to_machai: user_id %r is unknown, will send to MachAI.", user_id)
-    return True
+    from database_api.is_machai_user import is_machai_user
+    return is_machai_user(user_id)
 
 
 def _resolve_user_for_billing(task_user_id: str) -> Optional[UserAccount]:

From 4701e4b1641aef02560ad82c25576f8b7085d60a Mon Sep 17 00:00:00 2001
From: Simon Strandgaard <neoneye@gmail.com>
Date: Tue, 14 Apr 2026 20:51:48 +0200
Subject: [PATCH 02/13] refactor: rename /viewplan parameter from run_id to
 plan_id

Accept plan_id as the primary parameter, fall back to run_id for
backwards compatibility. Update all internal links.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 frontend_multi_user/src/plan_routes.py              | 8 ++++----
 frontend_multi_user/src/planexe_modelviews.py       | 2 +-
 frontend_multi_user/templates/plan_iframe.html      | 2 +-
 frontend_multi_user/templates/run_via_database.html | 2 +-
 4 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/frontend_multi_user/src/plan_routes.py b/frontend_multi_user/src/plan_routes.py
index 8be9bcba..7f3b8721 100644
--- a/frontend_multi_user/src/plan_routes.py
+++ b/frontend_multi_user/src/plan_routes.py
@@ -878,11 +878,11 @@ def get_progress():
 
 @plan_routes_bp.route("/viewplan")
 def viewplan():
-    run_id = request.args.get("run_id", "")
-    logger.info("ViewPlan endpoint requested for run_id: %r", run_id)
-    task = db.session.get(PlanItem, run_id)
+    plan_id = request.args.get("plan_id") or request.args.get("run_id", "")
+    logger.info("ViewPlan endpoint requested for plan_id: %r", plan_id)
+    task = db.session.get(PlanItem, plan_id)
     if task is None:
-        logger.error("Task not found for run_id: %r", run_id)
+        logger.error("Task not found for plan_id: %r", plan_id)
         return jsonify({"error": "Task not found"}), 400
 
     from database_api.is_machai_user import is_machai_user
diff --git a/frontend_multi_user/src/planexe_modelviews.py b/frontend_multi_user/src/planexe_modelviews.py
index 6071ca14..a995d416 100644
--- a/frontend_multi_user/src/planexe_modelviews.py
+++ b/frontend_multi_user/src/planexe_modelviews.py
@@ -143,7 +143,7 @@ class PlanItemView(AdminOnlyModelView):
         ),
         'prompt': lambda v, c, m, p: m.prompt[:100] + '...' if m.prompt and len(m.prompt) > 100 else m.prompt,
         'view_plan': lambda v, c, m, p: Markup(
-            f'<a href="/viewplan?run_id={m.id}" target="_blank">View</a>'
+            f'<a href="/viewplan?plan_id={m.id}" target="_blank">View</a>'
         ) if m.has_generated_report_html else '—',
         'generated_report_html': lambda v, c, m, p: Markup(
             f'<a href="{url_for("downloads.download_task_report", task_id=str(m.id))}">Download</a>'
diff --git a/frontend_multi_user/templates/plan_iframe.html b/frontend_multi_user/templates/plan_iframe.html
index c868069e..54c6d89b 100644
--- a/frontend_multi_user/templates/plan_iframe.html
+++ b/frontend_multi_user/templates/plan_iframe.html
@@ -724,7 +724,7 @@
 <div class="plan-frame-wrap">
     <iframe
         class="plan-frame"
-        src="{% if task.has_generated_report_html %}{{ url_for('plan_routes.viewplan') }}?run_id={{ run_id }}{% else %}{{ url_for('plan_routes.run_status') }}?id={{ run_id }}{% endif %}"
+        src="{% if task.has_generated_report_html %}{{ url_for('plan_routes.viewplan') }}?plan_id={{ run_id }}{% else %}{{ url_for('plan_routes.run_status') }}?id={{ run_id }}{% endif %}"
         title="Plan report"
         loading="eager"
         referrerpolicy="no-referrer"
diff --git a/frontend_multi_user/templates/run_via_database.html b/frontend_multi_user/templates/run_via_database.html
index 7604954f..daeb280c 100644
--- a/frontend_multi_user/templates/run_via_database.html
+++ b/frontend_multi_user/templates/run_via_database.html
@@ -181,7 +181,7 @@
                         // Clear the timers when completed
                         schedule_next_do_nothing = true;
                         // when the operation has completed redirect to the viewplan page
-                        window.location.href = `/viewplan?run_id={{ run_id }}`;
+                        window.location.href = `/viewplan?plan_id={{ run_id }}`;
                     }
                 })
                 .catch(error => {

From d53ad34bb3668d20612d568f57567a08eca6dec6 Mon Sep 17 00:00:00 2001
From: Simon Strandgaard <neoneye@gmail.com>
Date: Tue, 14 Apr 2026 20:53:27 +0200
Subject: [PATCH 03/13] refactor: rename run_id template variable to plan_id

Update render_template calls and all Jinja references in
run_via_database.html and plan_iframe.html.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 frontend_multi_user/src/plan_routes.py              | 6 +++---
 frontend_multi_user/templates/plan_iframe.html      | 2 +-
 frontend_multi_user/templates/run_via_database.html | 4 ++--
 3 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/frontend_multi_user/src/plan_routes.py b/frontend_multi_user/src/plan_routes.py
index 7f3b8721..0740ede8 100644
--- a/frontend_multi_user/src/plan_routes.py
+++ b/frontend_multi_user/src/plan_routes.py
@@ -699,7 +699,7 @@ def run():
     event = _new_model(EventItem, event_type=EventType.TASK_PENDING, message="Enqueued task via /run endpoint", context=event_context)
     db.session.add(event)
     db.session.commit()
-    return render_template("run_via_database.html", run_id=task_id)
+    return render_template("run_via_database.html", plan_id=task_id)
 
 
 @plan_routes_bp.route("/plan/create", methods=["GET"])
@@ -847,7 +847,7 @@ def run_status():
         return jsonify({"error": "Task not found"}), 400
     if not current_user.is_admin and str(task.user_id) != str(current_user.id):
         return jsonify({"error": "Forbidden"}), 403
-    return render_template("run_via_database.html", run_id=run_id)
+    return render_template("run_via_database.html", plan_id=run_id)
 
 
 @plan_routes_bp.route("/progress")
@@ -982,7 +982,7 @@ def plan():
     resume_error = request.args.get("resume_error", "")
     return render_template(
         "plan_iframe.html",
-        run_id=run_id,
+        plan_id=run_id,
         task=task,
         telemetry=telemetry,
         failure_trace=failure_trace,
diff --git a/frontend_multi_user/templates/plan_iframe.html b/frontend_multi_user/templates/plan_iframe.html
index 54c6d89b..d948e2b4 100644
--- a/frontend_multi_user/templates/plan_iframe.html
+++ b/frontend_multi_user/templates/plan_iframe.html
@@ -724,7 +724,7 @@
 <div class="plan-frame-wrap">
     <iframe
         class="plan-frame"
-        src="{% if task.has_generated_report_html %}{{ url_for('plan_routes.viewplan') }}?plan_id={{ run_id }}{% else %}{{ url_for('plan_routes.run_status') }}?id={{ run_id }}{% endif %}"
+        src="{% if task.has_generated_report_html %}{{ url_for('plan_routes.viewplan') }}?plan_id={{ plan_id }}{% else %}{{ url_for('plan_routes.run_status') }}?id={{ plan_id }}{% endif %}"
         title="Plan report"
         loading="eager"
         referrerpolicy="no-referrer"
diff --git a/frontend_multi_user/templates/run_via_database.html b/frontend_multi_user/templates/run_via_database.html
index daeb280c..5381c142 100644
--- a/frontend_multi_user/templates/run_via_database.html
+++ b/frontend_multi_user/templates/run_via_database.html
@@ -120,7 +120,7 @@
         }
         
         function poll() {
-            fetch(`/progress?run_id={{ run_id }}`, { cache: 'no-cache' })
+            fetch(`/progress?run_id={{ plan_id }}`, { cache: 'no-cache' })
                 .then(response => {
                     console.log('Response status:', response.status);
                     console.log("Response headers:");
@@ -181,7 +181,7 @@
                         // Clear the timers when completed
                         schedule_next_do_nothing = true;
                         // when the operation has completed redirect to the viewplan page
-                        window.location.href = `/viewplan?plan_id={{ run_id }}`;
+                        window.location.href = `/viewplan?plan_id={{ plan_id }}`;
                     }
                 })
                 .catch(error => {

