PR 05 — Authentication : use-cases, services & RPC #5
Labels
No labels
bug
enhancement
pr-split
question
security
transaction-matcher
No milestone
No project
No assignees
1 participant
Notifications
Due date
No due date set.
Dependencies
No dependencies set.
Reference
momsse/octant#5
Loading…
Add table
Add a link
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Tranche 5/13 du découpage de
feat/authentication(plan :docs/pr-split/feat-authentication.md).Branche :
split/05-authentication-use-cases-rpc— Bloquée par : #15 (PR 4b, intercalée — adaptation des 2 lectures decursor.state.statusdansauthenticate.use-case.ts)Taille : ~46 fichiers (reste du package)
Périmètre (dans
packages/domain/authentication/src/)application/use-cases/: les 30 use-cases (authenticate, refresh, sign-out, self-service profil/email/devices/unlink, admin suspend/reactivate/anonymize/delete/sessions, invalidate-all-sessions, token-refresh daemon…)application/services/,application/queries/(UserDirectory, audit timeline…)interface-adapters/: groupe RPC + layer, middleware d'auth (cookies, session resolution), DTOs,policy.ts(pattern Visitor/Policy,notSelfTarget),forbidden.error.tsrpcs.client.ts,index.tscomplétéFocus review
Le middleware d'auth fait remonter les pannes d'infra au lieu de dégrader en anonyme ; les RPCs self-service rejettent les appels anonymes ; daemon de refresh (scan du read model token-expiry, échecs observables, signaux de sécurité best-effort jamais fatals) ; pattern Policy.
Commits d'origine
34f6317,d9ece33,96ce848,11dc556,24aa032,94ddf07,2e0ceb2,bf75144,a670364,e803402,2cf3904,3d8f9d9,0393cd7,26cac41,b282f23,9e570f5,0ed0cd4,edc2891,02ab2bf,6d17bb2,23907b6,5a519ca