pplate/cannamanage
1
0
Fork 0
Code Issues 9 Pull Requests Actions Packages Projects Releases Wiki Activity
77 Commits 2 Branches 0 Tags
b22702317a9be7ad5b2093d393bc9098c21fdaf8
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Patrick Plate b22702317a feat(sprint8): Phase 3 — Mitgliederversammlung (assemblies, voting, protocol PDF) 
Backend:
- V19 migration: assemblies, assembly_agenda_items, assembly_attendees, assembly_votes, assembly_vote_records
- Enums: AssemblyType, AssemblyStatus, AgendaItemType, VoteType, VoteDecision, VoteResult
- Entities: Assembly, AssemblyAgendaItem, AssemblyAttendee, AssemblyVote, AssemblyVoteRecord
- Repositories: Assembly, AgendaItem, Attendee, Vote, VoteRecord
- AssemblyService: full lifecycle (create, invite, start, attend, vote, quorum, complete)
- AssemblyProtocolService: OpenPDF protocol generation (§147 AO compliant)
- AssemblyController: admin + portal endpoints
- Extended: AuditEventType, NotificationType, StaffPermission

Frontend:
- Assembly service with full API client and TypeScript types
- Admin assemblies list page with create dialog (agenda builder)
- Admin assembly detail page (quorum, agenda, votes, attendees)
- Navigation: Versammlungen with Gavel icon (after Finanzen)

Legal basis: §32-§40 BGB (Mitgliederversammlung), §147 AO (retention)
2026-06-15 08:39:10 +02:00
.gitea/workflows
feat(sprint-6): Phase 1 — Production deployment infrastructure (IONOS)
2026-06-12 22:11:43 +02:00
.mvn/wrapper
feat(sprint-1): CannaManage foundation — compliance engine, JPA entities, tests TC-001→TC-025
2026-04-12 20:30:12 +02:00
cannamanage-api
feat(sprint8): Phase 3 — Mitgliederversammlung (assemblies, voting, protocol PDF)
2026-06-15 08:39:10 +02:00
cannamanage-domain
feat(sprint8): Phase 3 — Mitgliederversammlung (assemblies, voting, protocol PDF)
2026-06-15 08:39:10 +02:00
cannamanage-frontend
feat(sprint8): Phase 3 — Mitgliederversammlung (assemblies, voting, protocol PDF)
2026-06-15 08:39:10 +02:00
cannamanage-service
feat(sprint8): Phase 3 — Mitgliederversammlung (assemblies, voting, protocol PDF)
2026-06-15 08:39:10 +02:00
deploy
feat(sprint-6): Phase 1 — Production deployment infrastructure (IONOS)
2026-06-12 22:11:43 +02:00
docs
feat(sprint8): Phase 3 — Mitgliederversammlung (assemblies, voting, protocol PDF)
2026-06-15 08:39:10 +02:00
scripts
fix: correct BCrypt hash in seed SQL and fix Playwright test selectors
2026-06-13 17:01:56 +02:00
.gitignore
feat(sprint-6): Phase 1 — Production deployment infrastructure (IONOS)
2026-06-12 22:11:43 +02:00
docker-compose.prod.yml
feat(sprint-6): Phase 1 — Production deployment infrastructure (IONOS)
2026-06-12 22:11:43 +02:00
docker-compose.test.yml
feat(sprint-5): Phase 7 — System test harness
2026-06-12 20:39:09 +02:00
docker-compose.yml
fix(deploy): use valid base64 JWT secret in docker-compose
2026-06-13 10:08:34 +02:00
Dockerfile.backend
feat(sprint-5): Phase 1 — Docker Compose full stack, CORS, Next.js upgrade
2026-06-12 19:51:24 +02:00
mvnw
feat(sprint-1): CannaManage foundation — compliance engine, JPA entities, tests TC-001→TC-025
2026-04-12 20:30:12 +02:00
mvnw.cmd
feat(sprint-1): CannaManage foundation — compliance engine, JPA entities, tests TC-001→TC-025
2026-04-12 20:30:12 +02:00
pom.xml
fix(security): re-add dependency version overrides for SCA compliance
2026-06-12 11:17:40 +02:00
README.md
docs: add comprehensive README with project overview, API docs, and sprint history
2026-06-11 13:35:28 +02:00

README.md

CannaManage

Multi-tenant cannabis club management platform for German Anbauvereinigungen (cultivation associations) under CanG §19.

