Skip to content
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
199 commits
Select commit Hold shift + click to select a range
df8bf2e
Update submodule pointers — final session cleanup
ahmetabdullahgultekin Mar 28, 2026
f6b1c33
Update web-app submodule — E2E fixes final
ahmetabdullahgultekin Mar 28, 2026
a564630
chore: update docs, README, and submodule pointers
ahmetabdullahgultekin Mar 28, 2026
f48bddf
feat: Phase 0-5 fixes + CRUD/RBAC test scripts
ahmetabdullahgultekin Mar 28, 2026
dff9d01
chore: update docs submodule pointer (dead links fix)
ahmetabdullahgultekin Mar 28, 2026
1d0ff9b
fix: test script lastName validation — digits not allowed, use letters
ahmetabdullahgultekin Mar 28, 2026
4ce875e
Fix 3 failing CRUD tests and harden RBAC test script
ahmetabdullahgultekin Mar 28, 2026
84905c7
feat: complete Phase 7 — integration guide, demo app, roadmap update
ahmetabdullahgultekin Mar 28, 2026
5e85a01
feat: Phase 6 domain restructure + Phase 7 complete + production fixes
ahmetabdullahgultekin Mar 28, 2026
537d42a
feat: UI polish — NFC UX, responsive, i18n, settings audit, CORS fix
ahmetabdullahgultekin Mar 28, 2026
964f43e
feat: admin-only pages, hardware key info, login page cleanup
ahmetabdullahgultekin Mar 28, 2026
1084a1a
Add Phase 8: Identity Verification Pipeline to roadmap
ahmetabdullahgultekin Mar 28, 2026
69e6519
feat: Phase 8A — Verification Pipeline backend deployed
ahmetabdullahgultekin Mar 28, 2026
e5ae475
docs: Verification Pipeline Architecture (1,971 lines)
ahmetabdullahgultekin Mar 28, 2026
cc96cc8
feat: Phase 8B-8E — verification pipeline endpoints + step handlers d…
ahmetabdullahgultekin Mar 28, 2026
f6a0a20
feat: Phase 8D — Verification Admin UI deployed
ahmetabdullahgultekin Mar 28, 2026
a80d699
fix: RLS enforcement, liveness 415, Phase 6 domain adapters, E2E tests
ahmetabdullahgultekin Mar 28, 2026
81a7892
feat: add verification pipeline E2E test script
ahmetabdullahgultekin Mar 28, 2026
2f6ad9d
fix: verification pipeline E2E tested — client path fix + V27 seeds +…
ahmetabdullahgultekin Mar 28, 2026
d7f1eeb
feat: Android CI, Tesseract OCR, Video Interview — all remaining item…
ahmetabdullahgultekin Mar 28, 2026
976d2c4
docs: update all documentation to reflect Phase 8 completion
ahmetabdullahgultekin Mar 28, 2026
262b91a
chore: update web-app submodule pointer for CLAUDE.md docs update
ahmetabdullahgultekin Mar 28, 2026
65a1a65
ci: add iOS build workflow to client-apps
ahmetabdullahgultekin Mar 28, 2026
7d24176
feat: mobile app fully wired + APK v1.0.0 released
ahmetabdullahgultekin Mar 28, 2026
06e2edf
docs: final CLAUDE.md updates + submodule pointer sync
ahmetabdullahgultekin Mar 28, 2026
e28c570
Add step-up auth docs and Cloudflare tunnel script
ahmetabdullahgultekin Mar 28, 2026
b80a27d
feat: 90/90 mobile tests passing + desktop kiosk mode + ProGuard fix
ahmetabdullahgultekin Mar 28, 2026
d4c8986
security: full audit & remediation — 42 of 43 findings fixed
ahmetabdullahgultekin Mar 31, 2026
11e9a31
fix: enrollment page 10-bug fix — submodule pointers + docs update
ahmetabdullahgultekin Apr 4, 2026
eb14a7b
fix: WebAuthn credential filtering by transport type — submodule update
ahmetabdullahgultekin Apr 4, 2026
d8ee441
feat: NFC enrollment + face search permission fix — submodule update
ahmetabdullahgultekin Apr 4, 2026
11211d6
feat: biometric tools consolidation + camera flip + fixes — submodule…
ahmetabdullahgultekin Apr 4, 2026
af0bdac
fix: face enrollment, test buttons, voice silence, NFC UX, CI lint — …
ahmetabdullahgultekin Apr 4, 2026
44c7a57
feat: face detection feedback, voice passphrase, remove self-enrollme…
ahmetabdullahgultekin Apr 4, 2026
13f079b
fix: CI/CD fixes across all repos — lint, Storybook, self-hosted runner
ahmetabdullahgultekin Apr 4, 2026
fd54b71
fix: face enrollment 400 + voice silence detection — submodule update
ahmetabdullahgultekin Apr 4, 2026
1a2a465
feat: FIDO2/WebAuthn complete in client-apps — submodule update
ahmetabdullahgultekin Apr 4, 2026
50da187
fix: face enrollment timing — submodule update
ahmetabdullahgultekin Apr 4, 2026
e0a0cfb
fix: face instant capture + client-apps roadmap — submodule update
ahmetabdullahgultekin Apr 4, 2026
e8f58ca
fix: client-apps Phase 1 complete — submodule update
ahmetabdullahgultekin Apr 4, 2026
2cc02d1
