AdminGit2026/nis2-agile
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
c134a2d52a
nis2-agile/public
History
DevEnv nis2-agile c134a2d52a [FIX] Auth CRITICI da test multi-agente: register senza jti + revoca sessione singola 
CRITICO #2 — register() generava il token SENZA jti, ma requireAuth lo rifiuta
(JWT_NO_JTI): l'utente appena registrato veniva sbattuto fuori al primo
getMe/completeOnboarding e doveva rifare login. Ora register crea una riga
active_sessions con jti e genera access+refresh token col jti, come login().

CRITICO #1 — DELETE /auth/sessions/<jti> (revoca sessione singola) tornava 404:
il jti è esadecimale (non numerico), il router cadeva nel ramo "nome composto"
e generava solo {action}/{camelResource}, mai {action}/{id}. Aggiunto fallback
{action}/{id} con id passato come STRINGA (revokeSession(string $id) lo accetta).
Il candidato composito resta primo, quindi evidence/upload ecc. non si rompono.

php -l OK su entrambi. version 1.10.4.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
2026-05-31 15:01:22 +02:00
..
admin [FEAT] UI Fasi 4+5: Impersonate banner + Preferenze + Branding white-label (v1.6.0) 2026-05-29 13:28:57 +02:00
css [UX] FAB feedback: pill cyan con label, animazione pulse, stile lg231 2026-03-10 11:27:19 +01:00
docs [DOCS] Pagina documentazione Testing & Simulazione 2026-03-10 09:40:27 +01:00
integrations [MIGRATE] Migrazione a nis2.agile.software 2026-03-07 14:07:10 +01:00
js [FEAT] Supply chain UI: i18n sp.* IT/EN + import mostra errors[] dettaglio righe scartate 2026-05-31 14:37:22 +02:00
.htaccess [FIX] Deploy fixes - Auth header passthrough, dashboard query, landing page 2026-02-17 18:08:43 +01:00
api-status.php [CORE] Initial project scaffold - NIS2 Agile Compliance Platform 2026-02-17 17:50:18 +01:00
architecture.html [FEAT] i18n IT/EN, Help Online contestuale, pagina Architettura 2026-02-18 08:34:37 +01:00
assessment.html [SEC+UX] Hardening sicurezza + miglioramenti UX pre-audit 2026-02-20 12:01:33 +01:00
assets.html [FIX] ri-review guida: 2 fix guida + 2 fix prodotto UI orfane 2026-05-31 08:51:30 +02:00
companies.html [FIX] Connettori per-azienda: aggiunti realmente i 4 metodi controller + UI card (commit 0dc2a11 era guscio vuoto, Edit fallite su ancore errate) 2026-05-30 10:53:48 +02:00
cross-analysis.html [FEAT] L4 AI Cross-Analysis — analisi aggregata multi-org per consulenti 2026-03-09 08:17:53 +01:00
dashboard.html [FIX] Test multi-agente: dashboard gauge + risks backToList/loadFair 2026-05-31 14:56:10 +02:00
forgot-password.html [FEAT] Allineamento NIS2 ↔ TRPG (Fasi 1-5): SSO + Sessions + Reset + Impersonate + Branding 2026-05-29 13:18:35 +02:00
guida.html [DOCS] Guida: avvertenza non-parere-legale + capitolo fornitori (FIX edit prima fallito) 2026-05-31 11:20:14 +02:00
incidents.html [FIX] incidents.html: apostrofi non-escaped in evalSignificance rompevano l'intera pagina 2026-05-31 11:12:03 +02:00
index-en.html [FEAT] UI: guida online, landing EN, mobile-conversion, ai-assistant, bug-reporter + help/i18n 2026-05-29 15:42:00 +02:00
index.html [FEAT] UI: guida online, landing EN, mobile-conversion, ai-assistant, bug-reporter + help/i18n 2026-05-29 15:42:00 +02:00
index.php [FIX] Auth CRITICI da test multi-agente: register senza jti + revoca sessione singola 2026-05-31 15:01:22 +02:00
integrazioniext.html [FEAT] Catalogo connettori Evidence Automation in area provider (gap competitivo Evix) 2026-05-30 08:41:57 +02:00
kb.html [FEAT] Knowledge Base RAG multi-livello (SYSTEM/FIRM/ORG) + Qdrant + Voyage 2026-05-29 15:44:13 +02:00
licenseExt.html [FEAT] licenseExt: sezione dati destinatario pre-compila form + link pronto + modale con recipient data 2026-03-10 12:00:26 +01:00
login.html [FEAT] Allineamento NIS2 ↔ TRPG (Fasi 1-5): SSO + Sessions + Reset + Impersonate + Branding 2026-05-29 13:18:35 +02:00
mktg-api-doc.html [CONTEXT+MKTG] Contesto sessione + HTML migliorati per comunicazione terze parti 2026-03-07 16:37:14 +01:00
mobile-conversion.css [FEAT] UI: guida online, landing EN, mobile-conversion, ai-assistant, bug-reporter + help/i18n 2026-05-29 15:42:00 +02:00
mobile-conversion.js [FEAT] UI: guida online, landing EN, mobile-conversion, ai-assistant, bug-reporter + help/i18n 2026-05-29 15:42:00 +02:00
nis2-license-api.postman.json [MKTG-API] Fix: Postman collection in public root 2026-03-07 16:05:49 +01:00
normative.html [FEAT] Services API, Webhook, Whistleblowing, Normative + integrazioni 2026-03-07 13:20:24 +01:00
onboarding.html [UX] Standardizzazione login/register/onboarding + Test Runner v2 2026-03-07 17:11:25 +01:00
policies.html [UX+SEC] Eccellenza pre-audit: idle timeout, loading states, i18n, UX polish 2026-02-20 12:25:52 +01:00
presentation.html [FEAT] Presentazione NIS2 Agile nel repo (presentation.html) 2026-03-09 15:31:07 +01:00
register.html [FEAT] Simulatore B2B licenze + registrazione ridotta 2026-03-10 15:26:23 +01:00
reports.html [FIX] ri-review guida: 2 fix guida + 2 fix prodotto UI orfane 2026-05-31 08:51:30 +02:00
reset-password.html [FEAT] Allineamento NIS2 ↔ TRPG (Fasi 1-5): SSO + Sessions + Reset + Impersonate + Branding 2026-05-29 13:18:35 +02:00
risks.html [FIX] Test multi-agente: dashboard gauge + risks backToList/loadFair 2026-05-31 14:56:10 +02:00
service-continuity.html [FEAT] UI: guida online, landing EN, mobile-conversion, ai-assistant, bug-reporter + help/i18n 2026-05-29 15:42:00 +02:00
settings.html [FEAT] UI Fasi 4+5: Impersonate banner + Preferenze + Branding white-label (v1.6.0) 2026-05-29 13:28:57 +02:00
setup-org.html [FIX] Fix annual_turnover field name in setup-org.html 2026-02-17 19:49:57 +01:00
simulate-b2b.html [FEAT] Simulatore B2B licenze + registrazione ridotta 2026-03-10 15:26:23 +01:00
simulate-nis2-big.php [FEAT] Services API: full-snapshot endpoint + BigSim SSE wrapper 2026-03-17 15:16:00 +01:00
simulate-nis2.php [FIX] simulate wrapper: PHP_BINARY→php-cli corretto (FPM≠CLI) 2026-03-10 10:51:48 +01:00
simulate.html [FIX] simulate.html: card BIG + training user_ids array fix 2026-03-17 15:32:02 +01:00
supplier-assessment.html [FEAT] Self-assessment fornitori (P3 supply chain) - portale pubblico con token 2026-05-30 10:19:01 +02:00
supply-chain.html [FIX] supply-chain: selettore modale errato (#app-modal -> #modal-overlay) 2026-05-31 14:40:03 +02:00
test-runner.php [FIX] test-runner: aggiorna email/password ai valori del simulatore 2026-03-09 10:03:14 +01:00
training.html [FIX] i18n funzionante + bug audit.html + help system 2026-02-20 11:17:04 +01:00
version.json [FIX] Auth CRITICI da test multi-agente: register senza jti + revoca sessione singola 2026-05-31 15:01:22 +02:00
whistleblowing.html [FEAT] Services API, Webhook, Whistleblowing, Normative + integrazioni 2026-03-07 13:20:24 +01:00
workflow.html [FEAT] Compliance Journey — workflow visivo 6 fasi NIS2 2026-03-09 07:54:15 +01:00