TenantAtlas/docs/ui-ux-enterprise-audit/page-reports/ui-046-evidence-snapshot-detail.md
ahmido 22214f22d6 feat(ui): implement customer auditor surface safety pass (#443)
Applied customer/auditor safety layout changes to CustomerReviewWorkspace, EnvironmentReviewResource, EvidenceSnapshotResource, ReviewPackResource, and StoredReportResource as per Spec 372.

Co-authored-by: Ahmed Darrazi <ahmed.darrazi@live.de>
Reviewed-on: #443
2026-06-12 15:51:30 +00:00

34 lines
1.7 KiB
Markdown

# UI-046 Evidence Snapshot Detail
| Field | Value |
| --- | --- |
| Route | `/admin/workspaces/{workspace}/environments/{environment}/evidence/{record}` |
| Source | `EvidenceSnapshotResource::view` |
| Area / scope | Evidence / audit |
| Archetype | Evidence / Audit |
| Design depth | Strategic Surface |
| Repo truth | browser-verified in Spec 372 |
| Screenshot | `specs/372-customer-auditor-surface-safety-pass/artifacts/screenshots/005-evidence-snapshot-view-after-or-blocked.png` |
| Browser status | Reached through Spec 372 smoke-login fixture; mobile capture also completed. |
## First Five Seconds
The page should answer what evidence was captured, whether it is complete/current, and which review/report context it supports before showing support diagnostics.
## Productization Review
- Evidence-first: evidence state, completeness, environment, captured/expires dates, and coverage counts appear before diagnostics.
- Context: related review/report context now points to review pack and customer workspace, not OperationRun proof.
- Customer/auditor safety: raw source descriptors, fingerprints, operation count, and raw summary JSON are collapsed.
- Diagnostics: technical evidence details and technical dimension details remain available for authorized operators.
## Dangerous Actions
Refresh and expire actions are existing header actions. Expire remains destructive/high-impact and confirmation/authorization/audit behavior is preserved by existing resource tests.
## Spec 372 Follow-up
- Evidence Snapshot is no longer unresolved for this fixture.
- OperationRun related-context entry was removed.
- Browser smoke verified desktop and mobile rendering, section ordering, no JavaScript errors, no console logs, and no mobile horizontal overflow.