yiekheng/cm_bot_v2
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
144 Commits 1 Branch 0 Tags
Commit Graph

144 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
yiekheng
ff99b1248a feat(web): hide /api entirely — RSC + Server Actions instead 
The Route Handler proxy and hash mapping are gone. Browser never
hits a JSON endpoint: data reads happen in React Server Components
fetching api-server:3000 server-side; mutations (B2) will use
Next.js Server Actions. Zero public API surface to scrape or
enumerate.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
 2026-05-02 20:34:31 +08:00
yiekheng
a04d7ecc50 docs(agents): document web/ Next.js project and cm-web-next dev URL 2026-05-02 20:33:00 +08:00
yiekheng
203ab5daef feat(scripts): include web-next in dev.sh and publish.sh 2026-05-02 20:32:47 +08:00
yiekheng
e78d8c8fa8 feat(envs): add CM_WEB_NEXT_HOST_PORT to all .env.example templates 2026-05-02 20:32:24 +08:00
yiekheng
17b38a7c35 feat(compose): add web-next service (side-by-side with web-view) 2026-05-02 20:32:20 +08:00
yiekheng
96fa650caf feat(docker): add multi-stage Dockerfile for cm-web-next 2026-05-02 20:31:53 +08:00
yiekheng
addc40e851 feat(web): hash-encoded API paths + catch-all Route Handler proxy 2026-05-02 20:31:38 +08:00
yiekheng
17e60db935 feat(web): add scaffold layout and page (frontend-design generated) 2026-05-02 20:31:16 +08:00
yiekheng
a556b4e3a0 feat(web): add .gitignore and .dockerignore 2026-05-02 20:25:43 +08:00
yiekheng
3b8973ba20 feat(web): bootstrap Next.js 15 project configs (no lockfile yet) 2026-05-02 20:25:36 +08:00
yiekheng
f0fbd01a79 feat(plan): wire hash-encoded API paths into B1 plan 2026-05-02 18:15:35 +08:00
yiekheng
31b092f231 feat(spec): hash-encode API paths at the cm-web-next public boundary 2026-05-02 18:14:40 +08:00
yiekheng
d60c5c97a9 Add implementation plan for B1 (Next.js scaffold) 2026-05-02 18:12:59 +08:00
yiekheng
bdcea8b9bc docs(spec): route web UI code through frontend-design skill 2026-05-02 18:09:58 +08:00
yiekheng
572b200603 Add design spec for B1 (Next.js scaffold + side-by-side deploy) 2026-05-02 18:07:47 +08:00
yiekheng
abc2f1b78d fix(scripts): dev.sh down --remove-orphans (cleans up prod-test leftovers) 2026-05-02 18:01:41 +08:00
yiekheng
e68e64065a refactor(scraper): make get_register_link and get_user_credit dump on failure 2026-05-02 17:55:12 +08:00
yiekheng
698e5bf22a refactor(scraper): convert input-value extractions to helper 2026-05-02 17:54:58 +08:00
yiekheng
b7bc534681 feat(scraper): add ScraperError + _dump_html + _find_input_value helpers 2026-05-02 17:54:21 +08:00
yiekheng
9ec0d2ade4 Add implementation plan for R3 (scraper resilience) 2026-05-02 17:52:58 +08:00
yiekheng
d4ab9f9c49 Add design spec for R3 (cm_bot.py scraper resilience) 2026-05-02 17:50:27 +08:00
yiekheng
f6505c1d1d docs(plan): fix Task 9 step 3 — rebuild with override, run with base 2026-05-02 17:43:05 +08:00
yiekheng
614718cd43 docs: add aaPanel hardening guide (C3/C4/C7 + dev vhost) 2026-05-02 17:39:35 +08:00
yiekheng
145f071ca4 docs(agents): drop stale 'hardcoded credentials' note (moved to env in 45303d0) 2026-05-02 17:38:35 +08:00
yiekheng
86b329340c chore(compose): drop api-server host port from base (internal only) 2026-05-02 17:38:26 +08:00
yiekheng
5c8483fa09 feat(compose): keep Flask dev server in dev override; expose api-server on localhost 2026-05-02 17:38:15 +08:00
yiekheng
1d4ecadfaa feat(docker): swap Flask dev server for gunicorn in api and web images 2026-05-02 17:38:01 +08:00
yiekheng
231ae69eef fix(hal): set_security_pin_api returns dict; cm_telegram now correct 2026-05-02 17:37:50 +08:00
yiekheng
d32e4ba58b feat(api): add create_app factory for gunicorn entrypoint 2026-05-02 17:37:13 +08:00
yiekheng
74d496b2bc build: add gunicorn 23.0.0 to requirements 2026-05-02 17:36:56 +08:00
yiekheng
6e2ec78418 Add implementation plan for prod hardening C1+C5+C6 
9 bite-sized tasks: gunicorn dep, create_app() factory + tests, HAL
