sharang
fe139332ee
10 route shells under /[slug]/, role-filtered Nav, backstage stub at /__backstage__, dashboard reads session.products to render tiles. src/lib/session.ts is the canonical role × surface matrix; canSee() is the only RBAC primitive in the portal (real enforcement remains at the API layer). 24 vitest tests; 100% src/lib coverage. Refs: M5.2
31 lines
1.1 KiB
Markdown
31 lines
1.1 KiB
Markdown
# Changelog
|
|
|
|
All notable changes to this repo. Format: [Keep a Changelog](https://keepachangelog.com/en/1.1.0/).
|
|
Generated section is appended on release tag via `git-cliff` (see `.gitea/workflows/release.yaml`).
|
|
|
|
## [Unreleased]
|
|
|
|
### Added
|
|
- feat(app): M5.2 — customer-area route shells (settings, billing, audit, support, catalog, products, projects, settings/{users,api-keys,integrations}); shared Nav component reads session.org_roles and shows only what each role can see; backstage stub at /__backstage__; dashboard renders product tiles from session.products
|
|
- chore(deps): bump next + eslint-config-next to 16.2.6 to clear trivy CVEs (CVE-2025-29927 critical + 7 highs in next 15.0.3)
|
|
- feat(app): Next.js 16 + Auth.js v5 skeleton with host→slug middleware, tenant context layout, OIDC sign-in flow
|
|
-
|
|
|
|
### Changed
|
|
- chore(domain): yourplatform.com → breakpilot.com
|
|
-
|
|
|
|
### Fixed
|
|
- ci: rework workflow for Gitea Actions (bash commitlint, inline gitleaks binary, per-stack jobs gated on real code)
|
|
-
|
|
|
|
### Removed
|
|
-
|
|
|
|
### Security
|
|
-
|
|
|
|
---
|
|
|
|
<!-- Released versions appear below this line, newest first. Don't edit by hand once the release workflow has run. -->
|