From 29d1015f075894464da81f16adac290fd1642bb4 Mon Sep 17 00:00:00 2001
From: Simon Strandgaard <neoneye@gmail.com>
Date: Tue, 14 Apr 2026 20:54:15 +0200
Subject: [PATCH 04/13] refactor: rename /progress parameter from run_id to
 plan_id

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 frontend_multi_user/src/plan_routes.py              | 10 +++++-----
 frontend_multi_user/templates/run_via_database.html |  2 +-
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/frontend_multi_user/src/plan_routes.py b/frontend_multi_user/src/plan_routes.py
index 0740ede8..69e6101b 100644
--- a/frontend_multi_user/src/plan_routes.py
+++ b/frontend_multi_user/src/plan_routes.py
@@ -852,11 +852,11 @@ def run_status():
 
 @plan_routes_bp.route("/progress")
 def get_progress():
-    run_id = request.args.get("run_id", "")
-    logger.debug("Progress endpoint received run_id: %r", run_id)
-    task = db.session.get(PlanItem, run_id)
+    plan_id = request.args.get("plan_id") or request.args.get("run_id", "")
+    logger.debug("Progress endpoint received plan_id: %r", plan_id)
+    task = db.session.get(PlanItem, plan_id)
     if task is None:
-        logger.error("Task not found for run_id: %r", run_id)
+        logger.error("Task not found for plan_id: %r", plan_id)
         return jsonify({"error": "Task not found"}), 400
 
     progress_percentage = float(task.progress_percentage) if task.progress_percentage is not None else 0.0
@@ -870,7 +870,7 @@ def get_progress():
         task.last_seen_timestamp = datetime.now(UTC)
         db.session.commit()
     except Exception as e:
-        logger.error("get_progress, error updating last_seen_timestamp for task %r: %s", run_id, e, exc_info=True)
+        logger.error("get_progress, error updating last_seen_timestamp for task %r: %s", plan_id, e, exc_info=True)
         db.session.rollback()
 
     return jsonify({"progress_percentage": progress_percentage, "progress_message": progress_message, "status": status}), 200
diff --git a/frontend_multi_user/templates/run_via_database.html b/frontend_multi_user/templates/run_via_database.html
index 5381c142..11b4e626 100644
--- a/frontend_multi_user/templates/run_via_database.html
+++ b/frontend_multi_user/templates/run_via_database.html
@@ -120,7 +120,7 @@
         }
         
         function poll() {
-            fetch(`/progress?run_id={{ plan_id }}`, { cache: 'no-cache' })
+            fetch(`/progress?plan_id={{ plan_id }}`, { cache: 'no-cache' })
                 .then(response => {
                     console.log('Response status:', response.status);
                     console.log("Response headers:");

From 6eb43dc1a7359f438deda47bcf1c3dc0aee1b8c4 Mon Sep 17 00:00:00 2001
From: Simon Strandgaard <neoneye@gmail.com>
Date: Tue, 14 Apr 2026 20:55:01 +0200
Subject: [PATCH 05/13] chore: remove run_id fallback from /viewplan and
 /progress

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 frontend_multi_user/src/plan_routes.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/frontend_multi_user/src/plan_routes.py b/frontend_multi_user/src/plan_routes.py
index 69e6101b..57d5a381 100644
--- a/frontend_multi_user/src/plan_routes.py
+++ b/frontend_multi_user/src/plan_routes.py
@@ -852,7 +852,7 @@ def run_status():
 
 @plan_routes_bp.route("/progress")
 def get_progress():
-    plan_id = request.args.get("plan_id") or request.args.get("run_id", "")
+    plan_id = request.args.get("plan_id", "")
     logger.debug("Progress endpoint received plan_id: %r", plan_id)
     task = db.session.get(PlanItem, plan_id)
     if task is None:
@@ -878,7 +878,7 @@ def get_progress():
 
 @plan_routes_bp.route("/viewplan")
 def viewplan():
-    plan_id = request.args.get("plan_id") or request.args.get("run_id", "")
+    plan_id = request.args.get("plan_id", "")
     logger.info("ViewPlan endpoint requested for plan_id: %r", plan_id)
     task = db.session.get(PlanItem, plan_id)
     if task is None:

From 75f6a1f3a1443cd8029c6e6a8e68d2c268268dc4 Mon Sep 17 00:00:00 2001
From: Simon Strandgaard <neoneye@gmail.com>
Date: Tue, 14 Apr 2026 20:56:15 +0200
Subject: [PATCH 06/13] chore: rename task to plan in get_progress

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 frontend_multi_user/src/plan_routes.py | 24 ++++++++++++------------
 1 file changed, 12 insertions(+), 12 deletions(-)

diff --git a/frontend_multi_user/src/plan_routes.py b/frontend_multi_user/src/plan_routes.py
index 57d5a381..e59f22f3 100644
--- a/frontend_multi_user/src/plan_routes.py
+++ b/frontend_multi_user/src/plan_routes.py
@@ -854,23 +854,23 @@ def run_status():
 def get_progress():
     plan_id = request.args.get("plan_id", "")
     logger.debug("Progress endpoint received plan_id: %r", plan_id)
-    task = db.session.get(PlanItem, plan_id)
-    if task is None:
-        logger.error("Task not found for plan_id: %r", plan_id)
-        return jsonify({"error": "Task not found"}), 400
-
-    progress_percentage = float(task.progress_percentage) if task.progress_percentage is not None else 0.0
-    progress_message = task.progress_message if task.progress_message is not None else ""
-    if isinstance(task.state, PlanState):
-        status = task.state.name
+    plan = db.session.get(PlanItem, plan_id)
+    if plan is None:
+        logger.error("Plan not found for plan_id: %r", plan_id)
+        return jsonify({"error": "Plan not found"}), 400
+
+    progress_percentage = float(plan.progress_percentage) if plan.progress_percentage is not None else 0.0
+    progress_message = plan.progress_message if plan.progress_message is not None else ""
+    if isinstance(plan.state, PlanState):
+        status = plan.state.name
     else:
-        status = f"unknown-{task.state}"
+        status = f"unknown-{plan.state}"
 
     try:
-        task.last_seen_timestamp = datetime.now(UTC)
+        plan.last_seen_timestamp = datetime.now(UTC)
         db.session.commit()
     except Exception as e:
-        logger.error("get_progress, error updating last_seen_timestamp for task %r: %s", plan_id, e, exc_info=True)
+        logger.error("get_progress, error updating last_seen_timestamp for plan %r: %s", plan_id, e, exc_info=True)
         db.session.rollback()
 
     return jsonify({"progress_percentage": progress_percentage, "progress_message": progress_message, "status": status}), 200

