7fe4ae5365
✨ Major Features Added: - Complete magical theming and rebranding from LifeRPG to The Wizard's Grimoire - Production-grade React frontend with Tailwind CSS v4 and magical aesthetics - Comprehensive analytics dashboard with Recharts integration (ScryingPortal) - Push notifications system with PWA service worker support - Drag & drop functionality using @dnd-kit for habit reordering - Social features with friends system and leaderboards - Performance optimization tools and monitoring - Mobile app enhancement with PWA installation support 🏗️ Technical Infrastructure: - Advanced service worker with offline support and background sync - Zustand state management for scalable application state - Production-ready UI component system with enhanced Button, Card, Input - Progressive Web App (PWA) with manifest and app installation - FastAPI backend with comprehensive API endpoints - Docker containerization and CI/CD pipeline setup 📱 Progressive Web App Features: - Offline functionality with intelligent caching - Push notification support for habit reminders - App installation on mobile and desktop platforms - Background sync for offline data management - Performance monitoring and optimization tools 🎨 User Experience: - Magical wizard/grimoire theming throughout application - Responsive design optimized for all device sizes - Drag & drop habit management with smooth animations - Interactive analytics with multiple chart types - Social connectivity with friends and competitive features - Comprehensive notification and performance settings 🔧 Developer Experience: - Modern development stack with Vite and React - Comprehensive testing setup and CI/CD pipelines - Code quality tools with pre-commit hooks - Docker development environment - Detailed documentation and implementation guides This represents a complete transformation from prototype to production-ready application with enterprise-grade features and magical user experience.
24 lines
1015 B
Markdown
24 lines
1015 B
Markdown
Frontend 2FA UX
|
|
|
|
This backend supports TOTP-based 2FA and one-time recovery codes.
|
|
|
|
Key flows:
|
|
|
|
- Admin-assisted signup + setup
|
|
- After creating a user via the backend while logged in as admin, an alternate cookie `session_alt` will be set.
|
|
- Use this cookie when calling 2FA endpoints to configure TOTP for the new account without logging the admin out.
|
|
|
|
- TOTP setup
|
|
1) POST /api/v1/auth/2fa/setup
|
|
- Show the `otpauth_uri` QR and the plaintext `recovery_codes` once.
|
|
2) After the user scans the QR in an authenticator, prompt for a 6-digit code.
|
|
3) POST /api/v1/auth/2fa/enable with `{ code }`.
|
|
|
|
- Login with 2FA
|
|
- If the login response indicates 2FA is required (401 with detail), ask the user for their TOTP code and retry including `totp_code`.
|
|
- Provide an option to use a recovery code; if used successfully, it is consumed and cannot be used again.
|
|
|
|
Notes
|
|
|
|
- Recovery codes are displayed only once during setup. Store them securely.
|
|
- Logout should clear both `session` and `session_alt`. |