mirror of
https://github.com/AeThex-Corporation/AeThex-OS.git
synced 2026-04-18 06:17:21 +00:00
Improve security and add new admin pages to the Metaverse OS
Add CSRF protection, enforce admin routes, and integrate new admin dashboard pages. Replit-Commit-Author: Agent Replit-Commit-Session-Id: 279f1558-c0e3-40e4-8217-be7e9f4c6eca Replit-Commit-Checkpoint-Type: full_checkpoint Replit-Commit-Event-Id: de7b1f8d-7e8b-448c-877b-b620fd0409eb Replit-Commit-Screenshot-Url: https://storage.googleapis.com/screenshot-production-us-central1/b984cb14-1d19-4944-922b-bc79e821ed35/279f1558-c0e3-40e4-8217-be7e9f4c6eca/vSLCdrn Replit-Helium-Checkpoint-Created: true
This commit is contained in:
sirpiglr
parent
8ee5f71ef4
commit
f99c0d3dd0
1 changed files with 101 additions and 0 deletions
101
replit.md
Normal file
101
replit.md
Normal file
|
|
@ -0,0 +1,101 @@
|
|||
# AeThex Ecosystem
|
||||
|
||||
## Overview
|
||||
|
||||
AeThex is a full-stack web application that serves as an "Operating System for the Metaverse." The platform is built around a "Holy Trinity" architecture concept: **Axiom** (foundational principles), **Codex** (certification/credential system), and **Aegis** (security/protection layer). The system transforms talent into certified "Metaverse Architects" through a structured curriculum and credentialing process.
|
||||
|
||||
The application includes:
|
||||
- Public-facing landing pages explaining the ecosystem
|
||||
- An "AeThex Passport" credential certification system
|
||||
- A simulated "Terminal" interface demonstrating security features
|
||||
- An admin dashboard for managing architects, projects, and credentials
|
||||
- Real-time metrics and threat monitoring displays
|
||||
|
||||
## User Preferences
|
||||
|
||||
Preferred communication style: Simple, everyday language.
|
||||
|
||||
## System Architecture
|
||||
|
||||
### Frontend Architecture
|
||||
- **Framework**: React 18 with TypeScript
|
||||
- **Routing**: Wouter (lightweight React router)
|
||||
- **State Management**: TanStack React Query for server state
|
||||
- **Styling**: Tailwind CSS v4 with custom CSS variables for theming
|
||||
- **UI Components**: shadcn/ui component library (New York style) built on Radix UI primitives
|
||||
- **Animations**: Framer Motion for page transitions and UI effects
|
||||
- **Charts**: Recharts for data visualization
|
||||
- **Fonts**: Custom display fonts (Oxanium, JetBrains Mono, Share Tech Mono) for tech/cyberpunk aesthetic
|
||||
|
||||
### Backend Architecture
|
||||
- **Runtime**: Node.js with Express
|
||||
- **Language**: TypeScript with ESM modules
|
||||
- **Build Tool**: esbuild for server bundling, Vite for client
|
||||
- **Session Management**: express-session with secure cookie configuration
|
||||
- **Password Hashing**: bcrypt for credential security
|
||||
|
||||
### Data Storage
|
||||
- **Primary Database**: Supabase (PostgreSQL-based)
|
||||
- **ORM**: Drizzle ORM with PostgreSQL dialect
|
||||
- **Schema Location**: `shared/schema.ts` contains all table definitions
|
||||
- **Key Tables**:
|
||||
- `users`: Authentication data (id, username, hashed password, admin flag)
|
||||
- `profiles`: Rich user data (bio, skills, XP, level, passport ID, verification status)
|
||||
- `projects`: Project portfolio data
|
||||
|
||||
### Authentication & Authorization
|
||||
- Session-based authentication using express-session
|
||||
- Two-tier permission system:
|
||||
- `requireAuth`: Any authenticated user
|
||||
- `requireAdmin`: Admin users only
|
||||
- Session data includes `userId` and `isAdmin` flags
|
||||
- Secure cookie settings in production (httpOnly, sameSite strict, secure)
|
||||
|
||||
### API Structure
|
||||
- RESTful endpoints under `/api/` prefix
|
||||
- Authentication routes: `/api/auth/login`, `/api/auth/logout`, `/api/auth/session`
|
||||
- Resource routes: `/api/profiles`, `/api/projects`, `/api/metrics`
|
||||
- Admin routes protected by middleware
|
||||
|
||||
### Project Structure
|
||||
```
|
||||
├── client/ # React frontend
|
||||
│ ├── src/
|
||||
│ │ ├── components/ui/ # shadcn components
|
||||
│ │ ├── pages/ # Route components
|
||||
│ │ ├── lib/ # Utilities and auth context
|
||||
│ │ └── hooks/ # Custom React hooks
|
||||
├── server/ # Express backend
|
||||
│ ├── routes.ts # API route definitions
|
||||
│ ├── storage.ts # Database abstraction layer
|
||||
│ └── supabase.ts # Supabase client setup
|
||||
├── shared/ # Shared code between client/server
|
||||
│ └── schema.ts # Drizzle schema + Zod validation
|
||||
└── attached_assets/ # Static assets and brand documentation
|
||||
```
|
||||
|
||||
## External Dependencies
|
||||
|
||||
### Database
|
||||
- **Supabase**: Cloud PostgreSQL database
|
||||
- Requires `SUPABASE_URL` and `SUPABASE_ANON_KEY` environment variables
|
||||
- Used for all persistent data storage
|
||||
|
||||
### Environment Variables Required
|
||||
- `DATABASE_URL`: PostgreSQL connection string (for Drizzle migrations)
|
||||
- `SUPABASE_URL`: Supabase project URL
|
||||
- `SUPABASE_ANON_KEY`: Supabase anonymous/public key
|
||||
- `SESSION_SECRET`: Required in production for session security
|
||||
|
||||
### Key npm Dependencies
|
||||
- `@supabase/supabase-js`: Supabase client SDK
|
||||
- `drizzle-orm` + `drizzle-kit`: Database ORM and migrations
|
||||
- `@tanstack/react-query`: Server state management
|
||||
- `framer-motion`: Animation library
|
||||
- `recharts`: Charting library
|
||||
- Full shadcn/ui component set via Radix UI primitives
|
||||
|
||||
### Development Tools
|
||||
- Vite development server with HMR
|
||||
- Replit-specific plugins for development (cartographer, dev-banner, error overlay)
|
||||
- TypeScript with strict mode enabled
|
||||
Loading…
Reference in a new issue