Neu von OBSERVIUM.IO - SecureShare - Sensible Daten sicher teilen Neu von OBSERVIUM.IO: SecureShare
Changelog
a full history of every change made to OBSERVIUM.IO.
v1.6.0 Latest April 2, 2026
Features
  • SecureShare - zero-knowledge encrypted note sharing for securely exchanging credentials with customers
  • client-side AES-256-GCM encryption via Web Crypto API - the encryption key never leaves the browser
  • one-time read - notes are permanently deleted from the server after the first view
  • optional password protection as a second layer of security
  • configurable expiry - 1 hour, 24 hours, 7 days or 30 days
  • zero-knowledge architecture - the server only stores encrypted data, the key lives in the URL fragment (#) which is never sent to the server
v1.5.1 April 1, 2026
Improvements
  • landing page, meta tags, structured data and all SEO-relevant content translated to German
  • default language switched from English to German
  • login, register, dashboard and all app pages now render in German by default via existing i18n system
  • FAQ section with 5 questions, accordion-style design and FAQPage structured data for Google rich results
  • SEO text section below CTA banner targeting agencies, freelancers and e-commerce
  • robots.txt with crawl rules for all non-public paths
  • sitemap.php expanded to include login, register and changelog pages
  • og:locale, hreflang tags, dns-prefetch for GTM and CDN added to header
  • Organization and WebPage structured data schemas with author David Reuchlein
  • site.webmanifest updated from placeholder to correct OBSERVIUM.IO branding
  • customer logos now use loading="lazy" with width/height attributes to prevent CLS
v1.5.0 Feature March 28, 2026
Features
  • AI-powered diagnostics - when a site goes down, an intelligent analysis of the likely cause is automatically generated and sent via email (premium)
  • AI incident reports - after recovery, a full post-mortem report is auto-generated with timeline, root cause analysis and actionable recommendations (premium)
  • public status page - share a live status overview with your clients; opt-in per project with optional password protection
  • SSL certificate expiry alerts - automatic warnings at 30, 14 and 3 days before your certificate expires
  • system type per project - specify whether your site runs WordPress, Shopware, Shopify, Magento or other platforms for smarter diagnostics
  • technical support contact per project - name, email and phone shown in diagnostic emails for instant escalation
  • interactive 3D globe on the landing page with NASA night-earth texture, fresnel glow and mouse-drag rotation
  • response time chart tooltip now shows full timing breakdown - DNS, connect, TTFB and total
Improvements
  • hero section redesigned - new headline, AI diagnostics chip, Claude branding
  • responsive tablet layout improved - font sizes and spacing adjusted for 768-1024px screens
  • email template hardened for dark mode compatibility across mail clients
  • cookie banner link updated to "Legal Notice - david-reuchlein.de"
v1.4.0 Feature March 26, 2026
Features
  • server info card on project view - ip, location, hoster, web server, php, cdn, http version, ssl, tls version, cipher suite, cert issuer, cert expiry (days left, colour-coded), cert key type, ipv6 support, hsts, x-frame-options, x-content-type-options, csp presence
  • host detection runs automatically when the first url is added to a project
  • detect_hoster cron extended - collects full server info via ip-api.com geo lookup, http head request and ssl stream socket; stores as json
  • domain restriction per project - only urls sharing the same root domain can be added; separate projects required for different domains
Security
  • login rate limiting - max 5 failed attempts per ip within 15 minutes; countdown shown in error message; cleared on successful login
  • session cookies hardened - httponly, secure and samesite=strict flags set globally via config
  • session.use_strict_mode enabled - unrecognised session ids are rejected
  • session_regenerate_id() now called on registration (was only called on login)
  • admin check in url_add replaced with is_admin() db lookup - no more hardcoded user id
  • hoster field server-side whitelisted in project_create - arbitrary post values rejected
v1.3.0 Feature March 26, 2026
Features
  • premium accounts - 5 projects with 10 urls each; toggle via admin panel
  • sms notifications via vonage for premium & admin users
  • sms setup with country code dropdown, live phone number validation and international format preview
  • phone number change limit - max. 2 changes per user, admin can reset
  • dashboard project grid: 3 columns, drag & drop reordering with persistent sort order
  • sparkline chart shows last 24 hours
  • password strength meter on registration - live shield icon (red → green) with checklist
  • modern password requirements: 12+ characters, uppercase, lowercase, number, special character
  • admin panel: premium tier toggle, sms change counter with reset button
  • version number in nav, changelog page, topbar attribution
Fixes
  • duplicate email/sms alerts caused by concurrent cron runs - fixed with process lock
  • alert cooldown now resets after a recovery - new down event after recovery triggers a fresh alert
  • long cron runs no longer spawn parallel processes
UX
  • project name moved to top of card for full-width display
  • status label changed to "status ok"
  • access code hint on register page moved below label, info icon removed
  • hero background replaced with static SVG star field - 180 dots in 3 brightness tiers, every 5th star with subtle glow, no animation
  • beta tester CTA section with modal form - name, website, email, math captcha, sends notification email
  • footer typography updated to JetBrains Mono, nav links uppercase and bold
  • footer layout: copyright left, beta version + hosted by netcup right
  • dashboard card: drag handle moved to top-right corner, hidden on mobile
  • hosting provider shown above project name in monospace - auto-detected via IP on first cron run
  • hoster dropdown in project create and edit (netcup, IONOS, Hetzner, Maxcluster and more)
  • changelog list now uses JetBrains Mono
  • all buttons: 8px border-radius, no focus outline
  • multilingual i18n system - EN/DE translations via session-based language switching, secret token activation
v1.2.0 Feature February 8, 2026
Features
  • sms alerts via vonage - down and recovery notifications
  • whatsapp (twilio) replaced and hidden - sms-only going forward
  • 30-second confirmation check before sending down alert - eliminates false alarms on flaps
  • grouped alerts - one email per project instead of one per url
  • alert cooldown - no repeat alerts within 30 minutes for the same ongoing outage
  • test alert script for simulating down + recovery
  • notification channels card in dashboard (email + sms status)
Fixes
  • css border overflow on project card hover
  • chart.js and google fonts blocked by content security policy
  • css cache causing stale styles after updates
v1.1.0 Security January 14, 2026
Security
  • database access moved to a dedicated low-privilege user
  • security headers added: hsts, csp, x-frame-options, x-content-type-options, referrer-policy, permissions-policy
  • php hardened: version exposure disabled, error display off in production
  • server hardening: network access restrictions and file permission improvements
Features
  • admin panel: user list with project and url counts, roles, limits
  • per-user project limit configurable by admin
  • invite code required for registration
  • account deletion with password confirmation
v1.0.0 initial release December 3, 2025
Features
  • url monitoring every 2 minutes with parallel checks
  • instant email alerts on down detection
  • recovery alerts when a url comes back online
  • user accounts with registration, login and session management
  • projects to group monitored urls
  • dashboard with project cards, status indicators and sparkline response charts
  • url management: add, delete, enable/disable per url
  • system type presets for shopware, shopify and wordpress (admin only)
  • secondary notification email per project
  • pause/enable email notifications per account
  • auto-refresh dashboard with countdown timer
  • alert log with full history per url
  • 30-day data retention with automatic cleanup
  • csrf protection on all forms
  • dark-mode-first ui