User Story
As the delivery team, we need production-ready documentation and hardening so the new auth architecture can be rolled out safely.
Scope
- Finalize operational docs (env vars, secrets, callbacks, local/prod differences, runbooks).
- Add/complete test coverage gaps identified in prior stories.
- Validate telemetry/logging and failure diagnostics for auth flows.
- Final pass on security settings (cookie settings, redirect/callback validation, secret handling).
Acceptance Criteria
- End-to-end auth smoke tests pass in local/staging.
- Documentation is sufficient for another engineer to run and troubleshoot locally.
- No critical/known auth regressions remain open from prior stories.
Unit Tests
- Any missing unit tests from previous US are added to achieve full functional coverage goal.
- Regression suite passes for user-service + propositions + webapp impacted paths.
Local Validation
- Complete local test checklist exists and is executable before production deploy.
- Release checklist explicitly includes rollback and verification steps.
User Story
As the delivery team, we need production-ready documentation and hardening so the new auth architecture can be rolled out safely.
Scope
Acceptance Criteria
Unit Tests
Local Validation