Pre prod to Main

backend/Dockerfile

@@ -1,5 +1,5 @@
 # path: ./Dockerfile
-FROM node:alpine
+FROM node:20-alpine
 RUN apk update && apk add --no-cache  build-base gcc autoconf automake zlib-dev libpng-dev nasm bash vips-dev
 ARG NODE_ENV=production
 ENV NODE_ENV=${NODE_ENV}

backend/config/plugins.js

@@ -16,7 +16,7 @@ module.exports = ({ env }) => ({
     config: {
       info: { version: "1.0.0" }, // Set the documentation version
       "x-strapi-config": {
-        plugins: [], // Additional plugin configuration (currently empty)
+        plugins: ["users-permissions"], // Additional plugin configuration (currently empty)
       },
     },
   },

backend/public/api-docs/api.yaml

@@ -40,6 +40,10 @@ info:
 
 openapi: 3.0.0
 tags:
+  - name: Authentication
+    description: User authentication and authorization
+  - name: Users
+    description: User management operations
   - name: Proposal
   - name: Proposal vote
   - name: Comment
@@ -97,6 +101,8 @@ tags:
 x-tagGroups:
   - name: Endpoints
     tags:
+      - Authentication
+      - Users
       - Proposal
       - Proposal content
       - Proposal submition
@@ -108,6 +114,8 @@ x-tagGroups:
       - Wallet type
   - name: Models
     tags:
+      - Authentication
+      - Users
       - proposal_model
       - proposal_content_model
       - proposal_submition_model
@@ -152,6 +160,66 @@ components:
               type: string
             details:
               type: object
+    AuthChallengeResponse:
+      type: object
+      properties:
+        message:
+          type: string
+    AuthLocalRequest:
+      type: object
+      properties:
+        identifier:
+          type: string
+        signedMessage:
+          $ref: '#/components/schemas/SignedMessage'
+          description: Signed message
+    SignedMessage:
+      type: object
+      properties:
+        key:
+          type: string
+        signature:
+          type: string
+        expectedSignedMessage:
+          type: string
+    AuthLocalResponse:
+      type: object
+      properties:
+        status:
+          type: string
+          enum:
+            - Authenticated
+            - Failed
+            - NotFound
+        jwt:
+          type: string
+        user:
+          $ref: '#/components/schemas/User'
+    User:
+      type: object
+      properties:
+        id:
+          type: number | string
+        username:
+          type: string
+        email:
+          type: string
+        provider:
+          type: string
+        confirmed:
+          type: boolean
+        blocked:
+          type: boolean
+        govtool_username:
+          type: string
+        createdAt:
+          type: string
+          format: date-time
+        updatedAt:
+          type: string
+          format: date-time
+        is_validated:
+          type: boolean
     CommentRequest:
       type: object
       required:
@@ -1083,7 +1151,173 @@ components:
           $ref: '#/components/schemas/WalletTypeResponseDataObject'
         meta:
           type: object
+    RefreshToken:
+      type: object
+      properties:
+        jwt:  
+          type: string
+        refreshToken:
+          type: string
 paths:
+  /auth/challenge:
+    get:
+      security:
+        - none: []
+      responses:
+        '200':
+          description: OK
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/AuthChallengeResponse'
+        '400':
+          description: Bad Request
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Error'
+      tags:
+        - Authentication
+      parameters:
+        - name: identifier
+          in: query
+          description: Identifier
+          deprecated: false
+          required: true
+          schema:
+            type: string
+      operationId: get/auth/challenge
+      summary: Get authentication challenge
+      description: |
+        Get authentication challenge
+  /auth/local:
+    post:
+      security:
+        - none: []
+      responses:
+        '200':
+          description: OK
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/AuthLocalResponse'
+        '400':
+          description: Bad Request
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Error'
+        '401':
+          description: Unauthorized
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Error'
+        '403':
+          description: Forbidden
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Error'
+      tags:
+        - Authentication
+      parameters: []
+      operationId: post/auth/local
+      requestBody:
+        required: true
+        content:
+          application/json:
+            schema: 
+              $ref: '#/components/schemas/AuthLocalRequest'
+      summary: Login
+  /token/refresh:
+    post:
+      responses:
+        '200':
+          description: OK
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/RefreshToken'
+        '400':
+          description: Bad Request
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Error'
+        '401':
+          description: Unauthorized
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Error'
+        '403':
+          description: Forbidden
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Error'
+      tags:
+        - Authentication
+      parameters: []
+      operationId: post/token/refresh
+      requestBody:
+        required: true
+        content:
+          application/json:
+            schema: 
+              $ref: '#/components/schemas/RefreshToken'
+      summary: Refresh token  
+  /users/{id}: 
+    put:
+      responses:
+        '200':
+          description: OK
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/User'
+        '400':
+          description: Bad Request
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Error'
+        '401':
+          description: Unauthorized
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Error'
+        '403':
+          description: Forbidden
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Error'
+        '404':
+          description: Not Found
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/Error'
+      tags:
+        - Users
+      parameters:         
+        - name: id
+          in: path
+          description: ''
+          deprecated: false
+          required: true
+          schema:
+            type: number
+      operationId: Update user
+      requestBody:
+        required: true
+        content:
+          application/json:
+            schema:
+              $ref: '#/components/schemas/User'
   /comments:
     get:
       responses: