senke
9de06bbf48
feat(v0.10.5): Notifications Complètes (F551-F555)
...
- Phase 1: Default prefs — push_message & push_follow only; migration 941
- Phase 2: Digest = new tracks from followed artists (ORIGIN §8.1), not unread notifications
- Phase 3: Toggle 'désactiver marketing' + button 'Tout désactiver sauf messages et follows'
- Phase 4: PushPreferencesSection first in NotificationSettings (source of truth)
- Roadmap: v0.10.5 → DONE
2026-03-10 10:09:32 +01:00
senke
c2b3a68fd5
feat(v0.10.5): Notifications complètes — F551-F555
...
Backend API CI / test-unit (push) Failing after 1s
Backend API CI / test-integration (push) Failing after 2s
Frontend CI / test (push) Failing after 2s
Storybook Audit / Build & audit Storybook (push) Failing after 2s
F555: Backend pagination/filter GetNotifications (type, page, limit) + frontend pagination
F551: WebSocket real-time — backend inject chat hub, send on CreateNotification; frontend useChat invalidates
F553: Quiet hours — migration 132, CreateNotification skips push/WS, UI in PushPreferencesSection
F554: Notification grouping — migration 133, group_key/actor_count for like/comment, UI format
F552: Weekly digest — migration 134, NotificationDigestWorker, email template, prefs UI
Acceptance: no gamification notif; defaults unchanged; individual toggles for marketing
2026-03-10 10:02:21 +01:00
senke
16a338da62
stabilisation commit: while implementing v0.10.5
2026-03-09 19:36:33 +01:00
senke
7259526d43
feat(v0.10.4): Playlists collaboratives - F136, F140, F141, F143, F145
...
Backend API CI / test-unit (push) Failing after 2s
Backend API CI / test-integration (push) Failing after 6s
Frontend CI / test (push) Failing after 4s
Storybook Audit / Build & audit Storybook (push) Failing after 3s
Backend:
- F141: GET /discover/playlists/editorial for editorial playlists
- F143: GET /playlists/shared/:token (public, no auth)
- F145: POST /playlists/import (JSON), GET /playlists/:id/export/m3u
- F136: GET /playlists/favoris (creates Favoris playlist if needed)
- Repo: GetFavorisByUserID, service GetOrCreateFavorisPlaylist
Frontend:
- SharedPlaylistPage at /playlists/shared/:token (public route)
- Editorial playlists section in DiscoverPage
- Export M3U in ExportPlaylistButton dropdown
- Import JSON via ImportPlaylistButton (PlaylistListPage)
- Favoris sidebar link, FavorisRedirectPage, AddToFavorisButton on tracks
Roadmap: v0.10.4 marked DONE
2026-03-09 16:49:05 +01:00
senke
ef1ca1a908
feat(v0.10.3): Commentaires & Interactions Sociales - F201-F215
...
- F201: Commentaires avec timestamp cliquable, modération mots-clés
- F202: Likes privés (compteur visible créateur uniquement)
- F203: Reposts de tracks sur le profil, bouton Repost, onglet Reposts
- F204: Notifications (commentaire, repost), pas de gamification
Backend: migrations 127/128, comment_moderation_service, track_repost_service,
GetTrackLikes/GetTrack masquent like_count pour non-créateurs
Frontend: LikeButton isCreator, RepostButton, Reposts tab profil, timestamp seek
2026-03-09 10:30:47 +01:00
senke
ba88086f20
feat(v0.10.2): Recherche fulltext Elasticsearch - F361-F365
...
- Elasticsearch 8.x dans docker-compose.dev
- Package internal/elasticsearch: client, config, mappings, indices
- Sync PG→ES: reindex tracks/users/playlists, IndexTrack/DeleteTrack
- SearchService ES: multi_match + fuzziness (typo tolerance), highlighting
- Fallback gracieux: PostgreSQL si ELASTICSEARCH_URL absent
- Routes: GET /search, GET /search/suggestions, POST /admin/search/reindex
- Frontend: searchApi cursor/limit params (extensibilité)
- docs/ENV_VARIABLES: ELASTICSEARCH_URL, ELASTICSEARCH_INDEX, ELASTICSEARCH_AUTO_INDEX
- Roadmap v0.10.2 → DONE
2026-03-09 10:13:18 +01:00
senke
d584778249
feat(v0.10.1): Track edit form - tags/genres (Phase 4.4)
...
- TrackMetadataEditModal: genres multi-select (max 3) from taxonomy
- Tag input with validation: max 10 tags, 30 chars each
- discoverService.getGenres() for genre list
- UpdateTrackParams/Request: add genres field
2026-03-09 10:00:07 +01:00
senke
6690e334a1
feat(v0.10.1): Tags & Genres discover - F351-F355
...
- Tags déclaratifs (max 10, 30 chars) via track_tags + tags
- Genres normalisés (max 3) via track_genres + taxonomy
- GET /api/v1/discover/genre/:genre, tag/:tag (browse chrono)
- POST/DELETE follow genre/tag
- Section feed "Nouvelles sorties dans vos genres"
- Track update: SyncTrackTags, SyncTrackGenres via discover service
- Frontend: discoverService, FeedPage by_genres, DiscoverPage
- Migration 126_tags_genres_discover
- MSW handlers for discover
2026-03-09 01:52:56 +01:00
senke
b7434acf5a
v0.9.8 beta
2026-03-07 00:54:35 +01:00
senke
9721e36289
v0.9.8
2026-03-06 19:13:16 +01:00
senke
7df866cd3f
v0.9.7 beta
2026-03-06 18:58:37 +01:00
senke
99136948cb
v0.9.7
2026-03-06 18:52:08 +01:00
senke
05446064ea
v0.9.6
2026-03-06 10:29:30 +01:00
senke
9fa7f3a4d2
v0.9.5
2026-03-06 10:02:53 +01:00
senke
cd974172cb
v0.9.4
2026-03-05 23:03:43 +01:00
senke
e8e4309ba1
v0.9.3
2026-03-05 19:35:57 +01:00
senke
24fc55c3df
finalizing v0.9.2
2026-03-05 19:30:28 +01:00
senke
2956b12645
v0.9.2
2026-03-05 19:27:34 +01:00
senke
9a93068a9b
v0.9.1
2026-03-05 19:22:31 +01:00
senke
a007f4c7e4
fix(release): v1.0.2 — Conformité complète V1_SIGNOFF (21 critères)
...
Backend API CI / test-unit (push) Failing after 0s
Backend API CI / test-integration (push) Failing after 0s
Frontend CI / test (push) Failing after 0s
Storybook Audit / Build & audit Storybook (push) Failing after 0s
- Couverture Go: script coverage_report.sh, 39% mesuré
- Vitest thresholds frontend 50%
- Load test WebSocket: CHAT_ORIGIN→backend, WS_URL=/api/v1/ws
- Tests: chat_service (WSUrl), password_service (hash/expired)
- V1_SIGNOFF: 14 PASS, 7 N/A documentés
- PERFORMANCE_BASELINE, RGPD, PWA tables v1.0.2
- Runbooks, Grafana, Secrets validés
2026-03-03 21:18:53 +01:00
senke
7ede202e95
fix(release): v1.0.1 — Conformité complète ROADMAP checklist
...
