mirror of https://github.com/Memo-2023/mana-monorepo.git synced 2026-05-14 23:01:09 +02:00

Mirror of github.com/Memo-2023/mana-monorepo

Find a file

Till JS bed08a1aa6 feat(mana/web): encryption phase 4 — notes pilot live First module with at-rest encryption flipped on. The notes table's title + content are now encrypted with AES-GCM-256 before any write hits Dexie, decrypted on every read coming back through liveQuery, and travel as opaque ciphertext through the sync wire (pending changes, server push, applyServerChanges, the lot). What changes for the user - Nothing visible. Optimistic UI render still uses the plaintext snapshot returned by createNote(). Edits look identical to the old Phase 3 behaviour. The difference is invisible until you crack open DevTools → Application → IndexedDB → mana → notes, where you'll see ciphertext instead of "Buy milk". What changes on disk - notes.title and notes.content store ciphertext blobs (`enc:1:<iv-b64>.<ct-b64>`) - All other columns (id, color, isPinned, isArchived, createdAt, updatedAt, deletedAt, userId, __fieldTimestamps) stay plaintext so liveQuery filtering, sorting, and Field-Level LWW continue to work without changes. - _pendingChanges.data carries the same ciphertext blobs — server receives opaque values, never plaintext. Files registry.ts notes flipped to enabled:true with the corrected field list ['title', 'content'] (the schema has no 'body' column). aes.test.ts Existing assertion that "Phase 1 has no encrypted tables" is rewritten as "notes is enabled in Phase 4" so the registry flip doesn't break the foundation suite. record-helpers.ts encryptRecord/decryptRecord/decryptRecords loosen the generic constraint from `T extends Record<string, unknown>` to `T extends object`. Domain types like LocalNote work as direct arguments without an `as Record<string, unknown>` cast at every call site. Internal field reads/writes go through a sealed Record-shaped view. notes/stores/notes.svelte.ts createNote: snapshots the plaintext for the optimistic return value, then encryptRecord('notes', record) before noteTable.add. updateNote: encrypts the diff in place; non-encrypted fields (color, isPinned, isArchived) pass through untouched. togglePin / archiveNote / deleteNote: untouched — they only update plaintext columns. notes/queries.ts useAllNotes: filter on plaintext metadata first (deletedAt, isArchived) so the decrypt workload is bounded by the visible set, not the whole table. Then decryptRecords across what's left, then map+sort. useNote(id): new helper for detail views. notes-encryption.test.ts (new — 8 cases) End-to-end against fake-indexeddb with a real Web Crypto master key in MemoryKeyProvider: 1. Title + content land as ciphertext on disk 2. Structural fields stay plaintext on disk 3. updateNote re-encrypts modified content but leaves flags 4. togglePin / archiveNote produce byte-identical title blobs (i.e. no spurious re-encryption) 5. _pendingChanges.data carries ciphertext + plaintext metadata 6. Wrong-key decrypt fails closed (returns blobs, not garbage) 7. Locked vault refuses new writes with VaultLockedError 8. Locked vault still serves blobs without crashing on read Test bilanz: 4 crypto-related test files, 64/64 passing (31 AES + 12 record-helpers + 12 vault-client + 8 notes E2E + 1 misc). Full mana/web suite: 20 files, 262/262 tests passing. Stand der encryption pipeline: Phase 1 ✅ Foundation (`1ba5948ce`) Phase 2 ✅ Server vault (`e9915428c`) Phase 3 ✅ Wire-up (`354cbcb17`) Phase 4 ✅ Notes pilot (this commit) Phase 5 → roll out to chat, dreams, memoro, contacts, etc. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>		2026-04-07 19:00:11 +02:00
.changeset	feat(versioning): add semantic versioning and changesets to all apps	2026-03-19 16:20:18 +01:00
.claude	feat(manacore/web): wire TagField, FavoriteButton, ColorPicker into module UIs	2026-04-02 17:20:46 +02:00
.github	chore: complete ManaCore → Mana rename (docs, go modules, plists, images)	2026-04-07 12:26:10 +02:00
.husky	fix(devtools): fix pre-commit hook - add eslint-config dep, remove type-check	2026-03-17 13:08:51 +01:00
apps	feat(mana/web): encryption phase 4 — notes pilot live	2026-04-07 19:00:11 +02:00
docker	feat: rename ManaCore to Mana across entire codebase	2026-04-05 20:00:13 +02:00
docs	feat(memoro): voice recording → mana-stt transcription pipeline	2026-04-07 18:48:41 +02:00
games	chore: complete ManaCore → Mana rename (docs, go modules, plists, images)	2026-04-07 12:26:10 +02:00
load-tests	chore: rename mukke to music in infra, scripts, and CI/CD	2026-04-05 16:47:57 +02:00
NewAppIdeas/Roblox Reimagined	chore: complete ManaCore → Mana rename (docs, go modules, plists, images)	2026-04-07 12:26:10 +02:00
packages	feat(cycles): add menstrual cycle tracking module	2026-04-07 14:35:33 +02:00
patches	fix(traces): configure EAS Build for TestFlight and fix bot-services build	2026-03-17 13:16:38 +01:00
scripts	feat(memoro): voice recording → mana-stt transcription pipeline	2026-04-07 18:48:41 +02:00
services	fix(events): production wiring + polling resilience (quick wins)	2026-04-07 18:53:29 +02:00
tests/e2e	first implementation	2025-11-27 17:26:18 +01:00
.dockerignore	make auth working	2025-11-26 01:31:12 +01:00
.editorconfig	feat: add monorepo configuration and shared packages structure	2025-11-22 23:41:52 +01:00
.env.development	feat(memoro): voice recording → mana-stt transcription pipeline	2026-04-07 18:48:41 +02:00
.env.macmini.example	feat: rename ManaCore to Mana across entire codebase	2026-04-05 20:00:13 +02:00
.gitignore	chore: misc fixes, new services, lockfile cleanup	2026-03-28 10:27:35 +01:00
.npmrc	fix(monorepo): add .npmrc with node-linker=hoisted for EAS Build compatibility	2026-03-15 08:50:18 +01:00
.nvmrc	feat: add monorepo configuration and shared packages structure	2025-11-22 23:41:52 +01:00
.prettierignore	chore: complete ManaCore → Mana rename (docs, go modules, plists, images)	2026-04-07 12:26:10 +02:00
.prettierrc.json	fix(cicd): docker paths, formatting config,	2025-11-27 18:33:08 +01:00
CLAUDE.md	chore: complete ManaCore → Mana rename (docs, go modules, plists, images)	2026-04-07 12:26:10 +02:00
cloudflared-config.yml	feat: rename ManaCore to Mana across entire codebase	2026-04-05 20:00:13 +02:00
docker-compose.dev.yml	feat: rename ManaCore to Mana across entire codebase	2026-04-05 20:00:13 +02:00
docker-compose.macmini.yml	fix(events): production wiring + polling resilience (quick wins)	2026-04-07 18:53:29 +02:00
eslint.config.mjs	chore: complete ManaCore → Mana rename (docs, go modules, plists, images)	2026-04-07 12:26:10 +02:00
gift-codes-2026-02-14.txt	✨ feat(gifts): add gift code creation script and initial codes	2026-02-14 11:23:08 +01:00
lint-staged.config.js	chore: archive 17 standalone app servers (replaced by unified API)	2026-04-02 21:37:45 +02:00
mac-mini-setup.sh	feat: rename ManaCore to Mana across entire codebase	2026-04-05 20:00:13 +02:00
package.json	feat(events): add mana-events service + public RSVP flow (Phase 1b)	2026-04-07 14:27:48 +02:00
playwright.config.ts	style: auto-format codebase with Prettier	2025-11-27 18:33:16 +01:00
pnpm-lock.yaml	chore(workspace): unify vitest to ^4.1.2 across all packages	2026-04-07 13:58:29 +02:00
pnpm-workspace.yaml	chore: delete 25 web-archived directories, remove stale stubs, clean workspace config	2026-04-03 13:03:49 +02:00
README.md	chore: complete ManaCore → Mana rename (docs, go modules, plists, images)	2026-04-07 12:26:10 +02:00
test-chat-auth.sh	feat: rename ManaCore to Mana across entire codebase	2026-04-05 20:00:13 +02:00
TROUBLESHOOTING.md	chore: complete ManaCore → Mana rename (docs, go modules, plists, images)	2026-04-07 12:26:10 +02:00
turbo.json	feat: rename ManaCore to Mana across entire codebase	2026-04-05 20:00:13 +02:00
vitest.config.ts	feat: rename ManaCore to Mana across entire codebase	2026-04-05 20:00:13 +02:00

README.md

Mana Monorepo

Monorepo containing all Mana projects — a self-hosted multi-app ecosystem with shared packages and unified tooling.

Projects

Project	Description	Apps
mana	Multi-app ecosystem platform	Expo mobile, SvelteKit web
chat	AI chat application	NestJS backend, Expo mobile, SvelteKit web, Astro landing
todo	Task management	NestJS backend, SvelteKit web, Astro landing
calendar	Calendar & scheduling	NestJS backend, SvelteKit web, Astro landing
clock	Pomodoro & time tracking	NestJS backend, SvelteKit web, Astro landing
contacts	Contact management	NestJS backend, SvelteKit web
picture	AI image generation	NestJS backend, Expo mobile, SvelteKit web, Astro landing
cards	Card/deck management	NestJS backend, Expo mobile, SvelteKit web
zitare	Daily inspiration quotes	NestJS backend, Expo mobile, SvelteKit web, Astro landing
mukke	Music player	NestJS backend, SvelteKit web
planta	Plant care tracker	NestJS backend, SvelteKit web
storage	Cloud storage	NestJS backend, SvelteKit web
questions	Q&A with web search	SvelteKit web
skilltree	Skill tree visualization	NestJS backend, SvelteKit web
nutriphi	Nutrition tracking	NestJS backend, SvelteKit web
citycorners	City guide	NestJS backend, SvelteKit web, Astro landing
presi	Presentation tool	NestJS backend, SvelteKit web
photos	Photo management	NestJS backend, SvelteKit web

Getting Started

Prerequisites

Node.js 20+
pnpm 9.15.0+
Docker (for PostgreSQL, Redis, MinIO)

Installation

pnpm install

Development

# Start infrastructure (PostgreSQL, Redis, MinIO)
pnpm docker:up

# Start any app with auto DB setup
pnpm dev:chat:full
pnpm dev:todo:full
pnpm dev:calendar:full
pnpm dev:contacts:full

# Build & quality
pnpm run build
pnpm run type-check
pnpm run format

See CLAUDE.md for comprehensive development documentation.

Architecture

mana-monorepo/
├── apps/                    # Product applications
├── services/                # Microservices (auth, search, LLM, bots)
├── packages/                # Shared packages
├── docker/                  # Docker configuration
└── scripts/                 # Development & deployment scripts

Tooling

Package Manager: pnpm 9.15.0
Build System: Turborepo
Formatting: Prettier (tabs, single quotes, 100 char width)
Hosting: Mac Mini (self-hosted) via Docker + Cloudflare Tunnel
Analytics: Umami (stats.mana.how)