ThyWill - AI Assistant Project Guide

Environment Context

Claude Code runs in the development environment only
Never attempt to diagnose or fix production server issues directly
For production issues, provide diagnostic commands for the user to run on their production server
Do not use sudo commands or system service commands in the development environment

Project Overview

ThyWill is a community prayer platform built with FastAPI and SQLModel. It allows users to submit prayer requests, generate proper prayers using AI (Anthropic Claude or OpenAI), track community prayer activity, and moderate content through community-driven flagging.

Core Architecture

Technology Stack

Backend: FastAPI (Python web framework)
Database: SQLite with SQLModel ORM
AI Integration: Configurable Anthropic Claude or OpenAI API drivers for prayer generation
Frontend: Jinja2 templates with HTML/CSS/JavaScript + HTMX
Authentication: Cookie-based sessions with JWT tokens for invites

Key Files

app.py (~1,800 lines) - Main application with routes and FastAPI setup (refactored for modularity)
app_helpers/services/ - Modular business logic extracted from app.py:
- auth_helpers.py - Authentication, authorization, and security functions
- prayer_helpers.py - Prayer generation, filtering, and management functions
- invite_helpers.py - Invite system and tree management functions
- text_archive_service.py - Text archive file operations and management
- archive_first_service.py - Archive-first workflow implementation
- text_importer_service.py - Import functionality for text archives
app_helpers/utils/database_helpers.py - Database migration and utility functions
models.py (120+ lines) - Database models and schema including multi-device auth and text archive tracking
templates/ - HTML templates for UI including authentication flows
thywill - CLI tool for deployment, backup, and database operations
heal_prayer_archives.py - Utility to create missing archive files for legacy prayers
requirements.txt - Python dependencies
generate_token.py - Utility for creating invite tokens
docs/plans/ - Planning documents including successful refactoring strategies
docs/LOGIN_FEATURE_SPECIFICATION.md - Comprehensive login feature specification and behavior documentation

Database Schema

Core Models

User: Basic user profile (id, display_name, created_at, is_supporter, supporter_since)
Prayer: Prayer requests (id, author_id, text, generated_prayer, project_tag, flagged, safety_score, safety_flags, subject_category, specificity_type, categorization_method)
PrayerMark: Tracks when users pray for requests (user_id, prayer_id, created_at)
Session: Enhanced user sessions (id, user_id, expires_at, auth_request_id, device_info, ip_address, is_fully_authenticated)
InviteToken: Invitation system for new users (token, created_by_user, used, expires_at)

Enhanced Prayer Management Models (New)

PrayerAttribute: Flexible prayer status system (id, prayer_id, attribute_name, attribute_value, created_at, created_by)
PrayerActivityLog: Audit trail for prayer status changes (id, prayer_id, user_id, action, old_value, new_value, created_at)

Multi-Device Authentication Models

AuthenticationRequest: Login requests from new devices (id, user_id, device_info, ip_address, status, expires_at, verification_code)
AuthApproval: Individual approval votes (id, auth_request_id, approver_user_id, created_at)
AuthAuditLog: Complete audit trail for authentication actions (id, auth_request_id, action, actor_user_id, actor_type, details)
SecurityLog: Security events and monitoring (id, event_type, user_id, ip_address, user_agent, details)
NotificationState: Real-time notifications for authentication requests (id, user_id, auth_request_id, notification_type, is_read, created_at, read_at)

Prayer Attributes System

The prayer system now uses a flexible attributes approach instead of simple boolean flags:

Multiple simultaneous statuses: Prayers can be archived AND answered AND flagged
Extensible design: New attributes can be added without schema changes
Audit trail: All status changes are logged for accountability
Efficient querying: Proper indexing for performance with attribute filtering

Prayer Status Attributes

archived: Prayer hidden from public feeds but preserved with history
answered: Prayer marked as resolved, with optional answer_date and answer_testimony
flagged: Prayer requires moderation (migrated from boolean)
answer_date: ISO timestamp when prayer was answered
answer_testimony: User's testimony of how prayer was answered

Key Features

Prayer System

Users submit prayer requests as prompts
Claude AI transforms prompts into proper community prayers
Prayers are written in third person so others can pray FOR the requester
Community members can mark prayers as "prayed"
Multiple feed views: all, new/unprayed, most prayed, my prayers, my requests, answered, archived

Prayer Categorization System (Feature-Flagged)

AI-Powered Categorization: Automatic classification of prayers by subject, safety, and specificity
Subject Categories: Health 🏥, Work 💼, Relationships 💕, Spiritual ✝️, Provision 💰, Protection 🛡️, Guidance 🧭, Gratitude 🙏, Transitions 🌟, Crisis 🚨
Safety Scoring: 0.0-1.0 scale for content safety assessment with flagging capability
Specificity Classification: Personal vs Community prayer types
Keyword Fallback: Reliable categorization when AI services unavailable
Circuit Breaker Pattern: Automatic fallback during AI service issues
Category Badges: Visual indicators on prayer cards with color-coded icons
Feed Filtering: Filter prayers by category and safety level
Archive Integration: Categorization metadata included in text archives
18 Feature Flags: Complete control over categorization features (all disabled by default)

Prayer Lifecycle Management (New)

Prayer Author Controls: Authors can manage their own prayer requests
Archive System: Hide prayers from public feeds while preserving history
Answered Prayers: Mark prayers as resolved with optional testimony sharing
Status Combinations: Prayers can have multiple statuses simultaneously
Activity Logging: Complete audit trail of all status changes
Community Celebration: Dedicated feeds for celebrating praise reports

Prayer Status Management

Archive/Restore: Prayer authors can archive prayers (hide from public) and restore them
Mark as Answered: Authors can add praise reports with optional testimony
Testimony Sharing: Community can see how God moved through praise reports
Status Preservation: Prayer marks and community engagement preserved across status changes

Enhanced Community Features

Praise Reports Feed: Public celebration of resolved prayer requests
Personal Archive: Private view of author's archived prayers
Prayer Statistics: Answer rates, community engagement metrics
Testimony Collection: Stories of how prayers were answered for community encouragement

Community Moderation System

Community Flagging: All users can flag inappropriate content
Content Shielding: Flagged prayers are hidden but not deleted, showing warning message
Admin Review: Only admins can unflag content after review
Immediate Response: Flagged content is instantly shielded from public view
Preview Access: Admins can see preview of flagged content for review

Authentication & Access

Invite-only system (requires valid invite token to join)
First user becomes admin (id = "admin")
Multi-device authentication with approval workflows
Half-authenticated state for pending approvals
Three approval methods: Admin instant approval, self-approval from trusted devices, peer approval by community
Configurable approval requirements via environment variables
Cookie-based sessions (14-day expiration) with device tracking
Security monitoring with rate limiting and audit logging

Feed Types

All: All unflagged, non-archived prayers (includes praise reports for celebration)
New & Unprayed: Prayers with zero prayer marks (excludes archived)
Most Prayed: Sorted by prayer count (excludes archived)
My Prayers: Prayers the user has marked as prayed (includes all statuses)
My Requests: Prayers submitted by the user (includes all statuses for self-management)
Recent Activity: Prayers with marks in last 7 days (excludes archived)
Praise Reports: Public celebration feed showing all praise reports with testimonies
Archived: Private feed showing user's own archived prayers only

Text Archive System

Archive-First Philosophy: Text files are written FIRST, then database records created
Human-Readable Archives: All data stored in plain text files for ultimate durability
Automatic Creation: New prayers automatically get individual archive files
Auto-Healing: Legacy prayers get archives created on first interaction
File Structure: Organized by year/month with unique prayer files and monthly activity logs
Database Integration: All models include text_file_path linking to archive files
Disaster Recovery: Complete database can be reconstructed from text archives
Archive Files:
- Prayer files: text_archives/prayers/YYYY/MM/prayer_file.txt
- User registrations: text_archives/users/YYYY_MM_users.txt
- User attributes: text_archives/users/user_attributes.txt
- Activity logs: text_archives/activity/activity_YYYY_MM.txt

API Endpoints

Main Routes

GET / - Main feed (supports feed_type parameter including answered, archived)
POST /prayers - Submit new prayer request (requires full authentication)
POST /mark/{prayer_id} - Mark prayer as prayed (HTMX enabled, requires full authentication)
GET /activity - View prayer activity/marks
GET /admin - Admin panel with flagged content and auth requests (admin only)
POST /flag/{prayer_id} - Flag/unflag content (community flagging, admin unflagging)
GET /claim/{token} - Claim invite and create account (supports multi-device flow)
POST /invites - Generate new invite tokens (HTMX enabled, requires full authentication)
GET /prayer/{prayer_id}/marks - View who prayed for specific prayer
GET /answered - Answered prayers celebration page with community metrics

Prayer Status Management Routes (New)

POST /prayer/{prayer_id}/archive - Archive prayer (author only, HTMX enabled)
POST /prayer/{prayer_id}/restore - Restore archived prayer (author only, HTMX enabled)
POST /prayer/{prayer_id}/answered - Mark prayer as answered with optional testimony (author only, HTMX enabled)

Multi-Device Authentication Routes

POST /auth/request - Create authentication request for existing username
GET /auth/status - View authentication status (half-authenticated users)
GET /auth/pending - View pending requests for approval (requires full authentication)
POST /auth/approve/{request_id} - Approve an authentication request
POST /auth/reject/{request_id} - Reject an authentication request (admin only)
GET /auth/my-requests - View own authentication requests for self-approval

Direct Login Routes (New)

GET /login - User-friendly login form for existing users (feature-flag controlled)
POST /login - Process username login and create auth request (feature-flag controlled)

Admin Authentication Routes

GET /admin/auth-audit - View comprehensive audit log (admin only)
POST /admin/bulk-approve - Bulk approve all pending requests (admin only)

Moderation Flow

Any user flags content → Prayer immediately shielded with warning
Admin reviews flagged content → Can see preview and unflag if appropriate
Unflagged content → Restored to full visibility with all functionality

Authentication Flow

New User Registration

User visits /claim/{token} with valid invite
Creates account with unique display name
Gets full authentication session cookie (14-day expiration)
Can access all features immediately

Existing User Multi-Device Login (Two Methods)

Method 1: Direct Login Form (New)

User visits /login and enters username
System validates username exists and creates authentication request
User enters pending authentication state with limited access
Redirected to /auth/status (lobby page) to wait for approval
Approval required via one of three methods:
- Admin approval: Instant approval by any administrator
- Self approval: Approval from user's existing fully-authenticated device
- Peer approval: Approval from configured number of community members
Once approved, session upgraded to full authentication and redirected to main feed

Method 2: Invite Link (Original)

User visits /claim/{token} with existing display name
System creates authentication request (if enabled via config)
User enters pending authentication state with limited access
Same approval process as Method 1

Environment Variables

# Required
AI_PROVIDER=anthropic                  # Supported: anthropic, openai
ANTHROPIC_API_KEY=your_claude_api_key  # Required when provider=anthropic
OPENAI_API_KEY=                        # Required when provider=openai
OPENAI_MODEL=gpt-4o-mini               # Optional override for OpenAI model
OPENAI_API_BASE=                       # Optional custom OpenAI endpoint

# Authentication Configuration (Optional - defaults shown)
MULTI_DEVICE_AUTH_ENABLED=true              # Enable/disable multi-device authentication
REQUIRE_APPROVAL_FOR_EXISTING_USERS=true    # Require approval for existing users
PEER_APPROVAL_COUNT=2                       # Number of peer approvals needed
REQUIRE_VERIFICATION_CODE=false             # Enhanced security for verification codes

# Optional
JWT_SECRET=your_jwt_secret_for_tokens       # For invite token generation
OFFLINE_PWA_ENABLED=true                    # Enable offline-first PWA shell, IndexedDB cache, and prayer mark queue

Configuration Options

MULTI_DEVICE_AUTH_ENABLED: false disables multi-device auth entirely and hides all login options from UI
REQUIRE_APPROVAL_FOR_EXISTING_USERS: false allows existing users to login from new devices without approval
PEER_APPROVAL_COUNT: Any positive integer, controls how many community members need to approve
REQUIRE_VERIFICATION_CODE: Enhanced security mode for verification codes (see notification system below)
OFFLINE_PWA_ENABLED: Master toggle for the offline-first experience (service worker, IndexedDB caching, prayer mark queue)
AI_PROVIDER: Selects AI backend (anthropic or openai). Provider-specific keys must be present.
OPENAI_MODEL / OPENAI_API_BASE: Override default OpenAI model or endpoint when using the OpenAI driver.