docs: client-apps docs rewrite + CLAUDE.md Phase 1 update — submodule
ahmetabdullahgultekin Apr 4, 2026
f243e55
fix: NFC auth + card detection crash — submodule update
ahmetabdullahgultekin Apr 4, 2026
9bcb088
feat: Phase 2.1+2.3 complete — multi-step auth + voice search — submo…
ahmetabdullahgultekin Apr 4, 2026
ada012d
feat: Phase 2 near-complete — icons, verification, roles, audit, step…
ahmetabdullahgultekin Apr 4, 2026
047db2f
fix: face search + NFC verify — submodule update
ahmetabdullahgultekin Apr 4, 2026
f91a33b
docs: roadmap + feedback backlog update — submodule
ahmetabdullahgultekin Apr 4, 2026
12b6321
feat: W10+W11 + Phase 3.1+3.2+3.7 — submodule update
ahmetabdullahgultekin Apr 4, 2026
d8468ee
feat: W7-W11 + Phase 3 complete — submodule update
ahmetabdullahgultekin Apr 4, 2026
2c1b096
fix: dashboard + i18n + Terms/Privacy + login cleanup — submodule
ahmetabdullahgultekin Apr 4, 2026
c861344
fix: dashboard 403 + NFC scanner + auth token — submodule
ahmetabdullahgultekin Apr 4, 2026
25b4c8f
fix: FACE/VOICE enrollment complete + viewport — submodule
ahmetabdullahgultekin Apr 4, 2026
9ce7f77
fix: auto-complete enrollment + responsive biometric tools — submodule
ahmetabdullahgultekin Apr 4, 2026
ec20e76
feat: user activity + notifications for all — submodule update
ahmetabdullahgultekin Apr 4, 2026
de20e6c
fix: i18n + date mapping + NFC cleanup — submodule
ahmetabdullahgultekin Apr 4, 2026
11c09e3
docs: end-of-session roadmap — submodule
ahmetabdullahgultekin Apr 4, 2026
7f91f18
feat: WebAuthn endpoints, iOS/Desktop platform, perf fixes, W20-W26
ahmetabdullahgultekin Apr 4, 2026
0b5fbb5
feat: client-apps Phase 3 complete + v3.0.0 release — submodule update
ahmetabdullahgultekin Apr 4, 2026
6eaca88
docs: update all READMEs + repo descriptions + submodule pointers
ahmetabdullahgultekin Apr 4, 2026
d21b47e
chore: update web-app submodule — W16 cross-device session awareness
ahmetabdullahgultekin Apr 5, 2026
270eaab
fix(W24): update web-app submodule — remove duplicate enrollment from…
ahmetabdullahgultekin Apr 5, 2026
2dba954
docs: update all documentation for 2026-04-05 session
ahmetabdullahgultekin Apr 5, 2026
de0c0b0
docs: update docs submodule — SMS OTP activation plan
ahmetabdullahgultekin Apr 5, 2026
b7d7f04
chore: update web-app and client-apps submodules (test coverage)
ahmetabdullahgultekin Apr 5, 2026
f165925
chore: update docs submodule (5 future feature design documents)
ahmetabdullahgultekin Apr 5, 2026
867b64a
test: update submodule pointers for client-apps and web-app test addi…
ahmetabdullahgultekin Apr 5, 2026
ba4178e
docs: create ROADMAP_MASTER.md consolidating all project roadmaps
ahmetabdullahgultekin Apr 5, 2026
8537011
feat: add Marmara BYS demo site for FIVUCSAS third-party auth integra…
ahmetabdullahgultekin Apr 5, 2026
51813e3
chore: update submodules for tenant-controlled 2FA
ahmetabdullahgultekin Apr 5, 2026
667050e
chore: update submodule pointers after OAuth 2.0/OIDC compliance audit
ahmetabdullahgultekin Apr 5, 2026
a14818f
docs: optimize CLAUDE.md, update ROADMAP_MASTER with April 5 accompli…
ahmetabdullahgultekin Apr 5, 2026
e1fea5f
feat: audit log device info, tenant name fix, BYS demo redesign
ahmetabdullahgultekin Apr 5, 2026
27966d5
feat: polished BYS demo, policies footer, settings fix
ahmetabdullahgultekin Apr 5, 2026
11aca2d
fix: BYS dashboard responsive + Google Fonts on all pages
ahmetabdullahgultekin Apr 5, 2026
1cc81b1
feat: adaptive MFA engine backend (Phase B complete)
ahmetabdullahgultekin Apr 5, 2026
ddca454
feat: all 3 MFA phases complete — widget fix + method picker + deploy
ahmetabdullahgultekin Apr 5, 2026
60d92ac
fix: correct stale docs metrics + setup-twilio.sh env var bug
ahmetabdullahgultekin Apr 5, 2026
3aecbff
fix: MFA login flow, UI fixes, remove Aysenur TODO item
ahmetabdullahgultekin Apr 5, 2026
3c2f311
chore: update submodule pointers after domain migration to fivucsas.com
ahmetabdullahgultekin Apr 7, 2026
1ca2397
feat: N-step MFA flow — JWT deferred until all steps complete
ahmetabdullahgultekin Apr 7, 2026
2e2ab4b
feat: add SEO for landing-website and bys-demo
ahmetabdullahgultekin Apr 7, 2026
6270337
chore: update submodules, CLAUDE.md verified date
ahmetabdullahgultekin Apr 7, 2026
28c2346
feat: replace inline auth SDK with official FivucsasAuth from verify.…
