|
|
8c1cf54213
|
fix: resolve P0 stub/false-positive issues found in SENIOR_DEV_REVIEW audit
- Remove dead stub UploadAvatar in user_handler.go (real impl in avatar_handler.go)
- Fix GetAuthCapabilities to call service (was returning hardcoded static JSON, missing admin_bootstrap_required)
- Replace AdminRoleID=1 hardcoded constant with getAdminRoleID(ctx) dynamic lookup by code="admin"
- Fix double Argon2id hash computation in ChangePassword (hash once, reuse)
- Add PredefinedRoles seed to newIsolatedDB test infrastructure (fixes broken ADMIN_* tests)
|
2026-04-11 10:27:29 +08:00 |
|
|
|
713ca29419
|
docs: update 2026-04-10 completion review with new quality standards
Apply standards from QUALITY_STANDARD.md, PRODUCTION_CHECKLIST.md,
TECHNICAL_GUIDE.md, and PROJECT_EXPERIENCE_SUMMARY.md:
- Document TDD fixes completed (role/admin/avatar APIs, lint, SLA)
- Identify gaps per new standards (privilege failure tests, jsdom noise,
main entry not re-verified)
- Add "live不等于闭环" lessons learned
- Update honest assessment to reflect new quality bar
|
2026-04-10 09:34:51 +08:00 |
|
