Project Management System

SECURE Password Security

• BCRYPT Hashing: All passwords are hashed using PHP's password_hash() with BCRYPT algorithm
• Password Verification: Secure password verification using password_verify()
• Minimum Requirements: 8-character minimum password length
• Password Reset: Secure token-based password reset system

SECURE Session Management

• Session Security: Secure session handling with proper validation
• Remember Me: Secure cookie-based "remember me" functionality
• Session Timeout: Automatic session timeout for security
• CSRF Protection: Cross-site request forgery protection

SECURE Image Upload Security

• File Type Validation: Server-side validation of file types and MIME types
• Size Limits: Maximum file size restrictions (5MB for most files)
• Malware Scanning: Image integrity checking to prevent malicious uploads
• PHP Code Detection: Scans uploaded files for embedded PHP code
• Secure File Names: Timestamp-based unique file naming

SECURE File Access Control

• Direct Access Blocked: .htaccess prevents direct access to uploads folder
• Authentication Required: All file access requires user authentication
• Permission-Based Access: Users can only access files they have permission for
• Secure Image Handler: Images served through secure PHP handler
• Thumbnail Security: Secure thumbnail generation with access control

SECURE Database Security

• SQL Injection Prevention: Prepared statements and parameterized queries
• Input Sanitization: All user inputs are sanitized and validated
• Data Encryption: Sensitive data encrypted using AES-256-CBC
• Payment Data: Payment gateway credentials encrypted in database

SECURE Communication Security

• HTTPS Support: Full HTTPS compatibility for secure communication
• XSS Prevention: Output encoding and input sanitization
• CSRF Protection: Token-based CSRF protection
• Rate Limiting: Message rate limiting to prevent spam

SECURE Payment Gateway Security

• Encrypted Credentials: All payment gateway keys are encrypted
• Token-Based Processing: Secure token-based payment processing
• No Card Storage: Credit card details are never stored on the server
• PCI Compliance: Payment processing follows PCI DSS guidelines

ADMIN Admin User Creation

1. Navigate to "Staff" section
2. Click "Add New Staff"
3. Fill in admin details:
   • Full name and email address
   • Strong password (minimum 8 characters)
   • Job title and contact information
4. Set account status to "Admin" (accountStatus = 1)
5. Assign admin role permissions
6. Configure email notifications
7. Save the admin account

PERMISSIONS Granular Permission System

The system includes a Task Session role-based permission system that allows fine-grained control over user access and capabilities.

Admin Permissions (Full Access)

• User Management: Create, edit, delete all users (admins, staff, clients)
• Project Management: Full project creation, editing, and deletion
• System Settings: Configure all system settings and preferences
• Payment Management: Configure payment gateways and view all transactions
• Financial Reports: Access to all financial data and reports
• Role Management: Create and manage custom roles
• System Maintenance: Database management and system updates

Staff Permissions (Limited Access)

• Task Management: Create, edit, and manage tasks in assigned projects
• Project Access: View and work on assigned projects only
• File Upload: Upload files to assigned projects
• Communication: Chat with team members and clients
• Time Tracking: Log time spent on tasks
• Profile Management: Edit own profile and settings

Client Permissions (Project-Specific)

• Project Viewing: View own projects and progress
• Payment Processing: Make payments for project milestones
• File Download: Download project files and documents
• Communication: Chat with project team members
• Invoice Access: View and download invoices
• Profile Management: Edit own profile and contact information

CUSTOM Advanced Role Management

1. Navigate to "System Settings" → "Role Management"
2. Click "Create New Role"
3. Define role name and description
4. Configure specific permissions:
   • Project Permissions: Create, edit, view, delete projects
   • Task Permissions: Create, edit, view, delete tasks
   • User Permissions: Manage users within role scope
   • File Permissions: Upload, download, manage files
   • Communication Permissions: Chat access and restrictions
   • Financial Permissions: Payment and invoice access
5. Set role hierarchy and inheritance
6. Configure role-specific settings
7. Save the custom role

PROFILE Task Session Client Profile

Every client has access to a detailed profile overview that displays personal information, account statistics, and financial summaries in an organized, user-friendly interface.

Profile Navigation

• Profile Overview: Main profile page with personal details and statistics
• Profile Stats: Detailed statistical breakdown
• Projects: View all associated projects
• Invoice: Access to invoice management
• Edit Profile: Update personal information and settings

Personal Information Display

• User Avatar: Circular profile picture with user initials
• Full Name: Displayed prominently next to avatar
• Member Since: Account creation date
• Contact Details: Email, phone, address information
• Business Information: Website, Teams ID, location

Profile Statistics

• Total Projects: Number of projects associated with the client
• Total Tasks: Count of all tasks across projects
• Total Amount: Combined value of all project invoices
• Paid Amount: Total payments made (green checkmark icon)
• Unpaid Amount: Outstanding balance (yellow clock icon)

Profile Management Features

• Edit Profile: Update personal and business information
• Search Functionality: Quick search across profile sections
• Real-time Updates: Statistics update automatically
• Responsive Design: Works on all device sizes

MANAGE Profile Update Process

Accessing Profile Overview

1. Log into the client portal
2. Navigate to "Profile" section
3. Click "Profile Overview" tab
4. View personal information and statistics

Editing Profile Information

1. Click "Edit Profile" button in the top navigation
2. Update personal details (name, email, phone)
3. Modify business information (website, address)
4. Change profile picture if desired
5. Save changes to update profile

Understanding Profile Statistics

• Project Count: Total number of active and completed projects
• Task Overview: All tasks across all projects
• Financial Summary: Total invoiced amount and payment status
• Payment Tracking: Clear distinction between paid and unpaid amounts

Profile Navigation Features

• Profile Stats: Detailed breakdown of all statistics
• Projects Tab: Direct access to project management
• Invoice Tab: Quick access to invoice management
• Search Function: Find specific information quickly

Project Status Management

• Active: Project is currently in progress
• On Hold: Project temporarily paused
• Completed: Project finished successfully
• Archived: Project moved to archive

DYNAMIC Dynamic Column System

The Kanban board features a sophisticated dynamic column system that allows for project-specific customization and personal column management.

