bollwerk

bollwerkadmin/bollwerk

Fork 0

Commit graph

Author	SHA1	Message	Date
Jens Reinemann	14631c7327	feat(server): User-Konzept Auth, JWT, Admin-CRUD, WebSocket-Push, Admin-UI (#57 ) - Users-Tabelle mit bcrypt-Passwort-Hash - JWT-Auth (Access + Refresh Token) ersetzt API-Key - POST /api/auth/login + /api/auth/refresh - Admin-Endpoints: GET/POST/DELETE/PUT /api/admin/users - Seed-Admin beim Start (KRISENVORRAT_ADMIN_PASSWORD) - Inventar-Endpoints user-spezifisch (userId aus JWT) - PATCH /api/inventory/items/{id} fuer Einzel-Updates - WebSocket /ws/sync mit Push-Events (inventoryUpdated, fullSyncRequired) - Minimale Admin-Web-UI unter /admin/ (XSS-sicher) - Categories/Locations: Surrogate-PK fuer User-Isolation - Alle Server-Tests gruen (43 Tests)	2026-05-16 19:28:03 +02:00
Jens Reinemann	cb576349e0	feat(server): add LAN dev-server integration & end-to-end sync tests Start scripts (PS1 + Shell), Dockerfile, E2E sync tests, and README documentation for Phase 2 LAN server deployment. New files: - start-server.ps1 / start-server.sh: one-command server startup with auto-build, LAN-IP detection, and configurable API key - Dockerfile: multi-stage build (Gradle → JRE Alpine) for container deployment with volume mount for persistent data - .dockerignore: excludes app/, .git, build artifacts from Docker context - EndToEndSyncTest.kt: 7 E2E tests covering full push/pull sync cycle, multi-client overwrite, empty DB pull, multiple round-trips, and auth rejection for unauthenticated requests - README.md: project overview, build instructions, and complete Phase 2 server setup docs (4 start options, LAN setup, API reference, security) Changed files: - AndroidManifest.xml: added usesCleartextTraffic=true for HTTP in LAN Closes #46	2026-05-14 21:45:33 +02:00

Author

SHA1

Message

Date

Jens Reinemann

14631c7327

feat(server): User-Konzept Auth, JWT, Admin-CRUD, WebSocket-Push, Admin-UI (#57 )

- Users-Tabelle mit bcrypt-Passwort-Hash
- JWT-Auth (Access + Refresh Token) ersetzt API-Key
- POST /api/auth/login + /api/auth/refresh
- Admin-Endpoints: GET/POST/DELETE/PUT /api/admin/users
- Seed-Admin beim Start (KRISENVORRAT_ADMIN_PASSWORD)
- Inventar-Endpoints user-spezifisch (userId aus JWT)
- PATCH /api/inventory/items/{id} fuer Einzel-Updates
- WebSocket /ws/sync mit Push-Events (inventoryUpdated, fullSyncRequired)
- Minimale Admin-Web-UI unter /admin/ (XSS-sicher)
- Categories/Locations: Surrogate-PK fuer User-Isolation
- Alle Server-Tests gruen (43 Tests)

2026-05-16 19:28:03 +02:00

Jens Reinemann

cb576349e0

feat(server): add LAN dev-server integration & end-to-end sync tests

Start scripts (PS1 + Shell), Dockerfile, E2E sync tests, and README
documentation for Phase 2 LAN server deployment.

New files:
- start-server.ps1 / start-server.sh: one-command server startup with
  auto-build, LAN-IP detection, and configurable API key
- Dockerfile: multi-stage build (Gradle → JRE Alpine) for container
  deployment with volume mount for persistent data
- .dockerignore: excludes app/, .git, build artifacts from Docker context
- EndToEndSyncTest.kt: 7 E2E tests covering full push/pull sync cycle,
  multi-client overwrite, empty DB pull, multiple round-trips, and auth
  rejection for unauthenticated requests
- README.md: project overview, build instructions, and complete Phase 2
  server setup docs (4 start options, LAN setup, API reference, security)

Changed files:
- AndroidManifest.xml: added usesCleartextTraffic=true for HTTP in LAN

Closes #46

2026-05-14 21:45:33 +02:00

2 commits