Login Feature Behavior

When MULTI_DEVICE_AUTH_ENABLED=true: Login buttons visible, /login route accessible, full lobby functionality
When MULTI_DEVICE_AUTH_ENABLED=false: Login buttons hidden, /login returns 404, invite-only access

Offline Experience

Installable PWA shell: Service worker precaches core HTML, JS, and icons to load the app shell while offline
Cached prayer browsing: IndexedDB stores recent feed markup and category options for offline navigation
Queued prayer marks: Offline marks persist in IndexedDB with original timestamps and sync automatically
Connectivity indicator: Inline banner surfaces offline status and pending queue counts
Local telemetry: Recent sync outcomes recorded in localStorage (thywill_offline_telemetry) for debugging

Real-Time Notification System

The platform includes a real-time notification system for authentication requests, providing immediate alerts when someone needs approval to access their account.

Notification Features

Real-time updates: HTMX-powered notifications that update automatically every 10 seconds
Smart targeting: Notifications sent to all potential approvers (admins, peers, and other devices of same user)
Verification workflow: Secure code-based approval process with input validation
Mobile responsive: Dropdown on desktop, modal on mobile devices
Performance optimized: Fast loading with database query optimization and template caching

Verification Code Security Modes

The system supports two verification code display modes controlled by REQUIRE_VERIFICATION_CODE:

Standard Mode (`REQUIRE_VERIFICATION_CODE=false` - Default)

Verification codes displayed in both requesting device and approval notifications
Convenient approval process - users can see the code directly in notifications
Suitable for trusted environments where convenience is prioritized
Quick approval workflow - click notification, see code, enter to confirm

Enhanced Security Mode (`REQUIRE_VERIFICATION_CODE=true`)

Verification codes only shown on the requesting device
Enhanced security - approvers must get code directly from the requester
Prevents unauthorized approvals even if approval device is compromised
Recommended for high-security environments or sensitive deployments
Direct communication required between requester and approver

Notification API Endpoints

GET /auth/notifications - Get unread notifications (HTMX endpoint)
POST /auth/notifications/{id}/read - Mark notification as read
POST /auth/notifications/{id}/verify - Validate verification code
POST /auth/notifications/{id}/approve - Approve request with verified code

Frontend Components

templates/components/notification_badge.html - Bell icon with live badge count
templates/components/notification_dropdown.html - Desktop notification dropdown
templates/components/notification_content.html - Reusable notification content
static/js/notification-verification.js - Verification workflow JavaScript

AI Prayer Generation

Uses Claude 3.5 Sonnet model
System prompt ensures prayers are community-focused (third person)
Transforms user requests into proper, reverent prayers
Fallback to simple prayer format if API fails
2-4 sentence length, accessible to various faith backgrounds

Development Patterns

Modular Architecture (Recently Refactored)

The application follows a resilient refactoring approach that maintains backward compatibility:

Import Strategy

All functions are accessible through multiple paths for flexibility:

# Option 1: Import from app.py (backward compatibility)
from app import create_session, current_user, get_feed_counts

# Option 2: Import directly from helper modules (new code)
from app_helpers.services.auth_helpers import create_session, current_user
from app_helpers.services.prayer_helpers import get_feed_counts

Helper Module Organization

app_helpers/routes/auth_routes.py: Complete authentication route handlers including login flows
app_helpers/routes/prayer_routes.py: Prayer management and generation routes
app_helpers/routes/admin_routes.py: Administrative interface routes
app_helpers/routes/user_routes.py: User profile and activity routes
app_helpers/routes/invite_routes.py: Invitation system routes
app_helpers/routes/general_routes.py: General application routes (logged-out, menu)
app_helpers/services/auth_helpers.py: 15+ authentication, security & notification functions
app_helpers/services/prayer_helpers.py: 6 prayer management & generation functions
app_helpers/services/invite_helpers.py: 7 invite system & tree functions
app_helpers/utils/database_helpers.py: 3 database utility functions

Session Management

create_session(user_id, auth_request_id, device_info, ip_address, is_fully_authenticated) - Creates new session with device tracking
current_user(request) - Returns (User, Session) tuple with authentication status
require_full_auth(request) - Dependency that requires full authentication
is_admin(user) - Check admin privileges

Multi-Device Authentication Functions

create_auth_request(user_id, device_info, ip_address) - Create authentication request
approve_auth_request(request_id, approver_id) - Process approval with configurable logic
check_rate_limit(user_id, ip_address) - Validate request frequency (3/hour limit)
validate_session_security(session, request) - Session security monitoring
log_auth_action() - Comprehensive audit logging
log_security_event() - Security event monitoring
cleanup_expired_requests() - Automatic cleanup of expired requests (7 days)

