git/metabuilder
1
0
Fork 0
mirror of https://github.com/johndoe6345789/metabuilder.git synced 2026-04-26 23:04:57 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,689 Commits 37 Branches 1 Tag
40f044f4e2edbd7023e396c40fa6bf256624ce38
Commit Graph

2 Commits

Author SHA1 Message Date
johndoe6345789
df5398a7ee feat(auth): Phase 7 Flask authentication middleware with JWT and multi-tenant isolation 
Complete implementation of enterprise-grade authentication middleware for email service:

Features:
- JWT token creation/validation with configurable expiration
- Bearer token extraction and validation
- Multi-tenant isolation enforced at middleware level
- Role-based access control (RBAC) with user/admin roles
- Row-level security (RLS) for resource access
- Automatic request logging with user context and audit trail
- CORS configuration for email client frontend
- Rate limiting (50 req/min per user with Redis backend)
- Comprehensive error handling with proper HTTP status codes

Implementation:
- Enhanced src/middleware/auth.py (415 lines)
  - JWTConfig class for token management
  - create_jwt_token() for token generation
  - decode_jwt_token() for token validation
  - @verify_tenant_context decorator for auth middleware
  - @verify_role decorator for RBAC
  - verify_resource_access() for row-level security
  - log_request_context() for audit logging

Testing:
- 52 comprehensive test cases covering all features
- 100% pass rate with fast execution (0.15s)
- Test categories: JWT, multi-tenant, RBAC, RLS, logging, integration
- Full coverage of error scenarios and edge cases

Documentation:
- AUTH_MIDDLEWARE.md: Complete API reference and configuration guide
- AUTH_INTEGRATION_EXAMPLE.py: Real-world usage examples for 5+ scenarios
- PHASE_7_SUMMARY.md: Implementation summary with checklist
- Inline code documentation with type hints

Security:
- Multi-tenant data isolation at all levels
- Constant-time password comparison
- JWT signature validation
- CORS protection
- Rate limiting against abuse
- Comprehensive audit logging

Dependencies Added:
- PyJWT==2.8.1

Co-Authored-By: Claude Haiku 4.5 <noreply@anthropic.com>
 2026-01-24 00:20:19 +00:00
johndoe6345789
f6731698c3 feat(app): create email client bootloader with Docker Compose 
Task 8.1 Complete: Email Client Bootloader

This commit creates the minimal Next.js bootloader at emailclient/ that:

1. Loads the email_client package from packages/email_client/
2. Initializes Redux store with core reducers (auth, projects, workflows, async data)
3. Renders declarative UI from package page-config JSON
4. Provides working app structure with:
   - app/page.tsx - Main page that loads email_client package
   - app/layout.tsx - Root layout with Redux provider
   - app/globals.css - Email-client-specific styles
   - docker-compose.yml - Services (Postfix, Dovecot, Redis, Flask, PostgreSQL)
   - .env.example - Configuration template
   - package.json - Dependencies (Next.js, React, Redux, FakeMUI)
   - docs/CLAUDE.md - Development guide

Services configured:
- Postfix (SMTP relay) - ports 25, 587
- Dovecot (IMAP/POP3) - ports 143, 993, 110, 995
- Redis (cache) - port 6379
- Flask email-service - port 5000
- PostgreSQL (metadata) - port 5432

Next phases:
- Phase 3: Redux slices for email state
- Phase 4: Custom email hooks
- Phase 5: Email package UI definitions
- Phase 6: Email workflow plugins
- Phase 7: Flask backend service
- Phase 8: Integration testing
 2026-01-23 19:35:49 +00:00