Last Updated: February 10, 2026 (Session 8)
- Update landing page from HIV-specific to general healthcare aftercare
- Update color scheme to greens, gold, amber (matching logo)
- Remove calendar from public landing page (moved to members area)
- Remove wellness dashboard from public landing page (moved to members area)
- Add About section to landing page
- Fix directory structure conflicts (app/ vs src/app/)
- Install missing dependencies (Radix UI, shadcn utilities)
- Fix TypeScript errors in shadcn/ui components
- Fix bcrypt -> bcryptjs imports
- Update calendar.tsx for react-day-picker v9
- Update chart.tsx for recharts v3
- Update resizable.tsx for react-resizable-panels v3
- Fix Tailwind CSS v4 configuration
- Add HSL CSS variables for theme
- Get build passing
- Fix Tailwind v4 CSS import syntax
- Connect login modal form to NextAuth signIn()
- Connect register modal form to /api/auth/register
- Add form state management (useState for inputs)
- Add error handling and loading states to forms
- "Learn About Digital Twins" button scrolls to #digital-twin section
- "Explore Digital Twin Program" button opens signup modal
- Add logout functionality to dashboard
- Move financials and opportunities under /dashboard route
- Update theme colors consistently across all pages
- Wellness page: Add Metric button opens functional modal
- Calendar page: New Appointment button opens functional modal
- Calendar page: Interactive calendar with clickable dates
- Calendar page: Clicking appointment day shows appointment details
- Opportunities page: Find Opportunities button with error handling
- Fix Select dropdown transparency (solid white background)
- Fix Select dropdown direction (opens downward)
- Fix 29 Dependabot security vulnerabilities (Next.js, transformers, flask-cors, marshmallow, black)
- Rename app/ to workspaces/ to fix Next.js App Router conflict
- Remove duplicate postcss.config.js
- Fix CSP blocking inline scripts in development mode
- Add Contact form section to landing page (replaces footer scroll)
- Update images.domains to images.remotePatterns (deprecation fix)
- Fix hydration mismatch error (cleared .next cache)
- Add AI chat modal to digital twin page (mock responses)
- Add interactive SVG body visualization placeholder
- Add body system status cards with popup details
- Repository reorganization -- hub-and-spoke architecture (Session 7, Feb 9)
- Delete 22 duplicate directories and 11 deprecated directories (Session 7, Feb 9)
- Scaffold clinical-frontend/ and provider-frontend/ apps (Session 7, Feb 9)
- Extract backend code to spokes/, core/, admin/, ml/, infrastructure/, data/ (Session 7, Feb 9)
- Create formal engineering documentation suite (Session 7, Feb 10)
- Project Requirements Document (IEEE 830) -- 703 lines, 63 FRs, 33 NFRs
- Technical Specifications Document (IEEE 1233) -- 1,015 lines, 22 API specs
- Technical Design Document (IEEE 1016) -- 1,088 lines, architecture + math models
- Add getServerSession(authOptions) checks to 19 API routes (Session 8, Feb 10)
- Set up Vitest + React Testing Library (Session 8, Feb 10)
- 106 tests passing across 6 test files (math, EKF, CBF, integration, register route, PQC)
- Unit tests for EKF/CBF simulation modules
- Unit tests for authentication flow (register route)
- Add error boundaries (dashboard, digital-twin, calendar, wellness, global) (Session 8, Feb 10)
- Add loading skeletons throughout dashboard (Session 8, Feb 10)
- Custom 404 page (not-found.tsx with inline SVG) (Session 8, Feb 10)
- Implement password reset functionality (Session 8, Feb 10)
- 4-step reset page, API route with Zod validation, mockStore.updateUserPassword
- "Forgot Password?" link added to login page
- Add toast notifications for user actions (Session 8, Feb 10)
- Toaster in root layout, wired to signup, login, calendar, wellness, opportunities
- Fixed missing 'use client' directives on toast.tsx, toaster.tsx, use-toast.ts
- Improve mobile navigation experience (Session 8, Feb 10)
- Active route highlighting with usePathname()
- "More" overflow Sheet for 6+ nav items
- WCAG touch targets (44x44px minimum)
- Landing page hamburger menu
- Install Three.js dependency (
npm install three @types/three) - Install three-usdz-loader (with --legacy-peer-deps)
- Move
components/digital-twin/tosrc/components/digital-twin/ - Add type declarations (
src/types/three-addons.d.ts) - Add COOP/COEP headers to next.config.mjs
- Fixed 2D/3D toggle button (use plain HTML, not shadcn Button)
- Fixed 2D/3D mode swap (conditions were inverted)
- Disabled USDZ loader temporarily (causing "invalid zip data" errors)
- BLOCKED: Turbopack + Three.js bundling error - See SESSION_HANDOFF.md for details
- Set DATABASE_URL environment variable
- Connect Drizzle ORM to PostgreSQL (schema already defined in src/shared/schema.ts, 25+ tables)
- Replace FileUserStore (src/lib/mockStore.ts) with database-backed user repository
- Run initial migrations against connected database
- Add seed data for development
- Add getServerSession(authOptions) checks to all API routes
- Implement RBAC checks per endpoint (patient vs provider vs admin)
- Add rate limiting to API endpoints
- Set up Vitest + React Testing Library
- Add unit tests for EKF/CBF simulation modules
- Add unit tests for authentication flow (register route)
- Add E2E tests with Playwright for critical user journeys
- Add accessibility tests with axe-core
- Fix 7 PQC test failures (Session 8, Feb 10) -- 3 root causes:
- @noble/post-quantum sign/verify argument order (pqc-signatures.ts)
- Envelope encryption missing wrappedDEK/dekNonce fields (pqc-hybrid-encryption.ts)
- HKDF random salt non-determinism in key derivation (pqc-hybrid-encryption.ts)
- ARPA-H ADVOCATE TA2 Solution Summary -- due Feb 27, 2026
- CMS ACCESS BH Track application -- due Apr 1, 2026
- NIH R21 (NIMHD) -- receipt date Jun 16, 2026
- Replace all placeholder/dummy text with real IHEP content
- Dashboard: Replace mock wellness metrics with real data integration
- Dashboard: Replace mock appointments with real calendar data
- Dashboard: Replace mock provider listings with real provider database
- Calendar: Remove hardcoded sample appointments
- Providers: Remove sample provider data (Dr. Sarah Chen, etc.)
- Resources: Replace sample educational resources with real content
- Financials: Connect to real financial data source
- Opportunities: Replace sample gig/training listings with real opportunities
- Landing page: Review all marketing copy for accuracy
- Implement appointment booking functionality (currently static data)
- Add real wellness metric tracking and data persistence
- Implement provider search and filtering with real data
- Add real-time digital twin data streams
- Implement email verification flow
- Add loading skeletons throughout dashboard
- Implement proper error boundaries
- Add toast notifications for user actions
- Improve mobile navigation experience
- Configure GCP deployment (Cloud Run, BigQuery)
- Set up CI/CD pipeline
- Configure monitoring and logging (Sentry, Cloud Monitoring)
- Implement rate limiting with Upstash Redis
- Financial Empowerment Module enhancements
- PubSub articles feed integration
- Telehealth video integration (Twilio)
- Notification service (email/SMS with SendGrid/Twilio)
- HIPAA compliance audit
- Implement audit logging for PHI access
- Add field-level encryption for sensitive data (PQC encryption code exists, needs integration)
- Security penetration testing
- Add CSRF protection for custom forms
- Project version: 2.0.0-alpha (Next.js 16.1.5, React 19, TypeScript 5)
- Project uses
src/app/as the main app directory - Path alias
@/*maps to./src/* - Path alias
@shared/*maps to./src/shared/* - Authentication uses NextAuth.js v4 with credentials provider
- Mock store currently used for user data in development
- All dashboard pages protected with session check
- All 19 API routes protected with getServerSession auth guards
- Drizzle ORM schema defined (25+ tables) but no database connected
- 113 Vitest tests passing (0 failures) -- PQC framework fully operational
- Three engineering documents provide full traceability: PRD -> Tech Specs -> TDD
- Repository reorganized into hub-and-spoke: ihep-application/ (hub) + spokes/ (16 services)
- Repo published to: github.com/ihep-platform/ihep.app