Feat(Chore): Verify Flow, Invites, Suspend, Depart Cert Policy

feat: add password reset and email verification flow feat: add org invite listing, cancellation, and invite link fallback feat: add user suspend/unsuspend with audit logging feat: add department certificate policy (expiry, extensions) feat: enforce dept cert policy on SSH certificate signing feat: wire up OIDC consent and token flow (replace mocks) feat: rework CLI auth bridge to use frontend login flow feat: add admin OAuth provider management (CRUD) chore: refactor model import paths after module reorganisation chore: clean up config, decorators, and dev tooling
2026-03-01 16:50:27 +05:45
parent 07193a2d2e
commit a0d4e59c24
39 changed files with 2035 additions and 611 deletions
@@ -25,3 +25,15 @@ class DevelopmentConfig(BaseConfig):
        "CORS_ORIGINS",
        "http://localhost:8080,http://localhost:3000,http://localhost:5173,https://ui.webauthn.local"
    ).split(",")
+
+    # ── Email / SMTP ──────────────────────────────────────────────────────────
+    # Read from .env so real SMTP credentials work in dev.
+    # Set EMAIL_ENABLED=false in .env to disable; defaults to True if SMTP_HOST is set.
+    EMAIL_ENABLED = os.getenv("EMAIL_ENABLED", "True").lower() == "true"
+    SMTP_HOST = os.getenv("SMTP_HOST", "localhost")
+    SMTP_PORT = int(os.getenv("SMTP_PORT", "1025"))
+    SMTP_USERNAME = os.getenv("SMTP_USERNAME") or None
+    SMTP_PASSWORD = os.getenv("SMTP_PASSWORD") or None
+    SMTP_USE_TLS = os.getenv("SMTP_USE_TLS", "").lower() == "true" if os.getenv("SMTP_USE_TLS") else int(os.getenv("SMTP_PORT", "1025")) not in (25, 1025)
+    FROM_ADDRESS = os.getenv("FROM_ADDRESS", "noreply@gatehouse.local")
+    EMAIL_FROM = FROM_ADDRESS  # alias