Default Columns

• To Do: Tasks that need to be started
• In Progress: Tasks currently being worked on
• Review: Tasks ready for review
• Done: Completed tasks

Project-Specific Column Customization

• Column Renaming: Customize column names for each project
• Project-Level Settings: Changes apply to specific project views
• Global Settings: Changes apply to all project views
• Database Storage: Custom names stored in `project_columns` table

Personal Column System

• Custom Columns: Create personal columns for individual use
• User-Specific: Each user can have their own custom columns
• Task Mapping: Tasks can be moved to personal columns using `extra_tasks_columns` table
• Column Management: Add, rename, and delete personal columns

Column Management Features

• Add New Column: Create custom columns with unique names
• Column Deletion: Remove custom columns (tasks remain but column is removed)
• Column Renaming: Edit column names through modal interface
• Unique Keys: Custom columns use timestamp-based unique keys

Task Distribution Logic

• Personal Priority: Tasks in personal columns take priority over default columns
• Status Preservation: Original task status preserved when moved to personal columns
• Multi-User Support: Different users can have different personal column mappings
• Fallback Logic: Tasks with invalid statuses use `last_default_status`

INTERACTIVE Board Management Features

• Drag & Drop: Move tasks between columns with visual feedback
• Real-time Updates: Changes reflect immediately across all users
• Task Filtering: Filter tasks by assignee, priority, or date
• Bulk Operations: Select multiple tasks for batch actions
• Scroll Lock: Lock horizontal scrolling for better focus
• Responsive Design: Works seamlessly on all device sizes

TECHNICAL Database Architecture

Core Tables

• project_columns: Stores custom column names and configurations
• extra_tasks_columns: Maps tasks to personal columns for each user
• tasks: Main task table with status and last_default_status fields

Column Key System

• Default Keys: todo, inprogress, review, done
• Custom Keys: custom_[timestamp] for user-created columns
• Unique Constraints: Prevents duplicate column configurations

Permission System

• Admin Access: Full column management capabilities
• Staff Access: Can create personal columns and manage assigned projects
• Client Access: Limited to viewing and basic task management

Chat Features

• Internal Chat: Staff-to-staff communication
• Project Discussions: Project-specific group chats
• File Sharing: Share images and documents in chat
• Emoji Support: Rich emoji and emoticon support
• Message Editing: Edit sent messages
• Read Receipts: See when messages are read

UPLOAD Advanced File Upload System

The chat system features a sophisticated drag-and-drop file upload interface that supports multiple file types with real-time progress tracking.

Drag & Drop Interface

• Visual Drop Zone: Clearly marked drag-and-drop area with dashed borders
• Progress Indicator: Circular progress bar showing upload percentage
• File Validation: Real-time file type and size validation
• User Feedback: Clear instructions and status messages

Supported File Types

• Images: JPEG, PNG, PSD
• Documents: Word (.doc / .docx), Excel (.xls / .xlsx)
• PDFs: PDF documents
• Other Formats: Additional file types supported

Upload Limits & Security

• File Size Limit: Maximum 5MB per file
• File Type Validation: Server-side validation of accepted formats
• Malware Scanning: Automatic security scanning of uploaded files
• Secure Storage: Files stored with unique, timestamped names

Upload Process

1. Click the file attachment button in chat
2. Drag files to the drop zone or click to browse
3. Monitor upload progress via circular indicator
4. Files are automatically validated and processed
5. Uploaded files appear in chat with preview

MEDIA Task Session Media Control

The Media Management dashboard provides complete control over all system files, including uploads, cache files, and system media with detailed statistics and cleaning capabilities.

File Statistics Overview

• Media Files: System-generated files (thumbnails, cache, processed images)
• Upload Files: User-uploaded content (documents, images, attachments)
• Total Files: Combined count of all system files
• Total Size: Complete storage usage in KB/MB

File Timeline Tracking

• Oldest File: Earliest file in the system with creation date
• Newest File: Most recently added file with timestamp
• File History: Track file lifecycle and system usage

File Cleaning Operations

• Date Range Cleaning: Remove files within specific date ranges
• Complete Cleanup: Clear all cache and upload files
• Selective Deletion: Target specific file types or time periods
• Safety Confirmations: Warning messages for destructive operations

Images

• JPEG, PNG, GIF, WebP
• Maximum size: 5MB
• Automatic thumbnail generation
• Image integrity validation

Documents

• PDF, DOC, DOCX, XLS, XLSX
• PPT, PPTX, TXT, RTF
• ZIP archives
• Design files (PSD, EPS)

OPERATIONS File Management Tasks

Statistics Refresh

1. Navigate to System Settings → Media Management
2. Click "Refresh Statistics" button
3. View updated file counts and sizes
4. Monitor system storage usage

Date Range File Cleaning

1. Select "Clean Files by Date Range" section
2. Choose start date using calendar picker
3. Choose end date using calendar picker
4. Click "Clean Date Range" button
5. Confirm deletion of files within range

Complete System Cleanup

1. Select "Clear All Files" section
2. Review warning message about permanent deletion
3. Click "Clear All Files" button
4. Confirm action in popup dialog
5. Wait for cleanup process to complete

Customization Options

• Color Schemes: Customize primary and secondary colors
• Typography: Font family and size settings
• Layout Options: Sidebar and header customization
• Logo Placement: Configure logo positions