Major Enhancement: NestJS Migration + CASL Authorization + Error Handling

Complete rewrite from Express to NestJS with enterprise-grade features:

## Backend Improvements
- Migrated from Express to NestJS 11.0.1 with TypeScript
- Implemented Prisma ORM 7.3.0 for type-safe database access
- Added CASL authorization system replacing role-based guards
- Created global exception filters with structured logging
- Implemented Auth0 JWT authentication with Passport.js
- Added vehicle management with conflict detection
- Enhanced event scheduling with driver/vehicle assignment
- Comprehensive error handling and logging

## Frontend Improvements
- Upgraded to React 19.2.0 with Vite 7.2.4
- Implemented CASL-based permission system
- Added AbilityContext for declarative permissions
- Created ErrorHandler utility for consistent error messages
- Enhanced API client with request/response logging
- Added War Room (Command Center) dashboard
- Created VIP Schedule view with complete itineraries
- Implemented Vehicle Management UI
- Added mock data generators for testing (288 events across 20 VIPs)

## New Features
- Vehicle fleet management (types, capacity, status tracking)
- Complete 3-day Jamboree schedule generation
- Individual VIP schedule pages with PDF export (planned)
- Real-time War Room dashboard with auto-refresh
- Permission-based navigation filtering
- First user auto-approval as administrator

## Documentation
- Created CASL_AUTHORIZATION.md (comprehensive guide)
- Created ERROR_HANDLING.md (error handling patterns)
- Updated CLAUDE.md with new architecture
- Added migration guides and best practices

## Technical Debt Resolved
- Removed custom authentication in favor of Auth0
- Replaced role checks with CASL abilities
- Standardized error responses across API
- Implemented proper TypeScript typing
- Added comprehensive logging

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

frontend/src/lib/api.ts

@@ -0,0 +1,91 @@
+import axios from 'axios';
+
+const API_URL = import.meta.env.VITE_API_URL || 'http://localhost:3000/api/v1';
+const DEBUG_MODE = import.meta.env.DEV; // Enable detailed logging in development
+
+export const api = axios.create({
+  baseURL: API_URL,
+  headers: {
+    'Content-Type': 'application/json',
+  },
+  timeout: 30000, // 30 second timeout
+});
+
+// Request interceptor to add auth token and log requests
+api.interceptors.request.use(
+  (config) => {
+    const token = localStorage.getItem('auth0_token');
+    if (token) {
+      config.headers.Authorization = `Bearer ${token}`;
+    }
+
+    // Log request in development mode
+    if (DEBUG_MODE) {
+      console.log(`[API] → ${config.method?.toUpperCase()} ${config.url}`, {
+        data: config.data,
+        params: config.params,
+      });
+    }
+
+    return config;
+  },
+  (error) => {
+    console.error('[API] Request error:', error);
+    return Promise.reject(error);
+  }
+);
+
+// Response interceptor for logging and error handling
+api.interceptors.response.use(
+  (response) => {
+    // Log successful response in development mode
+    if (DEBUG_MODE) {
+      console.log(`[API] ← ${response.status} ${response.config.method?.toUpperCase()} ${response.config.url}`, {
+        data: response.data,
+      });
+    }
+    return response;
+  },
+  (error) => {
+    const { config, response } = error;
+
+    // Enhanced error logging
+    if (response) {
+      // Server responded with error status
+      console.error(
+        `[API] ✖ ${response.status} ${config?.method?.toUpperCase()} ${config?.url}`,
+        {
+          status: response.status,
+          statusText: response.statusText,
+          data: response.data,
+          requestData: config?.data,
+        }
+      );
+
+      // Log specific error types
+      if (response.status === 401) {
+        console.warn('[API] Authentication required - user may need to log in again');
+      } else if (response.status === 403) {
+        console.warn('[API] Permission denied - user lacks required permissions');
+      } else if (response.status === 404) {
+        console.warn('[API] Resource not found');
+      } else if (response.status === 409) {
+        console.warn('[API] Conflict detected:', response.data.conflicts || response.data.message);
+      } else if (response.status >= 500) {
+        console.error('[API] Server error - backend may be experiencing issues');
+      }
+    } else if (error.request) {
+      // Request was made but no response received
+      console.error('[API] ✖ Network error - no response received', {
+        method: config?.method?.toUpperCase(),
+        url: config?.url,
+        message: error.message,
+      });
+    } else {
+      // Something else happened
+      console.error('[API] ✖ Request setup error:', error.message);
+    }
+
+    return Promise.reject(error);
+  }
+);