Refactor DCA API endpoints to use superuser authentication: Updated all relevant DCA-related API endpoints to require check_super_user instead of require_admin_key, enhancing security. Adjusted client-side API calls to remove wallet admin key usage, ensuring session-based superuser authentication is utilized. Updated documentation in CLAUDE.md to reflect these changes.
This commit is contained in:
parent
dfc2dd695c
commit
8871f24cec
4 changed files with 87 additions and 84 deletions
6
views.py
6
views.py
|
|
@ -3,7 +3,7 @@
|
|||
from fastapi import APIRouter, Depends, Request
|
||||
from fastapi.responses import HTMLResponse
|
||||
from lnbits.core.models import User
|
||||
from lnbits.decorators import check_user_exists
|
||||
from lnbits.decorators import check_super_user
|
||||
from lnbits.helpers import template_renderer
|
||||
|
||||
satmachineadmin_generic_router = APIRouter()
|
||||
|
|
@ -13,9 +13,9 @@ def satmachineadmin_renderer():
|
|||
return template_renderer(["satmachineadmin/templates"])
|
||||
|
||||
|
||||
# DCA Admin page
|
||||
# DCA Admin page - Requires superuser access
|
||||
@satmachineadmin_generic_router.get("/", response_class=HTMLResponse)
|
||||
async def index(req: Request, user: User = Depends(check_user_exists)):
|
||||
async def index(req: Request, user: User = Depends(check_super_user)):
|
||||
return satmachineadmin_renderer().TemplateResponse(
|
||||
"satmachineadmin/index.html", {"request": req, "user": user.json()}
|
||||
)
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue