iven/hms - hms - 汕头市智界科技有限公司

iven/hms

Author	SHA1	Message	Date
iven	603af83aa9	fix: P0 止血 — 消除崩溃风险 + 伪CAS修复 + 硬编码清除 + 晚间血压 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - 新增 sea_orm_ext 模块: safe_version() / bump_version() 替代 14 处 unwrap() - 修复 points_service 伪 CAS 逻辑 bug: 在 Set() 前提取原始版本并重新验证 - AdminDashboard: API 失败时显示 unknown 状态而非虚假绿色 healthy - AdminDashboard: 今日操作改用真实数据，移除 "0 错误" 硬编码 - OperatorWorkbench: 移除硬编码 "美玲"，改用真实用户名 - Home.tsx: operator "内容发布" 从硬编码 0 改为真实积分统计 - 小程序体征录入: 新增晚间血压 indicator_type，映射到 evening 字段	2026-05-02 23:42:01 +08:00
iven	e8ee441ae1	feat(health): Track 3 医疗阈值 — warning 种子 + 患者端只读 API - 新增 6 条 warning 级别阈值种子数据（血压/心率/血糖参考范围） - 新增 GET /health/critical-value-thresholds/public 患者端只读接口 - 扩展 indicator 验证支持 blood_sugar_fasting/postprandial 等新指标	2026-05-02 11:37:21 +08:00
iven	23cd62a70f	feat(db): 健康模块字典种子数据 — 6 个字典 + 43 个条目 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - health_department (11 科室) - health_title (9 职称) - health_device_type (8 设备类型) - health_follow_up_type (5 随访类型) - health_consultation_type (3 咨询类型) - health_relationship (5 关系类型)	2026-05-02 11:34:35 +08:00
iven	f13a240000	fix(migration): 修复权限关联 — 使用 permission_id 外键关联 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details	2026-05-01 18:38:03 +08:00
iven	a174f88b6f	fix(migration): 修复表名 tenants → tenant（单数） Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details	2026-05-01 18:36:26 +08:00
iven	5261468953	fix(migration): 修复行动收件箱菜单迁移 — 使用正确的 menus 表字段 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details	2026-05-01 18:34:22 +08:00
iven	ebae393e90	chore(server): domain_events 清理周期从 90 天缩短为 7 天 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details	2026-05-01 17:44:00 +08:00
iven	4cde4acddc	feat(migration): 行动收件箱菜单种子数据 + 权限关联 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details	2026-05-01 17:41:41 +08:00
iven	6eb2bf9c80	feat(config): ThemeResp 增加品牌字段 + 公开品牌信息端点 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - ThemeResp 新增 brand_name/brand_slogan/brand_features/brand_copyright 字段 - default_theme 提供品牌默认值 - 新增 PublicBrandResp 和 GET /api/v1/public/brand 公开端点（无需认证） - ConfigModule 增加 public_routes 方法 - 更新测试覆盖品牌字段	2026-05-01 17:34:43 +08:00
iven	388948e348	feat(workflow): AI 行动闭环 BPMN 流程定义 — 随访/预约/预警三条审批流程 - ai_followup_workflow: 随访建议风险分级 + 医生审批 - ai_appointment_workflow: 预约建议风险分级 + 医生确认 - ai_alert_workflow: 预警确认风险分级 + 医生确认 - 启动时自动 seed 三条 published 状态的流程定义	2026-05-01 08:49:49 +08:00
iven	4b3193fcd6	feat(server): 集成 SuggestionService 到 AiState 初始化 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details	2026-05-01 08:14:41 +08:00
iven	577d2a32b1	feat(db): 添加 ai_suggestion 和 ai_risk_threshold 表迁移 - ai_suggestion: AI 建议记录表，含 tenant_id、analysis_id、suggestion_type、 risk_level、status、params、baseline_snapshot 等字段 - ai_risk_threshold: 租户级风险阈值配置表，按 metric_name + tenant_id 唯一索引 - 两表均包含标准审计字段和 version_lock 乐观锁	2026-05-01 08:04:51 +08:00
