Inital commit

Author: Fredrick Paulin

.github/workflows/ci.yml

@@ -0,0 +1,30 @@
+name: CI
+
+on:
+  push:
+    branches: [ "main" ]
+  pull_request:
+    branches: [ "main" ]
+
+jobs:
+  test-backend:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - name: Set up Go
+        uses: actions/setup-go@v5
+        with:
+          go-version: '1.21'
+      - name: Backend tests
+        run: make test-backend
+
+  test-frontend:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - name: Set up Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+      - name: Frontend tests
+        run: make test-frontend

.gitignore

@@ -0,0 +1,46 @@
+# Node
+frontend/node_modules/
+frontend/dist/
+frontend/.env
+frontend/.env.*
+
+# Go
+backend/bin/
+backend/*.exe
+backend/*.exe~
+backend/*.out
+backend/*.test
+backend/coverage.out
+backend/.env
+
+# Database and backups
+data/
+backups/
+
+# Docker
+*.log
+*.pid
+*.sock
+.docker/
+
+# System
+.DS_Store
+Thumbs.db
+
+# Editor/IDE
+.vscode/
+.idea/
+*.swp
+*.swo
+
+# Build artifacts
+*.tar
+*.gz
+*.zip
+
+# Misc
+.env
+.env.*
+
+# Ignore local config
+*.local

LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2024
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

Makefile

@@ -0,0 +1,85 @@
+# Makefile for Goose, Chicken, Guinea Fowl Egg Tracker Project
+
+PROJECT_NAME=egg-tracker
+
+# Directories
+BACKEND_DIR=backend
+FRONTEND_DIR=frontend
+DOCKER_DIR=docker
+BACKUP_DIR=backups
+
+# Docker Compose file
+COMPOSE_FILE=docker-compose.yml
+
+# Targets
+
+## Build
+
+build-backend:
+	cd $(BACKEND_DIR) && go build -o app
+
+build-frontend:
+	cd $(FRONTEND_DIR) && npm install && npm run build
+
+## Run Local Dev Servers (without Docker)
+
+run-backend:
+	cd $(BACKEND_DIR) && go run main.go
+
+run-frontend:
+	cd $(FRONTEND_DIR) && npm run dev
+
+## Docker Compose
+
+docker-up:
+	docker-compose -f $(COMPOSE_FILE) up --build
+
+docker-down:
+	docker-compose -f $(COMPOSE_FILE) down
+
+## Database Backup
+
+backup:
+	@echo "Creating backup..."
+	mkdir -p $(BACKUP_DIR)
+	cp $(BACKEND_DIR)/data/*.db $(BACKUP_DIR)/ || true
+	cp $(BACKEND_DIR)/data/*.duckdb $(BACKUP_DIR)/ || true
+	@echo "Backup completed."
+
+## Clean
+
+clean:
+	@echo "Cleaning builds..."
+	rm -rf $(BACKEND_DIR)/app
+	rm -rf $(FRONTEND_DIR)/dist
+	rm -rf $(FRONTEND_DIR)/node_modules
+	rm -f $(FRONTEND_DIR)/.env*
+	@echo "Clean completed."
+
+## Testing
+
+test-backend:
+	cd $(BACKEND_DIR) && go test ./...
+
+# test-frontend will not fail if no test script is present, but will print a warning
+
+test-frontend:
+	cd $(FRONTEND_DIR) && if npm run | grep -q " test"; then npm run test; else echo "No test script found in package.json"; fi
+
+## Help
+
+help:
+	@echo ""
+	@echo "Available commands:"
+	@echo "  make build-backend      Build the Go backend"
+	@echo "  make build-frontend     Build the React frontend"
+	@echo "  make run-backend        Run backend locally"
+	@echo "  make run-frontend       Run frontend locally"
+	@echo "  make docker-up          Start docker-compose services"
+	@echo "  make docker-down        Stop docker-compose services"
+	@echo "  make backup             Backup SQLite and DuckDB databases"
+	@echo "  make clean              Clean build artifacts"
+	@echo "  make test-backend       Run backend Go tests"
+	@echo "  make test-frontend      Run frontend tests"
+	@echo "  make help               Show this help message"
+	@echo ""