From 04b8947bc7823d19ea8446ab84e0c98c818c5801 Mon Sep 17 00:00:00 2001
From: Simon Strandgaard <neoneye@gmail.com>
Date: Tue, 14 Apr 2026 20:57:20 +0200
Subject: [PATCH 07/13] chore: rename task to plan in viewplan

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 frontend_multi_user/src/plan_routes.py | 28 +++++++++++++-------------
 1 file changed, 14 insertions(+), 14 deletions(-)

diff --git a/frontend_multi_user/src/plan_routes.py b/frontend_multi_user/src/plan_routes.py
index e59f22f3..8197e3e6 100644
--- a/frontend_multi_user/src/plan_routes.py
+++ b/frontend_multi_user/src/plan_routes.py
@@ -880,36 +880,36 @@ def get_progress():
 def viewplan():
     plan_id = request.args.get("plan_id", "")
     logger.info("ViewPlan endpoint requested for plan_id: %r", plan_id)
-    task = db.session.get(PlanItem, plan_id)
-    if task is None:
-        logger.error("Task not found for plan_id: %r", plan_id)
-        return jsonify({"error": "Task not found"}), 400
+    plan = db.session.get(PlanItem, plan_id)
+    if plan is None:
+        logger.error("Plan not found for plan_id: %r", plan_id)
+        return jsonify({"error": "Plan not found"}), 400
 
     from database_api.is_machai_user import is_machai_user
-    if is_machai_user(str(task.user_id)):
+    if is_machai_user(str(plan.user_id)):
         # MachAI iframe users can view their plan without login.
-        logger.info("ViewPlan: MachAI user, skipping auth for run_id=%s", run_id)
+        logger.info("ViewPlan: MachAI user, skipping auth for plan_id=%s", plan_id)
     elif not current_user.is_authenticated:
         # Non-MachAI plan requires login.
         return current_app.login_manager.unauthorized()
-    elif not current_user.is_admin and str(task.user_id) != str(current_user.id):
-        logger.warning("Unauthorized report access attempt. run_id=%s user_id=%s", run_id, current_user.id)
+    elif not current_user.is_admin and str(plan.user_id) != str(current_user.id):
+        logger.warning("Unauthorized report access attempt. plan_id=%s user_id=%s", plan_id, current_user.id)
         return jsonify({"error": "Forbidden"}), 403
 
     if SHOW_DEMO_PLAN:
         planexe_run_dir = current_app.config["PLANEXE_RUN_DIR"]
-        run_id_val = "20250524_universal_manufacturing"
-        run_id_dir = (planexe_run_dir / run_id_val).absolute()
-        path_to_html_file = run_id_dir / FilenameEnum.REPORT.value
+        demo_plan_id = "20250524_universal_manufacturing"
+        demo_plan_dir = (planexe_run_dir / demo_plan_id).absolute()
+        path_to_html_file = demo_plan_dir / FilenameEnum.REPORT.value
         if not path_to_html_file.exists():
             return jsonify({"error": "Demo report not found"}), 404
         return send_file(str(path_to_html_file), mimetype="text/html")
 
-    if not task.generated_report_html:
-        logger.error("Report HTML not found for run_id=%s", run_id)
+    if not plan.generated_report_html:
+        logger.error("Report HTML not found for plan_id=%s", plan_id)
         return jsonify({"error": "Report not available"}), 404
 
-    response = make_response(task.generated_report_html)
+    response = make_response(plan.generated_report_html)
     response.headers["Content-Type"] = "text/html"
     return response
 

From dce0bf7a62ea923e11b4ad54a9a4e5e5089cf2a7 Mon Sep 17 00:00:00 2001
From: Simon Strandgaard <neoneye@gmail.com>
Date: Tue, 14 Apr 2026 21:12:02 +0200
Subject: [PATCH 08/13] refactor: rename run_id local variables to plan_id in
 plan_routes and downloads

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 frontend_multi_user/src/downloads.py   | 10 ++---
 frontend_multi_user/src/plan_routes.py | 54 +++++++++++++-------------
 2 files changed, 32 insertions(+), 32 deletions(-)

diff --git a/frontend_multi_user/src/downloads.py b/frontend_multi_user/src/downloads.py
index 85d661eb..cc651521 100644
--- a/frontend_multi_user/src/downloads.py
+++ b/frontend_multi_user/src/downloads.py
@@ -62,8 +62,8 @@ def _sanitize_legacy_run_zip_for_download(run_zip_snapshot: bytes) -> Optional[i
 @downloads_bp.route("/plan/download/report")
 @login_required
 def plan_download_report():
-    run_id = request.args.get("id", "")
-    task = db.session.get(PlanItem, run_id)
+    plan_id = request.args.get("id", "")
+    task = db.session.get(PlanItem, plan_id)
     if task is None:
         return jsonify({"error": "Task not found"}), 400
     if not current_user.is_admin and str(task.user_id) != str(current_user.id):
@@ -79,8 +79,8 @@ def plan_download_report():
 @downloads_bp.route("/plan/download/zip")
 @login_required
 def plan_download_zip():
-    run_id = request.args.get("id", "")
-    task = db.session.get(PlanItem, run_id)
+    plan_id = request.args.get("id", "")
+    task = db.session.get(PlanItem, plan_id)
     if task is None:
         return jsonify({"error": "Task not found"}), 400
     if not current_user.is_admin and str(task.user_id) != str(current_user.id):
@@ -95,7 +95,7 @@ def plan_download_zip():
     else:
         buffer = _sanitize_legacy_run_zip_for_download(task.run_zip_snapshot)
         if buffer is None:
-            logger.error("Invalid legacy run zip snapshot for run_id=%s", run_id)
+            logger.error("Invalid legacy run zip snapshot for plan_id=%s", plan_id)
             return jsonify({"error": "Run zip is invalid"}), 500
 
     download_name = f"{task.id}.zip"
diff --git a/frontend_multi_user/src/plan_routes.py b/frontend_multi_user/src/plan_routes.py
index 8197e3e6..73a35baa 100644
--- a/frontend_multi_user/src/plan_routes.py
+++ b/frontend_multi_user/src/plan_routes.py
@@ -841,13 +841,13 @@ def create_plan():
 @login_required
 @_nocache
 def run_status():
-    run_id = request.args.get("id", "")
-    task = db.session.get(PlanItem, run_id)
+    plan_id = request.args.get("id", "")
+    task = db.session.get(PlanItem, plan_id)
     if task is None:
         return jsonify({"error": "Task not found"}), 400
     if not current_user.is_admin and str(task.user_id) != str(current_user.id):
         return jsonify({"error": "Forbidden"}), 403
-    return render_template("run_via_database.html", plan_id=run_id)
+    return render_template("run_via_database.html", plan_id=plan_id)
 
 
 @plan_routes_bp.route("/progress")
@@ -918,9 +918,9 @@ def viewplan():
 @login_required
 def plan():
     from types import SimpleNamespace
-    run_id = request.args.get("id", "").strip()
+    plan_id = request.args.get("id", "").strip()
 
-    if not run_id:
+    if not plan_id:
         user_id = str(current_user.id)
         uid_filter = (
             PlanItem.user_id.in_(_admin_user_ids())
@@ -965,13 +965,13 @@ def plan():
             })
         return render_template("plan_list.html", plan_rows=rows)
 
-    logger.info("Plan iframe wrapper requested for run_id: %r", run_id)
-    task = db.session.get(PlanItem, run_id)
+    logger.info("Plan iframe wrapper requested for plan_id: %r", plan_id)
+    task = db.session.get(PlanItem, plan_id)
     if task is None:
-        logger.error("Task not found for run_id: %r", run_id)
+        logger.error("Task not found for plan_id: %r", plan_id)
         return jsonify({"error": "Task not found"}), 400
     if not current_user.is_admin and str(task.user_id) != str(current_user.id):
-        logger.warning("Unauthorized plan wrapper access attempt. run_id=%s user_id=%s", run_id, current_user.id)
+        logger.warning("Unauthorized plan wrapper access attempt. plan_id=%s user_id=%s", plan_id, current_user.id)
         return jsonify({"error": "Forbidden"}), 403
 
     telemetry = _build_plan_telemetry(task, include_raw=False)
@@ -982,7 +982,7 @@ def plan():
     resume_error = request.args.get("resume_error", "")
     return render_template(
         "plan_iframe.html",
-        plan_id=run_id,
+        plan_id=plan_id,
         task=task,
         telemetry=telemetry,
         failure_trace=failure_trace,
@@ -1191,29 +1191,29 @@ def plan_resume_from_zip_upload():
 @plan_routes_bp.route("/plan/stop", methods=["POST"])
 @login_required
 def plan_stop():
-    run_id = request.form.get("id", "").strip()
-    task = db.session.get(PlanItem, run_id)
+    plan_id = request.form.get("id", "").strip()
+    task = db.session.get(PlanItem, plan_id)
     if task is None:
         return jsonify({"error": "Task not found"}), 400
     if not current_user.is_admin and str(task.user_id) != str(current_user.id):
         return jsonify({"error": "Forbidden"}), 403
     if task.state == PlanState.completed or bool(task.has_generated_report_html):
-        logger.info("Ignoring stop request for already completed task %s", run_id)
-        return redirect(url_for("plan_routes.plan", id=run_id))
+        logger.info("Ignoring stop request for already completed plan %s", plan_id)
+        return redirect(url_for("plan_routes.plan", id=plan_id))
     task.stop_requested = True
     task.stop_requested_timestamp = datetime.now(UTC)
     if task.state in (PlanState.pending, PlanState.processing):
         task.state = PlanState.stopped
         task.progress_message = "Stop requested by user."
     db.session.commit()
-    return redirect(url_for("plan_routes.plan", id=run_id))
+    return redirect(url_for("plan_routes.plan", id=plan_id))
 
 
 @plan_routes_bp.route("/plan/retry", methods=["POST"])
 @login_required
 def plan_retry():
-    run_id = request.form.get("id", "").strip()
-    task = db.session.get(PlanItem, run_id)
+    plan_id = request.form.get("id", "").strip()
+    task = db.session.get(PlanItem, plan_id)
     if task is None:
         return jsonify({"error": "Task not found"}), 400
     if not current_user.is_admin and str(task.user_id) != str(current_user.id):
@@ -1251,26 +1251,26 @@ def plan_retry():
     ).update({"source": "usage_billing_settled"})
 
     db.session.commit()
-    return redirect(url_for("plan_routes.plan", id=run_id))
+    return redirect(url_for("plan_routes.plan", id=plan_id))
 
 
 @plan_routes_bp.route("/plan/resume", methods=["POST"])
 @login_required
 def plan_resume():
     from flask import abort
-    run_id = request.form.get("id", "").strip()
-    task = db.session.get(PlanItem, run_id)
+    plan_id = request.form.get("id", "").strip()
+    task = db.session.get(PlanItem, plan_id)
     if task is None:
         abort(404)
     if not current_user.is_admin and str(task.user_id) != str(current_user.id):
         abort(403)
     if task.state not in (PlanState.failed, PlanState.stopped):
-        return redirect(url_for("plan_routes.plan", id=run_id))
+        return redirect(url_for("plan_routes.plan", id=plan_id))
 
     stored_params = task.parameters if isinstance(task.parameters, dict) else {}
     stored_version = stored_params.get("pipeline_version")
     if stored_version is not None and stored_version != PIPELINE_VERSION:
-        return redirect(url_for("plan_routes.plan", id=run_id, resume_error="version_mismatch"))
+        return redirect(url_for("plan_routes.plan", id=plan_id, resume_error="version_mismatch"))
 
     raw_profile = request.form.get("model_profile")
     selected_model_profile = normalize_model_profile(raw_profile).value
@@ -1312,14 +1312,14 @@ def plan_resume():
     db.session.add(event)
     db.session.commit()
 
-    return redirect(url_for("plan_routes.plan", id=run_id))
+    return redirect(url_for("plan_routes.plan", id=plan_id))
 
 
 @plan_routes_bp.route("/plan/meta")
 @login_required
 def plan_meta():
-    run_id = request.args.get("id", "").strip()
-    task = db.session.get(PlanItem, run_id)
+    plan_id = request.args.get("id", "").strip()
+    task = db.session.get(PlanItem, plan_id)
     if task is None:
         return jsonify({"error": "Task not found"}), 400
     if not current_user.is_admin and str(task.user_id) != str(current_user.id):
@@ -1353,8 +1353,8 @@ def plan_view_mode():
 @plan_routes_bp.route("/plan/telemetry")
 @login_required
 def plan_telemetry():
-    run_id = request.args.get("id", "").strip()
-    task = db.session.get(PlanItem, run_id)
+    plan_id = request.args.get("id", "").strip()
+    task = db.session.get(PlanItem, plan_id)
     if task is None:
         return jsonify({"error": "Task not found"}), 400
     if not current_user.is_admin and str(task.user_id) != str(current_user.id):

From 2b8590bf2128d8bc980ff5e1b12df4f8a5769fe8 Mon Sep 17 00:00:00 2001
From: Simon Strandgaard <neoneye@gmail.com>
Date: Tue, 14 Apr 2026 21:13:48 +0200
Subject: [PATCH 09/13] refactor: rename task to plan in downloads.py

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 frontend_multi_user/src/downloads.py | 32 ++++++++++++++--------------
 1 file changed, 16 insertions(+), 16 deletions(-)

diff --git a/frontend_multi_user/src/downloads.py b/frontend_multi_user/src/downloads.py
index cc651521..e537d6ab 100644
--- a/frontend_multi_user/src/downloads.py
+++ b/frontend_multi_user/src/downloads.py
@@ -63,16 +63,16 @@ def _sanitize_legacy_run_zip_for_download(run_zip_snapshot: bytes) -> Optional[i
 @login_required
 def plan_download_report():
     plan_id = request.args.get("id", "")
-    task = db.session.get(PlanItem, plan_id)
-    if task is None:
-        return jsonify({"error": "Task not found"}), 400
-    if not current_user.is_admin and str(task.user_id) != str(current_user.id):
+    plan = db.session.get(PlanItem, plan_id)
+    if plan is None:
+        return jsonify({"error": "Plan not found"}), 400
+    if not current_user.is_admin and str(plan.user_id) != str(current_user.id):
         return jsonify({"error": "Forbidden"}), 403
-    if not task.generated_report_html:
+    if not plan.generated_report_html:
         return jsonify({"error": "Report not available"}), 404
-    buffer = io.BytesIO(task.generated_report_html.encode("utf-8"))
+    buffer = io.BytesIO(plan.generated_report_html.encode("utf-8"))
     buffer.seek(0)
-    download_name = f"{task.id}-report.html"
+    download_name = f"{plan.id}-report.html"
     return send_file(buffer, mimetype="text/html", as_attachment=True, download_name=download_name)
 
 
@@ -80,25 +80,25 @@ def plan_download_report():
 @login_required
 def plan_download_zip():
     plan_id = request.args.get("id", "")
-    task = db.session.get(PlanItem, plan_id)
-    if task is None:
-        return jsonify({"error": "Task not found"}), 400
-    if not current_user.is_admin and str(task.user_id) != str(current_user.id):
+    plan = db.session.get(PlanItem, plan_id)
+    if plan is None:
+        return jsonify({"error": "Plan not found"}), 400
+    if not current_user.is_admin and str(plan.user_id) != str(current_user.id):
         return jsonify({"error": "Forbidden"}), 403
-    if not task.run_zip_snapshot:
+    if not plan.run_zip_snapshot:
         return jsonify({"error": "Run zip not available"}), 404
 
