veza/apps at 1831708f6ab98a8499c3334ddcd5a1fc1aba8834 - senke/veza

senke/veza

History

senke 1831708f6a [BE-SEC-001] security: Fix ownership verification for user profile updates - Verified RequireOwnershipOrAdmin middleware is correctly applied to PUT /users/:id - Added integration tests for ownership verification - Test: user cannot update another user's profile (403 Forbidden) - Test: admin can update any profile (200 OK) - Test: user can update own profile (200 OK) - All tests pass Phase: PHASE-1 Priority: P0 Progress: 1/267 (0.4%)	2025-12-23 01:36:04 +01:00
..
web	[BE-SEC-001] security: Fix ownership verification for user profile updates	2025-12-23 01:36:04 +01:00

senke 1831708f6a [BE-SEC-001] security: Fix ownership verification for user profile updates

- Verified RequireOwnershipOrAdmin middleware is correctly applied to PUT /users/:id
- Added integration tests for ownership verification
- Test: user cannot update another user's profile (403 Forbidden)
- Test: admin can update any profile (200 OK)
- Test: user can update own profile (200 OK)
- All tests pass

Phase: PHASE-1
Priority: P0
Progress: 1/267 (0.4%)

2025-12-23 01:36:04 +01:00

web

[BE-SEC-001] security: Fix ownership verification for user profile updates

2025-12-23 01:36:04 +01:00