docs(06): create phase plan

Phase 06: Backend Authentication - 3 plan(s) in 2 wave(s) - Wave 1: 06-01 (login/logout foundation) - Wave 2: 06-02 (password reset), 06-03 (RBAC + 2FA) - parallel - Ready for execution
2026-02-05 14:35:41 +01:00
parent 10cdd3f638
commit 1ad1993632
4 changed files with 918 additions and 5 deletions
--- a/.planning/ROADMAP.md
+++ b/.planning/ROADMAP.md
@@ -115,12 +115,12 @@ Plans:
  3. Admin can reset password via email link
  4. Roles can be created with specific permissions attached
  5. Controllers and views check permissions before rendering protected content
-**Plans**: TBD
+**Plans**: 3 plans

 Plans:
- [ ] 06-01: Backend user model and login/logout
- [ ] 06-02: Password reset flow
- [ ] 06-03: RBAC permissions system
+- [ ] 06-01-PLAN.md - Admin user model, login/logout, sessions with JWT + DB hybrid
+- [ ] 06-02-PLAN.md - Password reset flow with secure tokens and email
+- [ ] 06-03-PLAN.md - RBAC permissions system with plugin registry and optional 2FA

 ### Phase 7: Admin Forms & Lists
 **Goal**: Generate forms and lists from YAML definitions
@@ -211,7 +211,7 @@ Phases execute in numeric order: 1 -> 2 -> 3 -> 4 -> 5 -> 6 -> 7 -> 8 -> 9 -> 10
 | 3. Component System | 0/2 | Planned | - |
 | 4. Theme Engine | 0/2 | Planned | - |
 | 5. CLI Scaffolding | 0/2 | Planned | - |
-| 6. Backend Authentication | 0/3 | Not started | - |
+| 6. Backend Authentication | 0/3 | Planned | - |
 | 7. Admin Forms & Lists | 0/3 | Not started | - |
 | 8. Admin Dashboard | 0/2 | Not started | - |
 | 9. Content Management | 0/5 | Not started | - |