simpaticohr
diff --git a/‎.gitignore‎
Lines changed: 14 additions & 1 deletion b/‎.gitignore‎
Lines changed: 14 additions & 1 deletion
diff --git a/‎auth/register-company.html‎
Lines changed: 3 additions & 13 deletions b/‎auth/register-company.html‎
Lines changed: 3 additions & 13 deletions
diff --git a/‎backend/simpatico-ats.js‎
Lines changed: 431 additions & 273 deletions b/‎backend/simpatico-ats.js‎
Lines changed: 431 additions & 273 deletions
diff --git a/‎backend/wrangler.toml‎
Lines changed: 10 additions & 11 deletions b/‎backend/wrangler.toml‎
Lines changed: 10 additions & 11 deletions
diff --git a/‎contact.html‎
Lines changed: 3 additions & 3 deletions b/‎contact.html‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎dashboard/hr.html‎
Lines changed: 5 additions & 4 deletions b/‎dashboard/hr.html‎
Lines changed: 5 additions & 4 deletions
diff --git a/‎js/hr-config.js‎
Lines changed: 3 additions & 3 deletions b/‎js/hr-config.js‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎migrations/023_companies_rls_byok_protection.sql‎
Lines changed: 62 additions & 0 deletions b/‎migrations/023_companies_rls_byok_protection.sql‎
Lines changed: 62 additions & 0 deletions
diff --git a/‎migrations/024_payment_gateway_update.sql‎
Lines changed: 25 additions & 0 deletions b/‎migrations/024_payment_gateway_update.sql‎
Lines changed: 25 additions & 0 deletions
@@ -1,8 +1,21 @@
-node_modules/
+node_modules/
 
 # wrangler files
 .wrangler
 .dev.vars*
 !.dev.vars.example
 .env*
 !.env.example
+
+# Test & debug files
+test-*.js
+req.js
+fix-*.js
+commit-fixes.bat
+git_status.txt
+file-list.txt
+
+# Temp SQL files
+fix-*.sql
+fix_*.sql
+schema-audit.sql
@@ -518,20 +518,10 @@ <h3 style="font-size: 1rem; margin-bottom: 1rem;">Setup Preferences</h3>
           console.warn('[registration] Worker company create failed, trying direct:', workerErr);
         }
 
-        // 3. Fallback: direct insert if Worker unavailable
+        // 3. If Worker API failed, show user-friendly error instead of bypassing server validation
         if (!companyId) {
-          try {
-            const { data: company, error: ce } = await db.from('companies').insert({
-              name: payload.company_name, email: payload.email,
-              contact_email: payload.email, industry: payload.industry,
-              company_size: payload.company_size, website: payload.website,
-              subscription_plan: 'trial', is_active: true,
-              subscription_start: new Date().toISOString().split('T')[0],
-              subscription_end: new Date(Date.now() + 2 * 24 * 60 * 60 * 1000).toISOString().split('T')[0]
-            }).select().single();
-            if (!ce && company) companyId = company.id;
-            else console.warn('[registration] Direct companies insert failed:', ce?.message);
-          } catch (e) { console.warn('[registration] Direct insert error:', e); }
+          toast('Our registration service is temporarily unavailable. Please try again in a few minutes.', 'error');
+          return;
         }
 
         // 4. Create user profile
 
@@ -25,6 +25,9 @@ workers_dev = true
 PLATFORM_NAME = "Simpatico HR Enterprise"
 ENVIRONMENT = "production"
 API_VERSION = "5.0.0-Industrial"
+CCAVENUE_ENV = "test"
+FRONTEND_URL = "https://simpaticohrconsultancy.com"
+WORKER_URL = "https://simpatico-hr-ats.simpaticohrconsultancy.workers.dev"
 
 # ── Cloudflare AI (This Fixes the AI Assistant Tab) ──
 [env.production.ai]
@@ -55,16 +58,12 @@ binding = "HR_KV"
 id = "01a7d0500ff94d09b7086b56be975d0c"
 
 # ── Payment Gateway Config ──
-# Set secrets via: wrangler secret put CASHFREE_APP_ID --env production
+# Set secrets via: wrangler secret put CCAVENUE_MERCHANT_ID --env production
 # Required secrets:
-#   CASHFREE_APP_ID        — From Cashfree dashboard
-#   CASHFREE_SECRET_KEY    — From Cashfree dashboard
-#   PADDLE_API_KEY         — From Paddle dashboard > Developer Tools
-#   PADDLE_WEBHOOK_SECRET  — From Paddle dashboard > Notifications
+#   CCAVENUE_MERCHANT_ID     — From CCAvenue M.A.R.S. dashboard
+#   CCAVENUE_ACCESS_CODE     — From CCAvenue dashboard > API Keys
+#   CCAVENUE_WORKING_KEY     — From CCAvenue dashboard > API Keys
+#   WISE_API_TOKEN           — From Wise Business > API Tokens (optional)
 
