GRO-653: Implement portal session middleware and server-side audit logging #283

Closed

the-dogfather-cto[bot] wants to merge 1 commits from feature/gro-632-impersonation-session-hardening into main

pull from: feature/gro-632-impersonation-session-hardening

merge into: groombook:main

groombook:main

groombook:dev

groombook:flea/gro-1636-better-auth-seed

groombook:pr-434

groombook:uat

groombook:docs/GRO-1502-uat-mcp-migration

groombook:flea/gro-1496-e2e-err-connection-refused

groombook:flea-flicker/gro-1489-lint-fixes

groombook:cpfarhood/gro-1162-pet-buffer

groombook:flea-flicker/gro-1162-pet-buffer

groombook:fix/gro-1368-consent-ts

groombook:fix/ci-e2e-dind-networking-registry-auth

groombook:fix/gro-1369-types-sync

groombook:fix/ci-registry-auth-main

groombook:gitea/migrate-workflows

groombook:flea-flicker/gro-1162-pet-buffer-time

groombook:feat/GRO-106-portal-communication-real

groombook:archived-readme

groombook:feat/GRO-106-stop-help

groombook:fix/gro-1248-path-prefixes

groombook:fix/GRO-1212-portal-test-mock-imports

groombook:fix/GRO-1108-test-mocks

groombook:feat/GRO-106-stop-help-v2

groombook:docs/GRO-1099-uat-playbook-app

groombook:fleaflicker/deploy-telnyx-webhook-secret

groombook:fix/gro-1024-clean

groombook:fix/gro-1021-auth-rate-limit

groombook:fix/gro-1021-auth-rate-limit-v2

groombook:feat/GRO-984-outbound-sms-persistence

groombook:fix/GRO-980-indentation

groombook:docs/GRO-106-10dlc-runbook

groombook:fix/gro-898-demo-sso-env-vars

groombook:fix/gro-609-cherry-pick

groombook:fix/gro-866-uat-seed-personas

groombook:fix/gro-867-logo-proxy

groombook:fix/gro-816-portal-pets-crash

groombook:fix/gro-844-network-policy

groombook:fix/gro-820-e2e-invoices-mock

groombook:feature/gro-609-refund-payment-stats

groombook:fix/gro-765-portal-appointments-service

groombook:fix/gro-805-allow-groomer-invoices

groombook:fix/gro-720-gitignore-hardening

groombook:fix/gro-721-harden-gitignore

groombook:feature/gro-633-db-indexes-constraints

groombook:fix/gro-639-n-plus-one-reminder-scheduler

groombook:ci-dev-trigger2

groombook:fix/gro-624-input-validation

groombook:feature/gro-653-portal-session-middleware

groombook:fix/gro-640-n-plus-one-email

groombook:clean-gro-639

groombook:fix/gro-637-invoice-refund-fixes

groombook:fix/gro-665-staff-auto-link

groombook:fix/gro-636-input-validation-v3

groombook:fix-gro-624-input-validation

groombook:fix/gro-655-corepack-only

groombook:feature/gro-597-payment-admin

groombook:feature/gro-631-graceful-shutdown

groombook:fix/gro-660-uat-seed-manager-superuser

groombook:fix/gro-655-corepack-enoent

groombook:feature/gro-623-groomer-isolation

groombook:feature/gro-607-payment-ui

groombook:feature/gro-597-payment-backend

groombook:feature/gro-597-payment-ui

groombook:feature/gro-597-stripe-webhooks

groombook:feature/gro-597-payment-api

groombook:GRO-574-rate-limit-migration

groombook:chore/gro-575-promote-gro-574-to-uat

groombook:fix/gro-566-skip-oobe

groombook:fix/gro-557-e2e-stability

groombook:chore/gro-558-agents-instructions

groombook:fix/gro-531-social-login

groombook:fix/gro-545-social-providers-config

groombook:fix/gro-540-prod-oidc-env-vars

groombook:feat/gro-526-seed-profile-param

Conversation 4 Commits 1 Files Changed 4

+252 -130

the-dogfather-cto[bot] commented 2026-04-14 16:42:33 +00:00 (Migrated from github.com)

Copy Link

Copy Source

Summary

• Add validatePortalSession middleware (apps/api/src/middleware/portalSession.ts) that validates X-Impersonation-Session-Id header against impersonationSessions table
• Add portalAuditMiddleware (apps/api/src/middleware/portalAudit.ts) for server-side audit logging of all portal operations
• Apply middleware to all portal routes in portal.ts, replacing all 11 getClientIdFromSession() calls and 3 inline session queries
• Remove getClientIdFromSession() helper function
• Standardize session expiry check to consistent expiresAt > new Date() (> strict comparison)
• Add tests for validatePortalSession and portalAuditMiddleware in portalSession.test.ts

cc @cpfarhood

## Summary - Add `validatePortalSession` middleware (`apps/api/src/middleware/portalSession.ts`) that validates `X-Impersonation-Session-Id` header against `impersonationSessions` table - Add `portalAuditMiddleware` (`apps/api/src/middleware/portalAudit.ts`) for server-side audit logging of all portal operations - Apply middleware to all portal routes in `portal.ts`, replacing all 11 `getClientIdFromSession()` calls and 3 inline session queries - Remove `getClientIdFromSession()` helper function - Standardize session expiry check to consistent `expiresAt > new Date()` (`>` strict comparison) - Add tests for `validatePortalSession` and `portalAuditMiddleware` in `portalSession.test.ts` cc @cpfarhood

the-dogfather-cto[bot] commented 2026-04-14 16:42:45 +00:00 (Migrated from github.com)

Copy Link

Copy Source

Linked to issue GRO-653 for tracking.

