funman300/Ferrous-Solitaire
1
1
Fork 0
Code Issues 2 Pull Requests Actions Packages Projects Releases 28 Wiki Activity
Files
24f5d140dfbdc00a438e5102599ec68e5c166b61
Ferrous-Solitaire/SESSION_HANDOFF.md
T
funman300 24f5d140df docs(handoff): mark display name done; update HEAD to 03be4fc 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-05-12 14:44:04 -07:00

7.1 KiB
Raw Blame History

Solitaire Quest — Session Handoff

Last updated: 2026-05-12 — Leaderboard display name shipped (03be4fc). All commits pushed to origin.

Phase 8 closes the self-hosted-server connection arc end-to-end: login/register modal, re-auth on token expiry, account deletion flow, server deployment artifacts (Dockerfile + docker-compose), replay upload on win, web replay player (WASM + HTML/CSS/JS served by the server), leaderboard opt-in/out, and full server integration tests.

Current state

  • HEAD locally: 03be4fc (feat: leaderboard custom display name).
  • HEAD on origin: 03be4fc (fully pushed).
  • Working tree: clean (only solitaire-release.jks.bak2 untracked — intentional).
  • Build: cargo clippy --workspace --all-targets -- -D warnings clean.
  • Tests: 1300+ passing / 0 failing across the workspace.
  • Tags on origin: v0.9.0 through v0.22.0.

What shipped in Phase 8 (432061c bd388fe)

Commit Summary
432061c Sync setup modal (login/register/connect/disconnect)
6ce5564 Re-auth on expired session + server deployment artifacts
272d31f Account deletion flow + handle_sync_buttons refactor
bd388fe CHANGELOG v0.23.0 documentation

Also shipped (pre-Phase 8 but post-v0.22.0, already in CHANGELOG):

  • solitaire_wasm crate: WASM ReplayPlayer bindings for browser-side replay playback
  • Server replay API: POST /api/replays, GET /api/replays/recent, GET /api/replays/:id
  • Server web UI: /replays/:id HTML route + ServeDir /web static assets
  • DB migration 002: replays table + two indexes
  • Full server integration tests for replay endpoints
  • push_replay in sync_plugin (uploads on win, writes share URL into replay history)
  • Stats panel "Copy Share Link" button reads share_url from replay history

Open punch list (ordered by priority)

1. Documentation debt (no code)

  • CHANGELOG [Unreleased] → v0.23.0 — done this session
  • ARCHITECTURE.md update — all 8 gaps closed, bumped to v1.3
  • SESSION_HANDOFF.md update — this file

2. Leaderboard wiring gaps

  • Best-score auto-post missing. POST /api/sync/push merges stats/achievements/ progress but never touches the leaderboard table. Players who opt in never have their best_time_secs / best_score updated automatically. Fix: update the leaderboard row inside the server's sync push handler (or on GameWonEvent via a new async task in sync_plugin). Requires DB schema confirmation.
  • Display name = username. Done (03be4fc): leaderboard_display_name: Option<String> added to Settings; editor modal in leaderboard panel; persists to settings.json; handle_opt_in_button prefers custom name over username.

3. Security hardening

  • Refresh token rotation. Done (b129664): refresh_tokens table (migration 003); jti embedded in JWT; rotate-on-use pattern; 3 integration tests.
  • Sync endpoint rate limiting. Done (6e6f3ef): UserIdKeyExtractor decodes JWT for per-user identity; falls back to IP; burst 10 / 6 min steady-state; integration test passes.

4. Android validation

  • Android Keystore functional test — JNI AES-GCM code ships (f281425) but no AVD round-trip test has been run. Required before Phase 8 sync goes live on Android.
  • JNI clipboard functional test — same status (2c822ba). Note: adb tap doesn't work in headless AVD (see memory); requires a touch-gesture path.
  • cargo apk build --lib noisy stderr — post-sign panic doesn't affect the APK but pollutes CI output. Document --lib as canonical or upstream a fix.

5. Feature completeness

  • Theme importer UI. Done (613bbf8): "Scan for new themes" button in Settings Appearance section. Shows import path label, scans user_theme_dir() for .zip archives, fires InfoToastEvent per file, refreshes ThemeRegistry.
  • mirror_achievement removed. Done (549a817): method was a no-op default never overridden and never called; achievements already sync via SyncPayload push. Deleted from trait and blanket impl.
  • WASM build script. Done (40d0712): build_wasm.sh at repo root documents wasm-pack build --target web, cleans up pkg metadata files, includes dependency guard + install instructions.
  • Server password reset. Done (7514684): --reset-password <username> subcommand reads new password from stdin, bcrypt-hashes it, invalidates all active sessions for the user.

6. Testing gaps

  • Server 401 → refresh → retry path. Done (198df75): both jwt_refresh_on_401_succeeds (pull) and push_retries_after_401_on_expired_access_token (push) in solitaire_data/tests/sync_round_trip.rs.
  • WASM winning-replay step-through. Done (b4ada2a): greedy solver searches seeds 1200 at test time; steps every move through ReplayPlayer; asserts is_won = true on the final StateSnapshot.

ARCHITECTURE.md gaps (for the update pass)

Items missing from the doc:

  1. solitaire_wasm crate (§2 workspace + §3 responsibilities)
  2. Replay API endpoints (§9 API Reference — 3 new routes)
  3. Web replay player route (/replays/:id + ServeDir /web)
  4. SyncProvider trait: 6 added methods
  5. Theme system in Bevy plugin table (§5)
  6. Settings new fields: color_blind_mode, high_contrast_mode, reduce_motion_mode, window_geometry, selected_card_back, selected_background
  7. DB migration 002 (§7)
  8. Update "Last Updated" date

Process notes

  • Commit attribution: use funman300 as git user. Co-author line: Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>.
  • Commit format: type(scope): description per CLAUDE.md §7.
  • Never commit without: cargo test --workspace passing + clippy clean.
  • Sub-agents stage/verify only; orchestrator commits.
  • CARD_PLAN.md referenced in theme/ module comments but not present in repo. Clean up references or commit the file.
  • Token-port pattern (v0.20.0): when migrating tokens, walk every concrete artifact downstream — PNGs, SVGs, literals, comments. Three "walked past this" follow-ups in v0.21.0 all had this shape.

Resume prompt

You are a senior Rust + Bevy developer working on Solitaire Quest.
Working directory: <Rusty_Solitaire clone path>.
Branch: master. v0.23.0 is the current version (HEAD: 03be4fc). Fully pushed.

READ FIRST (in order):
  1. SESSION_HANDOFF.md  — this file
  2. CHANGELOG.md        — [0.23.0] section has full Phase 8 detail
  3. CLAUDE.md           — unified-3.0 rule set
  4. ARCHITECTURE.md     — v1.3, fully up to date
  5. docs/ui-mockups/    — design system + mockup library
  6. docs/android/       — Android setup + build runbook
  7. ~/.claude/projects/<this-project>/memory/MEMORY.md

OPEN WORK (in priority order):
  A. Best-score auto-post: sync push handler never writes leaderboard table.
     Requires server-side change + DB schema confirmation before starting.
  B. Android AVD functional tests (Keystore + clipboard) — requires running AVD.

Ask which to start. Both are independent.
Reference in New Issue View Git Blame Copy Permalink