nns/food-market
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

docs(sprint1): P0-3 done

Browse source 
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
This commit is contained in:
nns 2026-05-27 02:20:12 +05:00
parent 8048c44ee4
commit 6f1566c2c3
1 changed files with 3 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
docs/sprint1-progress.md
View file

@ -9,8 +9,10 @@
## Чек-лист ## Чек-лист
1. [ ] **P0-3 Rate-limit**`Microsoft.AspNetCore.RateLimiting` (sliding window) на 1. [x] **P0-3 Rate-limit**`Microsoft.AspNetCore.RateLimiting` (sliding window) на
`/connect/token` и `/api/auth/signup`. 5/мин/IP, 20/час/IP. Тест: 6-я попытка за минуту → 429. `/connect/token` и `/api/auth/signup`. 5/мин/IP, 20/час/IP. Тест: 6-я попытка за минуту → 429.
`AuthRateLimiterExtensions` (global limiter + chained окна, gate по пути), отдельные
бакеты на эндпоинт. Проверено curl на :5091 — token 6→429, signup 6→429, бакеты независимы.
2. [ ] **P0-4 Health checks**`/health/live` (alive) + `/health/ready` (DB ping + миграции 2. [ ] **P0-4 Health checks**`/health/live` (alive) + `/health/ready` (DB ping + миграции
применены). docker-compose healthcheck → `/health/ready`. применены). docker-compose healthcheck → `/health/ready`.
3. [ ] **P0-5 Permission-based authz**`PermissionHandler` + `[RequiresPermission("...")]` 3. [ ] **P0-5 Permission-based authz**`PermissionHandler` + `[RequiresPermission("...")]`