Lucas Smith
34b31c0d80
chore: deps upgrades ( #2712 )
Continuous Integration / Build App (push) Waiting to run
Continuous Integration / Build Docker Image (push) Waiting to run
CodeQL / Analyze (push) Waiting to run
Playwright Tests / E2E Tests (push) Waiting to run
Extract and upload translations / Extract and upload translations (push) Waiting to run
2026-04-21 14:43:49 +10:00
Ephraim Duncan
4935f387bf
feat: signing reminders ( #1749 )
2026-04-14 21:01:53 +10:00
Lucas Smith
7cb64c3d04
fix: allow nullable document audit logs ( #2682 )
2026-04-08 16:23:43 +10:00
David Nguyen
14b0b4805d
feat: auto insert email and date fields ( #2639 )
2026-04-08 15:35:08 +10:00
Ephraim Duncan
36bbd97514
feat: add organisation template type ( #2611 )
2026-03-17 01:29:34 +11:00
Ephraim Duncan
70fb834a6a
feat: add more webhook events ( #2125 )
2026-03-15 19:47:52 +11:00
Lucas Smith
9f680c7a61
perf: set global prisma transaction timeouts and reduce transaction scope ( #2607 )
...
Configure default transaction options (5s maxWait, 10s timeout) on the
PrismaClient instead of per-transaction overrides. Move side effects
like email sending, webhook triggers, and job dispatches out of
$transaction blocks to avoid holding database connections open during
network I/O.
Also extracts the direct template email into a background job and fixes
a bug where prisma was used instead of tx inside a transaction.
2026-03-13 14:51:53 +11:00
Catalin Pit
c4754553c9
feat: implement template search functionality ( #2376 )
...
- Added function to handle template searches based on user input
- Introduced in the TRPC router to facilitate authenticated template
searches
- Updated to include template search results alongside document search
results
- Enhanced query handling by enabling searches only when the input is
valid
- Created corresponding Zod schemas for request and response validation
in
2026-03-09 10:44:51 +11:00
Lucas Smith
0ce909a298
refactor: find envelopes ( #2557 )
2026-03-06 12:38:40 +11:00
Lucas Smith
6f5014a561
feat: support optional read replicas ( #2540 )
2026-02-25 19:07:02 +11:00
Lucas Smith
c112392da9
feat: add admin email domain management and sync job ( #2538 )
2026-02-25 15:14:18 +11:00
Lucas Smith
653ab3678a
feat: better ratelimiting ( #2520 )
...
Replace hono-rate-limiter with a Prisma/PostgreSQL bucketed counter
approach that works correctly across multiple instances without sticky
sessions.
- Add RateLimit model with composite PK (key, action, bucket) and atomic
upsert
- Create rate limit factory with window parsing, bucket computation, and
fail-open
- Define auth-tier and API-tier rate limit instances
- Add Hono middleware, rateLimitResponse helper, and tRPC
assertRateLimit helper
- Wire rate limit headers through AppError constructor (was declared but
never assigned)
- Apply rate limits to auth routes (email-password, passkey), tRPC
routes
(2FA email, link org account), API routes, and file upload endpoints
- Add cleanup cron job for expired rate limit rows (batched delete every
15 min)
- Remove hono-rate-limiter dependency
2026-02-20 12:23:02 +11:00
Lucas Smith
006b1d0a57
feat: per-recipient envelope expiration ( #2519 )
2026-02-20 11:36:20 +11:00
Ted Liang
9c6ee88cc4
fix: security CVE-2026-23527 ( #2399 )
2026-01-27 15:52:34 +11:00
Catalin Pit
bb3e9583e4
feat: add default recipients for teams and orgs ( #2248 )
2026-01-13 20:32:00 +11:00
Lucas Smith
cef7987a72
feat: add audit logs to document details page ( #2379 )
...
- Add collapsible audit logs section with paginated table
- Add View JSON button to inspect raw audit log entries
- Display legacy document ID and recipient roles
- Add admin TRPC endpoint for fetching audit logs
- Add database index on envelopeId for DocumentAuditLog table
<img width="887" height="724" alt="image"
src="https://github.com/user-attachments/assets/aeb904c9-515f-49e1-9f8f-513aef455678 "
/>
2026-01-13 14:18:10 +11:00
David Nguyen
c2ea5e5859
fix: migrate certificate generation ( #2251 )
...
Generate certificates and audit logs using Konva instead of browserless.
This should:
- Reduce the changes of generations failing
- Improve sealing speed
2026-01-06 14:26:19 +11:00
Catalin Pit
baa2c51123
feat: add delegate document ownership option ( #2272 )
...
