From 08bbcf18b1207153983261652b4a43a9b36f386c Mon Sep 17 00:00:00 2001
From: Peter Stone <thepeterstone@gmail.com>
Date: Tue, 20 Jan 2026 11:34:33 -1000
Subject: Add session-based authentication

Implement secure authentication using scs session manager with SQLite
backing store and bcrypt password hashing.

- Add users and sessions tables (migration 004)
- Create internal/auth package with Service, Middleware, and Handlers
- Protect all routes except /login, /logout, /static/*
- Add login page template and logout button to dashboard
- Default credentials: admin/changeme (configurable via env vars)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 go.mod | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

(limited to 'go.mod')

diff --git a/go.mod b/go.mod
index c3cda88..055dc8f 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module task-dashboard
 
-go 1.21
+go 1.24.0
 
 require (
 	github.com/go-chi/chi/v5 v5.2.3
@@ -8,3 +8,9 @@ require (
 )
 
 require github.com/joho/godotenv v1.5.1
+
+require (
+	github.com/alexedwards/scs/sqlite3store v0.0.0-20251002162104-209de6e426de // indirect
+	github.com/alexedwards/scs/v2 v2.9.0 // indirect
+	golang.org/x/crypto v0.47.0 // indirect
+)
-- 
cgit v1.2.3