np-dms/lcbp3
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

260322:1648 Correct Coresspondence / Doing RFA / Correct CI
CI Pipeline / build (push) Failing after 12m41s
Details
Build and Deploy / deploy (push) Failing after 2m44s
Details

Browse Source
This commit is contained in:
admin
2026-03-22 16:48:12 +07:00
parent e5deedb42e
commit 11984bfa29
683 changed files with 105251 additions and 29068 deletions
Download Patch File Download Diff File Expand all files Collapse all files
specs/99-archives/history/2025-12-06_p2-completion.md
+6
View File
@@ -5,6 +5,7 @@
**Objective:** Enhance Security and Documentation
## Executive Summary
This session focused on completing Priority 2 (P2) tasks for the Backend v1.4.3. All P2 objectives were met, including API documentation, secure session management, observability, and API hardening.
**Note:** While P2 features are complete and verified by code review, the `pnpm build` process is currently failing due to pre-existing issues in P0 modules (Casl Ability & Workflow DSL) that were outside the scope of this session. These build errors must be addressed in the next session (P0 Urgent).
@@ -12,6 +13,7 @@ This session focused on completing Priority 2 (P2) tasks for the Backend v1.4.3.
## Completed Tasks
### ✅ P2-1: Swagger API Documentation
- **Objective:** Improve API discoverability.
- **Changes:**
- Configured `SwaggerModule` at `/docs`.
@@ -19,6 +21,7 @@ This session focused on completing Priority 2 (P2) tasks for the Backend v1.4.3.
- Decorated DTOs with `@ApiProperty` for schema clarity.
### ✅ P2-2: Refresh Token Mechanism
- **Objective:** Secure session management implementation (ADR-016).
- **Changes:**
- Created `RefreshToken` entity (hashed tokens).
@@ -30,6 +33,7 @@ This session focused on completing Priority 2 (P2) tasks for the Backend v1.4.3.
- Exposed `POST /auth/refresh` endpoint.
### ✅ P2-3: Prometheus Metrics
- **Objective:** System observability.
- **Changes:**
- Integrated `@willsoto/nestjs-prometheus` and opened `/metrics`.
@@ -38,6 +42,7 @@ This session focused on completing Priority 2 (P2) tasks for the Backend v1.4.3.
- Refactored `MonitoringModule` for modularity.
### ✅ P2-4: Rate Limiting & Security Headers
- **Objective:** API Hardening.
- **Changes:**
- **Throttler:** Verified global rate limit (100/min) and strict login limit (5/min).
@@ -56,6 +61,7 @@ The following build errors were identified but deferred as they belong to P0 sco
**Action Plan:** These must be fixed immediately in the next session to restore build stability.
## Artifacts Created
- `specs/09-history/2025-12-06_p2-completion.md` (This file)
- `src/common/auth/entities/refresh-token.entity.ts`
- `src/modules/monitoring/` (Refactored)