Tiago Yamamoto 32fc42a29c docs: Update all documentation files (API_SECURITY, ROADMAP, TASKS, DEVOPS, DATABASE, API)

- Updated dates to 2024-12-26
- Added new features: Email System, Avatar Upload, Public Job Posting
- Updated security routes and access levels
- Updated infrastructure and secrets documentation
- Marked completed tasks in ROADMAP and TASKS

2025-12-26 12:45:03 -03:00

2.7 KiB

Raw Blame History

📋 GoHorse Jobs - Tarefas

Lista detalhada de tarefas para evitar retrabalho.

Last Updated: 2024-12-26

✅ Recentemente Concluído

2024-12-26

Email System
- Backend: EmailService (LavinMQ producer)
- NestJS: Email consumer + Nodemailer
- Migrations: email_settings, email_templates
Email Templates Admin UI
- Frontend: /dashboard/admin/email-templates
- CRUD: List, Create, Edit, Delete
Avatar Upload
- Backend: StorageService (pre-signed URLs)
- Migration: avatar_url column
- Frontend: profileApi.uploadAvatar
Public Job Posting
- Frontend: /post-job page
- 3-step wizard (Company + Job + Confirm)
Documentation
- BACKEND.md reescrito completo
- BACKOFFICE.md reescrito completo
- API_SECURITY.md atualizado
- ROADMAP.md atualizado

2024-12-25

Profile page fixes (500 error)
Type mismatches resolved
Comprehensive logging added

2024-12-24

Ticket system integration
Settings page (Theme, Logo)
Chat tables (Appwrite)
System settings table

🔥 Sprint Atual

Backend

Video interviews endpoint
AI matching algorithm
Webhook sistema

Frontend

PWA manifest
Service worker
Offline support

Backoffice

Revenue reports
User analytics
Export features

🚧 Não Fazer (Evitar Retrabalho)

⚠️ IMPORTANTE: Estas tarefas NÃO devem ser feitas pois já foram resolvidas.

Tarefa	Motivo
Criar core_companies	REMOVIDO - Usar `companies`
Criar core_users	REMOVIDO - Usar `users`
Email via API direta	REMOVIDO - Usar LavinMQ queue
Avatar upload direto	REMOVIDO - Usar pre-signed URLs
psql para migrations	REMOVIDO - Usar `go run ./cmd/manual_migrate`

📝 Notas de Implementação

IDs do Banco

UUID v7: users, companies, jobs, applications, notifications, tickets
SERIAL: regions, cities, job_posting_prices

Autenticação

Backend: JWT em HttpOnly cookie OU Authorization header
Frontend: Usa cookies automaticamente
Backoffice: Suporta ambos (Bearer e Cookie)

Senhas

BCrypt com 10 rounds
PASSWORD_PEPPER obrigatório em produção
Hash: bcrypt.hash(password + PEPPER, 10)

Uploads

Pre-signed URLs via /api/v1/storage/upload-url
Direct upload to S3/R2
Update profile with key via PATCH

Emails

Go Backend → Publish to LavinMQ (mail_queue)
                    ↓
NestJS → Consume → Fetch template → Render → Send

🔗 Referências

DATABASE.md - Schema do banco
ROADMAP.md - Roadmap geral
API_SECURITY.md - Segurança
DEVOPS.md - Infraestrutura

2.7 KiB Raw Blame History

📋 GoHorse Jobs - Tarefas

✅ Recentemente Concluído

2024-12-26

2024-12-25

2024-12-24

🔥 Sprint Atual

Backend

Frontend

Backoffice

🚧 Não Fazer (Evitar Retrabalho)

📝 Notas de Implementação

IDs do Banco

Autenticação

Senhas

Uploads

Emails

🔗 Referências

2.7 KiB

Raw Blame History