- Backend (FastAPI):
- Attachment and AttachmentVersion models with migration
- FileStorageService with SHA-256 checksum validation
- File type validation (whitelist/blacklist)
- Full CRUD API with version control support
- Audit trail integration for upload/download/delete
- Configurable upload directory and file size limit
- Frontend (React + Vite):
- AttachmentUpload component with drag & drop
- AttachmentList component with download/delete
- TaskAttachments combined component
- Attachments service for API calls
- Testing:
- 12 tests for storage service and API endpoints
- OpenSpec:
- add-document-management change archived
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Backend (FastAPI):
- AuditLog and AuditAlert models with Alembic migration
- AuditService with SHA-256 checksum for log integrity
- AuditMiddleware for request metadata extraction (IP, user_agent)
- Integrated audit logging into Task, Project, Blocker APIs
- Query API with filtering, pagination, CSV export
- Integrity verification endpoint
- Sensitive operation alerts with acknowledgement
- Frontend (React + Vite):
- Admin AuditPage with filters and export
- ResourceHistory component for change tracking
- Audit service for API calls
- Testing:
- 15 tests covering service and API endpoints
- OpenSpec:
- add-audit-trail change archived
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Backend (FastAPI):
- Task comments with nested replies and soft delete
- @mention parsing with 10-mention limit per comment
- Notification system with read/unread tracking
- Blocker management with project owner notification
- WebSocket endpoint with JWT auth and keepalive
- User search API for @mention autocomplete
- Alembic migration for 4 new tables
- Frontend (React + Vite):
- Comments component with @mention autocomplete
- NotificationBell with real-time WebSocket updates
- BlockerDialog for task blocking workflow
- NotificationContext for state management
- OpenSpec:
- 4 requirements with scenarios defined
- add-collaboration change archived
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Backend (FastAPI):
- Database migration for spaces, projects, task_statuses, tasks tables
- SQLAlchemy models with relationships
- Pydantic schemas for CRUD operations
- Spaces API: CRUD with soft delete
- Projects API: CRUD with auto-created default statuses
- Tasks API: CRUD, status change, assign, subtask support
- Permission middleware with Security Level filtering
- Subtask depth limit (max 2 levels)
Frontend (React + Vite):
- Layout component with navigation
- Spaces list page
- Projects list page
- Tasks list page with status management
Fixes:
- auth_client.py: use 'username' field for external API
- config.py: extend JWT expiry to 7 days
- auth/router.py: sync Redis session with JWT expiry
Tests: 36 passed (unit + integration)
E2E: All APIs verified with real authentication
OpenSpec: add-task-management archived
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Backend (FastAPI):
- External API authentication (pj-auth-api.vercel.app)
- JWT token validation with Redis session storage
- RBAC with department isolation
- User, Role, Department models with pjctrl_ prefix
- Alembic migrations with project-specific version table
- Complete test coverage (13 tests)
- Frontend (React + Vite):
- AuthContext for state management
- Login page with error handling
- Protected route component
- Dashboard with user info display
- OpenSpec:
- 7 capability specs defined
- add-user-auth change archived
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
