🎉 Initial commit: Trackeep - Complete Productivity Platform

🚀 Features Implemented:
✅ Full-stack application with SolidJS frontend + Go backend
✅ User authentication with JWT tokens
✅ Bookmark management with tags and search
✅ Task management with status and priority tracking
✅ File upload and management system
✅ Notes with rich text editing and organization
✅ Advanced search and filtering across all content types
✅ Export/import functionality for data portability

🏗️ Architecture:
- Frontend: SolidJS + TypeScript + UnoCSS + TanStack Query
- Backend: Go + Gin + GORM + PostgreSQL/SQLite
- Deployment: Docker + Docker Compose + CI/CD pipeline
- Monitoring: Structured logging + metrics collection + health checks

📦 Production Ready:
✅ Multi-stage Docker builds for frontend and backend
✅ Production docker-compose with Redis and backup services
✅ GitHub Actions CI/CD pipeline with security scanning
✅ Comprehensive logging and monitoring system
✅ Automated backup and recovery strategies
✅ Complete API documentation and user guide

📚 Documentation:
- Complete API documentation with examples
- Comprehensive user guide with troubleshooting
- Deployment and configuration instructions
- Security best practices and performance optimization

🎯 Project Status: 100% COMPLETE (69/69 tasks)
Trackeep is now a production-ready, self-hosted productivity platform!

backend/middleware/logger.go

@@ -0,0 +1,291 @@
+package middleware
+
+import (
+	"bytes"
+	"encoding/json"
+	"fmt"
+	"io"
+	"log"
+	"os"
+	"time"
+
+	"github.com/gin-gonic/gin"
+)
+
+// LoggerConfig holds configuration for the logger
+type LoggerConfig struct {
+	LogFile    string
+	LogLevel   string
+	EnableJSON bool
+}
+
+// Logger returns a middleware that logs HTTP requests
+func Logger(config LoggerConfig) gin.HandlerFunc {
+	// Create log file if specified
+	var file *os.File
+	if config.LogFile != "" {
+		var err error
+		file, err = os.OpenFile(config.LogFile, os.O_CREATE|os.O_WRONLY|os.O_APPEND, 0666)
+		if err != nil {
+			log.Printf("Failed to open log file: %v", err)
+		}
+	}
+
+	return gin.LoggerWithFormatter(func(param gin.LogFormatterParams) string {
+		// Create log entry
+		entry := map[string]interface{}{
+			"timestamp":  param.TimeStamp.Format(time.RFC3339),
+			"method":     param.Method,
+			"path":       param.Path,
+			"status":     param.StatusCode,
+			"latency":    param.Latency.String(),
+			"client_ip":  param.ClientIP,
+			"user_agent": param.Request.UserAgent(),
+			"request_id": param.Request.Header.Get("X-Request-ID"),
+		}
+
+		// Add user ID if available
+		if userID, exists := param.Keys["user_id"]; exists {
+			entry["user_id"] = userID
+		}
+
+		// Add error if present
+		if param.ErrorMessage != "" {
+			entry["error"] = param.ErrorMessage
+		}
+
+		// Format output
+		var output string
+		if config.EnableJSON {
+			jsonData, _ := json.Marshal(entry)
+			output = string(jsonData) + "\n"
+		} else {
+			output = fmt.Sprintf("[%s] %s %s %d %s %s %s",
+				entry["timestamp"],
+				entry["method"],
+				entry["path"],
+				entry["status"],
+				entry["latency"],
+				entry["client_ip"],
+				entry["user_agent"],
+			)
+			if userID, exists := entry["user_id"]; exists {
+				output += fmt.Sprintf(" user_id:%v", userID)
+			}
+			if param.ErrorMessage != "" {
+				output += fmt.Sprintf(" error:%s", param.ErrorMessage)
+			}
+			output += "\n"
+		}
+
+		// Write to file and console
+		if file != nil {
+			file.WriteString(output)
+		}
+		return output
+	})
+}
+
+// RequestLogger logs detailed request information
+func RequestLogger() gin.HandlerFunc {
+	return func(c *gin.Context) {
+		start := time.Now()
+		path := c.Request.URL.Path
+		raw := c.Request.URL.RawQuery
+
+		// Process request
+		c.Next()
+
+		// Skip logging for health checks
+		if path == "/health" {
+			return
+		}
+
+		// Calculate latency
+		latency := time.Since(start)
+
+		// Get client IP
+		clientIP := c.ClientIP()
+
+		// Get status code
+		statusCode := c.Writer.Status()
+
+		// Get request ID
+		requestID := c.GetHeader("X-Request-ID")
+		if requestID == "" {
+			requestID = generateRequestID()
+		}
+
+		// Get user ID if authenticated
+		var userID interface{}
+		if uid, exists := c.Get("user_id"); exists {
+			userID = uid
+		}
+
+		// Create log entry
+		logEntry := map[string]interface{}{
+			"timestamp":      start.Format(time.RFC3339),
+			"request_id":     requestID,
+			"method":         c.Request.Method,
+			"path":           path,
+			"query":          raw,
+			"status":         statusCode,
+			"latency_ms":     latency.Milliseconds(),
+			"client_ip":      clientIP,
+			"user_agent":     c.Request.UserAgent(),
+			"referer":        c.Request.Referer(),
+			"content_type":   c.GetHeader("Content-Type"),
+			"content_length": c.Request.ContentLength,
+		}
+
+		if userID != nil {
+			logEntry["user_id"] = userID
+		}
+
+		// Log request body for POST/PUT requests (excluding sensitive data)
+		if c.Request.Method == "POST" || c.Request.Method == "PUT" {
