apunkt/gomcp
1
0
Fork 0
mirror of https://github.com/syntrex-lab/gomcp.git synced 2026-05-03 16:22:37 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions
gomcp/internal/infrastructure/auth
History
DmitrL-dev dd977b7d46 fix(sec): critical tenant isolation - pgx placeholders, requireSOC hardening, plan upgrade guard 
- Fix pgx/v5 SQL placeholder bug (? -> /) in tenant_handlers.go
- tenant_id was silently failing to write/read, causing empty TenantID in JWT
- Harden requireSOC middleware to BLOCK when TenantID is empty (was pass-through)
- Block paid plan upgrades without Stripe payment verification
- Add in-memory cache update for tenant_id on registration
- Add fallback tenant_id read from User object in HandleVerifyEmail
2026-03-27 19:11:55 +10:00
..
demo_seed.go feat: SOC ghost sinkhole, rate limiter, RBAC, demo seed 2026-03-27 12:45:11 +10:00
handlers.go chore: Apply dashboard audit remediations, sync engine counts, update APIs 2026-03-27 16:54:18 +10:00
jwt.go sec: fix C4/C5/M4/M5 + domain migration to syntrex.pro 2026-03-24 11:49:33 +10:00
jwt_test.go Release prep: 54 engines, self-hosted signatures, i18n, dashboard updates 2026-03-23 16:45:40 +10:00
middleware.go chore: Apply dashboard audit remediations, sync engine counts, update APIs 2026-03-27 16:54:18 +10:00
rate_limiter.go Release prep: 54 engines, self-hosted signatures, i18n, dashboard updates 2026-03-23 16:45:40 +10:00
rate_limiter_test.go Release prep: 54 engines, self-hosted signatures, i18n, dashboard updates 2026-03-23 16:45:40 +10:00
tenant_handlers.go fix(sec): critical tenant isolation - pgx placeholders, requireSOC hardening, plan upgrade guard 2026-03-27 19:11:55 +10:00
tenants.go chore: Apply dashboard audit remediations, sync engine counts, update APIs 2026-03-27 16:54:18 +10:00
usage.go chore: Apply dashboard audit remediations, sync engine counts, update APIs 2026-03-27 16:54:18 +10:00
users.go fix: persistUser preserves tenant_id (prevents overwrite on login) 2026-03-24 12:10:40 +10:00