siftlode/backend
npeter83 283c4c9a1e feat(setup): first-boot detection + setup-mode gating + one-time token (epic 6a)
- app_state gains configured + setup_token_hash (migration 0025); existing installs (any users)
  are marked configured so they never see the wizard, a fresh DB starts in setup mode.
- On first boot the app mints a one-time setup token and logs the wizard URL (only the hash is
  stored); the token gates the setup steps (added in 6c).
- A middleware locks all /api + /auth routes (except /api/setup, /api/version, /healthz, static)
  to 503 until configured, with a DB-free cached fast-path once setup completes.
- GET /api/setup/status tells the SPA whether to show the wizard.
2026-06-21 00:38:47 +02:00
..
alembic feat(setup): first-boot detection + setup-mode gating + one-time token (epic 6a) 2026-06-21 00:38:47 +02:00
app feat(setup): first-boot detection + setup-mode gating + one-time token (epic 6a) 2026-06-21 00:38:47 +02:00
alembic.ini feat: M1 foundation — compose stack, FastAPI, Google OAuth, encrypted tokens 2026-06-11 01:01:37 +02:00
Dockerfile feat: M1 foundation — compose stack, FastAPI, Google OAuth, encrypted tokens 2026-06-11 01:01:37 +02:00
entrypoint.sh fix(api): raise uvicorn keepalive above the proxy reuse window 2026-06-18 15:13:01 +02:00
log_config.json chore: structured timestamped logging across the backend 2026-06-11 04:26:18 +02:00
requirements.txt feat(auth): email+password registration with two-gate activation (5a backend) 2026-06-19 14:03:11 +02:00