First commit. PostgreSQL schema complete with 40+ tables. Docker Compose setup. asyncpg connection pool with lifespan management.
- Infra40+ normalized tables across 7 domains
- InfraRBAC schema — roles, permissions, users
- InfraWorkflow engine tables — approval chains and escalation rules
- InfraSeed data — default roles, departments, leave types
- InfraDocker Compose setup for PostgreSQL
- Infraasyncpg connection pool with lifespan management
FastAPI gateway with JWT authentication, CORS, rate limiting, and health check. All auth endpoints live and tested.
- NewAPI Gateway — JWT, CORS, rate limiting, /health endpoint
- NewPOST /api/auth/register — user registration with email verification
- NewPOST /api/auth/login — JWT token generation
- NewPassword reset and email recovery flow
- Securitybcrypt password hashing with configurable work factor
- NewRBAC middleware — role and permission validation on every route
React frontend shell complete with protected routing, dashboard layout, and module placeholder UIs.
- NewLogin page with JWT authentication and session persistence
- NewProtected route system — redirects based on RBAC roles
- NewDashboard shell with sidebar navigation for all modules
- ImprovedToast notification system via Sonner
- NewResponsive layout with utility CSS system
All 12 core HR modules are production-ready, including Azure AD / Entra ID integration for enterprise identity. Every module is role-aware, workflow-connected, and audit-logged from day one.
- NewEmployee Management — profiles, documents, certifications, career history, bulk operations
- NewLeave Management — requests, auto balance calculation, multi-level approvals
- NewExpense Management — claims, receipt uploads, policy-enforced approvals, finance export
- NewHR Calendar — company-wide events, holidays, Outlook sync
- NewAuthentication & RBAC — JWT login, registration, password reset, granular permissions
- NewAdvance Management — salary advances, repayment scheduling, payroll deduction
- NewReports & Analytics — dashboards, headcount, org charts, exportable reports
- NewWorkflow Configuration — multi-step chains, conditional routing, escalation rules
- NewData Import — bulk import via Excel/CSV with validation
- NewAzure AD / Entra ID — Microsoft identity integration, SSO-ready, auto user provisioning
- NewAudit Trail — tamper-evident log of every action, user, timestamp, IP
- NewInventory Management — asset tracking, employee assignments, lifecycle history
Stability improvements, database query optimizations, and UX refinements following initial production feedback.
- ImprovedDatabase connection pool tuning — reduced p95 response time by ~35%
- ImprovedLeave balance calculation — handles complex carryover rules correctly
- ImprovedExpense approval notifications — sent at each approval step
- ImprovedDashboard load time — lazy-loaded analytics charts
- SecurityJWT token expiry — added configurable sliding window refresh
- ImprovedData Import error reporting — per-row validation with downloadable error report
In development
Phase 2 is currently in active development. Release notes will appear here as each module ships.
Planned for Phase 3
These features are confirmed for Phase 3. Development begins after Phase 2 ships.
Long-term roadmap
Phase 4 represents the intelligence and scale layer of PinoX. Scope may evolve based on customer feedback.