letsbe-hub/next.config.ts

import type { NextConfig } from 'next'

const securityHeaders = [
  {
    key: 'X-DNS-Prefetch-Control',
    value: 'on',
  },
  {
    key: 'Strict-Transport-Security',
    value: 'max-age=63072000; includeSubDomains; preload',
  },
  {
    key: 'X-Content-Type-Options',
    value: 'nosniff',
  },
  {
    key: 'X-Frame-Options',
    value: 'SAMEORIGIN',
  },
  {
    key: 'X-XSS-Protection',
    value: '1; mode=block',
  },
  {
    key: 'Referrer-Policy',
    value: 'strict-origin-when-cross-origin',
  },
  {
    key: 'Permissions-Policy',
    value: 'camera=(), microphone=(), geolocation=()',
  },
  {
    key: 'Content-Security-Policy',
    value: [
      "default-src 'self'",
      "script-src 'self' 'unsafe-inline' 'unsafe-eval'",
      "style-src 'self' 'unsafe-inline'",
      "img-src 'self' data: blob: https://*.letsbe.solutions",
      "font-src 'self' data:",
      "connect-src 'self' https://*.letsbe.solutions",
      "frame-ancestors 'self'",
      "base-uri 'self'",
      "form-action 'self'",
    ].join('; '),
  },
]

const nextConfig: NextConfig = {
  output: 'standalone',
  // reactCompiler: true, // Requires babel-plugin-react-compiler - enable later
  experimental: {
    serverActions: {
      bodySizeLimit: '2mb',
    },
  },
  images: {
    remotePatterns: [
      {
        protocol: 'https',
        hostname: '*.letsbe.solutions',
      },
    ],
  },
  // Turbopack config (Next.js 16 default bundler)
  turbopack: {},
  // Handle native modules like ssh2 (for webpack fallback)
  webpack: (config, { isServer }) => {
    if (isServer) {
      // Externalize ssh2 and its native dependencies
      config.externals = config.externals || []
      config.externals.push({
        'ssh2': 'commonjs ssh2',
      })
    }
    return config
  },
  // Externalize ssh2 for both Turbopack and Webpack
  serverExternalPackages: ['ssh2'],
  async headers() {
    return [
      {
        source: '/(.*)',
        headers: securityHeaders,
      },
    ]
  },
}

export default nextConfig
feat: Complete rewrite as Next.js admin dashboard Major transformation from FastAPI telemetry service to Next.js admin dashboard: - Next.js 15 App Router with TypeScript - Prisma ORM with PostgreSQL (same schema, new client) - TanStack Query for data fetching - Tailwind CSS + shadcn/ui components - Admin dashboard with: - Dashboard stats overview - Customer management (list, detail, edit) - Order management (list, create, detail, logs) - Server monitoring (grid view) - Subscription management Pages implemented: - /admin (dashboard) - /admin/customers (list + [id] detail) - /admin/orders (list + [id] detail with SSE logs) - /admin/servers (grid view) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2026-01-06 12:35:01 +01:00			`import type { NextConfig } from 'next'`

feat: Audit remediation + Stripe webhook + test suites - Apply 3 Prisma schema changes (Pending2FASession, hubApiKeyHash, SecurityVerificationCode attempts) - Add Stripe webhook handler (checkout.session.completed -> User + Subscription + Order) - Add stripe-service, api-key-service, rate-limit middleware - Add security headers (CSP, HSTS, X-Frame-Options) in next.config.ts - Harden auth routes, require ADMIN_API_KEY for orchestrator endpoints - Add Docker auto-migration via startup.sh - Add 7 unit test suites (api-key, dns, config-generator, automation-worker, permission, security-verification, auth-helpers) - Fix Prisma 7 compatibility with adapter-pg mock for vitest Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-07 08:02:33 +01:00			`const securityHeaders = [`
			`{`
			`key: 'X-DNS-Prefetch-Control',`
			`value: 'on',`
			`},`
			`{`
			`key: 'Strict-Transport-Security',`
			`value: 'max-age=63072000; includeSubDomains; preload',`
			`},`
			`{`
			`key: 'X-Content-Type-Options',`
			`value: 'nosniff',`
			`},`
			`{`
			`key: 'X-Frame-Options',`
			`value: 'SAMEORIGIN',`
			`},`
			`{`
			`key: 'X-XSS-Protection',`
			`value: '1; mode=block',`
			`},`
			`{`
			`key: 'Referrer-Policy',`
			`value: 'strict-origin-when-cross-origin',`
			`},`
			`{`
			`key: 'Permissions-Policy',`
			`value: 'camera=(), microphone=(), geolocation=()',`
			`},`
			`{`
			`key: 'Content-Security-Policy',`
			`value: [`
			`"default-src 'self'",`
			`"script-src 'self' 'unsafe-inline' 'unsafe-eval'",`
			`"style-src 'self' 'unsafe-inline'",`
			`"img-src 'self' data: blob: https://*.letsbe.solutions",`
			`"font-src 'self' data:",`
			`"connect-src 'self' https://*.letsbe.solutions",`
			`"frame-ancestors 'self'",`
			`"base-uri 'self'",`
			`"form-action 'self'",`
			`].join('; '),`
			`},`
			`]`

