5 Commits

Author	SHA1	Message	Date
richardtekula	73a3c6bf95	hotfix: Security, performance, and code cleanup ... - Remove hardcoded database password fallback - Add encryption salt validation (min 32 chars) - Separate EMAIL_ENCRYPTION_KEY from JWT_SECRET - Fix command injection in status.service.js (use execFileSync) - Remove unnecessary SQL injection regex middleware - Create shared utilities (queryBuilder, pagination, emailAccountHelper) - Fix N+1 query problems in contact and todo services - Merge duplicate JMAP config functions - Add database indexes migration - Standardize error responses with error codes Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-01-19 07:17:23 +01:00
richardtekula	4f4f53cbdc	Fix: Remove problematic characters from temp password generation ... - Remove special characters (!@#$%^&*) that cause login issues - Remove ambiguous characters (I, O, l, i, o, 0, 1) for better readability - Keep only alphanumeric characters for safe copy-paste and input 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>	2025-12-05 11:27:06 +01:00
richardtekula	109cae1167	Security improvements, role in user creation, todo filters fix ... - Remove better-auth dependency (unused) - Update JWT secrets to stronger values - Add ENCRYPTION_SALT env variable for password encryption - Add role field to createUserSchema validator - Accept role from body in admin.controller createUser - Fix todo filters: add priority filter, handle completed param - Remove .env.example (merged into .env) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>	2025-12-03 09:54:03 +01:00
richardtekula	178b18baa5	Add debug logging for markContactEmailsAsRead and remove password change restriction	2025-11-20 08:00:14 +01:00
richardtekula	da01d586fc	initialize git, basic setup for crm	2025-11-18 13:53:28 +01:00