Authorize logical root API paths against vault storage
This commit is contained in:
@@ -8,9 +8,6 @@ The product is not complete until the global exit criteria at the end of this fi
|
||||
|
||||
## Priority Bugs
|
||||
|
||||
- Vault root view bug:
|
||||
update gRPC/API-facing datastore reads and writes to use logical `VaultRoot`
|
||||
paths while keeping authorization on canonical `Vault` paths.
|
||||
- Vault root view bug:
|
||||
add API-token path translation helpers so token editing, approval prompts, and
|
||||
audit/resource display stop leaking the physical `keepass` root.
|
||||
|
||||
Reference in New Issue
Block a user