Complete task 4 backend security architecture docs
This commit is contained in:
@@ -1,23 +1,23 @@
|
||||
---
|
||||
taskmaster_id: "4.3"
|
||||
status: "pending"
|
||||
status: "done"
|
||||
priority: "high"
|
||||
depends_on: ["2"]
|
||||
parent_id: "4"
|
||||
source: "taskmaster"
|
||||
generated_at: "2026-05-24T07:15:25.199Z"
|
||||
generated_at: "2026-05-24T07:26:29.052Z"
|
||||
---
|
||||
|
||||
# 4.3 - Specify funds ledger and escrow state machine
|
||||
|
||||
- [ ] 4.3 - Specify funds ledger and escrow state machine #taskmaster #priority/high #status/pending ⏫ 🆔 tm-4-3 ⛔ tm-2
|
||||
- [x] 4.3 - Specify funds ledger and escrow state machine #taskmaster #priority/high #status/done ⏫ 🆔 tm-4-3 ⛔ tm-2
|
||||
|
||||
## Metadata
|
||||
|
||||
| Field | Value |
|
||||
| --- | --- |
|
||||
| Taskmaster ID | 4.3 |
|
||||
| Status | pending |
|
||||
| Status | done |
|
||||
| Priority | high |
|
||||
| Dependencies | 2 |
|
||||
| Parent | 4 - Define backend security and refactor strategy from latest audit |
|
||||
@@ -28,6 +28,8 @@ Define canonical money movement and legal state transitions before refactor or p
|
||||
|
||||
## Details
|
||||
|
||||
Completed. Produced `09 - Audits/Funds Ledger and Escrow State Machine Specification.md` (states, transitions, invariants, and migration guidance for canonical funds/escrow transitions).
|
||||
|
||||
Create specs for FundsAccount, LedgerEntry, FundsBalance, gross paid, provider fees, platform fees, held, disputed, releasable, released, refunded, idempotency keys, reconciliation behavior, purchase request states, payment states, escrow/funds states, dispute states, valid transitions, forbidden transitions, and release/refund/admin override preconditions.
|
||||
|
||||
## Verification
|
||||
|
||||
@@ -1,23 +1,23 @@
|
||||
---
|
||||
taskmaster_id: "4.4"
|
||||
status: "pending"
|
||||
status: "done"
|
||||
priority: "high"
|
||||
depends_on: ["2"]
|
||||
parent_id: "4"
|
||||
source: "taskmaster"
|
||||
generated_at: "2026-05-24T07:15:25.199Z"
|
||||
generated_at: "2026-05-24T07:26:29.052Z"
|
||||
---
|
||||
|
||||
# 4.4 - Create authorization matrix for REST and Socket.IO
|
||||
|
||||
- [ ] 4.4 - Create authorization matrix for REST and Socket.IO #taskmaster #priority/high #status/pending ⏫ 🆔 tm-4-4 ⛔ tm-2
|
||||
- [x] 4.4 - Create authorization matrix for REST and Socket.IO #taskmaster #priority/high #status/done ⏫ 🆔 tm-4-4 ⛔ tm-2
|
||||
|
||||
## Metadata
|
||||
|
||||
| Field | Value |
|
||||
| --- | --- |
|
||||
| Taskmaster ID | 4.4 |
|
||||
| Status | pending |
|
||||
| Status | done |
|
||||
| Priority | high |
|
||||
| Dependencies | 2 |
|
||||
| Parent | 4 - Define backend security and refactor strategy from latest audit |
|
||||
@@ -28,6 +28,8 @@ Map every endpoint and realtime event to access level, ownership checks, state p
|
||||
|
||||
## Details
|
||||
|
||||
Completed. Produced `09 - Audits/Authorization Matrix - REST and Socket.IO.md` and `09 - Audits/Realtime Authorization Spec.md`.
|
||||
|
||||
Include public/authenticated/owner/buyer/seller/admin/support/service-role classifications. Socket.IO rooms must be server-derived from authenticated identity, not client-supplied user IDs.
|
||||
|
||||
## Verification
|
||||
|
||||
@@ -1,23 +1,23 @@
|
||||
---
|
||||
taskmaster_id: "4.5"
|
||||
status: "pending"
|
||||
status: "done"
|
||||
priority: "high"
|
||||
depends_on: ["2"]
|
||||
parent_id: "4"
|
||||
source: "taskmaster"
|
||||
generated_at: "2026-05-24T07:15:25.199Z"
|
||||
generated_at: "2026-05-24T07:26:29.052Z"
|
||||
---
|
||||
|
||||
# 4.5 - Decide session, passkey, and admin step-up architecture
|
||||
|
||||
- [ ] 4.5 - Decide session, passkey, and admin step-up architecture #taskmaster #priority/high #status/pending ⏫ 🆔 tm-4-5 ⛔ tm-2
|
||||
- [x] 4.5 - Decide session, passkey, and admin step-up architecture #taskmaster #priority/high #status/done ⏫ 🆔 tm-4-5 ⛔ tm-2
|
||||
|
||||
## Metadata
|
||||
|
||||
| Field | Value |
|
||||
| --- | --- |
|
||||
| Taskmaster ID | 4.5 |
|
||||
| Status | pending |
|
||||
| Status | done |
|
||||
| Priority | high |
|
||||
| Dependencies | 2 |
|
||||
| Parent | 4 - Define backend security and refactor strategy from latest audit |
|
||||
@@ -28,6 +28,8 @@ Choose browser session model and high-risk admin authentication requirements.
|
||||
|
||||
## Details
|
||||
|
||||
Completed. Produced `09 - Audits/Session and Authentication Architecture Decision.md`.
|
||||
|
||||
Decide localStorage versus httpOnly cookies, access/refresh token lifetimes, CSRF strategy, refresh rotation, WebAuthn requirements, OAuth requirements, device/session revocation, and whether payouts/role changes require step-up authentication or two-person approval.
|
||||
|
||||
## Verification
|
||||
|
||||
@@ -1,23 +1,23 @@
|
||||
---
|
||||
taskmaster_id: "4.6"
|
||||
status: "pending"
|
||||
status: "done"
|
||||
priority: "high"
|
||||
depends_on: ["3"]
|
||||
parent_id: "4"
|
||||
source: "taskmaster"
|
||||
generated_at: "2026-05-24T07:15:25.199Z"
|
||||
generated_at: "2026-05-24T07:26:29.052Z"
|
||||
---
|
||||
|
||||
# 4.6 - Specify webhook security and provider adapter contracts
|
||||
|
||||
- [ ] 4.6 - Specify webhook security and provider adapter contracts #taskmaster #priority/high #status/pending ⏫ 🆔 tm-4-6 ⛔ tm-3
|
||||
- [x] 4.6 - Specify webhook security and provider adapter contracts #taskmaster #priority/high #status/done ⏫ 🆔 tm-4-6 ⛔ tm-3
|
||||
|
||||
## Metadata
|
||||
|
||||
| Field | Value |
|
||||
| --- | --- |
|
||||
| Taskmaster ID | 4.6 |
|
||||
| Status | pending |
|
||||
| Status | done |
|
||||
| Priority | high |
|
||||
| Dependencies | 3 |
|
||||
| Parent | 4 - Define backend security and refactor strategy from latest audit |
|
||||
@@ -28,6 +28,8 @@ Define provider-neutral payment interface and signed webhook processing rules.
|
||||
|
||||
## Details
|
||||
|
||||
Completed. Produced `09 - Audits/Webhook Security Spec.md` and `09 - Audits/Payment Provider Adapter Spec.md`.
|
||||
|
||||
Document createPayInIntent, getPayInStatus, handleProviderWebhook, createHostedPaymentLink, createReleaseInstruction, createRefundInstruction, getPayoutStatus, searchProviderPayments, raw-body signature verification, replay prevention, delivery ID idempotency, duplicate/unknown event behavior, retry semantics, dead-letter/replay storage, and alert thresholds.
|
||||
|
||||
## Verification
|
||||
|
||||
@@ -1,23 +1,23 @@
|
||||
---
|
||||
taskmaster_id: "4.8"
|
||||
status: "pending"
|
||||
status: "done"
|
||||
priority: "medium"
|
||||
depends_on: ["2", "3", "4", "5", "6", "7"]
|
||||
parent_id: "4"
|
||||
source: "taskmaster"
|
||||
generated_at: "2026-05-24T07:15:25.199Z"
|
||||
generated_at: "2026-05-24T07:26:29.052Z"
|
||||
---
|
||||
|
||||
# 4.8 - Make backend-core stack decision
|
||||
|
||||
- [ ] 4.8 - Make backend-core stack decision #taskmaster #priority/medium #status/pending 🔼 🆔 tm-4-8 ⛔ tm-2 ⛔ tm-3 ⛔ tm-4 ⛔ tm-5 ⛔ tm-6 ⛔ tm-7
|
||||
- [x] 4.8 - Make backend-core stack decision #taskmaster #priority/medium #status/done 🔼 🆔 tm-4-8 ⛔ tm-2 ⛔ tm-3 ⛔ tm-4 ⛔ tm-5 ⛔ tm-6 ⛔ tm-7
|
||||
|
||||
## Metadata
|
||||
|
||||
| Field | Value |
|
||||
| --- | --- |
|
||||
| Taskmaster ID | 4.8 |
|
||||
| Status | pending |
|
||||
| Status | done |
|
||||
| Priority | medium |
|
||||
| Dependencies | 2, 3, 4, 5, 6, 7 |
|
||||
| Parent | 4 - Define backend security and refactor strategy from latest audit |
|
||||
@@ -28,6 +28,8 @@ Choose whether the security-critical backend core remains TypeScript or moves to
|
||||
|
||||
## Details
|
||||
|
||||
Completed. Produced `09 - Audits/Backend Core Stack Decision Record - 2026-05-24.md`.
