15 Commits

Author	SHA1	Message	Date
soroush.asadi	4f04f6bf75	feat(render+templates): Remotion engine, 16 branded templates (incl. 3D), seconds pricing, coming-soon ... Render engine - Add Remotion (code-based) as a 2nd render engine alongside After Effects. node-agent dispatches on Job.Engine; RunRemotion maps bindings -> --props, renders native then ffmpeg-scales to the quality tier (aspect-preserving). - content.projects.render_engine + render_remotion_comp (migration 32); render-svc claim resolves engine and routes (skips .aep for Remotion). - Admin TemplatesAdmin gains an engine picker + Remotion composition id field. Template pack (services/remotion) - 16 branded, Persian (Vazirmatn), color- and text-editable templates, each in 3 aspects (16:9 / 1:1 / 9:16): LogoMotion, Opener, InstaPromo, YouTubeIntro, Slideshow, HappyBirthday, SalePromo, QuoteCard, EventInvite, Countdown, GlitterReveal (editable logo image), NowruzGreeting (animated characters), and 4 cinematic 3D templates via @remotion/three (Hero3D, Nowruz3D, Birthday3D, Promo3D) with reflections + bloom/DOF/vignette. - scripts/seed_remotion_templates.py seeds containers/projects/scenes/colors. Pricing - Rewrite /pricing to the seconds-based model (charge = length x resolution), data-driven from /v1/plans, Toman, broker checkout. Coming-soon - Persian experimental-build overlay on all pages (launch date + countdown). Fixes - middleware matcher bypasses all static asset paths; catalog mapping passes cover image + preview video so real thumbnails render. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-21 15:52:52 +03:30
soroush.asadi	ec51e87d2d	feat(payment): standalone ZarinPal broker on pay.flatrender.ir ... A generic multi-client payment gateway so FlatRender, meezi.ir and bargevasat.ir can all pay through ZarinPal's single verified callback domain (pay.flatrender.ir). New Go service services/payment (clones the notification skeleton + vendored deps): - migration 31_payment_broker.sql — `payment` schema: client_apps, transactions, webhook_deliveries. - ZarinPal v4 client ported from the proven identity PaymentService (request.json -> StartPay -> verify.json; codes 100/101). - client API: POST /v1/pay/request + /v1/pay/inquiry, authed by X-Api-Key + HMAC body signature; GET /callback/zarinpal (the single verified endpoint) verifies, then 302s the user back to the site's return_url (signed) and fires a signed, retried webhook. - per-client ZarinPal merchant override (default = shared merchant); amount stored canonically in Rial, unit to ZarinPal env-configurable. - admin API /v1/admin/* (FlatRender admin JWT): client-app CRUD + key issue/rotate + transactions list. Deploy wiring: payment-svc in docker-compose.v2.yml (host port 1607), pay.flatrender.ir server block in mirror-nginx conf, ENV_FILE + README updates (cert SAN + manual migration note). Admin UI: src/components/admin/PaymentsAdmin.tsx (client apps with one-time key reveal + rotate, transactions table) + /admin/payments page + nav link + fa/en strings; pay-admin proxy route to payment-svc. Docs/SDK: deploy/PAYMENTS.md (integration contract) + deploy/sdk/flatpay.js (zero-dep Node client + webhook verifier) for meezi/any site. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-15 23:59:54 +03:30
soroush.asadi	8488acb115	feat(snapshots): AE scene-snapshot pipeline + admin trigger (Epic C, C1) ... Per-scene preview thumbnails for templates. Admin clicks "ساخت پیش‌نمایش صحنه‌ها" → one single-frame AE render per scene → content.scenes.snapshot_url → shown as a thumbnail in the admin scene list (and available to the studio). - migration 30_render_snapshot_jobs.sql: render.snapshot_jobs (queued|running| done|error, per scene, image_url). - render-svc: db/snapshotjobs.go (EnqueueSceneSnapshots, List, Claim, SetResult -> writes content.scenes.snapshot_url cross-schema, SetError); handlers/ snapshotjobs.go (admin POST/GET /v1/scene-snapshots/:project_id + node-facing internal