Update registration is not disabled when KV store says its disabled bug

[hpware]

Patched Exploit

Before Change:

After Change:

Summary by CodeRabbit

• New Features

  • Added image preview modal functionality for viewing and displaying images.
  • Introduced registration status control to manage user sign-up availability.
  • Added system configuration options for copyright owner attribution and application version visibility settings.

• Chores

  • Updated application version to 0.1.12.
  • Updated Next.js dependency to v16.0.10.
  • Enhanced CI/CD pipeline workflows for production releases and pull request builds.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[dokploy-hpwartwweb2]

Dokploy Preview Deployment

Name	Status	Preview	Updated (UTC)
app	✅ Done	Preview URL	2025-12-14T07:13:50.954Z

[coderabbitai]

Caution

Review failed

The pull request is closed.

Walkthrough

This PR introduces a production release workflow with version management, Docker image building, and release branching. It converts an existing workflow to PR-focused testing. Additionally, it adds a system info API endpoint, an image preview component, version updates, database migrations for settings, and a registration status check.

Changes

Cohort / File(s)	Summary
GitHub Actions Workflows .github/workflows/production-release.yml, .github/workflows/version-and-build.yml	Introduces production-release workflow triggered on master push with version management, Docker image building, release branching, and notes generation. Converts version-and-build workflow from push-based to pull-request-scoped with PR comment reporting instead of releases.
Version & Dependency Updates apps/web/package.json, package.json, apps/web/projectData.ts	Bumps Next.js from ^16.0.7 to ^16.0.10; updates app version from 0.1.10 to 0.1.12.
API Routes apps/web/src/app/api/data/system_info/route.ts	Adds new GET endpoint that queries kvData for copyright owner, feature status (homepage/search), and conditional version exposure.
Image Preview Feature apps/web/src/components/imageView.tsx, apps/web/src/components/publicPostsAndVideos.tsx	Introduces ImageView modal component for full-screen image preview; integrates into publicPostsAndVideos to enable click-to-preview on images.
Authentication packages/auth/src/index.ts	Adds registration status guard; queries kvData for registrationStatus and throws error if registration is disabled.
Database Migrations packages/db/src/migrations/0014_reflective_roughhouse.sql, packages/db/src/migrations/meta/0014_snapshot.json, packages/db/src/migrations/meta/_journal.json	Adds migration inserting copyright owner and expose version settings; updates snapshot and journal metadata.

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~45 minutes

• GitHub Actions workflows (.github/workflows/*): Both workflows contain multi-step orchestration with conditional branching, version management, Git operations, Docker building, and release logic. The production-release workflow is particularly dense with sequential steps and environment-dependent behaviors that require careful tracing.
• Integration points: Review the imageView modal integration in publicPostsAndVideos to ensure state handling is correct and no regressions in rendering logic.
• API route error handling: The system_info route lacks explicit error handling for missing kvData entries; verify the array access fallback behavior is intentional.
• Auth guard placement: Confirm the registrationStatus check timing and precedence relative to existing user creation logic.

Possibly related PRs

• Update version CI/CD #14: Directly addresses version management and release tooling with similar workflow and script modifications to manage-versions and generate-release-notes.
• Update to v0.1.10 #13: Modifies versioning and CI/version-bump tooling alongside updates to projectData.ts and workflow logic.
• Fix CVE-2025-66478 #12: Updates the same version-related files (apps/web/package.json, apps/web/projectData.ts) with Next.js and app version bumps.

Poem

🐰 A workflow that dances from branch unto tag,
Docker images tagged, no momentum to lag!
With versions bumped high and previews so bright,
Images bloom full-screen—what a modal delight!
The registration now guarded, the system aware,
This rabbit hops forward with manifest care! 🌿

✨ Finishing touches

• 📝 Generate docstrings

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch canery

---

📜 Recent review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between a396c57 and 1f9d95e.

⛔ Files ignored due to path filters (1)

• bun.lock is excluded by !**/*.lock

📒 Files selected for processing (12)

• .github/workflows/production-release.yml (1 hunks)
• .github/workflows/version-and-build.yml (7 hunks)
• apps/web/package.json (1 hunks)
• apps/web/projectData.ts (1 hunks)
• apps/web/src/app/api/data/system_info/route.ts (1 hunks)
• apps/web/src/components/imageView.tsx (1 hunks)
• apps/web/src/components/publicPostsAndVideos.tsx (7 hunks)
• package.json (1 hunks)
• packages/auth/src/index.ts (2 hunks)
• packages/db/src/migrations/0014_reflective_roughhouse.sql (1 hunks)
• packages/db/src/migrations/meta/0014_snapshot.json (1 hunks)
• packages/db/src/migrations/meta/_journal.json (1 hunks)

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}