Prayer Status Management Functions (New)

prayer.set_attribute(name, value, user_id, session) - Set prayer attribute with activity logging
prayer.remove_attribute(name, session, user_id) - Remove prayer attribute with activity logging
prayer.has_attribute(name, session) - Check if prayer has specific attribute
prayer.get_attribute(name, session) - Get attribute value
prayer.is_archived(session) - Check if prayer is archived
prayer.is_answered(session) - Check if prayer is answered
prayer.answer_date(session) - Get answer date
prayer.answer_testimony(session) - Get answer testimony

Database Queries

Uses SQLModel select statements with joins
Complex aggregations for feed counts with attribute filtering
Proper filtering for flagged content and archived prayers across all views
Optimized queries with composite indexes for prayer attributes

HTMX Integration

Prayer Marking: Seamless marking without page reload
Content Flagging: Immediate content shielding with visual feedback
Prayer Status Management: Archive, restore, and mark as answered with instant UI updates
Testimony Collection: Modal-based testimony input with celebration themes
Status-Aware Styling: Dynamic CSS classes for archived (amber) and answered (green) prayers
Invite Generation: Modal-based invite link creation with copy functionality and no layout shifts
Loading Indicators: Visual feedback during async operations
Context-Aware Responses: Different behavior for admin panel vs main feed vs celebration pages

User Authentication Templates (New)

templates/login.html: User-friendly login form with username input and clear messaging
templates/logged_out.html: Enhanced with conditional login button display
templates/unauthorized.html: Access required page with conditional login option
templates/auth_pending.html: Lobby/waiting room for authentication approval
Feature-flag controlled visibility: All login UI elements respect MULTI_DEVICE_AUTH_ENABLED setting

Error Handling

HTTPException for authentication failures
Graceful fallbacks for AI generation
Database transaction safety
Permission checks for sensitive operations

Documentation Maintenance Protocol

CRITICAL REQUIREMENT: After every commit, update documentation immediately:

Required Updates Per Commit

CLAUDE.md Updates:
- Add new CLI commands or tools
- Update environment variables
- Add new features to Features section
- Update Recent Changes with commit details
AI_PROJECT_GUIDE.md Updates:
- Update architecture changes (new files, modules, routes)
- Add new API endpoints or route changes
- Update feature descriptions for UI/UX changes
- Add to Recent Updates section with chronological order
Commit Message Review Process:
- Read every commit message for documentation-relevant changes
- Update terminology changes throughout relevant sections
- Document new tools, scripts, or utilities
- Track performance improvements and bug fixes

Documentation Standards

Keep Recent Updates in reverse chronological order (newest first)
Include month/year for context (e.g., "July 2025")
Be specific about what changed and why
Link related changes together in bullet points

Common Development Tasks

Adding New Feed Types

Add logic to main feed route in app.py
Update get_feed_counts() function in app_helpers/services/prayer_helpers.py
Add UI option in templates
Functions are available via both import paths for compatibility

Creating Modal Interactions

Use HTMX hx-target="body" and hx-swap="beforeend" for modals
Return HTML with fixed positioning and backdrop
Add JavaScript functions for close/escape/click-away behavior
Include copy functionality with clipboard API and fallback selection

Modifying Prayer Generation

Edit system prompt in generate_prayer() function
Adjust model parameters (temperature, max_tokens)
Test fallback behavior

Adding Prayer Status Features

New Status Attributes: Add helper methods to Prayer model using set_attribute()
Feed Filtering: Update queries to exclude/include based on attributes
UI Status Indicators: Add CSS classes and visual feedback for new statuses
HTMX Endpoints: Create status management routes with permission checks
Activity Logging: Ensure all status changes are logged for audit trail

Database Changes

Update models in models.py
Handle migration manually (SQLite) or use migration scripts for attributes
Update related queries in helper modules with proper attribute filtering
Add database indexes for performance optimization

Applying Resilient Refactoring Patterns (New)

When making significant code changes, follow the successful patterns used in our modular refactoring:

Key Principles

Zero Breaking Changes: Maintain all existing entry points and function signatures
Additive Approach: Create new alongside old, don't replace existing code
Backward Compatibility: Ensure all existing imports and function calls continue to work
Incremental Validation: Test each change independently with full rollback capability
Optional Adoption: New structure supplements existing, doesn't force migration

