711480f8f6
This pull request introduces the dedicated containerized infrastructure and configuration for deploying NexusReader's beta version in the Test environment. ### Summary of Changes 1. **Docker Infrastructure & Secrets**: - **`docker-compose.test.yml`**: Configured dedicated database and auxiliary services (PostgreSQL 17, Qdrant, Neo4j) on isolated, non-standard ports to ensure zero conflict with the existing server configurations. - **`.env.test.template`**: Provided an environment variable template showing required setups, including mandatory database passwords, API keys, and admin custom passwords. - **`.gitignore`**: Excluded local `.env` files to prevent accidental commits of production or staging secrets. 2. **Database Hardening**: - Configured Neo4j with basic authentication (`IDriver` instantiation uses basic auth when credentials are provided in configuration). - Configured PostgreSQL to use mandatory authentication. - Configured the admin seeder (`DbInitializer.cs`) to dynamically use `NEXUS_ADMIN_PASSWORD` from environment variables, falling back to a default password in local Development only. 3. **Feature-Flagged Restrictions**: - **`appsettings.Test.json`**: Implemented `Features:AllowRegistration` and `Features:AllowPasswordReset` flags set to `false`. - **Middleware Enforcement (`Program.cs`)**: Intercepts requests to `/identity/register` and `/identity/forgotPassword` (and their MVC/form variations) and rejects them with a `403 Forbidden` response in restricted environments. - **OAuth Provisioning Guard (`Program.cs`)**: Blocks new account provisioning via Google OAuth callback by checking the `Features:AllowRegistration` configuration, redirecting users to the login page with a descriptive error. - **UI Protection (`Login.razor`, `Register.razor`)**: Conditionally hides registration/password reset links and intercepts manual navigation attempts to `/account/register` by redirecting to login with a warning. --------- Co-authored-by: Marek Jasiński <jasins.marek@gmail.com> Reviewed-on: #56 Co-authored-by: Antigravity <antigravity@google.com> Co-committed-by: Antigravity <antigravity@google.com>
63 lines
1.9 KiB
JavaScript
63 lines
1.9 KiB
JavaScript
export function initObserver(dotNetHelper, containerSelector, itemSelector) {
|
|
const options = {
|
|
root: null,
|
|
rootMargin: '0px',
|
|
threshold: 0.6 // 60% of the block must be visible
|
|
};
|
|
|
|
const observer = new IntersectionObserver((entries) => {
|
|
entries.forEach(entry => {
|
|
if (entry.isIntersecting) {
|
|
const id = entry.target.id;
|
|
const content = entry.target.innerText;
|
|
dotNetHelper.invokeMethodAsync('HandleBlockReached', id, content);
|
|
}
|
|
});
|
|
}, options);
|
|
|
|
const items = document.querySelectorAll(itemSelector);
|
|
items.forEach(item => observer.observe(item));
|
|
|
|
return observer;
|
|
}
|
|
|
|
export function initScrollListener(dotNetHelper, scrollContainerSelector) {
|
|
const container = document.querySelector(scrollContainerSelector);
|
|
if (!container) return null;
|
|
|
|
let isThrottled = false;
|
|
|
|
const onScroll = () => {
|
|
if (isThrottled) return;
|
|
isThrottled = true;
|
|
|
|
requestAnimationFrame(() => {
|
|
const scrollTop = container.scrollTop;
|
|
const scrollHeight = container.scrollHeight;
|
|
const clientHeight = container.clientHeight;
|
|
|
|
let percentage = 0;
|
|
if (scrollHeight > clientHeight) {
|
|
percentage = Math.round((scrollTop / (scrollHeight - clientHeight)) * 100);
|
|
}
|
|
|
|
// Ensure bounds
|
|
percentage = Math.max(0, Math.min(100, percentage));
|
|
|
|
dotNetHelper.invokeMethodAsync('HandleScrollPercentChanged', percentage);
|
|
isThrottled = false;
|
|
});
|
|
};
|
|
|
|
container.addEventListener('scroll', onScroll, { passive: true });
|
|
|
|
// Initial calculation after a brief layout delay
|
|
setTimeout(onScroll, 100);
|
|
|
|
return {
|
|
dispose: () => {
|
|
container.removeEventListener('scroll', onScroll);
|
|
}
|
|
};
|
|
}
|