gitadmin/INSIGHT-MVP

Fork 0

mirror of http://172.20.10.11:3000/gitadmin/INSIGHT-MVP.git synced 2026-06-25 00:16:41 +02:00

Commit graph

Author	SHA1	Message	Date
Thomas Reitz	6fa86714db	feat: add profile picture upload, sidebar hint, and fix 2FA bugs - Bug fix: include twoFactorEnabled in login response so ProfilePage shows correct 2FA status after login (not always "Aktivieren") - Bug fix: restructure 2FA enable/disable handlers to separate API call from state updates, preventing false error messages on success - New: avatar field in User model (Base64 data-URL in PostgreSQL TEXT) - New: UserAvatar component with initials fallback - New: client-side image resize to 200x200px before upload - New: avatar upload/remove on ProfilePage with preview - New: avatar display + "Zum Profil" hint in sidebar - Increase JSON body size limit to 1mb for avatar uploads Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-03-09 06:51:27 +01:00
Thomas Reitz	10f291cdda	feat: implement Sprint 1 Alpha - full stack with Docker, NestJS, React Docker Infrastructure: - docker-compose.yml with Traefik 3, PostgreSQL 16, PgBouncer, Redis 7, step-ca - docker-compose.observability.yml with Prometheus, Grafana, Loki, Tempo, Promtail - Traefik dynamic config (TLS, security headers, CORS, compression) - PostgreSQL init script (uuid-ossp, pgcrypto, pg_trgm extensions) - Grafana auto-provisioned datasources (Prometheus, Loki, Tempo) NestJS Core-Service: - Auth module: Login (email/password), TOTP 2FA, JWT RS256, token refresh/revocation - Users module: CRUD, bcrypt cost 12, pagination, role-based access - Tenants module: CRUD, member management, slug validation - Prisma schemas: core (Users, AuthProviders, Tenants, Modules, AuditLog) tenant (Contacts, Activities - CRM reference for Sprint 2) - TenantPrismaService: Dynamic per-tenant DB connections with caching - RedisService: Token blocklist, refresh token families, generic cache - Global JwtAuthGuard with @Public() decorator, RolesGuard, GlobalExceptionFilter - Health endpoint with DB + Redis status checks - Swagger API documentation (dev only) - Multi-stage Dockerfile (dev + production) React Frontend: - Vite 6 + React 18 + TypeScript strict - AuthContext with silent refresh (access token in memory, NOT localStorage) - Login page with TOTP 2FA support - App shell with sidebar navigation - Admin pages: Users + Tenants management tables - API client with automatic token refresh interceptor - Multi-stage Dockerfile (dev + nginx production) CI/CD Pipelines: - ci.yml: Lint, type-check, test, build on all branches - deploy.yml: Docker build, push to Forgejo registry, SSH deploy Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-03-08 15:33:36 +01:00

Author

SHA1

Message

Date

Thomas Reitz

6fa86714db

feat: add profile picture upload, sidebar hint, and fix 2FA bugs

- Bug fix: include twoFactorEnabled in login response so ProfilePage
  shows correct 2FA status after login (not always "Aktivieren")
- Bug fix: restructure 2FA enable/disable handlers to separate API call
  from state updates, preventing false error messages on success
- New: avatar field in User model (Base64 data-URL in PostgreSQL TEXT)
- New: UserAvatar component with initials fallback
- New: client-side image resize to 200x200px before upload
- New: avatar upload/remove on ProfilePage with preview
- New: avatar display + "Zum Profil" hint in sidebar
- Increase JSON body size limit to 1mb for avatar uploads

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-03-09 06:51:27 +01:00

Thomas Reitz

10f291cdda

feat: implement Sprint 1 Alpha - full stack with Docker, NestJS, React

Docker Infrastructure:
- docker-compose.yml with Traefik 3, PostgreSQL 16, PgBouncer, Redis 7, step-ca
- docker-compose.observability.yml with Prometheus, Grafana, Loki, Tempo, Promtail
- Traefik dynamic config (TLS, security headers, CORS, compression)
- PostgreSQL init script (uuid-ossp, pgcrypto, pg_trgm extensions)
- Grafana auto-provisioned datasources (Prometheus, Loki, Tempo)

NestJS Core-Service:
- Auth module: Login (email/password), TOTP 2FA, JWT RS256, token refresh/revocation
- Users module: CRUD, bcrypt cost 12, pagination, role-based access
- Tenants module: CRUD, member management, slug validation
- Prisma schemas: core (Users, AuthProviders, Tenants, Modules, AuditLog)
                  tenant (Contacts, Activities - CRM reference for Sprint 2)
- TenantPrismaService: Dynamic per-tenant DB connections with caching
- RedisService: Token blocklist, refresh token families, generic cache
- Global JwtAuthGuard with @Public() decorator, RolesGuard, GlobalExceptionFilter
- Health endpoint with DB + Redis status checks
- Swagger API documentation (dev only)
- Multi-stage Dockerfile (dev + production)

React Frontend:
- Vite 6 + React 18 + TypeScript strict
- AuthContext with silent refresh (access token in memory, NOT localStorage)
- Login page with TOTP 2FA support
- App shell with sidebar navigation
- Admin pages: Users + Tenants management tables
- API client with automatic token refresh interceptor
- Multi-stage Dockerfile (dev + nginx production)

CI/CD Pipelines:
- ci.yml: Lint, type-check, test, build on all branches
- deploy.yml: Docker build, push to Forgejo registry, SSH deploy

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-03-08 15:33:36 +01:00

2 commits