Implementation Strategy

Extract & Import Pattern: Move code to new modules, then import back to maintain entry points
Parallel Development: Create new structure alongside existing (e.g., semantic CSS, new templates)
Feature Flags: Enable gradual adoption with instant rollback capability
Comprehensive Testing: Maintain 100% test compatibility throughout changes
Documentation: Update guides to reflect new architecture while preserving existing patterns

Success Metrics

100% test pass rate maintained throughout refactoring process
All existing functionality continues to work unchanged
Immediate rollback capability (< 1 minute for any change)
Enhanced maintainability without forcing adoption of new patterns

Moderation Features

Flagging logic in /flag/{pid} endpoint
Shielded content HTML templates
Admin panel management tools
Community safety measures

Security Considerations

Core Security

Invite-only system prevents spam and unauthorized access
Community moderation with immediate content shielding
Admin oversight for final moderation decisions
Granular permissions: Users can flag, only admins can unflag
Session expiration (14 days) with secure cookies
Input validation for prayer content and user data
No direct database exposure through proper ORM usage

Multi-Device Authentication Security

Rate limiting: 3 authentication requests per hour per user/IP
Session hijacking detection: IP address monitoring and logging
Device fingerprinting: Browser and device information tracking
Audit trail: Complete logging of all authentication actions
Request expiration: 7-day automatic expiration of pending requests
Configurable approval requirements: Flexible security based on community needs
Security event monitoring: Comprehensive logging of suspicious activity

Deployment Notes

SQLite database file: thywill.db (auto-migrates for multi-device auth)
Run with: uvicorn app:app --reload
Requires valid AI provider configuration (Anthropic or OpenAI keys)
Static files served from templates directory
HTMX CDN dependency for interactive features
Automatic database migration on startup for existing installations
Environment variables configurable via .env file (see .env.example)

UI/UX Design Patterns

Simplified Front Page Layout (Current)

Header Section: Clean title with compact action buttons (Invite & Add Prayer)
Collapsible Prayer Form: Hidden by default, toggles with JavaScript for cleaner interface
Compact Feed Navigation: Smaller tabs with counts, mobile-friendly horizontal scroll
Subtle Daily Prompt: Minimal amber-colored section, only shows when prompt exists
Prayer-Focused Content: Main feed prominently displays prayers with clear hierarchy

Design Principles

Prayer-First: Prayer content is the primary focus, other features are secondary
Progressive Disclosure: Advanced features (form, invites) are accessible but not prominent
Layout Stability: Modal overlays prevent layout shifts during interactions
Mobile-Responsive: Horizontal scrolling navigation, stacked mobile layout
Clean Typography: Clear visual hierarchy between prayers, requests, and metadata
Accessible Colors: Purple/gray theme with proper contrast ratios

Interactive Elements

Toggle-based Form: JavaScript-powered show/hide for prayer submission
HTMX Integration: Dynamic prayer marking, flagging, status management, and invite generation without page reloads
Modal Overlays: Invite generation uses modal overlay to prevent layout shifts
Copy Functionality: One-click invite link copying with visual feedback
Click-Away Interactions: Modals can be dismissed by clicking backdrop or pressing Escape
Visual Feedback: Clear states for prayed/unprayed items, flagged content, archived/answered status, loading indicators
Responsive Navigation: Auto-hiding scrollbars, mobile swipe hints
Immediate Actions: No confirmation dialogs for smoother community moderation

Content Organization

Generated prayers are prominently displayed in larger text
Original requests are shown in secondary gray boxes
Prayer statistics and actions are in footer area
Flagged content shown with warning banners and admin controls
Empty states provide clear guidance for next actions

Community Moderation UI

Accessible Flag Button: Available to all users for community moderation
Shielded Content Display: Clear warning with admin-only preview
Context-Aware Controls: Different buttons and actions based on user role
Immediate Visual Feedback: Loading states and seamless content updates

📝 Note for AI Assistants: This guide reflects the complete prayer lifecycle management system with flexible attributes architecture, community-driven moderation, and comprehensive multi-device authentication. The platform balances security with usability through configurable approval workflows while maintaining admin oversight for content moderation, authentication management, and prayer status transitions. The prayer attributes system allows unlimited status combinations and extensibility without breaking changes.