ahmetabdullahgultekin Apr 8, 2026
1d4683e
feat: N-step MFA widget + mobile app v5.0.0 + verify.fivucsas.com dep…
ahmetabdullahgultekin Apr 8, 2026
e6d884a
fix: SDK IIFE export + redeploy verify-widget with fixed SDK
ahmetabdullahgultekin Apr 8, 2026
563d63b
feat: bio security lockdown, domain redirects, docs update
ahmetabdullahgultekin Apr 8, 2026
05d3303
chore: update submodule refs (bio security fix, web-app docs)
ahmetabdullahgultekin Apr 8, 2026
c1065e3
feat: docs.fivucsas.com API documentation site + security levels v2
ahmetabdullahgultekin Apr 8, 2026
a6934c1
feat: docs site SEO (robots.txt, sitemap.xml)
ahmetabdullahgultekin Apr 8, 2026
1d8a8d2
feat: enhanced SEO — JSON-LD SoftwareApplication + WebSite schemas
ahmetabdullahgultekin Apr 8, 2026
dd710be
chore: update docs submodule (security levels v3)
ahmetabdullahgultekin Apr 8, 2026
4816329
feat: widget UX fixes, WebAuthn rpId fix, code quality refactoring
ahmetabdullahgultekin Apr 8, 2026
43335f5
fix: landing page — supervisor name, Demo/Status links, hero CTA
ahmetabdullahgultekin Apr 10, 2026
7f4d49b
docs: complete Mobile QA Sprint tracking — 15/23 fixed, P3 status upd…
ahmetabdullahgultekin Apr 10, 2026
28b34d5
chore: update submodule refs (web-app PWA, docs analytics plan)
ahmetabdullahgultekin Apr 10, 2026
832e1b0
chore: update identity-core-api submodule (SMS env wiring)
ahmetabdullahgultekin Apr 10, 2026
31e448a
chore: update submodule refs (enrollment bug fixes)
ahmetabdullahgultekin Apr 10, 2026
e36e346
chore: update submodule refs (SMS OTP verification + voice numba fix)
ahmetabdullahgultekin Apr 10, 2026
64a58f5
chore: update submodule refs (CORS OPTIONS fix + enrollment race cond…
ahmetabdullahgultekin Apr 10, 2026
6bb234b
chore: update submodule refs (fingerprint allowCredentials + voice/fa…
ahmetabdullahgultekin Apr 10, 2026
607c7ab
chore: update web-app submodule ref (voice/face complete PUT + audit …
ahmetabdullahgultekin Apr 10, 2026
fd9c311
docs: auth method audit + biometric flow research + WebAuthn fixes
ahmetabdullahgultekin Apr 11, 2026
16fb10e
chore: update docs submodule with auth research reports
ahmetabdullahgultekin Apr 11, 2026
f68b9ba
chore: update submodules — session path fixes, face camera, NFC enrol…
ahmetabdullahgultekin Apr 11, 2026
5c39918
chore: update web-app submodule — WebAuthn diagnostic logging
ahmetabdullahgultekin Apr 11, 2026
b99975f
chore: update submodules — i18n, rate limits, face camera, mobile debug
ahmetabdullahgultekin Apr 11, 2026
be6a77b
docs: entity professionalization, error UX, breadcrumb i18n, CLAUDE.m…
ahmetabdullahgultekin Apr 11, 2026
60e0f30
chore: publish-ready cleanup across all repos
ahmetabdullahgultekin Apr 11, 2026
63af9ac
build: rebuild verify-app with postMessage bridge fixes
ahmetabdullahgultekin Apr 13, 2026
8a1e94a
chore: remove accidentally staged auth-test embedded repo
ahmetabdullahgultekin Apr 13, 2026
6b17b9f
docs: verify and update roadmap — mark completed items, update open i…
ahmetabdullahgultekin Apr 13, 2026
2cbaa1c
ci: stop silencing all docker compose validation errors
ahmetabdullahgultekin Apr 13, 2026
bc02088
feat: ML split — CardDetector.ts, Web Components, V33 voice migration…
ahmetabdullahgultekin Apr 14, 2026
22efd23
chore: bump submodules — client-side ML split Phases 1-4 + V33 deploy
ahmetabdullahgultekin Apr 14, 2026
88df25c
docs: sync root CLAUDE/ROADMAP/CHANGELOG + bump submodules for ML spl…
ahmetabdullahgultekin Apr 15, 2026
281c52c
chore: bump web-app submodule — dashboard UX + VoiceStep WAV (VAD ena…
ahmetabdullahgultekin Apr 15, 2026
be9aad2
fix: demo.fivucsas MFA hardening — widget, API, demo, nginx
ahmetabdullahgultekin Apr 15, 2026
3cf98ac
docs: bump submodules for changelog updates
ahmetabdullahgultekin Apr 15, 2026
792954a
chore: bump web-app submodule — vite build unblocks
ahmetabdullahgultekin Apr 15, 2026
4357405
fix: widget usePerf crash + unblock camera/mic on widget
ahmetabdullahgultekin Apr 15, 2026
d8f31a0
fix: sync widget bundle (PerfContext noop) + identity-core-api reuse fix
ahmetabdullahgultekin Apr 15, 2026
9235a0e
fix(bys-demo): grant camera/mic to verify.fivucsas.com + fix redirect…
ahmetabdullahgultekin Apr 15, 2026
4230ad6
fix(bys-demo): single-quote Permissions-Policy + Turkish chars + capt…
ahmetabdullahgultekin Apr 15, 2026
