crm-server

Files

richardtekula 8166b341ce fix: Allow no-origin requests for file downloads

CORS was blocking direct browser navigation/downloads in production.
Auth is still enforced by JWT/cookies on protected routes.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-01-30 10:37:34 +01:00

assets/certificate

fix: Remove left artifact from Gablas signature

2026-01-29 17:34:11 +01:00

config

refactor: Extract shared multer/upload config from routes

2026-01-28 07:21:35 +01:00

controllers

fix: Add explicit Content-Type and Content-Disposition headers for downloads

2026-01-30 08:42:02 +01:00

cron

refactor: Deduplicate event-notifier.js (603 -> 418 lines)

2026-01-28 07:25:35 +01:00

feat: Add IČO and DIČ fields to companies

2026-01-30 07:47:22 +01:00

middlewares

feat: Multi-feature CRM update

2026-01-28 17:23:57 +01:00

routes

feat: Add certificate email sending feature

2026-01-30 08:22:22 +01:00

scripts

Add Timesheets API with file upload and role-based access

2025-11-21 08:35:30 +01:00

services

fix: Add Chromium to Docker for PDF certificate generation

2026-01-30 10:31:51 +01:00

templates/certificates

fix: Use background-blue.jpeg for AIcertifikatGablas (signatures baked in)

2026-01-29 17:37:54 +01:00

utils

refactor: Delete unused utility files

2026-01-28 07:19:39 +01:00

validators

feat: Add IČO and DIČ fields to companies

2026-01-30 07:47:22 +01:00

app.js

fix: Allow no-origin requests for file downloads

2026-01-30 10:37:34 +01:00

index.js

hotfix: Security, performance, and code cleanup

2026-01-19 07:17:23 +01:00