claim/result/fail); main.go routes; gateway route. - devworker: RunSnapshots — fulfils snapshot jobs with a generated placeholder PNG (data: URL, scene-key-tinted) so the flow is verifiable without an AE node. Gated by RENDER_DEV_SNAPSHOTS (default off; never hijacks real render jobs). - admin UI: ProjectScenes "generate snapshots" button (enqueue + poll + reload) and a thumbnail (snapshot_url || image) per scene row. Verified e2e via the dev mock: enqueue -> jobs run -> content.scenes.snapshot_url populated -> scenes API returns it -> admin renders the thumbnail. Remaining (C2): node-agent real-AE runner — claim snapshot, aerender -s0 -e0 -> ffmpeg still -> upload to a PERMANENT URL (mirror file-svc, not the time-limited export presign) -> post result. Needs a live AE node to build + verify. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-11 09:54:42 +03:30
soroush.asadi	0a7dd9b84c	feat(nodes): live CPU/RAM/disk monitoring in the node list ... - node-agent: internal/metrics — read CPU% (GetSystemTimes), RAM (GlobalMemoryStatusEx), disk used%/total (GetDiskFreeSpaceEx) via stdlib kernel32 (no external dep; windows build + non-windows stub). Heartbeat now reports cpu_pct/ram_available_mb/disk_used_pct/ disk_total_gb + ae_running. - render-svc: heartbeat persists last_disk_pct + disk_total_gb (migration 29); RenderNode model + node SELECT/scan carry them. - admin: rewrite NodesTable to the real RenderNode shape (fixes a pre-existing items/V2Node mismatch that left the list empty) + a CPU/RAM/disk bars column + stale-heartbeat flag. - assets-bundle ingestion: ProjectMediaBundle (jszip) auto-maps project.zip → project/scene image/demo/colour + music; PatchProject gains image/full_demo/shared_colors_svg. - scan: RGBA (4-number) colours recognised + frshare single-int controls detected. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-04 20:01:18 +03:30
soroush.asadi	6661f53734	fix(scan): Fix-mode scanner + dialog suppression + cancel/timer + importer revive ... - scan.jsx: app.beginSuppressDialogs() + clean quit (no AE hang on font/footage dialogs); FIX-mode branch parses frl_c(x)t/m(y) layer names → scenes by c(x); flexible/mockup keep comp-based walk; FR_SCAN_MODE selects. - render-svc: scan job carries project mode; cancel endpoint + node watchdog that kills AE on cancel; parseObjectURL handles minio:// (bucket in host); scan with no template fails cleanly; status guards so late results can't un-cancel. - content importer: revive soft-deleted scenes instead of duplicate-inserting (fixes scenes_project_id_key unique violation); orphan diff ignores deleted. - admin: scan dialog gets project-type picker + elapsed timer + Cancel button. - node-agent: AE-2026 wiring (host port 5010, host-reachable presign endpoint), FR_SCAN_MODE plumbing. docs/aep-template-convention.md: per-type naming + bundles. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-04 19:06:08 +03:30
soroush.asadi	1ff6e494c0	@ ... feat: AE template scanner + scene editor + AEP bundle pipeline Scene editor (admin): per-project Scenes / Shared Colors / Color Presets manager (ProjectScenes) reachable from each project. AEP bundle pipeline: upload .aep or .zip → stored once per template at templates/{project_id}/(bundle.zip|template.aep); render claim probes and returns is_bundle+md5; node-agent extracts the bundle, locates the .aep (zip-slip guarded), and caches by md5 so repeated renders extract once. AE template scanner ("read scenes/colours/configs from the AEP"): - content-svc importer: POST /v1/projects/{id}/scan/{preview,apply} — review-diff-then-merge into scenes/elements/colours (manual edits kept). - render-svc Go quick-scan: stdlib RIFX parser extracts comp names+durations (no AE) → POST /v1/template-scans/{id}/quick. - render-svc AE scan jobs + node-agent runner: queue → node runs scan.jsx (reverse of legacy JSXGenerator conventions: frfinal/frshare/frl_/frd_) → posts ScanResult back. Migration 26_render_scan_jobs. - admin UI: "اسکن از افترافکت" with quick/full engines + diff-review modal. Verified: importer preview/apply, Go quick-scan end-to-end (synthetic .aep → scene imported), bundle extract unit tests, RIFX parser unit tests. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com> @	2026-06-04 10:39:45 +03:30
