From cc2a597308c3cf979e3dfa9496c8b27152166814 Mon Sep 17 00:00:00 2001
From: Flatlogic Bot <support@flatlogic.com>
Date: Wed, 3 Sep 2025 19:06:45 +0000
Subject: [PATCH] Initial version

---
 .gemini/settings.json |  18 +++++
 .gitignore            |   3 +
 .htaccess             |  18 +++++
 .perm_test_apache     |   0
 .perm_test_exec       |   0
 GEMINI.md             | 157 ++++++++++++++++++++++++++++++++++++++++++
 db/config.php         |  17 +++++
 index.php             | 103 +++++++++++++++++++++++++++
 8 files changed, 316 insertions(+)
 create mode 100644 .gemini/settings.json
 create mode 100644 .gitignore
 create mode 100644 .htaccess
 create mode 100644 .perm_test_apache
 create mode 100644 .perm_test_exec
 create mode 100644 GEMINI.md
 create mode 100644 db/config.php
 create mode 100644 index.php

diff --git a/.gemini/settings.json b/.gemini/settings.json
new file mode 100644
index 0000000..42594e2
--- /dev/null
+++ b/.gemini/settings.json
@@ -0,0 +1,18 @@
+{
+    "contextFileName": ["GEMINI.md"],
+    "fileFiltering": {
+        "respectGitignore": true,
+        "exclude": [
+            "**/.*",
+            ".git/**",
+            ".gemini/**",
+            "node_modules/**",
+            "vendor/**",
+            "tmp/**",
+            "storage/**",
+            "public/**",
+            "data/**"
+        ]
+    },
+    "telemetry": { "enabled": true, "target": "otlp" }
+}
diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..e427ff3
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,3 @@
+node_modules/
+*/node_modules/
+*/build/
diff --git a/.htaccess b/.htaccess
new file mode 100644
index 0000000..e2bbc23
--- /dev/null
+++ b/.htaccess
@@ -0,0 +1,18 @@
+DirectoryIndex index.php index.html
+Options -Indexes
+Options -MultiViews
+
+RewriteEngine On
+
+# 0) Serve existing files/directories as-is
+RewriteCond %{REQUEST_FILENAME} -f [OR]
+RewriteCond %{REQUEST_FILENAME} -d
+RewriteRule ^ - [L]
+
+# 1) Internal map: /page or /page/ -> /page.php (if such PHP file exists)
+RewriteCond %{REQUEST_FILENAME}.php -f
+RewriteRule ^(.+?)/?$ $1.php [L]
+
+# 2) Optional: strip trailing slash for non-directories (keeps .php links working)
+RewriteCond %{REQUEST_FILENAME} !-d
+RewriteRule ^(.+)/$ $1 [R=301,L]
diff --git a/.perm_test_apache b/.perm_test_apache
new file mode 100644
index 0000000..e69de29
diff --git a/.perm_test_exec b/.perm_test_exec
new file mode 100644
index 0000000..e69de29
diff --git a/GEMINI.md b/GEMINI.md
new file mode 100644
index 0000000..25ef313
--- /dev/null
+++ b/GEMINI.md
@@ -0,0 +1,157 @@
+Here’s a drop-in **`gemini.md`** for the LAMP golden machine. Put it in the project root (i.e., `WORKSPACE_ROOT`, which is also the Apache DocumentRoot). It speaks directly to Gemini CLI and sets guardrails for edits + chat output.
+
+```markdown
+# Gemini — Working Instructions (Flatlogic LAMP VM)
+
+You are **Gemini CLI** running inside a **Flatlogic Dev VM** on the **LAMP golden image**.
+Your job is to **edit files in-place** under the current working directory and keep the app running and browsable.
+
+---
+
+## Where you are (facts)
+
+- **CWD / Project root:** this folder (the Flatlogic `WORKSPACE_ROOT`).  
+  - It is also the **Apache DocumentRoot**.  
+  - `index.php` lives here and is served as `/`.
+- **Stack:** Apache 2.4+ and PHP 8.x (classic LAMP). No framework by default.
+- **Network:** The VM exposes HTTP(S) via a **Cloudflare Tunnel**. Locally it’s served on `http://localhost:80`.
+- **Database:** Local MariaDB/MySQL is available on `127.0.0.1:3306`. App credentials are stored in `db/config.php` (loaded by the app). Use PDO (MySQL) for all persistence.
+- **Privileges:** You are a regular user. Do **not** attempt system package changes or service reconfiguration.
+- **VCS:** A Git repo may be present. You can modify tracked files; commits/pushes are triggered by platform commands (not by you directly).
+
+---
+
+## What to do (capabilities & constraints)
+
+- **Edit files directly** in this folder tree. Prefer small, safe changes.
+- **Stay within the project root.** Do not write outside this directory.
+- **Do not change Apache/system configs** or assume root access.
+- **Keep the app immediately browsable.** After changes, `/` must still load without PHP errors.
+- **Use the database for persistence.** Do not store app data in JSON/flat files. Always use MariaDB/MySQL via PDO with prepared statements. Credentials are provided in `db/config.php`.
+- **Composer/frameworks:** Avoid adding unless asked. Stick to vanilla PHP unless requirements say otherwise.
+
+---
+## Database usage policy
+
+- Connectivity: include `db/config.php` and use the provided `db()` PDO helper (or create one if missing) for all queries.
+- Prepared statements only: use `PDO::prepare` and `bindParam/ bindValue`; never concatenate user input into SQL.
+- DDL (schema changes):
+  - Write idempotent SQL (e.g., `CREATE TABLE IF NOT EXISTS`, check for column existence before `ALTER`).
+  - Prefer placing DDL in `db/migrations/*.sql` (one task per file) with clear comments. If adding a lightweight migrator script, keep it simple and safe.
+- Prohibited: destructive operations like `DROP DATABASE`, `DROP TABLE`, mass `TRUNCATE`, or irreversible schema changes without explicit instruction.
+
+---
+
+## Safety & Boundaries
+
+- Scope: operate strictly inside `WORKSPACE_ROOT` (this directory). Never use absolute paths or `..` in any path or command.
+- Dotfiles: never read, write, rename, or delete any hidden files or folders (`**/.*`), including `.htaccess`, `.git/**`, `.gemini/**`, `.env*`, `.vscode/**`, `.idea/**`, `.github/**`, `.DS_Store`.
+- System/service folders: do not modify `.git/**`, `.gemini/**`, `node_modules/**`, `vendor/**`, `tmp/**`, `storage/**`.
+- Write operations: only targeted, minimal edits to application code. Do not perform mass refactors, bulk renames, file moves, or deletions without explicit instruction.
+- Shell commands: allowed only for safe, read-only inspection within this directory (e.g., `ls`, `cat`, `head`, `grep`, `sed -n`, `php -v`).
+  - Forbidden: `rm`, `mv`, `cp -r`, `chmod`, `chown`, `ln`, `find -delete`, `xargs rm`, in-place edits (`sed -i`, `perl -pi`, `awk -i inplace`), redirects/append (`>`, `>>`, `tee -a`), archive extractors writing to disk, network downloads to files (`curl|wget > file`), any `git` commands, process control, `sudo`.
+  - All command paths must be relative to the current directory and must not reference `..` or absolute paths.
+- If a requested change violates these rules (touches dotfiles/service folders or escapes the workspace), refuse and ask for confirmation/alternative.
+
+Examples
+- Allowed: `cat includes/helpers.php`, `rg -n "function enroll" ./`, `sed -n '1,120p' courses.php`.
+- Forbidden: `rm -rf .*`, `mv .htaccess .htaccess.bak`, `cp -r ../* ./`, `git init`, `curl URL > file.php`, `chmod -R 777 .`.
+
+---
+
+## How Flatlogic Chat sees you
+
+- Your **stdout/stderr is streamed** to a human via Flatlogic Cloud.
+- Keep output **concise and actionable**:
+  1. Start with a one-line **Plan**.
+  2. Perform changes (write files).
+  3. Print a **Summary** of what changed.
+  4. End with **Next** (a yes/no or options).
+- If an operation fails, print a short **Error** line and what you’ll try next.
+
+**Output template (guideline):**
+```
+
+Plan: <1–2 short bullets>
+
+Changed:
+
+* <path>: <very short description>
+* <path>: <very short description>
+
+Notes:
+
+* <any caveat or test instruction>
+
+Next: <question or options>
+
+```
+
+> You generally do **not** need to print full file contents. When useful, show **small excerpts only**.
+
+---
+
+## File editing rules (PHP)
+
+- **index.php must keep working.** If you introduce new includes, ensure relative paths exist.
+- **Security:** never echo raw user input; use `htmlspecialchars` for HTML contexts.
+- **Configuration:** if you create config, use a single `config.php` loaded by `index.php`.
+- **Error handling:** avoid `display_errors` changes. Use defensive checks and small try/catch blocks.
+
+---
+
+## Testing after changes
+
+- Print a quick checklist the human can run:
+  - “Open `/`—should show …”
+  - Mention any new endpoints you add.
+
+---
+
+## Git & deploy (how your work is shipped)
+
+- The platform will run `git pull`, `git commit_push`, and `server.restart` when appropriate.
+- **You don’t run git here.** Just make sure your changes are saved to disk.
+
+**Commit message convention** (for your summaries so humans can reuse):
+- `feat: ...` user-visible features
+- `fix: ...` bug fix
+- `chore: ...` small housekeeping
+- `docs: ...` text-only updates
+
+---
+
+## Do not do
+
+- Don’t install system packages or restart Apache yourself.
+- Don’t write outside the project root.
+- Don’t introduce heavy dependencies without asking.
+- Don’t leak secrets or create random credentials.
+
+---
+
+## Small starter tasks you can do safely
+
+1) **Improve the landing page**
+- In `index.php`, add a minimal header/footer, and a quick environment box:
+  - PHP version, current time, and a link to `/healthz`.
+
+2) **Basic contact form (no DB)**
+- Add `contact.php` with a POST form and server-side validation.
