src/config.js

export const metaData = {
  baseUrl: "https://codey.lol/",
  title: "CODEY STUFF",
  name: "codey.lol",
  owner: "codey",
  ogImage: "/images/favicon.png",
  description: "CODEY STUFF!",
  shareTitle: "CODEY STUFF",
  shareDescription: "CODEY STUFF!",
  // alt text for the share/OG image (descriptive; not a filename)
  shareImageAlt: "CODEY STUFF logo",
  // default favicon / site icon used when no per-subsite override is provided
  favicon: "/images/favicon.png",
  // additional icons array (optional) for multi-icon support
  icons: [
    { rel: 'icon', href: '/images/favicon.png' },
  ],
};

export const API_URL = "https://api.codey.lol";
export const RADIO_API_URL = "https://radio-api.codey.lol";

export const socialLinks = {
};

export const MAJOR_VERSION = "0.5"
export const RELEASE_FLAG = null;
export const ENVIRONMENT = import.meta.env.DEV ? "Dev" : "Prod";

// Whitelabel overrides
export const WHITELABELS = {
  'req.boatson.boats': {
    title: 'Request Media',
    name: 'REQ',
    brandColor: '', // inherit
    siteTitle: 'Request Media',
    logoText: 'Request Media',
    // optional meta overrides for whitelabel/subsite
    shareTitle: 'Request Media',
    shareDescription: 'Request Media',
    ogImage: '/images/req.png',
    shareImageAlt: 'Request Media logo',
    favicon: '/images/req.png',
    // optional canonical/base url for this subsite (useful when host-forcing or in prod)
    baseUrl: 'https://req.boatson.boats',
    // human-readable site name for social meta
    siteName: 'Request Media'
  },
};

// Subsite mapping: host -> site path
export const SUBSITES = {
  'req.boatson.boats': '/subsites/req',
};

// Protected routes configuration
// Routes listed here require authentication - middleware will redirect to /login if not authenticated
// Can be a string (just auth required) or object with roles array for role-based access
// Use 'exclude' array to exempt specific sub-paths from protection
export const PROTECTED_ROUTES = [
  { path: '/discord-logs', roles: ['discord'] },
  { path: '/api/discord', roles: ['discord'], exclude: ['/api/discord/cached-image'] },
  { path: '/TRip', roles: ['trip'] },
  { path: '/TRip/requests', roles: ['trip'] },
  { path: '/lighting', roles: ['lighting'] },
];

// Routes that should skip auth check entirely (public routes)
export const PUBLIC_ROUTES = [
  '/',
  '/login',
  '/api/',
];
initial commit 2025-06-18 07:46:59 -04:00			`export const metaData = {`
			`baseUrl: "https://codey.lol/",`
			`title: "CODEY STUFF",`
			`name: "codey.lol",`
			`owner: "codey",`
- TRip: various ui/ux enhancements - other minor changes 2025-11-26 14:42:57 -05:00			`ogImage: "/images/favicon.png",`
			`description: "CODEY STUFF!",`
			`shareTitle: "CODEY STUFF",`
			`shareDescription: "CODEY STUFF!",`
misc 2025-12-02 10:05:43 -05:00			`// alt text for the share/OG image (descriptive; not a filename)`
			`shareImageAlt: "CODEY STUFF logo",`
			`// default favicon / site icon used when no per-subsite override is provided`
			`favicon: "/images/favicon.png",`
			`// additional icons array (optional) for multi-icon support`
			`icons: [`
			`{ rel: 'icon', href: '/images/favicon.png' },`
			`],`
initial commit 2025-06-18 07:46:59 -04:00			`};`

config cleanup 2025-07-25 10:06:39 -04:00			`export const API_URL = "https://api.codey.lol";`
Add Lighting component and integrate with navigation and routing - Introduced Lighting component - Updated AppLayout to include Lighting in the child components. - Added Lighting route to navigation with authentication requirement. 2025-10-02 13:14:13 -04:00			`export const RADIO_API_URL = "https://radio-api.codey.lol";`

initial commit 2025-06-18 07:46:59 -04:00			`export const socialLinks = {`
			`};`
add build number (for page footer) 2025-07-19 22:57:35 -04:00
feat(api): implement rate limiting and SSRF protection across endpoints - Added rate limiting to `reaction-users`, `search`, and `image-proxy` APIs to prevent abuse. - Introduced SSRF protection in `image-proxy` to block requests to private IP ranges. - Enhanced `link-preview` to use `linkedom` for HTML parsing and improved meta tag extraction. - Refactored authentication checks in various pages to utilize middleware for cleaner code. - Improved JWT key loading with error handling and security warnings for production. - Updated `authFetch` utility to handle token refresh more efficiently with deduplication. - Enhanced rate limiting utility to trust proxy headers from known sources. - Numerous layout / design changes 2025-12-05 14:21:52 -05:00			`export const MAJOR_VERSION = "0.5"`
misc 2025-08-20 15:57:59 -04:00			`export const RELEASE_FLAG = null;`
refactor: add SubNav layout and per-subsite nav placeholders; switch Base to use SubNav 2025-11-28 09:07:55 -05:00			`export const ENVIRONMENT = import.meta.env.DEV ? "Dev" : "Prod";`

			`// Whitelabel overrides`
			`export const WHITELABELS = {`
			`'req.boatson.boats': {`
			`title: 'Request Media',`
			`name: 'REQ',`
misc 2025-12-02 10:05:43 -05:00			`brandColor: '', // inherit`
refactor: add SubNav layout and per-subsite nav placeholders; switch Base to use SubNav 2025-11-28 09:07:55 -05:00			`siteTitle: 'Request Media',`
			`logoText: 'Request Media',`
misc 2025-12-02 10:05:43 -05:00			`// optional meta overrides for whitelabel/subsite`
			`shareTitle: 'Request Media',`
			`shareDescription: 'Request Media',`
			`ogImage: '/images/req.png',`
			`shareImageAlt: 'Request Media logo',`
			`favicon: '/images/req.png',`
			`// optional canonical/base url for this subsite (useful when host-forcing or in prod)`
			`baseUrl: 'https://req.boatson.boats',`
			`// human-readable site name for social meta`
			`siteName: 'Request Media'`
refactor: add SubNav layout and per-subsite nav placeholders; switch Base to use SubNav 2025-11-28 09:07:55 -05:00			`},`
			`};`

			`// Subsite mapping: host -> site path`
			`export const SUBSITES = {`
			`'req.boatson.boats': '/subsites/req',`
feat(api): implement rate limiting and SSRF protection across endpoints - Added rate limiting to `reaction-users`, `search`, and `image-proxy` APIs to prevent abuse. - Introduced SSRF protection in `image-proxy` to block requests to private IP ranges. - Enhanced `link-preview` to use `linkedom` for HTML parsing and improved meta tag extraction. - Refactored authentication checks in various pages to utilize middleware for cleaner code. - Improved JWT key loading with error handling and security warnings for production. - Updated `authFetch` utility to handle token refresh more efficiently with deduplication. - Enhanced rate limiting utility to trust proxy headers from known sources. - Numerous layout / design changes 2025-12-05 14:21:52 -05:00			`};`

			`// Protected routes configuration`
			`// Routes listed here require authentication - middleware will redirect to /login if not authenticated`
			`// Can be a string (just auth required) or object with roles array for role-based access`
misc 2025-12-17 13:33:31 -05:00			`// Use 'exclude' array to exempt specific sub-paths from protection`
feat(api): implement rate limiting and SSRF protection across endpoints - Added rate limiting to `reaction-users`, `search`, and `image-proxy` APIs to prevent abuse. - Introduced SSRF protection in `image-proxy` to block requests to private IP ranges. - Enhanced `link-preview` to use `linkedom` for HTML parsing and improved meta tag extraction. - Refactored authentication checks in various pages to utilize middleware for cleaner code. - Improved JWT key loading with error handling and security warnings for production. - Updated `authFetch` utility to handle token refresh more efficiently with deduplication. - Enhanced rate limiting utility to trust proxy headers from known sources. - Numerous layout / design changes 2025-12-05 14:21:52 -05:00			`export const PROTECTED_ROUTES = [`
			`{ path: '/discord-logs', roles: ['discord'] },`
misc 2025-12-17 13:33:31 -05:00			`{ path: '/api/discord', roles: ['discord'], exclude: ['/api/discord/cached-image'] },`
misc 2025-12-18 11:19:01 -05:00			`{ path: '/TRip', roles: ['trip'] },`
			`{ path: '/TRip/requests', roles: ['trip'] },`
			`{ path: '/lighting', roles: ['lighting'] },`
feat(api): implement rate limiting and SSRF protection across endpoints - Added rate limiting to `reaction-users`, `search`, and `image-proxy` APIs to prevent abuse. - Introduced SSRF protection in `image-proxy` to block requests to private IP ranges. - Enhanced `link-preview` to use `linkedom` for HTML parsing and improved meta tag extraction. - Refactored authentication checks in various pages to utilize middleware for cleaner code. - Improved JWT key loading with error handling and security warnings for production. - Updated `authFetch` utility to handle token refresh more efficiently with deduplication. - Enhanced rate limiting utility to trust proxy headers from known sources. - Numerous layout / design changes 2025-12-05 14:21:52 -05:00			`];`

			`// Routes that should skip auth check entirely (public routes)`
			`export const PUBLIC_ROUTES = [`
			`'/',`
			`'/login',`
			`'/api/',`
			`];`