wren 33255e823f fix: enforce fine-grained rbac permissions on role CRUD endpoints ...

Add _assertPermission() that checks role_permissions table for
specific permission keys (super_admin bypasses). Wire it into
CreateRole (rbac:roles:create), UpdateRole (rbac:roles:update),
and DeleteRole (rbac:roles:delete). Previously only the coarse
can_manage role check was enforced, making the permission grants
in role_permissions purely cosmetic for these endpoints.

2026-04-30 10:36:38 +08:00

.claude/skills

chore: commit .claude/ project-level config and skills

2026-04-27 16:58:19 +08:00

docs

docs: document /home route fix and entry-module troubleshooting guide

2026-04-30 10:35:18 +08:00

fastapi_admin

feat: add rbac-backed settings modules

2026-04-29 22:25:06 +08:00

fastapi_common

feat: bootstrap user rbac foundation

2026-04-29 15:23:19 +08:00

fastapi_modules

fix: enforce fine-grained rbac permissions on role CRUD endpoints

2026-04-30 10:36:38 +08:00

new-rules

feat: wire native leaudit upload flow

2026-04-28 16:53:16 +08:00

resources

chore: initial commit — leaudit-platform project skeleton

2026-04-27 16:48:22 +08:00

rules

feat: wire native leaudit upload flow

2026-04-28 16:53:16 +08:00

scripts

feat: bootstrap user rbac foundation

2026-04-29 15:23:19 +08:00

.gitignore

feat: bootstrap user rbac foundation

2026-04-29 15:23:19 +08:00

app.toml

feat: add async worker queues and retry controls

2026-04-29 11:48:09 +08:00

pyproject.toml

feat: complete M1-M3 infrastructure — OSS client, native execution chain, rule lifecycle API, system docs

2026-04-28 11:49:55 +08:00

run.py

chore: initial commit — leaudit-platform project skeleton

2026-04-27 16:48:22 +08:00

S

Description

No description provided

6 MiB

Languages

Python 89%

PLpgSQL 9.8%

Shell 0.9%

JavaScript 0.3%