curo/kite - kite - Gitea: Git with a cup of tea

curo/kite

Fork 0

Commit Graph

Author	SHA1	Message	Date
curo1305	c4613b6b87	feat(02-01): implement deps/auth.py FastAPI dependency chain with tests - get_current_user: validates Bearer JWT via decode_access_token, loads User from DB raises HTTP 401 on invalid/expired token, missing user, or deactivated account - get_current_admin: wraps get_current_user, raises HTTP 403 on role != 'admin' (T-02-07) - Admin impersonation architecturally excluded (ADMIN-07, T-02-08) — no code path bypasses role check - tests/test_auth_deps.py: 7 tests covering happy path, tampered token, inactive user, 403 non-admin, 200 admin	2026-05-22 19:25:16 +02:00
curo1305	3e1fcd69b5	feat(01-03): add full v1 ORM schema, async session factory, and DB dependency - backend/db/models.py: 11 SQLAlchemy 2.0 ORM models (User, Quota, RefreshToken, Folder, Document, Topic, DocumentTopic, Share, AuditLog, CloudConnection, Group) - Document.user_id declared nullable=True per D-03 (Phase 2 adds NOT NULL) - AuditLog.metadata_ uses mapped_column("metadata", JSONB) to avoid DeclarativeBase reserved-attribute conflict - Group table stub for D-02 (v2 feature, seeded per PROJECT.md) - Uses Optional[X] instead of X \| None for Python < 3.10 compatibility - backend/db/session.py: async engine (pool_pre_ping=True, expire_on_commit=False) - backend/deps/db.py: async get_db() FastAPI dependency yielding AsyncSession	2026-05-22 09:16:21 +02:00

Author

SHA1

Message

Date

curo1305

c4613b6b87

feat(02-01): implement deps/auth.py FastAPI dependency chain with tests

- get_current_user: validates Bearer JWT via decode_access_token, loads User from DB
  raises HTTP 401 on invalid/expired token, missing user, or deactivated account
- get_current_admin: wraps get_current_user, raises HTTP 403 on role != 'admin' (T-02-07)
- Admin impersonation architecturally excluded (ADMIN-07, T-02-08) — no code path bypasses role check
- tests/test_auth_deps.py: 7 tests covering happy path, tampered token, inactive user, 403 non-admin, 200 admin

2026-05-22 19:25:16 +02:00

curo1305

3e1fcd69b5

feat(01-03): add full v1 ORM schema, async session factory, and DB dependency

- backend/db/models.py: 11 SQLAlchemy 2.0 ORM models (User, Quota, RefreshToken,
  Folder, Document, Topic, DocumentTopic, Share, AuditLog, CloudConnection, Group)
- Document.user_id declared nullable=True per D-03 (Phase 2 adds NOT NULL)
- AuditLog.metadata_ uses mapped_column("metadata", JSONB) to avoid DeclarativeBase
  reserved-attribute conflict
- Group table stub for D-02 (v2 feature, seeded per PROJECT.md)
- Uses Optional[X] instead of X | None for Python < 3.10 compatibility
- backend/db/session.py: async engine (pool_pre_ping=True, expire_on_commit=False)
- backend/deps/db.py: async get_db() FastAPI dependency yielding AsyncSession

2026-05-22 09:16:21 +02:00

2 Commits