davidherran
3a94e7c003
Security (critical):
- SESSION_SECRET fail-fast: refuse to boot without a 32+ char secret
(src/lib/session.ts, src/app/actions/clientAuth.ts)
- Rate limit with pluggable backend: in-memory by default, auto-promotes
to Upstash Redis when REDIS_URL is set (src/lib/rateLimit.ts)
- CSRF (double-submit HMAC) + Zod validation on /api/consultation;
new /api/csrf endpoint mints tokens (src/lib/csrf.ts)
- escapeHtml + safeMailto helpers; consultation email template now
fully escapes user-controlled fields (src/lib/escapeHtml.ts)
- Magic-byte validation for /api/public-upload — rejects HTML/JS
payloads renamed to .png/.mp4 (src/lib/fileType.ts)
- Nginx: CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy,
Permissions-Policy + 5r/m upload zone for /api/public-upload and
/api/assets (nginx/conf.d/flux.conf)
Quality:
- Delete GlobalOperations_old.tsx dead code (310 LOC)
- NavBar: replace 2s session polling with CustomEvent("flux:session-
changed") + visibilitychange listener (no more interval leaks)
- Type-safe CMS shapes via src/types/cms.ts (replaces any[] in
ApplicationsDashboard + GlobalOperations)
- /api/health now pings Postgres; docker-compose healthcheck added
- Structured JSON logger (src/lib/logger.ts) — drop-in replacement
for console.error across API routes
- Prisma indices on isActive/category/nodeType filters
FluxAI persistence + analytics:
- New models AiConversation + AiEvent with funnel stage detection
(DISCOVERY -> QUALIFY -> RECOMMEND -> HANDOFF) and OperationsSignal
back-ref so converted chats link to their consultation ticket
- /api/chat persists every user msg, ai msg, tool call, tool result;
IP is sha256-hashed with SESSION_SECRET salt; promptCacheKey wired
for when @ai-sdk/openai lands the feature
- New HQ dashboard at /hq-command/dashboard/conversations: 4 KPIs
(total, conversion rate, avg messages, avg tools), funnel + industry
breakdowns, last-50 table, per-id transcript with tool timeline
- SilentObserver sends sessionId/locale/pageUrl in transport body so
the route can stitch messages into the same conversation
- src/lib/aiSessionId.ts: localStorage UUID with sessionStorage +
in-memory fallbacks for privacy mode
- Golden tests via node --test (13 cases, no new deps);
npm run test:ai
Migration:
- prisma/migrations/20260526180000_add_indexes_and_ai_telemetry —
additive only, IF NOT EXISTS guards, safe for migrate deploy
env template hardened: SESSION_SECRET documented as required + how
to generate; REDIS_URL/REDIS_TOKEN documented as opt-in for multi-
instance deploys.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
116 lines
3.4 KiB
YAML
116 lines
3.4 KiB
YAML
# ═══════════════════════════════════════════════════════════════
|
|
# FLUX SRL — Docker Compose (Production)
|
|
# Services: PostgreSQL 16 + Next.js App + Nginx
|
|
# ═══════════════════════════════════════════════════════════════
|
|
|
|
services:
|
|
|
|
# ── PostgreSQL Database ──
|
|
postgres:
|
|
image: postgres:16-alpine
|
|
restart: always
|
|
environment:
|
|
POSTGRES_USER: ${DB_USER}
|
|
POSTGRES_PASSWORD: ${DB_PASSWORD}
|
|
POSTGRES_DB: ${DB_NAME}
|
|
volumes:
|
|
- pgdata:/var/lib/postgresql/data
|
|
networks:
|
|
- flux-net
|
|
healthcheck:
|
|
test: ["CMD-SHELL", "pg_isready -U ${DB_USER} -d ${DB_NAME}"]
|
|
interval: 5s
|
|
timeout: 5s
|
|
retries: 5
|
|
command:
|
|
- postgres
|
|
- -c
|
|
- shared_buffers=256MB
|
|
- -c
|
|
- effective_cache_size=1GB
|
|
- -c
|
|
- work_mem=16MB
|
|
- -c
|
|
- maintenance_work_mem=128MB
|
|
- -c
|
|
- max_connections=50
|
|
- -c
|
|
- random_page_cost=1.1
|
|
|
|
# ── Next.js Application ──
|
|
app:
|
|
build:
|
|
context: .
|
|
dockerfile: Dockerfile
|
|
restart: always
|
|
depends_on:
|
|
postgres:
|
|
condition: service_healthy
|
|
environment:
|
|
DATABASE_URL: postgresql://${DB_USER}:${DB_PASSWORD}@postgres:5432/${DB_NAME}?schema=public
|
|
OPENAI_API_KEY: ${OPENAI_API_KEY}
|
|
SESSION_SECRET: ${SESSION_SECRET}
|
|
NEXT_PUBLIC_APP_URL: ${NEXT_PUBLIC_APP_URL}
|
|
SMTP_HOST: ${SMTP_HOST}
|
|
SMTP_PORT: ${SMTP_PORT}
|
|
SMTP_USER: ${SMTP_USER}
|
|
SMTP_PASS: ${SMTP_PASS}
|
|
SMTP_FROM: ${SMTP_FROM}
|
|
SMTP_SECURE: ${SMTP_SECURE}
|
|
NODE_ENV: production
|
|
# Optional: REDIS_URL enables multi-instance rate limiting. Leave unset
|
|
# for the current single-container deploy — the in-memory store is used.
|
|
REDIS_URL: ${REDIS_URL:-}
|
|
REDIS_TOKEN: ${REDIS_TOKEN:-}
|
|
volumes:
|
|
- ./public/footage:/app/public/footage
|
|
- ./public/applications:/app/public/applications
|
|
- ./public/cases:/app/public/cases
|
|
- ./public/news:/app/public/news
|
|
- ./public/parts:/app/public/parts
|
|
- ./public/operations-inbox:/app/public/operations-inbox
|
|
- ./public/branding:/app/public/branding
|
|
networks:
|
|
- flux-net
|
|
expose:
|
|
- "3000"
|
|
healthcheck:
|
|
test:
|
|
- CMD-SHELL
|
|
- "node -e \"fetch('http://localhost:3000/api/health').then(r => process.exit(r.ok ? 0 : 1)).catch(() => process.exit(1))\""
|
|
interval: 30s
|
|
timeout: 5s
|
|
retries: 3
|
|
start_period: 40s
|
|
|
|
# ── Nginx Reverse Proxy ──
|
|
nginx:
|
|
image: nginx:alpine
|
|
restart: always
|
|
ports:
|
|
- "80:80"
|
|
- "443:443"
|
|
volumes:
|
|
- ./nginx/nginx.conf:/etc/nginx/nginx.conf:ro
|
|
- ./nginx/conf.d:/etc/nginx/conf.d:ro
|
|
- ./certbot/conf:/etc/letsencrypt:ro
|
|
- ./certbot/www:/var/www/certbot:ro
|
|
- ./public/cases:/srv/cases:ro
|
|
- ./public/applications:/srv/applications:ro
|
|
- ./public/news:/srv/news:ro
|
|
- ./public/parts:/srv/parts:ro
|
|
- ./public/footage:/srv/footage:ro
|
|
- ./public/operations-inbox:/srv/operations-inbox:ro
|
|
- ./public/branding:/srv/branding:ro
|
|
depends_on:
|
|
- app
|
|
networks:
|
|
- flux-net
|
|
|
|
volumes:
|
|
pgdata:
|
|
|
|
networks:
|
|
flux-net:
|
|
driver: bridge
|