Skip to content

Claude/review commits plan next 015kpnf8xy zfpsvac2 kqd97p#13

Merged
ahmetabdullahgultekin merged 3 commits into
masterfrom
claude/review-commits-plan-next-015kpnf8xyZfpsvac2KQD97p
Nov 17, 2025
Merged

Claude/review commits plan next 015kpnf8xy zfpsvac2 kqd97p#13
ahmetabdullahgultekin merged 3 commits into
masterfrom
claude/review-commits-plan-next-015kpnf8xyZfpsvac2KQD97p

Conversation

@ahmetabdullahgultekin

Copy link
Copy Markdown
Contributor

No description provided.

Add automated diagnostic and fix tools to resolve backend INTERNAL_ERROR issues:

New Files:
- diagnose-backend-detailed.ps1: Comprehensive backend health check with error detection
- quick-fix-backend.ps1: Automated fix for most common backend issues
- h2-database-check.sql: SQL script for H2 Console database verification
- BACKEND_FIX_GUIDE.md: Complete step-by-step troubleshooting guide

Features:
- Auto-detection of missing tenant, uninitialized database, and config issues
- Clear error messages with specific fix instructions
- Guided SQL fixes for H2 Console
- Complete reference documentation

This resolves the immediate backend testing blockers identified in SESSION_SUMMARY.md
Document diagnostic tools session with:
- Complete overview of tools created
- Analysis of backend issue root causes
- Step-by-step user action plan
- Expected outcomes and success metrics
- Clear handoff instructions

Session achievements:
- 4 diagnostic/fix tools created (~1,100 lines)
- Backend fix toolkit complete
- Clear path to resolve INTERNAL_ERROR issues
- Estimated fix time: 15-30 minutes

Next: User runs quick-fix-backend.ps1 to resolve backend issues
Create comprehensive local execution toolkit:

New Files:
- fix-backend-locally.ps1: Automated diagnostic and fix script for local execution
- RUN_ME_LOCALLY.md: Simple guide for running scripts on local Windows machine

Features:
- Pre-flight checks (backend running, Java process, H2 Console)
- Automatic error detection and categorization
- Guided fix process with clipboard integration
- Automatic verification after fix
- Clear success/failure messaging
- Handles all common error scenarios

Usage:
  git pull origin <branch>
  .\fix-backend-locally.ps1

This script must be run on the user's local machine where backend is accessible.
@ahmetabdullahgultekin ahmetabdullahgultekin merged commit 0b7533b into master Nov 17, 2025
ahmetabdullahgultekin added a commit that referenced this pull request May 11, 2026
…ion batch

Bumps following today's parallel-agent session merging 9 PRs across the
submodule mainlines:

- api 6b17e0e → 606f1f4
  * #96 chore(handlers+purge) — confirm dev-gate annotations on
    AddressProofHandler + WatchlistCheckHandler; flip
    APP_PURGE_SOFT_DELETE_ENABLED default-on in application-prod.yml
    (GDPR Art. 17). +5 tests.
  * #97 feat(nfc) — wire bio mrz_parser into NfcController via new
    POST /api/v1/nfc/verify-mrz. Document number masked to last-4
    in audit log + response (PII). +7 tests.
  * #98 feat(db) — V59 audit_logs.tenant_id backfill from users JOIN +
    sentinel UUID for remaining NULLs; V60 DROP refresh_tokens.token
    plaintext column (T+7d soak elapsed since PR #71). RefreshToken.token
    demoted to @transient (preserves 5 wire-token call sites). +7 tests.

- bio 6f69a7d → 750492c
  * #94 feat(quality+liveness) — real occlusion detector (270 LOC):
    eye-variance 120 / mouth-variance 130 / CIE-Lab ΔE 18 thresholds.
    Anti-spoof contradiction policy spot-check confirmed 2026-05-08
    LIVENESS_VERDICT_POLICY=conservative already vetoes correctly. +15
    tests.
  * #95 feat(nfc) — new POST /api/v1/nfc/mrz route exposing
    mrz_parser.py with DG1 bytes b64 decoding for future ICAO chip-read.
    +10 tests.

- docs ed4dd25 → 78a9b4a
  * #13 — tenant onboarding playbook (DX-first, 215 lines) + 8 ADRs
    (572 lines covering hosted-first OIDC / pgvector /
    MobileFaceNet removal / Facenet512 server-authoritative /
    RFC 6749 §10.4 family-revoke / V53 BEFORE-DELETE / Persistable<UUID>
    refresh tokens / spoof-detector standalone) + hierarchy
    consolidation (14 git mvs, 4 empty dirs removed, 4 broken links
    fixed, Runbooks table cross-linking /opt/projects/infra/).

- spoof-detector abc7f05 → cc73cf0
  * #10 perf(blink) — per-frame FaceLandmarker cache (3.0x at 3 faces,
    4.9x at 5; blink-stage FPS 9.8→28.9) + EAR threshold recalibration
    (0.20→0.18, clean 60s fixture: 17bpm in target band). +13 tests
    (126→139 green).

Adds spoof-detector to .gitmodules — was extracted on `main` (commit
a6ac35a) but not yet on `master`. This commit brings the SEO branch
in line.

Audit-delta-before-rebuild: api was at 5add915 in last image
(2026-05-08 20:03 UTC); HEAD now at 606f1f4 (15+ commits including
today's 3 PRs). bio was at 31a2667 in last image (2026-05-09 11:15
UTC); HEAD now at 750492c (3+ commits including today's 2 PRs).
Operator must rebuild both containers post-merge.