iven	3b38562533	test(ai): 添加 erp-ai 集成测试 — 14 个测试覆盖 3 个 service Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - PromptService: 创建/查询/列表筛选/激活版本切换/回滚/跨租户隔离/未找到错误 (7) - UsageService: 日志记录/概览/按类型聚合/跨租户隔离 (4) - AnalysisService: 完成分析/失败分析/缓存查找/列表筛选 (3) - 使用 MockProvider 替代真实 AI 调用	2026-05-01 00:57:16 +08:00
iven	32eef5ecf1	feat(db+test): 菜单权限关联迁移 + 适配 create_message 签名变更 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - 新增迁移 m097：为 17 个已有菜单设置 permission 字段，新增透析管理/资讯管理 2 个菜单 - 修复 consultation/pii_encryption 测试适配 create_message(sender_id, sender_role) 分离参数	2026-04-30 10:37:43 +08:00
iven	d8735eb45c	fix(test+web): 修复测试编译错误 + 前端构建问题 - 修复透析集成测试 TestApp.dialysis_state() 返回类型不匹配（39个错误） - 修复 erp-core test_helpers SeaORM Database::connect API 变更 - 修复 health_alert/article/data 集成测试函数签名不匹配 - 修复 DailyMonitoringTab 缺失 Input import - 修复 DeviceReadingsTab 未使用接口声明 - 修复 DialysisManageList keyword → search 参数名	2026-04-30 10:21:05 +08:00
iven	cec487bd2c	chore(points): 移除已废弃的 erp-points crate + 注释空桩和死常量 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - 删除 erp-points/ 目录（全部 501 handler，功能由 erp-health 完整提供） - 从 workspace Cargo.toml 和 erp-server 依赖中移除 - erp-dialysis event.rs: 说明事件由 erp-health 统一消费的设计意图 - erp-health event.rs: 标记 PATIENT_VERIFIED/PATIENT_DECEASED 为待实现	2026-04-30 08:24:20 +08:00
iven	26a9781d4f	feat(health): 药物提醒后端 API + 后台任务统一 + dead code 清理 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details P1-3: medication_reminder 全栈实现 - migration 000096: 创建 medication_reminder 表（含患者关联/提醒时间/频率） - entity + dto + service + handler: 完整 CRUD（乐观锁/软删除/审计日志） - 路由注册: GET /patients/{id}/medication-reminders, POST/PUT/DELETE - HealthError 新增 MedicationReminderNotFound P2-4: 后台任务启动统一 - appointment_reminder 迁移到 HealthModule::on_startup()（启动时立即执行 + 周期循环） - 删除 main.rs 中重复的 overdue_checker/points_expiration/appointment_reminder 调用 - 所有 Health 后台任务现由模块 on_startup 统一管理 P2-5: Web dead code 清理 - 删除 healthData.ts 中 getMiniTrend/getMiniToday（小程序专用端点，Web 无调用） - 删除 patients.ts 中 getHealthSummary（标记 TODO 未使用）	2026-04-30 07:18:22 +08:00
iven	dffa2dd47d	fix(health+server+mp): 审计 P0 批次修复 — 积分冲突/文章草稿泄露/商城空白/模板ID配置化 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details P0-1: 微信模板 ID 从硬编码空字符串改为环境变量注入 - wechat-templates.ts 读取 process.env.TARO_APP_WX_TEMPLATE_* - defineConstants 新增 5 个模板 ID 编译时注入 P0-2: 积分商城 Tab 空白降级 - mall/index.tsx 在 currentPatient 为 null 时先调用 loadPatients() - 仍无档案才显示空状态引导，而非直接阻断 P0-3: 消除 erp-points 重复路由冲突 - 从 erp-server 移除 erp-points 模块注册和路由 merge - 积分功能统一由 erp-health /health/points/* 提供 - erp-points crate 保留但不参与编译 P0-4: 文章列表按角色过滤防止草稿泄露 - list_articles handler: 非管理权限强制 status=published - get_article service: 新增 is_admin 参数控制状态过滤	2026-04-29 15:11:05 +08:00
iven	cac61637ce	feat(health): Web 管理端设备数据集成补全 — Phase 2 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - 新增告警三页面（仪表盘/列表/规则）+ 设备管理菜单种子数据 - 新增设备管理后端 API（GET /devices + DELETE /devices/{id}） - 新增设备数据查看组件 DeviceReadingsTab（原始数据 + 小时聚合） - 新增设备管理页面 DeviceManage（列表/筛选/解绑） - 患者详情页新增设备数据 Tab	2026-04-29 06:28:30 +08:00