Overview

CannaManage handles member management, distribution tracking, and legal compliance for cannabis cultivation clubs in Germany. It enforces the strict quotas mandated by the Cannabis Act (CanG) — including monthly limits (50g adult / 30g under-21), daily limits (25g), and THC restrictions for minors.

Tech Stack

Component Technology
Runtime Java 21 (Temurin)
Framework Spring Boot 4.0.6
Security Spring Security 7.0 + JWT (JJWT 0.12.6)
ORM Hibernate 7 / JPA
Database PostgreSQL (prod), H2 (test)
Migrations Flyway 10
API Docs SpringDoc OpenAPI 2.8.6
Build Maven (multi-module)
Container Docker Compose (Postgres + app)

Project Structure

cannamanage/
├── cannamanage-domain/      # JPA entities, enums, TenantContext
├── cannamanage-service/     # Business logic, repositories, ComplianceService
├── cannamanage-api/         # Spring Boot app, controllers, security, DTOs
├── docs/
│   └── sprint-2/           # Sprint planning docs
└── docker-compose.yml       # Local dev environment

Modules

cannamanage-domain

JPA entities with multi-tenant isolation via @Filter("tenantFilter"):

  • Member — club members with age tracking
  • Distribution — cannabis distribution records
  • MonthlyQuota — per-member monthly usage tracking
  • Batch / Strain / StockMovement — inventory management
  • Club — association registration
  • User — authentication accounts

cannamanage-service

  • ComplianceService — CanG §19 quota enforcement (25 unit tests)
  • Repositories for all entities

cannamanage-api

  • Auth — JWT login + refresh token rotation (SHA-256 hashed)
  • Members — CRUD for association members
  • Distributions — compliance-gated distribution recording
  • Stock — batch and inventory management
  • Compliance — quota status API
  • Multi-tenant isolation via TenantFilterAspect (Hibernate @Filter activation)

API Endpoints

Method Path Auth Description
POST /api/v1/auth/login Public Login with email + password
POST /api/v1/auth/refresh Public Refresh token rotation
GET /api/v1/compliance/quota/{memberId} ADMIN, MEMBER Monthly quota status
GET/POST/PUT /api/v1/members/** ADMIN, MEMBER Member CRUD
POST /api/v1/distributions/** ADMIN, MEMBER Record distributions
GET/POST /api/v1/stock/** ADMIN Stock management

Swagger UI: http://localhost:8080/swagger-ui.html

Running Locally

# Start PostgreSQL
docker compose up -d

# Run the app
JAVA_HOME=/path/to/jdk-21 ./mvnw spring-boot:run -pl cannamanage-api

# Run all tests (H2 in-memory)
JAVA_HOME=/path/to/jdk-21 ./mvnw clean verify

Testing

  • 37 tests total — all green
  • 25 unit tests (ComplianceServiceTest) — quota enforcement logic
  • 7 integration tests (AuthControllerIntegrationTest) — full HTTP auth flow
  • 5 integration tests (ComplianceControllerIntegrationTest) — quota API with JWT

Integration tests use @SpringBootTest(webEnvironment = RANDOM_PORT) with H2 and Spring's RestClient.

Security Model

  • Stateless JWT — no session, no UserDetailsService
  • Roles: ADMIN (full access), MEMBER (self-service), STAFF (Sprint 3)
  • Multi-tenancy: Hibernate @Filter activated per-request via AOP aspect
  • Refresh tokens: SHA-256 hashed (Spring Security 7 enforces BCrypt 72-byte limit)
  • Token rotation on refresh — old tokens invalidated

Sprint History

Sprint Focus Status
1 Domain entities, ComplianceService, 25 tests Done
2 REST API, Spring Security, JWT, OpenAPI, integration tests Done
3 Member portal, STAFF role, real-time notifications 📋 Planned

License

Private — Patrick Plate

Reference in New Issue View Git Blame Copy Permalink
S
Description
CannaManage — B2B SaaS for German Cannabis Social Clubs (Anbauvereinigungen)
Readme 7.8 MiB
Languages
Java 61%
TypeScript 38.1%
JavaScript 0.4%
CSS 0.3%
Shell 0.2%