resolutionflow

chihlasm/resolutionflow

Fork 0

Commit Graph

Author	SHA1	Message	Date
Michael Chihlas	f1be3abcc5	feat: self-serve signup Phase 2 (frontend cutover) (#162 ) Some checks failed CI / e2e (push) Has been cancelled Details CI / frontend (push) Has been cancelled Details CI / backend (push) Has been cancelled Details Mirror to GitHub / mirror (push) Has been cancelled Details Co-authored-by: Michael Chihlas <michael@resolutionflow.com> Co-committed-by: Michael Chihlas <michael@resolutionflow.com>	2026-05-07 18:42:20 +00:00
chihlasm	3ff886363c	fix: use BYPASSRLS session for all auth deps and user-mutation endpoints Phase 4 enabled RLS on the users table. All code paths that touch users (or other RLS-protected tables) before require_tenant_context sets app.current_account_id must use get_admin_db (BYPASSRLS): - deps.py: get_current_user and get_current_active_user → get_admin_db - auth.py: all endpoints → get_admin_db (login, register, refresh, etc. run before tenant context exists; mutation endpoints also need session consistency since current_user is in the admin session) - accounts.py: transfer_ownership, leave_account, delete_account → get_admin_db (these mutate current_user directly) - onboarding.py: dismiss_onboarding → get_admin_db (same reason) Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-12 03:25:18 +00:00
chihlasm	75b32a4f5a	feat: add onboarding status and dismiss endpoints with tests Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-17 00:05:28 -04:00

Author

SHA1

Message

Date

Michael Chihlas

f1be3abcc5

feat: self-serve signup Phase 2 (frontend cutover) (#162 )

CI / e2e (push) Has been cancelled

Details

CI / frontend (push) Has been cancelled

Details

CI / backend (push) Has been cancelled

Details

Mirror to GitHub / mirror (push) Has been cancelled

Details

Co-authored-by: Michael Chihlas <michael@resolutionflow.com>
Co-committed-by: Michael Chihlas <michael@resolutionflow.com>

2026-05-07 18:42:20 +00:00

chihlasm

3ff886363c

fix: use BYPASSRLS session for all auth deps and user-mutation endpoints

Phase 4 enabled RLS on the users table. All code paths that touch users
(or other RLS-protected tables) before require_tenant_context sets
app.current_account_id must use get_admin_db (BYPASSRLS):

- deps.py: get_current_user and get_current_active_user → get_admin_db
- auth.py: all endpoints → get_admin_db (login, register, refresh, etc.
  run before tenant context exists; mutation endpoints also need session
  consistency since current_user is in the admin session)
- accounts.py: transfer_ownership, leave_account, delete_account
  → get_admin_db (these mutate current_user directly)
- onboarding.py: dismiss_onboarding → get_admin_db (same reason)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-04-12 03:25:18 +00:00

chihlasm

75b32a4f5a

feat: add onboarding status and dismiss endpoints with tests

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-17 00:05:28 -04:00

3 Commits