Progress

• ✓ AbstractId base class
• ✓ Timestamps value object
• ✓ DomainEventInterface contract
• ✓ TenantId shared value object
• ✓ FileStorageServiceInterface + Flysystem adapter
• ✓ OrganizationContextResolverInterface
• ✓ OrgMembershipCheckInterface
• ○ Module entitlement contracts

• ✓ Tenant aggregate (create, status, type, locale, slug)
• ✓ User aggregate (OIDC, profile, invite, status, roles)
• ✓ ApiKey aggregate
• ✓ Zitadel OIDC bearer authenticator
• ✓ Zitadel OIDC session authenticator
• ✓ API key authenticator
• ✓ X-Organization-Id context resolution
• ✓ SecurityUser with tenantId + organizationId
• ✓ Admin UI (tenants, users, API keys)
• ○ Passkey support via Zitadel
• ○ Mailgun transactional email integration
• ○ Password reset flow via Zitadel + Mailgun
• ○ Email verification flow

• ✓ Organization aggregate (create, update, archive, ltree)
• ✓ OrgMembership aggregate (join, leave, roles)
• ✓ OrgAuthorizationChecker (ltree cascading)
• ✓ RootOrganizationProvisioner
• ✓ Org context resolver + membership check
• ✓ Admin UI + API controllers
• ✓ registrationMode per org (open, invite_only, by_request)
• ○ OrgInvitation entity + invite/accept endpoints
• ○ Leave org endpoint + auto-remove group memberships
• ○ GET /api/v1/me/organizations (cross-tenant org list)

• ✓ Group aggregate (create, update, delete, archive, hierarchy)
• ✓ GroupMembership aggregate (add, remove, roles)
• ✓ Org-scoped repos and queries
• ✓ Admin UI + API controllers
• ○ Group visibility (open, request, invite-only)
• ○ Group type filtering

• ✓ Event aggregate (create, update, publish, cancel)
• ✓ EventRegistration aggregate (register, cancel)
• ✓ Timezone + RecurrenceRule value objects
• ✓ Org-scoped repos and queries
• ✓ Admin UI + API controllers
• ○ Event ↔ Group relationship
• ○ Calendar export (iCal)
• ○ RSVP Level 2 (capacity, waitlist)

• ○ People profile (name, photo, bio, contact)
• ○ Privacy settings (who sees what)
• ○ Searchable member directory (org-scoped)
• ○ Contact actions (email, phone)

• ○ News post aggregate (create, edit, delete, schedule)
• ○ Multi-level feed (org-scoped, cascading)
• ○ Rich text with images
• ○ Post targeting (all / org / group)
• ○ Admin UI + API controllers

• ○ Firebase FCM integration (Android)
• ○ APNs integration (iOS)
• ○ Web push (service worker)
• ○ Notification types (news, event, group)
• ○ Member preferences (per-type toggle)
• ○ Deep link from notification to screen

• ✓ AuditEntry entity
• ✓ AuditEventHandler (Messenger async)
• ✓ Audit log query
• ✓ Superadmin UI

• ✓ EntitySnapshot entity
• ✓ HistoryEventHandler (versioned snapshots)

• ✓ Expo project with Expo Router
• ✓ Design system tokens (theme.ts)
• ✓ UI component library (Button, Input, Card, etc.)
• ✓ Design system showcase page
• ✓ 4-tab navigation shell
• ○ Auth flow (OIDC → Zitadel)
• ○ API client + token management
• ○ Org context provider

• ○ Org picker / switcher
• ○ Feed screen (news, pull-to-refresh)
• ○ Groups screens (my groups, discovery, detail)
• ○ Events screens (upcoming, detail, RSVP)
• ○ Directory screens (search, profile view)
• ○ Profile screens (edit, privacy, notifications)
• ○ Settings (language toggle DE/EN)

• ✓ Open join — auto-membership on first API call
• ✓ registrationMode per org
• ○ Org switching (GET /me/organizations + org picker)
• ○ Invite-only join (admin sends invite → member accepts)
• ○ Leave org (member can leave, auto-removes memberships)
• ○ Invite link / QR code generation

• ✓ Docker Compose (PostgreSQL, Redis, Zitadel, MinIO, Mailpit)
• ✓ Zitadel OIDC setup script
• ✓ make setup / make serve / make worker
• ✓ Seed command (sample data)
• ✓ Subdomain testing via lvh.me

• ○ PHPStan + Deptrac + PHPUnit pipeline
• ○ ESLint + TypeScript check
• ○ Staging auto-deploy on merge to main
• ○ Production deploy on tag

• ○ Hetzner servers via OpenTofu
• ○ Cloudflare R2 + CDN
• ○ Cloudflare Pages (PWA hosting)
• ○ Zitadel production deployment

• ✓ Deptrac boundary enforcement (0 violations)
• ✓ 96 unit tests, 285 assertions
• ✓ Domain event JSON serialization
• ○ OpenAPI documentation
• ○ Integration tests for infrastructure layer

• ✓ Super admin dashboard (tenant list)
• ✓ User management (list, search, roles)
• ✓ Audit log viewer
• ✓ Organization tree management
• ✓ Group management
• ✓ Event management
• ○ Self-service tenant creation wizard
• ○ Member invite (link, QR, email)
• ○ News content management
• ○ Basic dashboard (member count, activity)
• ○ Conflict detection (duplicate tenants)