web-app-launcher

alexei.dolgolyov/web-app-launcher

Fork 0

Commit Graph

Author	SHA1	Message	Date
alexei.dolgolyov	3fa30f72a3	feat(auth): auto-login after onboarding, consolidate session cookies Lint & Test / lint-and-check (push) Failing after 5m1s Details Lint & Test / test (push) Has been skipped Details - Extract session cookie issuance into sessionCookies.ts helper; remove duplicated COOKIE_BASE blocks from login, register, oauth callback/authorize, refresh handler, hooks.server.ts, and onboarding. - Derive cookie secure flag from ORIGIN (https://...) instead of NODE_ENV so plain-HTTP production deploys don't silently drop cookies. - Auto-login admin after onboarding completes; UI does a full reload so hooks.server.ts picks up the new session. - Harden onboarding: reject duplicate admin creation, flip onboardingComplete atomically to prevent concurrent completions, error out if no admin found. - Fix Dockerfile CMD operator precedence: node build now always runs after migrate deploy \|\| db push. - Wire ORIGIN env through docker-compose.	2026-04-16 03:28:46 +03:00
alexei.dolgolyov	cf6bde238c	feat(mvp): phase 1 - project scaffolding & tooling Initialize SvelteKit project with Svelte 5, TypeScript strict, Tailwind CSS v4, shadcn-svelte, Prisma + SQLite, Vitest, ESLint, Prettier. Add Docker multi-stage build, docker-compose, and Gitea Actions CI pipeline.	2026-03-24 19:53:06 +03:00

Author

SHA1

Message

Date

alexei.dolgolyov

3fa30f72a3

feat(auth): auto-login after onboarding, consolidate session cookies

Lint & Test / lint-and-check (push) Failing after 5m1s

Details

Lint & Test / test (push) Has been skipped

Details

- Extract session cookie issuance into sessionCookies.ts helper; remove
  duplicated COOKIE_BASE blocks from login, register, oauth callback/authorize,
  refresh handler, hooks.server.ts, and onboarding.
- Derive cookie secure flag from ORIGIN (https://...) instead of NODE_ENV so
  plain-HTTP production deploys don't silently drop cookies.
- Auto-login admin after onboarding completes; UI does a full reload so
  hooks.server.ts picks up the new session.
- Harden onboarding: reject duplicate admin creation, flip onboardingComplete
  atomically to prevent concurrent completions, error out if no admin found.
- Fix Dockerfile CMD operator precedence: node build now always runs after
  migrate deploy || db push.
- Wire ORIGIN env through docker-compose.

2026-04-16 03:28:46 +03:00

alexei.dolgolyov

cf6bde238c

feat(mvp): phase 1 - project scaffolding & tooling

Initialize SvelteKit project with Svelte 5, TypeScript strict, Tailwind CSS v4,
shadcn-svelte, Prisma + SQLite, Vitest, ESLint, Prettier. Add Docker multi-stage
build, docker-compose, and Gitea Actions CI pipeline.

2026-03-24 19:53:06 +03:00

2 Commits