From 6cd6424561507530b712fbe04609c2a9cb2d5da6 Mon Sep 17 00:00:00 2001 From: nepiedg Date: Thu, 16 Apr 2026 11:57:24 +0800 Subject: [PATCH] feat(supervisor): redact sensitive fields in overview --- internal/quitcheckin/service/supervisor.go | 3 +++ 1 file changed, 3 insertions(+) diff --git a/internal/quitcheckin/service/supervisor.go b/internal/quitcheckin/service/supervisor.go index 3d6c076..e9d5f58 100644 --- a/internal/quitcheckin/service/supervisor.go +++ b/internal/quitcheckin/service/supervisor.go @@ -180,6 +180,9 @@ func (s *Service) GetSupervisorOverview(ctx context.Context, supervisorUID int, // 对单个 owner 的失败做降级,不影响其他人的展示 continue } + // 权限边界:监督视图只展示必要字段,避免泄露备注/梦想目标等更私密的信息。 + home.DailyStatus.Note = nil + home.Goal = nil items = append(items, SupervisorOwnerSummary{ Owner: owner, Home: home,