Per memory feedback_no_code_loss_during_restructure.md: every PR was
opened FIRST, merged with admin bypass (1-review branch protection
enabled today via PR #48), no in-flight unique code remains.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
ahmetabdullahgultekin added a commit that referenced this pull request May 11, 2026
* docs(roadmap): refresh — supersede 2026-04-20 phase-A/B-centric version

Replace the 3-week-stale roadmap with current state. Phase A (lint),
Phase B (Dependabot security), Phase C wave-0 ops hardening, Phase I
Android 13/13, and 2026-04-30 senior-review remediation are all closed.

Active waves now framed against:
- INVESTIGATION 2026-05-07 6-lens audit (10 P0 + ~25 P1 + ~50 P2/P3)
  with 10 P0 closed same-day and ~12 P1 closed by 7ee52de batch 2026-05-08
- Ops + DB hygiene from SENIOR_DB Appendix C + CICD_AUDIT_2026-05-04
- Documentation / DX backlog per DOC_AUDIT_2026-05-04 T4.12
- spoof-detector paper push (BIOSIG / IJCB 2026 target)

Branch state documented (master vs main divergence + submodule HEADs).
Operator-only queue separated from agent-actionable work. Legacy Phase
1-7 content archived. Cross-links to canonical source-of-truth docs
(INVESTIGATION_MASTER, ROADMAP_OPTIMIZED_2026-05-04, CICD_AUDIT,
SENIOR_DB_REVIEW Appendix C, spoof-detector/ROADMAP.md).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

* chore(submodules): bump api+bio+docs+spoof-detector — 2026-05-11 session batch

Bumps following today's parallel-agent session merging 9 PRs across the
submodule mainlines:

- api 6b17e0e → 606f1f4
  * #96 chore(handlers+purge) — confirm dev-gate annotations on
    AddressProofHandler + WatchlistCheckHandler; flip
    APP_PURGE_SOFT_DELETE_ENABLED default-on in application-prod.yml
    (GDPR Art. 17). +5 tests.
  * #97 feat(nfc) — wire bio mrz_parser into NfcController via new
    POST /api/v1/nfc/verify-mrz. Document number masked to last-4
    in audit log + response (PII). +7 tests.
  * #98 feat(db) — V59 audit_logs.tenant_id backfill from users JOIN +
    sentinel UUID for remaining NULLs; V60 DROP refresh_tokens.token
    plaintext column (T+7d soak elapsed since PR #71). RefreshToken.token
    demoted to @transient (preserves 5 wire-token call sites). +7 tests.

- bio 6f69a7d → 750492c
  * #94 feat(quality+liveness) — real occlusion detector (270 LOC):
    eye-variance 120 / mouth-variance 130 / CIE-Lab ΔE 18 thresholds.
    Anti-spoof contradiction policy spot-check confirmed 2026-05-08
    LIVENESS_VERDICT_POLICY=conservative already vetoes correctly. +15
    tests.
  * #95 feat(nfc) — new POST /api/v1/nfc/mrz route exposing
    mrz_parser.py with DG1 bytes b64 decoding for future ICAO chip-read.
    +10 tests.

- docs ed4dd25 → 78a9b4a
  * #13 — tenant onboarding playbook (DX-first, 215 lines) + 8 ADRs
    (572 lines covering hosted-first OIDC / pgvector /
    MobileFaceNet removal / Facenet512 server-authoritative /
    RFC 6749 §10.4 family-revoke / V53 BEFORE-DELETE / Persistable<UUID>
    refresh tokens / spoof-detector standalone) + hierarchy
    consolidation (14 git mvs, 4 empty dirs removed, 4 broken links
    fixed, Runbooks table cross-linking /opt/projects/infra/).

- spoof-detector abc7f05 → cc73cf0
  * #10 perf(blink) — per-frame FaceLandmarker cache (3.0x at 3 faces,
    4.9x at 5; blink-stage FPS 9.8→28.9) + EAR threshold recalibration
    (0.20→0.18, clean 60s fixture: 17bpm in target band). +13 tests
    (126→139 green).

Adds spoof-detector to .gitmodules — was extracted on `main` (commit
a6ac35a) but not yet on `master`. This commit brings the SEO branch
in line.

Audit-delta-before-rebuild: api was at 5add915 in last image
(2026-05-08 20:03 UTC); HEAD now at 606f1f4 (15+ commits including
today's 3 PRs). bio was at 31a2667 in last image (2026-05-09 11:15
UTC); HEAD now at 750492c (3+ commits including today's 2 PRs).
Operator must rebuild both containers post-merge.

Per memory feedback_no_code_loss_during_restructure.md: every PR was
opened FIRST, merged with admin bypass (1-review branch protection
enabled today via PR #48), no in-flight unique code remains.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

* docs(changelog): 2026-05-11 session — 9 PRs across 5 repos + 5 tracks closed

Single comprehensive entry summarizing today's parallel-agent session:

- INVESTIGATION 2026-05-07 P1 residue (NFC MRZ wiring, occlusion impl,
  anti-spoof verify, dev-gate confirmations, purge default-on)
- Ops + DB hygiene (V59 audit_logs tenant_id backfill, V60 drop
  refresh_tokens.token plaintext, branch protection, Flyway repair
  runbook)
- Docs DX backlog (tenant onboarding playbook + 8 ADRs + hierarchy
  consolidation)
- spoof-detector paper P0 (blink cache + EAR recalibration)
- ROADMAP refresh

Operator deliverables and audit-delta-before-rebuild evidence captured.
Follow-up queue: bio test-suite rot (79 baseline failures), master/main
reconciliation, biometric-processor README broken links.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

---------

Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
ahmetabdullahgultekin added a commit that referenced this pull request May 12, 2026
…ctor-fig1-2026-05-12

chore(submodule): bump spoof-detector to post-Fig-1 main (#13)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants