timothykim/kebuu.com
SHA256
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
kebuu.com/CLAUDE.md
Timothy Kim f7d010f28d Use Docker for local development environment 
- Update README and CLAUDE.md with Docker-based dev workflow
- Add Dockerfile for containerized deployment
- Add gunicorn to requirements.txt
- Dev uses volume mount for live code reloading

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-19 20:41:48 -05:00

3.1 KiB
Raw Permalink Blame History

CLAUDE.md - Kebuu Project Context

Last Updated: 2026-01-19

Overview

Kebuu is a spending tracker web app built with Flask. Currently in early development with user authentication complete.

Tech Stack

  • Backend: Flask 3.0, SQLAlchemy, Flask-Login
  • Auth: bcrypt password hashing, Altcha CAPTCHA (self-hosted)
  • Forms: Flask-WTF with CSRF protection
  • Server: Docker + Gunicorn (dev and prod)
  • Database: SQLite (dev), PostgreSQL (prod)

Directory Structure

src/
├── app.py              # Entry point, Flask factory pattern
├── config.py           # Environment-based configuration
├── models.py           # SQLAlchemy models (User)
├── routes.py           # Blueprint routes (main)
├── forms.py            # WTForms with validators
├── altcha_utils.py     # Self-hosted CAPTCHA implementation
├── requirements.txt    # Python dependencies
├── templates/          # Jinja2 templates
└── static/css/         # Stylesheets

Key Patterns

  • Flask Factory: create_app() in app.py
  • Blueprints: Routes organized in main blueprint
  • Singleton: Altcha instance cached per HMAC key
  • Strong passwords: 8+ chars, upper/lower/number/special required

Commands

Build

docker build -t kebuu .

Development

docker run -p 5000:5000 --env-file .env.dev -v $(pwd)/src:/app kebuu

Production

docker run -p 5000:5000 --env-file .env.prod kebuu

Testing

docker run --env-file .env.dev kebuu python -m unittest discover

Environment Variables

Variable Description Default
SECRET_KEY Flask session secret dev-secret-key
DATABASE_URL SQLAlchemy URI sqlite:///kebuu.db
ALTCHA_HMAC_KEY CAPTCHA signing key default-hmac-key

Routes

Route Method Auth Description
/ GET No Redirects to signup/dashboard
/signup GET/POST No User registration
/dashboard GET Yes User dashboard
/altcha/challenge GET No CAPTCHA challenge endpoint

Database Models

User: id, email (unique), password_hash, created_at

  • set_password(): bcrypt hash with salt
  • check_password(): timing-safe comparison

Security Notes

  • CSRF enabled on all forms
  • Passwords hashed with bcrypt + salt
  • HMAC-SHA256 for Altcha signatures
  • Docker runs as non-root user (appuser)
  • Timing-safe comparisons for secrets

Roadmap / TODOs

  • Spending tracker core features (transactions, categories)
  • Login page (currently only signup exists)
  • Password reset functionality
  • User profile/settings page
  • Export spending data
  • Dashboard with spending analytics
Reference in New Issue View Git Blame Copy Permalink