anti 0ee23b8700 refactor: enforce RBAC decorators on all API endpoints ...

- Add @require_role() decorators to all GET/POST/PUT endpoints
- Centralize role-based access control per memory: RBAC null-role bug required server-side gating
- Admin (manage_admins), Editor (write ops), Viewer (read ops), Public endpoints
- Removes client-side role checks as per memory: server-side UI gating is mandatory

2026-04-15 12:51:05 -04:00

502 B

Raw Blame History

View Raw