From d8303eaa3d49d58b1d6e3d727d00f178698644f0 Mon Sep 17 00:00:00 2001 From: Tianyu Liu Date: Fri, 12 Jun 2026 23:18:43 +0200 Subject: [PATCH] docs(m2): mark M2-T02 done --- docs/design/m2-frontend-v2.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/design/m2-frontend-v2.md b/docs/design/m2-frontend-v2.md index 2524a1b..d53bc8b 100644 --- a/docs/design/m2-frontend-v2.md +++ b/docs/design/m2-frontend-v2.md @@ -134,7 +134,7 @@ - **Reviewer**: 复用了 service 而非复制逻辑;CSRF 校验存在;secret 不泄漏到响应或 OpenAPI 示例。 ### M2-T02 — session / auth JSON API -- **Status**: `todo` · **Depends**: none +- **Status**: `done` · **Depends**: none - **Context**: 给 SPA 提供登录/注销/会话探测 + CSRF 下发。 - **Files**: `create app/api/routes/api/session.py`、`app/schemas/session.py`;`modify app/main.py`;`create tests/test_api_session.py` - **Steps**: `GET /api/session`(401 或 user+csrf)、`POST /api/auth/login`、`POST /api/auth/logout`、`POST /api/auth/password`,复用 `app/services/auth.py`。