Git-native documentation collaboration between clients and suppliers.
Markdown and assets stay in your Git repository β the single source of truth. Osnova wraps that repo in a friendly, permission-aware web layer so clients can read, comment on, and (where allowed) edit the documentation, while every change lands as a real Git commit. No copy-paste into a second tool that drifts out of date by Friday.
Features Β· Showcase Β· Quick start Β· Docs
Software teams already keep their backlog, specifications, and documentation as Markdown in Git. What's missing is a layer that exposes that same git-native material to the client β in a controlled, readable form for review, commenting, and scoped editing β without forking it into a separate tool that immediately drifts out of sync.
Osnova closes that gap:
- ποΈ One source of truth. Documents are files in a Git repository. Osnova never
forks content into a parallel database β edits are commits, history is
git log. - π Controlled client access. Role-based views present a simplified, filtered slice of the repo to clients while suppliers keep the full picture. Fail-closed.
- π¬ Collaboration in context. Inline and document-level comments, @mentions, reactions, approvals, live presence, and notifications β anchored to the living document.
- β¨ AI that respects your process. Fold accepted review comments into the prose with Claude, using curated, workspace-managed skills β never an unsupervised rewrite.
- π§βπ» No Git knowledge required. A clean reading experience, a WYSIWYG editor, deep links to any paragraph, and history/diff/blame viewers β usable by non-developers.
| Role | What they do |
|---|---|
| System Admin | Creates workspaces, binds Git repositories, manages global access. |
| Workspace Maintainer | Supplier lead β manages members, roles, view configuration, AI skills. |
| Editor | Supplier analyst / PM / UX β authors and edits content (WYSIWYG or raw Markdown). |
| Client β Technical | Architect β reads and comments on specs, ADRs, and infrastructure docs; can approve. |
| Client β Business | Product owner β reads a simplified business view, comments, and approves. |
| Viewer | Read-only access within the permitted view. |
Everything below ships today β see the full, illustrated tour in docs/features.md.
Each workspace exposes up to three views β Direct (1:1), Client β Business, and
Client β Technical β with per-view, glob-based include/exclude rules. Client views are
fail-closed (nothing is visible unless explicitly allowed), .gitignore/.gitkeep are
respected, and document metadata/frontmatter is hidden by default.
A real navigation tree with favorites (starred, per user), recently opened,
expand/collapse-all, live filtering, and lucide iconography β plus deep-linkable URLs and
a βK command palette.
A TipTap-based editor with a formatting toolbar, bubble menu, task lists, and inline image/attachment upload (drag, paste, or pick β stored alongside the document and committed to Git). Toggle to raw Markdown anytime. Every save is a commit and push.
Document actions are grouped into a clean ribbon β Document / Collaboration / Knowledge / File β and collapse to a compact icon strip with one click. The preference persists per user.
Inline comments anchored to selected text, document-level threads, @mentions, emoji
reactions, resolve/reopen, and a document review workflow (approve / reject β with an
optional comment posted to the thread β / optional in-review) with stale-revision
detection. Live presence shows who else is viewing or editing the
same document right now.
Turn a thread of accepted review comments into clean prose β Claude folds them into the
document while you review the diff before anything is committed. Workspace admins curate a
set of reusable skills (apply verbatim, unify tone, condense, refine language, restructure)
so reviewers pick an intent instead of writing prompts. Gated by edit + ai-use permission.
See how a document relates to the rest of the repository β a directed graph of cross-references, laid out by depth, colour-coded by folder/area and shaped by doc-type, with 1β3 degrees of links, pan/zoom, and click-to-open.
When two people edit the same document, Osnova auto-rebases where it can β and when there's a true conflict, a guided wizard walks you through a side-by-side, hunk-by-hunk resolution instead of a cryptic Git error.
Browse every revision of a file, view a rendered preview at any commit, see a unified diff with line numbers, open per-line blame, and restore any past version (even a deleted file) as a new commit.
GitHub-Flavored Markdown, callouts ([!NOTE], [!WARNING], β¦), Mermaid diagrams,
collapsible blocks, inline images, downloadable attachments, copyable heading anchors, and
inline PDF embeds ().
Reading themes independent of the app's light/dark mode β Standard, Reading, Editorial, Technical, Terminal, Neon, and Pastel β each with its own fonts, colours, spacing, and column width.
The whole UI is translated and remembered per user; the Keycloak login screen follows the
chosen language via ui_locales; dates are locale-aware.
A notification bell with unread badge, a full inbox with filters and pagination, and an opt-in daily/weekly email digest of unread activity β plus an audit log of who did what.
πΈ See it all in one place: the Showcase Β» gallery and the screenshot-by-screenshot Feature guide Β».
Full instructions: docs/getting-started.md.
# 1. Clone the repository
git clone git@github.com:hycomsa/osnova.git && cd osnova
# 2. Start PostgreSQL (Docker)
docker compose up -d # postgres:16 on localhost:5433
# 3. Configure environment
cp .env.example .env # set secrets; for local dev set PROXY_AUTH_DEV_USER (+ ANTHROPIC_API_KEY for AI)
# 4. Install, seed, run
npm install
npm run seed # creates a demo workspace + users
npm run dev # http://localhost:3000Authentication is pluggable (AUTH_MODE): the default proxy mode trusts a reverse-proxy
SSO header (no IdP needed by the app) β see docs/proxy-auth.md; the
optional oidc mode logs in via OpenID Connect β see docs/keycloak.md.
For local dev in proxy mode, set PROXY_AUTH_DEV_USER=you@example.com.
| Guide | What's inside |
|---|---|
| Getting started | Prerequisites, install, database, seed, first run. |
| Configuration | Every environment variable, view configs, repo bindings, mail, AI. |
| Authentication | Pluggable auth: reverse-proxy header SSO (default) + Apache example. |
| Keycloak setup | Optional OIDC mode: realm, client, redirect URIs, login i18n. |
| Features | Full, illustrated feature catalogue. |
| Showcase | A visual product tour and marketing gallery. |
| Architecture | How the pieces fit; data model; access-control model. |
| Administration | Workspaces, views, roles, repos, AI skills, digests, backups. |
| Development | Project layout, scripts, tests, conventions. |
| Deployment | Production build, hardening, scheduling, secrets. |
Next.js 16 (App Router, React 19) Β· PayloadCMS 3 Β· PostgreSQL 16 Β· SSO (proxy header / OIDC) Β· TipTap Β· remark/rehype Β· Mermaid Β· simple-git (git-native worktrees) Β· Anthropic Claude Β· react-i18next Β· Tailwind Β· Vitest Β· Playwright.
Contributions are welcome! Start with CONTRIBUTING.md, and please follow our Code of Conduct. Changes are tracked in CHANGELOG.md, and CI (typecheck + tests) runs on every pull request.
Found a security issue? Please report it privately β see SECURITY.md.
Released under the MIT License. Copyright Β© 2026 Hycom.