orion

sboulahtit/orion

Fork 0

Commit Graph

Author	SHA1	Message	Date
Samir Boulahtit	6276e9e3ac	feat(loyalty): pair POS terminal devices with one-time setup QR Some checks failed CI / ruff (push) Successful in 47s Details CI / validate (push) Has been cancelled Details CI / dependency-scanning (push) Has been cancelled Details CI / docs (push) Has been cancelled Details CI / deploy (push) Has been cancelled Details CI / pytest (push) Has been cancelled Details Adds the backend half of the Android tablet rollout. Merchants can pair tablets to specific stores from /merchants/loyalty/devices (or admins can pair on behalf from the merchant detail page). Each pairing issues a long-lived JWT shown ONCE in the response with a server-rendered QR PNG containing {api_url, store_code, auth_token} — the tablet scans it on first boot and persists the three fields. The store API (/api/v1/store/loyalty/*) now accepts these device JWTs alongside user JWTs. Revoking a device row immediately rejects its token (401 TERMINAL_DEVICE_REVOKED). Tokens expire after 1 year; re-pair to renew. - Migration loyalty_010 + TerminalDevice model - create_device_token / verify_device_token JWT helpers - 5 endpoints x 2 portals (merchant + admin on-behalf) - Bearer-auth wiring in app/api/deps.py - Pages, shared list partial with one-time pairing-QR modal, Alpine.js factories - Locale strings (en authoritative; fr/de/lb seeded with EN copy for translation) - 6 integration tests covering pair, list, revoke, idempotency, cross-merchant rejection, store-API auth via device JWT Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-05-05 20:18:57 +02:00
Samir Boulahtit	f20266167d	fix(lint): auto-fix ruff violations and tune lint rules Some checks failed CI / ruff (push) Failing after 7s Details CI / pytest (push) Failing after 1s Details CI / architecture (push) Failing after 9s Details CI / dependency-scanning (push) Successful in 27s Details CI / audit (push) Successful in 8s Details CI / docs (push) Has been skipped Details - Auto-fixed 4,496 lint issues (import sorting, modern syntax, etc.) - Added ignore rules for patterns intentional in this codebase: E402 (late imports), E712 (SQLAlchemy filters), B904 (raise from), SIM108/SIM105/SIM117 (readability preferences) - Added per-file ignores for tests and scripts - Excluded broken scripts/rename_terminology.py (has curly quotes) Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-12 23:10:42 +01:00
Samir Boulahtit	b5a803cde8	feat(loyalty): implement complete loyalty module MVP Add stamp-based and points-based loyalty programs for vendors with: Database Models (5 tables): - loyalty_programs: Vendor program configuration - loyalty_cards: Customer cards with stamp/point balances - loyalty_transactions: Immutable audit log - staff_pins: Fraud prevention PINs (bcrypt hashed) - apple_device_registrations: Apple Wallet push tokens Services: - program_service: Program CRUD and statistics - card_service: Customer enrollment and card lookup - stamp_service: Stamp operations with anti-fraud checks - points_service: Points earning and redemption - pin_service: Staff PIN management with lockout - wallet_service: Unified wallet abstraction - google_wallet_service: Google Wallet API integration - apple_wallet_service: Apple Wallet .pkpass generation API Routes: - Admin: /api/v1/admin/loyalty/* (programs list, stats) - Vendor: /api/v1/vendor/loyalty/* (stamp, points, cards, PINs) - Public: /api/v1/loyalty/* (enrollment, Apple Web Service) Anti-Fraud Features: - Staff PIN verification (configurable per program) - Cooldown period between stamps (default 15 min) - Daily stamp limits (default 5/day) - PIN lockout after failed attempts Wallet Integration: - Google Wallet: LoyaltyClass and LoyaltyObject management - Apple Wallet: .pkpass generation with PKCS#7 signing - Apple Web Service endpoints for device registration/updates Also includes: - Alembic migration for all tables with indexes - Localization files (en, fr, de, lu) - Module documentation - Phase 2 interface and user journey plan Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-01-28 23:04:00 +01:00

Author

SHA1

Message

Date

Samir Boulahtit

6276e9e3ac

feat(loyalty): pair POS terminal devices with one-time setup QR

CI / ruff (push) Successful in 47s

Details

CI / validate (push) Has been cancelled

Details

CI / dependency-scanning (push) Has been cancelled

Details

CI / docs (push) Has been cancelled

Details

CI / deploy (push) Has been cancelled

Details

CI / pytest (push) Has been cancelled

Details

Adds the backend half of the Android tablet rollout. Merchants can
pair tablets to specific stores from /merchants/loyalty/devices (or
admins can pair on behalf from the merchant detail page). Each
pairing issues a long-lived JWT shown ONCE in the response with a
server-rendered QR PNG containing {api_url, store_code, auth_token} —
the tablet scans it on first boot and persists the three fields.

The store API (/api/v1/store/loyalty/*) now accepts these device JWTs
alongside user JWTs. Revoking a device row immediately rejects its
token (401 TERMINAL_DEVICE_REVOKED). Tokens expire after 1 year;
re-pair to renew.

- Migration loyalty_010 + TerminalDevice model
- create_device_token / verify_device_token JWT helpers
- 5 endpoints x 2 portals (merchant + admin on-behalf)
- Bearer-auth wiring in app/api/deps.py
- Pages, shared list partial with one-time pairing-QR modal,
  Alpine.js factories
- Locale strings (en authoritative; fr/de/lb seeded with EN copy
  for translation)
- 6 integration tests covering pair, list, revoke, idempotency,
  cross-merchant rejection, store-API auth via device JWT

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-05-05 20:18:57 +02:00

Samir Boulahtit

f20266167d

fix(lint): auto-fix ruff violations and tune lint rules

CI / ruff (push) Failing after 7s

Details

CI / pytest (push) Failing after 1s

Details

CI / architecture (push) Failing after 9s

Details

CI / dependency-scanning (push) Successful in 27s

Details

CI / audit (push) Successful in 8s

Details

CI / docs (push) Has been skipped

Details

- Auto-fixed 4,496 lint issues (import sorting, modern syntax, etc.)
- Added ignore rules for patterns intentional in this codebase:
  E402 (late imports), E712 (SQLAlchemy filters), B904 (raise from),
  SIM108/SIM105/SIM117 (readability preferences)
- Added per-file ignores for tests and scripts
- Excluded broken scripts/rename_terminology.py (has curly quotes)

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-12 23:10:42 +01:00

Samir Boulahtit

b5a803cde8

feat(loyalty): implement complete loyalty module MVP

Add stamp-based and points-based loyalty programs for vendors with:

Database Models (5 tables):
- loyalty_programs: Vendor program configuration
- loyalty_cards: Customer cards with stamp/point balances
- loyalty_transactions: Immutable audit log
- staff_pins: Fraud prevention PINs (bcrypt hashed)
- apple_device_registrations: Apple Wallet push tokens

Services:
- program_service: Program CRUD and statistics
- card_service: Customer enrollment and card lookup
- stamp_service: Stamp operations with anti-fraud checks
- points_service: Points earning and redemption
- pin_service: Staff PIN management with lockout
- wallet_service: Unified wallet abstraction
- google_wallet_service: Google Wallet API integration
- apple_wallet_service: Apple Wallet .pkpass generation

API Routes:
- Admin: /api/v1/admin/loyalty/* (programs list, stats)
- Vendor: /api/v1/vendor/loyalty/* (stamp, points, cards, PINs)
- Public: /api/v1/loyalty/* (enrollment, Apple Web Service)

Anti-Fraud Features:
- Staff PIN verification (configurable per program)
- Cooldown period between stamps (default 15 min)
- Daily stamp limits (default 5/day)
- PIN lockout after failed attempts

Wallet Integration:
- Google Wallet: LoyaltyClass and LoyaltyObject management
- Apple Wallet: .pkpass generation with PKCS#7 signing
- Apple Web Service endpoints for device registration/updates

Also includes:
- Alembic migration for all tables with indexes
- Localization files (en, fr, de, lu)
- Module documentation
- Phase 2 interface and user journey plan

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-01-28 23:04:00 +01:00

3 Commits