Files

Build and Deploy / build-and-deploy (push) Successful in 1m43s

Details

Phase 5 cleanup: remove legacy HTML components, fix nav-tree fragment

- Remove old raw! layout components (~app-head, ~app-layout, ~oob-response,
  ~header-row, ~menu-row, ~oob-header, ~header-child) from layout.sexp
- Convert nav-tree fragment from Jinja HTML to sexp source, fixing the
  "Unexpected character: ." parse error caused by HTML leaking into sexp
- Add _as_sexp() helper to safely coerce HTML fragments to ~rich-text
- Fix federation/sexp/search.sexpr extra closing paren
- Remove dead _html() wrappers from blog and account sexp_components
- Remove stale render import from cart sexp_components
- Add dev_watcher.py to auto-reload on .sexp/.sexpr/.js/.css changes
- Add test_parse_all.py to parse-check all 59 sexpr/sexp files
- Fix test assertions for sx- attribute prefix (was hx-)
- Add sexp.js version logging for cache debugging

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-03-01 10:12:03 +00:00

alembic

Security audit: fix IDOR, add rate limiting, HMAC auth, token hashing, XSS sanitization

2026-02-26 13:30:27 +00:00

Send all responses as sexp wire format with client-side rendering

2026-03-01 09:45:07 +00:00

models

Monorepo: consolidate 7 repos into one

2026-02-24 19:44:17 +00:00

services

Decouple cross-domain DB queries for per-app database split

2026-02-25 11:32:14 +00:00

sexp

Phase 5 cleanup: remove legacy HTML components, fix nav-tree fragment

2026-03-01 10:12:03 +00:00

templates

Send all responses as sexp wire format with client-side rendering

2026-03-01 09:45:07 +00:00

tests

Test dashboard: full menu system, all-service tests, filtering

2026-02-28 22:54:25 +00:00

__init__.py

Monorepo: consolidate 7 repos into one

2026-02-24 19:44:17 +00:00

alembic.ini

Decouple per-service Alembic migrations and fix cross-DB queries

2026-02-26 12:07:24 +00:00

app.py

Send all responses as sexp wire format with client-side rendering

2026-03-01 09:45:07 +00:00

Dockerfile

Split cart into 4 microservices: relations, likes, orders, page-config→blog

2026-02-27 09:03:33 +00:00

entrypoint.sh

Phase 5 cleanup: remove legacy HTML components, fix nav-tree fragment

2026-03-01 10:12:03 +00:00

path_setup.py

Monorepo: consolidate 7 repos into one

2026-02-24 19:44:17 +00:00

README.md

Update app READMEs for monorepo

2026-02-24 20:13:00 +00:00

README.md

Account App

User dashboard for the Rose Ash cooperative. Provides account management, newsletter preferences, and widget pages for tickets and bookings.

Structure

app.py                  # Application factory (create_base_app + blueprints)
path_setup.py           # Adds project root + app dir to sys.path
entrypoint.sh           # Container entrypoint (Redis flush, start)
bp/
  account/              #   Dashboard, newsletters, widget pages (tickets, bookings)
  auth/                 #   OAuth client routes + HTTP token exchange for non-coop clients
  fragments/            #   auth-menu fragment (sign-in button / user menu)
models/                 # Re-export stubs pointing to shared/models/
services/               # register_domain_services() — wires all domains
templates/              # Account-specific templates (override shared/)

Account serves the auth-menu fragment consumed by all other apps' headers. It renders either a sign-in button (anonymous) or the user's email with a dropdown (authenticated), for both desktop and mobile layouts.

OAuth token exchange

POST /auth/oauth/token provides HTTP-based token exchange for non-coop OAuth clients (e.g., Artdag).

Cross-domain communication

services.blog.* — post queries for page context
services.calendar.* — calendar/entry queries for bookings panel
services.cart.* — cart summary + orders for tickets panel

Fragments served

auth-menu — sign-in button or user email menu (desktop + mobile)

README.md

Account App

Structure

Auth menu

OAuth token exchange

Cross-domain communication

Fragments served