4 Commits

Author	SHA1	Message	Date
hobokenchicken	54c45cbfca	feat(auth): add DB-based token authentication for dashboard-created clients ... Add client_tokens table with auto-generated sk-{hex} tokens so clients created in the dashboard get working API keys. Auth flow: DB token lookup first, then env token fallback, then permissive mode. Includes token management CRUD endpoints and copy-once reveal modal in the frontend.	2026-03-02 15:14:12 -05:00
hobokenchicken	2cdc49d7f2	refactor: comprehensive audit — fix bugs, harden security, deduplicate providers, add CI/Docker ... Phase 1: Fix compilation (config_path Option<PathBuf>, streaming test, stale test cleanup) Phase 2: Fix critical bugs (remove block_on deadlocks in 4 providers, fix broken SQL query builder) Phase 3: Security hardening (session manager, real auth, token masking, Gemini key to header, password policy) Phase 4: Implement stubs (real provider test, /proc health metrics, client/provider/backup endpoints, has_images) Phase 5: Code quality (shared provider helpers, explicit re-exports, all Clippy warnings fixed, unwrap removal, 6 unused deps removed, dashboard split into 7 sub-modules) Phase 6: Infrastructure (GitHub Actions CI, multi-stage Dockerfile, rustfmt.toml, clippy.toml, script fixes)	2026-03-02 00:35:45 -05:00
hobokenchicken	c208ebe59b	feat: implement real admin authentication and password management ... - Added 'users' table to database with bcrypt hashing. - Refactored login to verify against the database. - Implemented 'Security' section in settings to allow changing the admin password. - Initialized system with default user 'admin' and password 'admin'.	2026-02-26 18:47:20 -05:00
hobokenchicken	1755075657	chore: initial clean commit	2026-02-26 13:56:21 -05:00