soroush.asadi	7f2f65dd8a	feat(render+node-agent+admin): install fonts on all render nodes + verify ... Push a font once → every node installs it → admin sees per-node status. - render-svc: font_requests + node_fonts tables (mig 25); admin GET/POST/DELETE /v1/node-fonts (with per-node status matrix); internal (HMAC) GET pending + POST status for node-agents - node-agent: fontSyncLoop polls pending fonts every 60s, downloads, installs (Windows Fonts dir + registry / macOS / linux fc-cache), reports Installed/Failed - gateway: /v1/node-fonts/* → render - admin /admin/node-fonts: upload a .ttf/.otf → install on all nodes; per-node Installed/Pending/Failed badges + counts + delete Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-03 06:33:48 +03:30
soroush.asadi	1f52f53cf7	feat(render+identity): daily render-limit — consume on submit, refund on admin-stop ... Business rule: each user has a daily render limit. Admin-stop refunds the used charge (not the user's fault); a user's own cancel does not. - identity: ConsumeRenderChargeAsync / RefundRenderChargeAsync on DailyRemainRenderCount with lazy daily reset (mig 24: daily_renders_reset_at). Convention: max=0 ⇒ UNLIMITED, so existing 0/0 users keep rendering until an admin sets a real limit. - identity InternalController (service-token): POST /v1/internal/render-charge/{consume,refund} - render-svc: identityclient + on Create consume (block 429 when limit reached, fail-open on identity outage); on admin Stop refund the job owner; user /cancel unchanged - compose: IDENTITY_URL for render-svc, ServiceToken for identity-svc Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-03 02:18:00 +03:30
soroush.asadi	7fe5f8a563	feat(admin): standalone Projects page + per-project asset manager ... - content-svc: GET /v1/projects (browse/search all projects across containers, paginated, admin) returning template name/slug + AE status; project_assets table (mig 23) + entity; GET/POST/DELETE /v1/projects/{id}/assets - /admin/projects: searchable, paginated list of every renderable project with thumbnail, template, aspect/resolution, AE-file + publish status - ProjectAssets component: list/upload/delete named footage/image/audio/font files per project (reused in the projects page; AE file upload alongside) - nav + fa/en "Projects" label Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-03 00:39:33 +03:30
soroush.asadi	675b60d858	feat(auth+admin): Sign in with Google (OAuth) + Integrations config panel ... Backend (identity-svc): - oauth_config table (mig 22) + OAuthConfig entity - OAuthService: admin config CRUD + Google authorization-code flow (build consent URL, exchange code, fetch userinfo, find/create RegisterMode.Google user, issue session via AuthService.IssueOAuthSessionAsync) - AuthController: GET /v1/auth/google/{start,callback} (public); tokens handed to frontend via URL fragment - AdminController: GET/PUT /v1/admin/oauth/{provider} (admin, secret masked) Frontend: - "ورود با گوگل" button on /auth → identity start endpoint - /auth/callback reads fragment tokens → /api/auth/oauth-session sets httpOnly cookies - /admin/integrations: Google client_id/secret/redirect_uri + enable, with setup guide - nav + fa/en labels Client ID/Secret are configured entirely in the admin panel — no redeploy needed. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-03 00:08:21 +03:30
