GDPRScanner

netadmin/GDPRScanner

Fork 0

Commit Graph

Author	SHA1	Message	Date
StyxX65	d8083eb0c0	feat: interface PIN, bulk disposition tagging, Google Drive delta scan, OCR memory fixes - Interface PIN: optional session-level auth gate for the main scanner UI (Settings → Security → Interface PIN). Salted SHA-256 in config.json, rate-limited (5 attempts/5 min per IP). /view and viewer auth exempt. New /login page, before_request hook, GET/POST/DELETE /api/interface/pin, POST /api/interface/pin/verify, POST /api/interface/logout. - Bulk disposition tagging: Select mode (filter bar "Vælg" button) reveals per-card checkboxes. Bulk tag bar at bottom of grid; POST /api/db/disposition/bulk. Disposition stats bar (total · unreviewed · retain · delete · % reviewed) updates after every save. - Google Drive delta scan: uses Drive Changes API when delta is enabled. Per-user token stored as gdrive:{email} in delta.json. Load-then-merge save avoids racing with concurrent M365 token writes. - PDF OCR OOM fix: render one page at a time with convert_from_path (first_page=N, last_page=N). Added _ocr_mem_ok() psutil guard (500 MB threshold) before each page render across scan_pdf, redact_fitz_pdf, redact_pdf. - Email test message translation fix: routes/email.py returns structured {ok, method, recipients} instead of a hardcoded English string; scheduler.js builds the translated message client-side. - Docs: CHANGELOG, README, TODO, MANUAL-EN, MANUAL-DA all updated. Lang files (en/da/de) extended with bulk, interface PIN, and SMTP keys. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-18 18:46:45 +02:00
StyxX65	1aaf400771	feat: role-scoped viewer tokens — restrict shared links to student or staff items Add a Role scope dropdown to the Share modal (All roles / Ansatte / Elever). Scope is stored as {"role": "student"\|"staff"} in viewer_tokens.json and enforced server-side in GET /api/db/flagged via session["viewer_scope"]. Client-side, #filterRole is pre-set and hidden for scoped viewers so the constraint cannot be bypassed. Existing tokens and PIN sessions remain unrestricted. Role badge shown on each scoped token row in the Active links list. Files: app_config.py, routes/viewer.py, routes/database.py, gdpr_scanner.py, templates/index.html, static/js/viewer.js, static/js/auth.js, lang/en.json, lang/da.json, lang/de.json, CLAUDE.md, CHANGELOG.md, README.md, MANUAL-EN.md, MANUAL-DA.md Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-12 09:30:38 +02:00
Henrik Højmark	9c7df76fbd	Initial commit	2026-04-11 04:38:11 +02:00

Author

SHA1

Message

Date

StyxX65

d8083eb0c0

feat: interface PIN, bulk disposition tagging, Google Drive delta scan, OCR memory fixes

- Interface PIN: optional session-level auth gate for the main scanner UI
  (Settings → Security → Interface PIN). Salted SHA-256 in config.json,
  rate-limited (5 attempts/5 min per IP). /view and viewer auth exempt.
  New /login page, before_request hook, GET/POST/DELETE /api/interface/pin,
  POST /api/interface/pin/verify, POST /api/interface/logout.

- Bulk disposition tagging: Select mode (filter bar "Vælg" button) reveals
  per-card checkboxes. Bulk tag bar at bottom of grid; POST /api/db/disposition/bulk.
  Disposition stats bar (total · unreviewed · retain · delete · % reviewed)
  updates after every save.

- Google Drive delta scan: uses Drive Changes API when delta is enabled.
  Per-user token stored as gdrive:{email} in delta.json. Load-then-merge
  save avoids racing with concurrent M365 token writes.

- PDF OCR OOM fix: render one page at a time with convert_from_path
  (first_page=N, last_page=N). Added _ocr_mem_ok() psutil guard (500 MB
  threshold) before each page render across scan_pdf, redact_fitz_pdf,
  redact_pdf.

- Email test message translation fix: routes/email.py returns structured
  {ok, method, recipients} instead of a hardcoded English string;
  scheduler.js builds the translated message client-side.

- Docs: CHANGELOG, README, TODO, MANUAL-EN, MANUAL-DA all updated.
  Lang files (en/da/de) extended with bulk, interface PIN, and SMTP keys.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-04-18 18:46:45 +02:00

StyxX65

1aaf400771

feat: role-scoped viewer tokens — restrict shared links to student or staff items

Add a Role scope dropdown to the Share modal (All roles / Ansatte / Elever).
Scope is stored as {"role": "student"|"staff"} in viewer_tokens.json and
enforced server-side in GET /api/db/flagged via session["viewer_scope"].
Client-side, #filterRole is pre-set and hidden for scoped viewers so the
constraint cannot be bypassed. Existing tokens and PIN sessions remain
unrestricted. Role badge shown on each scoped token row in the Active links list.

Files: app_config.py, routes/viewer.py, routes/database.py, gdpr_scanner.py,
templates/index.html, static/js/viewer.js, static/js/auth.js,
lang/en.json, lang/da.json, lang/de.json,
CLAUDE.md, CHANGELOG.md, README.md, MANUAL-EN.md, MANUAL-DA.md

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-04-12 09:30:38 +02:00

Henrik Højmark

9c7df76fbd

Initial commit

2026-04-11 04:38:11 +02:00

3 Commits