ante-erp-cli 1.11.71 → 1.11.73

package/bin/ante-cli.js

@@ -53,9 +53,9 @@ program
   .command('install')
   .description('Install ANTE ERP')
   .option('-d, --dir <path>', 'Installation directory', './ante-erp')
-  .option('--frontend-domain <url>', 'Frontend domain/URL (e.g., https://app.example.com or http://IP:8080)')
+  .option('--frontend-domain <url>', 'Frontend domain/URL (e.g., https://app.example.com or http://IP:8085)')
   .option('--api-domain <url>', 'API domain/URL (e.g., https://api.example.com or http://IP:3001)')
-  .option('--port <port>', 'Frontend port', '8080')
+  .option('--port <port>', 'Backend API port', '3001')
   .option('--preset <type>', 'Installation preset (minimal, standard, enterprise)', 'standard')
   .option('--no-interactive', 'Non-interactive mode with defaults')
   .option('--skip-checks', 'Skip system requirements check')

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "ante-erp-cli",
-  "version": "1.11.71",
+  "version": "1.11.73",
   "description": "Comprehensive CLI tool for managing ANTE ERP self-hosted installations",
   "type": "module",
   "bin": {

package/src/commands/install.js

@@ -8,6 +8,9 @@ import { mkdirSync, writeFileSync, existsSync, renameSync, readFileSync } from '
 import { join, dirname } from 'path';
 import { fileURLToPath } from 'url';
 import { runSystemChecks, checkAndInstallDocker } from '../utils/validation.js';
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = dirname(__filename);
 import { generateCredentials } from '../utils/password.js';
 import { saveInstallConfig, detectInstallation } from '../utils/config.js';
 import { pullImagesSilent, startServicesSilent, waitForServiceHealthy, runMigrations, downServices } from '../utils/docker.js';
@@ -17,9 +20,6 @@ import { detectPublicIPWithFeedback, buildURL } from '../utils/network.js';
 import { configureNginx, requiresNginx } from '../utils/nginx.js';
 import { applySysctlSettings } from '../utils/system-config.js';
 
-const __filename = fileURLToPath(import.meta.url);
-const __dirname = dirname(__filename);
-
 /**
  * Backup existing .env file if it exists
  * @param {string} envPath - Path to .env file
@@ -76,11 +76,9 @@ function showWelcome() {
  * Show success message
  */
 function showSuccess(installDir, credentials, config) {
-  const frontendUrl = config.frontendDomain || 'http://localhost:8080';
   const apiUrl = config.apiDomain || 'http://localhost:3001';
   const frontendCoreUrl = config.frontendCoreDomain || 'http://localhost:8085';
   const frontendCoreMobileUrl = config.frontendCoreMobileDomain || 'http://localhost:8086';
-  const backendCoreUrl = config.backendCoreDomain || 'http://localhost:4002';
   const gateAppUrl = config.gateAppDomain || 'http://localhost:8081';
   const guardianAppUrl = config.guardianAppDomain || 'http://localhost:8082';
   const facialWebUrl = config.facialAppDomain || 'http://localhost:8083';
@@ -89,33 +87,31 @@ function showSuccess(installDir, credentials, config) {
 
   let accessInfo = chalk.white('Access Information:') + '\n' +
     chalk.gray('━'.repeat(40)) + '\n' +
-    chalk.cyan('Frontend Main: ') + chalk.white(frontendUrl) + '\n' +
-    chalk.cyan('Frontend Core: ') + chalk.white(frontendCoreUrl) + '\n' +
-    chalk.cyan('Frontend Core Mobile: ') + chalk.white(frontendCoreMobileUrl) + '\n';
+    chalk.cyan('Frontend:        ') + chalk.white(frontendCoreUrl) + '\n' +
+    chalk.cyan('Frontend Mobile: ') + chalk.white(frontendCoreMobileUrl) + '\n';
 
   if (config.installGate) {
-    accessInfo += chalk.cyan('Gate App:      ') + chalk.white(gateAppUrl) + '\n';
+    accessInfo += chalk.cyan('Gate App:        ') + chalk.white(gateAppUrl) + '\n';
   }
 
   if (config.installGuardian) {
-    accessInfo += chalk.cyan('Guardian App:  ') + chalk.white(guardianAppUrl) + '\n';
+    accessInfo += chalk.cyan('Guardian App:    ') + chalk.white(guardianAppUrl) + '\n';
   }
 
   if (config.installFacial) {
-    accessInfo += chalk.cyan('Facial Web:    ') + chalk.white(facialWebUrl) + '\n';
+    accessInfo += chalk.cyan('Facial Web:      ') + chalk.white(facialWebUrl) + '\n';
   }
 
   if (config.installPos) {
-    accessInfo += chalk.cyan('POS App:       ') + chalk.white(posAppUrl) + '\n';
+    accessInfo += chalk.cyan('POS App:         ') + chalk.white(posAppUrl) + '\n';
   }
 
   if (config.installMlm) {
-    accessInfo += chalk.cyan('MLM App:       ') + chalk.white(mlmAppUrl) + '\n';
+    accessInfo += chalk.cyan('MLM App:         ') + chalk.white(mlmAppUrl) + '\n';
   }
 
-  accessInfo += chalk.cyan('Backend:       ') + chalk.white(apiUrl) + '\n' +
-    chalk.cyan('Backend Core:  ') + chalk.white(backendCoreUrl) + '\n' +
-    chalk.cyan('WebSocket:     ') + chalk.white(apiUrl) + '\n\n';
+  accessInfo += chalk.cyan('Backend API:     ') + chalk.white(apiUrl) + '\n' +
+    chalk.cyan('WebSocket:       ') + chalk.white(apiUrl) + '\n\n';
 
   console.log(
     boxen(
@@ -125,7 +121,7 @@ function showSuccess(installDir, credentials, config) {
       chalk.white(`Credentials saved to:\n${installDir}/installation-credentials.txt`) + '\n' +
       chalk.gray('Save this file securely!') + '\n\n' +
       chalk.white('Next steps:') + '\n' +
-      chalk.gray(`1. Open ${frontendUrl} in your browser`) + '\n' +
+      chalk.gray(`1. Open ${frontendCoreUrl} in your browser`) + '\n' +
       chalk.gray('2. Create your admin account') + '\n' +
       chalk.gray('3. Explore the documentation at https://docs.ante.ph') + '\n\n' +
       chalk.white('To change domain/IP later:') + '\n' +
@@ -272,7 +268,7 @@ export async function install(options) {
     const stepPullImages = ++currentStep;
     const stepStartServices = ++currentStep;
     const stepWaitServices = ++currentStep;
-    const stepInitDatabase = ++currentStep;
+    const stepInitSchema = ++currentStep;
     const stepRunMigrations = ++currentStep;
 
