When a session expires, the user's current URL is now captured and restored after re-authentication (via remember-me cookie or manual login), instead of always redirecting to the dashboard. A JavaScript session warning dialog appears ~2 minutes before idle timeout, allowing users to extend their session with a single click. Includes open-redirect prevention via URL validation, Microsoft SSO callback support, and 33 unit tests. Refs: SESSION-REDIRECT-PRESERVE-001 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
11 lines
889 B
JSON
11 lines
889 B
JSON
{
|
|
"task_id": "SESSION-REDIRECT-PRESERVE-001",
|
|
"ready_to_finalize": true,
|
|
"guard_review": "pass",
|
|
"acceptance_review": "pass",
|
|
"ci_status": "pass",
|
|
"final_action": "commit",
|
|
"summary": "All 11 guards pass, all 7 success criteria pass, execution status done. 5 low-severity findings in the execution report (mismatched guard evidence descriptions for GR-CORE-010, GR-UI-011, GR-UI-012, GR-UI-015) and 1 medium-severity finding (QG-006 CS Fixer was skipped, recommend running before merge). None are blocking.",
|
|
"notes": "Review Guards verdict: pass (5 findings, all low/medium severity, non-blocking). Review Acceptance verdict: pass (all 7 SC verified against code). Execution report: 13 changed files, 33 new unit tests, PHPUnit 789 tests / 14124 assertions (1 pre-existing failure), PHPStan 0 new errors. Recommend: run 'composer cs:check' before merge to close F-005."
|
|
}
|