421fc4e
fix(bys-demo): Turkish diacritics + fully translated Turkish dashboard
ahmetabdullahgultekin Apr 15, 2026
fcfc872
chore: bump web-app — widget CSP allows tfhub.dev for BlazeFace
ahmetabdullahgultekin Apr 15, 2026
a26755c
docs: record 2026-04-15 evening MFA hardening + Twilio regulatory fin…
ahmetabdullahgultekin Apr 15, 2026
1355cee
docs: hosted-first auth pivot — parent repo CLAUDE + ROADMAP
ahmetabdullahgultekin Apr 16, 2026
7aae832
feat(bys-demo): flip primary CTA to hosted loginRedirect()
ahmetabdullahgultekin Apr 16, 2026
e0b7730
chore: submodule bumps — hosted-first OIDC + PR-1 test/i18n fixes
ahmetabdullahgultekin Apr 16, 2026
eda5a7f
docs(roadmap): PR-1 in review — 9 blockers + demo-day safety note
ahmetabdullahgultekin Apr 16, 2026
09650cd
chore(submodules): bump identity-core-api + web-app — PR-1 blockers c…
ahmetabdullahgultekin Apr 16, 2026
9398e12
chore(submodules): bump to main after PR-1 merge
ahmetabdullahgultekin Apr 16, 2026
e1bcbb1
docs: update public-facing docs to reflect 2026-04-16 reality
ahmetabdullahgultekin Apr 16, 2026
7144c3b
chore(submodules): bump to main after doc cleanup + CI consolidation
ahmetabdullahgultekin Apr 16, 2026
ddc579d
chore: verify-widget rebuild + biometric-processor submodule bump
ahmetabdullahgultekin Apr 16, 2026
e92fe16
fix(content): correct stack versions, test count, external link rel +…
ahmetabdullahgultekin Apr 16, 2026
db2bb9e
fix(demo): Turkish encoding, SRI integrity, CSP meta, remove dead EN …
ahmetabdullahgultekin Apr 16, 2026
6ed3433
chore: bump web-app submodule + widget rebuild after parallel audit f…
ahmetabdullahgultekin Apr 16, 2026
d3c327e
a11y(landing): emoji icon aria-labels, mobile nav breakpoints
ahmetabdullahgultekin Apr 16, 2026
3b473de
chore(demo): guard console logs, SVG aria-labels
ahmetabdullahgultekin Apr 16, 2026
76a898f
feat(landing): list all 3 team members with Turkish diacritics
ahmetabdullahgultekin Apr 16, 2026
dc70cfb
feat(landing): refine team scopes per owner contributions
ahmetabdullahgultekin Apr 16, 2026
e0fe084
chore: bump submodules — team scopes + filtered Swagger
ahmetabdullahgultekin Apr 16, 2026
e1a89d4
docs: add CHANGELOG with 2026-04-16 team section entry
ahmetabdullahgultekin Apr 16, 2026
535e32c
chore: bump identity-core-api submodule — swagger CHANGELOG entry
ahmetabdullahgultekin Apr 16, 2026
cd292cc
style(landing): tighten team scopes + visual hierarchy
ahmetabdullahgultekin Apr 16, 2026
22f0a2d
style(landing): tone down team card — remove Lead badge + card lift
ahmetabdullahgultekin Apr 16, 2026
55e5b3f
style(landing): equal team cards, distinct avatar gradients
ahmetabdullahgultekin Apr 16, 2026
fcf91e1
chore(web-app): stop tracking generated verify-widget asset bundles
ahmetabdullahgultekin Apr 18, 2026
1d64173
chore: bump web-app + identity-core-api submodules (deploy round 2026…
ahmetabdullahgultekin Apr 18, 2026
2e9367c
chore: bump submodules — V38 oauth2 public flip, MobileFaceNet deprec…
ahmetabdullahgultekin Apr 18, 2026
0b95e78
docs(roadmap): refresh for 2026-04-18 — phase A–L restructure, post-V…
ahmetabdullahgultekin Apr 18, 2026
0079e40
chore: bump submodules — roadmap + TODO refresh
ahmetabdullahgultekin Apr 18, 2026
aed83eb
chore: bump submodules — dependabot merges + CI perf
ahmetabdullahgultekin Apr 18, 2026
97faa39
docs: 2026-04-18 round 2 — Phase A–L deploy round + submodule bump
ahmetabdullahgultekin Apr 18, 2026
5259c86
fix(demo): ship SDK bundle with loginRedirect + update SRI
ahmetabdullahgultekin Apr 18, 2026
64d35f9
chore: file pollution cleanup
ahmetabdullahgultekin Apr 18, 2026
bf8fe86
fix(verify-widget): short-cache SDK + cache-bust URL on demo
ahmetabdullahgultekin Apr 18, 2026
eaaff87
docs: log 2026-04-18b evening round + bump IC submodule
ahmetabdullahgultekin Apr 18, 2026
ebef62f
docs: 2026-04-18c — hosted-login UX recovery (callback/stepper/locale…
ahmetabdullahgultekin Apr 18, 2026
acec289
fix(verify-widget): sync dist-verify/assets into html/assets pre-dock…
ahmetabdullahgultekin Apr 18, 2026
f8242fb
docs: 2026-04-18d — security incident log + keystore rotation plan + …
ahmetabdullahgultekin Apr 18, 2026
c1e821f
chore(client-apps): bump submodule to v5.1.0 — RFC 6238 TOTP authenti…
ahmetabdullahgultekin Apr 18, 2026
590dfd8
chore: Android v5.2.0-rc1 — close 5 feature-parity gaps to 20/20
