bollwerk

History

Jens Reinemann 14631c7327 feat(server): User-Konzept Auth, JWT, Admin-CRUD, WebSocket-Push, Admin-UI (#57 ) - Users-Tabelle mit bcrypt-Passwort-Hash - JWT-Auth (Access + Refresh Token) ersetzt API-Key - POST /api/auth/login + /api/auth/refresh - Admin-Endpoints: GET/POST/DELETE/PUT /api/admin/users - Seed-Admin beim Start (KRISENVORRAT_ADMIN_PASSWORD) - Inventar-Endpoints user-spezifisch (userId aus JWT) - PATCH /api/inventory/items/{id} fuer Einzel-Updates - WebSocket /ws/sync mit Push-Events (inventoryUpdated, fullSyncRequired) - Minimale Admin-Web-UI unter /admin/ (XSS-sicher) - Categories/Locations: Surrogate-PK fuer User-Isolation - Alle Server-Tests gruen (43 Tests)	2026-05-16 19:28:03 +02:00
..
wrapper	feat: Android-Projekt-Gerüst anlegen (#13 )	2026-05-13 15:24:39 +02:00
libs.versions.toml	feat(server): User-Konzept Auth, JWT, Admin-CRUD, WebSocket-Push, Admin-UI (#57 )	2026-05-16 19:28:03 +02:00

Jens Reinemann 14631c7327 feat(server): User-Konzept Auth, JWT, Admin-CRUD, WebSocket-Push, Admin-UI (#57 )

- Users-Tabelle mit bcrypt-Passwort-Hash
- JWT-Auth (Access + Refresh Token) ersetzt API-Key
- POST /api/auth/login + /api/auth/refresh
- Admin-Endpoints: GET/POST/DELETE/PUT /api/admin/users
- Seed-Admin beim Start (KRISENVORRAT_ADMIN_PASSWORD)
- Inventar-Endpoints user-spezifisch (userId aus JWT)
- PATCH /api/inventory/items/{id} fuer Einzel-Updates
- WebSocket /ws/sync mit Push-Events (inventoryUpdated, fullSyncRequired)
- Minimale Admin-Web-UI unter /admin/ (XSS-sicher)
- Categories/Locations: Surrogate-PK fuer User-Isolation
- Alle Server-Tests gruen (43 Tests)

2026-05-16 19:28:03 +02:00

wrapper

feat: Android-Projekt-Gerüst anlegen (#13 )

2026-05-13 15:24:39 +02:00

libs.versions.toml

feat(server): User-Konzept Auth, JWT, Admin-CRUD, WebSocket-Push, Admin-UI (#57 )

2026-05-16 19:28:03 +02:00