iven	f6ccb8a35c	fix(health): 设备数据管线 Phase 1 缺陷修复 + AI 产品策略讨论 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - device_readings 批量插入添加 ON CONFLICT 去重唯一索引 - 小程序 BLEManager 增加离线缓存（Storage 持久化 + 启动重传） - 新增 device_readings 90 天数据保留清理定时任务 - 小米手环适配器增加 RACP 历史心率读取支持 - SSE 告警按医生过滤已确认实现（patient_doctor_relation） - 新增 AI 产品策略与设备数据医院场景讨论记录	2026-04-29 06:17:23 +08:00
iven	5ab8bf8479	feat(server): 可观测性 Phase 1 — 健康检查路由 + Prometheus 指标 + 连接池/事件积压监控 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - 添加 /health/live 存活探针别名（原 /health + /health/ready 保留） - 新增 metrics middleware：http_requests_total 计数器 + http_request_duration_seconds 直方图 - Prometheus exporter 独立端口 9090（可通过 ERP__SERVER__METRICS_PORT 覆盖） - 后台任务每 30s 采样 DB 连接池活跃/空闲连接数（pg_stat_activity） - 后台任务每 30s 采样 EventBus pending 事件积压数 - UUID 路径归一化避免高基数（/api/v1/users/:id/posts）	2026-04-28 20:39:11 +08:00
iven	a84378ab50	feat(ai): 定期自动分析定时任务 — 每 24 小时扫描高风险患者 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details 新增 auto_analysis.rs 服务： - 启动后延迟 5 分钟，每 24 小时执行一次 - 查找所有活跃租户中高风险患者（异常体征指标） - 自动调用趋势分析并存储分析结果 - 每租户限制 50 名患者，防止过载 - erp-server main.rs 中注册后台任务	2026-04-28 20:02:01 +08:00
iven	cf844a561f	feat(ai+db): 趋势分析 prompt 升级为结构化统计摘要 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - 新增迁移 000093：更新 health_trend_analysis prompt，使用统计字段替代原始数据点遍历，引导 AI 专注 slope/R²/异常点分析 - erp-ai handler: stream_trends 改用 get_trend_analysis_data() 替代 get_vital_signs()，传递预计算趋势特征 - sanitizer: 新增 sanitize_trend_analysis() 方法	2026-04-28 19:57:51 +08:00
iven	83e243f03e	feat(db): device_readings 新增 metric 字段用于多行拆分存储	2026-04-28 19:24:32 +08:00
iven	0aab27295c	feat(ai): 实现 AI 数据桥接 — 4 个 HealthDataProvider 方法从 stub 替换为真实查询 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - get_lab_report: 查询 lab_report + patient，解析 JSON items 构造 LabReportDto - get_vital_signs: 查询 vital_signs 时间序列，按指标提取 8 种体征数据 - get_patient_summary: 聚合 patient + diagnosis + medication_record + health_record - get_full_report: 查询 health_record + 关联诊断和化验报告构造章节 - AiState 新增 health_provider 字段，erp-server 注入 HealthDataProviderImpl - 4 个 SSE handler 从 placeholder JSON 改为调用 provider + sanitizer 真实数据流	2026-04-28 19:08:38 +08:00
iven	5941a6b764	feat(dialysis): 激活 erp-dialysis 独立模块 — 注册到 erp-server Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - workspace Cargo.toml 添加 erp-dialysis 依赖声明 - erp-server 注册 DialysisModule 并挂载透析路由 - 修复权限码：health.health-data.* → health.dialysis.list/manage - 集成测试迁移：erp_health → erp_dialysis import + DialysisState - TestApp 新增 dialysis_state() 方法 - cargo check 通过，erp-dialysis 10 个单元测试全部通过	2026-04-28 15:21:13 +08:00
iven	ac1033dbaf	refactor: 积分系统拆分为独立 erp-points crate Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - 新建 erp-points crate（8 Entity + account/product service + handler） - 商品 CRUD 和账户管理完整实现，订单/签到/规则端点暂返回 501 - 注册到 workspace + erp-server 路由 /api/v1/points/* - API 路径不变，前端无需修改	2026-04-28 14:32:16 +08:00
iven	be8fca1d76	feat(core): EventBus dead-letter + consume_with_retry 辅助函数 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - 新增 dead_letter_events 表 + Entity - consume_with_retry: 幂等检查 + 成功标记 + 失败转入 dead-letter - insert_dead_letter: 写入失败事件供后续排查和手动重试	2026-04-28 11:47:44 +08:00
iven	644efce760	feat(health): 新增 critical_alerts + critical_alert_responses 表 + Entity Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details 危急值告警数据模型：status(pending/acknowledged/resolved/escalated)、 escalation_level 分级升级、乐观锁、软删除。	2026-04-28 11:34:37 +08:00
iven	298e439fb2	feat(health): 新增 blind_indexes 表 + Entity 支持 PII 盲索引搜索 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details	2026-04-28 11:31:54 +08:00
iven	a66d59e86b	fix(server): Rate limit fail-close 改为环境变量控制 Some checks failed CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details 开发环境默认 fail-open（Redis 不可达时放行），生产环境设置 ERP__RATE_LIMIT__FAIL_CLOSE=true 启用 fail-close（返回 503）。	2026-04-28 01:30:05 +08:00
iven	1e6e783fcc	fix(server): 健康检查和 OpenAPI 端点移出限流中间件范围 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details account_lockout_middleware 改为 fail-close 后，/health 和 /docs/openapi.json 不应受影响。将它们提取为 unthrottled_routes 独立层。	2026-04-28 01:11:17 +08:00
iven	9dd6095e77	fix: P0/P1 安全与质量缺陷修复 — 10 项 QA 审查问题解决 Some checks failed CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details P0 安全修复: - tenant_rls: SQL 拼接改为参数化查询防止注入 - follow_up_service: UUID SQL 拼接改为参数化原生查询 - RLS 策略: 新迁移移除空字符串绕过条件 - SSE 消息推送: token 键名 'token' → 'access_token' 修复 - rate_limit: 登录端点 Redis 不可达时 fail-close P1 质量修复: - 小程序缓存清理: preservedKeys 补全认证键名 - 小程序 token 刷新: 失败时清除所有认证数据 - 小程序 401: redirectTo → reLaunch 兼容 tabBar - 集成测试: 信号量限制并行数据库创建(4个) - change_password: 乐观锁 version 硬编码 → 动态递增测试: 516 全部通过 (含 153 集成测试)	2026-04-28 00:57:41 +08:00
iven	30f2452933	fix(core): 迁移修复 + 配置调整 - auth_state: 新增字段 - config/default.toml: 配置更新 - migration 078/082: 修复 SQL 语法 - state/main: 启动逻辑调整	2026-04-28 00:20:11 +08:00
iven	5aec02e4ad	test(health): 7 个模块集成测试 — 49 个用例全通过 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details 新增 doctor(7)、diagnosis(7)、consent(6)、medication(8)、 dialysis_prescription(7)、follow_up_template(7)、daily_monitoring(7) 覆盖 CRUD、状态流、列表过滤、软删除、租户隔离、乐观锁。	2026-04-27 23:21:04 +08:00
iven	2d5b6d4c50	test(health): 文章/分类/标签集成测试 — 10 个用例全通过 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details 覆盖文章 CRUD、状态流(draft→pending_review→published→draft)、拒绝与重提交、列表过滤、软删除、租户隔离、分类 CRUD+隔离、标签 CRUD+文章关联、乐观锁冲突。	2026-04-27 23:04:41 +08:00
iven	f58f1f73c5	test(health): 健康数据集成测试 — 8 个测试覆盖体征CRUD/化验报告CRUD+审阅/租户隔离 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details fix(auth): WechatSessionResp mock 缺少 unionid 字段	2026-04-27 22:27:36 +08:00
iven	7420a66291	test(health): 随访 + 咨询集成测试 — 9 个随访测试 + 8 个咨询测试覆盖 CRUD/状态/批量/消息/租户隔离 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details	2026-04-27 22:18:51 +08:00
iven	e1d9f97d79	test(health): 扩展预约集成测试 +3 — 状态流转/取消/乐观锁冲突 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details	2026-04-27 22:01:38 +08:00
iven	fdbbc47a60	test(health): 扩展患者集成测试 +3 — 更新乐观锁/PII加密验证/姓名搜索 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details	2026-04-27 21:58:57 +08:00
iven	dc09cc4e2a	test(health): 设备读数集成测试 — 8 个测试覆盖批量摄入/设备绑定/聚合/查询/校验/租户隔离 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details	2026-04-27 21:54:50 +08:00
iven	55a7d7a03e	test(health): 告警系统集成测试 — 8 个测试覆盖规则 CRUD/引擎评估/状态流转/cooldown/租户隔离 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details	2026-04-27 21:48:12 +08:00
iven	3aaa0a9598	test(health): 透析记录集成测试 — 8 个测试覆盖 CRUD/PII/状态流转/租户隔离/乐观锁/软删除 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details	2026-04-27 21:42:24 +08:00
iven	88d01b5d84	test(health): 积分系统集成测试 — 12 个测试覆盖 FIFO/签到/兑换/隔离 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - 签到积分首次/连续签到 - 自定义事件积分增加 - FIFO 消费、精确消费、部分消费、余额不足 - 账户自动创建、兑换订单创建 - 交易记录查询、租户隔离	2026-04-27 21:21:04 +08:00
iven	6997bb1d90	test: Phase 0 测试基础设施 — TestApp + MSW + 覆盖率工具 + CI Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - TestApp struct 封装 TestDb + HealthState + tenant_id/operator_id - TestFixture 工厂方法: create_patient/create_doctor/create_schedule/create_appointment - 前端 MSW v2 handlers (auth) + server setup + vitest 集成 - vitest coverage v8 配置 + test:coverage script - GitHub Actions CI: backend (check + test + clippy) + frontend (tsc + test + build)	2026-04-27 21:12:08 +08:00
iven	22ef5b6d1f	feat(core): 审计日志哈希链 — prev_hash + record_hash + 完整性验证 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - 迁移 087: audit_logs 表添加 prev_hash/record_hash 列 + 索引 - audit_service::record() 写入时查询前一条 record_hash 作为 prev_hash - SHA256(id+action+resource_type+resource_id+created_at+prev_hash) 计算 record_hash - verify_hash_chain() 验证链完整性，返回 (总记录数, 断链数)	2026-04-27 19:38:39 +08:00
iven	d5c9654370	fix(db): 修复迁移 084/085 SQL 语法 + RLS 动态表名查询 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - 084/085: PostgreSQL DELETE 不支持 LIMIT，改用 ctid IN (SELECT ... LIMIT) - 086: RLS 迁移改为动态查询 information_schema 获取含 tenant_id 的表，避免硬编码表名不一致问题 - 全量测试 490 个通过（含 27 个集成测试 + RLS 验证）	2026-04-27 18:52:03 +08:00
iven	bcaeb0beef	feat(server): tenant RLS 中间件 — SET app.current_tenant_id - 新增 tenant_rls_middleware：JWT 解析后 SET 租户 ID，请求结束 RESET - 挂载到 protected router 的 JWT 层之后 - SET 失败仅 warn 不阻断（RLS 是安全网，主隔离在应用层） - RESET 防止连接池复用时租户上下文泄漏	2026-04-27 18:41:28 +08:00
iven	b7b9f50d00	feat(db): RLS 策略迁移 — 80 张 tenant_id 表启用行级安全 - 所有含 tenant_id 的表（基础 34 + 健康 28 + 其他 18）启用 RLS - 策略：未设置 app.current_tenant_id 时允许全部，设置后按 tenant_id 过滤 - down 方法完整回退（DROP POLICY + DISABLE ROW LEVEL SECURITY）	2026-04-27 18:40:07 +08:00
iven	3197dde33c	feat(core): 事件归档 + 消费者幂等性 — 迁移 084/085 + 清理任务 Some checks failed CI / rust-check (push) Has been cancelled Details CI / rust-test (push) Has been cancelled Details CI / frontend-build (push) Has been cancelled Details CI / security-audit (push) Has been cancelled Details - 迁移 084: domain_events_archive 归档表 + cleanup_old_published_events() - 迁移 085: processed_events 去重表 + cleanup_old_processed_events() - erp-core: is_event_processed() / mark_event_processed() 幂等性辅助 - erp-server: tasks::start_event_cleanup() 每 24h 归档 >90 天事件	2026-04-27 18:12:43 +08:00

1 2 3

142 Commits