When using an API key created in a team context, the
documents/templates’ owner always defaults to the team API token
creator, rather than the actual uploader.
For example, John creates the API key for the team "Lawyers". Tom and
Maria use the API key to upload documents. All the uploaded documents
are attributed to John.
This makes it impossible to see who actually uploaded a document.
The new feature allows users to enable document ownership delegation
from the organization/team settings.
2025-12-23 22:08:54 +11:00
David Nguyen
0cebdec637
fix: remove legacy envelope uploads ( #2303 )
2025-12-11 14:09:38 +11:00
David Nguyen
f80aa4bf72
chore: optimize tests ( #2280 )
2025-12-06 12:59:53 +11:00
Lucas Smith
7a94ee3b83
feat: add ai detection for recipients and fields ( #2271 )
...
Use Gemini to handle detection of recipients and fields within
documents.
Opt in using organisation or team settings.
Replaces #2128 since the branch was cursed and would include
dependencies that weren't even in the lock file.
https://github.com/user-attachments/assets/e6cbb58f-62b9-4079-a9ae-7af5c4f2e4ec
2025-12-03 23:39:41 +11:00
Ephraim Duncan
94646cd48a
perf: add database indexes for insights queries ( #2211 )
2025-11-26 21:21:01 +11:00
Lucas Smith
d2176627ca
chore: dependency updates ( #2229 )
2025-11-22 20:28:20 +11:00
David Nguyen
56526f9448
feat: extend use envelope response ( #2192 )
2025-11-14 13:52:19 +11:00
Lucas Smith
3d1fe85d62
fix: add foreign key indexes ( #2184 )
...
Can't believe we missed some of these ☠️
2025-11-13 10:43:11 +11:00
David Nguyen
e2f5e570cf
fix: envelope direct template ( #2156 )
2025-11-09 22:23:13 +11:00
David Nguyen
9fd9613076
feat: add additional field options ( #2154 )
2025-11-08 23:40:03 +11:00
David Nguyen
d05bfa9fed
feat: add envelopes api ( #2105 )
2025-11-07 14:17:52 +11:00
David Nguyen
d2a009d52e
fix: allow direct template recipient dictation ( #2108 )
2025-11-01 12:44:34 +11:00
David Nguyen
03eb6af69a
feat: polish envelopes ( #2090 )
...
## Description
The rest of the owl
2025-10-24 16:22:06 +11:00
Lucas Smith
2eebc0e439
feat: add attachments ( #2091 )
2025-10-23 23:07:10 +11:00
David Nguyen
7f09ba72f4
feat: add envelopes ( #2025 )
...
This PR is handles the changes required to support envelopes. The new
envelope editor/signing page will be hidden during release.
The core changes here is to migrate the documents and templates model to
a centralized envelopes model.
Even though Documents and Templates are removed, from the user
perspective they will still exist as we remap envelopes to documents and
templates.
2025-10-14 21:56:36 +11:00
Lucas Smith
3c646d9475
feat: remove email requirement for recipients ( #2040 )
2025-09-23 17:13:52 +10:00
David Nguyen
9ac7b94d9a
feat: add organisation sso portal ( #1946 )
...
Allow organisations to manage an SSO OIDC compliant portal. This method
is intended to streamline the onboarding process and paves the way to
allow organisations to manage their members in a more strict way.
2025-09-09 17:14:07 +10:00
Catalin Pit
d1eb14ac16
feat: include audit trail log in the completed doc ( #1916 )
...
This change allows users to include the audit trail log in the completed
documents; similar to the signing certificate.
https://github.com/user-attachments/assets/d9ae236a-2584-4ad6-b7bc-27b3eb8c74d3
It also solves the issue with the text cutoff.
2025-08-07 11:44:59 +10:00
David Nguyen
3409aae411
feat: add email domains ( #1895 )
...
Implemented Email Domains which allows Platform/Enterprise customers to
send emails to recipients using their custom emails.
2025-07-24 16:05:00 +10:00
Catalin Pit
7a5a9eefe8
feat: upload template via API ( #1842 )
...
Allow users to upload templates via both v1 and v2 APIs. Similar to
uploading documents.
2025-07-23 14:41:12 +10:00
David Nguyen
32a5d33a16
fix: invalid folder queries ( #1898 )
...
Currently the majority of folder mutations only work if the user is the
owner of the folder.
