gitadmin/INSIGHT-MVP

Fork 0

mirror of http://172.20.10.11:3000/gitadmin/INSIGHT-MVP.git synced 2026-06-25 00:36:39 +02:00

Commit graph

Author	SHA1	Message	Date
Thomas Reitz	779d90ca43	feat: add user profile page with 2FA management and password change Backend: - POST /auth/2fa/setup - generate TOTP secret + QR code (temp Redis storage) - POST /auth/2fa/enable - verify TOTP code and activate 2FA - POST /auth/2fa/disable - deactivate 2FA (requires password) - PATCH /users/me - update own profile (firstName, lastName) - POST /users/me/change-password - change own password Frontend: - New ProfilePage with 3 sections: personal info, password, 2FA - QR code display for Authenticator app setup - Clickable user info in sidebar navigates to /profile - AuthContext extended with twoFactorEnabled + refreshUser Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-03-08 20:24:44 +01:00
Thomas Reitz	10f291cdda	feat: implement Sprint 1 Alpha - full stack with Docker, NestJS, React Docker Infrastructure: - docker-compose.yml with Traefik 3, PostgreSQL 16, PgBouncer, Redis 7, step-ca - docker-compose.observability.yml with Prometheus, Grafana, Loki, Tempo, Promtail - Traefik dynamic config (TLS, security headers, CORS, compression) - PostgreSQL init script (uuid-ossp, pgcrypto, pg_trgm extensions) - Grafana auto-provisioned datasources (Prometheus, Loki, Tempo) NestJS Core-Service: - Auth module: Login (email/password), TOTP 2FA, JWT RS256, token refresh/revocation - Users module: CRUD, bcrypt cost 12, pagination, role-based access - Tenants module: CRUD, member management, slug validation - Prisma schemas: core (Users, AuthProviders, Tenants, Modules, AuditLog) tenant (Contacts, Activities - CRM reference for Sprint 2) - TenantPrismaService: Dynamic per-tenant DB connections with caching - RedisService: Token blocklist, refresh token families, generic cache - Global JwtAuthGuard with @Public() decorator, RolesGuard, GlobalExceptionFilter - Health endpoint with DB + Redis status checks - Swagger API documentation (dev only) - Multi-stage Dockerfile (dev + production) React Frontend: - Vite 6 + React 18 + TypeScript strict - AuthContext with silent refresh (access token in memory, NOT localStorage) - Login page with TOTP 2FA support - App shell with sidebar navigation - Admin pages: Users + Tenants management tables - API client with automatic token refresh interceptor - Multi-stage Dockerfile (dev + nginx production) CI/CD Pipelines: - ci.yml: Lint, type-check, test, build on all branches - deploy.yml: Docker build, push to Forgejo registry, SSH deploy Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-03-08 15:33:36 +01:00

Author

SHA1

Message

Date

Thomas Reitz

779d90ca43

feat: add user profile page with 2FA management and password change

Backend:
- POST /auth/2fa/setup - generate TOTP secret + QR code (temp Redis storage)
- POST /auth/2fa/enable - verify TOTP code and activate 2FA
- POST /auth/2fa/disable - deactivate 2FA (requires password)
- PATCH /users/me - update own profile (firstName, lastName)
- POST /users/me/change-password - change own password

Frontend:
- New ProfilePage with 3 sections: personal info, password, 2FA
- QR code display for Authenticator app setup
- Clickable user info in sidebar navigates to /profile
- AuthContext extended with twoFactorEnabled + refreshUser

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-03-08 20:24:44 +01:00

Thomas Reitz

10f291cdda

feat: implement Sprint 1 Alpha - full stack with Docker, NestJS, React

Docker Infrastructure:
- docker-compose.yml with Traefik 3, PostgreSQL 16, PgBouncer, Redis 7, step-ca
- docker-compose.observability.yml with Prometheus, Grafana, Loki, Tempo, Promtail
- Traefik dynamic config (TLS, security headers, CORS, compression)
- PostgreSQL init script (uuid-ossp, pgcrypto, pg_trgm extensions)
- Grafana auto-provisioned datasources (Prometheus, Loki, Tempo)

NestJS Core-Service:
- Auth module: Login (email/password), TOTP 2FA, JWT RS256, token refresh/revocation
- Users module: CRUD, bcrypt cost 12, pagination, role-based access
- Tenants module: CRUD, member management, slug validation
- Prisma schemas: core (Users, AuthProviders, Tenants, Modules, AuditLog)
                  tenant (Contacts, Activities - CRM reference for Sprint 2)
- TenantPrismaService: Dynamic per-tenant DB connections with caching
- RedisService: Token blocklist, refresh token families, generic cache
- Global JwtAuthGuard with @Public() decorator, RolesGuard, GlobalExceptionFilter
- Health endpoint with DB + Redis status checks
- Swagger API documentation (dev only)
- Multi-stage Dockerfile (dev + production)

React Frontend:
- Vite 6 + React 18 + TypeScript strict
- AuthContext with silent refresh (access token in memory, NOT localStorage)
- Login page with TOTP 2FA support
- App shell with sidebar navigation
- Admin pages: Users + Tenants management tables
- API client with automatic token refresh interceptor
- Multi-stage Dockerfile (dev + nginx production)

CI/CD Pipelines:
- ci.yml: Lint, type-check, test, build on all branches
- deploy.yml: Docker build, push to Forgejo registry, SSH deploy

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-03-08 15:33:36 +01:00

2 commits