yusiboyz/platform
1
0
Fork 0
Code Issues 4 Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
fcb93836236be99db0432be07dc0de2cdb124d86
platform/docker-compose.yml
Yusuf Suleman fcb9383623 fix(gateway): enforce API key auth on inventory and budget services (#5) 
- Added X-API-Key middleware to inventory-service and budget-service
- Services reject all requests without valid API key (401)
- Gateway proxy injects service API keys for inventory and budget
- Dashboard widget fetchers inject API keys
- Generated unique API keys per service, stored in .env
- Added SERVICE_API_KEY env var to docker-compose for both services

Partial fix for #5 — internal services now require auth.
Remaining: document trust model, validate service token semantics.
2026-03-29 09:06:41 -05:00

4.7 KiB
Raw Blame History

View Raw
Reference in New Issue View Git Blame Copy Permalink