rohskiddo/UMBRA
1
0
Fork 0
Code Issues 1 Pull Requests Actions Packages Projects Releases Wiki Activity
UMBRA/backend/app/schemas/project_task.py
Kyle Pope 27c65ce40d Fix Round 2 code review findings: type safety, security, and correctness 
Backend:
- Add Literal types for status/priority fields (project_task, todo, project schemas)
- Add AccentColor Literal validation to prevent CSS injection (settings schema)
- Add PIN max-length (72 char bcrypt limit) validation
- Fix event date filtering to use correct range overlap logic
- Add revocation check to auth_status endpoint for consistency
- Config: env-aware SECRET_KEY fail-fast, configurable COOKIE_SECURE

Frontend:
- Add withCredentials to axios for cross-origin cookie support
- Replace .toISOString() with local date formatter in DashboardPage
- Replace `as any` casts with proper indexed type access in forms
- Nginx: add CSP, Referrer-Policy headers; remove deprecated X-XSS-Protection
- Nginx: duplicate security headers in static asset location block

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-16 15:18:49 +08:00

49 lines
1.3 KiB
Python
Raw Blame History

from pydantic import BaseModel, ConfigDict
from datetime import datetime, date
from typing import Optional, List, Literal
TaskStatus = Literal["pending", "in_progress", "completed"]
TaskPriority = Literal["low", "medium", "high"]
class ProjectTaskCreate(BaseModel):
title: str
description: Optional[str] = None
status: TaskStatus = "pending"
priority: TaskPriority = "medium"
due_date: Optional[date] = None
person_id: Optional[int] = None
sort_order: int = 0
parent_task_id: Optional[int] = None
class ProjectTaskUpdate(BaseModel):
title: Optional[str] = None
description: Optional[str] = None
status: Optional[TaskStatus] = None
priority: Optional[TaskPriority] = None
due_date: Optional[date] = None
person_id: Optional[int] = None
sort_order: Optional[int] = None
class ProjectTaskResponse(BaseModel):
id: int
project_id: int
parent_task_id: Optional[int] = None
title: str
description: Optional[str]
status: str
priority: str
due_date: Optional[date]
person_id: Optional[int]
sort_order: int
created_at: datetime
updated_at: datetime
subtasks: List["ProjectTaskResponse"] = []
model_config = ConfigDict(from_attributes=True)
ProjectTaskResponse.model_rebuild()
Reference in New Issue View Git Blame Copy Permalink