changed ci to create its own pakcage-lock

put package-lock.json into the .gitignore
2025-12-01 06:55:45 +01:00 · 2025-11-02 21:14:34 +01:00 · 2025-11-02 21:13:32 +01:00 · 2025-11-02 21:09:25 +01:00 · 2025-11-02 20:59:35 +01:00 · 2025-11-02 20:57:34 +01:00
6 changed files with 17 additions and 5519 deletions
--- a/.github/workflows/docker.yml
+++ b/.github/workflows/docker.yml
@@ -83,9 +83,13 @@ jobs:
        with:
          node-version: '20'

+      - name: Create package-lock.json
+        working-directory: .
+        run: npm i --package-lock-only
+
      - name: Install backend dependencies
        working-directory: ./backend
-        run: npm install
+        run: npm ci

      - name: Run TypeScript check
        working-directory: ./backend
--- a/.gitignore
+++ b/.gitignore
@@ -57,6 +57,7 @@ yarn-error.log*
 # Build outputs
 dist/
 build/
+package-lock.json

 # Environment variables
 .env
--- a/6
+++ b/6
@@ -16,7 +16,9 @@ COPY tsconfig.base.json ./
 COPY ecosystem.config.cjs ./

 # Install root dependencies
-RUN npm install --only=production
+#RUN npm install --only=production
+RUN npm i --package-lock-only
+RUN npm ci

 # Copy workspace files
 COPY backend/ ./backend/
@@ -30,7 +32,7 @@ RUN npm install --workspace=frontend
 RUN npm run build --only=production --workspace=backend

 # Build frontend
-RUN npm run build --workspace=frontend
+RUN npm run build --only=production --workspace=frontend

 # Verify Python and OR-Tools installation
 RUN python -c "from ortools.sat.python import cp_model; print('OR-Tools installed successfully')"
--- a/backend/src/middleware/rateLimit.ts
+++ b/backend/src/middleware/rateLimit.ts
@@ -72,8 +72,8 @@ const getRateLimitConfig = () => {
  return {
    windowMs: parseInt(process.env.RATE_LIMIT_WINDOW_MS || '900000'), // 15 minutes default
    max: isProduction 
-      ? parseInt(process.env.RATE_LIMIT_MAX_REQUESTS || '100')  // Stricter in production
-      : parseInt(process.env.RATE_LIMIT_MAX_REQUESTS || '1000'), // More lenient in development
+      ? parseInt(process.env.RATE_LIMIT_MAX_REQUESTS || '1000')  // Stricter in production
+      : parseInt(process.env.RATE_LIMIT_MAX_REQUESTS || '5000'), // More lenient in development
    
    // Development-specific relaxations
    skip: (req: Request) => {
@@ -112,7 +112,7 @@ export const apiLimiter = rateLimit({
 // Strict limiter for auth endpoints
 export const authLimiter = rateLimit({
  windowMs: 15 * 60 * 1000,
-  max: parseInt(process.env.AUTH_RATE_LIMIT_MAX_REQUESTS || '5'),
+  max: parseInt(process.env.AUTH_RATE_LIMIT_MAX_REQUESTS || '100'),
  message: { 
    error: 'Zu viele Login-Versuche, bitte versuchen Sie es später erneut' 
  },
@@ -135,7 +135,7 @@ export const authLimiter = rateLimit({
 // Separate limiter for expensive endpoints
 export const expensiveEndpointLimiter = rateLimit({
  windowMs: 15 * 60 * 1000,
-  max: parseInt(process.env.EXPENSIVE_ENDPOINT_LIMIT || '10'),
+  max: parseInt(process.env.EXPENSIVE_ENDPOINT_LIMIT || '100'),
  message: {
    error: 'Zu viele Anfragen für diese Ressource'
  },
--- a/frontend/package.json
+++ b/frontend/package.json
@@ -7,7 +7,9 @@
    "react": "^19.0.0",
    "react-dom": "^19.0.0",
    "react-router-dom": "^6.28.0",
-    "date-fns": "4.1.0"
+    "date-fns": "4.1.0",
+    "@vitejs/plugin-react": "^4.3.3",
+    "vite": "^6.0.7"
  },
  "devDependencies": {
    "@types/node": "20.19.23",
--- a/package-lock.json
+++ b/package-lock.json
Author	SHA1	Message	Date
donpat1to	19357d12c1	changed ci to create its own pakcage-lock	2025-11-02 21:14:34 +01:00
donpat1to	8ccd506b7d	changed ci to create its own pakcage-lock	2025-11-02 21:13:32 +01:00
donpat1to	e09979aa77	put package-lock.json into the .gitignore	2025-11-02 21:09:25 +01:00
donpat1to	0eda1ac125	creating package lock package on every ci seperate	2025-11-02 20:59:35 +01:00
donpat1to	6aa9511fbe	brought package.json back from the grave	2025-11-02 20:57:34 +01:00
donpat1to	ab24f5cf35	npm ci install for prod	2025-11-02 20:48:43 +01:00
donpat1to	2e81ed48c4	more lenient api rate limit	2025-11-02 20:40:59 +01:00