docs: complete technical documentation and security architecture mapping (#15)#45
Merged
Conversation
- Created doc/security.md to map application security architecture - Documented role hierarchy (ROLE_USER, ROLE_ADMIN) - Explained route-level and Voter-level authorization rules - Listed default demo accounts from fixtures for manual/automated testing
- Added project modernization objectives and tech stack overview - Linked CONTRIBUTING.md and doc/security.md sub-documentations - Provided fast-track local setup and test execution commands - Included details about static analysis and quality audit workflows
Up to standards ✅🟢 Issues
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR delivers the complete technical documentation package for the ToDo & Co application. It structures the onboarding process, maps the security and authorization system, and upgrades the project entry point.
Key Deliverables Included
1. Root
README.mdOverhaulCONTRIBUTING.mdanddoc/security.md) to establish a clean entry-point.2. Technical Security Guide (
doc/security.md)ROLE_ADMINinheriting fromROLE_USER).security.yml) and complex business rules managed by our customTaskVoter(including the specificROLE_ADMINexception for anonymous task cleanup).admin,user,anonyme) to help with quick validation.Acceptance Criteria Checklist
README.md.Verification
Close #15