pos-system/services at 2d738aeefa485ddfb2b2506c1ee8d792d4be261d - pos-system - Gitea: Git with a cup of tea

admin/pos-system

Files

History

Ho Ngoc Hai 2d738aeefa feat(enforcement): add MediatR permission authorization behavior

Phase 2 of permission management — enforcement in MerchantService:

- PermissionConstants: maps JWT "permission" claim strings to
  StaffPermissions bitmask via FromClaims() method
- IRequirePermission: marker interface for commands needing permission
  check (StaffPermissions RequiredPermission property)
- PermissionAuthorizationBehavior: MediatR pipeline behavior that reads
  permission claims from HttpContext.User, converts to bitmask, validates
  against IRequirePermission.RequiredPermission. Skips non-annotated commands.
- Registered in MediatR pipeline after Validator, before Transaction
- Annotated 3 staff commands with ManageStaff permission:
  InviteStaffCommand, CreateActiveStaffCommand, UpdateStaffCommand
- Added HttpContextAccessor DI registration

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-26 06:47:01 +07:00

..

_template_dot_net

fix(p2): Wave 3 — fix 4 P2 backend architecture issues (TEC-261)

2026-03-23 10:09:45 +07:00

_template_nodejs

fix: stabilize web workspace quality gates

2026-02-23 11:25:27 +00:00

ads-analytics-service-net

fix(security): fix 5 P1 backend issues — BACK-C-01/03/04, BACK-W-02

2026-03-23 09:48:22 +07:00

ads-billing-service-net

feat: Add functional tests for MktZaloService, new contract and load tests, and audit documentation, while removing a legacy infrastructure project and updating service configurations.

2026-03-25 15:00:05 +07:00

ads-manager-service-net

fix(security): fix 5 P1 backend issues — BACK-C-01/03/04, BACK-W-02

2026-03-23 09:48:22 +07:00

ads-serving-service-net

feat: Add functional tests for MktZaloService, new contract and load tests, and audit documentation, while removing a legacy infrastructure project and updating service configurations.

2026-03-25 15:00:05 +07:00

ads-tracking-service-net

feat: Add functional tests for MktZaloService, new contract and load tests, and audit documentation, while removing a legacy infrastructure project and updating service configurations.

2026-03-25 15:00:05 +07:00

booking-service-net

fix(security): fix 5 P1 backend issues — BACK-C-01/03/04, BACK-W-02

2026-03-23 09:48:22 +07:00

catalog-service-net

fix(security): fix 5 P1 backend issues — BACK-C-01/03/04, BACK-W-02

2026-03-23 09:48:22 +07:00

chat-service-net

fix(security): fix 5 P0 security blockers — SEC-C-01 through SEC-C-05

2026-03-23 09:47:07 +07:00

fix(security): fix 5 P1 backend issues — BACK-C-01/03/04, BACK-W-02

2026-03-23 09:48:22 +07:00

goodgo-mcp-server

feat: Add functional tests for MktZaloService, new contract and load tests, and audit documentation, while removing a legacy infrastructure project and updating service configurations.

2026-03-25 15:00:05 +07:00

iam-service-net

feat(permissions): implement full-stack role permission management

2026-03-25 19:50:06 +07:00

inventory-service-net

fix(security): fix 5 P1 backend issues — BACK-C-01/03/04, BACK-W-02

2026-03-23 09:48:22 +07:00

membership-service-net

fix(security): remove external Redis/MinIO/SMTP credentials from base appsettings.json

2026-03-23 09:54:59 +07:00

merchant-service-net

feat(enforcement): add MediatR permission authorization behavior

2026-03-26 06:47:01 +07:00

mining-service-net

fix(security): fix 5 P0 security blockers — SEC-C-01 through SEC-C-05

2026-03-23 09:47:07 +07:00

mission-service-net

fix(security): fix 5 P1 backend issues — BACK-C-01/03/04, BACK-W-02

2026-03-23 09:48:22 +07:00

mkt-facebook-service-net

feat: Add functional tests for MktZaloService, new contract and load tests, and audit documentation, while removing a legacy infrastructure project and updating service configurations.

2026-03-25 15:00:05 +07:00

mkt-whatsapp-service-net

feat: Add functional tests for MktZaloService, new contract and load tests, and audit documentation, while removing a legacy infrastructure project and updating service configurations.

2026-03-25 15:00:05 +07:00

mkt-x-service-net

feat: Add functional tests for MktZaloService, new contract and load tests, and audit documentation, while removing a legacy infrastructure project and updating service configurations.

2026-03-25 15:00:05 +07:00

mkt-zalo-service-net

feat: Add functional tests for MktZaloService, new contract and load tests, and audit documentation, while removing a legacy infrastructure project and updating service configurations.

2026-03-25 15:00:05 +07:00

order-service-net

fix(p2): Wave 3 — fix 4 P2 backend architecture issues (TEC-261)

2026-03-23 10:09:45 +07:00

promotion-service-net

fix(security): remove residual Neon/external credentials from appsettings.Development.json

2026-03-23 09:52:20 +07:00

social-service-net

fix(security): fix 5 P1 backend issues — BACK-C-01/03/04, BACK-W-02

2026-03-23 09:48:22 +07:00

storage-service-net

fix(security): remove external Redis/MinIO/SMTP credentials from base appsettings.json

2026-03-23 09:54:59 +07:00

wallet-service-net

fix(security): fix 5 P1 backend issues — BACK-C-01/03/04, BACK-W-02

2026-03-23 09:48:22 +07:00