public/librenotes
1
0
Fork 0
Code Issues 37 Pull Requests Actions Packages Projects Releases Wiki Activity

Add tenant-aware API routing with auth middleware #11

New Issue
Open
opened 2026-02-25 16:05:13 +01:00 by libretech · 0 comments
libretech commented 2026-02-25 16:05:13 +01:00
Owner
Copy Link

Summary

Add middleware that extracts tenant context from JWT tokens and enforces tenant-scoped access across all API endpoints.

Design

  • JWT middleware extracts user_id and tenant context from Authorization header
  • All downstream handlers receive tenant-scoped context
  • Unauthorized requests return 401
  • Cross-tenant access attempts return 403

Implementation Tasks

  • Implement JWT validation middleware
  • Add tenant context extraction from verified tokens
  • Inject tenant context into request handlers
  • Add authorization checks on all note endpoints
  • Return proper HTTP status codes (401 unauthenticated, 403 unauthorized)
  • Add middleware tests with valid/invalid/expired tokens

Security Considerations

  • Verify JWT signature on every request
  • Reject expired tokens
  • Ensure tenant context cannot be spoofed via headers
  • Log authentication failures for monitoring

Acceptance Criteria

  • All API endpoints require valid JWT
  • Tenant context is correctly extracted and enforced
  • Invalid/expired tokens return 401
  • Cross-tenant access returns 403
  • Middleware tests cover happy path and attack scenarios
## Summary Add middleware that extracts tenant context from JWT tokens and enforces tenant-scoped access across all API endpoints. ## Design - JWT middleware extracts user_id and tenant context from Authorization header - All downstream handlers receive tenant-scoped context - Unauthorized requests return 401 - Cross-tenant access attempts return 403 ## Implementation Tasks - [ ] Implement JWT validation middleware - [ ] Add tenant context extraction from verified tokens - [ ] Inject tenant context into request handlers - [ ] Add authorization checks on all note endpoints - [ ] Return proper HTTP status codes (401 unauthenticated, 403 unauthorized) - [ ] Add middleware tests with valid/invalid/expired tokens ## Security Considerations - Verify JWT signature on every request - Reject expired tokens - Ensure tenant context cannot be spoofed via headers - Log authentication failures for monitoring ## Acceptance Criteria - [ ] All API endpoints require valid JWT - [ ] Tenant context is correctly extracted and enforced - [ ] Invalid/expired tokens return 401 - [ ] Cross-tenant access returns 403 - [ ] Middleware tests cover happy path and attack scenarios
libretech added the
phase-1
 label 2026-02-25 16:05:13 +01:00
libretech added the
task
 label 2026-02-28 20:25:53 +01:00
libretech changed title from Tenant-aware API routing to Add tenant-aware API routing with auth middleware 2026-02-28 20:25:53 +01:00
libretech added the
backend
security
 labels 2026-02-28 22:00:43 +01:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
backend
Backend changes
database
Database changes
documentation
Documentation improvements
epic
frontend
Frontend changes
infrastructure
Infrastructure and deployment
launch
Launch and release tasks
phase-0
phase-1
phase-2
phase-3
phase-4
phase-5
phase-6
security
Security-related
task
Actionable task
No Label
backend
phase-1
security
task
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
libretech
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: public/librenotes#11
No description provided.
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?