linumiq_net-web_app

10 Commits 2 Branches 0 Tags

Author	SHA1	Message	Date
Gerhard Scheikl	dd0ff39890	fix(admin): return 404 (not 500) when deleting an already-removed user GoTrue returns an empty body for a missing-user delete, surfacing as an opaque JSON-parse error; pre-check existence via getUserById for a clean 404.	2026-05-31 13:23:43 +02:00
Gerhard Scheikl	535b2ef202	fix(admin): fresh SSR reads, atomic user delete + sanitized errors, cookie-rotation in middleware, no-store on admin APIs	2026-05-31 13:15:56 +02:00
Gerhard Scheikl	61bf6c013c	fix(admin): deterministic UTC timestamp formatting to remove hydration mismatch	2026-05-31 12:26:41 +02:00
Gerhard Scheikl	b6c4d94990	fix(admin): key tunnels by user_id, server-side initial list load, full-scan user search	2026-05-31 11:46:14 +02:00
Gerhard Scheikl	fb4880a1d9	feat(admin): comprehensive admin interface (users, tunnels, metrics, audit, reserved subdomains) Adds an authenticated admin surface gated by auth.users.app_metadata.role==='admin'. - lib/auth/admin-guard.ts: requireAdmin() (pages) + requireAdminApi() (routes) - middleware.ts: defense-in-depth /admin and /api/admin guarding - API: users (list/detail/role/ban/delete), tunnels (list + active/quota/reset/reassign/regenerate-token/delete), metrics, audit log, reserved subdomains - Self-lockout prevention (no self demote/ban/delete) - Best-effort Redis kill-switch via dependency-free net-socket client (REDIS_URL) - admin_audit_log + reserved_subdomains migration (RLS on, service-role only) - Admin UI (overview, users, tunnels, reserved, audit) + conditional nav link	2026-05-31 10:58:23 +02:00
linumiq_net-user	aad01f1fc5	security-update	2026-05-31 10:19:06 +02:00
linumiq_net-user	6b59c01744	dev: parameterize compose so one file serves prod + dev image/container/network/project names now come from env (WEB_IMAGE, WEB_CONTAINER, WEB_NETWORK, WEB_PROJECT) with prod values as defaults. Dev supplies its values via the gitignored .env.production. Makes dev->main merge safe (prod resolves to web/web:1.0.0/edge by default).	2026-05-30 14:18:40 +02:00
linumiq_net-user	f1cca454e2	dev: parameterize compose for dev build (web-dev image/container, dev_edge network) - image web-dev:1.0.0, container web-dev, network dev_edge - NEXT_PUBLIC_* build args resolved from gitignored .env.production (api-dev/app-dev URLs) so the dev bundle targets the dev API. - ignore .env.production (dev secrets) in this branch.	2026-05-30 13:24:23 +02:00
linumiq_net-user	6c1221c60f	security update	2026-05-30 12:49:51 +02:00
root	c935e39fa1	initial commit	2026-05-29 17:07:00 +02:00