pelagia-portal

shad0w/pelagia-portal

Fork 0

Commit graph

Author	SHA1	Message	Date
Hardik	e193e26368	feat(crewing): EPFO/UAN assisted verification (GstService pattern, flagged) All checks were successful PR checks / checks (pull_request) Successful in 40s Details PR checks / integration (pull_request) Successful in 30s Details Scaffolds EPFO/UAN verification the same way GST works — a standalone Playwright proxy microservice + an /api proxy + an assisted affordance that records the result. Aadhaar stays manual (UIDAI-restricted). Stacks on the follow-ups branch. Behind NEXT_PUBLIC_CREWING_ENABLED. What's in - EpfoService/ (new microservice, GstService pattern): Express + Playwright. POST /otp {uan} → session + OTP request; POST /verify {sessionId,uan,otp} → member record; GET /health. EPFO is OTP-gated (no anonymous captcha lookup like GST), so the handshake is two steps. Live portal navigation is gated behind EPFO_LIVE (default STUB: OTP 000000 → matched) until real selectors/OTP are validated. README documents the differences + that Aadhaar is out of scope. - App: /api/epfo/otp + /api/epfo proxies (gated by verify_bank_epf) to EPFO_SERVICE_URL. EpfDetail += epfoMemberName + epfoCheckedAt (migration crewing_epfo_check). recordEpfoCheck action persists the EPFO result + audit. - UI: an "EPFO check" affordance on the verification EPF rows — request OTP → enter OTP → matched member → record. Aadhaar noted as manual-only. Tests & docs - Integration: verification.test.ts gains recordEpfoCheck (records name+timestamp, Accounts-only gating). type-check clean; full unit (245) + integration (213) green (RESEND_API_KEY unset). - .env.example (EPFO_SERVICE_URL/EPFO_LIVE), CLAUDE.md, EpfoService/README. Note: the EpfoService live portal selectors/OTP are stubbed and must be validated against a real EPFO session before enabling EPFO_LIVE. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>	2026-06-22 22:43:24 +05:30
Hardik	8982118eee	feat(crewing): Phase 5a — verification queue (flagged) All checks were successful PR checks / checks (pull_request) Successful in 41s Details PR checks / integration (pull_request) Successful in 29s Details First slice of Phase 5 (verification + appraisal). The office queue for verifying site-entered records, per Crewing-Implementation-Spec §8.11/R11. Stacks on 4c. Behind NEXT_PUBLIC_CREWING_ENABLED. What's in - Schema: CrewActionType += RECORD_VERIFIED/RECORD_REJECTED (migration crewing_verification_actions). No model changes — SeafarerDocument/BankDetail/ EpfDetail already carry verificationStatus + verifiedById (3b/4a). - Actions (crewing/verification/actions.ts): verifyDocument (verify_site_records — MPO/Manager) and verifyBankEpf (verify_bank_epf — Accounts) set verificationStatus VERIFIED/REJECTED + verifiedById; rejection requires remarks; each writes a CrewAction. Already-decided records are guarded. - Screen: /crewing/verification — role-aware (MPO: pending documents with expiry flags; Accounts: pending bank/EPF), Verify / Reject-with-remarks. Leave is not here (Manager approval, R11). Verification added to nav (MPO + Accounts + SU, §7). Tests & docs - Integration: verification.test.ts (6) — doc verify/reject + already-decided guard, bank/EPF verify, permission gating (Accounts can't verify docs, MPO can't verify bank/EPF). type-check clean; full unit (241) + integration (201) green (verified with RESEND_API_KEY unset, mimicking CI). - CLAUDE.md updated. Deferred (per decision): PPE / next-of-kin verification gates. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>	2026-06-22 21:59:31 +05:30

Author

SHA1

Message

Date

Hardik

e193e26368

feat(crewing): EPFO/UAN assisted verification (GstService pattern, flagged)

PR checks / checks (pull_request) Successful in 40s

Details

PR checks / integration (pull_request) Successful in 30s

Details

Scaffolds EPFO/UAN verification the same way GST works — a standalone Playwright
proxy microservice + an /api proxy + an assisted affordance that records the
result. Aadhaar stays manual (UIDAI-restricted). Stacks on the follow-ups branch.
Behind NEXT_PUBLIC_CREWING_ENABLED.

What's in
- EpfoService/ (new microservice, GstService pattern): Express + Playwright.
  POST /otp {uan} → session + OTP request; POST /verify {sessionId,uan,otp} →
  member record; GET /health. EPFO is OTP-gated (no anonymous captcha lookup like
  GST), so the handshake is two steps. Live portal navigation is gated behind
  EPFO_LIVE (default STUB: OTP 000000 → matched) until real selectors/OTP are
  validated. README documents the differences + that Aadhaar is out of scope.
- App: /api/epfo/otp + /api/epfo proxies (gated by verify_bank_epf) to
  EPFO_SERVICE_URL. EpfDetail += epfoMemberName + epfoCheckedAt (migration
  crewing_epfo_check). recordEpfoCheck action persists the EPFO result + audit.
- UI: an "EPFO check" affordance on the verification EPF rows — request OTP →
  enter OTP → matched member → record. Aadhaar noted as manual-only.

Tests & docs
- Integration: verification.test.ts gains recordEpfoCheck (records name+timestamp,
  Accounts-only gating). type-check clean; full unit (245) + integration (213)
  green (RESEND_API_KEY unset).
- .env.example (EPFO_SERVICE_URL/EPFO_LIVE), CLAUDE.md, EpfoService/README.

Note: the EpfoService live portal selectors/OTP are stubbed and must be validated
against a real EPFO session before enabling EPFO_LIVE.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>

2026-06-22 22:43:24 +05:30

Hardik

8982118eee

feat(crewing): Phase 5a — verification queue (flagged)

PR checks / checks (pull_request) Successful in 41s

Details

PR checks / integration (pull_request) Successful in 29s

Details

First slice of Phase 5 (verification + appraisal). The office queue for verifying
site-entered records, per Crewing-Implementation-Spec §8.11/R11. Stacks on 4c.
Behind NEXT_PUBLIC_CREWING_ENABLED.

What's in
- Schema: CrewActionType += RECORD_VERIFIED/RECORD_REJECTED (migration
  crewing_verification_actions). No model changes — SeafarerDocument/BankDetail/
  EpfDetail already carry verificationStatus + verifiedById (3b/4a).
- Actions (crewing/verification/actions.ts): verifyDocument (verify_site_records —
  MPO/Manager) and verifyBankEpf (verify_bank_epf — Accounts) set
  verificationStatus VERIFIED/REJECTED + verifiedById; rejection requires remarks;
  each writes a CrewAction. Already-decided records are guarded.
- Screen: /crewing/verification — role-aware (MPO: pending documents with expiry
  flags; Accounts: pending bank/EPF), Verify / Reject-with-remarks. Leave is not
  here (Manager approval, R11). Verification added to nav (MPO + Accounts + SU, §7).

Tests & docs
- Integration: verification.test.ts (6) — doc verify/reject + already-decided
  guard, bank/EPF verify, permission gating (Accounts can't verify docs, MPO can't
  verify bank/EPF). type-check clean; full unit (241) + integration (201) green
  (verified with RESEND_API_KEY unset, mimicking CI).
- CLAUDE.md updated.

Deferred (per decision): PPE / next-of-kin verification gates.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>

2026-06-22 21:59:31 +05:30

2 commits