8f28e6bd4e
feat: add version group tracking to cross-review task documents with auto-chaining on re-upload
2026-05-13 18:16:52 +08:00
2435e3697d
fix: mark documents as cross_review when added to cross-review task
2026-05-13 18:06:16 +08:00
ed60a1f8da
feat: add review_scope field to distinguish cross-review vs standard documents
2026-05-13 17:46:17 +08:00
72bc24dfcd
fix: exclude cross-review task documents from regular document list
2026-05-13 17:43:18 +08:00
7407448d43
fix: trigger audit runs when creating cross-review task for pre-uploaded documents
2026-05-13 17:35:28 +08:00
913db5f514
fix: add file size and result stats to history version query and VO
2026-05-13 16:49:55 +08:00
0a8f46008d
fix: remove sha256 duplicate check so re-upload always creates new version in group
2026-05-13 16:41:11 +08:00
9eec45cbd0
fix: remove sha256 duplicate check so re-upload always creates new version in group
2026-05-13 16:32:42 +08:00
b532ffc3b9
feat(govdoc): 补 structure/outline API 端点
2026-05-13 15:25:13 +08:00
5d777599bf
feat(govdoc): 新增内部公文模块全链路(后端58+前端11文件)
2026-05-13 14:37:12 +08:00
5e1a55430a
fix: improve cross-review upload and OCR failure handling
2026-05-12 17:57:47 +08:00
d47f499e57
Optimize RBAC org tree loading
2026-05-12 16:53:22 +08:00
3823c9a2e4
fix: harden cross-review task state handling
2026-05-12 11:30:56 +08:00
e749abd9ed
fix: repair upload status and queue filtering
2026-05-11 20:26:27 +08:00
8206ed7d43
feat: improve rag dataset document management
2026-05-11 19:25:50 +08:00
2aa5a6d1d6
fix: tighten rag permissions and area scope
2026-05-11 18:01:09 +08:00
dcc0f3c30d
feat: restore rag dataset management and linkage
2026-05-11 17:21:33 +08:00
da2bb8310d
fix(entry-modules): persist route path updates
2026-05-11 11:28:08 +08:00
e19f63183b
feat(rbac): add lazy organization tree endpoint
2026-05-11 09:38:14 +08:00
1a626a9020
fix: add rbac organization tree contracts
2026-05-11 02:17:50 +08:00
32fb2a4812
fix: stabilize rule config and cross-review backend
2026-05-11 02:03:01 +08:00
0fec8baafd
fix(rbac): expose usage stats menu in settings
2026-05-11 00:52:57 +08:00
be41863099
feat(rbac): seed usage stats permissions and schema
2026-05-09 20:08:22 +08:00
e8a93f25a6
feat(audit): record login events and trigger users
2026-05-09 20:07:44 +08:00
4d56652879
feat(usage-stats): add usage stats backend apis
2026-05-09 20:06:59 +08:00
9c86bf59e5
feat: add rag backend and review access fixes
2026-05-08 10:58:24 +08:00
1c84209f38
feat: migrate cross review to v3 leaudit flow
2026-05-07 18:18:59 +08:00
35e0c45c42
refactor: remove document legacy binding reads
2026-05-07 18:06:20 +08:00
59f2737f80
refactor: remove audit legacy binding fallback
2026-05-07 18:03:40 +08:00
ad367ac5bf
refactor: drop legacy rule binding fallbacks
2026-05-07 18:01:54 +08:00
e1adcf30d2
chore: add legacy binding fallback audit logs
2026-05-07 17:52:01 +08:00
f8eb2dc817
feat: migrate rule bindings to group-based flow
2026-05-07 17:43:20 +08:00
75c2111209
fix: align rule rollback version resolution
2026-05-07 10:58:42 +08:00
f9de903acc
feat: add rule draft permission flow
2026-05-06 20:06:41 +08:00
0b76dce2a5
fix: preserve review field page positions in platform
2026-05-06 16:29:39 +08:00
c4694e11f0
feat: add document type root management
2026-05-06 14:20:28 +08:00
6ff1fb1cf6
fix: repair review detail attachment query
2026-05-06 10:01:21 +08:00
76ba7e65ed
feat: add backend rule group and permission support
2026-05-06 09:40:37 +08:00
2d3a0f31de
feat: complete review detail backend chain
2026-05-06 09:19:03 +08:00
acdcfeb0be
fix: add /document-types to visible route whitelist and permission map
2026-04-30 14:27:06 +08:00
283c8228b2
feat: add document-types route and permissions to admin seeds
2026-04-30 14:13:33 +08:00
e6e129c70e
fix: parse date strings to date objects for asyncpg compatibility
2026-04-30 13:09:24 +08:00
52c2bed4f9
feat: add document type CRUD with inline rule set binding
...
- GET/POST /api/document-types, GET/PUT/DELETE /api/document-types/{id}
- DocumentTypeItemVO extended with description, entryModuleId,
isEnabled, ruleSetIds
- Create/Update DTOs accept ruleSetIds array for automatic
leaudit_rule_type_bindings sync (full replace on update)
- Soft delete cascades to rule_type_bindings
2026-04-30 12:50:56 +08:00
8f307aecba
feat: add document-types endpoint and date/user filters to list
...
- GET /api/document-types: returns {id, name, code} from
leaudit_document_types, with optional ?ids=1,2,3 filter
- GET /api/documents/list: added userId, dateFrom, dateTo
query params for filtering by uploading user and date range
2026-04-30 12:28:55 +08:00
b6d7f154ad
fix: enforce fine-grained read/write permissions on all rbac admin endpoints
...
Previously only CreateRole/UpdateRole/DeleteRole checked specific
permission keys. Now every endpoint enforces its corresponding
permission:
ListRoles/GetRoleRoutes/GetRolePermissions → rbac:roles:read
ListUsers/ListRoleUsers/GetUserRoles → rbac:users:read
AssignUserRoles/RevokeUserRole → rbac:user_roles:write
UpdateRoleRoutes → rbac:role_routes:write
SaveRolePermissions → rbac:role_permissions:write
GetRoutePermissions → rbac:permissions:read
2026-04-30 11:23:09 +08:00
ab31c808d7
fix: show permission display_name instead of key in 403 errors
...
Previously _assertPermission raised "缺少权限: rbac:roles:delete".
Now it looks up the display_name from the permissions table and
shows "缺少「删除角色」权限".
2026-04-30 11:18:06 +08:00
c16bb841de
fix: restrict area bypass to super_admin only
...
Previously provincial_admin also skipped entry module area
filtering, making areas configuration meaningless for them.
Now only super_admin bypasses — provincial_admin and below
must match their area against the module's areas list.
2026-04-30 10:58:37 +08:00
33255e823f
fix: enforce fine-grained rbac permissions on role CRUD endpoints
...
Add _assertPermission() that checks role_permissions table for
specific permission keys (super_admin bypasses). Wire it into
CreateRole (rbac:roles:create), UpdateRole (rbac:roles:update),
and DeleteRole (rbac:roles:delete). Previously only the coarse
can_manage role check was enforced, making the permission grants
in role_permissions purely cosmetic for these endpoints.
2026-04-30 10:36:38 +08:00
3a58f19d6c
feat: add rbac-backed settings modules
2026-04-29 22:25:06 +08:00
b3ad4a6f33
feat: bootstrap user rbac foundation
2026-04-29 15:23:19 +08:00
wren