chihlasm/resolutionflow
1
0
Fork 0
Code Issues 23 Pull Requests 1 Actions Packages Projects Releases Wiki Activity

feat: tenant isolation Phase 0 — app-layer filters, UUID audit, CI gate #132

Merged
chihlasm merged 22 commits from feat/tenant-isolation-phase-0 into main 2026-04-09 04:42:19 +00:00
Conversation 1 Commits 22 Files Changed 17 +6 -6
1 changed files with 6 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit 5f0a92734e - Show all commits

12
backend/app/api/endpoints/trees.py
View File

@@ -392,8 +392,8 @@ async def get_tree(
if not tree.is_active or not can_access_tree(current_user, tree): if not tree.is_active or not can_access_tree(current_user, tree):
raise HTTPException( raise HTTPException(
status_code=status.HTTP_403_FORBIDDEN, status_code=status.HTTP_404_NOT_FOUND,
detail="You don't have access to this tree" detail="Tree not found"
) )
return build_full_tree_response(tree) return build_full_tree_response(tree)
@@ -611,8 +611,8 @@ async def update_tree(
if not can_edit_tree(current_user, tree): if not can_edit_tree(current_user, tree):
raise HTTPException( raise HTTPException(
status_code=status.HTTP_403_FORBIDDEN, status_code=status.HTTP_404_NOT_FOUND,
detail="You can only edit your own trees" detail="Tree not found"
) )
# Extract tags for separate handling # Extract tags for separate handling
@@ -1145,8 +1145,8 @@ async def update_tree_visibility(
if not can_edit_tree(current_user, tree): if not can_edit_tree(current_user, tree):
raise HTTPException( raise HTTPException(
status_code=status.HTTP_403_FORBIDDEN, status_code=status.HTTP_404_NOT_FOUND,
detail="You can only edit your own trees" detail="Tree not found"
) )
# Update visibility # Update visibility