goodgo-platform

Author	SHA1	Message	Date
Ho Ngoc Hai	91ef71d5e1	fix(db): add missing indexes, bound unbounded queries, parallelize admin queries - Add 7 missing indexes: User(kycStatus, isActive, createdAt), Listing(createdAt, featuredUntil, expiresAt), Payment(createdAt) - Add take:50 limit to unbounded findMediaByPropertyId and findByPropertyId - Parallelize sequential queries in getUserDetail with Promise.all Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-04-08 13:10:39 +07:00
Ho Ngoc Hai	91b76d567b	fix(api): add JWT scheme to @ApiBearerAuth and fix Prisma 7 extensions config - Add 'JWT' scheme name to @ApiBearerAuth() in payments & subscriptions controllers so Swagger UI correctly links to the JWT security definition - Add postgresqlExtensions preview feature to Prisma schema for v7 compat Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-04-08 13:08:03 +07:00
Ho Ngoc Hai	9583d1cb66	fix(payments): harden payment flow with idempotency keys, amount validation, and magic byte file validation - Add dedicated idempotencyKey column with unique constraint (userId, provider, idempotencyKey) to prevent duplicate payments at DB level - Add @Min(1) @Max(100B) validators on amountVND in CreatePaymentDto to reject invalid amounts at API boundary - Replace read-check-write callback handler with atomic updateIfStatus to eliminate race condition on concurrent callbacks - Add magic byte verification in FileValidationPipe to validate file content matches declared MIME type server-side Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-04-08 06:18:26 +07:00
Ho Ngoc Hai	f55c8a8788	feat(db): add missing FK indexes on Listing, Payment, Subscription - Add @@index([sellerId]) and @@index([propertyId]) to Listing model - Add @@index([transactionId]) to Payment model - Add @@index([planId]) to Subscription model - Prevents full table scans on frequently-queried foreign keys Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-04-08 04:02:13 +07:00
Ho Ngoc Hai	0b29fac35e	feat(notifications): add multi-channel notification module with Email, FCM, templates, and event listeners - Domain: NotificationLog/NotificationPreference entities, repositories, channel value object - Infrastructure: EmailService (nodemailer/SMTP), FcmService (firebase-admin), TemplateService (Handlebars) - Application: SendNotification CQRS command, UserRegistered + AgentVerified event listeners - Presentation: NotificationsController with history, preferences, and templates endpoints - Prisma: NotificationLog and NotificationPreference models with proper indexes - Templates: Vietnamese notification templates for user.registered, agent.verified, listing.approved, inquiry.received, password.reset Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-04-08 01:42:17 +07:00
Ho Ngoc Hai	391c040100	feat(auth): implement Auth module with register, login, JWT, guards, and CQRS - Add RefreshToken and OAuthAccount models to Prisma schema - Implement clean architecture: domain (entities, VOs, events, repo interfaces), infrastructure (Prisma repos, Passport strategies, token service), application (CQRS command/query handlers), presentation (controller, guards, DTOs) - Endpoints: POST /auth/register, /auth/login, /auth/refresh, GET /auth/profile, GET /auth/profile/agent, PATCH /auth/kyc - JWT access + refresh token rotation with family-based revocation - Role-based guards (BUYER, SELLER, AGENT, ADMIN) - 16 unit tests (value objects, entity) + integration test suite - All 80 tests passing, clean TypeScript build Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-04-08 00:24:42 +07:00
Ho Ngoc Hai	e1e5fa6252	feat: scaffold monorepo with Turborepo + NestJS + Next.js - Turborepo monorepo with pnpm workspaces - apps/api: NestJS 11.x with CQRS module - apps/web: Next.js 14 App Router + TailwindCSS - src/modules/shared: base entities, Result pattern, value objects - TypeScript 5.7+ strict mode, shared tsconfig base - Build pipeline: dev, build, lint, test, typecheck Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-04-07 23:52:33 +07:00

7 Commits