mealprep

Author	SHA1	Message	Date
Marcel Raddatz	40a6a0e92d	fix(security): use generic forbidden message to avoid leaking required role Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-06 19:46:24 +02:00
Marcel Raddatz	3be9f502c6	feat(auth): add @RequiresHouseholdRole annotation with interceptor Reusable annotation for planner-only endpoints. Uses a HandlerInterceptor that resolves the household role from the authenticated user and throws 403 if the role doesn't match. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-04 18:22:47 +02:00
Marcel Raddatz	2f690eb3cb	feat(common): add ForbiddenException with 403 handler Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-04 18:18:27 +02:00
Marcel Raddatz	866603711d	Add test infrastructure and common module - Testcontainers 2.0.4 (PostgreSQL) for repository integration tests - AbstractIntegrationTest base class with shared Postgres container - application-test.yml for test profile - Common module: ApiResponse/ApiError envelopes, GlobalExceptionHandler, ResourceNotFoundException, ConflictException, ValidationException, HouseholdContext record Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-01 21:05:17 +02:00
Marcel Raddatz	247a130b69	Scaffold Spring Boot 4.0.5 project with domain packages Maven project with Java 21. Dependencies: web, data-jpa, security, validation, flyway, postgresql, springdoc-openapi 3.0.2. Package-by-domain structure: auth, household, recipe, planning, shopping, pantry, admin, common. JPA open-in-view disabled, Hibernate ddl-auto=validate (Flyway owns the schema). Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-01 20:54:18 +02:00

5 Commits