docs: update README with authentication, fix frontend imports

moonrunnerkc · moonrunnerkc · commit 13800056535e · 2026-01-30T19:42:15.000-07:00
- Add authentication section to README
- Remove 'no auth' from limitations
- Mark auth as complete in roadmap
- Fix missing Activity/Database imports in page.tsx
- Remove test_abes.db from tracking
diff --git a/README.md b/README.md
@@ -314,16 +314,54 @@ All 638 tests passing. Here's what was fixed and added:
 11. **Configurable Embedding Model**
     - `EMBEDDING_MODEL` env var (default: all-MiniLM-L6-v2)
 
+12. **User Authentication**
+    - JWT-based login/register system
+    - SQLite persistence for user accounts
+    - Protected routes requiring authentication
+    - Beliefs associated with user accounts
+
 ### Remaining Known Issues
 
 - Contradiction detection uses embeddings and antonym lists, not full semantic understanding
 
 ---
 
+## Authentication
+
+ABES includes a complete user authentication system:
+
+### Endpoints
+
+| Endpoint | Method | Description |
+|----------|--------|-------------|
+| `/auth/register` | POST | Create new account |
+| `/auth/login` | POST | Login, returns JWT token |
+| `/auth/me` | GET | Get current user (requires token) |
+| `/auth/logout` | POST | Logout (client discards token) |
+
+### How It Works
+
+1. Register with email, name, password (min 6 chars)
+2. Login to receive JWT token
+3. Include token in `Authorization: Bearer <token>` header
+4. Beliefs are associated with your user ID
+
+### Frontend
+
+The Next.js frontend handles auth automatically:
+- Redirects to `/login` if not authenticated
+- Stores token in localStorage
+- Shows user name and logout button in header
+
+### User Data Storage
+
+User accounts are stored in `data/users.db` (SQLite). This file is in `.gitignore` and will never be committed.
+
+---
+
 ## Limitations
 
 - Contradiction detection uses embeddings and antonym lists, not full semantic understanding
-- No authentication (session isolation is available but no user auth)
 
 ---
 
@@ -335,7 +373,6 @@ Not yet implemented:
 - [ ] Document ingestion service
 - [ ] Full semantic contradiction detection (LLM-based)
 - [ ] Benchmarks against production memory systems
-- [ ] Authentication and user management
 
 ---
 
diff --git a/data/test_abes.db b/data/test_abes.db
diff --git a/frontend/app/page.tsx b/frontend/app/page.tsx
@@ -4,8 +4,10 @@
 import { fetchStats, Stats } from '@/lib/api';
 import { useAuth } from '@/lib/auth';
 import {
+    Activity,
     Brain,
     ChevronRight,
+    Database,
     FileText,
     GitBranch,
     LogOut,