Backend API CI / test-unit (push) Failing after 0s
Backend API CI / test-integration (push) Failing after 0s
Stream Server CI / test (push) Failing after 0s
- Sécurité: npm 0 CRITICAL, cargo audit 0 vulnérabilités
- OpenAPI: @Param id corrigé pour /tracks/quota/{id}
- Tests: Payment E2E passe, OAuth DATABASE_URL fallback
- Migrations: 000_mark_consolidated.sql
- veza-stream-server: prometheus 0.14, validator 0.19
- docs: SECURITY_SCAN_RC1, V1_SIGNOFF, PROJECT_STATE
2026-03-03 20:17:54 +01:00
senke
5cf305480c
chore(release): bump VERSION to 1.0.0 — Commercial release
2026-03-03 19:54:04 +01:00
senke
330607aeb3
chore(release): v0.992 RC2 — Release notes, sign-off final
2026-03-03 19:53:41 +01:00
senke
5457d36515
chore: regenerate CHANGELOG, bump VERSION to 0.991 for RC1
2026-03-03 19:52:49 +01:00
senke
80a3e1109b
chore(release): bump VERSION to 0.982
2026-03-03 19:50:29 +01:00
senke
6e99376e8e
perf(web): add Lighthouse audit section for v0.982
2026-03-03 19:50:08 +01:00
senke
a0e9a36957
fix(bugbash): document P1/P2 bug bash completion for v0.981
2026-03-03 19:49:53 +01:00
senke
81be8331d1
docs: retrospective v0.803, archive scope, update SCOPE_CONTROL
...
- Add RETROSPECTIVE_V0803.md
- Archive V0_803_RELEASE_SCOPE.md to docs/archive/
- Update SCOPE_CONTROL: phase v0.901, link to archived scope
- Update .cursorrules: scope v0.901, v0.803 archived
2026-03-03 09:25:34 +01:00
senke
71525fdafb
docs: update API_REFERENCE, CHANGELOG, FEATURE_STATUS, PROJECT_STATE for v0.803
2026-03-03 09:25:20 +01:00
senke
9f91c99547
feat(security): add global and per-IP DDoS rate limiting (1000/s, 100/s)
...
SEC1-04: Redis sliding window 1s, excluded paths (health, swagger, auth)
2026-03-03 09:25:08 +01:00
senke
d7a379644a
feat(admin): add Settings tab with announcements, feature flags, maintenance
...
- Add SETTINGS tab to AdminDashboardTabs with AdminSettingsView
- Align moderation actions to backend: dismiss, warn, ban (replace cleared/quarantined)
2026-03-03 09:24:52 +01:00
senke
e118199637
chore(release): v0.981 — Beta (staging deploy, bug bash, smoke test)
2026-03-02 19:33:42 +01:00
senke
8138723eca
chore(release): v0.971 — Phantom (gamification removal, WebRTC Beta, limits doc)
2026-03-02 19:25:37 +01:00
senke
c14b08a84e
chore(release): v0.951 — Loadtest (500 req/s, 1000 WS, 50 uploads, perf indexes)
2026-03-02 19:22:38 +01:00
senke
33a2384364
chore(release): v0.962 — Onboard (API ref, onboarding <30min, ADRs)
2026-03-02 19:11:06 +01:00
senke
7db921672f
chore(release): v0.961 — Playbook (runbooks déploiement, rollback, incident)
2026-03-02 19:09:46 +01:00
senke
0301b6d54c
chore(release): v0.952 — Observe (Grafana v1-overview, Prometheus alert_rules_v1)
2026-03-02 19:08:55 +01:00
senke
c38e915025
chore(release): v0.943 — Refactor (split track batch ops to track_batch_service)
2026-03-02 19:07:49 +01:00
senke
e2645cdaa0
chore(release): v0.942 — Compress (migration consolidation procedure, mark script)
2026-03-02 19:05:54 +01:00
senke
1b239d13ab
chore(release): v0.941 — Cleanup (dead code, migrations dedup, deprecated routes)
2026-03-02 19:04:30 +01:00
senke
3c5bb018cb
chore(release): v0.931 — Cursor (cursor-based pagination, performance baseline)
2026-03-02 12:35:49 +01:00
senke
c2aa0483eb
chore(release): v0.922 — Greenlight (handler tests: dashboard, presence)
2026-03-02 12:30:51 +01:00
senke
2dc5b452b2
chore(release): v0.921 — Rustproof (Rust test coverage >30%)
2026-03-02 12:28:20 +01:00
senke
4f47cec05d
feat(v0.923): API contract tests, OpenAPI generation, CI type sync check
2026-02-27 20:23:10 +01:00
senke
e02031044c
feat(v0.912): Cashflow - payment E2E integration tests
...
