osis_storage_backend: fix freezone auth reference #328

Merged

mik-tf merged 1 commit from development_mik into development 2026-06-22 13:50:08 +00:00

Conversation 0 Commits 1 Files changed 1 +6 -3

mik-tf commented 2026-06-22 13:50:02 +00:00

Owner

Copy link

The skill cited znzfreezone_backend/tenant_boundary.rs + identity_bind.rs,
which do not exist. The real reference is znzfreezone_code/znzfreezone_backend
src/auth_middleware.rs + src/rpc_auth.rs: match the proxy-injected
X-Hero-Claims against per-method rules via herolib_openrpc_authorize, and
isolate tenants by context-per-tenant (X-Hero-Context), not per-row owner
columns. Reported in lhumina_code/home#309

Signed-by: mik-tf mik-tf@noreply.invalid

The skill cited znzfreezone_backend/tenant_boundary.rs + identity_bind.rs, which do not exist. The real reference is znzfreezone_code/znzfreezone_backend src/auth_middleware.rs + src/rpc_auth.rs: match the proxy-injected X-Hero-Claims against per-method rules via herolib_openrpc_authorize, and isolate tenants by context-per-tenant (X-Hero-Context), not per-row owner columns. Reported in https://forge.ourworld.tf/lhumina_code/home/issues/309 Signed-by: mik-tf <mik-tf@noreply.invalid>

mik-tf added 1 commit 2026-06-22 13:50:02 +00:00

osis_storage_backend: fix freezone auth reference ... 82756affa6

The skill cited znzfreezone_backend/tenant_boundary.rs + identity_bind.rs,
which do not exist. The real reference is znzfreezone_code/znzfreezone_backend
src/auth_middleware.rs + src/rpc_auth.rs: match the proxy-injected
X-Hero-Claims against per-method rules via herolib_openrpc_authorize, and
isolate tenants by context-per-tenant (X-Hero-Context), not per-row owner
columns. Reported in lhumina_code/home#309

Signed-by: mik-tf <mik-tf@noreply.invalid>

mik-tf merged commit ebe0cd6737 into development 2026-06-22 13:50:08 +00:00

mik-tf deleted branch development_mik 2026-06-22 13:50:08 +00:00

mik-tf referenced this pull request from a commit 2026-06-22 13:50:09 +00:00

Merge pull request 'osis_storage_backend: fix freezone auth reference' (#328) from development_mik into development

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels   

prio_critical

  

prio_low

  

type_bug

  

type_contact

  

type_issue

  

type_lead

  

type_question

  

type_story

  

type_task

No labels

prio_critical

prio_low

type_bug

type_contact

type_issue

type_lead

type_question

type_story

type_task

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

lhumina_code/hero_skills!328

No description provided.