Ops-dashboard

Author	SHA1	Message	Date
Scrum4Me Agent	b74cf3d75f	feat(audit): truncate stdout/stderr to 64KB + index FlowRun(user_id, started_at desc) - Truncate accumulated stdout/stderr to last 64KB before persisting FlowStep to prevent unbounded DB growth on verbose commands - Add @@index([user_id, started_at(sort: Desc)]) to FlowRun schema so audit list queries (WHERE user_id = ? ORDER BY started_at DESC) use the index - Add migration 20260513200000_flowrun_user_idx Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-05-13 18:03:06 +02:00
Scrum4Me Agent	2baf116841	feat(flows): add /api/flows/start SSE endpoint with FlowRun/FlowStep DB logging	2026-05-13 18:00:04 +02:00
Scrum4Me Agent	92d450609c	feat(auth): shared-secret auth web-app → ops-agent - ops-agent/src/auth.ts: constant-time compare via timingSafeEqual to prevent timing attacks; store secret as Buffer - ops-agent/src/index.ts + ops-agent.service: bind on 127.0.0.1:3099 (was 4242, per plan) - app/api/agent/[...path]/route.ts: Next.js proxy route that verifies ops_session cookie then forwards requests to agent with Authorization: Bearer <secret> - .env.example + deploy/ops-dashboard.env.example: add OPS_AGENT_SECRET and OPS_AGENT_URL - README.md: rotation procedure for the shared secret Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-05-13 17:22:37 +02:00
Scrum4Me Agent	be05724de0	feat: login page, session management, auth API routes en proxy guard - lib/session.ts: token generatie, SHA-256 hashing, createSession/getCurrentUser/invalidateSession - app/api/auth/login: bcrypt verificatie, session aanmaken, ops_session cookie (httpOnly, sameSite=strict, 24h TTL), rate-limit 5/min per IP - app/api/auth/logout: session invalideren en cookie verwijderen - app/login/page.tsx: login form (client component) - proxy.ts: route-protectie – redirect naar /login zonder sessie (middleware.ts is deprecated in Next.js 16) Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-05-13 17:10:07 +02:00

4 commits