🏠 Overview ✅ Implementation Tasks ✅ epic-structured-post-session-report-screen-task-009

Production readiness and pilot release checks

epic-structured-post-session-report-screen-task-009 — Conduct a pre-pilot production readiness review of the post-session report screen. Verify that crash reporting captures any unhandled exceptions from the form engine, that analytics events (report_opened, report_submitted, report_draft_continued) are firing correctly, that no sensitive field content is logged, and that the TestFlight / internal track build includes the microphone permission strings. Create a smoke-test checklist for Blindeforbundet's 5-8 TestFlight testers.

high priority medium complexity deployment pending devops specialist Tier 5

Acceptance Criteria

Crash reporting tool (e.g. Sentry or Firebase Crashlytics) captures all unhandled exceptions thrown by the form engine and surfaces them in the dashboard within 60 seconds of occurrence
Analytics events report_opened, report_submitted, and report_draft_continued fire on every corresponding user action and are visible in the analytics dashboard without duplicates
No field-level content (free-text entries, speech-to-text transcripts, health status values) appears in any log output, crash report breadcrumb, or analytics event property
NSMicrophoneUsageDescription and NSSpeechRecognitionUsageDescription strings are present and correctly localised to Norwegian Bokmål in the production Info.plist bundled in the TestFlight build
TestFlight build passes Apple's automated review checks and is successfully distributed to all 5-8 Blindeforbundet testers
Smoke-test checklist is written, reviewed, and delivered to the Blindeforbundet contact person before the first tester installs the build
Smoke-test checklist covers: opening a report from a completed session, saving a draft, resuming a draft, submitting a report, using voice input, and triggering a permission-denied state
All analytics events include non-PII context properties only (e.g. organisation_id, form_version, field_count) — no user-identifiable data
A readiness sign-off document is produced confirming each checklist item passed

Technical Requirements

frameworks
Flutter
flutter_test
apis
Supabase
TestFlight distribution API
data models
PostSessionReport
ReportDraft
AnalyticsEvent
performance requirements
Analytics events must be dispatched within 200ms of the triggering user action
Crash report upload must not block the UI thread
TestFlight build size must not exceed 150 MB to avoid slow OTA download for testers with limited connectivity
security requirements
All log sinks (console, crash reporter, analytics) must be audited and confirmed to strip field-level content before the build ships
Crash report breadcrumbs must redact any String values originating from user-editable form fields
Microphone and speech recognition permission prompts must display the correct Norwegian Bokmål rationale strings as required by App Store Review Guideline 5.1.1
No PII (name, address, health status) may be transmitted to third-party analytics or crash reporting services

Execution Context

Execution Tier
Tier 5

Tier 5 - 253 tasks

Can start after Tier 4 completes

Implementation Notes

Create a pre-release checklist document (Markdown or Notion page) that maps each acceptance criterion to a tester action and expected outcome — this becomes the official handoff artefact for the Blindeforbundet contact person. For log sanitisation, implement a wrapper around the crash reporter's addBreadcrumb and the analytics trackEvent methods that strips or replaces any value associated with a form field key before forwarding. Maintain an allowlist of safe property keys (organisation_id, form_version, step_index) rather than a denylist of sensitive keys, since new fields may be added later. For the TestFlight distribution, ensure the build configuration sets FLUTTER_BUILD_MODE=release and that no debug-only logging middleware is active.

Coordinate with the Blindeforbundet contact person to confirm tester Apple IDs are registered before uploading the build.

Testing Requirements

Manually execute the smoke-test checklist on a physical iOS device running the TestFlight build before distributing to testers. Verify each analytics event fires by inspecting the analytics dashboard in real time during manual test execution. Use a proxy tool (e.g. Charles or mitmproxy) to confirm no field content leaks in any outbound HTTP request to crash reporting or analytics endpoints.

Confirm the build crashes gracefully (reports to crash tool, does not hang) by triggering a controlled test exception. Run flutter_test unit tests covering the analytics event dispatch helper to assert correct event names and sanitised properties.

Component
Post-Session Report Screen
ui high
Dependencies (2)
Perform structured accessibility testing of the complete post-session report screen on a physical iOS device using VoiceOver and on a physical Android device using TalkBack. Verify focus order, semantic labels on all interactive elements, live-region announcements for form validation errors and submission status, and that the draft indicator banner and session-lock message are correctly announced. Document all findings and fix any WCAG 2.2 AA violations. epic-structured-post-session-report-screen-task-007 Write end-to-end integration tests that exercise the full post-session report flow: open screen with a valid activity_id after session ends, detect existing draft and show indicator, fill all dynamic fields including way-forward items, submit the report, verify the record is persisted in Supabase with the correct activity_id and role-based RLS, and confirm the coordinator way-forward task is created. Use flutter_test with a Supabase test instance. epic-structured-post-session-report-screen-task-008
Epic Risks (2)
medium impact high prob technical

End-to-end integration tests that span Flutter UI → Supabase → RLS → storage are inherently flaky in CI due to network timing, test database state, and Supabase cold-start latency. Flaky tests erode confidence and slow the release pipeline.

Mitigation & Contingency

Mitigation: Use a dedicated Supabase test project with seeded org and user fixtures. Wrap all E2E tests in retry logic with a fixed seed and tear-down hooks. Keep E2E tests in a separate test suite that runs on-demand rather than on every PR, with unit and widget tests as the primary CI gate.

Contingency: If E2E tests remain unreliable, replace the Supabase calls in integration tests with a verified fake (in-memory repository implementations) and promote the real Supabase tests to a nightly scheduled run rather than blocking PR merges.

high impact medium prob security

Health status, course interest, and assistive device fields contain personal health data. If any logger, analytics event, or crash reporter captures field values — through automated error serialisation or developer-added debug logs — the feature could violate GDPR and Blindeforbundet's data processor agreement.

Mitigation & Contingency

Mitigation: Audit all log statements in the report feature's code paths before the epic is marked done. Apply a PII-safe logging wrapper that strips field values from any serialised form state before it reaches the logger. Add a CI lint rule that flags direct logger calls within report-related files.

Contingency: If PII is found in logs post-launch, immediately disable the affected logging call and rotate any credentials that were exposed. Notify the data protection officer and document the incident per GDPR Article 33 requirements.

Quick Links
All Tasks Execution Plan