284313f908
Some checks are pending
Bidi Control Character Guard / bidi-control-guard (push) Waiting to run
Circular Dependency Check / Check for new circular dependencies (push) Waiting to run
Citus Migration Smoke / Combined migrations on single-node Citus (push) Waiting to run
E2E Fresh Install Tests / fresh-install-e2e (push) Waiting to run
ext-v2 guardrails / Run ext-v2 guard and ESLint (push) Waiting to run
Integration Tests / Check for relevant changes (push) Waiting to run
Integration Tests / ${{ (github.event_name == 'schedule' || github.event.inputs.suite == 'full') && 'Full integration suite' || 'Tier-1 integration subset' }} (push) Blocked by required conditions
Mobile checks / Mobile lint + typecheck (push) Waiting to run
Mobile checks / Mobile unit tests (push) Waiting to run
Mobile checks / Mobile dependency audit (report) (push) Waiting to run
Mobile checks / Mobile reproducibility checks (push) Waiting to run
Secrets guard (env backups) / Ensure no tracked env backup files (push) Waiting to run
Temporal Readiness / fast-readiness (push) Waiting to run
Temporal Readiness / docker-parity (push) Waiting to run
TypeScript Type Check / Nx affected typecheck (push) Waiting to run
Unit Tests / Skipped-test budget (push) Waiting to run
Unit Tests / Nx affected unit tests (push) Waiting to run
Unit Tests / Server unit coverage (informational) (push) Waiting to run
Validate Tenant Management Schema / Check for relevant changes (push) Waiting to run
Validate Tenant Management Schema / Validate Tenant Management Schema (push) Blocked by required conditions
EE Workflows Build Guard / ee-workflows-build-guard (push) Waiting to run
Excluded: .git, node_modules, secrets/, compose.env, assemblyscript tgz Source: /opt/alga-psa on psa.joliet.tech
187 lines
5.6 KiB
JSON
187 lines
5.6 KiB
JSON
[
|
|
{
|
|
"id": "RT001",
|
|
"description": "Validation: `cd server && npm run typecheck -- --pretty false` passes after auth/session and sidebar type remediation.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R023",
|
|
"R066"
|
|
]
|
|
},
|
|
{
|
|
"id": "RT002",
|
|
"description": "Unit: NextAuth tenant info lookup maps product_code into JWT and session.user while preserving plan, addons, and trial fields.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R011",
|
|
"R013",
|
|
"R015",
|
|
"R016"
|
|
]
|
|
},
|
|
{
|
|
"id": "RT003",
|
|
"description": "Component/unit: ProductProvider resolves AlgaDesk sessions as isAlgaDesk and PSA sessions as isPsa, including documented fallback behavior for missing product_code.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R021",
|
|
"R022",
|
|
"R020"
|
|
]
|
|
},
|
|
{
|
|
"id": "RT004",
|
|
"description": "Unit: product-denied errors consistently return HTTP 403 with code PRODUCT_ACCESS_DENIED through API middleware and representative standalone route handler helpers.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R024",
|
|
"R026",
|
|
"R027",
|
|
"R029"
|
|
]
|
|
},
|
|
{
|
|
"id": "RT005",
|
|
"description": "Unit: product registry allows exact AlgaDesk help-desk routes including client-settings and kb-articles, denies representative PSA-only route families, and fails closed for unknown AlgaDesk paths.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R030",
|
|
"R037",
|
|
"R053",
|
|
"R054"
|
|
]
|
|
},
|
|
{
|
|
"id": "RT006",
|
|
"description": "Component: AlgaDesk MSP shell renders sidebar, header/app chrome, and main content while excluding full PSA providers; PSA path still renders existing DefaultLayout behavior.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R056",
|
|
"R057",
|
|
"R058",
|
|
"R068"
|
|
]
|
|
},
|
|
{
|
|
"id": "RT007",
|
|
"description": "Component: AlgaDesk settings/navigation exposes only approved settings and direct settings subroutes/tabs for notifications/extensions/integrations are denied or narrowed as specified.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R032",
|
|
"R033",
|
|
"R034",
|
|
"R035"
|
|
]
|
|
},
|
|
{
|
|
"id": "RT008",
|
|
"description": "Server-page test: representative excluded MSP routes for billing/projects/assets/workflows do not call data-fetching actions for AlgaDesk and still render/pass for PSA.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R072",
|
|
"R073",
|
|
"R074",
|
|
"R083"
|
|
]
|
|
},
|
|
{
|
|
"id": "RT009",
|
|
"description": "Server-page test: representative excluded client portal routes for billing/projects/documents/request-services are guarded before data fetching, while allowed AlgaDesk client-settings remains accessible.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R081",
|
|
"R030"
|
|
]
|
|
},
|
|
{
|
|
"id": "RT010",
|
|
"description": "API integration/unit-controller: overridden ApiProjectController methods and one other overridden PSA-only controller deny AlgaDesk before returning data.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R085",
|
|
"R088",
|
|
"R089"
|
|
]
|
|
},
|
|
{
|
|
"id": "RT011",
|
|
"description": "API integration: AlgaDesk API key can access representative allowed ticket/client/contact/kb/email endpoints and gets structured 403 for representative denied billing/project/asset/time/workflow/AI/document endpoints.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R097",
|
|
"R098",
|
|
"R038",
|
|
"R047"
|
|
]
|
|
},
|
|
{
|
|
"id": "RT012",
|
|
"description": "API discovery integration: AlgaDesk metadata/OpenAPI/docs filter paths, permissions, stats, and PSA-only schemas where feasible; PSA metadata remains complete.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R100",
|
|
"R101",
|
|
"R103",
|
|
"R107"
|
|
]
|
|
},
|
|
{
|
|
"id": "RT013",
|
|
"description": "Component/server-page: AlgaDesk contact detail with tab=documents does not fetch documents or render Documents tab, while PSA contact detail still fetches and renders documents.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R109",
|
|
"R110",
|
|
"R111",
|
|
"R112"
|
|
]
|
|
},
|
|
{
|
|
"id": "RT014",
|
|
"description": "Playwright smoke repair: AlgaDesk portal ticket test uses real helper signatures, real ticket creation route/flow, cleans up data, and can at least list and compile under the configured Playwright project.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R114",
|
|
"R115",
|
|
"R116"
|
|
]
|
|
},
|
|
{
|
|
"id": "RT015",
|
|
"description": "DB-backed integration: inbound email creates a ticket with mapped board/category/priority and resolves sender/contact when DB prerequisites are available.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R119",
|
|
"R122"
|
|
]
|
|
},
|
|
{
|
|
"id": "RT016",
|
|
"description": "DB-backed integration: inbound reply appends one public comment, stores thread/dedupe metadata, and repeated events do not create duplicate comments when DB prerequisites are available.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R119"
|
|
]
|
|
},
|
|
{
|
|
"id": "RT017",
|
|
"description": "Test quality audit: tests claiming integration/API/DB/browser behavior either execute that behavior or are renamed/rewritten as static contract tests.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R118",
|
|
"R120",
|
|
"R121"
|
|
]
|
|
},
|
|
{
|
|
"id": "RT018",
|
|
"description": "Plan status audit: parent plan is annotated as superseded or its implemented booleans are corrected; remediation checklist remains honest with verified items only.",
|
|
"implemented": true,
|
|
"featureIds": [
|
|
"R126",
|
|
"R127",
|
|
"R129"
|
|
]
|
|
}
|
|
]
|