Go to file

Gabriel Kaszewski d2412da057 feat(auth): refresh tokens + remember me

Backend: add refresh JWT (30d, token_type claim), POST /auth/refresh
endpoint (rotates token pair), remember_me on login, JWT_REFRESH_EXPIRY_DAYS
env var. Extractors now reject refresh tokens on protected routes.

Frontend: sessionStorage for non-remembered sessions, localStorage +
refresh token for remembered sessions. Transparent 401 recovery in
api.ts (retry once after refresh). Remember me checkbox on login page
with security note when checked.

2026-03-19 22:24:26 +01:00

docs/superpowers/specs

fix(infra): deserialize channel schedule_config via ScheduleConfigCompat for V1 compat

2026-03-17 14:56:09 +01:00

k-tv-backend

feat(auth): refresh tokens + remember me

2026-03-19 22:24:26 +01:00

k-tv-frontend

feat(auth): refresh tokens + remember me

2026-03-19 22:24:26 +01:00

.env.example

feat: add support for user registration toggle and Traefik integration in Docker setup

2026-03-11 22:56:23 +01:00

.gitignore

feat: add server-sent events for logging and activity tracking

2026-03-16 02:21:40 +01:00

compose.traefik.yml

feat: add support for user registration toggle and Traefik integration in Docker setup

2026-03-11 22:56:23 +01:00

compose.yml

feat(tv): update video player to handle ended event and improve channel navigation

2026-03-12 04:19:56 +01:00

README.md

docs: update README files to include new environment variables and local files feature

2026-03-16 02:29:42 +01:00

README.md

k-tv

Self-hosted linear TV channel orchestration. Turns a personal media library into broadcast-style channels.

Stack

Backend — Rust (Axum), SQLite/PostgreSQL, Jellyfin
Frontend — Next.js 16, React 19, TanStack Query, Tailwind v4, shadcn/ui

Docker

Registry: registry.gabrielkaszewski.dev

Build

NEXT_PUBLIC_API_URL is baked into the frontend bundle at build time — always pass it explicitly.

# Backend
docker build -t registry.gabrielkaszewski.dev/k-tv-backend:latest ./k-tv-backend

# Frontend — NEXT_PUBLIC_API_URL required
docker build \
  --build-arg NEXT_PUBLIC_API_URL=https://tv-api.gabrielkaszewski.dev/api/v1 \
  -t registry.gabrielkaszewski.dev/k-tv-frontend:latest \
  ./k-tv-frontend

Push

docker push registry.gabrielkaszewski.dev/k-tv-backend:latest
docker push registry.gabrielkaszewski.dev/k-tv-frontend:latest

Build + push (one-liner)

docker build -t registry.gabrielkaszewski.dev/k-tv-backend:latest ./k-tv-backend && \
docker push registry.gabrielkaszewski.dev/k-tv-backend:latest && \
docker build \
  --build-arg NEXT_PUBLIC_API_URL=https://tv-api.gabrielkaszewski.dev/api/v1 \
  -t registry.gabrielkaszewski.dev/k-tv-frontend:latest \
  ./k-tv-frontend && \
docker push registry.gabrielkaszewski.dev/k-tv-frontend:latest

Deploy (on server)

docker compose -f compose.yml -f compose.traefik.yml pull
docker compose -f compose.yml -f compose.traefik.yml up -d

Ports

Service	Port
Backend	3000
Frontend	3001

Env vars

Var	Where	Note
`NEXT_PUBLIC_API_URL`	frontend build arg	Baked in at build time — must point to the public backend URL
`API_URL`	frontend runtime env	Server-side only (Next.js API routes). Set in compose.
`DATABASE_URL`	backend	`sqlite:///app/data/k-tv.db` or postgres DSN
`JWT_SECRET`	backend	JWT signing key — change in production (min 32 chars)
`COOKIE_SECRET`	backend	OIDC state cookie encryption key — change in production (min 64 chars)