README.md

@@ -0,0 +1,91 @@
+# Egg Tracker
+
+A full-stack application for tracking eggs, inventory, and related data. Built with React (frontend), Go (backend), and DuckDB/SQLite for storage. Dockerized for easy development and deployment.
+
+---
+
+## Prerequisites
+- [Docker](https://www.docker.com/get-started)
+- [Docker Compose](https://docs.docker.com/compose/)
+
+---
+
+## Directory Structure
+
+```
+/egg-tracker
+├── backend/         # Go backend source code
+├── frontend/        # React frontend source code
+├── docker/          # Dockerfiles and nginx config
+├── data/            # Database files (persisted)
+├── docker-compose.yml
+├── Makefile
+└── README.md
+```
+
+---
+
+## Setup & Usage
+
+### 1. Clone the repository
+```
+git clone <your-repo-url>
+cd egg-tracker
+```
+
+### 2. Build and run with Docker Compose
+```
+docker-compose up --build
+```
+Or, if you have a Makefile:
+```
+make docker-up
+```
+
+### 3. Access the application
+- Frontend: [http://localhost:3000](http://localhost:3000) or `http://<your-lan-ip>:3000`
+- API: proxied via `/api` from the frontend (no direct access needed)
+
+---
+
+## Development Notes
+
+- **Frontend**: React app, built and served by nginx in the frontend container.
+- **Backend**: Go app, listens on port 8080 inside its container.
+- **nginx**: Proxies `/api` requests from the frontend container to the backend container.
+- **CORS**: In production, all requests go through nginx, so CORS is not an issue. For local development, the backend allows common origins (see `main.go`).
+- **Database**: Data is persisted in the `data/` directory and mounted into the backend container.
+
+---
+
+## API Usage
+- All API requests from the frontend should use relative paths (e.g., `/api/login`).
+- Do not use hardcoded backend URLs in the frontend code.
+
+---
+
+## Production Deployment
+- For HTTPS, use a reverse proxy (nginx, Caddy, Traefik) with SSL certificates in front of the frontend container.
+- Restrict CORS origins in production to your real domain.
+- Set cookies with `Secure` and `SameSite=None` for HTTPS.
+
+---
+
+## Troubleshooting
+- If you get CORS or cookie issues, check your browser's dev tools and backend CORS config.
+- If you change service names or ports, update the nginx config and CORS settings accordingly.
+
+---
+
+## Security Disclaimer
+
+This project is intended for hobby or homebrew use. While basic security measures are in place, it is not recommended for production or public-facing deployments. For personal or small group use, the current login component is sufficient, but do not use as-is for sensitive applications. Always enforce HTTPS and consider additional security best practices if you expand the project.
+
+## Inspiration
+
+This project was inspired by the need to track the egg output of my birds. By recording daily egg counts, I can observe trends over time and gain a better understanding of their laying patterns and overall health. This helps in making informed decisions about their care and management.
+
+---
+
+## License
+MIT

backend/auth/jwt.go

@@ -0,0 +1,86 @@
+package auth
+
+import (
+	"errors"
+	"time"
+
+	"github.com/gin-gonic/gin"
+	"github.com/golang-jwt/jwt/v5"
+)
+
+var (
+	AccessSecret  = []byte("your-access-secret")  // Replace with env/config in production
+	RefreshSecret = []byte("your-refresh-secret") // Replace with env/config in production
+)
+
+func GenerateAccessToken(userID int64) (string, error) {
+	claims := jwt.MapClaims{
+		"user_id": userID,
+		"exp":     time.Now().Add(15 * time.Minute).Unix(),
+	}
+	token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
+	return token.SignedString(AccessSecret)
+}
+
+func GenerateRefreshToken(userID int64) (string, error) {
+	claims := jwt.MapClaims{
+		"user_id": userID,
+		"exp":     time.Now().Add(7 * 24 * time.Hour).Unix(),
+	}
+	token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
+	return token.SignedString(RefreshSecret)
+}
+
+func ParseRefreshToken(tokenStr string) (int64, error) {
+	token, err := jwt.Parse(tokenStr, func(token *jwt.Token) (interface{}, error) {
+		return RefreshSecret, nil
+	})
+	if err != nil || !token.Valid {
+		return 0, errors.New("invalid refresh token")
+	}
+	claims, ok := token.Claims.(jwt.MapClaims)
+	if !ok {
+		return 0, errors.New("invalid claims")
+	}
+	userID, ok := claims["user_id"].(float64)
+	if !ok {
+		return 0, errors.New("invalid user_id")
+	}
+	return int64(userID), nil
+}
+
+func ParseAccessToken(tokenStr string) (int64, error) {
+	token, err := jwt.Parse(tokenStr, func(token *jwt.Token) (interface{}, error) {
+		return AccessSecret, nil
+	})
+	if err != nil || !token.Valid {
+		return 0, errors.New("invalid access token")
+	}
+	claims, ok := token.Claims.(jwt.MapClaims)
+	if !ok {
+		return 0, errors.New("invalid claims")
+	}
+	userID, ok := claims["user_id"].(float64)
+	if !ok {
+		return 0, errors.New("invalid user_id")
+	}
+	return int64(userID), nil
+}
+
+// Gin middleware to protect routes
+// Usage: router.Use(auth.AuthMiddleware())
+func AuthMiddleware() func(c *gin.Context) {
+	return func(c *gin.Context) {
+		tokenStr := c.GetHeader("Authorization")
+		if len(tokenStr) > 7 && tokenStr[:7] == "Bearer " {
+			tokenStr = tokenStr[7:]
+		}
+		userID, err := ParseAccessToken(tokenStr)
+		if err != nil {
+			c.AbortWithStatus(401)
+			return
+		}
+		c.Set("user_id", userID)
+		c.Next()
+	}
+}