Zzzz/Book-management-system
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: update specs and add auth service test

Browse Source
This commit is contained in:
Zzzz
2026-04-27 18:50:24 +08:00
parent 2120774b05
commit a297d7a8cf
6 changed files with 140 additions and 32 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.trellis/tasks/04-27-start-coding/prd.md
+11 -8
View File
@@ -39,14 +39,14 @@ Build the initial Java Web project scaffold and a login/permission skeleton for
## Acceptance Criteria (evolving)
* [x] The selected first module or feature is explicitly confirmed.
* [ ] The implementation follows the documented JSP + Servlet + MySQL layered architecture.
* [ ] A fresh checkout has recognizable Java Web/Tomcat project structure and build configuration.
* [ ] Login page submits credentials to a Servlet controller and displays validation/authentication failures safely.
* [ ] Authentication logic is represented through service and DAO boundaries rather than embedded in JSP.
* [ ] Session state stores the authenticated user and role in a controlled way.
* [ ] Basic role/permission constants or helpers exist for administrator, librarian, and reader.
* [ ] SQL/schema guidance exists for the minimal account/role tables needed by login.
* [ ] Lint, type-check, compile, or equivalent project validation is run where available.
* [x] The implementation follows the documented JSP + Servlet + MySQL layered architecture.
* [x] A fresh checkout has recognizable Java Web/Tomcat project structure and build configuration.
* [x] Login page submits credentials to a Servlet controller and displays validation/authentication failures safely.
* [x] Authentication logic is represented through service and DAO boundaries rather than embedded in JSP.
* [x] Session state stores the authenticated user and role in a controlled way.
* [x] Basic role/permission constants or helpers exist for administrator, librarian, and reader.
* [x] SQL/schema guidance exists for the minimal account/role tables needed by login.
* [x] Lint, type-check, compile, or equivalent project validation is run where available.
## Definition of Done (team quality bar)
@@ -68,3 +68,6 @@ Build the initial Java Web project scaffold and a login/permission skeleton for
* Frontend pre-development checklist includes directory structure, JSP component guidelines, state management, type safety, and quality guidelines.
* Codebase retrieval on 2026-04-27 found no application source code and surfaced the project specs as the main implementation context.
* Spec indexes reference `.trellis/tasks/00-bootstrap-guidelines/research/project-requirements.md`, but that file is absent in the current workspace, so context curation uses only present spec files.
* Implementation completed the scaffold under `src/main/`, added two standalone service checks under `src/test/`, and updated code-specs for the login database/JSP contracts.
* Local verification passed for non-Servlet Java compilation, `PermissionPolicyCheck`, `AuthServiceCheck`, and JSP/static boundary scans.
* Full Maven/Tomcat compile remains blocked in this environment because `mvn` is not installed and no local Servlet API jar is available outside Maven.