Commit Graph

113 Commits

Author SHA1 Message Date
e0321c29a0 docs: add zoom button debug guide and session 9 handover notes 2026-04-19 17:39:37 +03:00
3e9c56aa22 docs: update SESSION_STATE.md - Admin endpoint paths fixed 2026-04-19 17:23:08 +03:00
d9ead1aafd fix: repair login endpoint registration in auth router 2026-04-19 17:20:11 +03:00
7ff9a705cd docs: update SESSION_STATE.md - Phase 3 Backend Cleanup complete 2026-04-19 17:11:37 +03:00
a225d2efc6 fix: restore Search icon import in inventory/page.tsx and update session state - Phase 2 complete 2026-04-19 16:13:14 +03:00
cbcd9263e0 docs: update session state - Phase 1 (hook extractions) complete 2026-04-19 12:37:43 +03:00
0e89059cac docs: update session state with Phase 1 refactoring progress 2026-04-19 12:25:03 +03:00
ddb5905c98 docs: update session state - phase 4 E2E validation in progress, 332/365 tests passing 2026-04-19 10:19:58 +03:00
bf24fb3ab7 docs: update session state - phase 3 complete with E2E test suite (81 tests, 5 workflows) 2026-04-19 08:01:51 +03:00
2e7a31ae0a docs: update session state - phase 3 infrastructure complete (15 commits, 81 tests) 2026-04-19 07:59:21 +03:00
c38a4fcc50 docs: phase 2 complete - 284 frontend tests, git tag phase-2-complete created 2026-04-18 18:37:14 +00:00
6a49309a0e docs: update session state - AIOnboarding.test.tsx jsdom compatibility fixed 2026-04-18 18:30:06 +00:00
81b29596dc docs: update session state with batch 2 frontend tests completion 2026-04-18 18:16:56 +00:00
1b0e92ad25 docs: update session state with phase 1 completion and phase 2 next steps 2026-04-18 17:11:19 +00:00
055ef051ca docs: update handover state after v1.10.16 release 2026-04-18 16:22:21 +00:00
a0d769b93d chore: update session state with audit completion and next steps
- Document 7 commits fixing server startup, gradients, responsive design, animations, and accessibility
- Frontend audit score improved: 14/20 → 17+/20 target
- Updated next AI handover with server verification, audit re-run, and design token work
- Ready for testing and v1.10.12 release
2026-04-18 14:16:02 +00:00
cb5c9ecd1b chore: update session state with startup script fixes 2026-04-18 13:23:12 +00:00
e7557e42fa chore: update handover note to reflect Linux git binary 2026-04-18 13:08:59 +00:00
439a7fc266 refactor: comprehensive polish pass - accessibility and color tokenization
POLISH IMPROVEMENTS:
- Add focus-visible indicators to 40+ previously missing buttons in admin managers
- Add aria-labels to all interactive elements for screen readers
- Remove debug console.log from page.tsx OCR preload (line 126)

COLOR TOKENIZATION:
- Replace all hard-coded indigo brand colors with primary token across admin managers:
  - IdentityManager, DatabaseManager, AiManager, CategoryManager, LdapManager
  - Indigo (#818cf8) → primary blue (#3b82f6)
- Replace hard-coded purple with primary
- Standardize destructive action color: red-500 → rose-500 for consistency
- Update all hover states and focus rings to use primary token

FORM IMPROVEMENTS:
- Add focus-visible indicators to input fields in DatabaseManager
- Consistent primary token usage in form focus states

ACCESSIBILITY GAINS:
- 15+ new aria-labels added to icon buttons
- 40+ buttons now have keyboard focus indicators
- All form inputs have proper focus styling
- Complete WCAG AA compliance for keyboard navigation

TECHNICAL DEBT:
- Zero hard-coded brand colors remaining in admin managers
- Centralized color token system fully implemented
- No debug logging in production code
2026-04-17 10:59:45 +03:00
3e60bb1707 perf(frontend): lazy-load tesseract.js OCR library
Replace static import of tesseract.js (500KB) with dynamic import in Scanner
component. Library now only loads when OCR recognition is actually performed,
not on initial page load.

