video-accessibility

History

Vadym Samoilenko 5209f04318 feat(mt-13): bind glossary handlers to client_id via org membership check All 8 glossary route handlers now verify the requesting user has org membership in the target client_id using assert_user_in_org() from core/authz.py. Read endpoints require VIEWER, mutations require MANAGER, archive requires ADMIN (org-level). Removed dead _assert_can_read() and _require_client_staff() helpers. Removed unused require_roles/User/UserRole imports. Also added get_job_or_403() to authz.py for MT-15. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-04-29 20:24:41 +01:00
..
v1	feat(mt-13): bind glossary handlers to client_id via org membership check	2026-04-29 20:24:41 +01:00

Vadym Samoilenko 5209f04318 feat(mt-13): bind glossary handlers to client_id via org membership check

All 8 glossary route handlers now verify the requesting user has org
membership in the target client_id using assert_user_in_org() from
core/authz.py. Read endpoints require VIEWER, mutations require MANAGER,
archive requires ADMIN (org-level). Removed dead _assert_can_read() and
_require_client_staff() helpers. Removed unused require_roles/User/UserRole
imports. Also added get_job_or_403() to authz.py for MT-15.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

2026-04-29 20:24:41 +01:00

feat(mt-13): bind glossary handlers to client_id via org membership check

2026-04-29 20:24:41 +01:00