-# Non-secret vars:
-# [env.production.vars]
-# CASHFREE_ENV = "sandbox"        # "sandbox" or "production"
-# PADDLE_ENV = "sandbox"          # "sandbox" or "production"
-# FRONTEND_URL = "https://simpaticohr.github.io"
-# WORKER_URL = "https://simpatico-hr-ats.simpaticohrconsultancy.workers.dev"
+# Non-secret vars (added to [env.production.vars] above):
+# CCAVENUE_ENV, FRONTEND_URL, WORKER_URL are set in [env.production.vars]
@@ -518,7 +518,7 @@ <h3>HRMS & Payroll</h3>
     <div class="how-card">
       <div class="h-icon"><i class="fas fa-shield-halved" style="color:#dc2626"></i></div>
       <h3>Enterprise Security</h3>
-      <p>Multi-tenant isolation, RBAC, JWT auth, TLS 1.3, Razorpay PCI DSS L1 payments</p>
+      <p>Multi-tenant isolation, RBAC, JWT auth, TLS 1.3, CCAvenue PCI DSS L1 payments</p>
     </div>
   </div>
 
@@ -528,7 +528,7 @@ <h3>Built With Modern Infrastructure</h3>
       <span class="region-tag"><i class="fas fa-cloud" style="color:var(--accent);margin-right:4px"></i> Cloudflare Workers</span>
       <span class="region-tag"><i class="fas fa-database" style="color:#059669;margin-right:4px"></i> Supabase PostgreSQL</span>
       <span class="region-tag"><i class="fas fa-brain" style="color:#7c3aed;margin-right:4px"></i> AI/LLM Integration</span>
-      <span class="region-tag"><i class="fas fa-credit-card" style="color:#0078d4;margin-right:4px"></i> Razorpay Payments</span>
+      <span class="region-tag"><i class="fas fa-credit-card" style="color:#0078d4;margin-right:4px"></i> CCAvenue + Wise Payments</span>
       <span class="region-tag"><i class="fas fa-lock" style="color:#dc2626;margin-right:4px"></i> Row-Level Security</span>
       <span class="region-tag"><i class="fas fa-language" style="color:var(--orange);margin-right:4px"></i> Multi-Language</span>
       <span class="region-tag"><i class="fas fa-key" style="color:#eab308;margin-right:4px"></i> BYOK AI Support</span>
@@ -547,7 +547,7 @@ <h2 class="fade-in">Frequently Asked Questions</h2>
   </div>
   <div class="faq-item fade-in">
     <div class="faq-q" onclick="toggleFaq(this)">How is my company's data secured? <i class="fas fa-chevron-down"></i></div>
-    <div class="faq-a">We use <strong>multi-tenant row-level security</strong> on Supabase (PostgreSQL), TLS 1.3 encryption in transit, JWT-based authentication via Cloudflare Workers, and Razorpay PCI DSS Level 1 for payments. Each organization's data is completely isolated.</div>
+    <div class="faq-a">We use <strong>multi-tenant row-level security</strong> on Supabase (PostgreSQL), TLS 1.3 encryption in transit, JWT-based authentication via Cloudflare Workers, and CCAvenue PCI DSS Level 1 for domestic payments and Wise for international payments. Each organization's data is completely isolated.</div>
   </div>
   <div class="faq-item fade-in">
     <div class="faq-q" onclick="toggleFaq(this)">How long does enterprise onboarding take? <i class="fas fa-chevron-down"></i></div>
 
@@ -2051,10 +2051,11 @@ <h4>Multi-Platform Job Syndication</h4>
                         const saveData = await saveRes.json();
                         console.log('[BYOK] Config saved via backend:', saveData);
 
-                        // Also update local cache for UI state
-                        localStorage.setItem('simpatico_ai_settings_' + tenantId, JSON.stringify(updates));
-                        Object.assign(compData, updates);
-                        localStorage.setItem('simpatico_company', JSON.stringify(compData));
+                        // Also update local cache for UI state (never store api_key in localStorage)
+                        const safeUpdates = { ai_provider: updates.ai_provider, ai_model: updates.ai_model, ai_base_url: updates.ai_base_url };
+                        localStorage.setItem('simpatico_ai_settings_' + tenantId, JSON.stringify(safeUpdates));
+                        const { ai_api_key: _discardKey, ...safeCompData } = { ...compData, ...safeUpdates };
+                        localStorage.setItem('simpatico_company', JSON.stringify(safeCompData));
 
                         if (typeof showToast === 'function') {
                             let modelLabel;
 
@@ -29,9 +29,9 @@ window.SIMPATICO_CONFIG = {
   },
   appVersion: '5.0.0-Industrial',
 
-  // 5. PAYMENT GATEWAY — Razorpay (Test Mode)
-  razorpayKeyId: 'rzp_test_yourtestkeyhere',   // Replace with your Razorpay Test Key ID
-  razorpayEnv: 'test',                          // 'test' or 'live'
+  // 5. PAYMENT GATEWAYS — CCAvenue (Domestic) + Wise (International)
+  ccavenueMerchantId: '',                       // Set your CCAvenue Merchant ID
+  ccavenueEnv: 'test',                          // 'test' or 'production'
 
   // Helper to generate Trace IDs for debugging (crypto-safe)
   generateTraceId: () => {
 
