tiennm99/goclaw
1
0
Fork 0
mirror of https://github.com/tiennm99/goclaw.git synced 2026-06-09 22:12:07 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
dev
goclaw/migrations/000020_secure_cli_and_api_keys.down.sql
T
Goon 75c570e951 feat(security): credentialed exec + HTTP RBAC + API key cache (#197) 
- Secure CLI credential injection via AES-256-GCM encrypted env vars
- API key management with fine-grained RBAC scopes
- resolveAuth/requireAuth middleware across all 25+ HTTP handlers
- In-memory API key cache with TTL, negative caching, pubsub invalidation
- Sandbox-first execution (fails if unavailable, no silent fallback)
- Credential scrubbing, constant-time token comparison, Admin-only CLI creds
- SQL migration 000020: secure_cli_binaries + api_keys tables
- 14 unit tests for cache and RBAC with race detector

Closes #197
2026-03-15 20:13:18 +07:00

3 lines
73 B
SQL
Raw Permalink Blame History

DROP TABLE IF EXISTS api_keys;
DROP TABLE IF EXISTS secure_cli_binaries;
Reference in New Issue View Git Blame Copy Permalink