ashwin/nxtgauge-backend-rust
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
No description
303 commits 3 branches 0 tags 1.3 MiB
Find a file
Ashwin Kumar Sivakumar c262e89e8f feat(gateway): add security headers middleware 
Add security headers to all gateway responses:
- X-Frame-Options: DENY
- X-Content-Type-Options: nosniff
- Strict-Transport-Security: max-age=31536000; includeSubDomains
- Referrer-Policy: strict-origin-when-cross-origin
- Content-Security-Policy: default-src 'self'

Uses tower_http::set_header::SetResponseHeaderLayer applied globally.
Closes CRITICAL SECURITY GAP #2 from security review.
2026-05-31 22:55:00 +05:30
.cargo fix: update jsonwebtoken 9.3→10.3, add audit.toml to ignore local crate false positives, fix cache/ollama.rs compile errors 2026-05-31 18:25:38 +05:30
.gitea fix(ci): always update gitops and ensure high-performance-latest tag push 2026-05-05 21:09:43 +02:00
.github/workflows fix(ci): force http1.1 for gitea git transport 2026-04-30 22:32:38 +02:00
.sqlx chore: checkpoint workspace updates 2026-04-26 23:58:43 +02:00
apps feat(gateway): add security headers middleware 2026-05-31 22:55:00 +05:30
crates security: remove hardcoded fallback credentials and fix aws feature flag 2026-05-31 22:53:29 +05:30
docs feat: Add database redesign documentation and Phase 1-2 migrations 2026-04-12 23:21:11 +02:00
load-tests feat(emails): complete email system with 35 branded templates and full wiring 2026-04-10 04:49:39 +02:00
scripts fix: update jsonwebtoken 9.3→10.3, add audit.toml to ignore local crate false positives, fix cache/ollama.rs compile errors 2026-05-31 18:25:38 +05:30
tests fix: resolve all compilation warnings and errors across services 2026-04-07 12:52:55 +02:00
.env.example feat(emails): complete email system with 35 branded templates and full wiring 2026-04-10 04:49:39 +02:00
.gitignore fix: track Cargo.lock (required for reproducible Docker builds) 2026-04-09 02:09:11 +02:00
cargo-deny.toml feat: extend admin/user flows with settings, verification, and approval updates 2026-04-08 22:40:54 +02:00
Cargo.lock security: remove hardcoded fallback credentials and fix aws feature flag 2026-05-31 22:53:29 +05:30
Cargo.toml feat: Add Ask Ash AI credit system endpoints 2026-05-29 20:53:51 +05:30
companies.pid feat: update DB schema - split users.first_name, users.last_name, roles split 2026-04-15 06:23:27 +02:00
customers.pid feat: update DB schema - split users.first_name, users.last_name, roles split 2026-04-15 06:23:27 +02:00
DEPLOYMENT_OPTIMIZATION.md feat(deployment): add optimized build system for faster deployments 2026-04-10 05:14:27 +02:00
docker-compose.yml feat: add separate jobs and leads services 2026-04-12 22:03:06 +02:00
Dockerfile.base perf(build): ultra-fast builds with caching and optimized Dockerfiles 2026-04-10 05:43:34 +02:00
Dockerfile.fast perf(build): ultra-fast builds with caching and optimized Dockerfiles 2026-04-10 05:43:34 +02:00
Dockerfile.from-binary feat(woodpecker): use internal registry docker-registry.registry.svc.cluster.local:5000 2026-04-10 17:39:26 +02:00
Dockerfile.migrate ci: use rustup toolchain for musl builds 2026-04-17 03:10:14 +02:00
Dockerfile.optimized feat(deployment): add optimized build system for faster deployments 2026-04-10 05:14:27 +02:00
Dockerfile.simple ci: use rustup toolchain for musl builds 2026-04-17 03:10:14 +02:00
Dockerfile.superfast perf(build): ultra-fast builds with caching and optimized Dockerfiles 2026-04-10 05:43:34 +02:00
Dockerfile.template refactor: use Alpine Linux with static musl binaries for all services 2026-04-09 11:51:57 +02:00
Dockerfile.ultrafast fix(woodpecker): use simple Dockerfile and reduce build complexity 2026-04-10 12:56:28 +02:00
gateway.pid feat: update DB schema - split users.first_name, users.last_name, roles split 2026-04-15 06:23:27 +02:00
job_seekers.pid feat: update DB schema - split users.first_name, users.last_name, roles split 2026-04-15 06:23:27 +02:00
k8s-migration-job.yaml fix(auth): accept both full_name and first_name+last_name for backward compatibility 2026-04-13 19:59:48 +02:00
README.md fix: update jsonwebtoken 9.3→10.3, add audit.toml to ignore local crate false positives, fix cache/ollama.rs compile errors 2026-05-31 18:25:38 +05:30
start-services.pid chore: checkpoint workspace updates 2026-04-26 23:58:43 +02:00
start-services.sh Update backend services: catering_services, companies, developers, gateway, job_seekers, photographers, social_media_managers, tutors, ugc_content_creators, users; update cache (otp, token), contracts (profession_shared, profession_state), db (job_seeker, verification), email; add revision-requested email template; update init-db.sql and start-services.sh 2026-05-08 15:34:29 +02:00
TESTING_STRATEGY.md fix: resolve all compilation warnings and errors across services 2026-04-07 12:52:55 +02:00
users.pid feat: update DB schema - split users.first_name, users.last_name, roles split 2026-04-15 06:23:27 +02:00
wir.md docs: add work implementation roadmap (wir.md) 2026-04-06 22:26:45 +02:00

README.md

NXTGAUGE Backend Rust

Rust migration target for nxtgauge-nov-2025-backend, preserving the same microservices and request flow.

Target Service Topology

  • gateway (HTTP API)
  • users (identity, runtime roles, onboarding, approvals)
  • companies
  • customers
  • professionals
  • jobseekers

Migration Policy

  • Keep contracts stable (REST + proto semantics).
  • Keep runtime-config and onboarding schema behavior unchanged during parity phases.
  • Replace service implementations one by one.

See docs/MIGRATION_MASTER_PLAN.md for full staged plan.

CI (Woodpecker)

Required secrets:

  • REGISTRY_USERNAME
  • REGISTRY_PASSWORD

See .gitea/workflows/README.md for details.