ultrathink
Data Authority Audit
Check the current changes for:
- •Controller Protection: Ensure no REST endpoints allow
PUT/PATCHrequests to modifyprice,name, orstock. - •Service Protection: Verify that the
ProductServiceonly updates these fields via theErpSynclogic. - •Frontend Protection: Ensure the UI doesn't have "Edit" inputs for these locked fields in the Manager Dashboard.
Output: Flag any potential "Data Authority" violations where the Web App is trying to become the source of truth for ERP data.