cynfo3000
ec30be7246
security: API-Key Permissions + Customer-Scoping
- DB Migration: api_keys bekommt 'permissions' + 'customer_id' Spalten
- Permissions: agent | read | write | admin
- agent: nur /api/v1/agent/ws + /api/v1/agent/heartbeat
- read: GET-Endpoints (optional customer-scoped)
- write: alles ausser Terminal
- admin: voll (Terminal bleibt JWT-only)
- Bestehende Keys werden auf 'admin' migriert (Abwaertskompatibilitaet)
- Frontend: API-Key Verwaltung zeigt Permissions-Badge + Kunden-Scope
- API-Client: createAPIKey nimmt jetzt permissions + customer_id
2026-03-09 23:52:26 +01:00
..
2026-03-09 23:52:26 +01:00
2026-03-04 23:45:01 +01:00
2026-03-08 19:17:43 +01:00
2026-03-04 23:45:01 +01:00
2026-03-04 23:45:01 +01:00
2026-03-09 20:31:26 +01:00
2026-03-06 23:41:22 +01:00
2026-03-03 23:37:31 +01:00
2026-03-06 22:00:33 +01:00
2026-03-09 23:52:26 +01:00
2026-03-08 19:17:43 +01:00
2026-03-04 23:57:14 +01:00
2026-03-08 19:17:43 +01:00
2026-03-09 23:44:12 +01:00
2026-03-09 23:44:12 +01:00
2026-03-04 23:45:01 +01:00
2026-03-04 23:45:01 +01:00