feat: Complete rewrite as Next.js admin dashboard Major transformation from FastAPI telemetry service to Next.js admin dashboard: - Next.js 15 App Router with TypeScript - Prisma ORM with PostgreSQL (same schema, new client) - TanStack Query for data fetching - Tailwind CSS + shadcn/ui components - Admin dashboard with: - Dashboard stats overview - Customer management (list, detail, edit) - Order management (list, create, detail, logs) - Server monitoring (grid view) - Subscription management Pages implemented: - /admin (dashboard) - /admin/customers (list + [id] detail) - /admin/orders (list + [id] detail with SSE logs) - /admin/servers (grid view) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2026-01-06 12:35:01 +01:00			`const nextConfig: NextConfig = {`
			`output: 'standalone',`
Complete Hub Admin Dashboard with analytics, settings, and enterprise features Major additions: - Analytics dashboard with charts (line, bar, donut) - Enterprise client monitoring with container management - Staff management with 2FA support - Profile management and settings pages - Netcup server integration - DNS verification panel - Portainer integration - Container logs and health monitoring - Automation controls for orders New API endpoints: - /api/v1/admin/analytics - /api/v1/admin/enterprise-clients - /api/v1/admin/netcup - /api/v1/admin/settings - /api/v1/admin/staff - /api/v1/profile Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2026-01-17 12:33:11 +01:00			`// reactCompiler: true, // Requires babel-plugin-react-compiler - enable later`
feat: Complete rewrite as Next.js admin dashboard Major transformation from FastAPI telemetry service to Next.js admin dashboard: - Next.js 15 App Router with TypeScript - Prisma ORM with PostgreSQL (same schema, new client) - TanStack Query for data fetching - Tailwind CSS + shadcn/ui components - Admin dashboard with: - Dashboard stats overview - Customer management (list, detail, edit) - Order management (list, create, detail, logs) - Server monitoring (grid view) - Subscription management Pages implemented: - /admin (dashboard) - /admin/customers (list + [id] detail) - /admin/orders (list + [id] detail with SSE logs) - /admin/servers (grid view) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2026-01-06 12:35:01 +01:00			`experimental: {`
			`serverActions: {`
			`bodySizeLimit: '2mb',`
			`},`
			`},`
			`images: {`
			`remotePatterns: [`
			`{`
			`protocol: 'https',`
			`hostname: '*.letsbe.solutions',`
			`},`
			`],`
			`},`
Complete Hub Admin Dashboard with analytics, settings, and enterprise features Major additions: - Analytics dashboard with charts (line, bar, donut) - Enterprise client monitoring with container management - Staff management with 2FA support - Profile management and settings pages - Netcup server integration - DNS verification panel - Portainer integration - Container logs and health monitoring - Automation controls for orders New API endpoints: - /api/v1/admin/analytics - /api/v1/admin/enterprise-clients - /api/v1/admin/netcup - /api/v1/admin/settings - /api/v1/admin/staff - /api/v1/profile Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2026-01-17 12:33:11 +01:00			`// Turbopack config (Next.js 16 default bundler)`
			`turbopack: {},`
			`// Handle native modules like ssh2 (for webpack fallback)`
			`webpack: (config, { isServer }) => {`
			`if (isServer) {`
			`// Externalize ssh2 and its native dependencies`
			`config.externals = config.externals \|\| []`
			`config.externals.push({`
			`'ssh2': 'commonjs ssh2',`
			`})`
			`}`
			`return config`
			`},`
			`// Externalize ssh2 for both Turbopack and Webpack`
			`serverExternalPackages: ['ssh2'],`
feat: Audit remediation + Stripe webhook + test suites - Apply 3 Prisma schema changes (Pending2FASession, hubApiKeyHash, SecurityVerificationCode attempts) - Add Stripe webhook handler (checkout.session.completed -> User + Subscription + Order) - Add stripe-service, api-key-service, rate-limit middleware - Add security headers (CSP, HSTS, X-Frame-Options) in next.config.ts - Harden auth routes, require ADMIN_API_KEY for orchestrator endpoints - Add Docker auto-migration via startup.sh - Add 7 unit test suites (api-key, dns, config-generator, automation-worker, permission, security-verification, auth-helpers) - Fix Prisma 7 compatibility with adapter-pg mock for vitest Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-02-07 08:02:33 +01:00			`async headers() {`
			`return [`
			`{`
			`source: '/(.*)',`
			`headers: securityHeaders,`
			`},`
			`]`
			`},`
feat: Complete rewrite as Next.js admin dashboard Major transformation from FastAPI telemetry service to Next.js admin dashboard: - Next.js 15 App Router with TypeScript - Prisma ORM with PostgreSQL (same schema, new client) - TanStack Query for data fetching - Tailwind CSS + shadcn/ui components - Admin dashboard with: - Dashboard stats overview - Customer management (list, detail, edit) - Order management (list, create, detail, logs) - Server monitoring (grid view) - Subscription management Pages implemented: - /admin (dashboard) - /admin/customers (list + [id] detail) - /admin/orders (list + [id] detail with SSE logs) - /admin/servers (grid view) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2026-01-06 12:35:01 +01:00			`}`

			`export default nextConfig`