orion

Author	SHA1	Message	Date
Samir Boulahtit	cff0af31be	feat(hosting): signed preview URLs for POC sites Replace the standalone POC viewer (duplicate rendering) with signed JWT preview tokens that bypass StorefrontAccessMiddleware: Architecture: 1. Admin clicks Preview → route generates signed JWT 2. Redirects to /storefront/{subdomain}/homepage?_preview=token 3. Middleware validates token signature + expiry + store_id 4. Sets request.state.is_preview = True, skips subscription check 5. Full storefront renders with HostWizard preview banner injected New files: - app/core/preview_token.py: create_preview_token/verify_preview_token Changes: - middleware/storefront_access.py: preview token bypass before sub check - storefront/base.html: preview banner injection via is_preview state - hosting/routes/pages/public.py: redirect with signed token (was direct render) - hosting/routes/api/admin_sites.py: GET /sites/{id}/preview-url endpoint Removed: - hosting/templates/hosting/public/poc-viewer.html (replaced by storefront) Benefits: one rendering path, all section types work, shareable 24h links. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-02 22:41:34 +02:00
Samir Boulahtit	540205402f	feat(middleware): harden routing with fail-closed policy, custom subdomain management, and perf fixes Some checks failed CI / pytest (push) Waiting to run Details CI / ruff (push) Successful in 12s Details CI / validate (push) Successful in 26s Details CI / dependency-scanning (push) Successful in 31s Details CI / docs (push) Has been cancelled Details CI / deploy (push) Has been cancelled Details - Fix IPv6 host parsing with _strip_port() utility - Remove dangerous StorePlatform→Store.subdomain silent fallback - Close storefront gate bypass when frontend_type is None - Add custom subdomain management UI and API for stores - Add domain health diagnostic tool - Convert db.add() in loops to db.add_all() (24 PERF-006 fixes) - Add tests for all new functionality (18 subdomain service tests) - Add .github templates for validator compliance Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-03-15 18:13:01 +01:00
Samir Boulahtit	32acc76b49	feat: platform-aware storefront routing and billing improvements Overhaul storefront URL routing to be platform-aware: - Dev: /platforms/{code}/storefront/{store_code}/ - Prod: subdomain.platform.lu/ (internally rewritten to /storefront/) - Add subdomain detection in PlatformContextMiddleware - Add /storefront/ path rewrite for prod mode (subdomain/custom domain) - Remove all silent platform fallbacks (platform_id=1) - Add require_platform dependency for clean endpoint validation - Update route registration, templates, module definitions, base_url calc - Update StoreContextMiddleware for /storefront/ path detection - Remove /stores/ from FrontendDetector STOREFRONT_PATH_PREFIXES Billing service improvements: - Add store_platform_sync_service to keep store_platforms in sync - Make tier lookups platform-aware across billing services - Add tiers for all platforms in seed data - Add demo subscriptions to seed Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-23 23:42:41 +01:00
Samir Boulahtit	2c710ad416	feat: storefront subscription access guard + module-driven nav + URL rename Add StorefrontAccessMiddleware that blocks storefront access for stores without an active subscription, returning a multilingual unavailable page (en/fr/de/lb) for page requests and JSON 403 for API requests. Multi-platform aware: resolves subscription for detected platform with fallback to primary. Also includes yesterday's session work: - Module-driven storefront navigation via FrontendType.STOREFRONT menu declarations - shop/ → storefront/ URL rename across 30+ templates - Subscription context (tier_code) passed to storefront templates Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-18 13:27:31 +01:00

4 Commits