marcel/familienarchiv
1
0
Fork 0
Code Issues 125 Pull Requests Actions Packages Projects Releases Wiki Activity
1,674 Commits 21 Branches 0 Tags
5ebe1f1a5ab19b0a1cae7e964dbc39d3376d7e6e
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Marcel 5ebe1f1a5a feat(person): require READ_ALL permission on GET /api/persons and /api/persons/{id} 
Defense in depth: until now both list and single-person reads only required
authentication, while the write endpoints (POST/PUT/DELETE) were already
gated with @RequirePermission. The hover-card and typeahead introduced in
issue #362 expose person details (life dates, notes, family relationships)
to anyone who can authenticate — adding READ_ALL aligns the GETs with the
write endpoints and matches the access tier already enforced for documents
and transcription blocks.

Two new controller-slice tests assert 403 when an authenticated user lacks
READ_ALL; existing 200-path tests now stipulate `authorities = "READ_ALL"`
explicitly.

Refs #362

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
2026-04-28 21:02:29 +02:00
.claude
chore: add Claude personas, skills, memory, and project docs
2026-04-14 23:21:15 +02:00
.devcontainer
fix: correct devcontainer workspace path mismatch
2026-03-15 13:44:06 +01:00
.gitea/workflows
test(ocr): add /train-sender auth tests and run sender registry tests in CI
2026-04-17 21:14:27 +02:00
.husky
chore(hooks): remove pre-push E2E hook
2026-03-22 22:15:00 +01:00
.vscode
fix: activate dev Spring profile in VS Code launch config
2026-03-15 14:17:07 +01:00
backend
feat(person): require READ_ALL permission on GET /api/persons and /api/persons/{id}
2026-04-28 21:02:29 +02:00
docs
docs(specs): add Stammbaum UI specs — tree, document badge, person edit
2026-04-27 13:09:47 +02:00
frontend
feat(person): ErrorCode.PERSON_RENAME_CONFLICT for optimistic-lock conflicts
2026-04-28 20:33:06 +02:00
ocr-service
fix(ocr): guard Kraken block extraction against missing boundary/baseline
2026-04-23 09:33:03 +02:00
proofshot-artifacts
chore(screenshots): retake proofshots after bg-canvas fix
2026-03-29 19:12:14 +02:00
scripts
feat(ocr): add DTA-derived historical German wordlist and generation script
2026-04-17 16:48:26 +02:00
.env.example
fix(deploy): increase OCR healthcheck start_period, comment ocr_cache volume, add token hint
2026-04-14 21:17:53 +02:00
.gitignore
fix(rate-limit): only trust X-Forwarded-For from known reverse proxies
2026-04-19 01:20:11 +02:00
CLAUDE.md
docs(claude): update back link pattern to use BackButton component
2026-04-22 10:50:35 +02:00
CODESTYLE.md
docs(codestyle): add Svelte 5 specific rules with examples
2026-03-20 15:58:40 +01:00
COLLABORATING.md
docs(collab): add user journey and E2E scenario requirements
2026-03-22 19:44:18 +01:00
docker-compose.ci.yml
ci: set up CI pipeline with unit, backend, and E2E test jobs
2026-03-19 12:03:37 +01:00
docker-compose.yml
chore(ocr): lower OCR_MAX_CACHED_MODELS to 2 with memory budget comment
2026-04-17 20:20:53 +02:00
Description
No description provided
44 MiB
Languages
Python 73.1%
TypeScript 11.5%
Java 10.9%
Svelte 4.2%
Shell 0.1%