Files

pqhuy1987 2abbc1d867 [CLAUDE] Docs+Skill: chốt session 6 — 3 skill refresh + 2 rule audit định kỳ

Pure docs work — 0 thay đổi code/test. 77 test vẫn pass (Domain 54 + Infra 23).

3 skill refresh stale (audit định kỳ §6.4 + §9.4 phát hiện):
- form-engine: "Phase 2 MVP missing PDF + form builder" → "Tier 3 feature-complete"
  + bỏ section duplicate "Gen mã HĐ chưa implement" (đã DONE Phase 3+6)
- permission-matrix: 12 menu cũ → ~60 menu key (Bg_*/Pe_*/PeWf_*/Catalogs)
  + inheritance roots 4 group + Budgets KHÔNG inherit (gotcha #35)
- ef-core-migration: "24 DbSet" → "52 bảng (15 migration)"

2 rule mới chốt:
- rules.md §6.4 — Audit + compact MD định kỳ (cadence + checklist + anti-pattern)
  Triết lý: KHÔNG rewrite toàn bộ. Compact + patch drift.
  Cron solution-erp-skill-audit-monthly mở rộng scope (skill + doc drift combined)
- rules.md §9.4 mở rộng cross-ref §6.4

Update STATUS Session 7+ priority + HANDOFF cảnh báo session 7 + migration-todos
Phase 9 Session 6 done sub.

Cron 2026-05-01 fire mai → combined audit theo checklist §6.4 + §9.4.

Session log đầy đủ: docs/changelog/sessions/2026-04-30-chot-session-6-md-audit-compact.md

Commit MD-only → CI skip (path filter gotcha #41).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-04-30 01:18:51 +07:00

18 KiB

Raw Blame History

HANDOFF — Brief 5 phút cho session tiếp theo

Last updated: 2026-04-30 (Session 6 — MD audit + compact -288 dòng + 3 skill refresh + 2 rule mới timing test + audit định kỳ)

TL;DR Session 6 (30/04 — không code, chỉ docs)

Output session 6 — pure docs work, không thay đổi code/test:

✅ Compact 3 file core: STATUS -27%, HANDOFF -32%, migration-todos -35% (-288 dòng tổng). Archive 51 row Recently Done Phase 0-7 → changelog/recently-done-archive-2026-04.md.
✅ Refresh 3 skill stale: form-engine (Phase 2 MVP → Tier 3 feature-complete), permission-matrix (12 menu → ~60 + inheritance roots), ef-core-migration (24 DbSet → 52 bảng).
✅ Rule mới §7 Timing test: 1 bảng 5-row compact — feature mới = test-after, bug = test-before, critical algorithm = test-before, spec change = update test cũ, skip 5 loại.
✅ Rule mới §6.4 Audit + compact MD định kỳ: cadence + checklist + anti-pattern. Cross-ref §9.4 skill audit. KHÔNG rewrite toàn bộ.
✅ 77 test vẫn pass (Domain 54 + Infra 23). 0 thay đổi code.
✅ Cron 2026-05-01 fire mai — combined audit (skill + doc drift) theo §6.4 + §9.4.

Session 5 (29/04) đóng gần hết feature gap + bật test gate:

🎯 Headline outcomes

✅ Budget feature-complete — FE 3-panel pages cả 2 app, BE đã sẵn từ session 4
✅ PE/HD ↔ Budget integration — form select Budget filter Phase=DaDuyet + Project, cột "So với ngân sách" ở PE matrix với delta indicator
✅ PE Detail UI restructure match form chính thức PHIẾU TRÌNH KÝ (4 section đánh số)
✅ PE Workflow Designer admin UI /system/pe-workflows/:typeCode versioned với clone/edit/+Role/+User
✅ Ý kiến 4 phòng ban — migration 15 + section sign-off 2x2 grid (Phê duyệt/CCM/MuaHàng/SM-PM)
✅ Tests Phase 1-2 — 71 unit test pass + CI gate fail-fast (Domain policy + Infra code generator)

Session 4 (28/04) đã có:

A. Module Ngân sách (Budget) BE — migration 14, +4 bảng, +11 endpoint

4 entity: Budget (Header) + BudgetDetail (flat row) + BudgetApproval (history) + BudgetChangelog (audit log).
Enum BudgetPhase 5 state (DangSoanThao→ChoCCM→ChoCEO→DaDuyet + TuChoi).
BudgetPolicy.Default hardcoded simple 3-step (Drafter→CCM→CEO) — chưa versioned (TODO khi user cần admin config UI).
Mã NS-YYYYMM-XXXX Random.Shared (chưa atomic — TODO khi format chính thức).
Link nullable: Contract.BudgetId? + PE.BudgetId? đã có FK + index, FE chưa wire form.
Menu seed Budgets root + 3 leaf (Bg_List/Bg_Create/Bg_Pending) order=27 icon Wallet.
Application: 11 CQRS handler ~340 LOC (Create/UpdateDraft/Transition/List/GetDetail/Delete + Detail CRUD auto-recompute TongNganSach + ListChangelogs).
Api: BudgetsController 11 endpoint REST.
FE chưa làm — Priority 0 session 5.

B. 14 demo user Solutions thật

PRO 5 (TPB tra.bui + 4 NV) + CCM 7 (TPB ngocanh.huynh + 6 NV) + ISO 1 (chau.le) + CEO 1 (huy.duong).
Pwd User@123456. Reconcile pattern (gotcha #38 4-field rename).
Tổng 30 user (16 sample cũ giữ + 14 Solutions thật mới).

Tổng cumulative: 52 DB tables, ~128 endpoints, 15 migrations, 41 gotchas (+3 CI fixes), 77 unit test (+6 PE WF Application), 11+ commit session 5 push lên Gitea.

🆕 CI/CD optimize (29/04 tối)

✅ Manual checkout bypass github.com — fix #108/#109 transient TCP timeout 21s. Run #110 pass.
✅ Path filter docs-only skip — paths-ignore trong on:push, commit MD-only KHÔNG trigger CI (verify 512880c → no run #113).
⏸️ npm junction cache — thử ở #111 fail tsc not found, rollback. Cần debug session sau (gotcha #40 doc rồi).
✅ Tests Phase 3 mini (PE Workflow Designer) — 6 test versioning logic. Total 77.

⚠️ CẢNH BÁO session tiếp (Session 7+)

CI test gate active — code → dotnet test SolutionErp.slnx local → commit → push. Test fail = NO deploy. Workflow user §7 rules.md.
Timing test rule live (§7): feature mới = test-after, bug = test-before BẮT BUỘC, critical algorithm = test-before merge, spec change = update test cũ + code chung commit.
Doc audit cadence live (§6.4): cuối phase compact, đầu tháng cron audit, KHÔNG rewrite toàn bộ. Cron fire mai (2026-05-01) — combined skill + doc drift theo checklist.
Login email admin@solutionerp.local / Admin@123456 — domain default chưa đổi sang @solutions.com.vn (chỉ demo user rebrand).
Chưa xóa binding cũ .huypham.vn — vẫn fallback. Sau verify stable → .\migrate-domains.ps1 -RemoveOld -SkipCert trên VPS.
win-acme scheduled task "unhealthy" — fix trước cert expire 2026-06-18.
Export phiếu PDF/Excel PE — pending vô thời hạn (user nói không quan trọng).
3 feature mới chưa test (PE Opinion Upsert / Budget validate / Contract BudgetId carry) — đợi UAT phát sinh bug → áp rule §7 (regression test before fix). Hoặc soak 2-3 tuần ổn → viết happy path.
G-084: VPS shared VietReport — mọi reverse proxy mới phải 127.0.0.1 + bind loopback IPv4 explicit.

⭐ Skills (.claude/skills/) — PHẢI dùng khi task khớp

Domain (3)	Ops (3)
`contract-workflow` — state machine + versioned WF	`dependency-audit-erp` — npm/dotnet CVE scan
`form-engine` — render docx/xlsx + PDF	`ef-core-migration` — EF migration + 3-file rule
`permission-matrix` — role × menu × CRUD	`iis-deploy-runbook` — 3 site IIS + win-acme + runner

Audit cron: 0 9 1 * * (9:00 AM ngày 1 mỗi tháng). Workflow: docs/rules.md §9.4. Lần kế: 2026-05-01.

Quy tắc: KHÔNG bulk-clone repo skill 3rd party. Chỉ skill PROJECT-SPECIFIC. Đầy đủ: docs/rules.md §9.

Ở đâu rồi?

Phase	Trạng thái
0 Draft	✅ Done
1 Alpha Core (foundation + đợt 2 CRUD + Permission)	✅ Done
2 Form Engine MVP + iter 2 (upload UI + .doc auto-convert + PDF export)	✅ Done
3 Workflow MVP (9 phase + code gen) + iter 2 (SLA job + attachment + notify)	✅ Done
4 Report MVP (Dashboard + Excel) + user-specific dashboard	✅ Done
5 Prep + 5.1 Security + Users Mgmt	✅ Done
5 Deploy prod (3 domain HTTPS live)	✅ Done
Tier 3 (Attach + Realtime + Form builder + PDF + Versioned WF + Nested menu + Permission 3-panel)	✅ Done
Skill governance (6 skill project-level + audit cron 1/tháng)	✅ Done
3-panel List/Inbox/Thao tác + sidebar accordion + UserDashboard	✅ Done
4-bảng data model (Header + 7 Details + Workflow + Changelog audit)	✅ Done
Mã HĐ gen tại Create + backfill legacy	✅ Done
4 master catalogs (Units/Materials/Services/WorkItems) + datalist autocomplete	✅ Done
Roles VN labels (ShortName) + Users dept/position + 13 demo users	✅ Done
RolesPage CRUD `/system/roles` + custom role admin	✅ Done
7 demo HĐ varied phases + details + comments + approvals workflow	✅ Done
User-kind approver runtime guard + Warning 20% SLA	✅ Done
Edit detail row inline (7 typed Update commands + EditRowDialog)	✅ Done
Master expand 15 NCC + 8 Project + backfill demo HĐ diverse	✅ Done
Deps audit script (`scripts/deps-audit.ps1`)	✅ Done
Module Duyệt NCC (tiền-HĐ) E2E — 10 bảng + 2 workflow + Kế thừa HĐ	✅ Done
PE polish iter 2 — flat layout + per-NCC attachments + readOnly Duyệt + email rebrand	✅ Done
Domain rebrand huypham.vn → solutions.com.vn — 3 subdomain + cert + CORS + FE bundle	✅ Done
Module Ngân sách BE + 30 user — 4 bảng + 11 endpoint + workflow simple	✅ Done (S4)
Module Ngân sách FE — 3-panel pages + Detail tabs + Workflow Panel cả 2 app	✅ Done (S5)
PE/Contract → Budget integration — form Select + cột "So với ngân sách" PE matrix	✅ Done (S5)
PE Workflow designer admin UI `/system/pe-workflows/:typeCode`	✅ Done (S5)
Ý kiến 4 phòng ban PE — migration 15 + section sign-off 2x2 grid	✅ Done (S5)
Tests Phase 1-2 + CI gate — 71 test (Domain policy + Infra code generator)	✅ Done (S5)
CI manual checkout bypass github.com + Path filter docs-only skip	✅ Done (S5)
Tests Phase 3 mini — 6 test PE Workflow Designer versioning (total 77)	✅ Done (S5)
Export phiếu PDF/Excel PE — `IDocumentConverter` + template	📝 Pending (không quan trọng)
Tests Phase 3 full — Application handlers (UpsertOpinion + Budget link validation, cần UserManager setup)	📝 Pending
Tests Phase 4-5 — API smoke + FE Vitest	📝 Pending (làm khi cần)
npm cache CI optimize (debug junction Move-Item issue #40)	📝 Pending
9+ Post-launch (E-signature, Bravo/SAP, Mobile, AI)	📝 Future

Run nhanh

# Terminal 1 — API (auto seed 12 role + 9 dept + 5 supplier + 3 project + 8 template + 7 workflow definition + 28 ContractType menu + 7 workflow menu)
dotnet run --project src\Backend\SolutionErp.Api

# Terminal 2 — Admin FE
cd fe-admin && npm run dev  # → http://localhost:8082

# Terminal 3 — User FE
cd fe-user && npm run dev   # → http://localhost:8080

Quick sanity-check

Admin (:8082):

/dashboard → "Của tôi" row 4 card + KPI cards + charts
/contracts → list toàn bộ, filter phase/supplier/project
/contracts/new?type=5 → tạo HĐ Mua bán, pre-select type từ URL
/contracts/{id} → timeline + action dialog + attachments drag-drop + WorkflowSummaryCard
/system/workflows → 7-card landing (Thầu phụ/Giao khoán/NCC/Dịch vụ/Mua bán/NguyenTacNcc/NguyenTacDv)
/system/workflows/MuaBan → DefinitionCard active + history + "Tạo phiên bản mới" modal với Steps + Approvers (+Role / +User)
/system/permissions → 3-panel layout (Role list | Menu×CRUD matrix | Granted stats)
/system/users → Users CRUD + assign roles
/forms → upload .docx/.xlsx + render dialog Form↔JSON + Tải PDF

User (:8080):

/inbox?type=5 → HĐ Mua bán chờ role mình
/my-contracts?type=2 → HĐ Thầu phụ của tôi
/contracts/new?type=3 → tạo HĐ NCC
Sidebar nested: 📄 Hợp đồng → expand 7 type → expand "HĐ Mua bán" → Danh sách / Thao tác / Duyệt

Realtime check:

Cần làm kế tiếp

🔥 Priority 0 — Session 6 (Ops + UAT focus)

Đa số feature gap đã đóng. Còn lại chủ yếu Ops/UAT + optional polish.

A. Hard blockers (chờ user / ops):

UAT thật 1 tuần với 2-3 user — Drafter (QS/NV.PB) + CCM + BOD ghi bug/friction
SMTP config → bật Email outbox (BLOCKED chờ user cấp host/user/pass)
Rotate credentials — admin + 30 demo + SA + vrapp + JWT secret
Schedule SQL backup daily — scripts/backup-sql.ps1 chưa schedule Task Scheduler

B. PE feature gap còn lại:

Export phiếu PDF/Excel PE — pending (user nói không quan trọng lắm). Khi cần: tái dùng IDocumentConverter + template PE-TrinhDuyet.docx.

C. Optional polish (làm khi UAT phát sinh):

Budget MaNganSach atomic sequence — chốt format → migration AddBudgetCodeSequences mirror Contract/PE
Budget versioned workflow — admin config UI thay hardcoded BudgetPolicy.Default
Payment terms PE tách field — JSON blob → 6 column riêng
Auto-map PE Details → Contract per-type Details khi gen HĐ
Matrix Quotes bulk paste từ Excel
fe-user Inbox thêm section "Phiếu Duyệt NCC chờ tôi"

D. Tests Phase 3-5 (làm khi gặp bug recurring để justify ROI):

Phase 3 — Application handler tests (CQRS + EF InMemory) ~15 test
Phase 4 — API smoke tests (WebApplicationFactory) ~7 test
Phase 5 — FE Vitest cho lib utility (queryMatches, fmtMoney) ~10 test

Đã xong session 5 (check STATUS Recently Done):

~~Module Ngân sách FE — 3-panel pages cả 2 app~~ ✅
~~PE/Contract → Budget integration + cột "So với ngân sách"~~ ✅
~~PE Detail UI restructure 4 section đánh số~~ ✅
~~PE Workflow Designer admin UI~~ ✅
~~Ý kiến 4 phòng ban (migration 15)~~ ✅
~~Tests Phase 1-2 + CI gate (71 test)~~ ✅

A. Hard blockers (chờ user / ops)

UAT thật 1 tuần với 2-3 user — hard requirement từ roadmap. Kiến nghị:
- User A: Drafter (QS/NV.PB) — tạo 3 HĐ mỗi type, đi hết 9 phase
- User B: CCM — duyệt phase 6
- User C: BOD — duyệt phase 7
- Ghi bug / friction / đề xuất → backlog iter 2

SMTP config để bật Email outbox:

"Email": {
  "Host": "smtp.gmail.com",
  "Port": 587,
  "Username": "...",
  "Password": "...",
  "From": "noreply@solutionerp.local"
}

Khi có → thêm MailKit, IEmailSender, hook vào NotificationService.CreateAsync ngay trước khi enqueue realtime push.

Rotate credentials — SA SQL password, vrapp password, JWT secret prod, Gitea runner registration token
Schedule SQL backup — schtasks /create /tn "SolutionErp Backup" /tr "powershell -File C:\...\scripts\backup-sql.ps1" /sc DAILY /st 03:00

A1. Định kỳ — Skill audit

Cadence: Mỗi đầu tháng (4 tuần). Lần audit kế tiếp: 2026-05-01.

Workflow xem docs/rules.md §9.4. Tóm tắt:

Cross-check 6 skill hiện có với STATUS / gotchas / migration-todos
Check repo nguồn 3rd party (alirezarezvani/claude-skills) có gì mới
Update / archive / add skill nếu cần
Log vào docs/changelog/skill-audit-2026-05.md

Trigger: user nói "audit skill" hoặc tự chạy đầu Phase mới.

B. Polish iterations (optional — khi UAT phát sinh)

Roles CRUD — admin tạo custom role ngoài 12 hardcoded (Domain.Identity.AppRoles)

User-kind approver runtime — data model WorkflowStepApprover.Kind=User + AssignmentValue=userId đã có, chỉ cần:

// ContractWorkflowService.TransitionAsync (bổ sung):
var userApprovers = step.Approvers.Where(a => a.Kind == ApproverKind.User)
                                  .Select(a => Guid.Parse(a.AssignmentValue));
if (userApprovers.Any() && !userApprovers.Contains(actorUserId))
    throw new ForbiddenException();

Grant Workflows.Read cho non-admin role trong PermissionsPage → menu Wf_* auto-visible (inheritance đã có)
Warning notification 20% SLA — job emit khi SlaDeadline - now < sla * 0.2 && !SlaWarningSent, set flag
Reject → DangSoanThao E2E test với 3 role khác nhau
Deps scan CI — dotnet list package --vulnerable + npm audit --audit-level=high

C. Non-goals / parked

E-signature (VNPT CA / FPT CA) — Phase 6
Bravo/SAP import NCC — Phase 6
Mobile app — Phase 6
AI OCR scan HĐ — Phase 6+

Lưu ý kỹ thuật quan trọng

Đọc gotchas.md (41 bẫy) trước khi:

Thêm package mới → .NET 10 compat (MediatR 14 fail → dùng 12.4.1)
Debug TS enum error → dùng const-object pattern (erasableSyntaxOnly)
Expression tree lỗi → tách switch ra ngoài LINQ
Deploy Windows Feature (WebSockets, etc.) → unlock section ở applicationHost (gotcha #25)
Workflow transition 403 → check Contract.WorkflowDefinitionId pin đúng không
Migration lỗi → 3 file đầy đủ (Designer + Migration + Snapshot)

Versioned workflow — quick ref

Contract.WorkflowDefinitionId pin tại Create. ContractWorkflowService.LoadAsync resolve order: pinned def → admin override → hardcoded Registry.For(type). Invariant: HĐ cũ giữ policy cũ qua FK Restrict. Detail: workflow-contract.md §7bis.

File đang active

Cấu trúc thư mục + file map: PROJECT-MAP.md. Git state: git log --oneline -10.

Credentials + URLs

admin@solutionerp.local / Admin@123456    ← Admin (QTV)

Demo users — 30 user (User@123456):

  ── 16 sample @solutionerp.local (giữ cho test legacy) ──
  bod.huynh, bod.le              Tổng GĐ + Phó GĐ NĐUQ
  pm.nguyen                      GĐ Dự án FLOCK 01 (PM)
  ccm.tran, pro.pham, fin.do     TPB CCM/PRO/FIN
  act.vu, equ.bui, hra.dang      Kế toán trưởng / TPB EQU / TPB HRA
  qs.hoang, qs.ngo               QS công trường (NV.PB)
  nv.cao, nv.dinh, nv.truong     NV Cung ứng/Tài chính/CCM (NV.PB)
  bod.tran, pm.le                Bonus NĐUQ + PM thứ 2

  ── 14 Solutions thật @solutions.com.vn (session 4) ──
  PRO 5:  tra.bui (TPB) + phuong.nguyen, binh.lethanh, danh.huynh, dat.tran (NV)
  CCM 7:  ngocanh.huynh (TPB) + ha.dao, cuong.do, long.le, ha.nguyen,
                                dung.nguyen, anh.nguyen (NV)
  ISO 1:  chau.le
  CEO 1:  huy.duong

⚠ Rotate ALL passwords trước UAT thật

API prod: https://api.solutions.com.vn — /health/live, /health/ready
Admin FE prod: https://admin.solutions.com.vn
User FE prod: https://eoffice.solutions.com.vn
API dev: http://localhost:5443 — /swagger (Dev only)
Admin FE dev: http://localhost:8082
User FE dev: http://localhost:8080
SQL dev: (localdb)\MSSQLLocalDB / SolutionErp_Dev
SQL prod: .\SQLEXPRESS / SolutionErp / vrapp (⚠️ rotate)

Đánh giá nhanh

Tốt:

3 domain HTTPS prod live, CI/CD xanh
Tier 3 feature-complete: attachment, realtime, form builder (upload + DynamicForm + PDF), versioned workflow (admin-configurable per ContractType, pin per contract), nested menu per type, 3-panel permissions
Clean-arch 3-project split đúng cho 2 cross-cutting service (realtime + document-converter)
26 gotchas tích lũy, 8 session log, 40 docs — agent onboard nhanh
Invariant critical: "HĐ cũ giữ quy trình cũ" guaranteed by pinning (reference-based immutability, không snapshot copy)

Rủi ro còn:

UAT thật chưa chạy → có thể phát hiện edge case missing
SMTP chưa có → notification chỉ in-app (toast + bell), không email
User-kind approver chưa enable guard runtime (designer cho pick, nhưng transition dùng Role fall-back)
Credentials chưa rotate
SQL backup chưa schedule Task Scheduler

18 KiB Raw Blame History Unescape Escape