root
|
7f9e302e5e
|
fix: resolve all failing tests (UUID validation, JWT algorithm, token uniqueness)
|
2026-03-20 23:24:49 +00:00 |
|
root
|
84664138ad
|
fix: resolve TypeScript errors in test setup
|
2026-03-20 23:17:56 +00:00 |
|
root
|
f74d60c26b
|
fix: exclude test files from tsc build
|
2026-03-20 23:16:51 +00:00 |
|
root
|
093fe85573
|
fix: frontend API mapping, security hardening, test suite
Frontend:
- Fix all API response unwrapping (backend wraps in {data:...})
- Fix workflow publish/archive to use PATCH /status endpoint
- Fix step reorder payload format
- Add tenantId to workflow creation
- Fix step count display using _count
Security (CRITICAL/HIGH):
- Add JWT algorithm restriction (HS256 only)
- Replace weak default JWT secrets
- Fix token blacklist memory leak
- Fix step reorder IDOR vulnerability
- Strengthen password policy (8 chars, mixed case + digit)
Tests:
- 68 tests: auth (17), workflows (26), tenants (25)
- Complete Prisma mock setup with test fixtures
|
2026-03-20 23:15:07 +00:00 |
|
root
|
4adcb42bb5
|
fix: resolve TypeScript type errors in route params
|
2026-03-20 22:55:51 +00:00 |
|
root
|
d58d53fa3b
|
feat: initial workflow portal - multi-tenant architecture
- Backend: Node.js + Express + TypeScript + Prisma + PostgreSQL
- Frontend: React + TypeScript + Tailwind CSS + Vite
- Multi-tenant with role-based access (SystemAdmin, Technician, Customer)
- Workflow editor with drag-and-drop steps
- JWT authentication with refresh tokens
- German UI throughout
|
2026-03-20 22:48:04 +00:00 |
|