NextEdu

Author	SHA1	Message	Date
SpecialX	21c7e65fee	feat(exam-homework): add audit report, i18n, error boundaries, and permission hardening - Add comprehensive audit report for exam and homework module - Create exam-homework i18n message files (zh-CN + en) and register namespace - Add permission check to gradeHomeworkSubmissionAction to prevent horizontal privilege escalation - Add Error Boundary + loading.tsx for 5 key pages (exam build/proctoring, homework assignment/submissions, student assignment) - Refactor exam-columns to createExamColumns(t) factory for i18n support - Refactor exam-data-table to manage columns internally via useTranslations - Replace hardcoded strings with i18n keys in all exam/homework components and pages - Add getHomeworkSubmissionForGrading data-access for secure grading flow	2026-06-22 16:08:39 +08:00
SpecialX	fde711ce46	feat(announcements,messaging): 公告与消息模块审计重构 — i18n + Error Boundary + a11y - 新增审计报告 docs/architecture/audit/announcements-messages-audit-report.md - 新增中英双语 i18n 字典 announcements.json / messages.json（11/13 个命名空间） - 重构所有 announcements 和 messaging 组件接入 next-intl（useTranslations） - 所有页面 page.tsx 使用 generateMetadata + getTranslations 替代硬编码 metadata - 新增 7 个 error.tsx 错误边界（4 公告 + 3 消息），统一 EmptyState + i18n + 重试 - a11y 改进：announcement-card / message-list / notification-dropdown 添加 aria-label - 同步架构图 004 和 005：i18n.messages 清单 + 已知问题修复记录	2026-06-22 16:02:07 +08:00
SpecialX	868ac5f9cf	feat(dashboard): 仪表盘模块审计重构 — 权限校验 + i18n + 逻辑抽离基于 dashboard-audit-report.md 审计结论，对仪表盘模块进行 P0/P1 级修复： - 新增 4 个 dashboard 权限点（DASHBOARD_ADMIN/TEACHER/STUDENT/PARENT_READ），补充到 permissions.ts 和角色-权限映射 - 新建 actions.ts：4 个 Server Action 均调用 requirePermission() 校验权限，消除 admin 页面零鉴权、teacher/student/parent 仅 requireAuth 的安全隐患 - 根重定向页 /dashboard 改用 resolvePermissions() + 权限点判断，不再 role === xxx 硬编码 - 新建 lib/dashboard-utils.ts：抽取 toWeekday / countStudentAssignments / sortUpcomingAssignments / filterTodaySchedule / computeTeacherMetrics / getGreetingKey 纯函数，与 UI 分离，便于单测 - 新建 messages/{zh-CN,en}/dashboard.json 翻译文件，i18n request.ts 加载 dashboard 命名空间；所有视图组件接入 useTranslations / getTranslations，消除中英混杂硬编码 - 重构 4 个角色 page.tsx：通过 actions 获取数据，generateMetadata 使用 i18n - 同步更新架构图 004 / 005 文档（dashboard exports / permissions / 文件清单）	2026-06-22 15:50:56 +08:00
SpecialX	2548f70f40	docs(textbooks): 新增教材模块审计报告并同步架构图 - 新增 docs/architecture/audit/textbooks-audit-report.md，覆盖三层架构、权限、i18n、类型安全、错误边界、组件复用、a11y、可测试性、性能、安全等维度的审计，并给出 P0/P1/P2 改进优先级与重构方案要点 - 同步 004 架构影响地图 §2.5：修正 actions/data-access 行数与导出函数名（移除不存在的读 Action，补充 reorderChaptersAction），补充跨模块 UI 依赖、已知问题清单 - 同步 005 架构数据 JSON：补充 getKnowledgePointOptions 跨模块接口、uiDeps、knownIssues、auditReport 字段，修正 getTextbooks/getTextbookById 的 usedBy 以包含学生端页面	2026-06-22 15:38:26 +08:00
SpecialX	49291fcc31	refactor: fix all P0/P1/P2 bugs and architecture issues Bug fixes (from bugs/ directory): - Fix cross-module DB queries in 9 modules (homework, grades, parent, diagnostic, elective, proctoring, notifications, scheduling, classes) by routing through data-access functions - Fix shared/lib <-> auth circular dependency via new session.ts module - Fix divide-by-zero guard in grades data-access - Fix audit export data truncation (paginated fetch for full datasets) - Fix missing transactions in homework grading and elective lottery - Fix missing revalidatePath in course-plans actions - Fix frontend permission checks using requirePermission instead of requireAuth - Fix dashboard role routing using session.user.roles - Fix student auth pattern (migrate getDemoStudentUser to users module) - Fix ActionState return type handling in components Code quality fixes: - Remove 60+ as type assertions (replace with type guards) - Remove non-null assertions (use optional chaining or explicit checks) - Convert dynamic imports to static imports (grades, diagnostic) - Add React.cache() wrapping for read functions - Parallelize independent queries with Promise.all - Add explicit return types to 30+ arrow functions - Replace any with unknown + type guards - Fix import type for type-only imports - Add Zod validation schemas for classes and diagnostic modules - Extract duplicate code (normalizeRoleName, normalizeBcryptHash, logger IP extraction) - Add console.error to silent catch blocks - Fix permission naming consistency (exam:proctor_read -> exam:proctor:read) Architecture doc sync: - Update 004_architecture_impact_map.md and 005_architecture_data.json - Update management-modules-audit.md for P0-7 cross-module fix Moved deleted proctoring event route to deletes/ folder.	2026-06-19 05:13:34 +08:00
SpecialX	4d659ad9a1	docs: 全文档合规检查与修正 - 代码示例规范/行数准确性/路径一致性/状态同步	2026-06-18 03:31:07 +08:00
SpecialX	0423b2b984	docs: 同步架构文档 004/005/007/audit 反映 P1-2/P2-2 解耦修复	2026-06-18 02:55:17 +08:00
SpecialX	62be0b9404	refactor: P0-1/2/4 解耦修复 - 拆分过耦合文件 + dashboard 解耦	2026-06-18 01:45:55 +08:00
SpecialX	ee517f2b33	docs: 新增架构解耦路线图文档 - 新增 docs/architecture/audit/01_decoupling_roadmap.md - 解耦原则: 单一职责 / 模块封装 / 分层单向依赖 - 过耦合问题清单: 6 项 P0 + 6 项 P1 + 2 项 P2 - 每项含问题/影响/解耦方案/迁移步骤 - 三阶段执行优先级与验收标准 - 更新 docs/README.md 索引加入解耦路线图 - 更新 work_log 记录本次工作	2026-06-17 21:56:44 +08:00
SpecialX	f8dfd1dddd	docs: 全项目架构审查与文档体系重写 - 全项目逐文件审查: 4 份审计报告(shared/core-business/management/new-modules) - 重写 004 架构影响地图: 图优先 + 模块依赖图 + 数据流 + 调用链 + 问题分级 - 更新 005 结构化数据: 新增 architectureOverview/moduleDependencyGraph/knownIssues/dbTables 节点 - 更新 006 功能清单: 143 项功能标注实现状态, P0 覆盖率 80%->92% - 更新 007 差距审计: v2->v3, P0 完成 69%->84%, 新增架构技术债章节 - 更新 001 项目概览: 6 角色/54 权限/26 模块/54 表 - 新增 docs/README.md 文档索引 - 归档 11 份过时文档(002x2/003/designx8) 标注 - 更新 work_log	2026-06-17 21:51:32 +08:00

10 Commits