siftlode/backend/app
npeter83 8f5e26d2ee feat(auth): email+password registration with two-gate activation (5a backend)
Add email+password auth alongside Google: argon2id hashing; users gains
password_hash/email_verified/is_active and google_sub becomes nullable (migration
0022); a single-use, hashed auth_tokens table for email verification + password
reset. Registration creates a pending (inactive, unverified) account + an access
request; sign-in needs verified email AND admin approval. Anti-enumeration: uniform
register/login/reset responses (a correct-password owner still gets a specific
pending reason). allow_registration flag (DB-tunable). Admin users-list + role
endpoint (guards: not self, not demo, not the last admin); approving access (or a
manual whitelist add) now activates the matching pending account. current_user
rejects deactivated accounts. Verified end-to-end via curl + DB.
2026-06-19 14:03:11 +02:00
..
routes feat(auth): email+password registration with two-gate activation (5a backend) 2026-06-19 14:03:11 +02:00
static chore: rebrand Subfeed -> Siftlode 2026-06-14 04:40:22 +02:00
sync feat(config): move operational params to DB (quota/backfill/shorts/batch) 2026-06-19 13:07:45 +02:00
youtube feat(config): move youtube_api_key to DB (encrypted, admin-editable) 2026-06-19 13:19:06 +02:00
__init__.py feat: M1 foundation — compose stack, FastAPI, Google OAuth, encrypted tokens 2026-06-11 01:01:37 +02:00
auth.py feat(auth): email+password registration with two-gate activation (5a backend) 2026-06-19 14:03:11 +02:00
config.py feat(auth): email+password registration with two-gate activation (5a backend) 2026-06-19 14:03:11 +02:00
db.py feat: M1 foundation — compose stack, FastAPI, Google OAuth, encrypted tokens 2026-06-11 01:01:37 +02:00
email.py feat(auth): email+password registration with two-gate activation (5a backend) 2026-06-19 14:03:11 +02:00
main.py feat(config): DB-backed system_config infrastructure + SMTP group 2026-06-19 12:22:36 +02:00
models.py feat(auth): email+password registration with two-gate activation (5a backend) 2026-06-19 14:03:11 +02:00
notifications.py feat(notifications): durable per-user inbox (P1) + maintenance schema 2026-06-18 03:20:17 +02:00
progress.py feat(scheduler): admin run-now/run-all triggers + live progress + completion notices 2026-06-18 04:01:10 +02:00
quota.py feat(config): move operational params to DB (quota/backfill/shorts/batch) 2026-06-19 13:07:45 +02:00
ratelimit.py feat(demo): demo-account schema + reusable rate limiter 2026-06-16 09:17:14 +02:00
scheduler.py refactor(quota): canonical <entity>_<action> taxonomy for quota events 2026-06-19 11:48:11 +02:00
security.py feat(auth): email+password registration with two-gate activation (5a backend) 2026-06-19 14:03:11 +02:00
state.py feat(scheduler): admin-tunable maintenance re-validation batch size 2026-06-18 04:37:08 +02:00
sysconfig.py feat(auth): email+password registration with two-gate activation (5a backend) 2026-06-19 14:03:11 +02:00