marcel/familienarchiv
1
0
Fork 0
Code Issues 127 Pull Requests 2 Actions Packages Projects Releases Wiki Activity
Files
d76ee5fa315347c735e2704ca770e516b4b28819
familienarchiv/backend
History
Marcel d76ee5fa31 fix(security): restrict DRAFT list to author — prevent cross-user draft leak 
GeschichteService.list() now applies hasAuthor(currentUser()) whenever
status == DRAFT, so BLOG_WRITE users cannot read other users' unpublished stories.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-05-08 15:56:47 +02:00
..
.mvn/wrapper
build: add mvn properties
2026-03-17 13:33:02 +00:00
api_tests
feat(transcription): add "Alle als fertig markieren" bulk action (#345) (#352)
2026-04-28 08:34:26 +02:00
src
fix(security): restrict DRAFT list to author — prevent cross-user draft leak
2026-05-08 15:56:47 +02:00
.dockerignore
devops(backend): add .dockerignore to exclude target/ from build context
2026-04-15 11:33:03 +02:00
.gitignore
restructure: flatten workspace nesting, move devcontainer to root
2026-03-15 11:47:58 +01:00
CLAUDE.md
docs(legibility): fix three review blockers in DOC-7
2026-05-06 07:41:02 +02:00
Dockerfile
devops(backend): pin eclipse-temurin tags, skip test compilation, document jar glob
2026-04-15 11:33:03 +02:00
HELP.md
restructure: flatten workspace nesting, move devcontainer to root
2026-03-15 11:47:58 +01:00
lombok.config
refactor(thumbnail): route document access through DocumentService
2026-05-05 07:20:01 +02:00
mvnw
restructure: flatten workspace nesting, move devcontainer to root
2026-03-15 11:47:58 +01:00
mvnw.cmd
build: add mvn properties
2026-03-17 13:33:02 +00:00
pom.xml
feat(comment): add findDataByIds() — batch-fetch annotationId + plain-text preview in one query
2026-05-07 17:49:40 +02:00