soroush.asadi	62a5121ffe	feat(identity+admin): CRM analytics + customer notes + user power-actions ... Modeled on the legacy DivineGateWeb admin (CRM + Security/* actions): - identity-svc AdminService + AdminController (admin-gated): - GET /v1/admin/crm/analytics — signups/buyers/conversion/revenue + daily series (from identity.users + identity.payments) - GET/PUT /v1/users/{id}/crm — tags / note / pipeline status (user_crm table, mig 20) - power-actions: POST /v1/users/{id}/{balance,password,charge,moderator,grant-plan} - admin UI: /admin/crm dashboard (funnel cards + daily signup/revenue bars); per-user "مدیریت" modal in Users (balance, render charge, plan days, password, moderator, CRM notes) Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-02 18:59:07 +03:30
soroush.asadi	6dbb14d146	feat(notifications+admin): marketing campaigns ... - campaigns table (migration 19) + CRUD + send endpoint in notification-svc - audience resolution reads cross-schema from identity.users (all / verified / with_plan); send dispatches via the SMS or Email channel and logs deliveries - endpoints: GET/POST /v1/campaigns, POST /v1/campaigns/:id/send, DELETE - gateway route /v1/campaigns/* → notification - /admin/marketing: create campaign (channel, audience, template/subject/body), list with status + sent counts, send, delete Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-02 18:17:19 +03:30
soroush.asadi	507ac7e6a4	feat(notifications+admin): SMS (Kavenegar) + Email (SMTP) channels & templates ... Backend (notification-svc): - channel_config table (per-tenant Kavenegar + SMTP settings) + migration 18 - sender pkg: Kavenegar SMS client + SMTP mailer (STARTTLS / implicit TLS), stdlib only - endpoints: GET/PUT /v1/channels[/:channel], POST /v1/sms/send, POST /v1/email/send (template + {{var}} rendering); deliveries logged - seeded 3 Persian email templates: welcome / account_verification / promotion - gateway routes /v1/{channels,sms,email}/* → notification Admin UI: - /admin/messaging: SMS + Email provider config cards, test-send, email template editor - nav link + fa/en labels Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-02 17:32:54 +03:30
soroush.asadi	3fc7bf2b97	feat: AI SEO generator, full admin panel, i18n sweep, new logo + auth/RTL fixes ... AI SEO content generator - content-svc: per-tenant OpenAI config (ai_settings) + /v1/ai endpoints (settings GET/PUT, seo-post) with SEO-expert prompt → structured article - admin UI to configure token/base-url/model and generate + save as blog - configurable base URL for restricted networks Full data-driven admin panel - generic /api/admin/resource proxy + reusable AdminResource component - categories/tags/fonts/blogs (CRUD), users (list + ban), plans/slides - AI content section; nav + i18n i18n localization sweep - localized 116 user-facing + studio/editor components to next-intl (fa+en) under the auto.* namespace; merge tooling in scripts/merge-i18n.js Branding + assets - Monoline F logo (LogoMark + favicon) - offline SVG placeholder generator (/api/placeholder), dropped picsum.photos Fixes - JWT issuer mismatch on content/studio (flatrender → flatrender-identity) - missing role claim → [Authorize(Roles="Admin")] now works (RBAC) - Secure cookies broke HTTP sessions → gated behind AUTH_COOKIE_SECURE - Radix RTL via DirectionProvider (right-aligned menus in fa) Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-02 09:35:14 +03:30
soroush.asadi	90ac0b81d1	feat: V2 microservices stack — backend services, gateway, JWT auth ... Add full V2 architecture: identity, content, studio (.NET 10) and file, render, notification, gateway (Go) services with vendored deps, plus DB migrations, event/API contracts, and an init-db script. Wire the Next.js frontend to the gateway: server-side JWT auth routes (login/register/refresh/logout/me), gateway fetch helper, and session/ cookie/jwt helpers under src/lib. Containerize the stack via docker-compose.v2.yml and per-service Dockerfiles. Base images resolve through a Nexus mirror (Docker Hub) and MCR directly; npm/NuGet pull from Nexus groups. Self-host fonts via next/font/local to avoid Google Fonts (geo-blocked). Add CI workflow and ignore .env.v2, *.stackdump, and .NET bin/obj. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-29 23:29:31 +03:30