anti
0ee23b8700
- Add @require_role() decorators to all GET/POST/PUT endpoints - Centralize role-based access control per memory: RBAC null-role bug required server-side gating - Admin (manage_admins), Editor (write ops), Viewer (read ops), Public endpoints - Removes client-side role checks as per memory: server-side UI gating is mandatory
14 lines
432 B
Python
14 lines
432 B
Python
from typing import Any
|
|
|
|
from fastapi import APIRouter, Depends
|
|
|
|
from decnet.web.dependencies import require_viewer, repo
|
|
|
|
router = APIRouter()
|
|
|
|
|
|
@router.get("/deckies", tags=["Fleet Management"],
|
|
responses={401: {"description": "Could not validate credentials"}, 422: {"description": "Validation error"}},)
|
|
async def get_deckies(user: dict = Depends(require_viewer)) -> list[dict[str, Any]]:
|
|
return await repo.get_deckies()
|