feat: AI SEO generator, full admin panel, i18n sweep, new logo + auth/RTL fixes

AI SEO content generator - content-svc: per-tenant OpenAI config (ai_settings) + /v1/ai endpoints (settings GET/PUT, seo-post) with SEO-expert prompt → structured article - admin UI to configure token/base-url/model and generate + save as blog - configurable base URL for restricted networks Full data-driven admin panel - generic /api/admin/resource proxy + reusable AdminResource component - categories/tags/fonts/blogs (CRUD), users (list + ban), plans/slides - AI content section; nav + i18n i18n localization sweep - localized 116 user-facing + studio/editor components to next-intl (fa+en) under the auto.* namespace; merge tooling in scripts/merge-i18n.js Branding + assets - Monoline F logo (LogoMark + favicon) - offline SVG placeholder generator (/api/placeholder), dropped picsum.photos Fixes - JWT issuer mismatch on content/studio (flatrender → flatrender-identity) - missing role claim → [Authorize(Roles="Admin")] now works (RBAC) - Secure cookies broke HTTP sessions → gated behind AUTH_COOKIE_SECURE - Radix RTL via DirectionProvider (right-aligned menus in fa) Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
2026-06-02 09:35:14 +03:30
parent bcc69f0a2e
commit 3fc7bf2b97
160 changed files with 4397 additions and 767 deletions
@@ -6,6 +6,9 @@ API_GATEWAY_URL=http://localhost:8088
 NEXT_PUBLIC_API_URL=http://localhost:8088/v1
 # Tenant the public site authenticates against (Identity service).
 NEXT_PUBLIC_TENANT_SLUG=flatrender
+# Mark auth cookies Secure (HTTPS only). Leave false for plain-HTTP/local; set true
+# when served over TLS, or the browser will drop the session cookies.
+AUTH_COOKIE_SECURE=false

 # FlatRender Admin API (LEGACY V1 — being replaced by the gateway above)
 # Run the admin-api service at D:\Projects\flatrender-admin\admin-api