merge: PR #48 from sameboat-platform/chore/release-0.1.1

This pull request introduces version bump automation scripts for easier releases, updates the project version to v0.1.1, and documents the new release in CHANGELOG.md. The changes streamline the release workflow and improve changelog clarity for the new backend wrap-up milestone.

Author: ArchILLtect

CHANGELOG.md

@@ -4,6 +4,18 @@ All notable changes to this project will be documented in this file.
 
 ## [Unreleased]
 ### Added
+- (placeholder)
+
+### Changed
+- (placeholder)
+
+### Fixed
+- (placeholder)
+
+---
+
+## [v0.1.1] - 2025-10-29 – Week 4 backend wrap-up
+### Added
 - Password complexity validation on registration (min 8 chars, includes upper/lower/digit) with validation message.
 - In-memory login rate limiting (5 attempts within 5 minutes by email+IP) returning HTTP 429 `RATE_LIMITED`.
 - Scheduled session pruning job (hourly) with JPQL bulk delete; transactional execution.
@@ -15,6 +27,12 @@ All notable changes to this project will be documented in this file.
   - `prod`: Postgres/Neon, secure cookies (domain + `Secure=true`), explicit CORS allowlist.
 - CORS configuration via `CorsConfig` and Security chain `.cors()`; credentials enabled and origins restricted to configured list.
 - CI release job on tag push (`v*`): builds JAR and attaches it to a GitHub Release using `softprops/action-gh-release@v1`.
+- `ResourceNotFoundException` mapped by `GlobalExceptionHandler` to HTTP 404 with error code `NOT_FOUND`; service methods use throw-or-404 semantics for true missing cases.
+- Focused tests for error envelopes:
+  - `NOT_FOUND` (404) mapping from service-thrown exception
+  - `BAD_REQUEST` (400) mapping for `IllegalArgumentException`
+- Gated user read endpoint `GET /users/{id}` returning `PublicUserDto` (no email); enabled only when `sameboat.endpoints.user-read=true`. Access allowed to self or `ADMIN`.
+- OpenAPI spec updates: reusable `ErrorResponse` schema with current error codes; documented `/api/version` response.
 
 ### Changed
 - `README.md`: Documented password policy, `RATE_LIMITED` error code, and updated sample passwords; linked to new docs.
@@ -23,8 +41,10 @@ All notable changes to this project will be documented in this file.
 - `CONTRIBUTING.md`: Included `RATE_LIMITED` in error codes and noted password complexity under security.
 - Unified Actuator base path to `/actuator` across profiles; health and info remain exposed publicly via security rules. Legacy `/api/actuator/*` references were removed from tests/config where applicable.
 - Security rules clarified: public `GET /health`, `GET /actuator/health`, `GET /actuator/info`, auth endpoints `POST /api/auth/login|register|logout` (and legacy `/auth/*`) remain public; other endpoints require authentication (e.g., `GET /api/me`).
-- Input validation tightened on auth payloads (`@Valid` + Bean Validation). Validation errors are mapped by `GlobalExceptionHandler` to `400` with `{"error":"VALIDATION_ERROR"}`.
+- Input validation tightened on auth payloads (`@Valid` + Bean Validation). Validation errors are mapped by `GlobalExceptionHandler` to `400` with `{ "error":"VALIDATION_ERROR" }`.
 - Documentation updates for profile usage, CORS, cookies, and deployment notes (Render/Neon).
+- README Week 4 highlights added; error catalog includes `NOT_FOUND`; Windows `mvn` usage note for quoted properties on cmd.exe.
+- Logging: `AuthController.rateLimited(key)` now logs the rate limit key centrally; removed redundant branch logging.
 
 ### Fixed
 - Session pruning ClassCastException by replacing derived delete with explicit JPQL bulk delete method and using `@Transactional` in pruner.
@@ -44,8 +64,9 @@ All notable changes to this project will be documented in this file.
 
 
 ---
-Reference: See `docs/weekly-plan/week-3/week-3-checkout-backend.md` for a narrative weekly summary.
+Reference: See `docs/weekly-plan/week-3/week-3-checkout-backend.md` and `docs/weekly-plan/week-4/week-4-checkout-backend.md` for narrative weekly summaries.
 
