Skip to content

fix(security): require bearer auth on dashboard approval API#27

Merged
SafetyMP merged 1 commit into
mainfrom
fix/security-review-issues
Jul 12, 2026
Merged

fix(security): require bearer auth on dashboard approval API#27
SafetyMP merged 1 commit into
mainfrom
fix/security-review-issues

Conversation

@SafetyMP

Copy link
Copy Markdown
Owner

Summary

  • Gate /api/approvals and /api/approvals/:id/decide with DASHBOARD_API_TOKEN when configured

Test plan

  • Set DASHBOARD_API_TOKEN and verify approval decide rejects unauthenticated requests
  • Verify dashboard still works with valid bearer token

Closes #25

Gate /api/approvals routes with DASHBOARD_API_TOKEN when configured.
Copilot AI review requested due to automatic review settings July 12, 2026 01:35

Copilot AI left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot was unable to review this pull request because the user who requested the review has reached their quota limit.

@SafetyMP SafetyMP merged commit 10c3d35 into main Jul 12, 2026
6 checks passed
@SafetyMP SafetyMP deleted the fix/security-review-issues branch July 12, 2026 03:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

security: add authentication to dashboard approval API

2 participants