Security and Users & Roles Sections Migration#452
Open
Ethan-Arrowood wants to merge 6 commits intomajor-version-reorgfrom
Open
Security and Users & Roles Sections Migration#452Ethan-Arrowood wants to merge 6 commits intomajor-version-reorgfrom
Ethan-Arrowood wants to merge 6 commits intomajor-version-reorgfrom
Conversation
Migrates all security documentation from versioned_docs into the new reference_versioned_docs/version-v4/security/ structure. Includes 9 pages covering authentication methods, certificate management, CORS, SSL/HTTPS configuration, and users/roles RBAC. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
25 tasks
🚀 Preview DeploymentYour preview deployment is ready! 🔗 Preview URL: https://preview.harper-documentation.harperfabric.com/pr-452 This preview will update automatically when you push new commits. |
Splits security/users-and-roles.md into a dedicated users-and-roles/ section with overview, configuration, and operations files. Updates the sidebar to reflect the new top-level "Users & Roles" category. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
🚀 Preview DeploymentYour preview deployment is ready! 🔗 Preview URL: https://preview.harper-documentation.harperfabric.com/pr-452 This preview will update automatically when you push new commits. |
- Add security/configuration.md covering the top-level `authentication:` config block (authorizeLocal, cacheTTL, enableSessions, token timeouts, hashFunction) with a TODO to verify the hashFunction key name - Fix jwt-authentication.md: config was incorrectly nested under `operationsApi.authentication` — it is a top-level `authentication:` section - Fix jwt-authentication.md: update broken ssl.md link to http/tls.md - Update users-and-roles/configuration.md: replace fabricated config snippet with a link to security/configuration.md#hashfunction Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Ethan-Arrowood
changed the title
🚀 Preview DeploymentYour preview deployment is ready! 🔗 Preview URL: https://preview.harper-documentation.harperfabric.com/pr-452 This preview will update automatically when you push new commits. |
Ethan-Arrowood
changed the title
…ection Notes that users-and-roles was broken out from security/ during migration, and documents the new users-and-roles/ and security/configuration.md structure. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
🚀 Preview DeploymentYour preview deployment is ready! 🔗 Preview URL: https://preview.harper-documentation.harperfabric.com/pr-452 This preview will update automatically when you push new commits. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Security and Users & Roles Sections Migration
Summary
Migration of Security and Users & Roles documentation from
versioned_docsinto the newreference_versioned_docs/version-v4/structure.Originally scoped as a single
security/users-and-roles.mdpage, Users & Roles was promoted to its own top-level section during migration due to the breadth of content (permission structure reference, config file roles, full Operations API coverage). This also revealed thatauthenticationconfig was a top-level key inharperdb-config.yaml— not nested underoperationsApias the source docs incorrectly implied — and thatauthentication.hashFunction(password hashing algorithm, added in v4.5.0) was entirely undocumented.Files Created
Security
reference_versioned_docs/version-v4/security/overview.mdreference_versioned_docs/version-v4/security/configuration.md(new — documentsauthentication:config block, including undocumentedhashFunctionkey)reference_versioned_docs/version-v4/security/basic-authentication.mdreference_versioned_docs/version-v4/security/jwt-authentication.mdreference_versioned_docs/version-v4/security/mtls-authentication.mdreference_versioned_docs/version-v4/security/certificate-management.mdreference_versioned_docs/version-v4/security/certificate-verification.mdUsers & Roles (new top-level section)
reference_versioned_docs/version-v4/users-and-roles/overview.mdreference_versioned_docs/version-v4/users-and-roles/configuration.mdreference_versioned_docs/version-v4/users-and-roles/operations.mdOther
migration-context/link-placeholders/security-link-placeholders.mdFiles Removed
reference_versioned_docs/version-v4/security/cors.md(content lives inhttp/configuration.md)reference_versioned_docs/version-v4/security/ssl.md(content lives inhttp/tls.md)reference_versioned_docs/version-v4/security/users-and-roles.md(replaced byusers-and-roles/section)Notable Changes vs. Original Plan
security/users-and-roles.mdas a single page. During migration it was split intousers-and-roles/overview.md,users-and-roles/configuration.md, andusers-and-roles/operations.md— consistent with how other content-rich sections likelogging/are structured.security/configuration.mdadded: The source docs incorrectly nested token timeout config underoperationsApi.authentication; the actual key is top-levelauthentication:. A dedicated configuration page now documents all auth config options. Thejwt-authentication.mdpage has been corrected accordingly.authentication.hashFunctiondocumented for first time: The v4.5.0 password hashing feature (sha256/argon2id) was noted in release notes but never had a documented config key.security/configuration.mddocuments it with a TODO to verify the exact key name against Harper source.v4-docs-reference-plan.mdupdated to reflect the newusers-and-roles/top-level section andsecurity/configuration.md.Source Files Used
security/overview.md
versioned_docs/version-4.7/developers/security/index.md(primary)versioned_docs/version-4.7/developers/security/configuration.md(CORS/SSL overview)security/configuration.md
versioned_docs/version-4.7/deployments/configuration.md(authentication section)security/basic-authentication.md
versioned_docs/version-4.7/developers/security/basic-auth.md(primary)security/jwt-authentication.md
versioned_docs/version-4.7/developers/security/jwt-auth.md(primary)security/mtls-authentication.md
versioned_docs/version-4.7/developers/security/mtls-auth.md(primary)release-notes/v4-tucker/4.3.0.md(confirmed mTLS introduction)security/certificate-management.md
versioned_docs/version-4.7/developers/security/certificate-management.md(primary)release-notes/v4-tucker/4.4.0.md(dynamic certificate management)release-notes/v4-tucker/4.5.0.md(certificate revocation)security/certificate-verification.md
versioned_docs/version-4.7/developers/security/certificate-verification.md(primary)release-notes/v4-tucker/4.5.0.md(revocation support)release-notes/v4-tucker/4.7.0.md(OCSP support confirmed)users-and-roles/overview.md
versioned_docs/version-4.7/developers/security/users-and-roles.md(primary)users-and-roles/configuration.md
versioned_docs/version-4.7/reference/roles.md(roles config file format)release-notes/v4-tucker/4.5.0.md(password hashing upgrade)users-and-roles/operations.md
versioned_docs/version-4.7/developers/operations-api/users-and-roles.md(primary)Version Annotations Added
High Confidence (Confirmed via release notes)
enableSessions): Added in v4.2.0Needs Verification
authentication.hashFunctionconfig key name (documented in release notes but key name not in any source doc — TODO left insecurity/configuration.md)Link Placeholders
See
migration-context/link-placeholders/security-link-placeholders.mdfor complete list.Summary:
Checklist for Human Reviewer
authentication.hashFunctionis the correct config key name and remove the TODO insecurity/configuration.md🤖 Generated with Claude Code