11 Commits

Author	SHA1	Message	Date
Torsten Schulz (local)	ad21534862	Add CORS support for Cross-Device Authentication in passkey handling ... Enhance authentication options in the server API by adding CORS headers to support cross-device authentication. Implement handling for preflight OPTIONS requests and increase timeout for registration and authentication processes to 5 minutes, improving user experience and compatibility across devices.	2026-01-07 20:59:48 +01:00
Torsten Schulz (local)	3d9b6b57dc	Refactor authentication handling in Navigation and registration components to support lazy store access, improving resilience against Pinia initialization issues. Enhance registration logic to include optional password fallback for passkey users, with validation checks for password strength and confirmation. Update server-side registration to handle optional password securely, ensuring consistent user experience across different authentication methods.	2026-01-07 20:16:17 +01:00
Torsten Schulz (local)	fde25d92c5	Implement passkey recovery feature, including email link requests and registration options. Update login and registration pages to support passkey authentication, with UI enhancements for user experience. Add server-side handling for passkey registration and login, including account activation checks. Update environment configuration for passkey recovery TTL settings.	2026-01-07 18:37:01 +01:00
Torsten Schulz (local)	946e5fadb0	Refactor deployment script to handle symlinking of public data conditionally based on git tracking status, improving error handling for uncommitted changes. Update PM2 configuration to directly start the Node server for Nuxt 4 production builds in both harheimertc.config.cjs and harheimertc.simple.cjs. Modify user ID handling in registration options to use Uint8Array for compatibility with @simplewebauthn/server.	2026-01-07 18:06:09 +01:00
Torsten Schulz (local)	673c34ac9d	Update Apache SSL configuration and enhance security features across multiple files. Changed X-Frame-Options to SAMEORIGIN for better security, added optional Content Security Policy headers for testing, and improved password handling with HaveIBeenPwned checks during user registration and password reset. Implemented passkey login functionality in the authentication flow, including UI updates for user experience. Enhanced image upload processing with size limits and validation, and added rate limiting for various API endpoints to prevent abuse.	2026-01-05 11:50:57 +01:00
Torsten Schulz (local)	435e28fd55	Update dependencies to include TinyMCE and Quill, enhance Navigation component with a new Newsletter submenu, and implement role-based access control for CMS features. Refactor user role handling to support multiple roles and improve user management functionality across various API endpoints.	2025-12-19 09:51:28 +01:00
Torsten Schulz (local)	680629e1f8	Add dotenv package for environment variable management and refactor SMTP credential handling in email services. Enhance error handling for missing SMTP credentials across various API endpoints to improve reliability and maintainability.	2025-12-18 12:19:23 +01:00
Torsten Schulz (local)	623a63c29f	Implement member management enhancements; add bulk import functionality and duplicate checking based on geburtsdatum. Update API to support new fields and improve error handling for member data submissions. Refactor member-related components for better user experience and data validation.	2025-11-05 14:34:31 +01:00
Torsten Schulz (local)	463418c6e2	Fix cookie secure flag for HTTP testing and add Pinia store	2025-10-21 14:25:07 +02:00
Torsten Schulz (local)	96ff9e5d44	Add user management system with approval workflow and role assignment	2025-10-21 11:35:02 +02:00
Torsten Schulz (local)	2b249577a7	Add authentication system with login, password reset, and member area	2025-10-21 11:23:06 +02:00