velocitatem/cvfs
1
0
Fork 0
mirror of https://github.com/velocitatem/cvfs.git synced 2026-05-31 08:43:37 +00:00
Code Issues Packages Projects Releases Wiki Activity
67 Commits 15 Branches 0 Tags
7435a0f1bf456191535c5145b479e4dbcd9beebd
Commit Graph

67 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
copilot-swe-agent[bot]
7435a0f1bf feat: add CV view analytics and PDF rendering for public share links 
Agent-Logs-Url: https://github.com/velocitatem/cvfs/sessions/fb35fb9a-a89e-4df0-9584-109f7151509c

Co-authored-by: velocitatem <60182044+velocitatem@users.noreply.github.com>
 2026-04-04 05:59:05 +00:00
copilot-swe-agent[bot]
b63417b8b3 Initial plan 2026-04-04 05:50:23 +00:00
Daniel Rosel
66bf016747 verify tokens using full jwks and relaxed options 2026-04-03 19:51:48 +02:00
Daniel Rosel
dfc3764bcc normalize discovery issuer path 2026-04-03 19:45:20 +02:00
Daniel Rosel
b5053c5536 strip authorize suffix from issuer 2026-04-03 19:37:49 +02:00
Daniel Rosel
d2ad0c3fdd use raw issuer for discovery 2026-04-03 19:36:22 +02:00
Daniel Rosel
effb9161f8 use kid-specific jwk for verification 2026-04-03 19:33:56 +02:00
Daniel Rosel
fa215009cd allow jwt alg from token header 2026-04-03 19:31:23 +02:00
Daniel Rosel
e7bac3b178 discover jwks uri from oidc configuration 2026-04-03 19:28:03 +02:00
Daniel Rosel
ba0612efb8 parse authentik issuer path correctly 2026-04-03 19:24:54 +02:00
Daniel Rosel
7e5f2bb06a fix authentik issuer normalization 2026-04-03 19:22:51 +02:00
Daniel Rosel
5a8e8f1572 force authentik issuer base 2026-04-03 19:21:13 +02:00
Daniel Rosel
9f90b000e2 normalize oidc issuer for authentik 2026-04-03 19:18:27 +02:00
Daniel Rosel
dce592c086 redirect using public base url 2026-04-03 19:15:37 +02:00
Daniel Rosel
531c27b669 use authentik host for authorize urls 2026-04-03 19:13:28 +02:00
Daniel Rosel
81165ca9db normalize authentik issuer paths 2026-04-03 19:04:43 +02:00
Daniel Rosel
3f6b9a4f81 propagate authentik env into web build 2026-04-03 19:01:17 +02:00
Daniel Rosel
dcfe207389 wire authentik env vars in compose 2026-04-03 18:47:42 +02:00
Daniel Rosel
5ccae82cfd load env file for compose services 2026-04-03 18:45:32 +02:00
Daniel Rosel
af7a9cb63f fix cascade delete on cv versions 2026-04-03 18:28:54 +02:00
Daniel Alves Rösel
d6e5e563f1 Merge pull request #3 from velocitatem/copilot/add-delete-buttons-and-fix-header 
Rename to cvfs, remove dashboard heading, add branch delete buttons
 2026-04-03 19:17:40 +04:00
copilot-swe-agent[bot]
77d454cf09 rename to cvfs, remove dashboard heading, add branch delete buttons 
Agent-Logs-Url: https://github.com/velocitatem/cvfs/sessions/2bd56e04-d1e0-4e38-93b6-a99afc1d2b3c

Co-authored-by: velocitatem <60182044+velocitatem@users.noreply.github.com>
 2026-04-03 15:08:05 +00:00
copilot-swe-agent[bot]
7543402c83 Initial plan 2026-04-03 15:03:54 +00:00
Daniel Alves Rösel
83b609f815 Merge pull request #2 from velocitatem/copilot/add-mobile-support-and-deleting-functions 
Add mobile support, CV/branch deletion, and fix DOCX export to include patches
 2026-04-03 18:54:47 +04:00
copilot-swe-agent[bot]
5d815cd24d feat: add mobile support, delete CV/branch, and fix DOCX export with patches 
Agent-Logs-Url: https://github.com/velocitatem/cvfs/sessions/4d754ed6-7f63-44e0-8689-123d7a70595f

Co-authored-by: velocitatem <60182044+velocitatem@users.noreply.github.com>
 2026-04-03 14:45:54 +00:00
copilot-swe-agent[bot]
300a577fbe Initial plan 2026-04-03 14:31:39 +00:00
Daniel Alves Rösel
2002a78509 Merge pull request #1 from velocitatem/claude/cv-branching-dashboard-XGi60 
fix(webapp): use Web Crypto API in middleware and drop node: prefix in auth route
 2026-04-03 18:09:34 +04:00
Claude
8d72dfa09d fix(webapp): use Web Crypto API in middleware and drop node: prefix in auth route 
Middleware runs in Edge Runtime (no Node.js built-ins), so use
globalThis.crypto.subtle for HMAC verification. Route handler uses
`import { createHmac } from 'crypto'` without the node: prefix
which webpack cannot resolve during Next.js build.