🔄 Recent Updates:

Single Prayer Import Deduplication (July 2025): Stopped duplicate activity rows during --update-existing imports and added cleanup tooling
- Importer now compares activity timestamps within the minute to respect archive precision
- _parse_single_timestamp accepts seconds to avoid fallback-to-now behaviour
- New CLI: ./thywill heal-prayer-activities --dry-run previews minute-level dedupe, ./thywill heal-prayer-activities executes cleanup
- Maintenance script (tools/repair/deduplicate_prayer_activities.py) removes existing duplicates while preserving original second-precision entries
Prayer Categorization System (July 2025): Implemented comprehensive archive-first categorization with 18 feature flags
- Added AI-powered and keyword-based prayer categorization for safety, subject, and specificity
- Created visual category badges on prayer cards with color-coded icons (🏥 Health, 💼 Work, etc.)
- Implemented feed filtering UI with category dropdown and safety filters
- Added circuit breaker pattern for AI service reliability and graceful degradation
- Database migration 011_prayer_categorization adds categorization fields to Prayer model
- All features disabled by default through feature flags for safe deployment
- Archive-first architecture ensures categorization metadata included in text exports
Centralized Username Display System (July 2025): Implemented comprehensive supporter badge system
- Created UsernameDisplayService for centralized username display logic with caching
- Added username_display template filter for consistent supporter badges across all templates
- Updated all username display locations: prayer cards, activity feed, profiles, users directory, admin panel, header, auth requests, invite tree
- Fixed broken supporter badge implementation in prayer cards
- Ensures supporter badges appear everywhere usernames are displayed
User Attributes System (July 2025): Implemented bidirectional sync for supporter badges and user attributes
- Added is_supporter and supporter_since fields to User model
- Created text_archives/users/user_attributes.txt for manual supporter management
- Integrated export/import system for user attributes with round-trip compatibility
- Manual editing support for easy supporter status changes
UI Terminology Update (July 2025): Changed "Answered Prayers" to "Praise Reports" throughout interface (buttons, headers, feeds, modals)
Header Simplification (July 2025): Removed logout button from header to prevent accidental logouts - logout now available only through menu
Enhanced Prayer Generation (July 2025): Updated AI prompt system with improved community focus, Scripture references, and reverent tone
Documentation Tools (July 2025): Added generate_app_overview.py for live stats and md_to_pdf_simple.py for PDF conversion
Performance Improvements (July 2025): Refactored recent activity counting and standardized user field usage in tests
User-Friendly Login System: Direct login form for existing users without requiring invite links
Feature-Flag Controlled UI: Login options conditionally display based on MULTI_DEVICE_AUTH_ENABLED configuration
Enhanced Access Points: Login buttons added to unauthorized.html (Access Required page) and logged_out.html
Comprehensive Login Specification: Complete documentation of existing vs non-existing username handling behavior
Route Modularization: Authentication routes extracted to app_helpers/routes/auth_routes.py with full backward compatibility
Template Configuration Management: Feature flags properly passed to all relevant templates for conditional display
Security Preservation: All existing security measures maintained (rate limiting, audit logging, device tracking)
Lobby Integration: New login flow seamlessly integrates with existing authentication approval system
User Experience Enhancement: Clear error messages, preserved form input, and intuitive navigation flows
Resilient Code Refactoring: Successfully extracted 26+ functions into modular helper files while maintaining 100% backward compatibility and test coverage (265/265 tests passing)
Modular Architecture: Business logic organized into focused helper modules with dual import paths for flexibility
Enhanced Test Coverage: Comprehensive test fixes with proper mocking for modular architecture
Improved Maintainability: Code organization supports easier development without breaking existing integrations
Prayer Archive & Answered System: Flexible prayer status management with multi-status support (archived + answered + flagged), activity logging, and celebration features
Enhanced Feed System: New praise reports celebration feed and private archived feed with improved filtering and community metrics
Prayer Attributes Architecture: Flexible attributes table system enabling unlimited status combinations without schema changes
Multi-Device Authentication System: Comprehensive implementation with half-authenticated states, configurable approval workflows (admin/self/peer), security monitoring, and audit logging
Configurable Security: Environment variables control authentication requirements and approval counts
Enhanced UI: Prayer status management controls, celebration themes, authentication status pages, and testimony collection modals
Automatic Migration: Seamless upgrade for existing installations with preserved data and flagged prayer migration
Performance Optimizations: Database indexing, WAL mode, and efficient query patterns for attribute-based filtering

This is a faith-focused community platform emphasizing reverence, simplicity, meaningful prayer sharing, community self-moderation, and secure multi-device access.

FilesExpand file tree

AI_PROJECT_GUIDE.md

Latest commit

History