yolkbook

CooperandGoodman/yolkbook

Fork 0

Commit Graph

Author	SHA1	Message	Date
derekc	392a48dfb9	Go-live hardening: server_tokens, resource limits, pinned images, CVE fixes - Add server_tokens off to nginx (suppress version leakage) - Add deploy.resources.limits to all containers (db: 512M, api: 256M, nginx: 64M) - Pin image tags: mysql:8.0 → 8.0.45, nginx:alpine → 1.29.6-alpine - Fix CVEs: cryptography 43.0.3 → 46.0.5 (HIGH), python-jose 3.3.0 → 3.4.0 (CRITICAL) - Add .limit(500) to GET /api/flock and GET /api/admin/users Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-03-20 00:16:28 -07:00
derekc	aa12648228	Add multi-user auth, admin panel, and timezone support; rename to Yolkbook - Rename app from Eggtracker to Yolkbook throughout - Add JWT-based authentication (python-jose, passlib/bcrypt) - Add users table; all data tables gain user_id FK for full data isolation - Super admin credentials sourced from ADMIN_USERNAME/ADMIN_PASSWORD env vars, synced on every startup; orphaned rows auto-assigned to admin post-migration - Login page with self-registration; JWT stored in localStorage (30-day expiry) - Admin panel (/admin): list users, reset passwords, disable/enable, delete, and impersonate (Login As) with Return to Admin banner - Settings modal (gear icon in nav): timezone selector and change password - Timezone stored per-user; stats date windows computed in user's timezone; date input setToday() respects user timezone via Intl API - migrate_v2.sql for existing single-user installs - Auto-migration adds timezone column to users on startup - Updated README with full setup, auth, admin, and migration docs Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-03-17 23:19:29 -07:00
derekc	492e1fd68f	Initial commit Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-02-26 22:27:58 -08:00

Author

SHA1

Message

Date

derekc

392a48dfb9

Go-live hardening: server_tokens, resource limits, pinned images, CVE fixes

- Add server_tokens off to nginx (suppress version leakage)
- Add deploy.resources.limits to all containers (db: 512M, api: 256M, nginx: 64M)
- Pin image tags: mysql:8.0 → 8.0.45, nginx:alpine → 1.29.6-alpine
- Fix CVEs: cryptography 43.0.3 → 46.0.5 (HIGH), python-jose 3.3.0 → 3.4.0 (CRITICAL)
- Add .limit(500) to GET /api/flock and GET /api/admin/users

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-03-20 00:16:28 -07:00

derekc

aa12648228

Add multi-user auth, admin panel, and timezone support; rename to Yolkbook

- Rename app from Eggtracker to Yolkbook throughout
- Add JWT-based authentication (python-jose, passlib/bcrypt)
- Add users table; all data tables gain user_id FK for full data isolation
- Super admin credentials sourced from ADMIN_USERNAME/ADMIN_PASSWORD env vars,
  synced on every startup; orphaned rows auto-assigned to admin post-migration
- Login page with self-registration; JWT stored in localStorage (30-day expiry)
- Admin panel (/admin): list users, reset passwords, disable/enable, delete,
  and impersonate (Login As) with Return to Admin banner
- Settings modal (gear icon in nav): timezone selector and change password
- Timezone stored per-user; stats date windows computed in user's timezone;
  date input setToday() respects user timezone via Intl API
- migrate_v2.sql for existing single-user installs
- Auto-migration adds timezone column to users on startup
- Updated README with full setup, auth, admin, and migration docs

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-03-17 23:19:29 -07:00

derekc

492e1fd68f

Initial commit

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-02-26 22:27:58 -08:00

3 Commits