Compare commits
2 Commits
c4e62f0f50
...
1451e362ff
| Author | SHA1 | Date | |
|---|---|---|---|
| 1451e362ff | |||
| 8188d17c87 |
+9
-1
@@ -36,8 +36,16 @@ DATABASE_URL=mysql://${DB_USER}:${DB_PASSWORD}@${DB_HOST}:${DB_PORT}/${DB_NAME}
|
|||||||
|
|
||||||
# ============== SECURITY ==============
|
# ============== SECURITY ==============
|
||||||
# JWT-Secret: min. 32 Zeichen. Generieren: openssl rand -hex 64
|
# JWT-Secret: min. 32 Zeichen. Generieren: openssl rand -hex 64
|
||||||
|
# Wird sowohl für Access- als auch Refresh-Token verwendet.
|
||||||
JWT_SECRET=change-this-to-a-very-long-random-secret-please-rotate-before-production
|
JWT_SECRET=change-this-to-a-very-long-random-secret-please-rotate-before-production
|
||||||
JWT_EXPIRES_IN=7d
|
|
||||||
|
# Access-/Refresh-Token-Lifetimes
|
||||||
|
# - Access-Token: kurzlebig, lebt nur im Browser-Memory (XSS-Schutz)
|
||||||
|
# - Refresh-Token: lang, im httpOnly-Cookie (JS-unzugänglich)
|
||||||
|
# Wenn der Access abläuft, holt das Frontend transparent einen neuen über
|
||||||
|
# /api/auth/refresh – User merkt nichts. Logout invalidiert beide sofort.
|
||||||
|
JWT_EXPIRES_IN=15m
|
||||||
|
JWT_REFRESH_EXPIRES_IN=7d
|
||||||
|
|
||||||
# Encryption-Key für Portal-Credentials: GENAU 64 Hex-Zeichen.
|
# Encryption-Key für Portal-Credentials: GENAU 64 Hex-Zeichen.
|
||||||
# Generieren: openssl rand -hex 32
|
# Generieren: openssl rand -hex 32
|
||||||
|
|||||||
+2
-1
@@ -59,7 +59,8 @@ services:
|
|||||||
DB_USER: ${DB_USER}
|
DB_USER: ${DB_USER}
|
||||||
DB_PASSWORD: ${DB_PASSWORD}
|
DB_PASSWORD: ${DB_PASSWORD}
|
||||||
JWT_SECRET: ${JWT_SECRET}
|
JWT_SECRET: ${JWT_SECRET}
|
||||||
JWT_EXPIRES_IN: ${JWT_EXPIRES_IN:-7d}
|
JWT_EXPIRES_IN: ${JWT_EXPIRES_IN:-15m}
|
||||||
|
JWT_REFRESH_EXPIRES_IN: ${JWT_REFRESH_EXPIRES_IN:-7d}
|
||||||
ENCRYPTION_KEY: ${ENCRYPTION_KEY}
|
ENCRYPTION_KEY: ${ENCRYPTION_KEY}
|
||||||
NODE_ENV: production
|
NODE_ENV: production
|
||||||
PORT: 3001
|
PORT: 3001
|
||||||
|
|||||||
@@ -8,6 +8,7 @@ import Button from '../../components/ui/Button';
|
|||||||
import Select from '../../components/ui/Select';
|
import Select from '../../components/ui/Select';
|
||||||
import { ArrowLeft, FileText, Users, CheckCircle, Clock, XCircle, AlertTriangle, Download, X, ChevronRight } from 'lucide-react';
|
import { ArrowLeft, FileText, Users, CheckCircle, Clock, XCircle, AlertTriangle, Download, X, ChevronRight } from 'lucide-react';
|
||||||
import { fileUrl } from '../../utils/fileUrl';
|
import { fileUrl } from '../../utils/fileUrl';
|
||||||
|
import { useAuth } from '../../context/AuthContext';
|
||||||
|
|
||||||
const STATUS_OPTIONS = [
|
const STATUS_OPTIONS = [
|
||||||
{ value: '', label: 'Alle Status' },
|
{ value: '', label: 'Alle Status' },
|
||||||
@@ -155,6 +156,7 @@ function ProcessModal({ request, onClose, onProcess, isPending }: ProcessModalPr
|
|||||||
export default function GDPRDashboard() {
|
export default function GDPRDashboard() {
|
||||||
const navigate = useNavigate();
|
const navigate = useNavigate();
|
||||||
const queryClient = useQueryClient();
|
const queryClient = useQueryClient();
|
||||||
|
const { user } = useAuth();
|
||||||
const [statusFilter, setStatusFilter] = useState<DeletionRequestStatus | ''>('');
|
const [statusFilter, setStatusFilter] = useState<DeletionRequestStatus | ''>('');
|
||||||
const [selectedRequest, setSelectedRequest] = useState<DataDeletionRequest | null>(null);
|
const [selectedRequest, setSelectedRequest] = useState<DataDeletionRequest | null>(null);
|
||||||
|
|
||||||
@@ -191,11 +193,10 @@ export default function GDPRDashboard() {
|
|||||||
|
|
||||||
const handleProcess = (action: 'complete' | 'partial' | 'reject', reason?: string) => {
|
const handleProcess = (action: 'complete' | 'partial' | 'reject', reason?: string) => {
|
||||||
if (!selectedRequest) return;
|
if (!selectedRequest) return;
|
||||||
const user = JSON.parse(localStorage.getItem('user') || '{}');
|
|
||||||
processMutation.mutate({
|
processMutation.mutate({
|
||||||
id: selectedRequest.id,
|
id: selectedRequest.id,
|
||||||
data: {
|
data: {
|
||||||
processedBy: user.email || 'System',
|
processedBy: user?.email || 'System',
|
||||||
action,
|
action,
|
||||||
retentionReason: reason,
|
retentionReason: reason,
|
||||||
},
|
},
|
||||||
|
|||||||
Reference in New Issue
Block a user