Performance Impact:
- Removes 500KB from initial bundle
- Library only loads when user activates OCR mode
- Preload strategy in page.tsx still works (loads on-demand if scanner opened)
- No functional change; same behavior, faster initial load

Implementation:
- Remove static import from Scanner.tsx (line 6)
- Replace with dynamic import at point of use (line 166+)
- page.tsx preloadOCR already uses dynamic import (no change needed)
- Improves initial page load time significantly

Build: Passes with zero errors. Compile time: 2.4s.
2026-04-17 10:40:42 +03:00
b6a48f1249 refactor(frontend): eliminate backdrop-blur throughout codebase
Remove all instances of backdrop-blur effect (14+ occurrences) to simplify visual design
and eliminate signature 2023-2024 AI aesthetic tell. Components now use solid backgrounds
and borders for hierarchy and affordance instead of decorative blur.

Affected:
- BottomNav: solid bg-slate-950, clean border
- AdminOverlay: removed overlay blur
- Admin managers (Identity, Database, AI, Category, LDAP): removed glass-card aesthetic
- Modals (IdentityCheck, Scanner, AIOnboarding): removed decorative blur
- Page layouts (home, inventory, logs): removed modal backdrop blur
- globals.css: removed glass-card utility

Build: passes with zero errors. Bundle sizes unchanged.

Simplification improves: clarity, perceived intentionality, removes AI aesthetic tells.
2026-04-17 10:26:39 +03:00
572422b677 Build [v1.10.11] 2026-04-15 20:57:01 +03:00
add873b159 dada 2026-04-15 16:58:20 +03:00
Daniel Bedeleanu
546eca6b9a docs: finalize session state - mobile stat cards responsive fix complete
- StatCard component created with accessibility features
- Inventory, Logs, and Admin pages refactored (7 stat cards total)
- Mobile viewport testing verified (320px-1024px)
- All responsive breakpoints working correctly
- Spec coverage 100% - ready for production deployment
2026-04-15 11:36:50 +03:00
Daniel Bedeleanu
e8c804da71 docs: update session state - Admin page stat cards refactored (Task 4 complete) 2026-04-15 11:26:49 +03:00
Daniel Bedeleanu
29b5c7020c docs: update session state - Docker build fully verified and tested locally
✓ Frontend build: TypeScript compilation successful (0 errors)
✓ Full stack build: All 3 images built successfully
✓ Integration test: Services running and responding to HTTP

Ready for remote server deployment.
2026-04-15 10:06:58 +03:00
Daniel Bedeleanu
70670a3c9d docs: add Docker build verification plan and update session state
- Created comprehensive 4-task plan for local Docker testing
- Plan includes: frontend build, full stack build, integration tests, handover
- Updated SESSION_STATE.md with TypeScript fix status and next steps
- Ready for remote deployment verification
2026-04-15 09:37:50 +03:00
Daniel Bedeleanu
6c57b1b0c2 blabla 2026-04-14 22:54:19 +03:00
Daniel Bedeleanu
1ea5e90bc4 Fix: resolve Unterminated regexp literal build error in page.tsx 2026-04-14 20:48:53 +03:00
Daniel Bedeleanu
fcb187974e Build [v1.9.18] 2026-04-13 23:43:52 +03:00
Daniel Bedeleanu
5e648002f0 Build [v1.8.1] (Fix Docker Context) 2026-04-13 19:36:06 +03:00
Daniel Bedeleanu
81b775c9ae Build [v1.8.0] 2026-04-13 19:23:48 +03:00
Daniel Bedeleanu
994920bda2 Build [v1.7.0] - GitGuard - Infrastructure Hardening 2026-04-12 22:45:27 +03:00
Daniel Bedeleanu
0a6368b9f6 modificari de documentatii dupa o implementare noua 2026-04-12 21:43:08 +03:00
Daniel Bedeleanu
2e5c666cc8 Build [v1.5.0] - Box Management & Label Printing 2026-04-12 21:30:50 +03:00
Daniel Bedeleanu
e383b97d44 docs: finalized v1.4.1 session logs and architecture security section 2026-04-12 10:49:48 +03:00
Daniel Bedeleanu
50ae3671c9 Build [v1.4.1] - Security hardening, PWA and UI refinements 2026-04-12 10:45:57 +03:00
Daniel Bedeleanu
f3d861b1a2 Build [v1.4.0] - Audit Dashboard & LDAP Restoration 2026-04-12 09:39:17 +03:00
Daniel Bedeleanu
161a182281 Build [v.1.3.9] 2026-04-12 07:29:58 +03:00
Daniel Bedeleanu
704934165f Build [v.1.3.6] 2026-04-11 17:14:22 +03:00
Daniel Bedeleanu
483a747600 fix: CORS configuration for both docker-compose and start_server.sh deployments
- Update start_server.sh to auto-detect local IP and export ALLOWED_ORIGINS
- Includes both localhost and detected IP on HTTP/HTTPS proxy ports
- Export JWT_SECRET_KEY with ephemeral key if not set
- Fix Romanian comments in docker-compose.yml to English
- Document two deployment methods in SESSION_STATE.md
2026-04-11 14:44:00 +03:00
Daniel Bedeleanu
0b77324a3f docs: update SESSION_STATE — v1.3.5 release with complete English compliance 2026-04-11 14:29:44 +03:00
Daniel Bedeleanu
29dee921f9 docs: translate SESSION_STATE to English + add DEPLOYMENT section to README
Session state fully in English (following STRICT ENGLISH POLICY for production docs).
Added comprehensive Production Deployment section to README with:
- Environment variables table (JWT_SECRET_KEY, ALLOWED_ORIGINS)
- Critical deployment checklist
- Docker production setup example
- Reference to SECURITY_REPORT.md