-    layout_version = safe_int(getattr(task, "run_artifact_layout_version", None)) or 0
+    layout_version = safe_int(getattr(plan, "run_artifact_layout_version", None)) or 0
     if layout_version >= 2:
-        buffer = io.BytesIO(task.run_zip_snapshot)
+        buffer = io.BytesIO(plan.run_zip_snapshot)
         buffer.seek(0)
     else:
-        buffer = _sanitize_legacy_run_zip_for_download(task.run_zip_snapshot)
+        buffer = _sanitize_legacy_run_zip_for_download(plan.run_zip_snapshot)
         if buffer is None:
             logger.error("Invalid legacy run zip snapshot for plan_id=%s", plan_id)
             return jsonify({"error": "Run zip is invalid"}), 500
 
-    download_name = f"{task.id}.zip"
+    download_name = f"{plan.id}.zip"
     return send_file(buffer, mimetype="application/zip", as_attachment=True, download_name=download_name)
 
 

From 3655e0fed838a0092fca60710bb789afe7c6f6e7 Mon Sep 17 00:00:00 2001
From: Simon Strandgaard <neoneye@gmail.com>
Date: Tue, 14 Apr 2026 21:15:01 +0200
Subject: [PATCH 10/13] chore: rename "Run zip" to "Plan zip" in error messages

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 frontend_multi_user/src/downloads.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/frontend_multi_user/src/downloads.py b/frontend_multi_user/src/downloads.py
index e537d6ab..7af4b925 100644
--- a/frontend_multi_user/src/downloads.py
+++ b/frontend_multi_user/src/downloads.py
@@ -86,7 +86,7 @@ def plan_download_zip():
     if not current_user.is_admin and str(plan.user_id) != str(current_user.id):
         return jsonify({"error": "Forbidden"}), 403
     if not plan.run_zip_snapshot:
-        return jsonify({"error": "Run zip not available"}), 404
+        return jsonify({"error": "Plan zip not available"}), 404
 
     layout_version = safe_int(getattr(plan, "run_artifact_layout_version", None)) or 0
     if layout_version >= 2:
@@ -96,7 +96,7 @@ def plan_download_zip():
         buffer = _sanitize_legacy_run_zip_for_download(plan.run_zip_snapshot)
         if buffer is None:
             logger.error("Invalid legacy run zip snapshot for plan_id=%s", plan_id)
-            return jsonify({"error": "Run zip is invalid"}), 500
+            return jsonify({"error": "Plan zip is invalid"}), 500
 
     download_name = f"{plan.id}.zip"
     return send_file(buffer, mimetype="application/zip", as_attachment=True, download_name=download_name)

From dcf88ffae5f13a185892f969b8ae5b31360aed64 Mon Sep 17 00:00:00 2001
From: Simon Strandgaard <neoneye@gmail.com>
Date: Tue, 14 Apr 2026 21:17:49 +0200
Subject: [PATCH 11/13] refactor: rename task to plan in plan_routes.py and
 plan_iframe.html

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 frontend_multi_user/src/plan_routes.py        | 178 +++++++++---------
 .../templates/plan_iframe.html                |  40 ++--
 2 files changed, 109 insertions(+), 109 deletions(-)

diff --git a/frontend_multi_user/src/plan_routes.py b/frontend_multi_user/src/plan_routes.py
index 73a35baa..78893122 100644
--- a/frontend_multi_user/src/plan_routes.py
+++ b/frontend_multi_user/src/plan_routes.py
@@ -842,10 +842,10 @@ def create_plan():
 @_nocache
 def run_status():
     plan_id = request.args.get("id", "")
-    task = db.session.get(PlanItem, plan_id)
-    if task is None:
-        return jsonify({"error": "Task not found"}), 400
-    if not current_user.is_admin and str(task.user_id) != str(current_user.id):
+    plan = db.session.get(PlanItem, plan_id)
+    if plan is None:
+        return jsonify({"error": "Plan not found"}), 400
+    if not current_user.is_admin and str(plan.user_id) != str(current_user.id):
         return jsonify({"error": "Forbidden"}), 403
     return render_template("run_via_database.html", plan_id=plan_id)
 
@@ -966,24 +966,24 @@ def plan():
         return render_template("plan_list.html", plan_rows=rows)
 
     logger.info("Plan iframe wrapper requested for plan_id: %r", plan_id)
-    task = db.session.get(PlanItem, plan_id)
-    if task is None:
-        logger.error("Task not found for plan_id: %r", plan_id)
-        return jsonify({"error": "Task not found"}), 400
-    if not current_user.is_admin and str(task.user_id) != str(current_user.id):
+    plan = db.session.get(PlanItem, plan_id)
+    if plan is None:
+        logger.error("Plan not found for plan_id: %r", plan_id)
+        return jsonify({"error": "Plan not found"}), 400
+    if not current_user.is_admin and str(plan.user_id) != str(current_user.id):
         logger.warning("Unauthorized plan wrapper access attempt. plan_id=%s user_id=%s", plan_id, current_user.id)
         return jsonify({"error": "Forbidden"}), 403
 
-    telemetry = _build_plan_telemetry(task, include_raw=False)
-    failure_trace = _build_plan_failure_trace(task)
+    telemetry = _build_plan_telemetry(plan, include_raw=False)
+    failure_trace = _build_plan_failure_trace(plan)
     preferred_plan_view_mode = _get_plan_view_mode_preference()
-    parameters = task.parameters if isinstance(task.parameters, dict) else {}
+    parameters = plan.parameters if isinstance(plan.parameters, dict) else {}
     selected_model_profile = normalize_model_profile(parameters.get("model_profile")).value
     resume_error = request.args.get("resume_error", "")
     return render_template(
         "plan_iframe.html",
         plan_id=plan_id,
-        task=task,
+        plan=plan,
         telemetry=telemetry,
         failure_trace=failure_trace,
         preferred_plan_view_mode=preferred_plan_view_mode,
@@ -1192,19 +1192,19 @@ def plan_resume_from_zip_upload():
 @login_required
 def plan_stop():
     plan_id = request.form.get("id", "").strip()
-    task = db.session.get(PlanItem, plan_id)
-    if task is None:
-        return jsonify({"error": "Task not found"}), 400
-    if not current_user.is_admin and str(task.user_id) != str(current_user.id):
+    plan = db.session.get(PlanItem, plan_id)
+    if plan is None:
+        return jsonify({"error": "Plan not found"}), 400
+    if not current_user.is_admin and str(plan.user_id) != str(current_user.id):
         return jsonify({"error": "Forbidden"}), 403
-    if task.state == PlanState.completed or bool(task.has_generated_report_html):
+    if plan.state == PlanState.completed or bool(plan.has_generated_report_html):
         logger.info("Ignoring stop request for already completed plan %s", plan_id)
         return redirect(url_for("plan_routes.plan", id=plan_id))
-    task.stop_requested = True
-    task.stop_requested_timestamp = datetime.now(UTC)
-    if task.state in (PlanState.pending, PlanState.processing):
-        task.state = PlanState.stopped
-        task.progress_message = "Stop requested by user."
+    plan.stop_requested = True
+    plan.stop_requested_timestamp = datetime.now(UTC)
+    if plan.state in (PlanState.pending, PlanState.processing):
+        plan.state = PlanState.stopped
+        plan.progress_message = "Stop requested by user."
     db.session.commit()
     return redirect(url_for("plan_routes.plan", id=plan_id))
 