2025-07-16 14:37:55 +10:00
Ephraim Duncan
400d2a2b1a
feat: sign out of all sessions ( #1797 )
2025-06-11 17:57:38 +10:00
David Nguyen
e6dc237ad2
feat: add organisations ( #1820 )
2025-06-10 11:49:52 +10:00
Lucas Smith
93aece9644
chore: dependency updates ( #1808 )
2025-05-22 14:30:22 +10:00
Catalin Pit
17370749b4
feat: add folders ( #1711 )
2025-05-02 02:46:59 +10:00
Lucas Smith
12ada567f5
feat: embed authoring part two ( #1768 )
2025-05-01 23:32:56 +10:00
Ephraim Duncan
bdb0b0ea88
feat: certificate qrcode ( #1755 )
...
Adds document access tokens and QR code functionality to enable secure
document sharing via URLs. It includes a new document access page that
allows viewing and downloading documents through tokenized links.
2025-04-28 11:30:09 +10:00
David Nguyen
193325717d
fix: rework fields ( #1697 )
...
Rework:
- Field styling to improve visibility
- Field insertions, better alignment, centering and overflows
## Changes
General changes:
- Set default text alignment to left if no meta found
- Reduce borders and rings around fields to allow smaller fields
- Removed lots of redundant duplicated code surrounding field rendering
- Make fields more consistent across viewing, editing and signing
- Add more transparency to fields to allow users to see under fields
- No more optional/required/etc colors when signing, required fields
will be highlighted as orange when form is "validating"
Highlighted internal changes:
- Utilize native PDF fields to insert text, instead of drawing text
- Change font auto scaling to only apply to when the height overflows
AND no custom font is set
⚠️ Multiline changes:
Multi line is enabled for a field under these conditions
1. Field content exceeds field width
2. Field includes a new line
3. Field type is TEXT
## [BEFORE] Field UI Signing
## [AFTER] Field UI Signing
## [BEFORE] Signing a checkbox
## [AFTER] Signing a checkbox
## [BEFORE] What a 2nd recipient sees once someone else signed a
document
## [AFTER] What a 2nd recipient sees once someone else signed a document
## **[BEFORE]** Inserting fields
## **[AFTER]** Inserting fields
## Overflows, multilines and field alignments testing
Debugging borders:
- Red border = The original field placement without any modifications
- Blue border = The available space to overflow
### Single line overflows and field alignments
This is left aligned fields, overflow will always go to the end of the
page and will not wrap
This is center aligned fields, the max width is the closest edge to the
page * 2
This is right aligned text, the width will extend all the way to the
left hand side of the page
### Multiline line overflows and field alignments
These are text fields that can be overflowed
Another example of left aligned text overflows with more text
2025-04-23 21:40:42 +10:00
David Nguyen
063fd32f18
feat: add signature configurations ( #1710 )
...
Add ability to enable or disable allowed signature types:
- Drawn
- Typed
- Uploaded
**Tabbed style signature dialog**
**Document settings**
**Team preferences**
- Add multiselect to select allowed signatures in document and templates
settings tab
- Add multiselect to select allowed signatures in teams preferences
- Removed "Enable typed signatures" from document/template edit page
- Refactored signature pad to use tabs instead of an all in one
signature pad
Added E2E tests to check settings are applied correctly for documents
and templates
2025-03-24 17:13:11 +11:00
Lucas Smith
f1525991dc
feat: dictate next signer ( #1719 )
...
Adds next recipient dictation functionality to document signing flow,
allowing assistants and signers to update the next recipient's
information during the signing process.
## Related Issue
N/A
## Changes Made
- Added form handling for next recipient dictation in signing dialogs
- Implemented UI for updating next recipient information
- Added e2e tests covering dictation scenarios:
- Regular signing with dictation enabled
- Assistant role with dictation
- Parallel signing flow
- Disabled dictation state
## Testing Performed
- Added comprehensive e2e tests covering:
- Sequential signing with dictation
- Assistant role dictation
- Parallel signing without dictation
- Form validation and state management
- Tested on Chrome and Firefox
- Verified recipient state updates in database
2025-03-21 13:27:04 +11:00
Lucas Smith
63a4bab0fe
feat: better document rejection ( #1702 )
...
Improves the existing document rejection process by actually marking a
document as completed cancelling further actions.
## Related Issue
N/A
## Changes Made
- Added a new rejection status for documents
- Updated a million areas that check for document completion
- Updated email sending, so rejection is confirmed for the rejecting
recipient while other recipients are notified that the document is now
cancelled.
## Testing Performed
- Ran the testing suite to ensure there are no regressions.
- Performed manual testing of current core flows.
2025-03-13 15:08:57 +11:00
David Nguyen
e08d62c844
fix: remove invalid prisma zod schemas
2025-03-04 01:20:13 +11:00
David Nguyen
25bb6ffe77
fix: imports
2025-03-03 14:49:28 +11:00
