refactor(infra): remove zitare + clock NestJS backends, add shared-hono package

Both apps are fully local-first via Dexie.js + mana-sync. Their NestJS backends were pure CRUD wrappers (20 + 31 source files) that are no longer needed. Changes: - Add packages/shared-hono: JWT auth via JWKS (jose), Drizzle DB factory, health route, generic GDPR admin handler, error middleware - Migrate zitare lists page from fetch() to listsStore (local-first) - Rewrite clock timers store from API-based to timerCollection (Dexie) - Update clock +layout.svelte CommandBar search to use local collections - Remove zitare-backend + clock-backend from docker-compose, CI/CD, Prometheus, env generation, setup scripts - Add docs/TECHNOLOGY_AUDIT_2026_03.md with full repo analysis Net result: -2 Docker containers, -2 ports, -2728 lines of code Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-05-19 13:23:37 +02:00 · 2026-03-27 22:43:46 +01:00 · 2026-03-27 22:43:46 +01:00 · 32939fbfb5
commit 32939fbfb5
parent 82de69476f
81 changed files with 1236 additions and 2727 deletions
--- a/packages/shared-hono/src/admin.ts
+++ b/packages/shared-hono/src/admin.ts
@ -0,0 +1,74 @@
+/**
+ * Generic GDPR admin routes for Hono servers.
+ *
+ * Provides user-data count and deletion endpoints called by
+ * mana-core-auth for GDPR compliance (right to be forgotten).
+ *
+ * Each app defines which tables contain user data; this module
+ * handles the routing and service-key authentication.
+ */
+
+import { Hono } from 'hono';
+import { eq, sql } from 'drizzle-orm';
+import type { PgTable } from 'drizzle-orm/pg-core';
+import { serviceAuthMiddleware } from './auth';
+
+interface UserTable {
+	/** Drizzle table reference */
+	table: PgTable;
+	/** Name shown in the response (e.g. "tasks", "favorites") */
+	name: string;
+	/** The user_id column on this table */
+	userIdColumn: ReturnType<typeof sql>;
+}
+
+/**
+ * Create admin routes for GDPR compliance.
+ *
+ * Usage:
+ * ```ts
+ * import { adminRoutes } from '@manacore/shared-hono/admin';
+ * import { tasks, projects, reminders } from './db';
+ *
+ * app.route('/api/v1/admin', adminRoutes(db, [
+ *   { table: tasks, name: 'tasks', userIdColumn: tasks.userId },
+ *   { table: projects, name: 'projects', userIdColumn: projects.userId },
+ *   { table: reminders, name: 'reminders', userIdColumn: reminders.userId },
+ * ]));
+ * ```
+ */
+export function adminRoutes(db: any, tables: UserTable[]): Hono {
+	const route = new Hono();
+
+	route.use('/*', serviceAuthMiddleware());
+
+	/** Get user data counts across all tables. */
+	route.get('/user-data/:userId', async (c) => {
+		const userId = c.req.param('userId');
+		const counts: Record<string, number> = {};
+
+		for (const { table, name, userIdColumn } of tables) {
+			const [result] = await db
+				.select({ count: sql<number>`count(*)` })
+				.from(table)
+				.where(eq(userIdColumn, userId));
+			counts[name] = Number(result?.count ?? 0);
+		}
+
+		return c.json({ userId, counts });
+	});
+
+	/** Delete all user data (GDPR right to be forgotten). */
+	route.delete('/user-data/:userId', async (c) => {
+		const userId = c.req.param('userId');
+
+		// Delete in reverse order (children before parents if there are FKs)
+		for (const { table, userIdColumn } of [...tables].reverse()) {
+			await db.delete(table).where(eq(userIdColumn, userId));
+		}
+
+		return c.json({ userId, deleted: true, message: 'All user data deleted' });
+	});
+
+	return route;
+}