dict-return contract fix + bot_cli simplification, Dockerfile CMD
swaps, dev override (Flask dev server preserved), api-server host
port drop in base, AGENTS.md cleanup, aapanel-hardening.md (lifted
from spec appendix), integration verification deferred.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
 2026-05-02 17:36:26 +08:00
yiekheng
e7ab6b1325 Add design spec for prod hardening (C1+C5+C6) and aaPanel guide 
Bundles three independent prod-side improvements: replace Flask dev
server with gunicorn (C1), drop api-server's host port (C5), fix the
HAL set_security_pin_api bool/dict contract bug + clean up stale
AGENTS.md note (C6). Appendix is a hand-over guide for the aaPanel
operator (C3 basic auth, C4 rate-limit + scanner deflection, C7 host
firewall) including a vhost for heng.04080616.xyz routing to the dev
PC. Auth path locked to G3 (basic auth + iOS/Android keychain).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
 2026-05-02 17:28:45 +08:00
yiekheng
8b8978831b Normalize rex/siong envs to .env.example + gitignore pattern 
Untracks envs/rex/.env and envs/siong/.env (kept on disk so existing
deploys keep working) and adds matching .env.example templates so a
fresh clone has something to copy from. .gitignore widens from
envs/dev/.env to envs/*/.env to cover all three deployments.

Per-deployment secrets are no longer committed; rotation deemed
unnecessary because the repo is hosted on a private self-hosted Gitea
instance.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
 2026-05-02 17:12:56 +08:00
yiekheng
dff8be829c feat(seed): add 'done' acc rows and matching user records 2026-05-02 17:09:54 +08:00
yiekheng
6126430a3e docs(agents): document the local-as-dev tier and bot CLI 2026-05-02 17:03:33 +08:00
yiekheng
918243ee8b feat(envs): add dev .env.example and gitignore the filled-in copy 2026-05-02 17:03:08 +08:00
yiekheng
23c697d6fe feat(scripts): add bot_cli.sh wrapper, fix dev.sh help routing 2026-05-02 17:02:49 +08:00
yiekheng
48e5adbccd feat(scripts): add dev.sh lifecycle wrapper 2026-05-02 17:02:08 +08:00
yiekheng
57d4a8a68d feat(compose): add dev mysql service, init scripts, profile-gate bots 2026-05-02 17:01:48 +08:00
yiekheng
7011c6bada feat(bot_cli): implement interactive TUI menu and add subparser entry 2026-05-02 17:00:40 +08:00
yiekheng
f472a94916 feat(bot_cli): add monitor-once subcommand 2026-05-02 16:59:55 +08:00
yiekheng
e2eb32dacb feat(bot_cli): add credit and transfer subcommands 2026-05-02 16:59:32 +08:00
yiekheng
5844d7598a feat(bot_cli): add insert-user subcommand (Telegram /3 analog) 2026-05-02 16:59:10 +08:00
yiekheng
66d5feaea1 feat(bot_cli): add set-pin subcommand with local name resolution 2026-05-02 16:58:46 +08:00
yiekheng
f5d4a554d6 feat(bot_cli): add register subcommand (Telegram /1 analog) 2026-05-02 16:58:24 +08:00
yiekheng
c6e49c6240 feat(bot_cli): add module skeleton with parser sanity tests 2026-05-02 16:58:05 +08:00
yiekheng
c6742d1537 Add implementation plan for local-as-dev tier 
13 bite-sized tasks: 7 TDD tasks for app/bot_cli.py (parser, six
subcommands, TUI), then mysql + init scripts, dev.sh + bot_cli.sh,
envs/dev/.env.example, AGENTS.md, and integration verification. Uses
unittest stdlib + unittest.mock; no new deps.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
 2026-05-02 16:57:17 +08:00
yiekheng
94ef5595ea Add design spec for local-as-dev tier (sub-project A) 
Adds containerized MySQL to docker-compose.override.yml, gates
telegram/transfer bots behind a 'bots' profile, and introduces a local
Python bot CLI with a stdlib TUI menu that mirrors Telegram's /1, /2,
/3 plus operational subcommands. CLI runs from .venv against
127.0.0.1:3306 (mysql published to localhost only).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
 2026-05-02 16:49:12 +08:00
yiekheng
9db3980304 feat(scripts): add verify_debug.sh to test CM_DEBUG hotfix in dev 2026-05-02 16:28:35 +08:00
yiekheng
a2351c96f6 docs(agents): note CM_DEBUG default and intent 2026-05-02 16:23:17 +08:00