orion

sboulahtit/orion

Fork 0

Commit Graph

Author	SHA1	Message	Date
Samir Boulahtit	9a0dd84035	fix: make FrontendType mandatory in require_module_access The require_module_access dependency was using path-based detection to determine admin vs vendor authentication, which failed for API routes (/api/v1/admin/) because it only checked for /admin/. Changes: - Make frontend_type parameter mandatory (was optional with fallback) - Remove path-based detection logic from require_module_access - Update all 33 module route files to pass explicit FrontendType: - 15 admin routes use FrontendType.ADMIN - 18 vendor routes use FrontendType.VENDOR This ensures authentication method is explicitly declared at route definition time, making it independent of URL structure and future-proof for API version changes. Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-02-02 22:09:21 +01:00
Samir Boulahtit	7639ca602b	refactor: migrate messaging and media routes to modules Messaging module (communication): - vendor_messages.py: Conversation and message management - vendor_notifications.py: Vendor notifications - vendor_email_settings.py: SMTP and provider configuration - vendor_email_templates.py: Email template customization CMS module (content management): - vendor_media.py: Media library management - vendor_content_pages.py: Content page overrides All routes auto-discovered via is_self_contained=True. Deleted 5 legacy files from app/api/v1/vendor/. app/api/v1/vendor/ now empty except for __init__.py (auto-discovery only). Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-01-31 15:21:25 +01:00

Author

SHA1

Message

Date

Samir Boulahtit

9a0dd84035

fix: make FrontendType mandatory in require_module_access

The require_module_access dependency was using path-based detection to
determine admin vs vendor authentication, which failed for API routes
(/api/v1/admin/*) because it only checked for /admin/*.

Changes:
- Make frontend_type parameter mandatory (was optional with fallback)
- Remove path-based detection logic from require_module_access
- Update all 33 module route files to pass explicit FrontendType:
  - 15 admin routes use FrontendType.ADMIN
  - 18 vendor routes use FrontendType.VENDOR

This ensures authentication method is explicitly declared at route
definition time, making it independent of URL structure and future-proof
for API version changes.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-02-02 22:09:21 +01:00

Samir Boulahtit

7639ca602b

refactor: migrate messaging and media routes to modules

Messaging module (communication):
- vendor_messages.py: Conversation and message management
- vendor_notifications.py: Vendor notifications
- vendor_email_settings.py: SMTP and provider configuration
- vendor_email_templates.py: Email template customization

CMS module (content management):
- vendor_media.py: Media library management
- vendor_content_pages.py: Content page overrides

All routes auto-discovered via is_self_contained=True.
Deleted 5 legacy files from app/api/v1/vendor/.
app/api/v1/vendor/ now empty except for __init__.py (auto-discovery only).

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-01-31 15:21:25 +01:00

2 Commits