Claude/review commits plan next 015kpnf8xy zfpsvac2 kqd97p#13
Merged
ahmetabdullahgultekin merged 3 commits intoNov 17, 2025
Merged
Conversation
Add automated diagnostic and fix tools to resolve backend INTERNAL_ERROR issues: New Files: - diagnose-backend-detailed.ps1: Comprehensive backend health check with error detection - quick-fix-backend.ps1: Automated fix for most common backend issues - h2-database-check.sql: SQL script for H2 Console database verification - BACKEND_FIX_GUIDE.md: Complete step-by-step troubleshooting guide Features: - Auto-detection of missing tenant, uninitialized database, and config issues - Clear error messages with specific fix instructions - Guided SQL fixes for H2 Console - Complete reference documentation This resolves the immediate backend testing blockers identified in SESSION_SUMMARY.md
Document diagnostic tools session with: - Complete overview of tools created - Analysis of backend issue root causes - Step-by-step user action plan - Expected outcomes and success metrics - Clear handoff instructions Session achievements: - 4 diagnostic/fix tools created (~1,100 lines) - Backend fix toolkit complete - Clear path to resolve INTERNAL_ERROR issues - Estimated fix time: 15-30 minutes Next: User runs quick-fix-backend.ps1 to resolve backend issues
Create comprehensive local execution toolkit: New Files: - fix-backend-locally.ps1: Automated diagnostic and fix script for local execution - RUN_ME_LOCALLY.md: Simple guide for running scripts on local Windows machine Features: - Pre-flight checks (backend running, Java process, H2 Console) - Automatic error detection and categorization - Guided fix process with clipboard integration - Automatic verification after fix - Clear success/failure messaging - Handles all common error scenarios Usage: git pull origin <branch> .\fix-backend-locally.ps1 This script must be run on the user's local machine where backend is accessible.
ahmetabdullahgultekin
added a commit
that referenced
this pull request
May 11, 2026
…ion batch Bumps following today's parallel-agent session merging 9 PRs across the submodule mainlines: - api 6b17e0e → 606f1f4 * #96 chore(handlers+purge) — confirm dev-gate annotations on AddressProofHandler + WatchlistCheckHandler; flip APP_PURGE_SOFT_DELETE_ENABLED default-on in application-prod.yml (GDPR Art. 17). +5 tests. * #97 feat(nfc) — wire bio mrz_parser into NfcController via new POST /api/v1/nfc/verify-mrz. Document number masked to last-4 in audit log + response (PII). +7 tests. * #98 feat(db) — V59 audit_logs.tenant_id backfill from users JOIN + sentinel UUID for remaining NULLs; V60 DROP refresh_tokens.token plaintext column (T+7d soak elapsed since PR #71). RefreshToken.token demoted to @transient (preserves 5 wire-token call sites). +7 tests. - bio 6f69a7d → 750492c * #94 feat(quality+liveness) — real occlusion detector (270 LOC): eye-variance 120 / mouth-variance 130 / CIE-Lab ΔE 18 thresholds. Anti-spoof contradiction policy spot-check confirmed 2026-05-08 LIVENESS_VERDICT_POLICY=conservative already vetoes correctly. +15 tests. * #95 feat(nfc) — new POST /api/v1/nfc/mrz route exposing mrz_parser.py with DG1 bytes b64 decoding for future ICAO chip-read. +10 tests. - docs ed4dd25 → 78a9b4a * #13 — tenant onboarding playbook (DX-first, 215 lines) + 8 ADRs (572 lines covering hosted-first OIDC / pgvector / MobileFaceNet removal / Facenet512 server-authoritative / RFC 6749 §10.4 family-revoke / V53 BEFORE-DELETE / Persistable<UUID> refresh tokens / spoof-detector standalone) + hierarchy consolidation (14 git mvs, 4 empty dirs removed, 4 broken links fixed, Runbooks table cross-linking /opt/projects/infra/). - spoof-detector abc7f05 → cc73cf0 * #10 perf(blink) — per-frame FaceLandmarker cache (3.0x at 3 faces, 4.9x at 5; blink-stage FPS 9.8→28.9) + EAR threshold recalibration (0.20→0.18, clean 60s fixture: 17bpm in target band). +13 tests (126→139 green). Adds spoof-detector to .gitmodules — was extracted on `main` (commit a6ac35a) but not yet on `master`. This commit brings the SEO branch in line. Audit-delta-before-rebuild: api was at 5add915 in last image (2026-05-08 20:03 UTC); HEAD now at 606f1f4 (15+ commits including today's 3 PRs). bio was at 31a2667 in last image (2026-05-09 11:15 UTC); HEAD now at 750492c (3+ commits including today's 2 PRs). Operator must rebuild both containers post-merge. Per memory feedback_no_code_loss_during_restructure.md: every PR was opened FIRST, merged with admin bypass (1-review branch protection enabled today via PR #48), no in-flight unique code remains. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
4 tasks
ahmetabdullahgultekin
added a commit
that referenced
this pull request
May 11, 2026
