Trey t 81578f6e27 feat(auth): replace hand-rolled auth with Ory Kratos — phase 2 backend ...

Delegates all credential management (login, register, password reset,
email verification, social sign-in) to Ory Kratos. The Go API now acts
as a resource server: the new KratosAuth middleware validates sessions
against the Kratos whoami endpoint, writes the local User mirror into
Echo context, and all existing domain handlers continue working
unchanged. Hand-rolled token auth, AuthToken model, apple_auth/
google_auth services, and the auth refresh flow are removed. Tests are
updated to use the fake-token middleware pattern so existing integration
assertions require no rewrite.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-05-18 17:55:56 -05:00

..

audit_service_test.go

Production hardening: security, resilience, observability, and compliance

2026-03-26 14:05:28 -05:00

audit_service.go

Production hardening: security, resilience, observability, and compliance

2026-03-26 14:05:28 -05:00

auth_service_test.go

feat(auth): replace hand-rolled auth with Ory Kratos — phase 2 backend

2026-05-18 17:55:56 -05:00

auth_service.go

feat(auth): replace hand-rolled auth with Ory Kratos — phase 2 backend

2026-05-18 17:55:56 -05:00

cache_service.go

feat(auth): replace hand-rolled auth with Ory Kratos — phase 2 backend

2026-05-18 17:55:56 -05:00

contractor_service_test.go

Migrate Auth/Contractor/Document/Notification/Subscription services to ctx

2026-04-25 16:26:21 -05:00

contractor_service.go

fix(security): remediate 2026-05-12 audit findings (Stages 2–5)

2026-05-16 22:28:33 -05:00

document_service_test.go

refactor(uploads): drop legacy multipart code paths

2026-05-01 15:19:21 -07:00

document_service.go

refactor(uploads): drop legacy multipart code paths

2026-05-01 15:19:21 -07:00

email_service.go

Production hardening: security, resilience, observability, and compliance

2026-03-26 14:05:28 -05:00

encryption_service_test.go

Add delete account endpoint and file encryption at rest

2026-03-26 10:41:01 -05:00

encryption_service.go

Add delete account endpoint and file encryption at rest

2026-03-26 10:41:01 -05:00

file_ownership_service.go

fix(security): remediate 2026-05-12 audit findings (Stages 2–5)

2026-05-16 22:28:33 -05:00

iap_validation.go

fix(security): remediate 2026-05-12 audit findings (Stages 2–5)

2026-05-16 22:28:33 -05:00

notification_service_test.go

Migrate Auth/Contractor/Document/Notification/Subscription services to ctx

2026-04-25 16:26:21 -05:00

notification_service.go

fix(security): remediate 2026-05-12 audit findings (Stages 2–5)

2026-05-16 22:28:33 -05:00

onboarding_email_service.go

Fix 113 hardening issues across entire Go backend

2026-03-18 23:14:13 -05:00

path_utils_test.go

Harden API security: input validation, safe auth extraction, new tests, and deploy config

2026-03-02 09:48:01 -06:00

path_utils.go

Harden API security: input validation, safe auth extraction, new tests, and deploy config

2026-03-02 09:48:01 -06:00

pdf_service.go

Fix 113 hardening issues across entire Go backend

2026-03-18 23:14:13 -05:00

region_lookup_test.go

Add regional task templates API with climate zone lookup

2026-03-05 15:15:30 -06:00

region_lookup.go

Add regional task templates API with climate zone lookup

2026-03-05 15:15:30 -06:00

residence_id_cache.go

Cut /api/tasks/ p99 from ~2500ms toward ~150-300ms

2026-04-25 17:13:50 -05:00

residence_service_test.go

Migrate TaskService + ResidenceService to ctx-aware repos

2026-04-25 16:04:01 -05:00

residence_service.go

fix(security): remediate 2026-05-12 audit findings (Stages 2–5)

2026-05-16 22:28:33 -05:00

storage_backend_local.go

Add S3-compatible storage backend (B2, MinIO, AWS S3)

2026-03-30 21:31:24 -05:00

storage_backend_s3.go

fix(uploads): switch from S3 POST policy to presigned PUT

2026-05-06 15:41:48 -05:00

storage_backend.go

Add S3-compatible storage backend (B2, MinIO, AWS S3)

2026-03-30 21:31:24 -05:00

storage_service_test.go

Coverage priorities 1-5: test pure functions, extract interfaces, mock-based handler tests

2026-04-01 20:30:09 -05:00

storage_service.go

feat(uploads): direct-to-B2 presigned uploads with content-length-range policy

2026-05-01 14:36:42 -07:00

stripe_service.go

perf(subscription-status): cache + parallelize + invalidate on mutations

2026-05-01 11:00:23 -07:00

subscription_service_test.go

Migrate Auth/Contractor/Document/Notification/Subscription services to ctx

2026-04-25 16:26:21 -05:00

subscription_service.go

fix(security): remediate 2026-05-12 audit findings (Stages 2–5)

2026-05-16 22:28:33 -05:00

subscription_settings_cache.go

Cache SubscriptionSettings + cut monitoring poll noise

2026-04-26 21:29:30 -05:00

suggestion_service_test.go

Onboarding: template backlink, bulk-create endpoint, climate-region scoring

2026-04-14 15:23:57 -05:00

suggestion_service.go

Onboarding: template backlink, bulk-create endpoint, climate-region scoring

2026-04-14 15:23:57 -05:00

task_button_types.go

Rebrand from Casera/MyCrib to honeyDue

2026-03-07 06:33:38 -06:00

task_categorization_test.go

Rebrand from Casera/MyCrib to honeyDue

2026-03-07 06:33:38 -06:00

task_service_state_transition_test.go

Migrate TaskService + ResidenceService to ctx-aware repos

2026-04-25 16:04:01 -05:00

task_service_test.go

Migrate TaskService + ResidenceService to ctx-aware repos

2026-04-25 16:04:01 -05:00

task_service.go

refactor(uploads): drop legacy multipart code paths

2026-05-01 15:19:21 -07:00

task_template_service.go

Onboarding: template backlink, bulk-create endpoint, climate-region scoring

2026-04-14 15:23:57 -05:00

upload_service.go

fix(uploads): switch from S3 POST policy to presigned PUT

2026-05-06 15:41:48 -05:00

user_service.go

Fix 113 hardening issues across entire Go backend

2026-03-18 23:14:13 -05:00