PostERG/xamxam
1
0
Fork 0
mirror of https://codeberg.org/PostERG/xamxam.git synced 2026-06-25 16:19:19 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
be50ac5eb09d81caed39734e9ca6bac696dac848
xamxam/TODO.md
Pontoporeia be50ac5eb0 fix(production): fix multiple remote server errors from nginx logs 
- Fix 413 Request Entity Too Large: bump client_max_body_size to 256M,
  PHP post_max_size/upload_max_filesize to 256M, fastcgi timeouts to 300s
- Fix missing v_smtp_active view: add IF NOT EXISTS to all CREATE VIEW
  statements in schema.sql for idempotent migrates
- Fix bars.svg 404: create animated SVG spinner in app/public/assets/img/
- Fix nginx rate limiting: increase admin zone from 60r/m (1 r/s) to
  300r/m (5 r/s) with burst=30 to handle ~11 concurrent HTMX fragment
  GETs on contenus.php page load
- Add deploy-nginx recipe to justfile for uploading nginx config to server
- Database readonly issue mitigated by existing --chown + deploy-server.sh
  permissions fix
- Add comprehensive PHP/JS debugging logs for settings checkboxes:
  per-field raw POST values in error_log, console.log on htmx:beforeSend,
  htmx:sendError, htmx:afterRequest, toast lifecycle
- Fix toast auto-remove script: use getElementById with unique ID instead
  of querySelector which could remove wrong toast on rapid clicks
2026-05-19 00:08:06 +02:00

3.4 KiB
Raw Blame History

TODO

HTMX Toast Feedback for Settings Checkboxes (contenus.php)

  • Add hx-target response divs to the three fieldsets in contenus.php
  • Update settings.php to return HTML toast on HTMX requests

Production Error Fixes (2026-05-11 remote logs)

  • 413 Request Entity Too Large — bumped client_max_body_size to 256M, PHP post/upload to 256M, timeouts to 300s
  • Missing v_smtp_active view on server — made all CREATE VIEW statements idempotent with IF NOT EXISTS in schema.sql
  • bars.svg 404 — created app/public/assets/img/bars.svg (animated SVG spinner)
  • Nginx rate limiting too aggressive — increased admin zone to 300r/m, burst=30 to handle ~11 concurrent HTMX fragment requests on contenus.php page load
  • Database readonly — intermittent permission issue after deploy (added deploy-nginx recipe; permissions should be fixed by --chown + deploy-server.sh)

SQLite Backup & Data Integrity (docs/backup-plan.md)

Phase 1 — WAL Mode

  • WAL mode already active (PRAGMA journal_modewal) — set in Database constructor
  • Verify -wal and -shm sidecar files exist after writes
  • Verify nginx/PHP write access to sidecar files on server
  • Add deploy-verify-permissions recipe that checks ownership, directory perms, file perms, and writability after rsync
  • deploy recipe now uploads and runs deploy-server.sh to fix permissions, then verifies them
  • deploy recipe now runs migrations (scripts/migrate.sh) after ensuring DB exists
  • fix migrate.sh to detect server vs local layout (no app/ subdir on server)
  • regenerate schema.sql from local DB via generate-schema.py (includes v_smtp_active, all 28 migrations)
  • fix generate-schema.py to include v_smtp_active (was explicitly excluded)

Phase 2 — Audit Log

  • admin_audit_log table already exists (migration 009), AdminLogger already writes to it
  • Create the audit_log table for data-level audit (before/after row snapshots)
  • Create Audit.php helper class
  • Instrument all DELETE, UPDATE, INSERT operations on core tables (theses, tags, languages, thesis_files)
  • Verify by triggering a test delete and querying SELECT * FROM audit_log ORDER BY id DESC LIMIT 5

Phase 3 — Soft Deletes

  • Add deleted_at columns to languages, tags, theses
  • Rebuild views v_theses_full and v_theses_public with deleted_at IS NULL filters
  • Update schema.sql for fresh installs
  • Replace all hard DELETEs with soft deletes (DELETEUPDATE ... SET deleted_at = ...)
  • Add deleted_at IS NULL to all SELECT queries touching these tables
  • Add admin "Corbeille" view for soft-deleted theses with Restore and Hard Delete actions
  • Test each htmx-driven element (language search, tag search, repertoire filters) to confirm deleted entries don't appear
  • Admin: add soft-deleted tags/languages view with restore option

Phase 4 — Hourly Snapshots via Cronjob

  • Create scripts/backup-sqlite.sh (hot backup via sqlite3 .backup, gzip, retention pruning)
  • Test locally — backup created, restores correctly
  • Add just backup-snapshot command for local ad-hoc backups
  • Deploy backup script to server (/usr/local/bin/backup-sqlite.sh)
  • Create /var/backups/xamxam/ directory on server
  • Add cron jobs (hourly 30d + daily 90d)
  • Test restore from production backup

Phase 5 — Remote Sync (for later)

  • (Deferred)
Reference in New Issue View Git Blame Copy Permalink