feat: add presentation layer + bootstrap wiring for vertical slice

2026-05-31 05:51:09 +02:00
parent 8c1a0e4519
commit 201eff717d
21 changed files with 726 additions and 51 deletions
--- a/.env.example
+++ b/.env.example
@@ -1,65 +1,42 @@
 # ============================================================================
-# K-Template Configuration
+# K-Photos Configuration
 # ============================================================================
 # Copy this file to .env and adjust values for your environment.

 # ============================================================================
 # Server
 # ============================================================================
-HOST=127.0.0.1
+HOST=0.0.0.0
 PORT=3000

 # ============================================================================
 # Database
 # ============================================================================
-# SQLite (default)
-DATABASE_URL=sqlite:data.db?mode=rwc
-
-# PostgreSQL (requires postgres feature flag)
-# DATABASE_URL=postgres://user:password@localhost:5432/mydb
+DATABASE_URL=postgres://kphotos:kphotos@localhost:5432/kphotos

 DB_MAX_CONNECTIONS=5
 DB_MIN_CONNECTIONS=1

-# ============================================================================
-# Cookie Secret
-# ============================================================================
-# Used to encrypt the OIDC state cookie (CSRF token, PKCE verifier, nonce).
-# Must be at least 64 characters in production.
-COOKIE_SECRET=your-cookie-secret-key-must-be-at-least-64-characters-long-for-security!!
-
-# Set to true when serving over HTTPS
-SECURE_COOKIE=false
-
 # ============================================================================
 # JWT
 # ============================================================================
-# Must be at least 32 characters in production.
-JWT_SECRET=your-jwt-secret-key-at-least-32-chars
-
-# Optional: embed issuer/audience claims in tokens
-# JWT_ISSUER=your-app-name
-# JWT_AUDIENCE=your-app-audience
+JWT_SECRET=change-me-in-production-at-least-32-characters

 # Token lifetime in hours (default: 24)
 JWT_EXPIRY_HOURS=24

-# ============================================================================
-# OIDC (optional — requires auth-oidc feature flag)
-# ============================================================================
-# OIDC_ISSUER=https://your-oidc-provider.com
-# OIDC_CLIENT_ID=your-client-id
-# OIDC_CLIENT_SECRET=your-client-secret
-# OIDC_REDIRECT_URL=http://localhost:3000/api/v1/auth/callback
-# OIDC_RESOURCE_ID=your-resource-id   # optional audience claim to verify
-
 # ============================================================================
 # CORS
 # ============================================================================
-CORS_ALLOWED_ORIGINS=http://localhost:5173,http://localhost:3000
+CORS_ALLOWED_ORIGINS=http://localhost:3000,http://localhost:5173
+
+# ============================================================================
+# Storage
+# ============================================================================
+STORAGE_BACKEND=local
+STORAGE_PATH=./data/media

 # ============================================================================
 # Production Mode
 # ============================================================================
-# Set to true/production/1 to enforce minimum secret lengths and other checks.
 PRODUCTION=false