ahmetabdullahgultekin Apr 18, 2026
2dd04df
feat(seo): structured data + sitemap + robots + meta audit
ahmetabdullahgultekin Apr 18, 2026
5ef197d
chore(submodule): bump client-apps to 100fc64 — fix BiometricViewMode…
ahmetabdullahgultekin Apr 18, 2026
07a449e
chore(submodule): bump biometric-processor — add CVE_AUDIT_2026-04-18
ahmetabdullahgultekin Apr 18, 2026
bbff3fa
docs(roadmap): Phase I complete — Android 20/20 shipped as v5.2.0-rc1
ahmetabdullahgultekin Apr 18, 2026
d8c9cc2
chore(submodule): bump web-app — extract <StepLayout> across 10 step …
ahmetabdullahgultekin Apr 18, 2026
0489c83
chore(submodule): bump web-app — add 20 auth reasonCodes (EN + TR)
ahmetabdullahgultekin Apr 18, 2026
a4f6353
docs: ROADMAP hosted-first pivot + submodule bumps (docs + client-apps)
ahmetabdullahgultekin Apr 18, 2026
c34f621
chore(submodule): bump client-apps to 1855b97 — SecureTokenStorage (D…
ahmetabdullahgultekin Apr 18, 2026
c15f4d6
chore: bump client-apps + docs submodules, land 2026-04-18f session
ahmetabdullahgultekin Apr 19, 2026
8df0b19
chore: bump submodules — 2026-04-19 UX review round + Dependabot sweep
ahmetabdullahgultekin Apr 19, 2026
f5427b3
chore: bump submodules + pre-commit — 2026-04-19 audit remediation round
ahmetabdullahgultekin Apr 19, 2026
9f02569
docs: polish widget integration + parity matrix + roadmap refresh (20…
ahmetabdullahgultekin Apr 20, 2026
a040e76
chore: bump submodules — 2026-04-20 follow-up remediation round
ahmetabdullahgultekin Apr 20, 2026
23fa716
feat(ui-refresh): landing + bys-demo + web-app shell (Scope A)
ahmetabdullahgultekin Apr 22, 2026
0589bb0
Merge pull request #29 from Rollingcat-Software/feat/ui-refresh-opus
ahmetabdullahgultekin Apr 22, 2026
6a51ae7
fix(landing): docs CTA → docs.fivucsas.com; bump web-app to main
ahmetabdullahgultekin Apr 22, 2026
0ad27b6
Merge pull request #30 from Rollingcat-Software/fix/landing-docs-link
ahmetabdullahgultekin Apr 22, 2026
405e507
chore(web-app): bump submodule to Scope B — verify.fivucsas.com refresh
ahmetabdullahgultekin Apr 22, 2026
b2d3745
Merge pull request #31 from Rollingcat-Software/chore/web-app-scope-b
ahmetabdullahgultekin Apr 22, 2026
f582f05
docs(changelog): address PR #31 Copilot review nits
ahmetabdullahgultekin Apr 22, 2026
ddba53e
Merge pull request #32 from Rollingcat-Software/chore/changelog-nits
ahmetabdullahgultekin Apr 22, 2026
289bffa
feat(seo): landing hreflang + bys-demo indexable + web-app SEO bump
ahmetabdullahgultekin Apr 22, 2026
e981f85
fix(seo): address PR #33 Copilot review nits
ahmetabdullahgultekin Apr 22, 2026
5849d32
Merge pull request #33 from Rollingcat-Software/feat/seo-upgrades
ahmetabdullahgultekin Apr 22, 2026
5f842c7
fix(content): landing endpoint stat 180+ → 250+
ahmetabdullahgultekin Apr 22, 2026
53ea4be
Merge pull request #34 from Rollingcat-Software/fix/content-audit
ahmetabdullahgultekin Apr 22, 2026
a7b8d64
fix(bys-demo): correct UNIVERSITESI → ÜNİVERSİTESİ in Marmara crest SVG
ahmetabdullahgultekin Apr 22, 2026
ee6e2c1
Merge pull request #35 from Rollingcat-Software/fix/bys-demo-crest-tr
ahmetabdullahgultekin Apr 22, 2026
c52bd95
chore(submodule): bump web-app → 5c72e8d (sitemap /widget-auth + last…
ahmetabdullahgultekin May 11, 2026
8cee419
SEO: disambiguate FIVUCSAS from 'fivics' autocorrect (landing) (#43)
ahmetabdullahgultekin May 11, 2026
133b62e
ci(deploy-landing): add workflow_dispatch trigger (#44)
ahmetabdullahgultekin May 11, 2026
1f21404
ci(deploy-landing): switch from self-hosted to ubuntu-latest (#45)
ahmetabdullahgultekin May 11, 2026
e9821ed
seo(sitemap): include docs.fivucsas.com (#46)
ahmetabdullahgultekin May 11, 2026
73d19c7
seo: fix Bing H1+meta findings + sync submodule pointers + CHANGELOG …
ahmetabdullahgultekin May 11, 2026
5f17688
session(2026-05-11): ROADMAP refresh + submodule bumps + CHANGELOG (#50)
ahmetabdullahgultekin May 11, 2026
6d4cc73
chore(merge): reconcile master into main (session 2026-05-11)
ahmetabdullahgultekin May 11, 2026
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
14 changes: 14 additions & 0 deletions .claude/commands/arch-review.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,14 @@
Analyze the architecture of $ARGUMENTS for violations of hexagonal architecture, SOLID principles, and clean architecture.