- Add MarketplaceServiceOverride and AuthMiddlewareOverride to config for tests
- Wire overrides in routes_webhooks and routes_marketplace (authForMarketplaceInterface)
- payment_flow_test: cart -> checkout -> webhook -> order completed, license, transfer
- webhook_idempotency_test: 3 identical webhooks -> 1 order, 1 license
- webhook_security_test: empty secret 500, invalid sig 401, valid sig 200
- refund_flow_test: completed order -> refund -> order refunded, license revoked
- Shared computeWebhookSignature helper in webhook_test_helpers.go
- SetMaxOpenConns(1) for sqlite :memory: in idempotency test to avoid flakiness
Ref: docs/ROADMAP_V09XX_TO_V1.md v0.912 Cashflow
2026-02-27 20:00:51 +01:00
senke
c96be67cbc
feat(auth): v0.911 Keystone - OAuth and auth integration tests
...
- Add access token blacklist on logout (VEZA-SEC-006)
- Extend OAuthService for mock provider injection in tests
- Add oauth_google_test.go: full OAuth Google flow with mocked provider
- Add oauth_github_test.go: OAuth GitHub flow with PKCE verification
- Add token_refresh_test.go: E2E refresh via httpOnly cookies
- Add logout_blacklist_test.go: E2E logout + token blacklist
- Fix testutils import path in resume_upload_test, track_quota_test
- Fix CreatorID -> UserID in track_quota_test
- Add test:integration script to package.json
Release: v0.911 Keystone
2026-02-27 09:58:53 +01:00
senke
515494007f
release(v0.903): Vault - ORDER BY whitelist, rate limiter, VERSION sync, chat-server cleanup, Go 1.24
...
- ORDER BY dynamiques : whitelist explicite, fallback created_at DESC
- Login/register soumis au rate limiter global
- VERSION sync + check CI
- Nettoyage références veza-chat-server
- Go 1.24 partout (Dockerfile, workflows)
- TODO/FIXME/HACK convertis en issues ou résolus
2026-02-27 09:43:25 +01:00
senke
4c0be12465
release(v0.902): Sentinel - PKCE OAuth, token encryption, redirect validation, CHAT_JWT_SECRET
...
- PKCE (S256) in OAuth flow: code_verifier in oauth_states, code_challenge in auth URL
- CryptoService: AES-256-GCM encryption for OAuth provider tokens at rest
- OAuth redirect URL validated against OAUTH_ALLOWED_REDIRECT_DOMAINS
- CHAT_JWT_SECRET must differ from JWT_SECRET in production
- Migration script: cmd/tools/encrypt_oauth_tokens for existing tokens
- Fixes: VEZA-SEC-003, VEZA-SEC-004, VEZA-SEC-009, VEZA-SEC-010
2026-02-26 19:49:15 +01:00
senke
6e204cc98a
feat(security): v0.901 Ironclad - fix 5 critical/high vulnerabilities
...
- OAuth: use JWTService+SessionService, httpOnly cookies (VEZA-SEC-001)
- Remove PasswordService.GenerateJWT (VEZA-SEC-002)
- Hyperswitch webhook: mandatory verification, 500 if secret empty (VEZA-SEC-005)
- Auth middleware: TokenBlacklist.IsBlacklisted check (VEZA-SEC-006)
- Waveform: ValidateExecPath before exec (VEZA-SEC-007)
2026-02-26 19:34:45 +01:00
senke
2ef64037b5
docs: update documentation for v0.803 release
2026-02-25 20:04:37 +01:00
