Commit Graph

392 Commits

Author SHA1 Message Date
cbfd7232ca fix: convert extracted image blob to base64 before sending to API
The extracted image blob from AI extraction was not being sent to the backend
because Blob objects cannot be JSON serialized. Fixed by:

1. Converting Blob to base64 before sending to API
2. Renaming fields: extractedImageBlob → extracted_image_bytes, imageProcessing → image_processing
3. Removing Blob from local DB (keep original data structure for IndexedDB)
4. Applying same fix to both single item and batch update flows

This ensures the auto-photo-save feature receives the image data it needs.
2026-04-21 19:53:53 +03:00
f72b976c33 docs: update SESSION_STATE for Session 29 - Image Display Bugfix
Documented the image display issue, root cause (type system mismatch),
and the fix applied in v1.14.1. Images now correctly display from
the auto-photo-save feature in both ItemDetailModal and InventoryTable.
2026-04-21 19:47:52 +03:00
a62e4e0b53 build: version bump to v1.14.1 - image display fixes 2026-04-21 19:47:28 +03:00
eaa2d2d29f fix: replace toast.warning with toast.success in useItemCreate
toast.warning is not a valid method in react-hot-toast API. Changed to
toast.success since the item was successfully created even if photo upload failed.
2026-04-21 19:47:16 +03:00
b5fb2a8cdb fix: add photo_path fields to frontend Item interface to display saved photos
The backend returns photo_path, photo_thumbnail_path, and photo_upload_date
from the AI auto-save feature, but the frontend Item interface was missing
these fields, causing images not to display in ItemDetailModal and InventoryTable.

Updated:
- frontend/lib/db.ts: Added missing photo fields to Item interface
- frontend/components/ItemDetailModal.tsx: Use photo_path first, fallback to image_url
- frontend/components/InventoryTable.tsx: Use photo_path first, fallback to image_url

This ensures the UI can now display photos saved by the auto-photo-save feature.
2026-04-21 19:45:19 +03:00
2e61dfe935 chore: clean up test artifacts from photo upload tests 2026-04-21 19:38:18 +03:00
174c35bac3 docs: complete Phase 3 documentation - AI extraction + auto-photo-save implementation complete 2026-04-21 19:35:18 +03:00
baf38f227f docs: update SESSION_STATE for Phase 3 Task 8 (E2E test) completion 2026-04-21 19:33:38 +03:00
c22dadbd1a test: add E2E test for AI extraction + auto-photo-save flow 2026-04-21 19:33:18 +03:00
3ba31a7b48 docs: update SESSION_STATE for Phase 3 Task 7 completion 2026-04-21 19:31:49 +03:00
bbe60bb471 test: add integration tests for item creation with auto-photo-save 2026-04-21 19:31:26 +03:00
b56affa90e docs: update SESSION_STATE for Phase 3 Task 6 completion 2026-04-21 19:27:47 +03:00
08fc785583 feat: pass extracted image and image_processing metadata to item creation
- Updated confirmSingleItem() to include extractedImageBlob and imageProcessing
- Updated confirmAllItems() to pass image data for bulk item creation
- Each extracted item now carries its own image_processing metadata
- All items in bulk creation share the same extracted image blob
- Added 12 comprehensive tests verifying data is passed correctly
- All 465 frontend tests passing, zero regressions
2026-04-21 19:27:17 +03:00
fab1e81cf6 feat: auto-upload photo after item creation if image_processing provided 2026-04-21 19:22:10 +03:00
68f52ccb03 docs: update SESSION_STATE for Phase 3 Task 4 completion 2026-04-21 19:04:35 +03:00
d73b7e45a1 feat: store extracted image blob and image_processing metadata in useAIExtraction hook 2026-04-21 19:04:16 +03:00
2d219af7f6 docs: update SESSION_STATE for Phase 3 Task 3 completion 2026-04-21 19:00:30 +03:00
4f63b3b99e feat: integrate auto-photo-save into item creation endpoint
- Extend ItemCreate schema with optional extracted_image_bytes (base64) and image_processing (dict)
- Update create_item endpoint to call _auto_save_photo_from_extraction after item creation
- Decode base64 image bytes and pass crop_bounds, rotation_degrees to helper
- Don't block item creation if photo save fails (log warning instead)
- Item returned with photo_path, photo_thumbnail_path populated if save succeeded
- Full backward compatibility: old clients without image fields work unchanged
- Add 5 integration tests covering all scenarios:
  - Create item WITH image_processing → photo auto-saved
  - Create item WITHOUT image_processing → no photo (backward compatible)
  - Create item WITH invalid image_processing → item created, photo skipped
  - Create item WITH crop_bounds=None → item created, photo skipped
  - Create item WITH bytes but NO processing metadata → item created, photo skipped
- All 158 backend tests passing, zero regressions
2026-04-21 19:00:06 +03:00
20fc352f6f docs: update SESSION_STATE for Phase 3 Task 2 completion 2026-04-21 18:56:42 +03:00
eca1ab7fd0 feat: add _auto_save_photo_from_extraction helper with graceful fallbacks 2026-04-21 18:56:17 +03:00
e368574fba docs: update SESSION_STATE for Phase 3 Task 1 completion 2026-04-21 18:53:30 +03:00
ada3669217 test: add tests for image_processing field from AI extraction
- Added 11 comprehensive tests for image_processing parsing
- Tests validate crop_bounds structure: {x, y, width, height} all ints >= 0
- Tests validate rotation_degrees: int/float, -360 to +360
- Tests validate confidence: float, 0.0 to 1.0
- Tests graceful handling when image_processing field is missing
- Tests multiple items with image_processing data
- Tests partial data handling (optional fields)
- Tests with both Gemini and Claude providers
- Updated extract_label_info() to preserve and validate image_processing field
- All tests passing, no regressions
2026-04-21 18:53:04 +03:00
76fa22bba9 docs: write implementation plan for AI extraction + auto-photo-save with 9 bite-sized tasks 2026-04-21 18:49:43 +03:00
ed42a9e306 docs: design AI extraction + auto-photo-save with crop/rotation guidance 2026-04-21 18:39:43 +03:00
770b02864d fix: handle CORS preflight OPTIONS requests before routing 2026-04-21 18:17:00 +03:00
87f3b53d53 docs: update SESSION_STATE for CORS security fix completion (Session 20) 2026-04-21 17:58:55 +03:00
6f1e7731d7 fix: implement subnet-aware CORS middleware to replace insecure wildcard origins 2026-04-21 17:58:14 +03:00
0d7ccf834b docs: update SESSION_STATE for Phase 2 completion and handover
Session 19 summary:
- Network configuration fully environment-variable driven (zero hardcoded IPs)
- SSL proxies bound to SERVER_IP for cross-network access
- Frontend uses SERVER_IP for API routing
- Fixed username input focus-jumping bug in login form
- LAN access fully working (192.168.84.131)
- VPN access needs CORS subnet validation (currently blocked)

Known issues documented for next session:
- Temporary allow_origins=['*'] needs replacement with subnet validation
- VPN CORS blocking (subnet notation creates invalid origin URLs)

All 427 tests passing, build successful.
2026-04-21 17:56:11 +03:00
6bf95a0df0 fix: prevent username input from unmounting during typing in login form
The username input was conditionally hidden when it had a value, causing
the field to disappear and focus to jump to password when typing. Fixed by:
1. Always rendering the username input (removed conditional)
2. Using controlled input with value prop
3. Only auto-focus password when username is already entered

This fixes the focus-jumping bug that made it impossible to enter usernames.
2026-04-21 17:54:19 +03:00
904e153d8a temp: allow all CORS origins for debugging LDAP login issue
Temporarily using allow_origins=['*'] to debug whether CORS is blocking
LDAP login requests from VPN client. This is insecure for production.
TODO: Fix subnet pattern matching in ALLOWED_ORIGINS configuration.
2026-04-21 15:32:01 +03:00
fcff97bae2 fix: bind SSL proxies to SERVER_IP for VPN/remote access
local-ssl-proxy was binding to 0.0.0.0 which doesn't work reliably for
cross-network access (VPN, remote clients). Now binds to SERVER_IP from
inventory.env, ensuring the proxy is reachable from all networks that can
reach the server's main IP address.
2026-04-21 15:27:28 +03:00
2daeb1e2ae fix: use SERVER_IP from network config for backend API calls from VPN
When accessing from VPN/Tailscale (e.g., 100.78.182.28), frontend was trying
to reach backend on that same IP, but backend listens on SERVER_IP instead.
Now uses SERVER_IP from network.json config, ensuring remote clients connect
to the correct server address regardless of their access network.
2026-04-21 15:23:12 +03:00
3c9e5a8149 refactor: remove all hardcoded IPs/subnets, use environment variables only
- Next.js allowedDevOrigins now loaded from ALLOWED_DEV_ORIGINS env var
- start_server.sh generates ALLOWED_DEV_ORIGINS from EXTRA_ALLOWED_ORIGINS
- Subnet notation (10.0.0.0/24) auto-converts to wildcard patterns (10.0.0.*)
- Individual IPs convert to subnet patterns (192.168.1.100 -> 192.168.1.*)
- Zero hardcoded IPs in source code - all from inventory.env
2026-04-21 15:21:05 +03:00
2078cd9ade fix: resolve CORS preflight issues and Next.js dev origin warnings
- Simplify backend CORS middleware to use standard FastAPI implementation
- Keep subnet validation function for future use in route-level checks
- Add Tailscale subnet pattern to Next.js allowedDevOrigins config
- Both individual IPs and subnet configurations now work correctly
2026-04-21 15:19:45 +03:00
983d6e4bb4 feat: add subnet-based CORS validation support for VPN/Tailscale origins
- Add ipaddress module for subnet parsing (10.0.0.0/24 format)
- Implement subnet validation in CORS middleware
- Separate individual IPs from subnet definitions in EXTRA_ALLOWED_ORIGINS
- Custom SubnetAwareCORSMiddleware for dynamic origin validation
- Support both exact IP matches and subnet ranges
- Backward compatible with existing ALLOWED_ORIGINS list
2026-04-21 15:17:29 +03:00
8825118795 chore: update service worker 2026-04-21 15:09:39 +03:00
cc42e7cf29 docs: update SESSION_STATE and VERSION for Phase 2 completion and handover 2026-04-21 15:09:35 +03:00
ca68aeae52 chore: update service worker v1.13.0 2026-04-21 15:02:10 +03:00
6d43b16e6e docs: update SESSION_STATE for Phase 2 Task 6 completion 2026-04-21 14:53:59 +03:00
3df15cf68f feat(phase2): add photo display to inventory card with modal viewer
- Create PhotoModal component for full-res photo viewing
- Add photo thumbnail (200px square) to inventory item card
- Implement photo modal trigger on thumbnail click
- Add fallback text when no photo available
- Modal closeable via X button, click outside, or Escape key
- Image scales responsively without stretching
- Add comprehensive test coverage (30+ tests)
- All 427 tests passing, build successful
- TypeScript strict mode compliant
2026-04-21 14:53:27 +03:00
74c91b117f test(phase2): fix mobile E2E test Playwright fixture structure - 15 tests valid 2026-04-21 14:45:24 +03:00
982b09f7b4 test(phase2): add mobile camera integration testing suite and report 2026-04-21 14:43:32 +03:00
5b4bf81444 fix(phase2): remove uppercase text from ItemDetailModal labels (AI_RULES compliance) 2026-04-21 13:47:40 +03:00
a8d7e5ac09 feat(phase2): add admin photo replacement button with ItemDetailModal
- Add ItemDetailModal component for viewing item details and replacing photos
- Add photo replacement/deletion endpoints to API layer (PUT/DELETE /items/{id}/photo)
- Update InventoryTable to open detail modal on item click
- Show current photo thumbnail with Replace/Delete buttons
- Support uploading new photo with ItemPhotoUpload component
- Delete old photo on backend when replacing (no orphaned files)
- Full test coverage: 18 tests for ItemDetailModal component
- All 393 tests passing, zero TypeScript errors
- Build verified successfully
2026-04-21 13:30:38 +03:00
2ba1994022 fix: remove console.error and update uploadPhoto type signature in item creation 2026-04-21 13:26:09 +03:00
661094cfce docs: update SESSION_STATE for Phase 2 Task 3 completion (photo upload integration) 2026-04-21 13:20:31 +03:00
31899be050 feat(phase2): integrate photo upload into item creation
- Create frontend/app/items/create.tsx with multi-step item creation workflow (Details → Photo Upload → Preview → Confirm)
- Create frontend/hooks/useItemCreate.ts custom hook managing form state, step navigation, and photo upload
- Add integration tests for item creation workflow with photo upload support
- Photo upload step supports manual crop UI with crop bounds submission
- ManualCropUI visible by default with toggle to use full photo
- Photo uploaded before item confirmation, ensuring photo is attached
- Works with mobile camera capture via ItemPhotoUpload component
- All 374 tests passing
2026-04-21 13:20:06 +03:00
627711f7e3 chore: update service worker 2026-04-21 13:11:57 +03:00
359f317200 docs: update SESSION_STATE for Phase 2 Task 2 completion 2026-04-21 13:06:00 +03:00
b2e2daf40d feat(phase2): implement ManualCropUI with drag handles
- useCropHandles.ts: Hook managing crop bounds state, drag operations, and constraints
  - 8 draggable handles (4 corners + 4 edges)
  - Real-time crop bounds calculation during drag
  - Constrained within image bounds (no dragging outside)
  - Minimum crop size enforcement (100x100px)
  - Support for mobile (touch) and desktop (mouse) events
  - Bounds validation on initialization

- ManualCropUI.tsx: Interactive crop preview component
  - Responsive image display with calculated scaling
  - Semi-transparent overlay outside crop box with visible bounding box
  - 8 draggable handles with visual feedback (highlight/scale on hover)
  - 'Use Full Photo' button to clear crop and show full image
  - Real-time onCropChange callbacks to parent
  - Error handling for failed image loads
  - Touch and mouse event support (desktop + mobile)
  - TypeScript strict mode compliant

- Tests: 26 comprehensive test cases
  - Hook tests (26 passing): initialization, setCrop, resetCrop, drag operations (corners, edges), constraints, endDrag, edge cases
  - Component tests (26 passing): rendering, handles, overlay, callbacks, button, error handling, dimensions, touch/mouse support, responsive behavior, size enforcement, bounds display

All 364 tests passing (13 test files, zero regressions)
Minimum crop size: 100x100px
Handle visual feedback on hover/drag
TypeScript strict mode: ✓
2026-04-21 13:05:37 +03:00