JoeBot/HOA_Financial_Platform
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
127 Commits 11 Branches 0 Tags
claude/tender-murdock
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
olsch01 19fb2c037c feat(security): address findings from v2 security assessment 
- L2: Add server_tokens off to nginx configs to hide version
- M1: Add X-Frame-Options, X-Content-Type-Options, Referrer-Policy,
  Permissions-Policy headers to all nginx routes
- L3: Add global NoCacheInterceptor (Cache-Control: no-store) on all
  API responses to prevent caching of sensitive financial data
- C1: Disable open registration by default (ALLOW_OPEN_REGISTRATION env)
- H3: Add logout endpoint with correct HTTP 200 status code
- M2: Implement full password reset flow (forgot-password, reset-password,
  change-password) with hashed tokens, 15-min expiry, single-use
- Reduce JWT access token expiry from 24h to 1h
- Add EmailService stub (logs to shared.email_log)
- Add DB migration 016 for password_reset_tokens table

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-03-17 07:46:11 -04:00
backend
feat(security): address findings from v2 security assessment
2026-03-17 07:46:11 -04:00
db
feat(security): address findings from v2 security assessment
2026-03-17 07:46:11 -04:00
docs
fix: improve AI health score accuracy and consistency
2026-03-06 12:44:12 -05:00
frontend
Merge pull request 'claude/reverent-moore' (#6) from claude/reverent-moore into main
2026-03-17 06:55:45 -04:00
nginx
feat(security): address findings from v2 security assessment
2026-03-17 07:46:11 -04:00
scripts
feat: add password reset utility script
2026-03-07 12:19:22 -05:00
.env.example
feat: add New Relic APM instrumentation to backend
2026-03-03 09:31:56 -05:00
.gitignore
Add database backup/restore script with auto-pruning
2026-03-02 14:40:51 -05:00
docker-compose.prod.yml
perf: remove unnecessary postgres/redis host port mappings in production
2026-03-03 14:52:09 -05:00
docker-compose.ssl.yml
Add SSL/TLS support with Certbot and update deployment guide
2026-03-02 14:28:01 -05:00
docker-compose.yml
feat: SaaS onboarding, Stripe billing, MFA, SSO, passkeys, refresh tokens
2026-03-16 21:12:35 -04:00
HOA_Financial_Platform_Part1_Market_Analysis.md
Initial commit: HOA Financial Intelligence Platform MVP
2026-02-17 19:58:04 -05:00
HOA_Financial_Platform_Part2_Competitive_Analysis.md
Initial commit: HOA Financial Intelligence Platform MVP
2026-02-17 19:58:04 -05:00
HOA_Financial_Platform_Part3_MVP_Features.md
Initial commit: HOA Financial Intelligence Platform MVP
2026-02-17 19:58:04 -05:00
HOA_Financial_Platform_Part4_Technical_Architecture.md
Initial commit: HOA Financial Intelligence Platform MVP
2026-02-17 19:58:04 -05:00
ONBOARDING-AND-AUTH.md
docs: add payment, onboarding, and auth reference guide
2026-03-17 06:24:59 -04:00
PLAN.md
fix: improve AI health score accuracy and consistency
2026-03-06 12:44:12 -05:00
Description
HOA Financial Intelligence Platform - Multi-tenant financial management for homeowner associations
3.2 MiB
Languages
TypeScript 98.2%
Shell 1.3%
PLpgSQL 0.2%
Dockerfile 0.1%
HTML 0.1%