Initial commit: MyMidas personal finance tracker

Full-stack self-hosted finance app with FastAPI backend and React frontend. Features: - Accounts, transactions, budgets, investments with GBP base currency - CSV import with auto-detection for 10 UK bank formats - ML predictions: spending forecast, net worth projection, Monte Carlo - 7 selectable themes (Obsidian, Arctic, Midnight, Vault, Terminal, Synthwave, Ledger) - Receipt/document attachments on transactions (JPEG, PNG, WebP, PDF) - AES-256-GCM field encryption, RS256 JWT, TOTP 2FA, RLS, audit log - Encrypted nightly backups + key rotation script - Mobile-responsive layout with bottom nav Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-04-21 11:56:10 +00:00 · 2026-04-21 11:56:10 +00:00 · 61a7884ee5
commit 61a7884ee5
127 changed files with 13323 additions and 0 deletions
--- a/backend/app/schemas/init.py
+++ b/backend/app/schemas/init.py
--- a/backend/app/schemas/account.py
+++ b/backend/app/schemas/account.py
@ -0,0 +1,59 @@
+import uuid
+from datetime import datetime
+from decimal import Decimal
+from typing import Literal
+
+from pydantic import BaseModel, Field
+
+AccountType = Literal[
+    "checking", "savings", "cash_isa", "stocks_shares_isa",
+    "credit_card", "investment", "cash", "crypto_wallet",
+    "loan", "mortgage", "pension", "other"
+]
+
+
+class AccountCreate(BaseModel):
+    name: str = Field(..., min_length=1, max_length=100)
+    institution: str | None = None
+    type: AccountType
+    currency: str = Field(default="GBP", min_length=3, max_length=10)
+    credit_limit: Decimal | None = None
+    interest_rate: Decimal | None = None
+    include_in_net_worth: bool = True
+    color: str = Field(default="#6366f1", pattern=r"^#[0-9a-fA-F]{6}$")
+    icon: str | None = None
+    notes: str | None = None
+    opening_balance: Decimal = Field(default=Decimal("0"))
+
+
+class AccountUpdate(BaseModel):
+    name: str | None = Field(default=None, min_length=1, max_length=100)
+    institution: str | None = None
+    opening_balance: Decimal | None = None
+    credit_limit: Decimal | None = None
+    interest_rate: Decimal | None = None
+    include_in_net_worth: bool | None = None
+    is_active: bool | None = None
+    color: str | None = Field(default=None, pattern=r"^#[0-9a-fA-F]{6}$")
+    icon: str | None = None
+    notes: str | None = None
+
+
+class AccountResponse(BaseModel):
+    id: uuid.UUID
+    name: str
+    institution: str | None
+    type: str
+    currency: str
+    current_balance: Decimal
+    credit_limit: Decimal | None
+    interest_rate: Decimal | None
+    is_active: bool
+    include_in_net_worth: bool
+    color: str
+    icon: str | None
+    notes: str | None
+    created_at: datetime
+    updated_at: datetime
+
+    model_config = {"from_attributes": True}
--- a/backend/app/schemas/auth.py
+++ b/backend/app/schemas/auth.py
@ -0,0 +1,64 @@
+import uuid
+from datetime import datetime
+
+from pydantic import BaseModel, EmailStr, field_validator
+
+
+class RegisterRequest(BaseModel):
+    email: EmailStr
+    password: str
+    display_name: str
+
+    @field_validator("password")
+    @classmethod
+    def password_strength(cls, v: str) -> str:
+        if len(v) < 12:
+            raise ValueError("Password must be at least 12 characters")
+        if not any(c.isupper() for c in v):
+            raise ValueError("Password must contain an uppercase letter")
+        if not any(c.isdigit() for c in v):
+            raise ValueError("Password must contain a digit")
+        return v
+
+
+class LoginRequest(BaseModel):
+    email: EmailStr
+    password: str
+
+
+class TOTPChallengeResponse(BaseModel):
+    totp_required: bool = True
+    challenge_token: str
+
+
+class TOTPLoginRequest(BaseModel):
+    challenge_token: str
+    totp_code: str
+
+
+class TokenResponse(BaseModel):
+    access_token: str
+    token_type: str = "bearer"
+    expires_in: int  # seconds
+
+
+class TOTPSetupResponse(BaseModel):
+    secret: str
+    qr_code_png_b64: str
+    backup_codes: list[str]
+
+
+class TOTPVerifyRequest(BaseModel):
+    code: str
+
+
+class SessionInfo(BaseModel):
+    id: uuid.UUID
+    ip_address: str | None
+    user_agent: str | None
+    last_active_at: datetime
+    expires_at: datetime
+    created_at: datetime
+    is_current: bool = False
+
+    model_config = {"from_attributes": True}
--- a/backend/app/schemas/budget.py
+++ b/backend/app/schemas/budget.py
@ -0,0 +1,65 @@
+import uuid
+from datetime import date as DateType, datetime
+from decimal import Decimal
+from typing import Literal
+
+from pydantic import BaseModel, Field
+
+BudgetPeriod = Literal["weekly", "monthly", "quarterly", "yearly"]
+
+
+class BudgetCreate(BaseModel):
+    category_id: uuid.UUID
+    name: str = Field(..., min_length=1, max_length=200)
+    amount: Decimal = Field(..., gt=0)
+    currency: str = Field(default="GBP", min_length=3, max_length=10)
+    period: BudgetPeriod = "monthly"
+    start_date: DateType
+    end_date: DateType | None = None
+    rollover: bool = False
+    alert_threshold: Decimal = Field(default=Decimal("80"), ge=0, le=100)
+
+
+class BudgetUpdate(BaseModel):
+    name: str | None = Field(default=None, min_length=1, max_length=200)
+    amount: Decimal | None = Field(default=None, gt=0)
+    period: BudgetPeriod | None = None
+    end_date: DateType | None = None
+    rollover: bool | None = None
+    alert_threshold: Decimal | None = Field(default=None, ge=0, le=100)
+    is_active: bool | None = None
+
+
+class BudgetResponse(BaseModel):
+    id: uuid.UUID
+    category_id: uuid.UUID
+    name: str
+    amount: Decimal
+    currency: str
+    period: str
+    start_date: DateType
+    end_date: DateType | None
+    rollover: bool
+    alert_threshold: Decimal
+    is_active: bool
+    created_at: datetime
+    updated_at: datetime
+
+    model_config = {"from_attributes": True}
+
+
+class BudgetSummaryItem(BaseModel):
+    budget_id: uuid.UUID
+    budget_name: str
+    category_id: uuid.UUID
+    category_name: str
+    period: str
+    budget_amount: Decimal
+    spent_amount: Decimal
+    remaining_amount: Decimal
+    percent_used: Decimal
+    is_over_budget: bool
+    alert_triggered: bool
+    currency: str
+    period_start: DateType
+    period_end: DateType
--- a/backend/app/schemas/investment.py
+++ b/backend/app/schemas/investment.py
@ -0,0 +1,103 @@
+import uuid
+from datetime import date as DateType, datetime
+from decimal import Decimal
+from typing import Literal
+
+from pydantic import BaseModel, Field
+
+InvestmentTxnType = Literal["buy", "sell", "dividend", "split", "fee", "transfer_in", "transfer_out"]
+
+
+class AssetSearch(BaseModel):
+    id: uuid.UUID
+    symbol: str
+    name: str
+    type: str
+    currency: str
+    exchange: str | None
+    last_price: Decimal | None
+    price_change_24h: Decimal | None
+    data_source: str
+
+    model_config = {"from_attributes": True}
+
+
+class AssetPricePoint(BaseModel):
+    date: DateType
+    open: Decimal | None
+    high: Decimal | None
+    low: Decimal | None
+    close: Decimal
+    volume: Decimal | None
+
+    model_config = {"from_attributes": True}
+
+
+class HoldingCreate(BaseModel):
+    account_id: uuid.UUID
+    asset_id: uuid.UUID
+    quantity: Decimal = Field(..., gt=0)
+    avg_cost_basis: Decimal = Field(..., ge=0)
+    currency: str = Field(default="GBP", min_length=3, max_length=10)
+
+
+class HoldingResponse(BaseModel):
+    id: uuid.UUID
+    account_id: uuid.UUID
+    asset_id: uuid.UUID
+    symbol: str
+    asset_name: str
+    asset_type: str
+    quantity: Decimal
+    avg_cost_basis: Decimal
+    current_price: Decimal | None
+    current_value: Decimal | None
+    cost_basis_total: Decimal
+    unrealised_gain: Decimal | None
+    unrealised_gain_pct: Decimal | None
+    currency: str
+    price_change_24h: Decimal | None
+
+    model_config = {"from_attributes": True}
+
+
+class InvestmentTxnCreate(BaseModel):
+    holding_id: uuid.UUID
+    type: InvestmentTxnType
+    quantity: Decimal = Field(..., ge=0)
+    price: Decimal = Field(..., ge=0)
+    fees: Decimal = Field(default=Decimal("0"), ge=0)
+    currency: str = Field(default="GBP", min_length=3, max_length=10)
+    date: DateType
+    notes: str | None = None
+
+
+class InvestmentTxnResponse(BaseModel):
+    id: uuid.UUID
+    holding_id: uuid.UUID
+    type: str
+    quantity: Decimal
+    price: Decimal
+    fees: Decimal
+    total_amount: Decimal
+    currency: str
+    date: DateType
+    created_at: datetime
+
+    model_config = {"from_attributes": True}
+
+
+class PortfolioSummary(BaseModel):
+    total_value: Decimal
+    total_cost: Decimal
+    total_gain: Decimal
+    total_gain_pct: Decimal
+    currency: str
+    holdings: list[HoldingResponse]
+
+
+class PerformanceMetrics(BaseModel):
+    twrr: Decimal | None
+    total_return: Decimal
+    total_return_pct: Decimal
+    currency: str
--- a/backend/app/schemas/report.py
+++ b/backend/app/schemas/report.py
