soroush.asadi
7a5ea75b50
Closes the gap where the custom-role matrix was defined but unenforced — most write endpoints only checked café membership, so the API would accept writes a role's UI hid. Adds EnsurePermission(...) to all mutating/sensitive endpoints across 32 controllers, mapped to the granular catalog: - menu/inventory/coupons/customers/expenses/reservations/taxes/branches → CRUD perms - tables/queue/kitchen-stations/print-settings → manage perms - orders → ProcessOrders / EditOrder / VoidOrder / UpdateOrderStatus / HandlePayments, payment corrections → ManageFinancials - HR → CreateStaff / ManageSchedules / ReviewLeave / View+ManageSalaries / ManageStaffCredentials (self-service clock-in/leave preserved) - reports → ViewReports, export → ExportReports, audit → ViewAuditLog - billing → ManageBilling, sms → SendSms/ManageSmsSettings, reviews → ManageReviews, discover/public profile → ManageDiscoverProfile, café settings → ManageCafeSettings, custom roles → ManageRoles Removes legacy [Authorize(Roles=...)] attributes that would have overridden the permission model (orders, branch-menu, pos-device, print). Manual discount/comp have no backend endpoint yet (discounts come from coupons) — gated on the POS UI. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
Meezi — Day 1 Quick Start
Step 1 — Copy these 4 files to your project root
.cursorrules ← AI rules for Cursor MEEZI_CURSOR_GUIDE.md ← Full development guide docker-compose.yml ← Local DB + Redis README.md ← This file
Step 2 — Start local services
docker-compose up -d
Step 3 — Create project structure
mkdir meezi && cd meezi git init
mkdir src web mobile cd src dotnet new sln -n Meezi dotnet new webapi -n Meezi.API --use-controllers dotnet new classlib -n Meezi.Core dotnet new classlib -n Meezi.Infrastructure dotnet new classlib -n Meezi.Shared dotnet sln add Meezi.API Meezi.Core Meezi.Infrastructure Meezi.Shared
cd ../web npx create-next-app@latest dashboard --typescript --tailwind --app
cd ../mobile flutter create meezi_app --org ir.meezi
Step 4 — Open in Cursor
cursor . (from the meezi/ root folder)
Step 5 — Paste this FIRST prompt in Cursor chat (Cmd+L)
Read .cursorrules and MEEZI_CURSOR_GUIDE.md completely. Then do Sprint 1 Week 1:
- Set up the .NET solution with proper references between projects
- Add all NuGet packages listed in the guide to each project
- Create the complete EF Core entity schema from the guide
- Set up AppDbContext with all DbSets
- Create TenantMiddleware and ITenantContext
- Set up Program.cs with full middleware pipeline
Cursor Chat Tips
Ask one sprint at a time
"Do Sprint 2: build the POS order APIs (menu, tables, orders)"
Reference specific sections
"Build the CRM endpoint from Step 10 of MEEZI_CURSOR_GUIDE.md"
Debug with context
"The order API returns 403. Check if TenantMiddleware is injecting CafeId correctly"
Generate Flutter screens
"Build the Flutter POS screen from Sprint 2 in the guide. RTL, Farsi, Riverpod state"
Useful Cursor Keyboard Shortcuts
Cmd+L → Open AI chat Cmd+K → Inline AI edit (select code first) Cmd+I → Composer (multi-file edits) Cmd+. → Quick fix / suggestion Tab → Accept autocomplete
Local URLs when running
Backend API: https://localhost:7001 API Swagger: https://localhost:7001/swagger Dashboard: http://localhost:3000 Hangfire UI: https://localhost:7001/hangfire Flutter web: http://localhost:8080