shindakun.net
tags
Release v0.7.0: Login form template migration & export management fixes
Features:
- Migrated login form from inline HTML to Pico CSS template system
- Added contextual help and onboarding information to login page
- Professional styling matching application design
Bug Fixes:
- Fixed 'Delete after download' checkbox not appearing on dynamically added exports
- Fixed delete button not working due to CSS selector issues with DID-based export IDs
- Implemented ID sanitization to handle special characters in export IDs
- Fixed HTMX swap strategies for reliable export deletion
Technical Improvements:
- Added sanitizeID() template function for CSS selector safety
- Deprecated old OAuth login handler in favor of template-based approach
- Improved export row rendering consistency
- Enhanced template infrastructure with custom functions
Security:
- Maintained CSRF protection across all forms
- HTML template auto-escaping prevents XSS
- Proper OAuth session management
artifacts
Release v0.6.0: Export download and management system
Features:
- Export download as ZIP archives with streaming
- List and manage exports with metadata
- Delete exports with confirmation
- Auto-delete after download option
- Real-time UI updates
- Rate limiting and security controls
- Comprehensive test coverage
Performance: All operations <1s
Security: Path traversal prevention, DID ownership verification, audit logging
artifacts
Release v0.5.0: Security Hardening
Comprehensive security hardening for production deployment with ngrok HTTPS.
Features:
- CSRF protection on all POST/PUT/DELETE endpoints
- Secure session cookies with auto-HTTPS detection
- Security headers (X-Frame-Options, CSP, HSTS, etc.)
- Request size limits (10MB default)
- Path traversal protection for static files and media
- Per-user export directory isolation
- 18+ security integration tests
Documentation:
- Enhanced README.md Security section
- Comprehensive config.yaml comments
- SECURITY-CHECKLIST.md for deployment
- TROUBLESHOOTING.md for common issues
All tests passing. Production ready for ngrok deployment.
artifacts
Release v0.3.0 - Archive Export Feature
Major new feature: Export archived posts to JSON or CSV formats
Features:
- JSON and CSV export formats with RFC 4180 compliance
- Optional media file copying with deduplication
- Date range filtering with validation
- Real-time progress tracking
- Concurrent export prevention
- Empty archive handling
- Error recovery with automatic cleanup
- Comprehensive documentation
Implementation: 50/51 tasks complete (98%)
- 28 files changed, +4,385 lines
- Full test coverage with 17 unit tests
- Production-ready and fully documented
See PR #2 for detailed changelog.
artifacts
Release v0.2.2 - QuoteCount Bugfix
Same as v0.2.1 - re-tagging for consistency.
Bugfix release to properly extract quote counts from AT Protocol:
- Fixed QuoteCount not being extracted from API response
- Posts now display accurate quote counts in browse UI
- Follows same pattern as LikeCount/RepostCount/ReplyCount
Changes:
- internal/archiver/collector.go: Add QuoteCount extraction
🤖 Generated with [Claude Code](https://claude.com/claude-code)
artifacts
Release v0.2.1 - Fix QuoteCount Extraction
Bugfix release to properly extract quote counts from AT Protocol:
- Fixed QuoteCount not being extracted from API response
- Posts now display accurate quote counts in browse UI
- Follows same pattern as LikeCount/RepostCount/ReplyCount
Changes:
- internal/archiver/collector.go: Add QuoteCount extraction
🤖 Generated with [Claude Code](https://claude.com/claude-code)
artifacts
Release v0.2.0 - Full Web Interface
Complete implementation of 001-web-interface feature:
- OAuth 2.0 authentication with DPoP
- Archive management with background worker
- Browse interface with search and pagination
- QuoteCount tracking with database migrations
- Error handling and HTMX session redirects
- Storage layer tests
All MVP features complete and production-ready.
🤖 Generated with [Claude Code](https://claude.com/claude-code)