← story.propekSTORY 9.30
CRM BOT View Refactor + Security Hardening
Epic: 9 — CRM
Transformar a aba BOT na pagina Atendimento de kanban pipeline para grid de conversas (igual atendentes), corrigir filtro "Bot" na pagina Conversas, e resolver 4 findings HIGH de seguranca.
---
ACCEPTANCE CRITERIA (9/9)
☑ Aba BOT exibe conversas em grid (AttendantLeadCard) em vez de kanban por stages
☑ Filtro B2B/B2C mantido na aba BOT
☑ Cards do BOT navegam para `/conversas?customer_id={id}` ao clicar
☑ Sidebar renomeada de "Pipeline" para "Atendimento"
☑ Filtro "Bot" na pagina Conversas mostra conversas com `assigned_to === null`
☑ Dados do pipeline filtrados server-side (`status=waiting`) — sem data exposure
☑ Permission guard server-side (`can_view_pipeline`) na rota proxy do CRM
☑ QA review completo (5 findings analisados)
☑ Security review @cyber-chief (4 HIGH findings resolvidos)
TIMELINE
feat(crm): BOT view as conversation grid, bot filter fix, security hardening
045f87a
AGENTES
@dev
@qa
@cyber-chief
@devops
ARQUIVOS (7)
apps/crm/src/app/pipeline/page.tsx Modified (513 lines changed)
apps/crm/src/app/conversas/page.tsx Modified (2 lines)
apps/crm/src/components/sidebar.tsx Modified (2 lines)
apps/crm/src/app/api/crm/[...path]/route.ts Modified (57 lines added)
apps/crm/src/lib/api.ts Modified (23 lines added)
docs/qa/crm-atendimento-qa-review.md Created
apps/crm/docs/qa/crm-atendimento-security-review.md Created
RETROSPECTIVA
Qualidade: ★★★★★
• Excelente qualidade, manter padrao