docs(audit): align documentation with post-remediation backend reality

- Update data model enums to match backend models
- Update API reference auth requirements
- Add dispute module references and warning blocks
- Add 2026-05-24 audit remediation callout to Overview
- Generate task breakdowns and audit artifacts
- Add doc alignment report (.taskmaster/reports/)
This commit is contained in:
Siavash Sameni
2026-05-24 11:16:29 +04:00
parent b824ca0435
commit 4cf5c49274
74 changed files with 5964 additions and 81 deletions

View File

@@ -0,0 +1,35 @@
---
taskmaster_id: "5.2"
status: "pending"
priority: "high"
depends_on: ["1"]
parent_id: "5"
source: "taskmaster"
generated_at: "2026-05-24T07:15:25.199Z"
---
# 5.2 - Build Telegram identity linking and session model
- [ ] 5.2 - Build Telegram identity linking and session model #taskmaster #priority/high #status/pending ⏫ 🆔 tm-5-2 ⛔ tm-1
## Metadata
| Field | Value |
| --- | --- |
| Taskmaster ID | 5.2 |
| Status | pending |
| Priority | high |
| Dependencies | 1 |
| Parent | 5 - Deliver Telegram-native app, bot, and wallet experience |
## Description
Implement secure account linking between Telegram users and Amanat accounts.
## Details
Backend must verify Telegram Mini App initData before creating a Telegram session. Store an auditable Telegram user ID to Amanat user link. Support existing users, new users, unlinking, blocked accounts, duplicate-link attempts, session expiry, replay protection, rate limits, and audit logs.
## Verification
See Telegram-native PRD acceptance criteria.