iven/zclaw_openfang
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
8cce2283f7820651e0bad93fa34425bff23eb127
zclaw_openfang/desktop
History
iven 8cce2283f7 fix(saas): P0 安全修复 + P1 功能补全 — 角色提升、Admin 引导、IP 记录、密码修改 
P0 安全修复:
- 修复 account update 自角色提升漏洞: 非 admin 用户更新自己时剥离 role 字段
- 添加 Admin 引导机制: accounts 表为空时自动从环境变量创建 super_admin

P1 功能补全:
- 所有 17 个 log_operation 调用点传入真实客户端 IP (ConnectInfo + X-Forwarded-For)
- AuthContext 新增 client_ip 字段, middleware 层自动提取
- main.rs 使用 into_make_service_with_connect_info 启用 SocketAddr 注入
- 新增 PUT /api/v1/auth/password 密码修改端点 (验证旧密码 + argon2 哈希)
- 桌面端 SaaS 设置页添加密码修改 UI (折叠式表单)
- SaaSClient 添加 changePassword() 方法
- 集成测试修复: 注入模拟 ConnectInfo 适配 onshot 测试模式
2026-03-27 14:45:47 +08:00
..
config
feat(hands): restructure Hands UI with Chinese localization
2026-03-14 23:16:32 +08:00
coverage
feat: 添加ESLint和Prettier配置并优化代码结构
2026-03-26 08:02:23 +08:00
local-tools
feat(hands): restructure Hands UI with Chinese localization
2026-03-14 23:16:32 +08:00
public
feat: initialize ZCLAW project with core systems and Tauri desktop
2026-03-11 22:06:07 +08:00
scripts
refactor: 统一项目名称从OpenFang到ZCLAW
2026-03-27 07:36:03 +08:00
src
fix(saas): P0 安全修复 + P1 功能补全 — 角色提升、Admin 引导、IP 记录、密码修改
2026-03-27 14:45:47 +08:00
src-tauri
fix(audit): v5 审计修复 8 项 — 条件编译、安全加固、冗余清理
2026-03-27 12:33:44 +08:00
tests
refactor: 统一项目名称从OpenFang到ZCLAW
2026-03-27 07:36:03 +08:00
.gitignore
feat: complete Phase 1-3 architecture optimization
2026-03-21 22:11:50 +08:00
DEBUG_REPORT.md
feat(hands): restructure Hands UI with Chinese localization
2026-03-14 23:16:32 +08:00
E2E_TEST_REPORT.md
refactor: 统一项目名称从OpenFang到ZCLAW
2026-03-27 07:36:03 +08:00
eslint.config.js
feat: 添加ESLint和Prettier配置并优化代码结构
2026-03-26 08:02:23 +08:00
index.html
feat: initialize ZCLAW project with core systems and Tauri desktop
2026-03-11 22:06:07 +08:00
NEXT_SESSION_PROMPT.md
refactor: 统一项目名称从OpenFang到ZCLAW
2026-03-27 07:36:03 +08:00
OPENFANG_CHAT_SUCCESS.png
feat(hands): restructure Hands UI with Chinese localization
2026-03-14 23:16:32 +08:00
package.json
feat(audit): 审计修复第四轮 — 跨会话搜索、LLM压缩集成、Presentation渲染器
2026-03-27 11:44:14 +08:00
pnpm-lock.yaml
feat(audit): 审计修复第四轮 — 跨会话搜索、LLM压缩集成、Presentation渲染器
2026-03-27 11:44:14 +08:00
prettier.config.js
feat: 添加ESLint和Prettier配置并优化代码结构
2026-03-26 08:02:23 +08:00
README.md
feat: initialize ZCLAW project with core systems and Tauri desktop
2026-03-11 22:06:07 +08:00
tailwind.config.js
docs(guide): rewrite CLAUDE.md with ZCLAW-first perspective
2026-03-20 19:30:09 +08:00
TEST_REPORT.md
refactor: 统一项目名称从OpenFang到ZCLAW
2026-03-27 07:36:03 +08:00
tsconfig.json
fix(安全): 修复HTML导出中的XSS漏洞并清理调试日志
2026-03-26 19:49:03 +08:00
tsconfig.node.json
feat: initialize ZCLAW project with core systems and Tauri desktop
2026-03-11 22:06:07 +08:00
vite.config.ts
refactor: 统一项目名称从OpenFang到ZCLAW
2026-03-27 07:36:03 +08:00
vitest.config.ts
test: add Vitest configuration and setup
2026-03-21 16:55:44 +08:00

README.md

Tauri + React + Typescript

This template should help get you started developing with Tauri, React and Typescript in Vite.

Recommended IDE Setup