@@ -1213,41 +1213,41 @@ def plan_stop():
 @login_required
 def plan_retry():
     plan_id = request.form.get("id", "").strip()
-    task = db.session.get(PlanItem, plan_id)
-    if task is None:
-        return jsonify({"error": "Task not found"}), 400
-    if not current_user.is_admin and str(task.user_id) != str(current_user.id):
+    plan = db.session.get(PlanItem, plan_id)
+    if plan is None:
+        return jsonify({"error": "Plan not found"}), 400
+    if not current_user.is_admin and str(plan.user_id) != str(current_user.id):
         return jsonify({"error": "Forbidden"}), 403
-    if task.state not in (PlanState.failed, PlanState.stopped) and not bool(task.stop_requested):
-        return jsonify({"error": "Task is not in a retryable state. Stop it first before retrying."}), 409
+    if plan.state not in (PlanState.failed, PlanState.stopped) and not bool(plan.stop_requested):
+        return jsonify({"error": "Plan is not in a retryable state. Stop it first before retrying."}), 409
 
     raw_profile = request.form.get("model_profile")
     selected_model_profile = normalize_model_profile(raw_profile).value
-    parameters = dict(task.parameters) if isinstance(task.parameters, dict) else {}
+    parameters = dict(plan.parameters) if isinstance(plan.parameters, dict) else {}
     parameters["model_profile"] = selected_model_profile
     parameters["pipeline_version"] = PIPELINE_VERSION
-    task.parameters = parameters
-
-    task.state = PlanState.pending
-    task.stop_requested = False
-    task.stop_requested_timestamp = None
-    task.progress_percentage = 0.0
-    task.progress_message = "Retry requested by user."
-    task.generated_report_html = None
-    task.run_zip_snapshot = None
-    task.run_track_activity_jsonl = None
-    task.run_track_activity_bytes = None
-    task.run_activity_overview_json = None
-    task.run_artifact_layout_version = None
-    task.failure_reason = None
-    task.failed_step = None
-    task.error_message = None
-    task.recoverable = None
-    task.last_seen_timestamp = datetime.now(UTC)
+    plan.parameters = parameters
+
+    plan.state = PlanState.pending
+    plan.stop_requested = False
+    plan.stop_requested_timestamp = None
+    plan.progress_percentage = 0.0
+    plan.progress_message = "Retry requested by user."
+    plan.generated_report_html = None
+    plan.run_zip_snapshot = None
+    plan.run_track_activity_jsonl = None
+    plan.run_track_activity_bytes = None
+    plan.run_activity_overview_json = None
+    plan.run_artifact_layout_version = None
+    plan.failure_reason = None
+    plan.failed_step = None
+    plan.error_message = None
+    plan.recoverable = None
+    plan.last_seen_timestamp = datetime.now(UTC)
 
     CreditHistory.query.filter_by(
         source="usage_billing_progress",
-        external_id=str(task.id),
+        external_id=str(plan.id),
     ).update({"source": "usage_billing_settled"})
 
     db.session.commit()
@@ -1259,55 +1259,55 @@ def plan_retry():
 def plan_resume():
     from flask import abort
     plan_id = request.form.get("id", "").strip()
-    task = db.session.get(PlanItem, plan_id)
-    if task is None:
+    plan = db.session.get(PlanItem, plan_id)
+    if plan is None:
         abort(404)
-    if not current_user.is_admin and str(task.user_id) != str(current_user.id):
+    if not current_user.is_admin and str(plan.user_id) != str(current_user.id):
         abort(403)
-    if task.state not in (PlanState.failed, PlanState.stopped):
+    if plan.state not in (PlanState.failed, PlanState.stopped):
         return redirect(url_for("plan_routes.plan", id=plan_id))
 
-    stored_params = task.parameters if isinstance(task.parameters, dict) else {}
+    stored_params = plan.parameters if isinstance(plan.parameters, dict) else {}
     stored_version = stored_params.get("pipeline_version")
     if stored_version is not None and stored_version != PIPELINE_VERSION:
         return redirect(url_for("plan_routes.plan", id=plan_id, resume_error="version_mismatch"))
 
     raw_profile = request.form.get("model_profile")
     selected_model_profile = normalize_model_profile(raw_profile).value
-    parameters = dict(task.parameters) if isinstance(task.parameters, dict) else {}
+    parameters = dict(plan.parameters) if isinstance(plan.parameters, dict) else {}
     parameters["model_profile"] = selected_model_profile
     parameters["trigger_source"] = "frontend resume"
     parameters["resume"] = True
     parameters["resume_count"] = parameters.get("resume_count", 0) + 1
-    task.parameters = parameters
-
-    task.state = PlanState.pending
-    task.progress_message = "Resume requested by user."
-    task.stop_requested = False
-    task.stop_requested_timestamp = None
-    task.failure_reason = None
-    task.failed_step = None
-    task.error_message = None
-    task.recoverable = None
-    task.last_seen_timestamp = datetime.now(UTC)
+    plan.parameters = parameters
+
+    plan.state = PlanState.pending
+    plan.progress_message = "Resume requested by user."
+    plan.stop_requested = False
+    plan.stop_requested_timestamp = None
+    plan.failure_reason = None
+    plan.failed_step = None
+    plan.error_message = None
+    plan.recoverable = None
+    plan.last_seen_timestamp = datetime.now(UTC)
 
     CreditHistory.query.filter_by(
         source="usage_billing_progress",
-        external_id=str(task.id),
+        external_id=str(plan.id),
     ).update({"source": "usage_billing_settled"})
 
     db.session.commit()
 
     event_context = {
-        "plan_id": str(task.id),
-        "task_handle": str(task.id),
-        "resume_of_plan_id": str(task.id),
+        "plan_id": str(plan.id),
+        "task_handle": str(plan.id),
+        "resume_of_plan_id": str(plan.id),
         "model_profile": selected_model_profile,
         "resume_count": parameters["resume_count"],
     }
     event = EventItem()
     event.event_type = EventType.TASK_PENDING
-    event.message = "Resumed failed task via frontend"
+    event.message = "Resumed failed plan via frontend"
     event.context = event_context
     db.session.add(event)
     db.session.commit()
@@ -1319,23 +1319,23 @@ def plan_resume():
 @login_required
 def plan_meta():
     plan_id = request.args.get("id", "").strip()
-    task = db.session.get(PlanItem, plan_id)
-    if task is None:
-        return jsonify({"error": "Task not found"}), 400
-    if not current_user.is_admin and str(task.user_id) != str(current_user.id):
+    plan = db.session.get(PlanItem, plan_id)
+    if plan is None:
+        return jsonify({"error": "Plan not found"}), 400
+    if not current_user.is_admin and str(plan.user_id) != str(current_user.id):
         return jsonify({"error": "Forbidden"}), 403
 
