fix: make RBAC dependencies properly chain _inject_user for OPC authorization
This commit is contained in:
@@ -196,11 +196,11 @@ app.include_router(security.router, prefix="/api/security",
|
||||
|
||||
# OPC endpoints
|
||||
app.include_router(opc_tasks.router, prefix="/api/opc",
|
||||
dependencies=[Depends(_inject_user), Depends(require_page("opc"))])
|
||||
dependencies=[Depends(require_page("opc"))])
|
||||
app.include_router(opc_agents.router, prefix="/api/opc",
|
||||
dependencies=[Depends(_inject_user), Depends(require_page("opc"))])
|
||||
dependencies=[Depends(require_page("opc"))])
|
||||
app.include_router(opc_projects.router, prefix="/api/opc",
|
||||
dependencies=[Depends(_inject_user), Depends(require_page("opc"))])
|
||||
dependencies=[Depends(require_page("opc"))])
|
||||
|
||||
# WebSocket endpoint (auth handled inside handler via auth cookie; query token fallback temporary)
|
||||
app.add_api_websocket_route("/ws/terminal", terminal.ws_endpoint)
|
||||
|
||||
Reference in New Issue
Block a user