* docs(roadmap): refresh — supersede 2026-04-20 phase-A/B-centric version Replace the 3-week-stale roadmap with current state. Phase A (lint), Phase B (Dependabot security), Phase C wave-0 ops hardening, Phase I Android 13/13, and 2026-04-30 senior-review remediation are all closed. Active waves now framed against: - INVESTIGATION 2026-05-07 6-lens audit (10 P0 + ~25 P1 + ~50 P2/P3) with 10 P0 closed same-day and ~12 P1 closed by 7ee52de batch 2026-05-08 - Ops + DB hygiene from SENIOR_DB Appendix C + CICD_AUDIT_2026-05-04 - Documentation / DX backlog per DOC_AUDIT_2026-05-04 T4.12 - spoof-detector paper push (BIOSIG / IJCB 2026 target) Branch state documented (master vs main divergence + submodule HEADs). Operator-only queue separated from agent-actionable work. Legacy Phase 1-7 content archived. Cross-links to canonical source-of-truth docs (INVESTIGATION_MASTER, ROADMAP_OPTIMIZED_2026-05-04, CICD_AUDIT, SENIOR_DB_REVIEW Appendix C, spoof-detector/ROADMAP.md). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> * chore(submodules): bump api+bio+docs+spoof-detector — 2026-05-11 session batch Bumps following today's parallel-agent session merging 9 PRs across the submodule mainlines: - api 6b17e0e → 606f1f4 * #96 chore(handlers+purge) — confirm dev-gate annotations on AddressProofHandler + WatchlistCheckHandler; flip APP_PURGE_SOFT_DELETE_ENABLED default-on in application-prod.yml (GDPR Art. 17). +5 tests. * #97 feat(nfc) — wire bio mrz_parser into NfcController via new POST /api/v1/nfc/verify-mrz. Document number masked to last-4 in audit log + response (PII). +7 tests. * #98 feat(db) — V59 audit_logs.tenant_id backfill from users JOIN + sentinel UUID for remaining NULLs; V60 DROP refresh_tokens.token plaintext column (T+7d soak elapsed since PR #71). RefreshToken.token demoted to @transient (preserves 5 wire-token call sites). +7 tests. - bio 6f69a7d → 750492c * #94 feat(quality+liveness) — real occlusion detector (270 LOC): eye-variance 120 / mouth-variance 130 / CIE-Lab ΔE 18 thresholds. Anti-spoof contradiction policy spot-check confirmed 2026-05-08 LIVENESS_VERDICT_POLICY=conservative already vetoes correctly. +15 tests. * #95 feat(nfc) — new POST /api/v1/nfc/mrz route exposing mrz_parser.py with DG1 bytes b64 decoding for future ICAO chip-read. +10 tests. - docs ed4dd25 → 78a9b4a * #13 — tenant onboarding playbook (DX-first, 215 lines) + 8 ADRs (572 lines covering hosted-first OIDC / pgvector / MobileFaceNet removal / Facenet512 server-authoritative / RFC 6749 §10.4 family-revoke / V53 BEFORE-DELETE / Persistable<UUID> refresh tokens / spoof-detector standalone) + hierarchy consolidation (14 git mvs, 4 empty dirs removed, 4 broken links fixed, Runbooks table cross-linking /opt/projects/infra/). - spoof-detector abc7f05 → cc73cf0 * #10 perf(blink) — per-frame FaceLandmarker cache (3.0x at 3 faces, 4.9x at 5; blink-stage FPS 9.8→28.9) + EAR threshold recalibration (0.20→0.18, clean 60s fixture: 17bpm in target band). +13 tests (126→139 green). Adds spoof-detector to .gitmodules — was extracted on `main` (commit a6ac35a) but not yet on `master`. This commit brings the SEO branch in line. Audit-delta-before-rebuild: api was at 5add915 in last image (2026-05-08 20:03 UTC); HEAD now at 606f1f4 (15+ commits including today's 3 PRs). bio was at 31a2667 in last image (2026-05-09 11:15 UTC); HEAD now at 750492c (3+ commits including today's 2 PRs). Operator must rebuild both containers post-merge. Per memory feedback_no_code_loss_during_restructure.md: every PR was opened FIRST, merged with admin bypass (1-review branch protection enabled today via PR #48), no in-flight unique code remains. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> * docs(changelog): 2026-05-11 session — 9 PRs across 5 repos + 5 tracks closed Single comprehensive entry summarizing today's parallel-agent session: - INVESTIGATION 2026-05-07 P1 residue (NFC MRZ wiring, occlusion impl, anti-spoof verify, dev-gate confirmations, purge default-on) - Ops + DB hygiene (V59 audit_logs tenant_id backfill, V60 drop refresh_tokens.token plaintext, branch protection, Flyway repair runbook) - Docs DX backlog (tenant onboarding playbook + 8 ADRs + hierarchy consolidation) - spoof-detector paper P0 (blink cache + EAR recalibration) - ROADMAP refresh Operator deliverables and audit-delta-before-rebuild evidence captured. Follow-up queue: bio test-suite rot (79 baseline failures), master/main reconciliation, biometric-processor README broken links. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> --------- Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
ahmetabdullahgultekin
added a commit
that referenced
this pull request
May 12, 2026
…ctor-fig1-2026-05-12 chore(submodule): bump spoof-detector to post-Fig-1 main (#13)
This was referenced Jun 3, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.