Refactor client configuration access: Remove direct access to sensitive admin config and local client-limits endpoint. Implement fetching of client limits via a secure public API. Update registration form to reflect changes and enhance user experience.

2025-06-27 23:21:36 +02:00 · 2025-06-27 23:21:36 +02:00 · 340dc22c20
commit 340dc22c20
parent 16db140bb6
4 changed files with 134 additions and 104 deletions
--- a/crud.py
+++ b/crud.py
@ -514,4 +514,8 @@ async def get_client_by_user_id(user_id: str) -> Optional[dict]:
        )
        return dict(client) if client else None
    except Exception:
-        return None
+        return None
+
+
+# Removed get_active_lamassu_config - client should not access sensitive admin config
+# Client limits are now fetched via secure public API endpoint