# Changelog

All notable changes to AleShell2 will be documented in this file.

The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).

## [1.0.0] - 2024-01-XX

### Added

- **Core Framework**
  - Modern MVC architecture with PSR-4 style organization
  - Request/Response handling with JSON and file download support
  - Session management with timeout and regeneration
  - CSRF protection on all forms
  - Rate limiting for login attempts
  - IP whitelist/blacklist support

- **Authentication**
  - Secure password hashing with bcrypt
  - Session-based authentication
  - Automatic logout on inactivity
  - Brute-force protection with lockout

- **File Manager**
  - Browse directories with icons
  - Create/edit/delete files and folders
  - Upload multiple files
  - Download files
  - Copy/move operations
  - Permission management (chmod)
  - File search
  - Syntax-aware icons for file types

- **Terminal**
  - Full command execution
  - Working directory tracking
  - Command history (arrow keys)
  - Built-in commands: cd, pwd, clear, help
  - Quick command buttons
  - Keyboard shortcuts

- **Code Editor**
  - Open and edit any text file
  - Tab indentation support
  - Save with Ctrl+S
  - Line/column tracking
  - Save As functionality
  - Direct download

- **Process Manager**
  - List all running processes
  - CPU and memory usage display
  - Kill processes with signal selection
  - Process filtering
  - Auto-refresh

- **Network Tools**
  - View network connections
  - Ping hosts
  - Traceroute
  - Port scanner (up to 100 ports)
  - Common port identification

- **Database Manager**
  - MySQL/MariaDB support
  - PostgreSQL support
  - SQLite support
  - Browse databases and tables
  - Execute SQL queries
  - Export to SQL/CSV
  - Query results with pagination

- **System Information**
  - Server details (hostname, OS, uptime)
  - Hardware info (CPU, memory, disk)
  - PHP configuration
  - Loaded extensions
  - Environment variables
  - Disabled functions display

- **API Endpoints**
  - Status endpoint
  - CSRF token endpoint
  - Health check
  - Quick command execution
  - PHP eval endpoint
  - File upload/download API

- **Packer**
  - Single-file generation
  - Custom password support
  - Minification option
  - All views embedded
  - No external dependencies

- **UI/UX**
  - Dark theme (GitHub-inspired)
  - Responsive design
  - Keyboard shortcuts
  - Toast notifications
  - Modal dialogs
  - Context menus
  - Loading indicators

### Security

- Password stored as bcrypt hash
- Session tokens regenerated on login
- CSRF tokens required for state-changing operations
- Input sanitization throughout
- Output escaping (XSS prevention)
- Security headers (X-Frame-Options, X-XSS-Protection, etc.)
- IP restriction support

## [Unreleased]

### Planned

- Two-factor authentication
- Audit logging
- File encryption
- SSH tunnel support
- Cron job manager
- Log viewer
- Backup manager
- Plugin system