-    state_name = task.state.name if isinstance(task.state, PlanState) else "pending"
-    telemetry = _build_plan_telemetry(task, include_raw=False)
-    failure_trace = _build_plan_failure_trace(task)
+    state_name = plan.state.name if isinstance(plan.state, PlanState) else "pending"
+    telemetry = _build_plan_telemetry(plan, include_raw=False)
+    failure_trace = _build_plan_failure_trace(plan)
     return jsonify({
-        "id": str(task.id),
+        "id": str(plan.id),
         "state": state_name,
-        "progress_percentage": float(task.progress_percentage) if task.progress_percentage is not None else 0.0,
-        "progress_message": task.progress_message or "",
-        "generated_report_html": bool(task.has_generated_report_html),
-        "run_zip_snapshot": bool(task.has_run_zip_snapshot),
-        "stop_requested": bool(task.stop_requested),
+        "progress_percentage": float(plan.progress_percentage) if plan.progress_percentage is not None else 0.0,
+        "progress_message": plan.progress_message or "",
+        "generated_report_html": bool(plan.has_generated_report_html),
+        "run_zip_snapshot": bool(plan.has_run_zip_snapshot),
+        "stop_requested": bool(plan.stop_requested),
         "telemetry": telemetry,
         "failure_trace": failure_trace,
     }), 200
@@ -1354,10 +1354,10 @@ def plan_view_mode():
 @login_required
 def plan_telemetry():
     plan_id = request.args.get("id", "").strip()
-    task = db.session.get(PlanItem, plan_id)
-    if task is None:
-        return jsonify({"error": "Task not found"}), 400
-    if not current_user.is_admin and str(task.user_id) != str(current_user.id):
+    plan = db.session.get(PlanItem, plan_id)
+    if plan is None:
+        return jsonify({"error": "Plan not found"}), 400
+    if not current_user.is_admin and str(plan.user_id) != str(current_user.id):
         return jsonify({"error": "Forbidden"}), 403
-    telemetry = _build_plan_telemetry(task, include_raw=True, expose_raw_usage_data=True)
+    telemetry = _build_plan_telemetry(plan, include_raw=True, expose_raw_usage_data=True)
     return jsonify(telemetry), 200
diff --git a/frontend_multi_user/templates/plan_iframe.html b/frontend_multi_user/templates/plan_iframe.html
index d948e2b4..86ea3df0 100644
--- a/frontend_multi_user/templates/plan_iframe.html
+++ b/frontend_multi_user/templates/plan_iframe.html
@@ -539,15 +539,15 @@
     <div class="plan-meta-top">
         <div class="plan-meta-info">
             <p class="plan-meta-title">Plan</p>
-            <p class="plan-meta-sub">id: {{ task.id }}<button type="button" class="plan-id-copy-btn" id="copy-plan-id-btn" title="Copy plan ID" data-plan-id="{{ task.id }}"><svg width="12" height="12" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><rect x="9" y="9" width="13" height="13" rx="2" ry="2"/><path d="M5 15H4a2 2 0 0 1-2-2V4a2 2 0 0 1 2-2h9a2 2 0 0 1 2 2v1"/></svg></button>{% if task.timestamp_created %} · Created: {{ task.timestamp_created.strftime("%Y-%m-%d %H:%M:%S") }}{% endif %}</p>
-            <p class="plan-state" id="plan-state" {% if task.state and task.state.name == 'completed' %}style="display:none"{% endif %}>
-                <span>Status:</span> <span id="plan-state-text">{% if task.state %}{{ task.state.name | lower }}{% else %}pending{% endif %}{% if task.progress_percentage is not none %} · {{ "%.0f"|format(task.progress_percentage) }}%{% endif %}{% if task.progress_message and not (task.state and task.state.name == 'stopped') %} · {{ task.progress_message }}{% endif %}</span>
+            <p class="plan-meta-sub">id: {{ plan.id }}<button type="button" class="plan-id-copy-btn" id="copy-plan-id-btn" title="Copy plan ID" data-plan-id="{{ plan.id }}"><svg width="12" height="12" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><rect x="9" y="9" width="13" height="13" rx="2" ry="2"/><path d="M5 15H4a2 2 0 0 1-2-2V4a2 2 0 0 1 2-2h9a2 2 0 0 1 2 2v1"/></svg></button>{% if plan.timestamp_created %} · Created: {{ plan.timestamp_created.strftime("%Y-%m-%d %H:%M:%S") }}{% endif %}</p>
+            <p class="plan-state" id="plan-state" {% if plan.state and plan.state.name == 'completed' %}style="display:none"{% endif %}>
+                <span>Status:</span> <span id="plan-state-text">{% if plan.state %}{{ plan.state.name | lower }}{% else %}pending{% endif %}{% if plan.progress_percentage is not none %} · {{ "%.0f"|format(plan.progress_percentage) }}%{% endif %}{% if plan.progress_message and not (plan.state and plan.state.name == 'stopped') %} · {{ plan.progress_message }}{% endif %}</span>
             </p>
         </div>
         <div class="plan-meta-actions">
-            <form method="POST" class="plan-action-form" id="retry-resume-form" {% if not (task.state and task.state.name in ('failed', 'stopped')) %}style="display:none"{% endif %}>
+            <form method="POST" class="plan-action-form" id="retry-resume-form" {% if not (plan.state and plan.state.name in ('failed', 'stopped')) %}style="display:none"{% endif %}>
                 <input type="hidden" name="csrf_token" value="{{ csrf_token() }}">
-                <input type="hidden" name="id" value="{{ task.id }}">
+                <input type="hidden" name="id" value="{{ plan.id }}">
                 <div class="plan-action-group">
                     <select name="model_profile" class="plan-action-model-profile" title="Choose model profile">
                         <option value="baseline" {% if selected_model_profile == 'baseline' %}selected{% endif %}>baseline</option>
@@ -556,27 +556,27 @@
                         <option value="custom" {% if selected_model_profile == 'custom' %}selected{% endif %}>custom</option>
                     </select>
                     <button type="submit" formaction="{{ url_for('plan_routes.plan_retry') }}" class="btn-plan-meta" title="Discard all progress and start over from scratch">Retry</button>
-                    <button type="submit" formaction="{{ url_for('plan_routes.plan_resume') }}" class="btn-plan-meta" id="resume-btn" title="Continue from where it left off, skipping completed steps" {% if not (task.state and task.state.name in ('failed', 'stopped')) %}disabled{% endif %}>Resume</button>
+                    <button type="submit" formaction="{{ url_for('plan_routes.plan_resume') }}" class="btn-plan-meta" id="resume-btn" title="Continue from where it left off, skipping completed steps" {% if not (plan.state and plan.state.name in ('failed', 'stopped')) %}disabled{% endif %}>Resume</button>
                     {% if resume_error == "version_mismatch" %}
                     <span class="plan-resume-error" id="resume-error-banner">Resume unavailable — plan was created with a different PlanExe version. Use Retry.</span>
                     {% endif %}
                 </div>
             </form>
-            <span class="btn-plan-meta btn-plan-meta-disabled" id="retry-disabled" title="Discard all progress and start over from scratch" {% if task.state and task.state.name in ('failed', 'stopped') %}style="display:none"{% endif %}>Retry</span>
-            <span class="btn-plan-meta btn-plan-meta-disabled" id="resume-disabled" title="Continue from where it left off, skipping completed steps" {% if task.state and task.state.name in ('failed', 'stopped') %}style="display:none"{% endif %}>Resume</span>
+            <span class="btn-plan-meta btn-plan-meta-disabled" id="retry-disabled" title="Discard all progress and start over from scratch" {% if plan.state and plan.state.name in ('failed', 'stopped') %}style="display:none"{% endif %}>Retry</span>
+            <span class="btn-plan-meta btn-plan-meta-disabled" id="resume-disabled" title="Continue from where it left off, skipping completed steps" {% if plan.state and plan.state.name in ('failed', 'stopped') %}style="display:none"{% endif %}>Resume</span>
 
