rogee/superpowers
1
0
Fork 0
mirror of https://github.com/obra/superpowers.git synced 2026-05-09 18:49:04 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
e4191c36097750ac050b5b39cab4766765d4c8ac
superpowers/evals/setup_helpers/sdd_auth_plan.py
Jesse Vincent 3c046f579e Lift drill into evals/ at 013fcb8b7dbefd6d3fa4653493e5d2ec8e7f985b 
rsync of obra/drill@013fcb8b7d into superpowers/evals/, excluding
.git/, .venv/, results/, .env/, __pycache__/, *.egg-info/,
.private-journal/.

The drill repo is unaffected by this commit; archival is a separate
manual step after this PR merges.

Source SHA recorded at evals/.drill-source-sha for divergence
detection.
2026-05-06 12:15:46 -07:00

68 lines
2.1 KiB
Python
Raw Blame History

"""Setup helper for the explicit-skill-request and mid-conversation
skill-invocation drill scenarios.
Both scenarios have the user say something like "the plan at
docs/superpowers/plans/auth-system.md is ready — subagent-driven-
development, please." So the helper drops a plan file at the same
path the bash test family used (no date prefix).
The plan content is intentionally trivial. These scenarios measure
whether the skill *fires* when explicitly invoked — they don't run
the full plan to completion.
"""
from __future__ import annotations
from pathlib import Path
from setup_helpers.base import _git
PLAN_BODY = """\
# Auth System Implementation Plan
A short stub plan used by the explicit-skill-request and
mid-conversation-skill-invocation drill scenarios.
## Task 1: Add User model
**File:** `src/models/User.js`
Export a `User` class with an `email` field and a `passwordHash` field.
Add a one-line test in `test/models/User.test.js` asserting the class is
constructable with `{ email, passwordHash }`.
## Task 2: Add register/login routes
**File:** `src/routes/auth.js`
Export Express-style handlers `register(req, res)` and `login(req, res)`.
Stubs are fine — return JSON `{ ok: true }` from each.
## Task 3: Add JWT middleware
**File:** `src/middleware/jwt.js`
Export `requireJWT(req, res, next)`. If no `Authorization` header,
respond `401`. Otherwise call `next()`.
## Task 4: Wire it up
**File:** `src/index.js`
Import the routes and middleware. Wire the routes to `/auth/*` paths
and apply `requireJWT` to a placeholder `/protected` route.
The plan is intentionally tiny; the scenarios only measure whether the
SDD skill loads and starts dispatching subagents in response to the
user's request, not whether the implementation completes.
"""
def add_sdd_auth_plan(workdir: Path) -> None:
workdir = Path(workdir)
plans_dir = workdir / "docs" / "superpowers" / "plans"
plans_dir.mkdir(parents=True, exist_ok=True)
(plans_dir / "auth-system.md").write_text(PLAN_BODY)
_git(["git", "add", "docs"], cwd=workdir)
_git(["git", "commit", "-m", "draft auth-system plan"], cwd=workdir)
Reference in New Issue View Git Blame Copy Permalink