+			body := logRequestBody(c)
+			if body != "" {
+				logEntry["request_body"] = body
+			}
+		}
+
+		// Log response size
+		if c.Writer.Size() > 0 {
+			logEntry["response_size"] = c.Writer.Size()
+		}
+
+		// Log errors
+		if len(c.Errors) > 0 {
+			logEntry["errors"] = c.Errors.String()
+		}
+
+		// Write structured log
+		logJSON(logEntry)
+	}
+}
+
+// logRequestBody safely logs request body
+func logRequestBody(c *gin.Context) string {
+	// Skip logging for file uploads and sensitive endpoints
+	if c.Request.Header.Get("Content-Type") == "multipart/form-data" {
+		return "[multipart data]"
+	}
+
+	if c.Request.URL.Path == "/api/v1/auth/login" ||
+		c.Request.URL.Path == "/api/v1/auth/register" {
+		return "[sensitive data]"
+	}
+
+	// Read body
+	bodyBytes, err := io.ReadAll(c.Request.Body)
+	if err != nil {
+		return "[failed to read body]"
+	}
+
+	// Restore body for next handler
+	c.Request.Body = io.NopCloser(bytes.NewBuffer(bodyBytes))
+
+	// Limit body size for logging
+	if len(bodyBytes) > 1024 {
+		return string(bodyBytes[:1024]) + "... [truncated]"
+	}
+
+	return string(bodyBytes)
+}
+
+// logJSON writes structured JSON logs
+func logJSON(data map[string]interface{}) {
+	jsonData, err := json.Marshal(data)
+	if err != nil {
+		log.Printf("Failed to marshal log entry: %v", err)
+		return
+	}
+
+	log.Println(string(jsonData))
+}
+
+// generateRequestID generates a unique request ID
+func generateRequestID() string {
+	return time.Now().Format("20060102150405") + "-" +
+		string(rune(time.Now().UnixNano()%1000))
+}
+
+// SecurityLogger logs security-related events
+func SecurityLogger() gin.HandlerFunc {
+	return func(c *gin.Context) {
+		// Log authentication failures
+		if c.Writer.Status() == 401 {
+			logSecurityEvent("authentication_failure", map[string]interface{}{
+				"client_ip":  c.ClientIP(),
+				"path":       c.Request.URL.Path,
+				"user_agent": c.Request.UserAgent(),
+				"timestamp":  time.Now().Format(time.RFC3339),
+			})
+		}
+
+		// Log authorization failures
+		if c.Writer.Status() == 403 {
+			logSecurityEvent("authorization_failure", map[string]interface{}{
+				"client_ip":  c.ClientIP(),
+				"path":       c.Request.URL.Path,
+				"user_agent": c.Request.UserAgent(),
+				"timestamp":  time.Now().Format(time.RFC3339),
+			})
+		}
+
+		c.Next()
+	}
+}
+
+// logSecurityEvent logs security-related events
+func logSecurityEvent(eventType string, data map[string]interface{}) {
+	event := map[string]interface{}{
+		"event_type": "security",
+		"event":      eventType,
+		"timestamp":  time.Now().Format(time.RFC3339),
+	}
+
+	for k, v := range data {
+		event[k] = v
+	}
+
+	logJSON(event)
+}
+
+// PerformanceLogger logs performance metrics
+func PerformanceLogger() gin.HandlerFunc {
+	return func(c *gin.Context) {
+		start := time.Now()
+
+		c.Next()
+
+		// Log slow requests (> 1 second)
+		latency := time.Since(start)
+		if latency > time.Second {
+			logPerformanceEvent("slow_request", map[string]interface{}{
+				"path":       c.Request.URL.Path,
+				"method":     c.Request.Method,
+				"latency_ms": latency.Milliseconds(),
+				"status":     c.Writer.Status(),
+				"client_ip":  c.ClientIP(),
+				"timestamp":  time.Now().Format(time.RFC3339),
+			})
+		}
+	}
+}
+
+// logPerformanceEvent logs performance-related events
+func logPerformanceEvent(eventType string, data map[string]interface{}) {
+	event := map[string]interface{}{
+		"event_type": "performance",
+		"event":      eventType,
+		"timestamp":  time.Now().Format(time.RFC3339),
+	}
+
+	for k, v := range data {
+		event[k] = v
+	}
+
+	logJSON(event)
+}