     // Start installation
@@ -322,10 +318,8 @@ export async function install(options) {
 
     // Build configuration (non-interactive, enterprise preset with all frontends)
     const host = detectedIP || 'localhost';
-    const frontendPort = parseInt(options.port) || 8080;
     const apiPort = 3001;
     const backendMlmPort = 4001;
-    const backendCorePort = 4002;
     const frontendCorePort = 8085;
     const frontendCoreMobilePort = 8086;
     const gateAppPort = 8081;
@@ -337,10 +331,8 @@ export async function install(options) {
     const config = {
       installDir: options.dir || './ante-erp',
       preset: 'enterprise', // Always install all features
-      frontendDomain: buildURL(host, frontendPort),
       apiDomain: buildURL(host, apiPort),
       mlmApiDomain: buildURL(host, backendMlmPort),
-      backendCoreDomain: buildURL(host, backendCorePort),
       frontendCoreDomain: buildURL(host, frontendCorePort),
       frontendCoreMobileDomain: buildURL(host, frontendCoreMobilePort),
       gateAppDomain: buildURL(host, gateAppPort),
@@ -348,10 +340,8 @@ export async function install(options) {
       facialAppDomain: buildURL(host, facialWebPort),
       posAppDomain: buildURL(host, posAppPort),
       mlmAppDomain: buildURL(host, mlmAppPort),
-      frontendPort,
       apiPort,
       backendMlmPort,
-      backendCorePort,
       frontendCorePort,
       frontendCoreMobilePort,
       gateAppPort,
@@ -365,7 +355,7 @@ export async function install(options) {
       installFacial: true,
       installPos: true,
       installMlm: true,
-      frontends: ['main', 'gate', 'guardian', 'facial', 'pos', 'mlm', 'core', 'core-mobile']
+      frontends: ['gate', 'guardian', 'facial', 'pos', 'mlm', 'core', 'core-mobile']
     };
 
     console.log(chalk.green(`✓ ${formatStepTitle(stepNetworkDetect, totalSteps, `Network detected: ${host}`)}\n`));
@@ -373,16 +363,14 @@ export async function install(options) {
     // Display configuration summary (compact)
     console.log(chalk.bold('📋 Installation Configuration:\n'));
     console.log(chalk.cyan('  Directory:'), chalk.white(config.installDir));
-    console.log(chalk.cyan('  Frontend Main:'), chalk.white(config.frontendDomain));
-    console.log(chalk.cyan('  Frontend Core:'), chalk.white(config.frontendCoreDomain));
-    console.log(chalk.cyan('  Frontend Core Mobile:'), chalk.white(config.frontendCoreMobileDomain));
+    console.log(chalk.cyan('  Frontend:'), chalk.white(config.frontendCoreDomain));
+    console.log(chalk.cyan('  Frontend Mobile:'), chalk.white(config.frontendCoreMobileDomain));
     console.log(chalk.cyan('  Gate App:'), chalk.white(config.gateAppDomain));
     console.log(chalk.cyan('  Guardian App:'), chalk.white(config.guardianAppDomain));
     console.log(chalk.cyan('  Facial Web:'), chalk.white(config.facialAppDomain));
     console.log(chalk.cyan('  POS App:'), chalk.white(config.posAppDomain));
     console.log(chalk.cyan('  MLM App:'), chalk.white(config.mlmAppDomain));
     console.log(chalk.cyan('  API:'), chalk.white(config.apiDomain));
-    console.log(chalk.cyan('  Backend Core:'), chalk.white(config.backendCoreDomain));
     console.log(chalk.cyan('  MLM API:'), chalk.white(config.mlmApiDomain));
     console.log();
 
@@ -457,10 +445,8 @@ export async function install(options) {
         title: formatStepTitle(stepGenerateConfig, totalSteps, 'Generating configuration files'),
         task: () => {
           const dockerCompose = generateDockerCompose({
-            frontendPort: config.frontendPort,
             backendPort: config.apiPort,
             backendMlmPort: config.backendMlmPort,
-            backendCorePort: config.backendCorePort,
             frontendCorePort: config.frontendCorePort,
             frontendCoreMobilePort: config.frontendCoreMobilePort,
             gateAppPort: config.gateAppPort,
@@ -468,7 +454,6 @@ export async function install(options) {
             facialWebPort: config.facialWebPort,
             posAppPort: config.posAppPort,
             mlmAppPort: config.mlmAppPort,
-            installMain: true,
             installGate: config.installGate,
             installGuardian: config.installGuardian,
             installFacial: config.installFacial,
@@ -478,13 +463,11 @@ export async function install(options) {
           });
 
           const envContent = generateEnv(credentials, {
-            frontendUrl: config.frontendDomain,
+            frontendUrl: config.frontendCoreDomain,
             apiUrl: config.apiDomain,
             socketUrl: config.apiDomain,
-            frontendPort: config.frontendPort,
             backendPort: config.apiPort,
             backendMlmPort: config.backendMlmPort,
-            backendCorePort: config.backendCorePort,
             frontendCorePort: config.frontendCorePort,
             frontendCoreMobilePort: config.frontendCoreMobilePort,
             gateAppPort: config.gateAppPort,
@@ -500,7 +483,6 @@ export async function install(options) {
             mlmApiUrl: config.mlmApiDomain,
             frontendCoreUrl: config.frontendCoreDomain,
             frontendCoreMobileUrl: config.frontendCoreMobileDomain,
-            backendCoreUrl: config.backendCoreDomain,
             companyId: config.companyId,
             installGate: config.installGate,
             installGuardian: config.installGuardian,
@@ -532,7 +514,7 @@ Encryption Key:    ${credentials.encryptionKey}
 
 Access Information:
 ━━━━━━━━━━━━━━━━━━━
-Frontend:  ${config.frontendDomain}
+Frontend:  ${config.frontendCoreDomain}
 Backend:   ${config.apiDomain}
 WebSocket: ${config.apiDomain}
 
@@ -581,7 +563,7 @@ Support: support@ante.ph
         }
       },
       {
-        title: formatStepTitle(stepInitDatabase, totalSteps, 'Initializing database'),
+        title: formatStepTitle(stepInitSchema, totalSteps, 'Initializing database schema'),
         task: async () => {
           const composeFile = join(config.installDir, 'docker-compose.yml');
           const schemaFile = join(__dirname, '../templates/init-schema.sql');
@@ -589,7 +571,7 @@ Support: support@ante.ph
           try {
             const schemaSQL = readFileSync(schemaFile, 'utf8');
 
-            // Execute schema SQL in postgres container
+            // Execute schema SQL in postgres container to create base tables
             await execa('docker', [
               'compose',
               '-f', composeFile,
@@ -604,23 +586,8 @@ Support: support@ante.ph
               stdout: 'pipe',
               stderr: 'pipe'
             });
-
-            // Run production seed command
-            await execa('docker', [
-              'compose',
-              '-f', composeFile,
-              'exec',
-              '-T',
-              'backend',
-              'npm',
-              'run',
-              'seed:prod'
-            ], {
-              stdout: 'pipe',
-              stderr: 'pipe'
-            });
           } catch (error) {
-            throw new Error(`Database initialization failed: ${error.message}`);
+            throw new Error(`Schema initialization failed: ${error.message}`);
           }
         }
       },
@@ -634,7 +601,7 @@ Support: support@ante.ph
             throw new Error(`Migration failed:\n${result.output}`);
           }
         }
-      }
+      },
     ], {
       renderer: 'default',
       rendererOptions: {
@@ -651,12 +618,12 @@ Support: support@ante.ph
     await tasks.run();
 
     // Configure NGINX if needed (silent)
-    if (requiresNginx(config.frontendDomain, config.apiDomain)) {
+    if (requiresNginx(config.frontendCoreDomain, config.apiDomain)) {
       try {
         await configureNginx({
-          frontendDomain: config.frontendDomain,
+          frontendDomain: config.frontendCoreDomain,
           apiDomain: config.apiDomain,
-          frontendPort: config.frontendPort,
+          frontendPort: config.frontendCorePort,
           apiPort: config.apiPort
         });
       } catch (error) {

package/src/commands/regenerate-compose.js

@@ -32,7 +32,6 @@ function detectInstalledApps(composeFile) {
   try {
     const composeContent = readFileSync(composeFile, 'utf8');
     return {
-      hasMain: composeContent.includes('frontend:') || composeContent.includes('container_name: ante-frontend'),
       hasGateApp: composeContent.includes('gate-app:') || composeContent.includes('container_name: ante-gate-app'),
       hasGuardianApp: composeContent.includes('guardian-app:') || composeContent.includes('container_name: ante-guardian-app'),
       hasFacialWeb: composeContent.includes('facial-web:') || composeContent.includes('container_name: ante-facial-web'),
@@ -40,7 +39,7 @@ function detectInstalledApps(composeFile) {
       hasMlmApp: composeContent.includes('mlm-app:') || composeContent.includes('container_name: ante-mlm')
     };
   } catch {
-    return { hasMain: true, hasGateApp: false, hasGuardianApp: false, hasFacialWeb: false, hasPosApp: false, hasMlmApp: false };
+    return { hasGateApp: false, hasGuardianApp: false, hasFacialWeb: false, hasPosApp: false, hasMlmApp: false };
   }
 }
 
@@ -73,7 +72,6 @@ export async function regenerateCompose() {
     // Detect installed apps
     const installed = detectInstalledApps(composeFile);
     console.log(chalk.cyan('Detected Configuration:'));
-    console.log(chalk.gray(`  Frontend Main:  ${installed.hasMain ? '✓ Installed' : '✗ Not installed'}`));
     console.log(chalk.gray(`  Backend Core:   ✓ Always Included`));
     console.log(chalk.gray(`  Frontend Core:  ✓ Always Included`));
     console.log(chalk.gray(`  Frontend Core Mobile: ✓ Always Included`));
@@ -87,7 +85,7 @@ export async function regenerateCompose() {
     const envConfig = parseEnvFile(envFile);
 
     // Extract port configuration
-    const frontendPort = parseInt(envConfig.FRONTEND_PORT) || 8080;
+    const frontendPort = parseInt(envConfig.FRONTEND_PORT) || 8085;
     const backendPort = parseInt(envConfig.BACKEND_PORT) || 3001;
     const backendMlmPort = parseInt(envConfig.BACKEND_MLM_PORT) || 4001;
     const backendCorePort = parseInt(envConfig.BACKEND_CORE_PORT) || 4002;
@@ -146,7 +144,6 @@ export async function regenerateCompose() {
       facialWebPort,
       posAppPort,
       mlmAppPort,
-      installMain: installed.hasMain,
       installGate: installed.hasGateApp,
       installGuardian: installed.hasGuardianApp,
       installFacial: installed.hasFacialWeb,

package/src/commands/set-domain.js

@@ -251,7 +251,7 @@ export async function setDomain(options) {
             type: 'number',
             name: 'frontendPort',
             message: 'Frontend port:',
-            default: 8080
+            default: 8085
           }
         ];
 
@@ -322,7 +322,7 @@ export async function setDomain(options) {
             type: 'number',
             name: 'frontendPort',
             message: 'Frontend port:',
-            default: 8080
+            default: 8085
           }
         ];
 
@@ -402,7 +402,7 @@ export async function setDomain(options) {
             type: 'number',
             name: 'frontendPort',
             message: 'Frontend port:',
-            default: 8080
+            default: 8085
           }
         ];
 
@@ -549,8 +549,8 @@ export async function setDomain(options) {
             {
               type: 'input',
               name: 'frontendUrl',
-              message: 'Frontend URL:\n  Examples: https://staging.ante.ph or http://143.198.91.153:8080\n  Enter URL',
-              default: currentFrontendUrl || 'http://localhost:8080',
+              message: 'Frontend URL:\n  Examples: https://staging.ante.ph or http://143.198.91.153:8085\n  Enter URL',
+              default: currentFrontendUrl || 'http://localhost:8085',
               validate: validateUrl
             }
           ];
@@ -856,7 +856,7 @@ export async function setDomain(options) {
         const nginxConfig = {
           frontendDomain: frontendUrl,
           apiDomain: apiUrl,
-          frontendPort: 8080,
+          frontendPort: 8085,
           apiPort: 3001,
           cloudflareSsl
         };
@@ -1092,7 +1092,7 @@ export async function setDomain(options) {
               const sslNginxConfig = {
                 frontendDomain: frontendUrl,
                 apiDomain: apiUrl,
-                frontendPort: 8080,
+                frontendPort: 8085,
                 apiPort: 3001,
                 domainsWithCerts: successfulDomains
               };

package/src/commands/ssl-enable.js

@@ -272,7 +272,7 @@ export async function sslEnable(options) {
       domains.push({
         name: 'Frontend',
         domain: frontendDomain,
-        port: frontendUrl.match(/:(\d+)/) ? frontendUrl.match(/:(\d+)/)[1] : 8080,
+        port: frontendUrl.match(/:(\d+)/) ? frontendUrl.match(/:(\d+)/)[1] : 8085,
         url: frontendUrl
       });
     }
@@ -507,7 +507,7 @@ export async function sslEnable(options) {
 
     try {
       // Extract ports for all services
-      const frontendPort = frontendUrl.match(/:(\d+)/) ? parseInt(frontendUrl.match(/:(\d+)/)[1]) : 8080;
+      const frontendPort = frontendUrl.match(/:(\d+)/) ? parseInt(frontendUrl.match(/:(\d+)/)[1]) : 8085;
       const apiPort = apiUrl.match(/:(\d+)/) ? parseInt(apiUrl.match(/:(\d+)/)[1]) : 3001;
 
       const sslConfig = {

package/src/commands/update.js

@@ -79,7 +79,7 @@ function updateDockerCompose(composeFile, envFile, newServices) {
 
   // Generate new docker-compose.yml with all services
   const newCompose = generateDockerCompose({
-    frontendPort: parseInt(envConfig.FRONTEND_PORT) || 8080,
+    frontendPort: parseInt(envConfig.FRONTEND_PORT) || 8085,
     backendPort: parseInt(envConfig.BACKEND_PORT) || 3001,
     backendMlmPort: parseInt(envConfig.BACKEND_MLM_PORT) || 4001,
     backendCorePort: parseInt(envConfig.BACKEND_CORE_PORT) || 4002,
@@ -90,7 +90,6 @@ function updateDockerCompose(composeFile, envFile, newServices) {
     facialWebPort: parseInt(envConfig.FACIAL_WEB_PORT) || 8083,
     posAppPort: parseInt(envConfig.POS_APP_PORT) || 8084,
     mlmAppPort: parseInt(envConfig.MLM_APP_PORT) || 9005,
-    installMain: true,
     installGate: currentInstalled.hasGateApp || newServices.gateApp,
     installGuardian: currentInstalled.hasGuardianApp || newServices.guardianApp,
     installFacial: currentInstalled.hasFacialWeb || newServices.facialWeb,
@@ -347,7 +346,7 @@ function refreshDockerCompose(composeFile, envFile) {
 
   // Generate new docker-compose.yml with existing services only
   const newCompose = generateDockerCompose({
-    frontendPort: parseInt(envConfig.FRONTEND_PORT) || 8080,
+    frontendPort: parseInt(envConfig.FRONTEND_PORT) || 8085,
     backendPort: parseInt(envConfig.BACKEND_PORT) || 3001,
     backendMlmPort: parseInt(envConfig.BACKEND_MLM_PORT) || 4001,
     backendCorePort: parseInt(envConfig.BACKEND_CORE_PORT) || 4002,
@@ -358,7 +357,6 @@ function refreshDockerCompose(composeFile, envFile) {
     facialWebPort: parseInt(envConfig.FACIAL_WEB_PORT) || 8083,
     posAppPort: parseInt(envConfig.POS_APP_PORT) || 8084,
     mlmAppPort: parseInt(envConfig.MLM_APP_PORT) || 9005,
-    installMain: true,
     installGate: currentInstalled.hasGateApp,
     installGuardian: currentInstalled.hasGuardianApp,
     installFacial: currentInstalled.hasFacialWeb,
@@ -401,7 +399,7 @@ function getRequiredPorts(composeFile, envFile) {
 
   // Core services - always needed
   ports.push(parseInt(envConfig.BACKEND_PORT) || 3001);  // Backend
-  ports.push(parseInt(envConfig.FRONTEND_PORT) || 8080); // Frontend
+  ports.push(parseInt(envConfig.FRONTEND_PORT) || 8085); // Frontend
   ports.push(parseInt(envConfig.BACKEND_CORE_PORT) || 4002); // Backend Core (always included)
   ports.push(parseInt(envConfig.FRONTEND_CORE_PORT) || 8085); // Frontend Core (always included)
   ports.push(parseInt(envConfig.FRONTEND_CORE_MOBILE_PORT) || 8086); // Frontend Core Mobile (always included)

package/src/templates/docker-compose.yml.js

@@ -5,10 +5,8 @@
  */
 export function generateDockerCompose(options = {}) {
   const {
-    frontendPort = 8080,
     backendPort = 3001,
     backendMlmPort = 4001,
-    backendCorePort = 4002,
     frontendCorePort = 8085,
     frontendCoreMobilePort = 8086,
     gateAppPort = 8081,
@@ -27,8 +25,6 @@ export function generateDockerCompose(options = {}) {
   return `# ANTE ERP - Docker Compose Configuration
 # Generated by ANTE CLI
 
-version: '3.8'
-
 services:
   # PostgreSQL Database
   postgres:
@@ -98,22 +94,20 @@ services:
     networks:
       - ante-network
     healthcheck:
-      test: |
-        echo 'db.runCommand("ping").ok' | 
-        mongosh localhost:27017/test --quiet --username ante --password \${MONGO_PASSWORD} --authenticationDatabase admin
+      test: ["CMD", "mongosh", "--eval", "db.adminCommand('ping')", "--quiet", "localhost:27017/test", "--username", "ante", "--password", "\${MONGO_PASSWORD}", "--authenticationDatabase", "admin"]
       interval: 10s
-      timeout: 5s
-      retries: 5
-      start_period: 40s
+      timeout: 10s
+      retries: 10
+      start_period: 30s
     logging:
       driver: "json-file"
       options:
         max-size: "10m"
         max-file: "3"
 
-  # ANTE Backend
+  # ANTE Backend (Core)
   backend:
-    image: ghcr.io/gtplusnet/ante-self-hosted-backend:latest
+    image: ghcr.io/gtplusnet/ante-self-hosted-backend-core:latest
     container_name: ante-backend
     restart: unless-stopped
     depends_on:
@@ -125,7 +119,7 @@ services:
         condition: service_healthy
     environment:
       NODE_ENV: production
-      PORT: 3001
+      BACKEND_CORE_PORT: 4002
       DATABASE_URL: postgresql://ante:\${DB_PASSWORD}@postgres:5432/ante_db?schema=public&connection_limit=10
       DIRECT_URL: postgresql://ante:\${DB_PASSWORD}@postgres:5432/ante_db?schema=public
       REDIS_HOST: redis
@@ -141,7 +135,7 @@ services:
       CUSTOMER_APP_JWT_SECRET: \${CUSTOMER_APP_JWT_SECRET}
       CUSTOMER_APP_JWT_EXPIRY: \${CUSTOMER_APP_JWT_EXPIRY:-1y}
       CUSTOMER_APP_REFRESH_TOKEN_EXPIRY: \${CUSTOMER_APP_REFRESH_TOKEN_EXPIRY:-1y}
-      FRONTEND_URL: \${FRONTEND_URL:-http://localhost:${frontendPort}}
+      FRONTEND_URL: \${FRONTEND_URL:-http://localhost:${frontendCorePort}}
       API_URL: \${API_URL:-http://localhost:${backendPort}}
       SOCKET_URL: \${SOCKET_URL:-http://localhost:${backendPort}}
       SMTP_HOST: \${SMTP_HOST:-}
@@ -154,16 +148,16 @@ services:
       UPLOAD_MAX_SIZE: \${UPLOAD_MAX_SIZE:-10485760}
       TZ: \${TZ:-Asia/Manila}
     ports:
-      - "${backendPort}:3001"
+      - "${backendPort}:4002"
     volumes:
       - backend_uploads:/app/uploads
     networks:
       - ante-network
     healthcheck:
-      test: ["CMD", "curl", "-f", "http://localhost:3001/health"]
+      test: ["CMD", "curl", "-f", "http://localhost:4002/health"]
       interval: 30s
       timeout: 10s
-      retries: 3
+      retries: 5
       start_period: 60s
     logging:
       driver: "json-file"
@@ -171,77 +165,16 @@ services:
         max-size: "50m"
         max-file: "5"
 
-  # ANTE Frontend Main
-  frontend:
-    image: ghcr.io/gtplusnet/ante-self-hosted-frontend-main:latest
-    container_name: ante-frontend
-    restart: unless-stopped
-    depends_on:
-      backend:
-        condition: service_healthy
-    environment:
-      - API_URL=\${API_URL:-http://localhost:${backendPort}}
-      - SOCKET_URL=\${SOCKET_URL:-http://localhost:${backendPort}}
-    ports:
-      - "${frontendPort}:8080"
-    networks:
-      - ante-network
-    healthcheck:
-      test: ["CMD", "curl", "-f", "http://localhost:8080"]
-      interval: 30s
-      timeout: 10s
-      retries: 3
-    logging:
-      driver: "json-file"
-      options:
-        max-size: "10m"
-        max-file: "3"
-
-  # ANTE Backend Core - Express.js API for Frontend Core
-  backend-core:
-    image: ghcr.io/gtplusnet/ante-self-hosted-backend-core:latest
-    container_name: ante-backend-core
-    restart: unless-stopped
-    depends_on:
-      backend:
-        condition: service_healthy
-    environment:
-      NODE_ENV: production
-      BACKEND_CORE_PORT: 4002
-      DATABASE_URL: postgresql://ante:\${DB_PASSWORD}@postgres:5432/ante_db?schema=public&connection_limit=10
-      DIRECT_URL: postgresql://ante:\${DB_PASSWORD}@postgres:5432/ante_db?schema=public
-      REDIS_HOST: redis
-      REDIS_PORT: 6379
-      REDIS_PASSWORD: \${REDIS_PASSWORD}
-      JWT_SECRET: \${JWT_SECRET}
-      ENCRYPTION_KEY: \${ENCRYPTION_KEY}
-      TZ: \${TZ:-Asia/Manila}
-    ports:
-      - "${backendCorePort}:4002"
-    networks:
-      - ante-network
-    healthcheck:
-      test: ["CMD", "curl", "-f", "http://localhost:4002/health"]
-      interval: 30s
-      timeout: 10s
-      retries: 3
-      start_period: 30s
-    logging:
-      driver: "json-file"
-      options:
-        max-size: "10m"
-        max-file: "3"
-
   # ANTE Frontend Core - React Application
   frontend-core:
     image: ghcr.io/gtplusnet/ante-self-hosted-frontend-core:latest
     container_name: ante-frontend-core
     restart: unless-stopped
     depends_on:
-      backend-core:
+      backend:
         condition: service_healthy
     environment:
-      - VITE_API_URL=\${BACKEND_CORE_URL:-http://localhost:${backendCorePort}}
+      - VITE_API_URL=\${API_URL:-http://localhost:${backendPort}}
       - VITE_APP_NAME=ANTE Frontend Core
       - VITE_APP_VERSION=\${VERSION:-1.0.0}
     ports:
@@ -266,10 +199,10 @@ services:
     container_name: ante-frontend-core-mobile
     restart: unless-stopped
     depends_on:
-      backend-core:
+      backend:
         condition: service_healthy
     environment:
-      - VITE_API_URL=\${BACKEND_CORE_URL:-http://localhost:${backendCorePort}}
+      - VITE_API_URL=\${API_URL:-http://localhost:${backendPort}}
       - VITE_APP_NAME=ANTE Frontend Core Mobile
       - VITE_APP_VERSION=\${VERSION:-1.0.0}
     ports:
@@ -306,13 +239,12 @@ ${installGate ? `
       - "${gateAppPort}:3000"
     networks:
       - ante-network
-    # Security hardening
     security_opt:
       - no-new-privileges:true
     tmpfs:
       - /tmp:noexec,nosuid,size=100m
     healthcheck:
-      test: ["CMD", "curl", "-f", "http://localhost:3000"]
+      test: ["CMD", "wget", "--no-verbose", "--tries=1", "--spider", "http://localhost:3000/"]
       interval: 30s
       timeout: 10s
       retries: 3
@@ -339,13 +271,12 @@ ${installGate ? `
       - "${guardianAppPort}:9003"
     networks:
       - ante-network
-    # Security hardening
     security_opt:
       - no-new-privileges:true
     tmpfs:
       - /tmp:noexec,nosuid,size=100m
     healthcheck:
-      test: ["CMD", "curl", "-f", "http://localhost:9003"]
+      test: ["CMD", "wget", "--no-verbose", "--tries=1", "--spider", "http://localhost:9003/"]
       interval: 30s
       timeout: 10s
       retries: 3
@@ -372,7 +303,7 @@ ${installGate ? `
     networks:
       - ante-network
     healthcheck:
-      test: ["CMD", "curl", "-f", "http://localhost:5173"]
+      test: ["CMD", "wget", "--no-verbose", "--tries=1", "--spider", "http://localhost:5173/"]
       interval: 30s
       timeout: 10s
       retries: 3
@@ -491,4 +422,3 @@ networks:
     driver: bridge
 `;
 }
-

package/src/templates/env.js

@@ -6,13 +6,11 @@
  */
 export function generateEnv(credentials, options = {}) {
   const {
-    frontendUrl = 'http://localhost:8080',
+    frontendUrl = 'http://localhost:8085',
     apiUrl = 'http://localhost:3001',
-    socketUrl = 'http://localhost:3001', // WebSocket uses same port as backend
-    frontendPort = 8080,
+    socketUrl = 'http://localhost:3001',
     backendPort = 3001,
     backendMlmPort = 4001,
-    backendCorePort = 4002,
     frontendCorePort = 8085,
     frontendCoreMobilePort = 8086,
     gateAppPort = 8081,
@@ -28,7 +26,6 @@ export function generateEnv(credentials, options = {}) {
     mlmApiUrl = 'http://localhost:4001',
     frontendCoreUrl = 'http://localhost:8085',
     frontendCoreMobileUrl = 'http://localhost:8086',
-    backendCoreUrl = 'http://localhost:4002',
     companyId = 1,
     installGate = false,
     installGuardian = false,
@@ -78,9 +75,7 @@ SOCKET_URL=${socketUrl}
 # ------------------------------------------------------------------------------
 # PORT CONFIGURATION
 # ------------------------------------------------------------------------------
-FRONTEND_PORT=${frontendPort}
 BACKEND_PORT=${backendPort}
-BACKEND_CORE_PORT=${backendCorePort}
 FRONTEND_CORE_PORT=${frontendCorePort}
 FRONTEND_CORE_MOBILE_PORT=${frontendCoreMobilePort}
 ${installMlm ? `BACKEND_MLM_PORT=${backendMlmPort}` : '# BACKEND_MLM_PORT=4001'}
@@ -89,18 +84,15 @@ ${installGuardian ? `GUARDIAN_APP_PORT=${guardianAppPort}` : '# GUARDIAN_APP_POR
 ${installFacial ? `FACIAL_WEB_PORT=${facialWebPort}` : '# FACIAL_WEB_PORT=8083'}
 ${installPos ? `POS_APP_PORT=${posAppPort}` : '# POS_APP_PORT=8084'}
 ${installMlm ? `MLM_APP_PORT=${mlmAppPort}` : '# MLM_APP_PORT=9005'}
-# Note: WebSocket runs on the same port as backend (BACKEND_PORT)
 
 # ------------------------------------------------------------------------------
-# CORE SERVICES CONFIGURATION (Always Included)
+# FRONTEND CONFIGURATION
 # ------------------------------------------------------------------------------
 FRONTEND_CORE_URL=${frontendCoreUrl}
 FRONTEND_CORE_MOBILE_URL=${frontendCoreMobileUrl}
-BACKEND_CORE_URL=${backendCoreUrl}
-CORE_API_URL=${backendCoreUrl}
 
 ${(installGate || installGuardian || installFacial || installPos || installMlm) ? `# ------------------------------------------------------------------------------
-# FRONTEND APP CONFIGURATION
+# OPTIONAL APP CONFIGURATION
 # ------------------------------------------------------------------------------
 COMPANY_ID=${companyId}
 ${installGate ? `GATE_APP_URL=${gateAppUrl}` : '# GATE_APP_URL=http://localhost:8081'}
@@ -149,4 +141,3 @@ AUTO_MIGRATE=true
 # ==============================================================================
 `;
 }
-

package/src/templates/init-schema.sql

@@ -17819,21 +17819,21 @@ ALTER TABLE public."UserLevel" ENABLE ROW LEVEL SECURITY;
 -- Name: CalendarCategory Users can create calendar categories for their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can create calendar categories for their company" ON public."CalendarCategory" FOR INSERT TO authenticated WITH CHECK (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND ("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)) AND ("isSystem" = false)));
+CREATE POLICY "Users can create calendar categories for their company" ON public."CalendarCategory" FOR INSERT TO authenticated WITH CHECK (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND ("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)) AND ("isSystem" = false)));
 
 
 --
 -- Name: CalendarEvent Users can create calendar events for their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can create calendar events for their company" ON public."CalendarEvent" FOR INSERT TO authenticated WITH CHECK (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND ("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)) AND ("creatorId" = (auth.jwt() ->> 'sub'::text))));
+CREATE POLICY "Users can create calendar events for their company" ON public."CalendarEvent" FOR INSERT TO authenticated WITH CHECK (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND ("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)) AND ("creatorId" = (auth.jwt() ->> 'sub'::text))));
 
 
 --
 -- Name: CalendarEventAttachment Users can create event attachments for their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can create event attachments for their company" ON public."CalendarEventAttachment" FOR INSERT TO authenticated WITH CHECK (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can create event attachments for their company" ON public."CalendarEventAttachment" FOR INSERT TO authenticated WITH CHECK (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventAttachment"."eventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -17842,7 +17842,7 @@ CREATE POLICY "Users can create event attachments for their company" ON public."
 -- Name: CalendarEventAttendee Users can create event attendees for their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can create event attendees for their company" ON public."CalendarEventAttendee" FOR INSERT TO authenticated WITH CHECK (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can create event attendees for their company" ON public."CalendarEventAttendee" FOR INSERT TO authenticated WITH CHECK (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventAttendee"."eventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -17851,7 +17851,7 @@ CREATE POLICY "Users can create event attendees for their company" ON public."Ca
 -- Name: CalendarEventInstance Users can create event instances for their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can create event instances for their company" ON public."CalendarEventInstance" FOR INSERT TO authenticated WITH CHECK (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can create event instances for their company" ON public."CalendarEventInstance" FOR INSERT TO authenticated WITH CHECK (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventInstance"."parentEventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -17860,7 +17860,7 @@ CREATE POLICY "Users can create event instances for their company" ON public."Ca
 -- Name: CalendarEventRecurrence Users can create event recurrence for their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can create event recurrence for their company" ON public."CalendarEventRecurrence" FOR INSERT TO authenticated WITH CHECK (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can create event recurrence for their company" ON public."CalendarEventRecurrence" FOR INSERT TO authenticated WITH CHECK (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventRecurrence"."eventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -17869,7 +17869,7 @@ CREATE POLICY "Users can create event recurrence for their company" ON public."C
 -- Name: CalendarEventReminder Users can create event reminders for their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can create event reminders for their company" ON public."CalendarEventReminder" FOR INSERT TO authenticated WITH CHECK (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can create event reminders for their company" ON public."CalendarEventReminder" FOR INSERT TO authenticated WITH CHECK (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventReminder"."eventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -17878,21 +17878,21 @@ CREATE POLICY "Users can create event reminders for their company" ON public."Ca
 -- Name: CalendarCategory Users can delete calendar categories from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can delete calendar categories from their company" ON public."CalendarCategory" FOR DELETE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND ("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)) AND ("isSystem" = false)));
+CREATE POLICY "Users can delete calendar categories from their company" ON public."CalendarCategory" FOR DELETE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND ("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)) AND ("isSystem" = false)));
 
