igm/publisher-dashboard
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add utils package with Web Crypto password hashing

Browse Source 
- Create @reviq/utils package with PBKDF2-SHA256 password hashing
  compatible with Cloudflare Workers (uses crypto.subtle)
- Update api-server and CLI to use new utils package for consistent
  password hashing format across the codebase
- Add pino logging to api-server for better request debugging
- Make login request tokens cryptographically secure base58 strings
  instead of database IDs
- Add migration to make login_requests.token non-nullable with unique
  constraint
- Fix RPCLink URL construction for client-side API calls
- Add db:codegen script to root package.json

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This commit is contained in:
RevIQ
2026-01-09 18:12:33 +08:00
parent cee700f063
commit c1afc39062
25 changed files with 512 additions and 142 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
devenv.nix
View File

@@ -36,8 +36,10 @@
"api-server".exec = "bun run --cwd apps/api-server dev";
};
env.DATABASE_URL = "postgres://reviq:reviq@localhost/reviq-dashboard";
env.TEST_DATABASE_URL = "postgres://reviq:reviq@localhost/reviq-dashboard_test";
env = {
DATABASE_URL = "postgres://reviq:reviq@localhost/reviq-dashboard?sslmode=disable";
TEST_DATABASE_URL = "postgres://reviq:reviq@localhost/reviq-dashboard_test?sslmode=disable";
};
scripts = {
"db-up".exec = "dbmate up";