Appearance
Go-Live Checklist — Sales/CSKH debt follow-up và bàn giao khách hàng
v2.0 — 15/05/2026
| Thay đổi | Section | Ảnh hưởng |
|---|---|---|
| Thêm gate GO-008 Security — pen-test direct GraphQL trước GA (Ref DEC-035 Hasura harden deferred) | E1) Release gates | TL, BE, Security |
Canonical Inputs
SOURCE_OF_TRUTH.mdEVIDENCE_PACK.mdprd.mddev-spec.mdqa-test-plan.mdhandoff.md
E1) Release gates
| Gate | Owner | Điều kiện go |
|---|---|---|
| GO-001 Scope | PO/TL | Source of Truth được approve, no open P0 decision |
| GO-002 Permission | TL/BE/QA | Dynamic grants + Hasura least-data pass TC-012 |
| GO-003 Data | DBA/BE | Migration/metadata apply clean, rollback script ready |
| GO-004 Alert | Ops/BE | Cron schedule chốt, monitor/log có dữ liệu |
| GO-005 Handover | QA/BE | Handover/rollback pass happy path, limit, conflict |
| GO-006 Mobile | Mobile/QA | Notification deep link pass on test devices |
| GO-007 Performance | TL/DBA | Dashboard/export đạt NFR hoặc mitigation approved |
| GO-008 Security gate (DEC-035) 🆕 | TL/BE/Security | BẮT BUỘC trước GA: Pen-test direct GraphQL access từ tài khoản Sale/Manager → verify không leak data cross-staff, cross-branch, cross-tenant. Nếu test FAIL → MUST harden Tier 1 (5 bảng critical: customer_handover_log, debt_contact_log, debt_followup_task, debt_alert_log, debt_alert_config) trước release |
E2) Pre-implementation verification
| Check | Result required |
|---|---|
| Xác nhận module IDs | debt_manager, debt_consulting_performance, debt_detail, debt_statistical đã tồn tại |
| Xác nhận role grants | Portal/role grants đã seed hoặc có tài liệu rõ |
| Xác nhận metadata risk | Không còn broad sensitive table permission nếu chưa có mitigation |
| Xác nhận source of truth | Không thêm route/table mới xung đột code hiện hữu |
| Xác nhận schedule | PD-002 resolved before release |
E3) Kiểm tra trước triển khai
| Area | Checklist |
|---|---|
| FE web | Build pass, route guard tested, field masking tested |
| Mobile | Build pass, notification route tested, permission scope tested |
| Backend | Unit/integration tests for actions, scheduler, event triggers |
| DB | Migration forward/back tested in staging backup |
| Hasura | Metadata apply, actions, cron, permissions validated |
| Notification | Templates active, push/in-app payload valid |
| Observability | Metrics/log dashboard and alert thresholds available |
E4) Deploy steps
| Step | Action | Owner |
|---|---|---|
| 1 | Freeze Source of Truth version and changelog | BA/PO |
| 2 | Apply DB migrations and Hasura metadata | DB/BE |
| 3 | Deploy backend services and scheduler | BE/Ops |
| 4 | Deploy admin web | FE/Ops |
| 5 | Deploy mobile app/config if required | Mobile/Ops |
| 6 | Run smoke tests TC-001, TC-005, TC-008, TC-012 | QA |
| 7 | Enable cron/config for production | Ops |
| 8 | Monitor first alert run and handover action | Ops/TL |
E5) Rollback, monitoring và sign-off
| Topic | Plan |
|---|---|
| Feature rollback | Disable menu/grants for debt manager actions if critical UI/security defect |
| Cron rollback | Pause daily_debt_alert cron or disable active alert configs |
| Data rollback | Use DB backup/migration rollback only with TL approval; handover rollback uses action per log when valid |
| Monitor first 24h | Alert run status, duplicate count, permission denied spikes, action failures |
| Monitor first 7 days | Export timing, dashboard timing, handover rollback failures, mobile deep link failures |
| Sign-off | PO confirms business acceptance; QA confirms regression; TL confirms security/capacity |