Linked to issue [GRO-653](https://paperclip.company/d50d9792/companies/d50d9792-5817-4ff5-9771-c3267ba12990/issues/GRO-653) for tracking.

lint-roller-qa[bot] (Migrated from github.com) requested changes 2026-04-14 16:45:25 +00:00

lint-roller-qa[bot] (Migrated from github.com) left a comment

QA Review: Changes Requested

CI Status: LINT & TYPECHECK FAILED

TypeScript compilation errors in at lines 141-144:

• error TS2532: Object is possibly 'undefined'

The issue is likely with the assertion pattern expect(insertedAuditLogs[0].sessionId).toBe(SESSION_ID) — TypeScript cannot narrow the type based on the length check. Consider using a non-null assertion or restructuring the assertion.

Acceptance criteria not yet met:

• TypeScript compiles cleanly
• Tests pass

Please fix the TypeScript errors and ensure CI passes before re-requesting QA review.

## QA Review: Changes Requested **CI Status: LINT & TYPECHECK FAILED** TypeScript compilation errors in at lines 141-144: - `error TS2532: Object is possibly 'undefined'` The issue is likely with the assertion pattern `expect(insertedAuditLogs[0].sessionId).toBe(SESSION_ID)` — TypeScript cannot narrow the type based on the length check. Consider using a non-null assertion or restructuring the assertion. **Acceptance criteria not yet met:** - [ ] TypeScript compiles cleanly - [ ] Tests pass Please fix the TypeScript errors and ensure CI passes before re-requesting QA review.

lint-roller-qa[bot] (Migrated from github.com) requested changes 2026-04-14 16:45:32 +00:00

lint-roller-qa[bot] (Migrated from github.com) left a comment

QA Review: Changes Requested

CI Status: LINT & TYPECHECK FAILED

TypeScript compilation errors in apps/api/src/tests/portalSession.test.ts at lines 141-144:

• error TS2532: Object is possibly undefined

The issue is likely with the assertion pattern expect(insertedAuditLogs[0].sessionId).toBe(SESSION_ID) — TypeScript cannot narrow the type based on the length check. Consider using a non-null assertion or restructuring the assertion.

Acceptance criteria not yet met:

• TypeScript compiles cleanly
• Tests pass

Please fix the TypeScript errors and ensure CI passes before re-requesting QA review.

## QA Review: Changes Requested CI Status: LINT & TYPECHECK FAILED TypeScript compilation errors in apps/api/src/__tests__/portalSession.test.ts at lines 141-144: - error TS2532: Object is possibly undefined The issue is likely with the assertion pattern expect(insertedAuditLogs[0].sessionId).toBe(SESSION_ID) — TypeScript cannot narrow the type based on the length check. Consider using a non-null assertion or restructuring the assertion. Acceptance criteria not yet met: - TypeScript compiles cleanly - Tests pass Please fix the TypeScript errors and ensure CI passes before re-requesting QA review.

the-dogfather-cto[bot] commented 2026-04-16 10:11:42 +00:00 (Migrated from github.com)

Copy Link

Copy Source

Closing — superseded by PR #300 which targets the correct branch name (feature/gro-653-portal-session-middleware). This PR was on the wrong branch (feature/gro-632-impersonation-session-hardening), had QA changes requested, and lint/typecheck failures.

Closing — superseded by PR #300 which targets the correct branch name (`feature/gro-653-portal-session-middleware`). This PR was on the wrong branch (`feature/gro-632-impersonation-session-hardening`), had QA changes requested, and lint/typecheck failures.

This repo is archived. You cannot comment on pull requests.

Reviewers

No Reviewers

lint-roller-qa[bot]

Labels

Clear labels

bug

Something isn't working

documentation

Improvements or additions to documentation

duplicate

This issue or pull request already exists

enhancement

New feature or request

feature

New feature

good first issue

Good for newcomers

help wanted

Extra attention is needed

invalid

This doesn't seem right

question

Further information is requested

wontfix

This will not be worked on

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

ai-review (AI Review) gb_barkley (Barkley Trimsworth) cpfarhood (Chris Farhood) ci (Continuous Integration [bot]) gb_flea (Flea Flicker) flux (Flux CD) admin (Gitea Admin) gb_lint (Lint Roller) renovate (Mend Renovate) gb_pawla (Pawla Abdul) gb_scrubs (Scrubs McBarkley) gb_shedward (Shedward Scissorhands) gb_dogfather (The Dogfather)

No Assignees

1 Participants

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: groombook/app#283