-            <form method="POST" action="{{ url_for('plan_routes.plan_stop') }}" class="plan-action-form" id="stop-form" {% if not (task.state and task.state.name in ('pending', 'processing')) %}style="display:none"{% endif %}>
+            <form method="POST" action="{{ url_for('plan_routes.plan_stop') }}" class="plan-action-form" id="stop-form" {% if not (plan.state and plan.state.name in ('pending', 'processing')) %}style="display:none"{% endif %}>
                 <input type="hidden" name="csrf_token" value="{{ csrf_token() }}">
-                <input type="hidden" name="id" value="{{ task.id }}">
+                <input type="hidden" name="id" value="{{ plan.id }}">
                 <button type="submit" class="btn-plan-meta">Stop</button>
             </form>
-            <span class="btn-plan-meta btn-plan-meta-disabled" id="stop-disabled" {% if task.state and task.state.name in ('pending', 'processing') %}style="display:none"{% endif %}>Stop</span>
+            <span class="btn-plan-meta btn-plan-meta-disabled" id="stop-disabled" {% if plan.state and plan.state.name in ('pending', 'processing') %}style="display:none"{% endif %}>Stop</span>
 
-            <a class="btn-plan-meta" id="report-link" href="{{ url_for('downloads.plan_download_report') }}?id={{ task.id }}" {% if not task.has_generated_report_html %}style="display:none"{% endif %}>Download Report</a>
-            <span class="btn-plan-meta btn-plan-meta-disabled" id="report-disabled" {% if task.has_generated_report_html %}style="display:none"{% endif %}>Download Report</span>
+            <a class="btn-plan-meta" id="report-link" href="{{ url_for('downloads.plan_download_report') }}?id={{ plan.id }}" {% if not plan.has_generated_report_html %}style="display:none"{% endif %}>Download Report</a>
+            <span class="btn-plan-meta btn-plan-meta-disabled" id="report-disabled" {% if plan.has_generated_report_html %}style="display:none"{% endif %}>Download Report</span>
 
-            <a class="btn-plan-meta" id="zip-link" href="{{ url_for('downloads.plan_download_zip') }}?id={{ task.id }}" {% if not task.has_run_zip_snapshot %}style="display:none"{% endif %}>Download ZIP</a>
-            <span class="btn-plan-meta btn-plan-meta-disabled" id="zip-disabled" {% if task.has_run_zip_snapshot %}style="display:none"{% endif %}>Download ZIP</span>
+            <a class="btn-plan-meta" id="zip-link" href="{{ url_for('downloads.plan_download_zip') }}?id={{ plan.id }}" {% if not plan.has_run_zip_snapshot %}style="display:none"{% endif %}>Download ZIP</a>
+            <span class="btn-plan-meta btn-plan-meta-disabled" id="zip-disabled" {% if plan.has_run_zip_snapshot %}style="display:none"{% endif %}>Download ZIP</span>
         </div>
     </div>
 
@@ -588,7 +588,7 @@
                 <button type="button" id="toggle-prompt-btn" class="btn-plan-prompt" style="display:none">Expand</button>
             </div>
         </div>
-        <pre id="plan-prompt-content" class="plan-prompt-content">{{ task.prompt or '' }}</pre>
+        <pre id="plan-prompt-content" class="plan-prompt-content">{{ plan.prompt or '' }}</pre>
     </div>
 </div>
 <div class="plan-telemetry-panel">
@@ -724,7 +724,7 @@
 <div class="plan-frame-wrap">
     <iframe
         class="plan-frame"
-        src="{% if task.has_generated_report_html %}{{ url_for('plan_routes.viewplan') }}?plan_id={{ plan_id }}{% else %}{{ url_for('plan_routes.run_status') }}?id={{ plan_id }}{% endif %}"
+        src="{% if plan.has_generated_report_html %}{{ url_for('plan_routes.viewplan') }}?plan_id={{ plan_id }}{% else %}{{ url_for('plan_routes.run_status') }}?id={{ plan_id }}{% endif %}"
         title="Plan report"
         loading="eager"
         referrerpolicy="no-referrer"
@@ -733,8 +733,8 @@
 </div>
 <script>
     (function () {
-        const planId = "{{ task.id }}";
-        const promptText = {{ (task.prompt or '') | tojson }};
+        const planId = "{{ plan.id }}";
+        const promptText = {{ (plan.prompt or '') | tojson }};
         const metaUrl = "{{ url_for('plan_routes.plan_meta') }}?id=" + encodeURIComponent(planId);
         const telemetryUrl = "{{ url_for('plan_routes.plan_telemetry') }}?id=" + encodeURIComponent(planId);
         const stateEl = document.getElementById("plan-state");
@@ -746,7 +746,7 @@
         const telemetrySourceLinesEl = document.getElementById("telemetry-source-lines");
         const initialTelemetry = {{ telemetry | tojson }};
         const initialFailureTrace = {{ failure_trace | tojson }};
-        const initialState = "{{ task.state.name | lower if task.state else 'pending' }}";
+        const initialState = "{{ plan.state.name | lower if plan.state else 'pending' }}";
         const preferredPlanViewMode = {{ (preferred_plan_view_mode or "view") | tojson }};
         const csrfToken = {{ csrf_token() | tojson }};
         const infoViewEl = document.getElementById("plan-info-view");

From 4d6dc30a18db6270192a9624a9289b9d9dfd59f4 Mon Sep 17 00:00:00 2001
From: Simon Strandgaard <neoneye@gmail.com>
Date: Tue, 14 Apr 2026 21:25:59 +0200
Subject: [PATCH 12/13] fix: return 400 for empty plan_id instead of crashing
 on UUID cast

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 frontend_multi_user/src/plan_routes.py | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/frontend_multi_user/src/plan_routes.py b/frontend_multi_user/src/plan_routes.py
index 78893122..640d6c30 100644
--- a/frontend_multi_user/src/plan_routes.py
+++ b/frontend_multi_user/src/plan_routes.py
@@ -854,6 +854,8 @@ def run_status():
 def get_progress():
     plan_id = request.args.get("plan_id", "")
     logger.debug("Progress endpoint received plan_id: %r", plan_id)
+    if not plan_id:
+        return jsonify({"error": "No plan_id provided"}), 400
     plan = db.session.get(PlanItem, plan_id)
     if plan is None:
         logger.error("Plan not found for plan_id: %r", plan_id)
@@ -880,6 +882,8 @@ def get_progress():
 def viewplan():
     plan_id = request.args.get("plan_id", "")
     logger.info("ViewPlan endpoint requested for plan_id: %r", plan_id)
+    if not plan_id:
+        return jsonify({"error": "No plan_id provided"}), 400
     plan = db.session.get(PlanItem, plan_id)
     if plan is None:
         logger.error("Plan not found for plan_id: %r", plan_id)

From 7f1ae03a04891e50b1dd69bc2ee12e2e29df042b Mon Sep 17 00:00:00 2001
From: Simon Strandgaard <neoneye@gmail.com>
Date: Tue, 14 Apr 2026 21:40:16 +0200
Subject: [PATCH 13/13] fix: replace current_app.login_manager.unauthorized()
 with redirect

Fixes pyright error: Flask type doesn't expose login_manager attribute.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 frontend_multi_user/src/plan_routes.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/frontend_multi_user/src/plan_routes.py b/frontend_multi_user/src/plan_routes.py
index 640d6c30..9b466911 100644
--- a/frontend_multi_user/src/plan_routes.py
+++ b/frontend_multi_user/src/plan_routes.py
@@ -895,7 +895,7 @@ def viewplan():
         logger.info("ViewPlan: MachAI user, skipping auth for plan_id=%s", plan_id)
     elif not current_user.is_authenticated:
         # Non-MachAI plan requires login.
-        return current_app.login_manager.unauthorized()
+        return redirect(url_for("auth.login"))
     elif not current_user.is_admin and str(plan.user_id) != str(current_user.id):
         logger.warning("Unauthorized report access attempt. plan_id=%s user_id=%s", plan_id, current_user.id)
         return jsonify({"error": "Forbidden"}), 403