fix: check JWT auth before email lookup in series purchase

server/api/series/[id]/tickets/purchase.post.js

@@ -33,9 +33,16 @@ export default defineEventHandler(async (event) => {
       });
     }
 
-    // Check membership
+    // Check membership — prefer JWT auth for accurate member pricing
     let member = null;
-    member = await Member.findOne({ email: email.toLowerCase() });
+    try {
+      member = await requireAuth(event);
+    } catch {
+      // Not authenticated — fall through to email lookup
+    }
+    if (!member) {
+      member = await Member.findOne({ email: email.toLowerCase() });
+    }
 
     // Validate purchase
     const validation = validateSeriesTicketPurchase(series, {