ryan/Project-Manager
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
9cc677ce688359d7a78b97eeeb119ae85f324282
Project-Manager/README.md
Ryan Lancaster 4a7b3061ed Harden MVP runtime and fix packaged desktop white screen
2026-03-18 13:05:14 -04:00

241 lines
6.0 KiB
Markdown
Raw Blame History

This file contains ambiguous Unicode characters
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
Project Hub — Desktop app + backend
This repository contains a React+Vite frontend packaged as an Electron desktop app, and a small Node/Express backend using lowdb for JSON persistence. Development builds and packaged macOS installer artifacts are stored in `releases/`.
Quick links
- Releases: `releases/` (DMG, ZIP, packaged .app)
- Frontend: `frontend/`
- Backend: `backend/`
Dedicated ports list (single source of truth)
This project keeps all port assignments in the root `.env` file so services do not get mixed with other projects:
- `PORT_BACKEND` (API)
- `PORT_FRONTEND_DEV` (Vite dev)
- `PORT_FRONTEND_DEV_FALLBACK` (optional fallback)
- `APP_URL`, `API_BASE`, `VITE_API_URL` (URL defaults tied to those ports)
View the current dedicated map and whether each port is already in use:
```bash
npm run ports:list
```
Canonical MVP startup (from project root)
1) Install dependencies
```bash
npm install
npm install --prefix backend
npm install --prefix frontend
```
2) Start backend API
```bash
docker compose up -d
curl http://localhost:4000/health
```
3) Run web app (browser)
```bash
npm run dev --prefix frontend
```
Or run backend + web frontend together from the root:
```bash
npm run dev:web
```
Stop backend + web frontend from the root:
```bash
npm run dev:web:stop
```
4) Run desktop app (Electron + Vite)
```bash
npm run dev
```
For production-style desktop launch from built files:
```bash
npm run build:renderer
npm run start
```
5) Build desktop app
```bash
npm run build:desktop
```
Development
1) Backend (fast, using Docker):
```bash
# from project root
cd backend
# install deps (if needed)
npm install
# build image and run (example)
docker build -t project-manager-backend:latest .
docker run -d --name project-manager-api -p 4000:4000 \
-v project_manager_data:/app/data \
-e NODE_ENV=production -e PORT=4000 -e HOST=0.0.0.0 \
-e CORS_ORIGIN="http://localhost:5173" -e WRITE_API_KEY="dev-key" \
--restart unless-stopped project-manager-backend:latest
```
Or use `docker compose up -d` if you prefer Compose.
Endpoints
- Health: `GET /health`
- API root: `GET /api/projects`, `GET /api/members`, etc.
Config / env vars
- `PORT` (default 4000)
- `HOST` (default 0.0.0.0)
- `DB_FILE` (optional path to db file)
- `CORS_ORIGIN` (comma-separated allowed origins)
- `WRITE_API_KEY` (if set, write operations require `x-api-key` header)
2) Frontend (dev)
```bash
cd frontend
npm install
npm run electron:dev # starts Vite and launches Electron
```
Runtime API URL
The app now supports runtime API endpoint configuration:
- In the desktop UI, click **Server** in the top-right and set the API base URL (example: `http://localhost:4000/api`).
- The value is persisted in Electron app storage and used on next requests without rebuilding.
- If no runtime value is set, the app falls back to `VITE_API_URL`, then `http://localhost:4000/api`.
Write authentication (`WRITE_API_KEY`)
- If backend sets `WRITE_API_KEY`, all POST/PUT/DELETE endpoints require `x-api-key`.
- Frontend and Electron now propagate this key automatically when provided via:
- `WRITE_API_KEY` (preferred for Electron runtime)
- `VITE_WRITE_API_KEY` (frontend build-time fallback)
- GET endpoints remain readable without API key unless you add additional auth middleware.
Build & releases
- Build renderer and package Electron (mac example):
```bash
cd frontend
npm run electron:build
```
- Built artifacts are placed into `frontend/dist/` and this projects `releases/` directory after packaging.
- Verified release build (runs persistence check before packaging):
```bash
npm run build:verified
```
- Verified release build with backend restart check:
```bash
npm run build:verified:restart
```
- One-command verified release pipeline (persistence test + frontend build + dist sync + Electron packaging):
```bash
npm run release:verified
```
- Same as above, but also verifies persistence across backend restart:
```bash
npm run release:verified:restart
```
Unsigned macOS Gatekeeper note
These builds are currently unsigned. macOS Gatekeeper may prevent opening the app. Users can bypass with one of the following (instruct users to accept the risk):
```bash
# Open by right-clicking the app and choosing "Open", or run:
xattr -r -d com.apple.quarantine "/Applications/Project Hub.app"
# or for a packaged app in releases:
xattr -r -d com.apple.quarantine "releases/Project Hub.app"
```
CI / Distribution suggestions
- Add a GitHub Actions workflow to build and upload unsigned artifacts to GitHub Releases (I can add this).
- To avoid Gatekeeper prompts for wide distribution, sign and notarize the app (requires Apple Developer account and credentials).
Security & production notes
- `lowdb` (JSON file) is fine short-term for small teams. For production/many users, migrate to a proper DB (Postgres, managed DB).
- Use `WRITE_API_KEY` or user accounts to protect write operations; always run behind TLS (reverse proxy like nginx/Traefik) for public hosting.
Need help?
I can add a GitHub Actions workflow to build/upload unsigned releases, or add signing/notarization steps if you acquire an Apple Developer account. Tell me which and Ill scaffold it.
Persistence self-test
Run this before release to verify that created records are persisted and can be read back:
```bash
npm run test:persistence
```
If your backend is running under Docker Compose and you also want to verify persistence across a backend restart:
```bash
npm run test:persistence:restart
```
Optional env vars:
- `API_BASE` (default `http://localhost:4000/api`)
- `WRITE_API_KEY` (needed if backend write endpoints are protected)
Wiring smoke test
Run a focused integration check for task/member/invite route wiring:
```bash
npm run test:wiring
```
Optional env vars for this test:
- `API_BASE` (default `http://localhost:4000/api`)
- `WRITE_API_KEY` (required if write endpoints are protected)
MVP readiness check
Run one command to verify backend health, route wiring, and persistence:
```bash
npm run test:mvp
```
To also verify persistence across a backend restart:
```bash
npm run test:mvp:restart
```
Reference in New Issue View Git Blame Copy Permalink