https://claude.ai/code/session_01CdisLhbC2kVt2hxfJ7TNPf
 2026-04-03 13:59:09 +00:00
Daniel Alves Rösel
684936ab72 Add AI-powered CV tailoring, submissions tracking, and auth overhaul 2026-04-03 17:57:28 +04:00
Claude
01f34915f6 feat(dashboard): complete CV branching dashboard with auth and full editing workflow 
- Visual branch heritage tree with colored dots and connecting lines, depth-aware expand/collapse
- Dashboard 3-tab layout: Content (inline block editing + patch staging), Patches (diff view), Submissions (AI suggestions)
- Inline block editing: click to edit any CV block, stage edits, save as named branch with pre-filled patches
- Submissions tab: create applications, request AI tailoring suggestions, accept/reject per suggestion
- Simple hardcoded login (username/password via env vars LOGIN_USER/LOGIN_PASS, defaults admin/admin)
- Authentik OIDC integration: authorize redirect + callback exchange, configurable via NEXT_PUBLIC_AUTHENTIK_*
- Middleware protecting /dashboard with session cookie verification (HMAC-SHA256)
- Auth API routes: /api/auth/login, /api/auth/logout, /api/auth/callback, /api/auth/token
- Backend: GET/PATCH submission routes for listing submissions and accepting/rejecting AI suggestions
- API client: OIDC bearer token forwarding from client-readable cookie

https://claude.ai/code/session_01CdisLhbC2kVt2hxfJ7TNPf
 2026-04-03 13:45:51 +00:00
Daniel Rosel
9a8add0bcd feat(webapp): add public CV viewer redirect route 2026-04-02 21:11:54 +02:00
Daniel Rosel
abf424779d fix(db): ensure patches are eager-loaded when creating a new branch 2026-04-02 21:06:45 +02:00
Daniel Rosel
3ebe9d3fb8 fix(db): resolve ambiguous foreign key relationships in join queries 2026-04-02 21:04:24 +02:00
Daniel Rosel
1ff7c5b23a fix(db): specify ON conditions in publication queries to avoid ambiguous foreign keys 2026-04-02 20:57:07 +02:00
Daniel Rosel
0d1020e503 fix(db): ensure versions and patches are loaded when returning created document 2026-04-02 20:55:59 +02:00
Daniel Rosel
28678ab17f fix(db): specify foreign keys for CvDocument.versions relationship to resolve ambiguity 2026-04-02 20:53:53 +02:00
Daniel Rosel
93f9e88fc4 fix(api): fix trailing slash proxy redirects 2026-04-02 20:50:55 +02:00
Daniel Rosel
bd116ff247 fix(docker): correct minio environment variable format 2026-04-02 20:47:53 +02:00
Daniel Rosel
02a682b401 fix(networking): update MINIO_ENDPOINT to use public URL and allow trailing slashes in FastAPI 2026-04-02 20:46:19 +02:00
Daniel Alves Rösel
f1a85da721 Disable automatic trailing slash redirect in FastAPI 2026-04-02 22:35:45 +04:00
Claude
ab04d1aed0 Disable FastAPI redirect_slashes to stop 307s on API routes 
https://claude.ai/code/session_01Xmxm2QLgFBgRJyYD6VukR6
 2026-04-02 18:35:10 +00:00
Daniel Alves Rösel
fe820c7969 Update default API backend URL to production endpoint 2026-04-02 22:32:23 +04:00
Claude
86fbcfcf77 Set proxy fallback to https://api.cv.alves.world 
https://claude.ai/code/session_01Xmxm2QLgFBgRJyYD6VukR6
 2026-04-02 18:31:38 +00:00
Daniel Alves Rösel
6fe9c84034 Configure backend API endpoint for Docker deployments 2026-04-02 22:30:03 +04:00
Claude
de6b655911 Fix proxy default: use cvfs-backend:8080 instead of localhost:9812 
API_BASE_URL env var isn't reaching Next.js in Dokploy, so the fallback
was localhost:9812. Default to the correct container hostname so it works
without any env var configuration. Local dev still overrides via API_BASE_URL.

https://claude.ai/code/session_01Xmxm2QLgFBgRJyYD6VukR6
 2026-04-02 18:29:15 +00:00
Daniel Alves Rösel
72f9993261 Remove API_BASE_URL constant and use relative API paths 2026-04-02 22:26:30 +04:00
Claude
e716195d8c Fix UploadResumeCard: remove API_BASE_URL import, use relative URL 
https://claude.ai/code/session_01Xmxm2QLgFBgRJyYD6VukR6
 2026-04-02 18:26:09 +00:00
Daniel Alves Rösel
3f00bf209f Move API base URL to server-side configuration via Next.js rewrites 2026-04-02 22:24:46 +04:00
Claude
f3d1ddad5d Fix API URL config: use Next.js rewrite proxy instead of NEXT_PUBLIC_* 
NEXT_PUBLIC_* is baked at build time so runtime docker-compose environment
vars have no effect. Instead:
- next.config.ts rewrites /api/* -> API_BASE_URL/api/* at the server level
- api.ts uses relative paths (no env var in client bundle at all)
- docker-compose passes API_BASE_URL=http://cvfs-backend:8080 at runtime
- Dockerfile no longer needs any build args

Requests: browser -> Next.js server (/api/*) -> cvfs-backend:8080 (/api/*)

https://claude.ai/code/session_01Xmxm2QLgFBgRJyYD6VukR6
 2026-04-02 18:23:58 +00:00
Claude
53a05feae5 Fix NEXT_PUBLIC_API_BASE_URL not applying in production build 
NEXT_PUBLIC_* vars are inlined at build time, not runtime.
Pass as Docker build arg so Next.js picks it up during bun run build.

https://claude.ai/code/session_01Xmxm2QLgFBgRJyYD6VukR6
 2026-04-02 18:21:28 +00:00