feat: initial public release

ConsentOS — a privacy-first cookie consent management platform. Self-hosted, source-available alternative to OneTrust, Cookiebot, and CookieYes. Full standards coverage (IAB TCF v2.2, GPP v1, Google Consent Mode v2, GPC, Shopify Customer Privacy API), multi-tenant architecture with role-based access, configuration cascade (system → org → group → site → region), dark-pattern detection in the scanner, and a tamper-evident consent record audit trail. This is the initial public release. Prior development history is retained internally. See README.md for the feature list, architecture overview, and quick-start instructions. Licensed under the Elastic Licence 2.0 — self-host freely; do not resell as a managed service.
2026-04-13 14:20:15 +00:00
commit fbf26453f2
341 changed files with 62807 additions and 0 deletions
--- a/apps/api/src/models/site_config.py
+++ b/apps/api/src/models/site_config.py
@@ -0,0 +1,63 @@
+import uuid
+
+from sqlalchemy import ForeignKey, Integer, String, Text
+from sqlalchemy.dialects.postgresql import JSONB, UUID
+from sqlalchemy.orm import Mapped, mapped_column, relationship
+
+from src.models.base import Base, TimestampMixin, UUIDPrimaryKeyMixin
+
+
+class SiteConfig(UUIDPrimaryKeyMixin, TimestampMixin, Base):
+    """Full configuration for a site: blocking mode, TCF, GCM, banner, scanning, consent."""
+
+    __tablename__ = "site_configs"
+
+    site_id: Mapped[uuid.UUID] = mapped_column(
+        UUID(as_uuid=True),
+        ForeignKey("sites.id", ondelete="CASCADE"),
+        unique=True,
+        nullable=False,
+    )
+
+    # Blocking mode
+    blocking_mode: Mapped[str] = mapped_column(String(20), server_default="opt_in", nullable=False)
+    regional_modes: Mapped[dict | None] = mapped_column(JSONB, nullable=True)
+
+    # TCF
+    tcf_enabled: Mapped[bool] = mapped_column(default=False, nullable=False)
+    tcf_publisher_cc: Mapped[str | None] = mapped_column(String(2), nullable=True)
+
+    # GPP (Global Privacy Platform)
+    gpp_enabled: Mapped[bool] = mapped_column(default=True, nullable=False)
+    gpp_supported_apis: Mapped[list | None] = mapped_column(JSONB, nullable=True)
+
+    # GPC (Global Privacy Control)
+    gpc_enabled: Mapped[bool] = mapped_column(default=True, nullable=False)
+    gpc_jurisdictions: Mapped[list | None] = mapped_column(JSONB, nullable=True)
+    gpc_global_honour: Mapped[bool] = mapped_column(default=False, nullable=False)
+
+    # Google Consent Mode
+    gcm_enabled: Mapped[bool] = mapped_column(default=True, nullable=False)
+    gcm_default: Mapped[dict | None] = mapped_column(JSONB, nullable=True)
+
+    # Shopify Customer Privacy API
+    shopify_privacy_enabled: Mapped[bool] = mapped_column(default=False, nullable=False)
+
+    # Banner
+    banner_config: Mapped[dict | None] = mapped_column(JSONB, nullable=True)
+    display_mode: Mapped[str] = mapped_column(
+        String(30), server_default="bottom_banner", nullable=False
+    )
+    privacy_policy_url: Mapped[str | None] = mapped_column(Text, nullable=True)
+    terms_url: Mapped[str | None] = mapped_column(Text, nullable=True)
+
+    # Scanning
+    scan_schedule_cron: Mapped[str | None] = mapped_column(String(100), nullable=True)
+    scan_max_pages: Mapped[int] = mapped_column(Integer, server_default="50", nullable=False)
+
+    # Consent
+    consent_expiry_days: Mapped[int] = mapped_column(Integer, server_default="365", nullable=False)
+    consent_retention_days: Mapped[int | None] = mapped_column(Integer, nullable=True)
+
+    # Relationship
+    site: Mapped["Site"] = relationship(back_populates="config")  # noqa: F821