ronnibaslund/dezky
1
0
Fork 0
Code Issues 1 Pull Requests Actions Packages Projects Releases Wiki Activity

feat: portal redesign, pricing catalog, partner-staff invites

Browse Source 
- portal: new admin/ and partner/ surfaces with full component library
  (AppLauncher, Avatar, Badge, Card, Modal, Tabs, etc.), composables,
  layouts, partner-routing middleware, and supporting server APIs
- pricing: Price schema/module with operator CRUD, pricing.vue catalog UI,
  Subscription extended with cycle/currency/perSeatAmount/seats snapshots
  for stable MRR aggregation
- partner staff: User.partnerId, invite-partner-user DTO and flow,
  /partners/:slug/users endpoints, InvitePartnerUserModal, shared
  dezky-partner-staff Authentik group
- /me: partner-aware endpoint returning user + partner context so portal
  can route between end-user and partner-admin surfaces
- tenant: seats field for portfolio displays and future MRR calculations
- operator: pricing page, signed-out page, useMe/useToast composables,
  ToastStack
This commit is contained in:
Ronni Baslund
2026-05-28 20:00:33 +02:00
parent be430179d9
commit 0bd4e5498e
144 changed files with 22110 additions and 209 deletions
Download Patch File Download Diff File Expand all files Collapse all files
infrastructure/docker-compose/configs/authentik/rebrand-web.sh
Executable
+36
View File
@@ -0,0 +1,36 @@
#!/bin/sh
# Patch Authentik's web bundle on container start to swap "authentik" branding
# for "Dezky" in places that the Brand custom_css can't reach.
#
# Why this is a startup script rather than baked-in volume mounts:
# - Web bundle filenames are version-stamped (FlowInterface-2025.10.4.js),
# so pinned mounts break the first time you upgrade Authentik.
# - sed-on-start works against whatever bundle the new image ships, as
# long as the source strings haven't changed.
#
# Runs as root (compose sets user: "0") so it can write to /web/dist, then
# drops privileges back to the image's default authentik user (uid 1000) via
# setpriv before exec'ing dumb-init. The Authentik server itself never runs
# with elevated privileges.
#
# If a future Authentik release renames or rewords "Powered by authentik",
# this script will silently no-op and the original branding returns. Re-check
# after each upgrade.
set -eu
# All bundles that contain the source string. Glob is intentional — locale
# chunks are content-hashed and change on every Authentik release.
PATCH_DIRS="/web/dist/flow /web/dist/chunks /web/dist/src/locales/chunks"
for DIR in $PATCH_DIRS; do
[ -d "$DIR" ] || continue
for F in "$DIR"/*.js; do
[ -f "$F" ] || continue
sed -i 's/Powered by authentik/Powered by Dezky/g' "$F"
done
done
# Drop back to the image's default user (authentik = uid 1000) before
# exec'ing Authentik's normal entrypoint chain.
exec setpriv --reuid=1000 --regid=1000 --init-groups dumb-init -- ak "$@"