+- On submit, write a sanitized line to `data/contact.log` (create folder if missing).
+
+(Only perform these if asked; otherwise wait for explicit prompts.)
+
+---
+
+---
+
+## Telemetry note
+
+- Your token usage and latencies are measured. Keep prompts/responses compact.
+- Prefer **editing files** over dumping large code blocks into chat.
+
+---
+
+**That’s it.** Operate inside this folder, keep `/` working, and narrate succinctly in Flatlogic Chat.
+```
diff --git a/db/config.php b/db/config.php
new file mode 100644
index 0000000..e5b32e8
--- /dev/null
+++ b/db/config.php
@@ -0,0 +1,17 @@
+<?php
+// Generated by setup_mariadb_project.sh — edit as needed.
+define('DB_HOST', '127.0.0.1');
+define('DB_NAME', 'app_33866');
+define('DB_USER', 'app_33866');
+define('DB_PASS', '450532e0-8520-41a1-8c3f-9638c26825b7');
+
+function db() {
+  static $pdo;
+  if (!$pdo) {
+    $pdo = new PDO('mysql:host='.DB_HOST.';dbname='.DB_NAME.';charset=utf8mb4', DB_USER, DB_PASS, [
+      PDO::ATTR_ERRMODE => PDO::ERRMODE_EXCEPTION,
+      PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC,
+    ]);
+  }
+  return $pdo;
+}
diff --git a/index.php b/index.php
new file mode 100644
index 0000000..f7ae6b8
--- /dev/null
+++ b/index.php
@@ -0,0 +1,103 @@
+<?php
+declare(strict_types=1);
+@ini_set('display_errors', '1');
+@error_reporting(E_ALL);
+@date_default_timezone_set('UTC');
+
+$phpVersion = PHP_VERSION;
+$now = date('Y-m-d H:i:s');
+?>
+<!doctype html>
+<html lang="en">
+<head>
+  <meta charset="utf-8" />
+  <meta name="viewport" content="width=device-width, initial-scale=1" />
+  <title>New Style</title>
+  <link rel="preconnect" href="https://fonts.googleapis.com">
+  <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
+  <link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;700&display=swap" rel="stylesheet">
+  <style>
+    :root {
+      --bg-color-start: #6a11cb;
+      --bg-color-end: #2575fc;
+      --text-color: #ffffff;
+      --card-bg-color: rgba(255, 255, 255, 0.01);
+      --card-border-color: rgba(255, 255, 255, 0.1);
+    }
+    body {
+      margin: 0;
+      font-family: 'Inter', sans-serif;
+      background: linear-gradient(45deg, var(--bg-color-start), var(--bg-color-end));
+      color: var(--text-color);
+      display: flex;
+      justify-content: center;
+      align-items: center;
+      min-height: 100vh;
+      text-align: center;
+      overflow: hidden;
+      position: relative;
+    }
+    body::before {
+      content: '';
+      position: absolute;
+      top: 0;
+      left: 0;
+      width: 100%;
+      height: 100%;
+      background-image: url('data:image/svg+xml,<svg xmlns="http://www.w3.org/2000/svg" width="100" height="100" viewBox="0 0 100 100"><path d="M-10 10L110 10M10 -10L10 110" stroke-width="1" stroke="rgba(255,255,255,0.05)"/></svg>');
+      animation: bg-pan 20s linear infinite;
+      z-index: -1;
+    }
+    @keyframes bg-pan {
+      0% { background-position: 0% 0%; }
+      100% { background-position: 100% 100%; }
+    }
+    main {
+      padding: 2rem;
+    }
+    .card {
+      background: var(--card-bg-color);
+      border: 1px solid var(--card-border-color);
+      border-radius: 16px;
+      padding: 2rem;
+      backdrop-filter: blur(20px);
+      -webkit-backdrop-filter: blur(20px);
+      box-shadow: 0 8px 32px 0 rgba(0, 0, 0, 0.1);
+    }
+    h1 {
+      font-size: 3rem;
+      font-weight: 700;
+      margin: 0 0 1rem;
+      letter-spacing: -1px;
+    }
+    p {
+      margin: 0.5rem 0;
+      font-size: 1.1rem;
+    }
+    code {
+      background: rgba(0,0,0,0.2);
+      padding: 2px 6px;
+      border-radius: 4px;
+      font-family: ui-monospace, SFMono-Regular, Menlo, Consolas, monospace;
+    }
+    footer {
+      position: absolute;
+      bottom: 1rem;
+      font-size: 0.8rem;
+      opacity: 0.7;
+    }
+  </style>
+</head>
+<body>
+  <main>
+    <div class="card">
+      <h1>Welcome!</h1>
+      <p>Your project is ready to conquer the peaks.</p>
+      <p>PHP version: <code><?= htmlspecialchars($phpVersion) ?></code></p>
+    </div>
+  </main>
+  <footer>
+    Page updated: <?= htmlspecialchars($now) ?> (UTC)
+  </footer>
+</body>
+</html>
\ No newline at end of file