@ -0,0 +1,96 @@
+from datetime import date as DateType
+from decimal import Decimal
+
+from pydantic import BaseModel
+
+
+class NetWorthPoint(BaseModel):
+    date: DateType
+    total_assets: Decimal
+    total_liabilities: Decimal
+    net_worth: Decimal
+    base_currency: str
+
+
+class NetWorthReport(BaseModel):
+    points: list[NetWorthPoint]
+    current_net_worth: Decimal
+    change_30d: Decimal
+    change_30d_pct: Decimal
+    base_currency: str
+
+
+class IncomeExpensePoint(BaseModel):
+    month: str  # "2024-01"
+    income: Decimal
+    expenses: Decimal
+    net: Decimal
+
+
+class IncomeExpenseReport(BaseModel):
+    points: list[IncomeExpensePoint]
+    total_income: Decimal
+    total_expenses: Decimal
+    avg_monthly_income: Decimal
+    avg_monthly_expenses: Decimal
+    currency: str
+
+
+class CashFlowPoint(BaseModel):
+    date: DateType
+    inflow: Decimal
+    outflow: Decimal
+    net: Decimal
+    running_balance: Decimal
+
+
+class CashFlowReport(BaseModel):
+    points: list[CashFlowPoint]
+    total_inflow: Decimal
+    total_outflow: Decimal
+    currency: str
+
+
+class CategoryBreakdownItem(BaseModel):
+    category_id: str | None
+    category_name: str
+    amount: Decimal
+    percent: Decimal
+    transaction_count: int
+
+
+class CategoryBreakdownReport(BaseModel):
+    items: list[CategoryBreakdownItem]
+    total: Decimal
+    currency: str
+    date_from: DateType
+    date_to: DateType
+
+
+class BudgetVsActualItem(BaseModel):
+    budget_id: str
+    budget_name: str
+    category_name: str
+    budgeted: Decimal
+    actual: Decimal
+    variance: Decimal
+    percent_used: Decimal
+
+
+class BudgetVsActualReport(BaseModel):
+    items: list[BudgetVsActualItem]
+    total_budgeted: Decimal
+    total_actual: Decimal
+    currency: str
+
+
+class SpendingTrendPoint(BaseModel):
+    month: str
+    category_name: str
+    amount: Decimal
+
+
+class SpendingTrendsReport(BaseModel):
+    points: list[SpendingTrendPoint]
+    categories: list[str]
+    currency: str
--- a/backend/app/schemas/transaction.py
+++ b/backend/app/schemas/transaction.py
@ -0,0 +1,77 @@
+import uuid
+from datetime import date as DateType, datetime
+from decimal import Decimal
+from typing import Literal
+
+from pydantic import BaseModel, Field
+
+TransactionType = Literal["income", "expense", "transfer", "investment"]
+TransactionStatus = Literal["pending", "cleared", "reconciled", "void"]
+
+
+class TransactionCreate(BaseModel):
+    account_id: uuid.UUID
+    transfer_account_id: uuid.UUID | None = None
+    category_id: uuid.UUID | None = None
+    type: TransactionType
+    status: TransactionStatus = "cleared"
+    amount: Decimal
+    currency: str = Field(default="GBP", min_length=3, max_length=10)
+    date: DateType
+    description: str = Field(..., min_length=1, max_length=500)
+    merchant: str | None = None
+    notes: str | None = None
+    tags: list[str] = []
+    is_recurring: bool = False
+    recurring_rule: dict | None = None
+
+
+class TransactionUpdate(BaseModel):
+    category_id: uuid.UUID | None = None
+    status: TransactionStatus | None = None
+    amount: Decimal | None = None
+    date: DateType | None = None
+    description: str | None = Field(default=None, min_length=1, max_length=500)
+    merchant: str | None = None
+    notes: str | None = None
+    tags: list[str] | None = None
+
+
+class TransactionFilter(BaseModel):
+    account_id: uuid.UUID | None = None
+    category_id: uuid.UUID | None = None
+    type: TransactionType | None = None
+    status: TransactionStatus | None = None
+    date_from: DateType | None = None
+    date_to: DateType | None = None
+    min_amount: Decimal | None = None
+    max_amount: Decimal | None = None
+    search: str | None = None
+    tags: list[str] = []
+    page: int = Field(default=1, ge=1)
+    page_size: int = Field(default=50, ge=1, le=200)
+
+
+class TransactionResponse(BaseModel):
+    id: uuid.UUID
+    account_id: uuid.UUID
+    transfer_account_id: uuid.UUID | None
+    category_id: uuid.UUID | None
+    type: str
+    status: str
+    amount: Decimal
+    amount_base: Decimal | None
+    currency: str
+    base_currency: str
+    exchange_rate: Decimal | None
+    date: DateType
+    description: str
+    merchant: str | None
+    notes: str | None
+    tags: list[str]
+    is_recurring: bool
+    attachment_refs: list[dict] = []
+    created_at: datetime
+    updated_at: datetime
+
+    model_config = {"from_attributes": True}