@@ -0,0 +1,62 @@
+-- ═══════════════════════════════════════════════════════════════════════════════
+-- SIMPATICO HR — COMPANIES TABLE RLS + BYOK COLUMN PROTECTION
+-- ═══════════════════════════════════════════════════════════════════════════════
+-- Fixes Critical Issue C5: The `companies` table had NO Row-Level Security.
+-- This migration enables RLS and adds tenant-scoped policies to prevent
+-- cross-tenant access to BYOK AI configuration (api keys, provider, model).
+-- ═══════════════════════════════════════════════════════════════════════════════
+
+-- 1. Enable RLS on the companies table
+ALTER TABLE public.companies ENABLE ROW LEVEL SECURITY;
+
+-- 2. Service role bypass (Worker API uses service_role for backend operations)
+CREATE POLICY "service_full_access" ON public.companies
+  FOR ALL TO service_role
+  USING (true)
+  WITH CHECK (true);
+
+-- 3. Authenticated users can only read their own company row
+-- The tenant_id in JWT claims must match the company's id
+CREATE POLICY "tenant_read_own_company" ON public.companies
+  FOR SELECT TO authenticated
+  USING (
+    id = COALESCE(
+      (auth.jwt()->'app_metadata'->>'tenant_id'),
+      (auth.jwt()->'app_metadata'->>'company_id'),
+      (auth.jwt()->'user_metadata'->>'tenant_id'),
+      (auth.jwt()->'user_metadata'->>'company_id'),
+      'SIMP_PRO_MAIN'
+    )
+  );
+
+-- 4. Only service_role (backend Worker) can update company rows
+-- Authenticated users must go through the Worker API endpoints
+-- which enforce role checks (admin, company_admin, etc.)
+CREATE POLICY "tenant_update_own_company" ON public.companies
+  FOR UPDATE TO authenticated
+  USING (
+    id = COALESCE(
+      (auth.jwt()->'app_metadata'->>'tenant_id'),
+      (auth.jwt()->'app_metadata'->>'company_id'),
+      (auth.jwt()->'user_metadata'->>'tenant_id'),
+      (auth.jwt()->'user_metadata'->>'company_id'),
+      'SIMP_PRO_MAIN'
+    )
+  )
+  WITH CHECK (
+    id = COALESCE(
+      (auth.jwt()->'app_metadata'->>'tenant_id'),
+      (auth.jwt()->'app_metadata'->>'company_id'),
+      (auth.jwt()->'user_metadata'->>'tenant_id'),
+      (auth.jwt()->'user_metadata'->>'company_id'),
+      'SIMP_PRO_MAIN'
+    )
+  );
+
+-- ═══════════════════════════════════════════════════════════════════════════════
+-- DONE. After running this migration:
+-- 1. The `companies` table now has RLS enabled
+-- 2. Authenticated users can only read/update their OWN company row
+-- 3. The backend Worker (service_role) retains full access for admin operations
+-- 4. Direct Supabase API calls with anon/authenticated keys are now tenant-scoped
+-- ═══════════════════════════════════════════════════════════════════════════════
@@ -0,0 +1,25 @@
+-- Migration 024: Update payment tables for CCAvenue + Wise gateway switch
+-- Replaces Razorpay references with dual-gateway support:
+--   CCAvenue (domestic INR) + Wise (international USD)
+-- ═══════════════════════════════════════════════════════════════════
+
+-- 1. Add new columns to payment_transactions for richer tracking
+ALTER TABLE payment_transactions ADD COLUMN IF NOT EXISTS gateway_payment_id TEXT;
+ALTER TABLE payment_transactions ADD COLUMN IF NOT EXISTS payment_method TEXT;       -- upi, card, netbanking, wallet, bank_transfer
+ALTER TABLE payment_transactions ADD COLUMN IF NOT EXISTS gateway_response JSONB DEFAULT '{}';
+ALTER TABLE payment_transactions ADD COLUMN IF NOT EXISTS customer_email TEXT;
+ALTER TABLE payment_transactions ADD COLUMN IF NOT EXISTS customer_name TEXT;
+ALTER TABLE payment_transactions ADD COLUMN IF NOT EXISTS is_international BOOLEAN DEFAULT false;
+
+-- 2. Add amount column to subscriptions if not present
+ALTER TABLE subscriptions ADD COLUMN IF NOT EXISTS amount NUMERIC(12, 2);
+
+-- 3. Create indexes for new columns
+CREATE INDEX IF NOT EXISTS idx_payment_transactions_gateway ON payment_transactions(gateway);
+CREATE INDEX IF NOT EXISTS idx_payment_transactions_gateway_payment_id ON payment_transactions(gateway_payment_id);
+CREATE INDEX IF NOT EXISTS idx_payment_transactions_is_international ON payment_transactions(is_international);
+
+-- 4. Update any existing gateway references (data migration)
+-- Convert old 'razorpay' gateway entries to 'legacy_razorpay' for audit trail
+UPDATE payment_transactions SET gateway = 'legacy_razorpay' WHERE gateway = 'razorpay';
+UPDATE subscriptions SET gateway = 'legacy_razorpay' WHERE gateway = 'razorpay';