 
-[Unreleased]: https://github.com/sameboat-platform/backend/compare/v0.1.0...HEAD
+[Unreleased]: https://github.com/sameboat-platform/backend/compare/v0.1.1...HEAD
+[v0.1.1]: https://github.com/sameboat-platform/backend/releases/tag/v0.1.1
 [v0.1.0]: https://github.com/sameboat-platform/backend/releases/tag/v0.1.0

pom.xml

@@ -10,7 +10,7 @@
     </parent>
     <groupId>com.sameboat</groupId>
     <artifactId>backend</artifactId>
-    <version>0.1.0</version>
+    <version>0.1.1</version>
     <name>sameboat-backend</name>
     <description>sameboat-backend</description>
     <url/>

scripts/release-bump.cmd

@@ -0,0 +1,10 @@
+@echo off
+setlocal ENABLEDELAYEDEXPANSION
+if "%~1"=="" (
+  echo Usage: %~nx0 ^<new-version^> (e.g., 0.1.1 or 0.2.0)
+  exit /b 1
+)
+set NEWVER=%~1
+powershell -NoProfile -ExecutionPolicy Bypass -File "%~dp0release-bump.ps1" -NewVersion "%NEWVER%"
+endlocal
+

scripts/release-bump.ps1

@@ -0,0 +1,19 @@
+param(
+  [Parameter(Mandatory=$true)][string]$NewVersion
+)
+if ($NewVersion -notmatch '^\d+\.\d+\.\d+$') {
+  Write-Error "Invalid version format. Expected: X.Y.Z"
+  exit 1
+}
+# Update pom.xml version using Maven's built-in versioning
+& mvn versions:set -DnewVersion=$NewVersion -DgenerateBackupPoms=false
+# Update CHANGELOG compare link
+if (Select-String -Path CHANGELOG.md -Pattern '\[Unreleased\]:') {
+  (Get-Content CHANGELOG.md) -replace '(\[Unreleased\]: .*compare\/)(v\d+\.\d+\.\d+)(\.\.\.HEAD)', "$1v$NewVersion$3" | Set-Content CHANGELOG.md
+}
+& git add pom.xml CHANGELOG.md
+& git commit -m "chore(release): v$NewVersion"
+if (git rev-parse "v$NewVersion" 2>$null) { Write-Error "Tag v$NewVersion already exists"; exit 1 }
+& git tag -a "v$NewVersion" -m "Release v$NewVersion"
+Write-Output "Version bumped to $NewVersion. Next: push branch + tag."
+

scripts/release-bump.sh

@@ -0,0 +1,25 @@
+#!/usr/bin/env bash
+set -euo pipefail
+if [ $# -ne 1 ]; then
+  echo "Usage: $0 <new-version> (e.g., 0.1.1 or 0.2.0)" >&2
+  exit 1
+fi
+NEWVER="$1"
+# Validate semantic version format (X.Y.Z)
+if ! [[ "$NEWVER" =~ ^[0-9]+\.[0-9]+\.[0-9]+$ ]]; then
+  echo "Invalid version format: '$NEWVER'. Must match X.Y.Z (e.g., 1.2.3)" >&2
+  exit 1
+fi
+# Update pom.xml version (safe: only project version)
+./mvnw versions:set -DnewVersion="${NEWVER}" -DgenerateBackupPoms=false
+# Update CHANGELOG compare link Unreleased -> new version
+if grep -q "\[Unreleased\]:" CHANGELOG.md; then
+  sed -i.bak -E "s|(\[Unreleased\]: .*compare/)(v[0-9]+\.[0-9]+\.[0-9]+)(\.\.\.HEAD)|\1v${NEWVER}\3|" CHANGELOG.md || true
+  rm -f CHANGELOG.md.bak
+fi
+# Commit and tag
+git add pom.xml CHANGELOG.md
+git commit -m "chore(release): v${NEWVER}"
+git tag -a "v${NEWVER}" -m "Release v${NEWVER}"
+echo "Version bumped to ${NEWVER}. Next: push branch + tag."
+