fix(imports): convert require() to ESM import for randomBytes in auth.js
This commit is contained in:
Ulas
@@ -0,0 +1,48 @@
|
||||
# CLAUDE.md Migration Summary
|
||||
|
||||
## Result
|
||||
|
||||
| | Lines |
|
||||
|---|---|
|
||||
| Before | 82 |
|
||||
| After | 50 |
|
||||
| Reduction | -39% (-32 lines) |
|
||||
|
||||
## What was removed and why
|
||||
|
||||
| Removed | Reason |
|
||||
|---|---|
|
||||
| `## Quick Reference` commands block (6 lines) | `npm start`, `npm run dev`, `npm test` are all in `package.json scripts`. Claude reads `package.json` on demand. `docker compose up -d` is a deployment detail, not a development constraint. |
|
||||
| "These are non-negotiable. Every violation is a bug." intro | Moved to tighter one-liner before the list. |
|
||||
| Full directory tree (21 lines) | Claude navigates the filesystem directly. Listing every file adds no behavioral value. Only non-obvious locations were kept. |
|
||||
| "Pages are ES modules" standalone paragraph | Merged into Conventions. |
|
||||
| Semicolons | Inferrable from reading any source file. |
|
||||
| Header comment convention | Already documented in `CONTRIBUTING.md`. |
|
||||
| DB table column pattern (`id`, `created_at`, `updated_at`) | Already in `CONTRIBUTING.md`. |
|
||||
| Commit format and Changelog instructions (2 lines) | Already in `CONTRIBUTING.md`. Claude can read it when committing. |
|
||||
| `## Current State` paragraph | Describes finished features - zero behavioral value. Becomes stale immediately. |
|
||||
| "When to consult" column from Reference table | Padding. Claude decides when to read reference docs based on task context. |
|
||||
|
||||
## What moved to rules files
|
||||
|
||||
None. The remaining content is either universal (applies to every file) or a short pointer. No subsystem-specific rules justify a separate file at this project size.
|
||||
|
||||
## What was kept and why
|
||||
|
||||
| Kept | Why |
|
||||
|---|---|
|
||||
| All 8 Hard Constraints | Each prevents a class of wrong code that Claude would otherwise produce. The no-frameworks rule in particular would be violated without an explicit reminder. |
|
||||
| API response shape `{data}` / `{error, code}` | Not inferrable without reading multiple route files. Applies to every new route. |
|
||||
| `formatDate()`/`formatTime()` | Without this, Claude formats dates manually (e.g. `new Date().toLocaleDateString()`), producing inconsistent output. |
|
||||
| `pages/*.js` → `render()`, no side effects | Structural contract not obvious from reading one page file. |
|
||||
| `oikos-` prefix | Web Component naming convention. |
|
||||
| Non-obvious file locations (`i18n.js`, `api.js`, `router.js`) | These live at `public/` root, not in a subdirectory. Easy to miss when navigating. |
|
||||
| Request flow one-liner | Architectural orientation for new tasks. |
|
||||
| Reference table (trimmed) | On-demand pointers replace inline content for spec details. |
|
||||
|
||||
## Token delta estimate
|
||||
|
||||
At ~4 chars/token average for this content:
|
||||
- Before: ~1,800 tokens loaded every session
|
||||
- After: ~1,100 tokens loaded every session
|
||||
- Savings: ~700 tokens per session
|
||||
@@ -0,0 +1,64 @@
|
||||
# Oikos - Standalone Docker Compose for Portainer / remote deployment
|
||||
# Pulls the pre-built image from GitHub Container Registry.
|
||||
# No git clone required.
|
||||
#
|
||||
# Usage:
|
||||
# 1. Copy this file and the .env section below to your server
|
||||
# 2. Create a .env file next to this compose file (see below)
|
||||
# 3. docker compose -f docker-compose.portainer.yml up -d
|
||||
# 4. docker compose -f docker-compose.portainer.yml exec oikos node setup.js
|
||||
# 5. Open http://<your-host>:3000
|
||||
#
|
||||
# Required .env variables:
|
||||
# SESSION_SECRET=<random-string-min-32-chars>
|
||||
# DB_ENCRYPTION_KEY=<random-string-min-32-chars>
|
||||
#
|
||||
# Generate secrets:
|
||||
# openssl rand -base64 32
|
||||
|
||||
services:
|
||||
oikos:
|
||||
image: ghcr.io/ulsklyc/oikos:latest
|
||||
container_name: oikos
|
||||
restart: unless-stopped
|
||||
ports:
|
||||
- "3000:3000"
|
||||
volumes:
|
||||
- oikos_data:/data
|
||||
environment:
|
||||
- NODE_ENV=production
|
||||
- PORT=3000
|
||||
- DB_PATH=/data/oikos.db
|
||||
- SESSION_SECRET=${SESSION_SECRET:?Set SESSION_SECRET in .env}
|
||||
- DB_ENCRYPTION_KEY=${DB_ENCRYPTION_KEY:?Set DB_ENCRYPTION_KEY in .env}
|
||||
# Set to true when behind a reverse proxy with HTTPS
|
||||
- SESSION_SECURE=${SESSION_SECURE:-false}
|
||||
# Weather (optional)
|
||||
- OPENWEATHER_API_KEY=${OPENWEATHER_API_KEY:-}
|
||||
- OPENWEATHER_CITY=${OPENWEATHER_CITY:-Berlin}
|
||||
- OPENWEATHER_UNITS=${OPENWEATHER_UNITS:-metric}
|
||||
- OPENWEATHER_LANG=${OPENWEATHER_LANG:-de}
|
||||
# Google Calendar (optional)
|
||||
- GOOGLE_CLIENT_ID=${GOOGLE_CLIENT_ID:-}
|
||||
- GOOGLE_CLIENT_SECRET=${GOOGLE_CLIENT_SECRET:-}
|
||||
- GOOGLE_REDIRECT_URI=${GOOGLE_REDIRECT_URI:-}
|
||||
# Apple Calendar CalDAV (optional)
|
||||
- APPLE_CALDAV_URL=${APPLE_CALDAV_URL:-https://caldav.icloud.com}
|
||||
- APPLE_USERNAME=${APPLE_USERNAME:-}
|
||||
- APPLE_APP_SPECIFIC_PASSWORD=${APPLE_APP_SPECIFIC_PASSWORD:-}
|
||||
# Sync interval in minutes
|
||||
- SYNC_INTERVAL_MINUTES=${SYNC_INTERVAL_MINUTES:-15}
|
||||
# Rate limiting
|
||||
- RATE_LIMIT_WINDOW_MS=${RATE_LIMIT_WINDOW_MS:-60000}
|
||||
- RATE_LIMIT_MAX_ATTEMPTS=${RATE_LIMIT_MAX_ATTEMPTS:-5}
|
||||
- RATE_LIMIT_BLOCK_DURATION_MS=${RATE_LIMIT_BLOCK_DURATION_MS:-900000}
|
||||
healthcheck:
|
||||
test: ["CMD", "node", "-e", "require('http').get('http://localhost:3000/health', r => process.exit(r.statusCode === 200 ? 0 : 1))"]
|
||||
interval: 30s
|
||||
timeout: 10s
|
||||
retries: 3
|
||||
start_period: 10s
|
||||
|
||||
volumes:
|
||||
oikos_data:
|
||||
driver: local
|
||||
Reference in New Issue
Block a user