 
 --
 -- Name: CalendarEvent Users can delete calendar events from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can delete calendar events from their company" ON public."CalendarEvent" FOR DELETE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND ("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)) AND ("creatorId" = (auth.jwt() ->> 'sub'::text))));
+CREATE POLICY "Users can delete calendar events from their company" ON public."CalendarEvent" FOR DELETE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND ("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)) AND ("creatorId" = (auth.jwt() ->> 'sub'::text))));
 
 
 --
 -- Name: CalendarEventAttachment Users can delete event attachments from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can delete event attachments from their company" ON public."CalendarEventAttachment" FOR DELETE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can delete event attachments from their company" ON public."CalendarEventAttachment" FOR DELETE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventAttachment"."eventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -17901,7 +17901,7 @@ CREATE POLICY "Users can delete event attachments from their company" ON public.
 -- Name: CalendarEventAttendee Users can delete event attendees from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can delete event attendees from their company" ON public."CalendarEventAttendee" FOR DELETE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can delete event attendees from their company" ON public."CalendarEventAttendee" FOR DELETE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventAttendee"."eventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -17910,7 +17910,7 @@ CREATE POLICY "Users can delete event attendees from their company" ON public."C
 -- Name: CalendarEventInstance Users can delete event instances from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can delete event instances from their company" ON public."CalendarEventInstance" FOR DELETE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can delete event instances from their company" ON public."CalendarEventInstance" FOR DELETE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventInstance"."parentEventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -17919,7 +17919,7 @@ CREATE POLICY "Users can delete event instances from their company" ON public."C
 -- Name: CalendarEventRecurrence Users can delete event recurrence from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can delete event recurrence from their company" ON public."CalendarEventRecurrence" FOR DELETE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can delete event recurrence from their company" ON public."CalendarEventRecurrence" FOR DELETE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventRecurrence"."eventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -17928,7 +17928,7 @@ CREATE POLICY "Users can delete event recurrence from their company" ON public."
 -- Name: CalendarEventReminder Users can delete event reminders from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can delete event reminders from their company" ON public."CalendarEventReminder" FOR DELETE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can delete event reminders from their company" ON public."CalendarEventReminder" FOR DELETE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventReminder"."eventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -17937,21 +17937,21 @@ CREATE POLICY "Users can delete event reminders from their company" ON public."C
 -- Name: CalendarCategory Users can update calendar categories from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can update calendar categories from their company" ON public."CalendarCategory" FOR UPDATE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND ("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)) AND ("isSystem" = false))) WITH CHECK ((("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)) AND ("isSystem" = false)));
+CREATE POLICY "Users can update calendar categories from their company" ON public."CalendarCategory" FOR UPDATE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND ("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)) AND ("isSystem" = false))) WITH CHECK ((("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)) AND ("isSystem" = false)));
 
 
 --
 -- Name: CalendarEvent Users can update calendar events from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can update calendar events from their company" ON public."CalendarEvent" FOR UPDATE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND ("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))) WITH CHECK (("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)));
+CREATE POLICY "Users can update calendar events from their company" ON public."CalendarEvent" FOR UPDATE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND ("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))) WITH CHECK (("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)));
 
 
 --
 -- Name: CalendarEventAttachment Users can update event attachments from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can update event attachments from their company" ON public."CalendarEventAttachment" FOR UPDATE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can update event attachments from their company" ON public."CalendarEventAttachment" FOR UPDATE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventAttachment"."eventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -17960,7 +17960,7 @@ CREATE POLICY "Users can update event attachments from their company" ON public.
 -- Name: CalendarEventAttendee Users can update event attendees from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can update event attendees from their company" ON public."CalendarEventAttendee" FOR UPDATE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can update event attendees from their company" ON public."CalendarEventAttendee" FOR UPDATE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventAttendee"."eventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -17969,7 +17969,7 @@ CREATE POLICY "Users can update event attendees from their company" ON public."C
 -- Name: CalendarEventInstance Users can update event instances from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can update event instances from their company" ON public."CalendarEventInstance" FOR UPDATE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can update event instances from their company" ON public."CalendarEventInstance" FOR UPDATE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventInstance"."parentEventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -17978,7 +17978,7 @@ CREATE POLICY "Users can update event instances from their company" ON public."C
 -- Name: CalendarEventRecurrence Users can update event recurrence from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can update event recurrence from their company" ON public."CalendarEventRecurrence" FOR UPDATE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can update event recurrence from their company" ON public."CalendarEventRecurrence" FOR UPDATE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventRecurrence"."eventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -17987,7 +17987,7 @@ CREATE POLICY "Users can update event recurrence from their company" ON public."
 -- Name: CalendarEventReminder Users can update event reminders from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can update event reminders from their company" ON public."CalendarEventReminder" FOR UPDATE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can update event reminders from their company" ON public."CalendarEventReminder" FOR UPDATE TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventReminder"."eventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -17996,21 +17996,21 @@ CREATE POLICY "Users can update event reminders from their company" ON public."C
 -- Name: CalendarCategory Users can view calendar categories from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can view calendar categories from their company" ON public."CalendarCategory" FOR SELECT TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND ("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0))));
+CREATE POLICY "Users can view calendar categories from their company" ON public."CalendarCategory" FOR SELECT TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND ("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0))));
 
