CI4MS Engineering

Developer Handbook

Reference this guide whenever you onboard, ship features, or maintain CI4MS. It merges environment requirements, coding conventions, workflow tips, and deployment best practices into a single companion for the engineering team.

1. System Requirements

Layer	Required	Notes
PHP	8.1+	Enable intl, json, mbstring, gd, curl, openssl. Matches `composer.json` platform.
Composer	2.5+	Manage PHP dependencies.
Node.js	18 LTS	Needed if you maintain `public/be-assets`.
npm	8+	Package manager for backend assets.
Database	MySQL/MariaDB	Any CodeIgniter-supported driver works. Configure via `.env`.
Web server	Apache/Nginx/CI4 spark	Point document root to `public/`.

2. Repository Layout Highlights

app/                 Application code (controllers, config, libraries, filters)
modules/             Feature modules (Auth, Backend, Blog, etc.)
public/
  index.php          Front controller
  be-assets/         Admin UI build artifacts (CSS/JS)
  templates/         Front-end themes (default shipped)
  media/             Media storage (ensure writable)
writable/            Cache, logs, temporary files (must be writable)
vendor/              Composer packages

Essential configuration files include composer.json, the contents of app/Config, and the environment overrides stored in .env.

3. Getting Started

Clone & install

git clone <repo-url> ci4ms
cd ci4ms
composer install

Prepare the environment
```
cp env .env
php spark env development
```
Set app.baseURL, database.default.*, mail credentials, and security options.

Migrate & seed

php spark migrate
php spark db:seed Ci4msDefaultsSeeder  # prompts for admin account details
php spark key:generate
php spark create:route

Serve locally
```
php spark serve
```
Visit http://localhost:8080 for the front-end and /backend for the admin.

Tip: Re-running the seeder on a populated database can duplicate data. Truncate first if needed.

4. Dependency Management

Composer

Core packages include ci4commonmodel, ci4seopro, sql2migration, ext_module_generator (exposes php spark make:module), claviska/simpleimage, gregwar/captcha, and studio-42/elfinder.

composer install
composer update vendor/package
composer outdated

Frontend Assets

The admin panel and templates use static JS/CSS packages (Tagify, Monaco, etc.). To keep the repository small and performant, we do not use npm or node_modules by default. Hosted statically in plugins/ and vendor/.

If you introduce a bundler (like Vite) in the future, be sure to compile assets and exclude node_modules from version control.

5. Coding Guidelines

Namespaces: PSR-4 via Composer. Modules live under Modules\<Name>, app code under App\.
Controllers: Backend controllers extend Modules\Backend\Controllers\BaseController; frontend extends App\Controllers\BaseController.
Views: Stored per module (Modules\Blog\Views\list etc.).
Helpers/Filters: Keep helpers/filters modular; app/Config/Filters discovers them dynamically.
Configuration: Module-specific configs live in modules/<Module>/Config.
Translations: Use modules/<Module>/Language/<locale>.
Testing: Run composer test; add linting tooling if desired.

6. Modules & Permissions

Permissions are stored in auth_permissions_pages (CRUD JSON flags) and auth_users_permissions (overrides). The Modules\Methods\Controllers\Methods::moduleScan() command inspects routes and helps keep permissions in sync.

Workflow for a new module:

Scaffold with php spark make:module <Name> (provided by ext_module_generator).
Define routes in modules/<Name>/Config/Routes.php with role metadata.
Implement controllers, models, views.
Update permissions (run module scan or insert records manually).
Create migrations/seeds for new tables if required.

Clear cached permissions with php spark cache:clear or cache()->delete("{userId}_permissions").

7. Configuration & Settings Cache

Settings: Stored in the settings table and cached for 24h. Clear via cache()->delete('settings').
Menus: Cached as menus; automatically refreshed when editing via the Menu module.
Maintenance mode: Controlled by settings.maintenanceMode; triggers redirect in App\Filters\Ci4ms.

8. Media, File, & Theme Handling

Media Manager

elFinder config in Modules\Media\Controllers\Media::elfinderConnection().
Allowed MIME types from settings.allowedFiles.
Optional WebP conversion via claviska/simpleimage.
Storage: public/media/ (ensure writable, include .trash folder).

File Editor & Themes

Fileeditor: Uses realpath guards; limit use to trusted roles.
Themes: Located in public/templates/<theme>; uploads unzip to writable/tmp before install.
Required theme files: info.xml, screenshot.png (checked by backend filter).

Backup & Restore

Backup: Database dumps via mysqldump or PHP fallback.
Restore: Restore from local ZIPs or server archives.
Storage: Backups saved in writable/uploads/backups.

9. Public Assets & Front Controller

public/index.php bootstraps CodeIgniter; production servers should expose only public/.
public/maintenance/ serves the maintenance splash when enabled.
public/be-assets/ houses admin CSS/JS, images, plugins, and package manifests.
public/media/ contains uploaded media (include in backups).
public/templates/default/ is the bundled theme—use it as a blueprint for custom themes.

10. Testing & QA

Tests live under tests/; namespace under Tests\Support is autoloaded.
Add integration tests for auth, CRUD operations, and menu updates as coverage grows.
Use maintenance mode to hide upcoming changes during manual QA.

11. Debugging Tips

Enable the debug toolbar via CI_ENVIRONMENT=development.
Logs reside in writable/logs/; ensure permissions allow writing or inspect them via the backend viewer at /backend/logs.
Clear cache via php spark cache:clear or delete contents of writable/cache/.
Migration issues? Check logs and the ci_migrations table for batch sync.
Mail issues? Trigger the AJAX Test Mail button in Settings after configuring SMTP.

12. Deployment Checklist

Switch to CI_ENVIRONMENT=production.
Set the public app.baseURL.
Point the web server root to public/; restrict other directories.
Run migrations/seeds (php spark migrate --all, relevant seeders).
Optional cache warm-up via scripted requests.
Disable the debug toolbar in production.
Set secure permissions (775/664 depending on user/group).
Back up uploads, database, and .env before major upgrades.

13. Contribution Workflow

Branching: Prefix with scope (e.g., feature/blog-scheduling).
Commits: Reference modules/issues ([Blog] Add scheduling support).
Pull requests: Note migrations, env vars, npm steps.
Reviews: Highlight permission changes, cache impacts, asset updates.
Changelog: Maintain if releasing versions.

14. Further Reading & Resources

Update this handbook whenever the stack or workflows evolve so the team always has a current source of truth.

Ship with Confidence

CI4MS is engineered for extensibility. Keep this page bookmarked, share it with the team, and iterate responsibly.

Project README Architecture Companion