Fix tenant event form package selector so it no longer renders empty-value options, handles loading/empty

states, and pulls data from the authenticated /api/v1/tenant/packages endpoint.
    (resources/js/admin/pages/EventFormPage.tsx, resources/js/admin/api.ts)
  - Harden tenant-admin auth flow: prevent PKCE state loss, scope out StrictMode double-processing, add SPA
    routes for /event-admin/login and /event-admin/logout, and tighten token/session clearing semantics (resources/js/admin/auth/{context,tokens}.tsx, resources/js/admin/pages/{AuthCallbackPage,LogoutPage}.tsx,
    resources/js/admin/router.tsx, routes/web.php)

resources/lang/de/admin.php

@@ -106,6 +106,13 @@ return [
             'layouts_fallback' => 'Layout-Übersicht öffnen',
             'token_expiry' => 'Läuft ab am :date',
         ],
+        'analytics' => [
+            'success_total' => 'Erfolgreiche Zugriffe',
+            'failure_total' => 'Fehlgeschlagene Zugriffe',
+            'rate_limited_total' => 'Rate-Limit erreicht',
+            'recent_24h' => 'Aufrufe (24h)',
+            'last_seen_at' => 'Letzte Aktivität: :date',
+        ],
     ],
 
     'legal_pages' => [
@@ -329,6 +336,77 @@ return [
         ],
     ],
 
+    'refresh_tokens' => [
+        'menu' => 'Refresh Tokens',
+        'single' => 'Refresh Token',
+        'fields' => [
+            'tenant' => 'Mandant',
+            'client' => 'Client',
+            'status' => 'Status',
+            'revoked_reason' => 'Widerrufsgrund',
+            'created_at' => 'Erstellt',
+            'last_used_at' => 'Zuletzt verwendet',
+            'expires_at' => 'Gültig bis',
+            'ip_address' => 'IP-Adresse',
+            'user_agent' => 'User Agent',
+            'note' => 'Notiz',
+        ],
+        'status' => [
+            'active' => 'Aktiv',
+            'revoked' => 'Widerrufen',
+            'expired' => 'Abgelaufen',
+        ],
+        'filters' => [
+            'status' => 'Status',
+            'tenant' => 'Mandant',
+        ],
+        'actions' => [
+            'revoke' => 'Token widerrufen',
+        ],
+        'reasons' => [
+            'manual' => 'Manuell',
+            'operator' => 'Operator-Aktion',
+            'rotated' => 'Automatisch rotiert',
+            'ip_mismatch' => 'IP-Abweichung',
+            'expired' => 'Abgelaufen',
+            'invalid_secret' => 'Ungültiges Secret',
+            'tenant_missing' => 'Mandant entfernt',
+            'max_active_limit' => 'Maximale Anzahl überschritten',
+        ],
+        'sections' => [
+            'details' => 'Token-Details',
+            'security' => 'Sicherheitskontext',
+        ],
+        'audit' => [
+            'heading' => 'Audit-Log',
+            'event' => 'Ereignis',
+            'events' => [
+                'issued' => 'Ausgestellt',
+                'refresh_attempt' => 'Refresh versucht',
+                'refreshed' => 'Refresh erfolgreich',
+                'client_mismatch' => 'Client stimmt nicht überein',
+                'invalid_secret' => 'Ungültiges Secret',
+                'ip_mismatch' => 'IP-Abweichung',
+                'expired' => 'Abgelaufen',
+                'revoked' => 'Widerrufen',
+                'rotated' => 'Rotiert',
+                'tenant_missing' => 'Mandant fehlt',
+                'max_active_limit' => 'Begrenzung erreicht',
+            ],
+            'performed_by' => 'Ausgeführt von',
+            'ip_address' => 'IP-Adresse',
+            'context' => 'Kontext',
+            'performed_at' => 'Zeitpunkt',
+            'empty' => [
+                'heading' => 'Noch keine Einträge',
+                'description' => 'Sobald das Token verwendet wird, erscheinen hier Einträge.',
+            ],
+        ],
+        'notifications' => [
+            'revoked' => 'Refresh Token wurde widerrufen.',
+        ],
+    ],
+
     'shell' => [
         'tenant_admin_title' => 'Tenant‑Admin',
     ],