 
 --
 -- Name: CalendarEvent Users can view calendar events from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can view calendar events from their company" ON public."CalendarEvent" FOR SELECT TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND ("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0))));
+CREATE POLICY "Users can view calendar events from their company" ON public."CalendarEvent" FOR SELECT TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND ("companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0))));
 
 
 --
 -- Name: CalendarEventAttachment Users can view event attachments from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can view event attachments from their company" ON public."CalendarEventAttachment" FOR SELECT TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can view event attachments from their company" ON public."CalendarEventAttachment" FOR SELECT TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventAttachment"."eventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -18019,7 +18019,7 @@ CREATE POLICY "Users can view event attachments from their company" ON public."C
 -- Name: CalendarEventAttendee Users can view event attendees from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can view event attendees from their company" ON public."CalendarEventAttendee" FOR SELECT TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can view event attendees from their company" ON public."CalendarEventAttendee" FOR SELECT TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventAttendee"."eventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -18028,7 +18028,7 @@ CREATE POLICY "Users can view event attendees from their company" ON public."Cal
 -- Name: CalendarEventInstance Users can view event instances from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can view event instances from their company" ON public."CalendarEventInstance" FOR SELECT TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can view event instances from their company" ON public."CalendarEventInstance" FOR SELECT TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventInstance"."parentEventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -18037,7 +18037,7 @@ CREATE POLICY "Users can view event instances from their company" ON public."Cal
 -- Name: CalendarEventRecurrence Users can view event recurrence from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can view event recurrence from their company" ON public."CalendarEventRecurrence" FOR SELECT TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can view event recurrence from their company" ON public."CalendarEventRecurrence" FOR SELECT TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventRecurrence"."eventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 
@@ -18046,7 +18046,7 @@ CREATE POLICY "Users can view event recurrence from their company" ON public."Ca
 -- Name: CalendarEventReminder Users can view event reminders from their company; Type: POLICY; Schema: public; Owner: postgres
 --
 
-CREATE POLICY "Users can view event reminders from their company" ON public."CalendarEventReminder" FOR SELECT TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-main'::text) AND (EXISTS ( SELECT 1
+CREATE POLICY "Users can view event reminders from their company" ON public."CalendarEventReminder" FOR SELECT TO authenticated USING (((((current_setting('request.headers'::text, true))::json ->> 'x-source'::text) = 'frontend-core'::text) AND (EXISTS ( SELECT 1
    FROM public."CalendarEvent"
   WHERE (("CalendarEvent".id = "CalendarEventReminder"."eventId") AND ("CalendarEvent"."companyId" = COALESCE((((auth.jwt() -> 'user_metadata'::text) ->> 'companyId'::text))::integer, 0)))))));
 

package/src/utils/nginx.js

@@ -57,7 +57,7 @@ export async function installNginx(spinner) {
  * @param {string} [config.frontendCoreDomain] - Frontend Core app domain (optional)
  * @param {string} [config.frontendCoreMobileDomain] - Frontend Core Mobile app domain (optional)
  * @param {string} [config.backendCoreDomain] - Backend Core API domain (optional)
- * @param {number} config.frontendPort - Frontend Docker port (default: 8080)
+ * @param {number} config.frontendPort - Frontend Docker port (default: 8085)
  * @param {number} config.apiPort - API Docker port (default: 3001)
  * @param {number} [config.gateAppPort] - Gate app Docker port (default: 8081)
  * @param {number} [config.guardianAppPort] - Guardian app Docker port (default: 8082)
@@ -85,7 +85,7 @@ export function generateNginxConfig(config) {
     frontendCoreDomain,
     frontendCoreMobileDomain,
     backendCoreDomain,
-    frontendPort = 8080,
+    frontendPort = 8085,
     apiPort = 3001,
     gateAppPort = 8081,
     guardianAppPort = 8082,
@@ -1725,7 +1725,7 @@ server {
  * @param {Object} config - Configuration object
  * @param {string} config.frontendDomain - Frontend domain
  * @param {string} config.apiDomain - API domain
- * @param {number} [config.frontendPort=8080] - Frontend Docker port
+ * @param {number} [config.frontendPort=8085] - Frontend Docker port
  * @param {number} [config.apiPort=3001] - API Docker port
  * @returns {Promise<void>}
  */
@@ -1798,7 +1798,7 @@ export async function configureNginx(config) {
     // Show helpful information
     console.log(chalk.gray('\n📝 NGINX Configuration:'));
     console.log(chalk.gray(`   Config file: ${configPath}`));
-    console.log(chalk.gray(`   Frontend: ${config.frontendDomain} → localhost:${config.frontendPort || 8080}`));
+    console.log(chalk.gray(`   Frontend: ${config.frontendDomain} → localhost:${config.frontendPort || 8085}`));
     if (config.gateAppDomain) {
       console.log(chalk.gray(`   Gate App: ${config.gateAppDomain} → localhost:${config.gateAppPort || 8081}`));
     }

package/src/utils/ssl.js

@@ -144,7 +144,7 @@ export async function obtainSSLCertificate(config) {
  * @param {string} [config.frontendCoreDomain] - Frontend Core domain URL (optional)
  * @param {string} [config.frontendCoreMobileDomain] - Frontend Core Mobile domain URL (optional)
  * @param {string} [config.backendCoreDomain] - Backend Core API domain URL (optional)
- * @param {number} [config.frontendPort=8080] - Frontend port
+ * @param {number} [config.frontendPort=8085] - Frontend port
  * @param {number} [config.apiPort=3001] - API port
  * @param {number} [config.gateAppPort=8081] - Gate App port
  * @param {number} [config.guardianAppPort=8082] - Guardian App port
@@ -171,7 +171,7 @@ export async function updateNginxForSSL(config) {
     frontendCoreDomain,
     frontendCoreMobileDomain,
     backendCoreDomain,
-    frontendPort = 8080,
+    frontendPort = 8085,
     apiPort = 3001,
     gateAppPort = 8081,
     guardianAppPort = 8082,

package/src/utils/validation.js

@@ -229,7 +229,7 @@ export async function checkPort(port) {
  */
 function detectPortsFromEnv(installDir = './ante-erp') {
   // Default ports now include core services (always included)
-  const defaultPorts = [8080, 3001, 4001, 4002, 8085, 8086];
+  const defaultPorts = [3001, 4001, 8085, 8086];
 
   try {
     const envPath = join(installDir, '.env');