Skip to content

Refactor medical record API and enhance input validation#16

Merged
RedAvocado22 merged 8 commits into
mainfrom
feature/ui
Mar 25, 2026
Merged

Refactor medical record API and enhance input validation#16
RedAvocado22 merged 8 commits into
mainfrom
feature/ui

Conversation

@RedAvocado22

Copy link
Copy Markdown
Owner

No description provided.

…d and frontend types

Standardizes field naming between request and response DTOs.
Uses @value SpEL on projection interface to decouple JSON key from entity field.
… edit modal

Shows patient info, doctor info, and record content. Edit button visible
only to ROLE_DOCTOR via useAuthStore role check.
Expired tokens now trigger logout and redirect to login instead of
letting the user through with a stale session that fails every API call.
isTokenExpired extracted to utils/jwt.ts to reuse decodeJwt's safe base64url handling.
- Names: min 2, max 50
- Username: min 3, max 30, alphanumeric + underscore only
- Email: type check
- Phone: numeric pattern, 9-15 chars
- Address: min 5
- Employee code: uppercase alphanumeric only
- DOB: disallow future dates
- Medical record description/advice: min 10, max 2000 with char count
…rdController

Covers all 4 endpoints with @operation, @ApiResponses, and @parameter.
Descriptions include ABAC rules, transactional side effects, and role requirements
so consumers know exactly what to expect without reading service code.
Explains two-phase Keycloak + MySQL compensation on signup, token usage
and lifetime on signin, and adds 503 response for Keycloak unavailability.
@RedAvocado22 RedAvocado22 merged commit 03e086d into main Mar 25, 2026
1 check failed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant