sr2/cloud-api
6
0
Fork 1
Code Issues 8 Pull requests 2 Projects Releases Packages Wiki Activity Actions
128 commits 2 branches 0 tags 1.2 MiB
Commit graph

20 commits

Author SHA1 Message Date
luxferre
2ec9cca99c feat: super admin handling 
The list of super admins now comes from a dependency, allowing it to easily be overrridden during testing.
 2026-06-04 11:48:50 +01:00
luxferre
3460cd76a5 tests: super admin auth tests 2026-06-03 14:36:15 +01:00
luxferre
f44c5b6f36 minor: unauthorized exception su message 2026-06-03 14:22:11 +01:00
luxferre
1a81be210a fix: use dependency instead of db.next 2026-05-29 14:15:50 +01:00
luxferre
d03478637a fix: remove oidc audience requirement 2026-05-28 15:16:21 +01:00
luxferre
42349b0182 docs: auth docstrings 
Issue: #13
 2026-05-28 11:22:47 +01:00
luxferre
a86cfea65a minor: type hint 2026-05-28 11:22:37 +01:00
luxferre
88a64d2047 feat: root user dependencies also allow super admins 2026-05-28 10:56:45 +01:00
luxferre
51bb48372c feat: auth dependency for root user with org in body 2026-05-27 15:34:18 +01:00
luxferre
36736e5142 fix: auth dependency return values and types 
Return values were all labelled as dicts instead of bools. Root user dependency now returns the org for which they are root user.
 2026-05-27 15:22:32 +01:00
luxferre
868e56ce40 feat: custom exceptions instead of direct fastapi.httpexceptions 
Resolves #2
 2026-05-27 14:58:10 +01:00
luxferre
d3d3b2ca63 feat: auth dependencies 
These dependencies require `user_model_claims_dependency` which requires the `claims_dependency`. This caused an import loop error and therefore they must be defined in a different file from `claims_dependency`.

Resolves #6
 2026-05-27 14:30:11 +01:00
luxferre
657f91d73d feat: org dependencies 
Org endpoints use query/body model dependencies to perform initial db lookups.

Issue #6

Org ID path params have been replaced with either query params (get endpoints) or body values.

Resolves #10

Endpoints in other modules that rely on an org model lookup have also been updated.
 2026-05-27 12:21:30 +01:00
luxferre
fa8439cc6c feat: auth bypass for dev and testing 
ENVIRONMENT must be "local" and DISABLE_AUTH set for this to be active. Both of these default to production values to prevent this being enabled accidentally.

Resolves #5
 2026-05-26 11:42:49 +01:00
luxferre
d51adb4e55 feat: org root user dependency 2026-05-25 09:54:46 +01:00
luxferre
23f2ce98d7 feat: iam rbac system 
Endpoints and db architecture to support a role based IAM system.
 2026-05-25 09:05:17 +01:00
luxferre
6871fcd75d feat: handling for expired token 
Returns a 401 with "Token expired" as the detail
 2026-05-20 10:50:49 +01:00
luxferre
2b8296d622 feat: combined admin dependency 
org_or_super_admin_dependency can be used in place of org_admin_dependency to also allow super admins.
 2026-05-19 11:08:22 +01:00
luxferre
34cb4414c9 feat: auth library upgrade 
The parts of Authlib used are now deprecated in favour of JoseRFC.
 2026-05-19 09:49:27 +01:00
luxferre
376a7a9fe5 Initial commit 2026-04-06 12:41:49 +01:00