Keep Postgres restricted to localhost, but re-expose backend on host port 5001 so the external reverse proxy can reach API routes reliably.
Made-with: Cursor
Limit direct network exposure on staging by binding backend and Postgres to 127.0.0.1 while keeping frontend public via the reverse proxy.
Made-with: Cursor
- Added Docker support (Dockerfiles, docker-compose.yml)
- Fixed authentication and authorization (token storage, CORS, permissions)
- Fixed API response transformations for all modules
- Added production deployment scripts and guides
- Fixed frontend permission checks and module access
- Added database seeding script for production
- Complete documentation for deployment and configuration
Co-authored-by: Cursor <cursoragent@cursor.com>
