Team workspaces · live shared chats · embedded checkout
- Organizations — create a workspace, invite teammates by email, owner / admin / member roles with per-action enforcement
- Shared chats — opt-in per-chat Share with team toggle; chats stay private by default
- Real-time collaboration — messages and CAD canvas sync live between teammates via Server-Sent Events (typically <25 ms fan-out)
- Collaborative editing — any org member can append to a shared chat or extend its CAD drawing; only the author can rename, re-scope, or delete
- Per-chat audit log — every share / edit / delete on a shared chat recorded with actor + timestamp at
GET /auth/sessions/<key>/audit - Team plan ($25/seat/mo) — embedded Stripe Checkout in a popup; no leaving the app to complete payment
- Anti-duplicate guard — backend now rejects
POST /auth/sessionsthat would duplicate another user's chat key (returns 409) - Org switcher — sidebar pill flips between personal and team workspaces; chat list / CAD / tasks all re-scope on the fly
- Landing / help / api / download — public docs rewritten with team angle baked in
Search across chats removed · OG image · Landing redesign
- New marketing landing at
/— SEO-indexable, OG image, structured data - Public API reference at
/apiwith cURL / Python / Node / Go samples - OG image (1200×630) — branded preview when sharing on social
- Mobile responsive pass on landing — 2-col on tablet, 1-col on phone
Onboarding flow · AWS SES live
- 3-slide onboarding for new accounts (welcome, custom instructions, starter prompts)
- Transactional email via AWS SES — password reset, email change, new-device alerts
- Domain verified with DKIM + SPF + DMARC
Forgot password · Email/phone change · Avatar safety
- Self-serve password reset via 6-digit OTP (email or SMS)
- Email + phone change with OTP verification
- Avatar magic-byte validation — rejects spoofed uploads
- New-device login alerts
- All native browser dialogs replaced with in-app modals
2FA · API access · Privacy controls
- TOTP two-factor authentication (Authenticator app)
- SMS one-time-code 2FA
- API access for Pro / Max plans (
Bearer gx_...on/chat) - Privacy panel: save chat history, opt-in training data, personalization toggles
- Server-side chat export (JSON / Markdown) and PDPA account dump
Initial release
- Chat, CAD generation, voice conversation, vision analysis
- Free / Pro / Max subscription tiers
- Active devices panel with per-device session revocation
- Custom Instructions — context applied to every chat