eric/forward-assist
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Phase 1: Forward Assist initial build

Browse Source 
Multi-tenant AI help desk SaaS for the firearms industry.
Full monorepo: API (Express/Prisma), Worker (BullMQ), Frontend (React/Vite/Tailwind).
PostgreSQL 16 + pgvector, Redis 7, JWT auth, RLS tenant isolation.
Dark Armory theme with tactical branding throughout.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
Eric Jungbauer
2026-03-20 01:45:13 +00:00
parent 0bae347e65
commit 05aad75272
56 changed files with 11815 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
packages/api/src/services/audit.ts
+32
View File
@@ -0,0 +1,32 @@
import { prisma } from './prisma';
import { Request } from 'express';
interface AuditEntry {
tenantId: string;
userId?: string;
action: string;
entity: string;
entityId?: string;
details?: Record<string, unknown>;
req?: Request;
}
export async function logAudit(entry: AuditEntry): Promise<void> {
try {
await prisma.auditLog.create({
data: {
tenantId: entry.tenantId,
userId: entry.userId,
action: entry.action,
entity: entry.entity,
entityId: entry.entityId,
details: entry.details || {},
ipAddress: entry.req?.ip || entry.req?.socket.remoteAddress,
userAgent: entry.req?.headers['user-agent'],
},
});
} catch (error) {
// Audit logging should never crash the app
console.error('[Audit] Failed to log:', error);
}
}
packages/api/src/services/jwt.ts
+36
View File
@@ -0,0 +1,36 @@
import jwt from 'jsonwebtoken';
const ACCESS_SECRET = process.env.JWT_ACCESS_SECRET || 'dev-access-secret-minimum-32-characters';
const REFRESH_SECRET = process.env.JWT_REFRESH_SECRET || 'dev-refresh-secret-minimum-32-characters';
const ACCESS_EXPIRY = process.env.JWT_ACCESS_EXPIRY || '15m';
const REFRESH_EXPIRY = process.env.JWT_REFRESH_EXPIRY || '7d';
export interface TokenPayload {
userId: string;
tenantId: string;
email: string;
role: string;
}
export function signAccessToken(payload: TokenPayload): string {
return jwt.sign(payload, ACCESS_SECRET, { expiresIn: ACCESS_EXPIRY });
}
export function signRefreshToken(payload: TokenPayload): string {
return jwt.sign(payload, REFRESH_SECRET, { expiresIn: REFRESH_EXPIRY });
}
export function verifyAccessToken(token: string): TokenPayload {
return jwt.verify(token, ACCESS_SECRET) as TokenPayload;
}
export function verifyRefreshToken(token: string): TokenPayload {
return jwt.verify(token, REFRESH_SECRET) as TokenPayload;
}
export function generateTokenPair(payload: TokenPayload) {
return {
accessToken: signAccessToken(payload),
refreshToken: signRefreshToken(payload),
};
}
packages/api/src/services/prisma.ts
+13
View File
@@ -0,0 +1,13 @@
import { PrismaClient } from '@prisma/client';
const globalForPrisma = globalThis as unknown as {
prisma: PrismaClient | undefined;
};
export const prisma = globalForPrisma.prisma ?? new PrismaClient({
log: process.env.NODE_ENV === 'development' ? ['warn', 'error'] : ['error'],
});
if (process.env.NODE_ENV !== 'production') {
globalForPrisma.prisma = prisma;
}