marcel/familienarchiv
1
0
Fork 0
Code Issues 125 Pull Requests Actions Packages Projects Releases Wiki Activity
Files
ee2de8135be0d1714dbd90050a94dfd4eaabe722
familienarchiv/backend/src
History
Marcel 5b18b87450
Some checks failed
CI / Unit & Component Tests (push) Failing after 3m4s
Details
CI / OCR Service Tests (push) Successful in 34s
Details
CI / Backend Unit Tests (push) Failing after 3m0s
Details
test(security): add 403 permission test for annotation DELETE endpoint 
Confirms that DELETE /api/documents/{id}/annotations/{id} requires at
least ANNOTATE_ALL; a user with only READ_ALL receives 403 Forbidden.
Closes the permission audit raised during PR review.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-04-26 21:56:37 +02:00
..
main
refactor(audit): extract createUserForBootstrap() to make null actorId contract explicit
2026-04-26 17:39:09 +02:00
test
test(security): add 403 permission test for annotation DELETE endpoint
2026-04-26 21:56:37 +02:00