curo1305 d7831e9382 test(02-03): add failing tests for TOTP endpoints, password reset, logout-all ...

- test_totp_setup_returns_uri: GET /api/auth/totp/setup returns provisioning_uri + secret
- test_totp_setup_already_enabled: returns 400 when totp_enabled=True
- test_totp_setup_requires_auth: returns 401/403 without Bearer
- test_password_reset_always_202_nonexistent: anti-enumeration for non-existent email
- test_password_reset_always_202_existing: anti-enumeration for existing email
- test_password_reset_confirm_invalid_token: returns 400 for bad token
- test_password_reset_confirm_weak_password: returns 422 for weak password
- test_password_reset_confirm_valid_no_autologin: returns 200 with no access_token (AUTH-05)
- test_logout_all_revokes_tokens: returns 200 with revoked message
- test_logout_all_requires_auth: returns 401/403 without Bearer
- test_totp_enable_rate_limit: 11th call returns 429

2026-05-22 19:50:51 +02:00

.planning

docs(02-02): execution summary — auth API endpoints + frontend auth wall complete

2026-05-22 19:48:33 +02:00

backend

test(02-03): add failing tests for TOTP endpoints, password reset, logout-all

2026-05-22 19:50:51 +02:00

docker/postgres/initdb.d

feat(01-01): add five-service compose stack and postgres init script

2026-05-22 08:57:14 +02:00

frontend

feat(02-02): frontend auth store, router guard, Login/Register views

2026-05-22 19:45:21 +02:00

.env.example

feat(02-01): add BackupCode ORM model, password_must_change field, Alembic migration, extend Settings

2026-05-22 19:19:52 +02:00

.gitignore

feat(02-02): frontend auth store, router guard, Login/Register views

2026-05-22 19:45:21 +02:00

CLAUDE.md

docs: create roadmap (5 phases)

2026-05-21 20:53:28 +02:00

docker-compose.yml

feat(01-01): add five-service compose stack and postgres init script

2026-05-22 08:57:14 +02:00

S

Description

No description provided

3 MiB

Languages

Python 65.7%

Vue 22.8%

JavaScript 11.3%