Check for:
- Domain layer importing infrastructure/adapter classes (DIP violation)
- Controllers containing business logic (SRP violation)
- God classes exceeding 500 lines
- Services implementing too many interfaces (ISP violation)
- Circular dependencies between modules
- JPA entities leaking into domain layer
- Missing port/adapter boundaries
- Feature envy (classes using other classes' data more than their own)
- Improper dependency injection patterns

Report violations with file paths, line numbers, and suggested fixes.
16 changes: 16 additions & 0 deletions .claude/commands/docker-review.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,16 @@
Review all Dockerfiles, docker-compose files, and Traefik configuration in $ARGUMENTS.

Check for:
- Base image pinning (use digest, not just tag)
- Multi-stage builds to minimize image size
- Running as non-root user
- Health checks defined
- Resource limits (memory, CPU) in compose
- Secret exposure in build args or environment
- Unnecessary port exposure
- .dockerignore completeness
- Layer ordering for cache efficiency
- Unnecessary packages installed
- PID limits configured

Report each finding with file path, severity, and fix.
15 changes: 15 additions & 0 deletions .claude/commands/perf-review.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,15 @@
Review $ARGUMENTS for performance issues.

Check for:
- N+1 query patterns in JPA/Hibernate (missing @EntityGraph, lazy loading in loops)
- Missing database indexes on frequently queried columns
- Unbounded queries (missing LIMIT/pagination)
- Memory leaks (unclosed resources, growing collections)
- Connection pool exhaustion risks
- Blocking calls in async/reactive code
- Oversized API payloads (missing field selection or pagination)
- Missing caching where appropriate
- Inefficient string concatenation in loops
- Image/file processing without streaming

Report each finding with file path, estimated impact, and fix.
18 changes: 18 additions & 0 deletions .claude/commands/security-audit.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,18 @@
Review this project for security vulnerabilities following OWASP Top 10 2025.

Check for:
- Hardcoded secrets, API keys, tokens in code and config
- SQL injection (especially custom JPQL/native queries)
- XSS in frontend templates and API responses
- Broken access control (missing RBAC checks on endpoints)
- Security misconfiguration (CORS wildcards, debug mode, exposed Swagger)
- Authentication flaws (JWT validation gaps, session handling)
- Insecure deserialization
- SSRF in any URL-fetching code
- File upload validation (type, size, content sniffing)
- Exception handling that fails open instead of closed
- Biometric data handling (encryption at rest, secure transmission)

Focus on $ARGUMENTS or the entire codebase if no argument given.

Rate each finding as CRITICAL / HIGH / MEDIUM / LOW with file path and line number.
11 changes: 11 additions & 0 deletions .claude/commands/test-gaps.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,11 @@
Analyze the test suite for $ARGUMENTS. Identify:

- Untested critical paths (authentication, authorization, verification pipeline, biometric processing)
- Missing edge cases (null inputs, boundary values, concurrent access)
- Tests that don't actually assert anything meaningful
- Flaky test patterns (timing dependencies, order dependencies, shared state)
- Integration test gaps between services
- Missing error path testing (what happens when external services fail)
- API endpoints without corresponding controller tests

Suggest the 10 most impactful tests to add, ordered by risk reduction.
10 changes: 2 additions & 8 deletions .claude/settings.local.json
Original file line number Diff line number Diff line change
Expand Up @@ -149,24 +149,18 @@
"Bash(gcloud compute ssh:*)",
"Bash(printf:*)",
"Bash(base64:*)",
"Bash(TOKEN=\"eyJhbGciOiJIUzUxMiJ9.eyJzdWIiOiJ0ZXN0LnVzZXJAZXhhbXBsZS5jb20iLCJpYXQiOjE3NzAxNDM4ODEsImV4cCI6MTc3MDIzMDI4MX0.cR3TqZvLuxBIUSeWjcmMwzGXxcGUi7ZH79A4lXhhlVywqnxalIu_jFdnEbh8wo1Z10zBYqdlvtUVZtHdcdpvwg\")",
"Bash(TOKEN=:*)",
"Bash(bash scripts/test/run-backend-tests.sh:*)",
"Bash(bash:*)",
"Bash(mvn clean package:*)",
"Bash(mvn package:*)",
"Bash(gcloud compute scp:*)",
"Bash(gcloud compute firewall-rules list:*)",
"Bash(gcloud compute firewall-rules create:*)",
"Bash(TOKEN=\"eyJhbGciOiJIUzUxMiJ9.eyJzdWIiOiJhZG1pbkBmaXZ1Y3Nhcy5sb2NhbCIsImlhdCI6MTc3MDY1Mzk2MSwiZXhwIjoxNzcwNzQwMzYxfQ.k1CqIub10inUUxYYGwL9KxfWcvWZnDy02DecYi48Q6AfY1T4yG83jGUv6HsksIwzygprW827YT8V0Xb45rlxPw\")",
"Bash(Start-Sleep -Seconds 20)",
"WebFetch(domain:ica-fivucsas.rollingcatsoftware.com)",
"WebFetch(domain:app.fivucsas.com)",
"WebFetch(domain:34.116.233.134)",
"Bash(gcloud compute instances describe:*)",
"Bash(TOKEN=\"eyJhbGciOiJIUzUxMiJ9.eyJzdWIiOiJhZG1pbkBmaXZ1Y3Nhcy5sb2NhbCIsImlhdCI6MTc3MDcyMTM1OCwiZXhwIjoxNzcwODA3NzU4fQ.wx5G__I22TFxaBRCWfgjth3mpVB-FZKP5g0UyODEKgfSVx_8EH4RljDenN3O_bTB2K0c23_evV4si24h1Ti0Lw\")",
"Bash(TOKEN=\"eyJhbGciOiJIUzUxMiJ9.eyJzdWIiOiJhZG1pbkBmaXZ1Y3Nhcy5sb2NhbCIsImlhdCI6MTc3MDcyMjQyNiwiZXhwIjoxNzcwODA4ODI2fQ.uEB2Hiy7O93Fp_1FvYwoGjDZvDeP-3dCTK1SSwv0oARkkxYYgg8EHkjyqtTZ_jXW-dv5gMNUvzvaaKnq7KFuuA\")",
"Bash(TOKEN=\"eyJhbGciOiJIUzUxMiJ9.eyJzdWIiOiJhZG1pbkBmaXZ1Y3Nhcy5sb2NhbCIsImlhdCI6MTc3MDcyMjc3MSwiZXhwIjoxNzcwODA5MTcxfQ.JBVn3u2CjKEtCUxCCg5kgDhHhqnULnkHfHuF2sdKkTzehk3LMOH1kBx0OYyBIFwWS6KtVC13Kyq8TplC-x4m0w\")",
"Bash(TOKEN=\"eyJhbGciOiJIUzUxMiJ9.eyJzdWIiOiJhZG1pbkBmaXZ1Y3Nhcy5sb2NhbCIsImlhdCI6MTc3MDc1NjE0OSwiZXhwIjoxNzcwODQyNTQ5fQ.LBqLrvkOia9uyu-qmeOUyFE5k6kLbSBI_fGREjUKVSSBiq9Am4Gz2HhYOfEfI8NOrD-I22a3CZc41pmfcD0_1Q\")",
"Bash(TOKEN=\"eyJhbGciOiJIUzUxMiJ9.eyJzdWIiOiJhZG1pbkBmaXZ1Y3Nhcy5sb2NhbCIsImlhdCI6MTc3MDc1NzE4NywiZXhwIjoxNzcwODQzNTg3fQ.Zv6WCs_sxOgnHiTX7Hcz_0TwuoQvJLhBlztxRfrG5HYWV_2QSMWZkjkflR4LmVZVNrInq1dveXoXWq3fnqflJA\")",
"Bash(git log:*)",
"Bash(git -C .claude/worktrees/intelligent-swanson status)",
"Bash(git -C .claude/worktrees/intelligent-swanson diff .claude/settings.local.json)",
Expand Down
10 changes: 6 additions & 4 deletions .github/workflows/ci.yml
Original file line number Diff line number Diff line change
Expand Up @@ -28,10 +28,12 @@ jobs:

- name: Validate Docker Compose configs
run: |
docker compose -f docker-compose.yml config --quiet 2>&1 || true
docker compose -f docker-compose.dev.yml config --quiet 2>&1 || true
# prod compose depends on submodule build contexts, validate syntax only
docker compose -f docker-compose.prod.yml config 2>&1 | grep -v "has neither an image nor a build context" || true
docker compose -f docker-compose.yml config --quiet
docker compose -f docker-compose.dev.yml config --quiet
# prod compose references submodule build contexts not present in CI; suppress only that known warning
docker compose -f docker-compose.prod.yml config 2>&1 \
| grep -v "has neither an image nor a build context" \
| (grep -E "^(Error|error)" && exit 1 || exit 0)

- name: Validate NGINX config syntax
run: |
Expand Down
3 changes: 2 additions & 1 deletion .github/workflows/deploy-landing.yml
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,7 @@ on:
paths:
- 'landing-website/**'
- '.github/workflows/deploy-landing.yml'
workflow_dispatch:

concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
Expand Down Expand Up @@ -36,7 +37,7 @@ jobs:
with:
switches: -avz --delete
path: landing-website/dist/
remote_path: ~/domains/fivucsas.rollingcatsoftware.com/public_html/
remote_path: ~/domains/fivucsas.com/public_html/
remote_host: 46.202.158.52
remote_port: 65002
remote_user: u349700627
Expand Down
13 changes: 8 additions & 5 deletions .gitignore
Original file line number Diff line number Diff line change
Expand Up @@ -6,6 +6,8 @@
.env
.env.local
.env.*.local
.env.prod
.env.gcp

# IDE
.idea/
Expand Down Expand Up @@ -40,9 +42,10 @@ nul
# Archive and backup folders
/_backup_before_submodules/

# Claude Code
.claude/settings.local.json
.claude/worktrees/
# Claude metadata
.claude/

# Widget deploy staging (built artifacts, not source)
verify-widget/html/
# Generated verify-widget bundle artifacts (built via npm run build:widget)
verify-widget/html/assets/*.js
verify-widget/html/assets/*.js.map
verify-widget/html/assets/*.css
9 changes: 9 additions & 0 deletions .pre-commit-config.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,9 @@
# Parent-repo pre-commit hooks (IN-M1 — 2026-04-19).
# Minimal set: gitleaks only. We deliberately skip detect-secrets to avoid
# baselining maintenance overhead. Per-submodule configs may add more
# (see biometric-processor/.pre-commit-config.yaml for the Python-heavy case).
repos:
- repo: https://github.com/gitleaks/gitleaks
rev: v8.21.2
hooks:
- id: gitleaks
31 changes: 31 additions & 0 deletions .pre-commit-install
Original file line number Diff line number Diff line change
@@ -0,0 +1,31 @@
#!/usr/bin/env bash
# Helper: install pre-commit hooks in the parent repo and every submodule that
# has a .pre-commit-config.yaml (IN-M1 — 2026-04-19).
#
# Usage: ./.pre-commit-install
# Requires: pip install pre-commit (or `pipx install pre-commit`).
set -euo pipefail

if ! command -v pre-commit >/dev/null 2>&1; then
echo "pre-commit not found. Install it with:"
echo " pipx install pre-commit # recommended"
echo " pip install --user pre-commit"
exit 1
fi

ROOT="$(cd "$(dirname "$0")" && pwd)"

install_in() {
local dir="$1"
if [ -f "${dir}/.pre-commit-config.yaml" ]; then
echo "==> installing hooks in ${dir}"
(cd "${dir}" && pre-commit install)
fi
}

install_in "${ROOT}"
for sub in identity-core-api biometric-processor web-app client-apps landing-website bys-demo verify-widget; do
install_in "${ROOT}/${sub}"
done

echo "Done. 'git commit' will now run gitleaks before accepting a commit."
Loading
Loading