feat: move configuration from .env to DB with Admin UI management

Replace hardcoded .env configuration with database-backed settings
manageable through the Admin web interface. This reduces .env to
bootstrap-only variables (DB, Keycloak, encryption keys).

Backend:
- Add SystemSetting Prisma model with category, valueType, isSecret
- Add system-settings NestJS module (CRUD, 60s cache, encryption)
- Refactor all 7 connectors to lazy-load credentials from DB via
  CredentialsService.findActiveByType() instead of ConfigService
- Add event-driven credential reload (@nestjs/event-emitter)
- Dynamic CORS origins and conditional Swagger from DB settings
- Fix JWT strategy: use Keycloak JWKS (RS256) instead of symmetric secret
- Add SYSTEM_SETTINGS_VIEW/MANAGE permissions
- Seed 13 default settings (sync intervals, features, branding, CORS)
- Add env-to-db migration script (prisma/migrate-env-to-db.ts)

Frontend:
- Add use-credentials hook (full CRUD for integration credentials)
- Add use-system-settings hook (read/update system settings)
- Wire admin-integrations page to real API (create/update/test/toggle)
- Add admin system-settings page with 4 tabs (Branding, CORS, Sync, Features)
- Fix sidebar double-highlighting with exactMatch flag
- Fix integration detail fallback when API unavailable
- Fix API client to unwrap backend's {success, data} envelope
- Update NEXT_PUBLIC_API_URL to include /v1 version prefix
- Fix activity-widget hydration error
- Add i18n keys for systemSettings (de + en)

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
2026-02-23 20:07:39 +01:00
parent 068446fbbf
commit 6a8265d3dc
46 changed files with 2972 additions and 1149 deletions

View File

@@ -77,7 +77,8 @@
"departments": "Departments",
"overview": "Overview",
"plentyOne": "PlentyONE",
"zulip": "ZULIP"
"zulip": "ZULIP",
"systemSettings": "Settings"
},
"dashboard": {
"title": "Dashboard",
@@ -1048,5 +1049,29 @@
"minutes": "minutes",
"seconds": "seconds",
"days": "days"
},
"systemSettings": {
"title": "System Settings",
"description": "Manage global application configuration",
"general": "General",
"cors": "CORS",
"sync": "Synchronization",
"features": "Features",
"branding": "Branding",
"appName": "Application Name",
"companyName": "Company Name",
"logoUrl": "Logo URL",
"corsOrigins": "Allowed Origins",
"corsOriginsDesc": "Comma-separated list of allowed origins for cross-origin requests",
"syncInterval": "Sync Interval",
"minutes": "minutes",
"enableSyncJobs": "Background Sync Jobs",
"enableSyncJobsDesc": "Automatic synchronization of integrations in the background",
"enableSwagger": "Swagger API Documentation",
"enableSwaggerDesc": "Interactive API documentation available at /api/docs (restart required)",
"saved": "Settings saved",
"saveError": "Failed to save settings",
"requiresRestart": "Change requires a backend restart",
"save": "Save"
}
}