docs: finalized v1.4.1 session logs and architecture security section
This commit is contained in:
@@ -1,3 +1,20 @@
|
||||
### [2026-04-12] v1.4.1: Security Hardening, PWA Optimization & Modern CSS Upgrade
|
||||
**Purpose:** Implementation of security audit recommendations, REST API test suite, PWA asset generation, and visual UI refinements using Modern CSS.
|
||||
**Actions:**
|
||||
- `backend/routers/users.py` — Implemented rate limiting (5 req/min) on login and restricted `DELETE /items/` to Admin role.
|
||||
- `backend/tests/api_bench.py` (NEW) — Created automated API testing suite for Auth, RBAC, and Security verification.
|
||||
- `frontend/public/icons/` — Generated standard and maskable PWA icons from source logo.
|
||||
- `frontend/public/manifest.json` — Upgraded with maskable support, shortcuts, and orientation lock.
|
||||
- `frontend/app/layout.tsx` — Added iOS-specific native meta tags for a "Premium" look.
|
||||
- `frontend/app/globals.css` — Added `.glass-card` and `.pb-safe` (safe-area) CSS utilities.
|
||||
- `frontend/app/admin/page.tsx` — Restored Dual LDAP group mappings and applied Glassmorphism styling.
|
||||
- `export_prod.sh` — Excluded `tests/` and benchmarking scripts from production bundle.
|
||||
- `PROJECT_ARCHITECTURE.md` — Added Section 7 documenting Security & Hardening policies.
|
||||
- `SESSION_STATE.md` — Updated session status and handover note.
|
||||
**Status:** Stable. Build v1.4.1 release confirmed and committed.
|
||||
|
||||
---
|
||||
|
||||
### [2026-04-11] v1.3.6: Scanner Redesign, Auto-OCR Countdown & save-version Automation
|
||||
**Purpose:** Redesign the scanner UX for hands-free operation, enforce UI typography rules, add Item Type datalist, and create a reusable `save-version` AI command.
|
||||
**Actions:**
|
||||
|
||||
Reference in New Issue
Block a user