|
||||
|
||||
Evaluate team capability, two-year maintainability, operational footprint, rewrite cost, dual-stack complexity, auditability, supply-chain exposure, and which modules belong in a payment/auth/escrow core versus the existing marketplace/chat API.
|
||||
|
||||
## Verification
|
||||
|
||||
@@ -1,23 +1,23 @@
|
||||
---
|
||||
taskmaster_id: "4.9"
|
||||
status: "pending"
|
||||
status: "done"
|
||||
priority: "medium"
|
||||
depends_on: ["8"]
|
||||
parent_id: "4"
|
||||
source: "taskmaster"
|
||||
generated_at: "2026-05-24T07:15:25.199Z"
|
||||
generated_at: "2026-05-24T07:26:29.052Z"
|
||||
---
|
||||
|
||||
# 4.9 - Create migration and operational runbooks
|
||||
|
||||
- [ ] 4.9 - Create migration and operational runbooks #taskmaster #priority/medium #status/pending 🔼 🆔 tm-4-9 ⛔ tm-8
|
||||
- [x] 4.9 - Create migration and operational runbooks #taskmaster #priority/medium #status/done 🔼 🆔 tm-4-9 ⛔ tm-8
|
||||
|
||||
## Metadata
|
||||
|
||||
| Field | Value |
|
||||
| --- | --- |
|
||||
| Taskmaster ID | 4.9 |
|
||||
| Status | pending |
|
||||
| Status | done |
|
||||
| Priority | medium |
|
||||
| Dependencies | 8 |
|
||||
| Parent | 4 - Define backend security and refactor strategy from latest audit |
|
||||
@@ -28,6 +28,8 @@ Document rollout, rollback, and incident response for the selected backend/funds
|
||||
|
||||
## Details
|
||||
|
||||
Completed. Produced `08 - Operations/Backend Funds Migration and Operational Runbooks.md`.
|
||||
|
||||
Include SHKeeper legacy read path, provider feature flag, ledger backfill, validation report before enforcement, rollback criteria, webhook cutoff, manual reconciliation, failed webhook, duplicate/missing payment, stuck release, disputed release attempt, compromised admin, leaked API key, provider outage, chain/RPC outage, suspicious payment proof, and npm/package compromise.
|
||||
|
||||
## Verification
|
||||
|
||||
@@ -1,23 +1,23 @@
|
||||
---
|
||||
taskmaster_id: "4"
|
||||
status: "in-progress"
|
||||
status: "done"
|
||||
priority: "high"
|
||||
depends_on: []
|
||||
parent_id: ""
|
||||
source: "taskmaster"
|
||||
generated_at: "2026-05-24T07:15:25.199Z"
|
||||
generated_at: "2026-05-24T07:26:29.052Z"
|
||||
---
|
||||
|
||||
# 4 - Define backend security and refactor strategy from latest audit
|
||||
|
||||
- [ ] 4 - Define backend security and refactor strategy from latest audit #taskmaster #priority/high #status/in-progress ⏫ 🆔 tm-4
|
||||
- [x] 4 - Define backend security and refactor strategy from latest audit #taskmaster #priority/high #status/done ⏫ 🆔 tm-4
|
||||
|
||||
## Metadata
|
||||
|
||||
| Field | Value |
|
||||
| --- | --- |
|
||||
| Taskmaster ID | 4 |
|
||||
| Status | in-progress |
|
||||
| Status | done |
|
||||
| Priority | high |
|
||||
| Dependencies | None |
|
||||
| Parent | None |
|
||||
|
||||
Reference in New Issue
Block a user