1. MachineAuthController loginB000 於 RBAC 判斷時記錄登入者身分,成功回應加入 identity 欄位 (system/company/staff) 2. 未授權與帳密錯誤回應維持不含 identity,避免洩漏身分 3. 同步更新 api-technical-specs SKILL.md 與 config/api-docs.php 回應參數文件 4. 新增 MachineAuthB000Test 涵蓋三身分成功與 401/403 失敗共 5 案例 Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com> |
||
|---|---|---|
| .. | ||
| Controllers | ||
| Middleware | ||
| Requests | ||
| Kernel.php | ||