Daniel Bedeleanu
e6ca33f2f0
feat: frontend JWT handling, rate limiting [H-02], CORS config
Frontend:
- Creiez frontend/lib/auth.ts cu saveToken, getToken, getAuthHeader, clearAuth
- Modific api.ts: axiosInstance cu interceptor Bearer token + 401 → /login redirect
- Modific login page: salveaza JWT token din response
Backend:
- [H-02] Integrez slowapi rate limiting: 10 req/minute pe /items/extract-label
- [M-01] CORS: ALLOWED_ORIGINS din env (dev fallback: localhost:3000, localhost:3002)
- [C-01] JWT_SECRET_KEY din env (dev fallback: ephemeral key)
docker-compose.yml:
- Adaug ALLOWED_ORIGINS env var (dev: localhost)
- Adaug JWT_SECRET_KEY env var cu fallback warning
Status:
- ✅ JWT backend: complet
- ✅ JWT frontend: token save + attach + 401 handling
- ✅ Rate limiting: 10/min pe extract-label
- ✅ CORS: configurable via env
Gata pentru dev + testing local.
Co-Authored-By: Claude Sonnet 4.6 (1M context) <noreply@anthropic.com>
2026-04-11 13:42:09 +03:00
..
2026-04-11 13:42:09 +03:00
2026-04-11 11:46:34 +03:00
2026-04-11 13:42:09 +03:00
2026-04-10 21:51:22 +03:00
2026-04-10 14:05:52 +03:00
2026-04-11 12:33:13 +03:00
2026-04-10 21:51:22 +03:00
2026-04-11 12:33:13 +03:00
2026-04-10 21:51:22 +03:00
2026-04-10 21:51:22 +03:00
2026-04-10 14:05:50 +03:00
2026-04-10 21:51:22 +03:00
2026-04-10 14:05:50 +03:00