backend/middleware/metrics.go

@@ -0,0 +1,226 @@
+package middleware
+
+import (
+	"sync"
+	"time"
+
+	"github.com/gin-gonic/gin"
+)
+
+// Metrics holds application metrics
+type Metrics struct {
+	mu sync.RWMutex
+
+	// HTTP metrics
+	RequestsTotal     map[string]int64
+	RequestsDuration  map[string][]time.Duration
+	RequestsErrors    map[string]int64
+	ActiveConnections int64
+
+	// Application metrics
+	UsersTotal     int64
+	BookmarksTotal int64
+	TasksTotal     int64
+	FilesTotal     int64
+	NotesTotal     int64
+
+	// System metrics
+	DatabaseConnections int64
+	LastRestart         time.Time
+}
+
+var (
+	// Global metrics instance
+	appMetrics = &Metrics{
+		RequestsTotal:    make(map[string]int64),
+		RequestsDuration: make(map[string][]time.Duration),
+		RequestsErrors:   make(map[string]int64),
+		LastRestart:      time.Now(),
+	}
+)
+
+// GetMetrics returns the current metrics
+func GetMetrics() *Metrics {
+	appMetrics.mu.RLock()
+	defer appMetrics.mu.RUnlock()
+
+	// Return a copy to avoid concurrent access issues
+	return &Metrics{
+		RequestsTotal:       copyMap(appMetrics.RequestsTotal),
+		RequestsDuration:    copyDurationMap(appMetrics.RequestsDuration),
+		RequestsErrors:      copyMap(appMetrics.RequestsErrors),
+		ActiveConnections:   appMetrics.ActiveConnections,
+		UsersTotal:          appMetrics.UsersTotal,
+		BookmarksTotal:      appMetrics.BookmarksTotal,
+		TasksTotal:          appMetrics.TasksTotal,
+		FilesTotal:          appMetrics.FilesTotal,
+		NotesTotal:          appMetrics.NotesTotal,
+		DatabaseConnections: appMetrics.DatabaseConnections,
+		LastRestart:         appMetrics.LastRestart,
+	}
+}
+
+// MetricsMiddleware collects HTTP metrics
+func MetricsMiddleware() gin.HandlerFunc {
+	return func(c *gin.Context) {
+		start := time.Now()
+		path := c.Request.URL.Path
+		method := c.Request.Method
+
+		// Increment active connections
+		appMetrics.mu.Lock()
+		appMetrics.ActiveConnections++
+		appMetrics.mu.Unlock()
+
+		// Process request
+		c.Next()
+
+		// Decrement active connections
+		appMetrics.mu.Lock()
+		appMetrics.ActiveConnections--
+		appMetrics.mu.Unlock()
+
+		// Calculate duration
+		duration := time.Since(start)
+
+		// Update metrics
+		appMetrics.mu.Lock()
+		defer appMetrics.mu.Unlock()
+
+		key := method + " " + path
+
+		// Increment total requests
+		appMetrics.RequestsTotal[key]++
+
+		// Record duration
+		if appMetrics.RequestsDuration[key] == nil {
+			appMetrics.RequestsDuration[key] = make([]time.Duration, 0, 1000)
+		}
+		appMetrics.RequestsDuration[key] = append(appMetrics.RequestsDuration[key], duration)
+
+		// Keep only last 1000 duration records per endpoint
+		if len(appMetrics.RequestsDuration[key]) > 1000 {
+			appMetrics.RequestsDuration[key] = appMetrics.RequestsDuration[key][1:]
+		}
+
+		// Count errors
+		if c.Writer.Status() >= 400 {
+			appMetrics.RequestsErrors[key]++
+		}
+	}
+}
+
+// IncrementUsersTotal increments the total users count
+func IncrementUsersTotal() {
+	appMetrics.mu.Lock()
+	defer appMetrics.mu.Unlock()
+	appMetrics.UsersTotal++
+}
+
+// IncrementBookmarksTotal increments the total bookmarks count
+func IncrementBookmarksTotal() {
+	appMetrics.mu.Lock()
+	defer appMetrics.mu.Unlock()
+	appMetrics.BookmarksTotal++
+}
+
+// DecrementBookmarksTotal decrements the total bookmarks count
+func DecrementBookmarksTotal() {
+	appMetrics.mu.Lock()
+	defer appMetrics.mu.Unlock()
+	if appMetrics.BookmarksTotal > 0 {
+		appMetrics.BookmarksTotal--
+	}
+}
+
+// IncrementTasksTotal increments the total tasks count
+func IncrementTasksTotal() {
+	appMetrics.mu.Lock()
+	defer appMetrics.mu.Unlock()
+	appMetrics.TasksTotal++
+}
+
+// DecrementTasksTotal decrements the total tasks count
+func DecrementTasksTotal() {
+	appMetrics.mu.Lock()
+	defer appMetrics.mu.Unlock()
+	if appMetrics.TasksTotal > 0 {
+		appMetrics.TasksTotal--
+	}
+}
+
+// IncrementFilesTotal increments the total files count
+func IncrementFilesTotal() {
+	appMetrics.mu.Lock()
+	defer appMetrics.mu.Unlock()
+	appMetrics.FilesTotal++
+}
+
+// DecrementFilesTotal decrements the total files count
+func DecrementFilesTotal() {
+	appMetrics.mu.Lock()
+	defer appMetrics.mu.Unlock()
+	if appMetrics.FilesTotal > 0 {
+		appMetrics.FilesTotal--
+	}
+}
+
+// IncrementNotesTotal increments the total notes count
+func IncrementNotesTotal() {
+	appMetrics.mu.Lock()
+	defer appMetrics.mu.Unlock()
+	appMetrics.NotesTotal++
+}
+
+// DecrementNotesTotal decrements the total notes count
+func DecrementNotesTotal() {
+	appMetrics.mu.Lock()
+	defer appMetrics.mu.Unlock()
+	if appMetrics.NotesTotal > 0 {
+		appMetrics.NotesTotal--
+	}
+}
+
+// SetDatabaseConnections sets the database connections count
+func SetDatabaseConnections(count int64) {
+	appMetrics.mu.Lock()
+	defer appMetrics.mu.Unlock()
+	appMetrics.DatabaseConnections = count
+}
+
+// ResetMetrics resets all metrics (useful for testing)
+func ResetMetrics() {
+	appMetrics.mu.Lock()
+	defer appMetrics.mu.Unlock()
+
+	appMetrics.RequestsTotal = make(map[string]int64)
+	appMetrics.RequestsDuration = make(map[string][]time.Duration)
+	appMetrics.RequestsErrors = make(map[string]int64)
+	appMetrics.ActiveConnections = 0
+	appMetrics.UsersTotal = 0
+	appMetrics.BookmarksTotal = 0
+	appMetrics.TasksTotal = 0
+	appMetrics.FilesTotal = 0
+	appMetrics.NotesTotal = 0
+	appMetrics.DatabaseConnections = 0
+	appMetrics.LastRestart = time.Now()
+}
+
+// Helper functions to copy maps safely
+func copyMap(original map[string]int64) map[string]int64 {
+	copy := make(map[string]int64)
+	for k, v := range original {
+		copy[k] = v
+	}
+	return copy
+}
+
+func copyDurationMap(original map[string][]time.Duration) map[string][]time.Duration {
+	result := make(map[string][]time.Duration)
+	for k, v := range original {
+		sliceCopy := make([]time.Duration, len(v))
+		copy(sliceCopy, v)
+		result[k] = sliceCopy
+	}
+	return result
+}