Addresses:
1. Documentation in English for production files ✓
2. Details on JWT_SECRET_KEY and ALLOWED_ORIGINS for production users ✓

Co-Authored-By: Claude Sonnet 4.6 (1M context) <noreply@anthropic.com>
2026-04-11 14:18:34 +03:00
Daniel Bedeleanu
2574726f78 docs: final SESSION_STATE — ALL TASKS COMPLETE v1.3.5
Audit de securitate: 12 vulnerabilități identificate, 12/12 remediate
JWT backend: complet cu auth pe toți routers
JWT frontend: token handling + 401 redirect
Rate limiting: 10/min pe /items/extract-label
CORS: ALLOWED_ORIGINS configurable via env
Docker: environment vars pentru dev+prod

Status: PRODUCTION-READY (cu caveate env setup)

Co-Authored-By: Claude Sonnet 4.6 (1M context) <noreply@anthropic.com>
2026-04-11 13:42:41 +03:00
Daniel Bedeleanu
e9ada00497 docs: update SESSION_STATE cu status [C-01] JWT auth COMPLET
Backend-ul are autentificație JWT completa pe toți routers-ii.
Frontend-ul trebuie actualizat pentru a trimite token în header.
Rate limiting (H-02) și CORS final rămân pending.

Co-Authored-By: Claude Sonnet 4.6 (1M context) <noreply@anthropic.com>
2026-04-11 13:38:45 +03:00
Daniel Bedeleanu
247ea45408 security: audit complet + patch vulnerabilitati critice v1.3.5
Audit de securitate executat pe Backend (FastAPI) si Frontend (Next.js/Dexie).
12 vulnerabilitati identificate (4 CRITICE, 4 HIGH, 3 MEDIUM, 1 LOW).

Patch-uri aplicate direct:
- [C-02] Eliminat bypass autentificare pentru useri fara parola (users.py)
- [C-03] Parola default Admin inlocuita cu secrets.token_urlsafe(16) (users.py)
- [H-01] LDAP injection fix: escape_filter_chars pe username (users.py)
- [H-03] Validare MIME + limita 10MB pe /items/extract-label (items.py)
- [M-01] CORS fix: allow_origins din env ALLOWED_ORIGINS, nu wildcard (main.py)
- [M-03] Toate print() LDAP inlocuite cu log.debug() (users.py)

Raport complet: dev_docs/SECURITY_REPORT.md
Actiuni arhitecturale ramase (JWT enforcement, rate limiting): SESSION_STATE.md

Co-Authored-By: Claude Sonnet 4.6 (1M context) <noreply@anthropic.com>
2026-04-11 13:20:05 +03:00
Daniel Bedeleanu
903c65a4b4 docs: archive gemini session and hand over to claude for security audit 2026-04-11 13:03:19 +03:00
Daniel Bedeleanu
2e5ce8d153 feat: complete dockerization architecture with data/logs persistence and prod export script v1.3.0 2026-04-11 12:33:13 +03:00
Daniel Bedeleanu
c71a815792 docs: restore automatic IDE entry points as proxies v1.2.9 2026-04-11 12:11:23 +03:00
Daniel Bedeleanu
0a9ea0f575 docs: consolidate all rules and specs into absolute sources of truth v1.2.8 2026-04-11 12:03:27 +03:00