feat: user-scoped history/delete/rollback, dashboard & login UI, ignore *.pem

- Filter history/rollback/delete by user_id in secrets-core - MCP tools/web pass user context; dashboard refresh; favicon static - .gitignore *.pem; vscode tasks tweaks - clippy: collapse else-if in rollback latest-history branch Made-with: Cursor
2026-03-20 20:11:19 +08:00
parent 49fb7430a8
commit 5df4141935
14 changed files with 536 additions and 165 deletions
--- a/crates/secrets-core/src/service/add.rs
+++ b/crates/secrets-core/src/service/add.rs
@@ -215,6 +215,7 @@ pub async fn run(pool: &PgPool, params: AddParams<'_>, master_key: &[u8; 32]) ->
            &mut tx,
            db::EntrySnapshotParams {
                entry_id: ex.id,
+                user_id: params.user_id,
                namespace: params.namespace,
                kind: params.kind,
                name: params.name,
@@ -275,6 +276,26 @@ pub async fn run(pool: &PgPool, params: AddParams<'_>, master_key: &[u8; 32]) ->
        .fetch_one(&mut *tx)
        .await?;

+    if existing.is_none()
+        && let Err(e) = db::snapshot_entry_history(
+            &mut tx,
+            db::EntrySnapshotParams {
+                entry_id,
+                user_id: params.user_id,
+                namespace: params.namespace,
+                kind: params.kind,
+                name: params.name,
+                version: new_entry_version,
+                action: "create",
+                tags: params.tags,
+                metadata: &metadata,
+            },
+        )
+        .await
+    {
+        tracing::warn!(error = %e, "failed to snapshot entry history on create");
+    }
+
    if existing.is_some() {
        #[derive(sqlx::FromRow)]
        struct ExistingField {