plainpages

Author	SHA1	Message	Date
lilleman	e83cf4da88	Address project-wide review (todo §3); fix JWKS_URL default → tokenizer signing key + read-only web mount, cap bootstrap restart, --no-deps for unit commands	2026-06-17 16:49:37 +02:00
lilleman	4d65665063	Bootstrap: print first-run login banner (URL + seeded creds + change-before-prod warning)	2026-06-17 16:22:48 +02:00
lilleman	a6900217cb	One-command bootstrap (todo §3); idempotent first-boot seed: JWKS-if-absent, demo admin in Kratos, admin role in Keto	2026-06-17 16:18:21 +02:00
lilleman	4af090f803	Split dev/prod compose wiring (todo §3); Ory readiness healthchecks, web gated on kratos+keto, dev-only host ports, Ory-free E2E	2026-06-17 16:06:05 +02:00
lilleman	93e62d8661	Add Hydra service + migrate (todo §3); pin oryd/hydra:v26.2.0, OAuth2 issuer + login/consent URLs → our app routes	2026-06-17 15:45:37 +02:00
lilleman	fa87280f46	Add Keto service + migrate (todo §3); OPL role/group/resource namespaces, fine-grained resource permits	2026-06-17 15:12:01 +02:00
lilleman	f2898696e6	Wire Kratos self-service flows to themed routes (todo §3); enable recovery/verification via email code, add mailpit dev courier + --watch-courier	2026-06-17 10:19:29 +02:00
lilleman	120e1a0929	Add kratos service + migrate (todo §3); pin oryd/kratos:v26.2.0, identity schema (email, name), bootable password config	2026-06-16 23:24:32 +02:00
lilleman	bc15f00c44	Add postgres service (todo §3); pin postgres:18.4-alpine3.23, one DB per Kratos/Keto/Hydra via init.sql	2026-06-16 17:13:40 +02:00
lilleman	a070362649	Drop NODE_ENV for explicit config toggles (todo §0.1); app is environment-agnostic	2026-06-15 10:53:33 +02:00
lilleman	c544387d3a	Add RequestContext primitive (todo §0); harden static serving (HEAD, control-char, stream-error logging)	2026-06-14 19:33:17 +02:00
lilleman	4eed701419	Scaffold Docker-only Node 24 + TypeScript EJS web backend	2026-06-14 11:45:30 +02:00

12 Commits